ArgoCD集成部署到Kubernetes

1：环境

kubernetes	1.23.3
ArgoCD	2.3.3

2：ArgoCD介绍

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD是一个基于Kubernetes的声明式的GitOps工具。那么，什么是GitOps呢？ GitOps是以Git为基础，使用CI/CD来更新运行在云原生环境的应用，它秉承了DevOps的核心理念--“构建它并交付它(you built it you ship it)”。

它的优势总结如下：
1：应用定义、配置和环境信息是声明式的，并且可以进行版本控制；
2：应用部署和生命周期管理是全自动化的，是可审计的，清晰易懂；
3：Argo CD是一个独立的部署工具，支持对多个环境、多个Kubernetes集群上的应用进行统一部署和管理

3：部署ArgoCD

# 安装很简单，不过在实际使用中需要对数据进行持久化。1：创建一个命名空间存放argocd的Pod
[root@k8s-master ~]# kubectl create ns argocd
namespace/argocd created2：通过官方命令部署（镜像在国外，需要梯子，或者加速也行）
[root@k8s-master ~]# kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml3：查看部署状态
[root@k8s-master ~]# kubectl get pod,svc -n argocd
NAME                                                    READY   STATUS    RESTARTS   AGE
pod/argocd-application-controller-0                     1/1     Running   0          60s
pod/argocd-applicationset-controller-79f97597cb-mwzld   1/1     Running   0          62s
pod/argocd-dex-server-6fd8b59f5b-zx76f                  1/1     Running   0          62s
pod/argocd-notifications-controller-5549f47758-2rgjk    1/1     Running   0          61s
pod/argocd-redis-79bdbdf78f-xhd8f                       1/1     Running   0          61s
pod/argocd-repo-server-5569c7b657-t5ftv                 1/1     Running   0          61s
pod/argocd-server-664b7c6878-9tjlh                      1/1     Running   0          61s4：因为需要访问，我们可以通过NodePort或者Ingress暴露 argocd-server
# 我这里使用 NodePort
# 但是我们需要修改一下argocd-server的暴露方式为NodePort
[root@k8s-master argocd]# kubectl edit svc -n argocd argocd-server
......selector:app.kubernetes.io/name: argocd-serversessionAffinity: Nonetype: NodePort
status:loadBalancer: {}
[root@k8s-master argocd]# kubectl get svc -n argocd
NAME                                      TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)                      AGE
argocd-applicationset-controller          ClusterIP   200.1.73.127    <none>        7000/TCP                     15m
argocd-dex-server                         ClusterIP   200.1.77.207    <none>        5556/TCP,5557/TCP,5558/TCP   15m
argocd-metrics                            ClusterIP   200.1.88.62     <none>        8082/TCP                     15m
argocd-notifications-controller-metrics   ClusterIP   200.1.185.23    <none>        9001/TCP                     15m
argocd-redis                              ClusterIP   200.1.5.40      <none>        6379/TCP                     15m
argocd-repo-server                        ClusterIP   200.1.249.26    <none>        8081/TCP,8084/TCP            15m
argocd-server                             NodePort    200.1.15.59     <none>        80:31715/TCP,443:30604/TCP   15m
argocd-server-metrics                     ClusterIP   200.1.216.113   <none>        8083/TCP                     15m访问节点IP+30604即可

账号：admin
# 获取密码方式如下
[root@k8s-master argocd]# echo $(kubectl get secret -n argocd argocd-initial-admin-secret -o yaml | grep password | awk -F: '{print $2}') | base64 -d
密码：U8g9xqXAPIRz6Ds3

