An example workflow that uses GitHub Actions to build a static website into a Docker container, push that image to Amazon Elastic Container Registry, and uses Flux to automatically update an existing Amazon Elastic Kubernetes Service cluster with that image.
See this technical blog post which uses this code for full step-by-step instructions.
- Create an EKS cluster, e.g. using
eksctl create cluster
- Set up Flux on the cluster, e.g. using this guide. Note that you must set
--git-path
to point to where your manifests are. For example:
export GHOWNER=<github user or organization account where your fork lives>
export GHREPO=example-actions-flux-eks
kubectl create ns flux
fluxctl install \
--git-user=${GHUSER} \
--git-email=${GHUSER}@users.noreply.github.com \
--git-url=git@github.com:${GHOWNER}/${GHREPO} \
--git-path=manifests \
--namespace=flux | kubectl apply -f -
- Give Flux read/write access to the GitHub repository using a deploy key
- Create a repository called
example-eks
in Amazon Elastic Container Registry, in the same AWS region as the EKS cluster - Update the image in
deployment.yml
to use yourREGISTRY
,IMAGE
, andTAG
.TAG
will be replaced by Flux as new images are available in the registry.
The following secrets are required to be set on the repository:
AWS_ACCOUNT_ID
: The AWS account ID that owns the EKS clusterAWS_ACCESS_KEY_ID
: An AWS access key ID for an account having the EKS IAM roleAWS_SECRET_ACCESS_KEY
: An AWS secret sccess key for an account having the EKS IAM role
The example workflow will trigger on every push to this repo.
For pull requests, the workflow will:
- Build and tag the Docker image
- The image will be tagged with the feature branch's HEAD commit SHA
For pushes to the default branch (master
), in addition to the above, the workflow will:
- Push the image to Amazon Elastic Container Registry
Flux watches ECR for changes to the image listed in our deployment configuration. When it detects a change, it updates the EKS cluster with the new image, no manual kubectl apply
needed!
We welcome contributions! See how to contribute.