Codefresh, profile picture
Uploaded byCodefresh
PDF, PPTX662 views

Simplify Your Code with Helmfile

The document discusses Helmfile, a tool to simplify the management of Helm charts in Kubernetes. It covers its features, such as managing dependencies, automating pre- and post-deployment tasks, and handling secrets securely. Additionally, it mentions various tips for using Helmfile effectively and resources for further learning.

Embed presentation

Download as PDF, PPTX
Simplify your Code with Helmfile BRADEN WRIGHT | ROOT LEVEL TECHNOLOGY
Braden Wright Staff Cloud Architect braden.wright@rootleveltech.com
Agenda https://github.com/rootleveltech/codefresh-helmfile-webinar What’s not covered? ● Kubernetes 101 ● Helm 101 ● Codefresh 101
Agenda ● Why Helmfile ● What is Helmfile ● Helm Repos ● More Hooks ● Helm Diff ● Another Approach to Secrets ● Helm Dependencies ● Multiple Environments ● Templating Values yaml https://github.com/rootleveltech/codefresh-helmfile-webinar Common Problems Helmfile can help with...
Why Helmfile? I love Helm but if only I could ... ● Setup Helm Repos ● Automate something to run before / after Helm ● See what’s going to change before Deploying ● Manage Secrets as part of Helm Deploy ● Have dependencies installed as separate Helm Deploy ● Control order of my Helm chart dependencies ● Template values.yaml ● Get data from another source / run a script ● Use Environment Variables
● Wrapper on top of Helm ● No Vendor Lock-in ● Golang Templating without Restrictions https://github.com/roboll/helmfile What is Helmfile?
What is Helmfile?
Demo Disclaimer ● Walkthrough deploys ● Starting from a completely clean GKE install ● Setup in GCP for things like DNS, credentials, etc. ● Mono Repo for our example
Helm missing Repos
Helm missing Repos
Helmfile Hooks Events: prepare, presync, postsync, cleanup
Example: create Namespace before deploying chart Helmfile Hooks
Example: create Namespace before deploying chart Helmfile Hooks
Helm Diff ● Want Terraform Plan for Helm? ● Bug for Helm 3, 3-way diff
Helm Secrets ● How do you create secrets? ● Where do you store sensitive data? ● How do you distribute / share sensitive data? https://github.com/zendesk/helm-secrets
Helm Secrets
Helm Secrets
Helm Secrets
Helm Secrets ● Helmfile uses Helm Secrets Plugin which uses SOPS ● SOPS supports different types of Encryption ○ AWS KMS, GCP KMS, Azure Key Vault, PGP, etc ● Secrets.yaml file gets encrypted and saved in Git ● Use a Secret Resource and unencrypted Secrets.yaml to create safe, secure, reliable, repeatable and distributed way to create Resources https://github.com/zendesk/helm-secrets https://github.com/mozilla/sops https://gist.github.com/twolfson/01d515258eef8bdbda4f
Order Dependencies ● Runs Helm apply times ● Run Helm deploy in specified order ● Deploy parts of Stack using labels and selectors ● Different ways to declare dependencies
Order Dependencies 4 3 2 1
Demo in Codefresh ● Deploy MyApp, Ingress, DNS, Namespace ● Using Secrets.yaml ● Started with cfstep-helmfile but needed to customize https://codefresh.io/steps/step/helmfile
Templating Values Yaml Files ● DRYing out values files ● Use Templating to support ad-hoc environments ● Hierarchy, environment level values files, with default but ability to override. ● Use Env Vars in values.yaml file ● Run scripts to return values ● Expose all of Sprig / Go Templating ● Render out other files ● Use different Secrets.yaml for Different Environments
Demo in Codefresh ● Deploy Stack in 2 Environments ○ Dev ■ DNS in GCP / CloudDNS ■ External DNS Chart ○ Default / Ad-Hoc ■ Leverage Templating / Script to setup an .xip.io address
Environments ● Picture of Yaml with Multiple Environments ● Setup another environment, on the same K8s cluster ● Setup another environment in a different K8s cluster ● Leverage Templating for Ad-Hoc environments
Other Helmfile Features ● Repo Per Chart ● Modules ○ GitHub, S3, etc. ● Env Variables ○ Supports standard, default, required ● Top Level Helmfile to Deploy everything ● Use Helmfile with Kustomize
Mono Repo vs Repo per Chart 1. Talk about mono repo approach we’ve been taking, common b/c of public helms charts repo. Helmfile flexible, so you can setup how you want to 2. Discuss Repo per Chart and things like getting Helmfile from git instead of a local file.
Other Tools ● Look at Helm Plugins ○ Secrets, Diff ● Helmsman, Kustomize ● Check Ecosystem, lots of tools ● Other Tools / Charts ○ https://github.com/stakater/Reloader ○ https://github.com/kubernetes-sigs/external-dns ○ https://github.com/jetstack/cert-manager ○ https://github.com/vmware-tanzu/velero
Summary ● Simple Case Study ● Consider SDLC for Charts ● Tons of power with Sprig / Go Templating ● Try out Helmfile, or evaluate what’s out there
Signup for a FREE account with UNLIMITED builds & schedule a 1:1 with our experts at https://codefresh.io Questions? Schedule a no cost, 1:1 call with our cloud migration specialists at https://rootleveltech.com/

