CHORE(deploy): use argocd for kaniko

Infrastructure as Code:
- Add Kaniko namespace and RBAC manifests
- Create ArgoCD Application for Kaniko infrastructure
- Kustomize configuration for Kaniko resources

Workflow improvements:
- Remove kubeconfig dependency
- Use in-cluster ServiceAccount (runner runs in K8s)
- Remove all sudo commands
- Simplify Kubernetes access

GitOps workflow:
1. Push manifests to Git
2. ArgoCD auto-syncs infrastructure
3. Gitea runner uses ServiceAccount permissions
4. Kaniko builds run in kaniko-builds namespace

Benefits:
- True GitOps approach
- No secrets management needed
- Declarative infrastructure
- ArgoCD handles reconciliation
- Audit trail in Git

This commit is contained in:

Mayne0213

2025-12-28 17:36:10 +09:00

parent 363f71d4a6

commit 37a7dbd561

5 changed files with 129 additions and 34 deletions

									
										6

deploy/kaniko/kustomization.yaml
									
										Normal file
									
												View File
												
				@@ -0,0 +1,6 @@

				apiVersion: kustomize.config.k8s.io/v1beta1

				kind: Kustomization

				resources:

				  - namespace.yaml

				  - rbac.yaml

CHORE(deploy): use argocd for kaniko

6 deploy/kaniko/kustomization.yaml Normal file Unescape Escape View File

6

deploy/kaniko/kustomization.yaml Normal file

View File