strophy
commented
1 week ago As a concrete example of something that is simple in my head but apparently difficult to implement, I have two sets of files as follows:
# embedded/fleet.yaml
defaultNamespace: bioapp
helm:
values:
tcp_port: 1883
username: emqx_user# embedded/templates/configmap.yaml
apiVersion: v1
kind: ConfigMap
metadata:
name: embedded
data:
IL_MQTT_PORT: '{{ .Values.tcp_port }}'
IL_MQTT_USERNAME: {{ .Values.username }}The above works fine. Then I try and do the same thing in the root of the repository, :
# fleet.yaml
defaultNamespace: bioapp
helm:
values:
emqx_tcp_port: 1337
username: top_level_emqx_user# config.yaml
apiVersion: v1
kind: ConfigMap
metadata:
name: cluster-config
data:
emqx_tcp_port: '1337'
emqx_client_user: {{ .Values.username }}This fails with ErrApplied(2) [Cluster fleet-default/dev: error while running post render on files: yaml: invalid map key: map[interface {}]interface {}{".Values.username":interface {}(nil)}]. This is confusing to me, I don't understand what all the interface is about since I am not passing Go functions here, I'm just trying to set a key to value. I suspect it is because Fleet is processing the two sets of files in different ways, the embedded example as a Helm template and and the root example as a Fleet/raw template, but it is not clear to me if the error is coming from Fleet or Helm, or what I should do to fix it. I have tried templating in different places with ${} and {{ }} syntax, tried using Sprig templating commands like ${ get .Values.username } and endless other iterations. What would really help me would be if Fleet would make it clear in the UI or Bundle logs what "mode" is being used to process a particular bundle, assuming there are 5 different ways of assembling the Helm resources as described under https://fleet.rancher.io/gitrepo-content#how-repos-are-scanned
My eventual goal is to have the entire config in a single configmap with nesting so that I can use valuesFrom and choose only the relevant key from the main configmap so the other sub-services deployed by fleet can read their specific config. But I'm not sure if this is an anti-pattern, since the examples only show reading yaml block scalars explicitly named values.yaml and not actual yaml objects. Even the most basic examples in the fleet-examples repo showing how to pass variables around would be extremely welcome, as well as more logs and more documentation. Thanks for any help!
skanakal
I'm running into a lot of confusion while trying to handle variables in a gitops repo with the following structure:
The repo consists of a mixture of external Helm charts for products like EMQX, InfluxDB, Traefik, etc., and our own code deployed as Helm charts like frontend, backend, embedded, etc. The infrastructure will be deployed to multiple different clusters, and I need to be able to define different config for each cluster. I want to eventually use external-secrets with the
aws-ssm-secret.yamlfile (which is in.gitignoreand not checked in to the repo) to dynamically pull secrets from AWS SSM Parameter store to configure each target cluster without storing any secrets in git. For this reason I want to keep the repo as DRY as possible, so for example the EMQX config required in multiple locations below should reference a single location for configuration:I have been struggling to understand how I can define values like
1883,emqx_userandemqx_s3cretin one central location and have the various bundle dirs access that value. I've read #671 and #1164 and documentation and fleet-examples repo exhaustively but I still cannot understand what the intended approach is here given the architecture of Fleet. Should I:values.yamlkey, store the entire config for all apps in it as a block, and read it in each bundle withvaluesFrom?helm.valuesin the top-levelfleet.yamlfile and read the values from here into sub-levelfleet.yamlfiles withhelm.values.emqx.username: ${ .Values.emqx.username }?targetCustomizationsto do the same thing? I would like to avoid spreading targetCustomizations across many files if possible, to reduce maintenance burden when e.g. adding a new target clusterbackend/templates/configmap.yaml, declarehelm.valuesin the relevantfleet.yamland access values withGW_EMQX_CLIENT_USERNAME: {{ .Values.emqx.username }}?spec.templateValuesat the cluster level (how??) and access them with${ get .ClusterValues "emqx.username" }? Or do something similar with labels/annotations as described here?I would greatly appreciate more extensive documentation and an example of how to handle sharing values in the fleet-examples repo, as it was very helpful to get started with Fleet but is lacking for a beginner when attempting anything slightly more complicated.
More generally, does the structure of the repo above look logical, or have I created more problems for myself with this structure? Is it normal to have so many
fleet.yamlfiles at all levels, or have I misunderstood something about how Bundles are created? Would it be possible/better to have only onefleet.yamlfile at the base level and somehow have it configure everything else as Helm subcharts?Thanks for any help, I tried asking on Rancher Slack first but didn't receive any response there, so trying here.