Skip to content

mofaizal/rampup-project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
apps
apps
 
 
argocd
argocd
 
 
bikesharing
bikesharing
 
 
bluegreen
bluegreen
 
 
canary
canary
 
 
enterprise_scale
enterprise_scale
 
 
fleetman
fleetman
 
 
guestbook
guestbook
 
 
images
images
 
 
istio-manifests
istio-manifests
 
 
istio
istio
 
 
kubernetes-manifests
kubernetes-manifests
 
 
microservice
microservice
 
 
release
release
 
 
rollout
rollout
 
 
sock-shop
sock-shop
 
 
terraform
terraform
 
 
to-do
to-do
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
ad users.txt
ad users.txt
 
 
demo-steps.md
demo-steps.md
 
 
gitops.md
gitops.md
 
 

Repository files navigation

Faizal CAE RAMP-UP Project Playgroup

This repo contains a collection of codes to set up AKS Private Cluster, GitOps using ArgoCD, Istio, Kiali, and many more tools.

The code on this repo comes from following sources:

Terraform:

GitOps:

Istio:

Deployment

Script to execute from bash shell

Login to your Azure Active Directory tenant

az login -t {TENANTNID}

Make sure you are using the right subscription

az account show -o table

If you are not in the correct subscription, change it substituting SUBSCRIPTIONID with the proper subscription id

az account set --subscription {SUBSCRIPTIONID}

If you are running in Azure Cloud Shell, you need to run the following additional command:

export TF_VAR_logged_user_objectId=$(az ad signed-in-user show --query objectId -o tsv)

Go to the AKS construction set folder

cd enterprise_scale/construction_sets/aks

configuration_folder=online/aks_secure_baseline/configuration

Define the configuration files to apply, all tfvars files within the above folder recursively

parameter_files=$(find $configuration_folder | grep .tfvars | sed 's/.*/-var-file &/' | xargs)

Load the CAF module and related providers

terraform init -upgrade

Trigger the deployment of the resources

eval terraform apply ${parameter_files}

You are done with deployment of AKS environment, next step is to deploy the application and reference components.

To get the credentials profile from your clusters issue following command

az aks get-credentials -n <yourClusterName> -g <yourResourceGroupName>

For Admin profile

az aks get-credentials --resource-group myResourceGroup --name myAKSCluster --admin

Use kubectl config get-contexts you will be seeing all the clusters you where authenticated against, regardless of the azure subscription

kubectl config get-contexts

My case I have 2 x cluster in different azure subscription, to switch profile I need to use the context use below command to switch context between the clusters.

kubectl config use-context <yourClusterName>

To assign Admin role

Get the resource ID of your AKS cluster

AKS_CLUSTER=$(az aks show --resource-group rampup-rg-aks-re1 --name rampup-aks-akscluster-re1-001 --query id -o tsv)

Get the account credentials for the logged in user

ACCOUNT_UPN=$(az account show --query user.name -o tsv)
ACCOUNT_ID=$(az ad user show --id $ACCOUNT_UPN --query objectId -o tsv)

Assign the 'Cluster Admin' role to the user

az role assignment create \
    --assignee $ACCOUNT_ID \
    --scope $AKS_CLUSTER \
    --role "Azure Kubernetes Service Cluster Admin Role"

Kubectl Alias

To use a shorthand alias for kubectl given below some example for full list visit kubectl alias

alias k='kubectl'
alias kg='kubectl get'
alias kgpo='kubectl get pod'
alias krm='kubectl delete'
alias krmf='kubectl delete -f'
alias kgsvc='kubectl get svc'
alias kd='kubectl describe'
alias kgdep='kubectl get deployment'

Next step

▶️ Deploy ArgoCD into AKS

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Languages