Deploy the argo-workflow helm chart on Azure Kubernetes Service (AKS)
TypeScriptTo deploy the
argo-workflowHelm chart on an Azure Kubernetes Service (AKS) cluster using Pulumi, you must perform the following steps:- Set up an AKS cluster: First, you create an AKS cluster where you will deploy
argo-workflow. The cluster will provide the Kubernetes environment needed to run your workflows. - Configure Pulumi to use the Azure Provider: Make sure Pulumi is set up to manage Azure resources.
- Deploy the
argo-workflowHelm chart using Pulumi's Kubernetes provider: Helm charts are packages that contain all the necessary resources to deploy an application on Kubernetes. Pulumi can deploy Helm charts using the Kubernetes provider.
Below is the Pulumi TypeScript program that accomplishes these steps:
import * as azure from "@pulumi/azure"; // Azure provider import * as azuread from "@pulumi/azuread"; // Azure Active Directory provider import * as k8s from "@pulumi/kubernetes"; // Kubernetes provider import * as pulumi from "@pulumi/pulumi"; // Core Pulumi framework // Step 1: Configuring Azure Active Directory for AKS authentication const resourceGroup = new azure.core.ResourceGroup("aksResourceGroup", { location: "East US", }); const adApp = new azuread.Application("aks"); const adSp = new azuread.ServicePrincipal("aksSp", { applicationId: adApp.applicationId, }); const adSpPassword = new azuread.ServicePrincipalPassword("aksSpPassword", { servicePrincipalId: adSp.id, value: "secretpassword", // Replace 'secretpassword' with a strong password endDate: "2099-01-01T00:00:00Z", }); // Step 2: Creating the AKS cluster const k8sCluster = new azure.containerservice.KubernetesCluster("aksCluster", { resourceGroupName: resourceGroup.name, location: resourceGroup.location, agentPoolProfiles: [{ name: "aksagentpool", count: 1, vmSize: "Standard_DS2_v2", }], dnsPrefix: "aksk8s", linuxProfile: { adminUsername: "aksuser", sshKey: { keyData: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC...", }, }, servicePrincipal: { clientId: adApp.applicationId, clientSecret: adSpPassword.value, }, kubernetesVersion: "1.18.14", }); // Step 3: Deploying the argo-workflow Helm chart on AKS const k8sProvider = new k8s.Provider("k8sProvider", { kubeconfig: k8sCluster.kubeConfigRaw, }); const argoWorkflowChart = new k8s.helm.v3.Chart("argo-workflow", { chart: "argo-workflows", version: "0.2.3", // Use the appropriate chart version namespace: "default", // Specify namespace if needed; otherwise, it uses the default fetchOpts: {repo: "https://argoproj.github.io/argo-helm"}, }, {provider: k8sProvider}); // Export the Kubeconfig export const kubeConfig = k8sCluster.kubeConfigRaw;Explanation
- Set up an Azure Active Directory application and service principal: This authentication will be used by AKS to interact with other Azure services on your behalf.
- Create an AKS cluster: The
azure.containerservice.KubernetesClusterresource is used to create an AKS cluster. Configure the properties according to your needs. Specifically, we set up an agent pool with one virtual machine and provide an SSH public key for authentication. - Deploy the
argo-workflowHelm chart using Pulumi's Kubernetes provider: Thek8s.helm.v3.Chartresource is used to deploy the Helm chart.
Important Notes
- Replace the placeholder
"ssh-rsa AAAAB3..."with your actual SSH public key. - Use a secure password instead of
"secretpassword"and best practice is to use Pulumi's secrets handling instead of hardcoding sensitive information. - You need to tailor the
versionand other parameters of the Helm chart to match the version ofargo-workflowyou wish to deploy. - The
kubeconfigoutput variable provides the Kubernetes configuration needed to interact with your AKS cluster using kubectl or any Kubernetes client.
To execute this code, you will need to have Pulumi and the required providers installed along with proper authentication set up for Microsoft Azure. Once that's ready, you can run
pulumi upto create the resources in Azure.- Set up an AKS cluster: First, you create an AKS cluster where you will deploy