4：使用ArgoCD简单的做一个CD

# 这里我只展示CD并不接触CI

配置完成之后我们就可以创建项目了

准备项目yaml并上传到git仓库[root@k8s-master flask]# cat demo.yaml 
apiVersion: v1
kind: Namespace
metadata:name: demo
---
apiVersion: apps/v1
kind: Deployment
metadata:name: demonamespace: demo
spec:replicas: 1selector:matchLabels:app: demotemplate:metadata:labels:app: demospec:imagePullSecrets:- name: harborcontainers:- name: demoimage: registry.kubernetes-devops.cn/library/nginx:alpineports:- containerPort: 80
---
apiVersion: v1
kind: Service
metadata:name: demonamespace: demo
spec:type: NodePortports:- name: httpport: 80targetPort: 80protocol: TCPselector:app: demo[root@k8s-master flask]# git add .
[root@k8s-master flask]# git commit -m "demo"
[master eddda10] demo1 file changed, 9 insertions(+), 9 deletions(-)rename nginx.yaml => demo.yaml (77%)
[root@k8s-master flask]# git push origin master 
Username for 'http://10.0.0.10:31179': devops
Password for 'http://devops@10.0.0.10:31179': 
Counting objects: 4, done.
Delta compression using up to 2 threads.
Compressing objects: 100% (2/2), done.
Writing objects: 100% (3/3), 509 bytes | 0 bytes/s, done.
Total 3 (delta 0), reused 0 (delta 0)
remote: . Processing 1 references
remote: Processed 1 references in total
To http://10.0.0.10:31179/devops/flask.gitd31d433..eddda10  master -> master# 然后我们去ArgoCD去部署这个demo

我们查看一下部署情况，并看看部署之后是否可以访问[root@k8s-master flask]# kubectl get pod,svc -n demo 
NAME                        READY   STATUS    RESTARTS   AGE
pod/demo-8645cf44c9-2pkv6   1/1     Running   0          84sNAME           TYPE       CLUSTER-IP    EXTERNAL-IP   PORT(S)        AGE
service/demo   NodePort   200.1.73.45   <none>        80:30808/TCP   84s# 测试访问
[root@k8s-master flask]# curl 10.0.0.10:30808 -I
HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 23 Apr 2022 12:46:29 GMT
Content-Type: text/html
Content-Length: 615
Last-Modified: Tue, 28 Dec 2021 18:48:00 GMT
Connection: keep-alive
ETag: "61cb5be0-267"
Accept-Ranges: bytes

这个时候我们去变更一下代码。（变更一下yaml）[root@k8s-master flask]# cat demo.yaml 
apiVersion: v1
kind: Namespace
metadata:name: demo
---
apiVersion: apps/v1
kind: Deployment
metadata:name: demonamespace: demo
spec:replicas: 1selector:matchLabels:app: demotemplate:metadata:labels:app: demospec:imagePullSecrets:- name: harborcontainers:- name: demoimage: registry.kubernetes-devops.cn/library/httpd:latestports:- containerPort: 80
---
apiVersion: v1
kind: Service
metadata:name: demonamespace: demo
spec:type: NodePortports:- name: httpport: 80targetPort: 80protocol: TCPselector:app: demo# 这里更换一个镜像，然后我们提交以下代码并在ArgoCD再次 SYNC一下
[root@k8s-master flask]# git add .
[root@k8s-master flask]# git commit -m "fix httpd"
[master 0d963aa] fix httpd1 file changed, 1 insertion(+), 1 deletion(-)
[root@k8s-master flask]# git push origin master 
Username for 'http://10.0.0.10:31179': devops
Password for 'http://devops@10.0.0.10:31179': 
Counting objects: 5, done.
Delta compression using up to 2 threads.
Compressing objects: 100% (2/2), done.
Writing objects: 100% (3/3), 280 bytes | 0 bytes/s, done.
Total 3 (delta 1), reused 0 (delta 0)
remote: . Processing 1 references
remote: Processed 1 references in total
To http://10.0.0.10:31179/devops/flask.giteb92f56..0d963aa  master -> master

# 我们在增加新服务的时候我们可以看看pod的变化
[root@k8s-master flask]# kubectl get pod -n demo --watch
NAME                    READY   STATUS    RESTARTS   AGE
demo-8645cf44c9-jf4g5   1/1     Running   0          3m20s
demo-9f6c4b7f5-5mmqp    0/1     Pending   0          0s
demo-9f6c4b7f5-5mmqp    0/1     Pending   0          0s
demo-9f6c4b7f5-5mmqp    0/1     ContainerCreating   0          0s
demo-9f6c4b7f5-5mmqp    0/1     ContainerCreating   0          0s
demo-9f6c4b7f5-5mmqp    1/1     Running             0          2s
demo-8645cf44c9-jf4g5   1/1     Terminating         0          3m28s
demo-8645cf44c9-jf4g5   1/1     Terminating         0          3m28s
demo-8645cf44c9-jf4g5   0/1     Terminating         0          3m29s
demo-8645cf44c9-jf4g5   0/1     Terminating         0          3m29s
demo-8645cf44c9-jf4g5   0/1     Terminating         0          3m29s# 这里可以看到，更新策略是先启动一个新的然后再删除老的，这里测试一下访问[root@k8s-master flask]# kubectl get pod,svc -n demo 
NAME                       READY   STATUS    RESTARTS   AGE
pod/demo-9f6c4b7f5-5mmqp   1/1     Running   0          95sNAME           TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)        AGE
service/demo   NodePort   200.1.240.228   <none>        80:31086/TCP   5m1s
[root@k8s-master flask]# curl 10.0.0.10:31086
<html><body><h1>It works!</h1></body></html>
# 这里可以看到已经更新了# 那么如果我们在这个yaml里面再增加一个pod呢？我们来实践一下，再次变更代码
[root@k8s-master flask]# cat demo.yaml 
apiVersion: v1
kind: Namespace
metadata:name: demo
---
apiVersion: apps/v1
kind: Deployment
metadata:name: demonamespace: demo
spec:replicas: 1selector:matchLabels:app: demotemplate:metadata:labels:app: demospec:imagePullSecrets:- name: harborcontainers:- name: demoimage: registry.kubernetes-devops.cn/library/httpd:latestports:- containerPort: 80
---
apiVersion: apps/v1
kind: Deployment
metadata:name: demosnamespace: demo
spec:replicas: 1selector:matchLabels:app: demostemplate:metadata:labels:app: demosspec:imagePullSecrets:- name: harborcontainers:- name: demosimage: registry.kubernetes-devops.cn/library/nginx:alpineports:- containerPort: 80
---
apiVersion: v1
kind: Service
metadata:name: demonamespace: demo
spec:type: NodePortports:- name: httpport: 80targetPort: 80protocol: TCPselector:app: demo
---
apiVersion: v1
kind: Service
metadata:name: demosnamespace: demo
spec:type: NodePortports:- name: httpport: 80targetPort: 80protocol: TCPselector:app: demos# 提交代码
[root@k8s-master flask]# git add .
[root@k8s-master flask]# git commit -m "add service"
[master 16ccff1] add service1 file changed, 38 insertions(+)
[root@k8s-master flask]# git push origin master 
Username for 'http://10.0.0.10:31179': devops
Password for 'http://devops@10.0.0.10:31179': 
Counting objects: 5, done.
Delta compression using up to 2 threads.
Compressing objects: 100% (2/2), done.
Writing objects: 100% (3/3), 318 bytes | 0 bytes/s, done.
Total 3 (delta 1), reused 0 (delta 0)
remote: . Processing 1 references
remote: Processed 1 references in total
To http://10.0.0.10:31179/devops/flask.git0d963aa..16ccff1  master -> master

# 在ArgoCD内再次SYNC，然后观察容器的更新
[root@k8s-master flask]# kubectl get pod -n demo --watch
NAME                   READY   STATUS    RESTARTS   AGE
demo-9f6c4b7f5-5mmqp   1/1     Running   0          6m43s
demos-7d56f6966c-brsvt   0/1     Pending   0          0s
demos-7d56f6966c-brsvt   0/1     Pending   0          0s
demos-7d56f6966c-brsvt   0/1     ContainerCreating   0          0s
demos-7d56f6966c-brsvt   0/1     ContainerCreating   0          0s
demos-7d56f6966c-brsvt   1/1     Running             0          1s