Adds app configuration for ArgoCD

vanny96 · vanny96 · commit 79751204658c · 2023-02-05T18:03:20.000+01:00
diff --git a/infra/kubernetes/app/leaderboards-application.yml b/infra/kubernetes/app/leaderboards-application.yml
@@ -0,0 +1,18 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: leaderboards
+  namespace: argocd
+spec:
+  project: leaderboards
+  source:
+    repoURL: https://github.com/lunatech-labs/lunatech-lunacloud-workloads.git
+    targetRevision: HEAD
+    path: manifests/leaderboards
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: leaderboards
+  syncPolicy:
+    automated: { }
+    syncOptions:
+      - CreateNamespace=true
diff --git a/infra/kubernetes/app/leaderboards-appproject.yml b/infra/kubernetes/app/leaderboards-appproject.yml
@@ -0,0 +1,49 @@
+apiVersion: argoproj.io/v1alpha1
+kind: AppProject
+metadata:
+  name: leaderboards
+  namespace: argocd
+  # Finalizer that ensures that project is not deleted until it is not referenced by any application
+  finalizers:
+    - resources-finalizer.argocd.argoproj.io
+spec:
+  # Project description
+  description: leaderboards
+
+  # Allow manifests to deploy from any Git repos
+  sourceRepos:
+    - 'https://github.com/lunatech-labs/*'
+
+  # Only permit applications to deploy to the guestbook namespace in the same cluster
+  destinations:
+    - namespace: leaderboards
+      server: https://kubernetes.default.svc
+
+  # Allow all namespaced-scoped resources to be created, except for ResourceQuota, LimitRange, NetworkPolicy
+  namespaceResourceBlacklist:
+    - group: ''
+      kind: ResourceQuota
+    - group: ''
+      kind: LimitRange
+    - group: ''
+      kind: NetworkPolicy
+
+  # Enables namespace orphaned resource monitoring.
+  orphanedResources:
+    warn: false
+
+  roles:
+    - name: full-access
+      description: Developer privileges to my-project
+      policies:
+        - p, role:leaderboards, applications, create, leaderboards/*, allow
+        - p, role:leaderboards, applications, delete, leaderboards/*, allow
+        - p, role:leaderboards, applications, get, leaderboards/*, allow
+        - p, role:leaderboards, applications, override, leaderboards/*, allow
+        - p, role:leaderboards, applications, sync, leaderboards/*, allow
+        - p, role:leaderboards, applications, update, leaderboards/*, allow
+        - p, role:leaderboards, logs, get, leaderboards/*, allow
+        - p, role:leaderboards, exec, create, leaderboards/*, allow
+        - p, role:leaderboards, projects, get, leaderboards, allow
+      groups:
+        - project-leaderboards
diff --git a/infra/kubernetes/app/leaderboards-namespace.yml b/infra/kubernetes/app/leaderboards-namespace.yml
@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: leaderboards
diff --git a/infra/kubernetes/app/update-version.sh b/infra/kubernetes/app/update-version.sh
@@ -0,0 +1,9 @@
+#!/bin/bash
+cd "$(dirname "$0")"
+set -e
+NEW_VERSION=$1
+cat > ../../manifests/lunagraph/.argocd-source-lunagraph.yml << EOF
+kustomize:
+  images:
+  - ghcr.io/lunatech-labs/lunacloud-leaderboards:$NEW_VERSION
+EOF
