FluxCD#
FluxCD is the GitOps engine for the cluster. It continuously reconciles the desired state in Git with the actual state in the cluster.
Components#
- helm-controller
- kustomize-controller
- notification-controller
- source-controller
Workflow#
The workflow is strict:
- Edit YAML in the Git repository
- Commit and push to
master - FluxCD detects the change and reconciles
- The cluster converges to the desired state
kubectl apply is never used directly. If something needs to change, it goes through Git.
Dependency management#
FluxCD Kustomizations are organized with explicit dependsOn relationships. See Architecture for the full dependency graph.
Automated updates#
Renovate runs on the repository to automatically propose updates to Helm chart versions and container image tags. Updates arrive as pull requests for review before merging.
Monitoring#
# Check Kustomization status
flux get kustomizations
# Check HelmRelease status across all namespaces
flux get helmreleases -A
# Follow reconciliation logs
flux logs --all-namespaces --follow