gha-deploy-to-k3s/README.md

# Introduction

This is a [Github Action](https://docs.github.com/en/actions/sharing-automations/creating-actions/creating-a-docker-container-action)
using Docker, with the intention to efficiently deploy to a k3s or k8s cluster using kustomize.

# How to Use

## How to Configure in .github/workflows/main.yaml

```yaml
jobs:
  deploy_staging:
    steps:
      - name: deploy to staging
        id: deploy
        uses: https://gitea.uber5.com/Uber5-Public/gha-deploy-to-k3s@v2
        with:
          kust_config: kustomize/overlays/testing
        env:
          K3S_YAML: ${{ secrets.K3S_YAML }} # assuming that K3S_YAML is defined in a README, see also below
      - name: Check output of previous step (kinda dummy)
        run: echo "The start time was ${{ steps.deploy.outputs.time }}"
```

## How to Setup K3S_YAML

We assume you use k3s. Otherwise, use comparable kubectl configuration.

- Grab k3s.yaml (\`/etc/rancher/k3s/k3s.yaml\`), copy it to /tmp/ and make it readable for you, then copy it from the master node of the k3s cluster: `scp your-node-123.uber5.com:/tmp/k3s.yaml /tmp/`
- Change the `server` entry to use its public DNS name
- Insert `tls-server-name: worker1` underneath the `server` key. The value (`worker1` in this case) needs to be one of the names that are in the cert. If you get it wrong, the error message in the pipeline will tell you.
- encode k3s.yaml with `base64 -i /tmp/k3s.yaml -o /tmp/encoded`, and set it as the value for a secret `K3S_YAML` in gitea for the repository under "Settings > Actions > Secrets"

# Open Questions

- We use [kustomize](https://kustomize.io/). Is this overkill? As the complexity of deployments is not that high, usually, this may be more technical complexity than necessary. We could go back to using plain kubernetes manifests, and just have different ones for staging and prod.
- Is it worth using Github Actions? We could go back to using [woodpecker](https://woodpecker-ci.org/).
  - Advantages Github Actions:
    - execution time should be faster
    - it's closer to the mainstream
  - Advantages Woodpecker:
    - Current deployments use woodpecker already
    - Simpler technology (This is debatable)
Add README.md 2025-01-01 10:52:00 +00:00			`# Introduction`

			`This is a [Github Action](https://docs.github.com/en/actions/sharing-automations/creating-actions/creating-a-docker-container-action)`
			`using Docker, with the intention to efficiently deploy to a k3s or k8s cluster using kustomize.`

cleanup, add docs 2025-01-01 17:26:31 +02:00			`# How to Use`

update README 2025-01-01 17:35:32 +02:00			`## How to Configure in .github/workflows/main.yaml`

cleanup, add docs 2025-01-01 17:26:31 +02:00			```yaml
			`jobs:`
			`deploy_staging:`
			`steps:`
			`- name: deploy to staging`
			`id: deploy`
			`uses: https://gitea.uber5.com/Uber5-Public/gha-deploy-to-k3s@v2`
			`with:`
			`kust_config: kustomize/overlays/testing`
			`env:`
update README 2025-01-01 17:35:32 +02:00			`K3S_YAML: ${{ secrets.K3S_YAML }} # assuming that K3S_YAML is defined in a README, see also below`
cleanup, add docs 2025-01-01 17:26:31 +02:00			`- name: Check output of previous step (kinda dummy)`
			`run: echo "The start time was ${{ steps.deploy.outputs.time }}"`
			```

update README 2025-01-01 17:35:32 +02:00			`## How to Setup K3S_YAML`

			`We assume you use k3s. Otherwise, use comparable kubectl configuration.`

			- Grab k3s.yaml (\`/etc/rancher/k3s/k3s.yaml\`), copy it to /tmp/ and make it readable for you, then copy it from the master node of the k3s cluster: `scp your-node-123.uber5.com:/tmp/k3s.yaml /tmp/`
			- Change the `server` entry to use its public DNS name
			- Insert `tls-server-name: worker1` underneath the `server` key. The value (`worker1` in this case) needs to be one of the names that are in the cert. If you get it wrong, the error message in the pipeline will tell you.
			- encode k3s.yaml with `base64 -i /tmp/k3s.yaml -o /tmp/encoded`, and set it as the value for a secret `K3S_YAML` in gitea for the repository under "Settings > Actions > Secrets"

Add README.md 2025-01-01 10:52:00 +00:00			`# Open Questions`

			`- We use [kustomize](https://kustomize.io/). Is this overkill? As the complexity of deployments is not that high, usually, this may be more technical complexity than necessary. We could go back to using plain kubernetes manifests, and just have different ones for staging and prod.`
			`- Is it worth using Github Actions? We could go back to using [woodpecker](https://woodpecker-ci.org/).`
			`- Advantages Github Actions:`
			`- execution time should be faster`
			`- it's closer to the mainstream`
cleanup, add docs 2025-01-01 17:26:31 +02:00			`- Advantages Woodpecker:`
			`- Current deployments use woodpecker already`
			`- Simpler technology (This is debatable)`