- This contains IaC for my k8 home clusters
- It was templeted using https://github.com/fluxcd/flux2-kustomize-helm-example
Dashboard
task talos:dash"
Scale up cluster
talosctl apply-config --insecure \
--nodes [NODE IP] \
--file controlplane.yaml | worker.yaml
Build apps manifest
flux build kustomization apps --path apps/local/
Build infra local manifest
flux build kustomization infra-controllers-local --path infrastructure/local
Build without connecting to cluster
flux build kustomization infra-dependencies --path infrastructure/dependencies \
--kustomization-file infrastructure/dependencies/kustomization.yaml \
--dry-run
export GITHUB_TOKEN=<your-token>
export GITHUB_USER=umizoom
export GITHUB_REPO=https://github.com/umizoom/homek8sflux bootstrap github \
--context=kind-kind \
--owner=${GITHUB_USER} \
--repository=${GITHUB_REPO} \
--branch=refactor \
--personal \
--path=clusters/localflux bootstrap github \
--owner=${GITHUB_USER} \
--repository=${GITHUB_REPO} \
--branch=main \
--personal \
--path=clusters/productionhttps://fluxcd.io/flux/guides/mozilla-sops/
Encrypting secrets
task sops:encryptbootstrapping
flux create kustomization my-secrets \
--source=flux-system \
--path=./clusters/production \
--prune=true \
--interval=10m \
--decryption-provider=sops \
--decryption-secret=sops-gpg