My secondary K8s cluster for CPU-intensive tasks. Configured using Flux!
cluster
– a GitOps-enabled directory that contains cluster-wide resources likeCustomResourseDefinitions
andClusterRoleBindings
.workloads
– a GitOps-enabled directory that contains namespaced resources and Helm releases to be run on-cluster.sealed-secrets
– a workbench from which to create sealed secrets.helm
– configuration related to thehelm
andhelm-tiller
cluster setup.flux
– configuration related to theflux
cluster setup.
Configuration secrets are to be hidden using
git-secret
, using the make secrets-hide
and
make secrets-reveal
commands.
K8s Secret
resources should be encrypted using
sealed-secrets
, using a
process described in sealed-secrets/README.md
.