Open in app

Sign in

Write

Sign in

GitOps and its workflow at a very high level

Neron Joseph
4 min readNov 27, 2022

--

?Photo by CDC on Unsplash

When I started working with Kubernetes, I used the ‘kubectl’ command line tool for all types of interaction with the Kubernetes cluster. Later, when I implemented CI/CD pipelines for Kubernetes deployment, again I used ‘kubectl’ tool from the CI/CD machine to access or apply changes in the cluster. But I was worried about the permissions provided to the CI runner machine in order to access the Kubernetes cluster. I was searching for a better method to deploy applications to the K8s cluster other than using kubectl from the CI/CD Runner machine. Then I came to know about GitOps practices and the usage of it using a GitOps tool called ArgoCD, and that was a lifesaver.

In this section, I’m just giving a high-level overview of GitOps and a sample workflow of how GitOps can be integrated with an existing workflow with CICD and Kubernetes cluster.

What is GitOps?

GitLab provides a good explanation of GitOps and that is:

GitOps is a branch of DevOps that focuses on using git repositories to manage infrastructure and application code deployments. The main difference between the two is that in GitOps, the git repository is the source of truth for the deployment state, while in DevOps, it is the application or server configuration files.

In other words, we can say “The entire code delivery process is controlled via the Git repository”.

The major use cases of GitOps are:

  1. Continuous Deployment of Applications
  2. Continuous Deployment of Cluster (Kubernetes) resources
  3. Continuous Deployment of Infrastructure
  4. Detecting or Avoiding configuration drift
  5. Multi-Cluster Deployment

DevOps vs GitOps

DevOps

One of the major components of DevOps practices/pipelines are Continuous Integration and Continuous Delivery/Deployment. In continuous integration, once the code is checked-in to the repository, the pipeline for continuous integration gets started. A sample Continuous Integration steps include:

  1. Unit testing and other Testing steps
  2. Building artifacts
  3. Build Container images
  4. Push the container image to a registry

Then comes the Continuous Delivery/Deployment part. In this part:

  1. CD pulls the image from the registry and updates the deployment

A pictorial representation of the workflow is given below:

DevOps Workflow

GitOps

In the case of GitOps, apart from the DevOps workflow that we mentioned above, there are some additional components involved.

  1. Apart from the Application code repository, we require one more repository to store Kubernetes deployment manifest files (or Helm chart)
  2. A GitOps tool like ArgoCD needs to be implemented on the Kubernetes cluster. This tool is responsible for deploying the latest changes to the Kubernetes cluster.

So, in this workflow, instead of directly applying the deployment commands from the Continuous Deployment pipeline, we clone the repository that contains the Kubernetes deployment manifest files, then updates the manifest file with the latest application image and tag, and then push the changes back to the repository or create a Pull request. We can review the changes and then merge it. GitOps tools like ArgoCD will periodically check the repo and identifies the changes and then apply that in the Kubernetes cluster.

So, the overall steps are:

Continuous Integration

  1. Unit testing and other Testing steps
  2. Building artifacts
  3. Build Container images
  4. Push the container image to a registry
  5. Clone the repo that contains the Kubernetes manifest file
  6. Update the manifest files with the latest application image and tag
  7. Push to a feature branch and then create a Pull request

GitOps Deployment

  1. Approve the PR and merge the changes into the repository
  2. ArgoCD (GitOps tool) checks the repo and identifies the changes
  3. It then applies the changes to the Kubernetes cluster

A pictorial representation of the workflow is given below:

GitOps Workflow

This way, we avoid the accessing the Kubernetes cluster directly from the CD pipeline.

Push vs Pull Approach

From these two types of workflow, we can see that the above DevOps workflow follows a “Push based approach” and GitOps workflow follows a “Pull based approach”. That is, in DevOps, we are “pushing” the changes from the continuous delivery pipeline to the Kubernetes Cluster. But in GitOps we only push the updated code in the Git repository and GitOps tools (like ArgoCD) are “pulling” those changes and updating the Kubernetes cluster.

GitOps tools

In order to implement GitOps practices, we need to use certain GitOps tools. Given below are some of the GitOps tools that we can use for these purposes.

For Kubernetes Deployment:

  1. ArgoCD
  2. FluxCD
  3. AutoApply
  4. JenkinsX
  5. Flagger
  6. Weave GitOps core

For Infrastructure/Terraform Deployment:

  1. Atlantis

References

  1. https://learning.codefresh.io/
  2. https://about.gitlab.com/topics/gitops/
  3. KodeKloud videos

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Gitops
Argo Cd
Ci Cd Pipeline

--

--

Neron Joseph
Neron Joseph

Written by Neron Joseph

25 Followers
27 Following

DevOps Engineer | Cloud Evangelist

No responses yet

Write a response

What are your thoughts?

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams