Notes on ArgoCD
The below is the notes I've taken while understanding what argoCD is about. I will refer to CD providers like GitLab and Jenkins as alternatives.
- With alternatives, we would need to setup tools like AWS CLI, kubectl, helm, etc inside each CD job of each project.
a. We will end up providing k8s access to all the different client code bases. This can be a security challenge
b. These tools get installed and need to be authenticated for every new release. - The alternatives won't give us the deployment status of our apps once the
kubectl apply
is done. It is possible that we have a successful pipeline run (kubectl apply is executed ) but a failed deployment (pods failing to startup).
a. Though we can have liveness and startup checks to let us know if deployment failed, argoCD gives us that capability by default. - argoCd also encourages that we follow the principles of GitOps which ensures we visbility, security, speed, and single source of truth.
- Since argoCD is deployed within k8s cluster itself:
a. We don't need to have cluster credentials outside of k8s
b. no need to give external cluster access to non human users
c. argoCd is able to do this as it is deployed within a k8s cluster itself. It is an extension to k8s. - With argoCD we get an UI to visualise deployment status of any app.
- Manual rollbacks are also super simple. We will have the history of all the previous version of deployment. We can select a version and click on rollback.