More Related Content

PPTX
Image proccessing and its application
byAshwini Awatare
 
PDF
Helm - Application deployment management for Kubernetes
byAlexei Ledenev
 
PPTX
Helm.pptx
bySISTechnologies
 
PDF
helm101.pdf
bySamyaBikashSantra1
 
PPTX
Helm and the zen of managing complex Kubernetes apps
byAbhishek Chanda
 
PDF
How Helm, The Package Manager For Kubernetes, Works
byMatthew Farina
 
PDF
Making the Most of Helm 3 with Codefresh
byCodefresh
 
PDF
Helm - Package Manager for Kubernetes
byKnoldus Inc.
 
Image proccessing and its application
byAshwini Awatare
 
Helm - Application deployment management for Kubernetes
byAlexei Ledenev
 
Helm.pptx
bySISTechnologies
 
helm101.pdf
bySamyaBikashSantra1
 
Helm and the zen of managing complex Kubernetes apps
byAbhishek Chanda
 
How Helm, The Package Manager For Kubernetes, Works
byMatthew Farina
 
Making the Most of Helm 3 with Codefresh
byCodefresh
 
Helm - Package Manager for Kubernetes
byKnoldus Inc.
 

Similar to Simplify Your Code with Helmfile

PPTX
DevOps: Kubernetes + Helm with Azure
byJessica Deen
 
PPTX
Leveraging Helm to manage Deployments on Kubernetes
byManoj Bhagwat
 
PDF
Helm chart-introduction
byGanesh Pol
 
PDF
Helm Security Webinar
byDeep Datta
 
PDF
Kubernetes Helm (Boulder Kubernetes Meetup, June 2016)
byMatt Butcher
 
PDF
Helm Charts Security 101
byDeep Datta
 
PDF
What is Helm?
byBelleHenry
 
PDF
What Is Helm
byAMELIAOLIVIA2
 
PPTX
Steering the Course with Helm
byDirk Jablonski
 
PDF
Kubernetes Application Deployment with Helm - A beginner Guide!
byKrishna-Kumar
 
PDF
Microservices are ‘easy’ dependencies are hard
byItiel Shwartz
 
PPTX
Helm-1233333333333333333333_Masterclass-v3.pptx
bySureshMudireddy2
 
PDF
Continuous Delivery for Kubernetes Apps with Helm and ChartMuseum
byCodefresh
 
PPTX
Manage Kubernetes application complexity with Helm
byAnnie Talvasto
 
PDF
learn Helm 3 for kuberenetes
byShyam Mohan
 
PDF
helm, the real world
byOleg Suharevich
 
PPTX
Best Practices with Azure & Kubernetes
byMicrosoft Tech Community
 
PDF
Helm - the Better Way to Deploy on Kubernetes - Reinhard Nägele - Codemotion...
byCodemotion
 
PPTX
Exploring the Future of Helm
byMatthew Farina
 
PPTX
Helm @ Orchestructure
byMatthew Farina
 
DevOps: Kubernetes + Helm with Azure
byJessica Deen
 
Leveraging Helm to manage Deployments on Kubernetes
byManoj Bhagwat
 
Helm chart-introduction
byGanesh Pol
 
Helm Security Webinar
byDeep Datta
 
Kubernetes Helm (Boulder Kubernetes Meetup, June 2016)
byMatt Butcher
 
Helm Charts Security 101
byDeep Datta
 
What is Helm?
byBelleHenry
 
What Is Helm
byAMELIAOLIVIA2
 
Steering the Course with Helm
byDirk Jablonski
 
Kubernetes Application Deployment with Helm - A beginner Guide!
byKrishna-Kumar
 
Microservices are ‘easy’ dependencies are hard
byItiel Shwartz
 
Helm-1233333333333333333333_Masterclass-v3.pptx
bySureshMudireddy2
 
Continuous Delivery for Kubernetes Apps with Helm and ChartMuseum
byCodefresh
 
Manage Kubernetes application complexity with Helm
byAnnie Talvasto
 
learn Helm 3 for kuberenetes
byShyam Mohan
 
helm, the real world
byOleg Suharevich
 
Best Practices with Azure & Kubernetes
byMicrosoft Tech Community
 
Helm - the Better Way to Deploy on Kubernetes - Reinhard Nägele - Codemotion...
byCodemotion
 
Exploring the Future of Helm
byMatthew Farina
 
Helm @ Orchestructure
byMatthew Farina
 

More from Codefresh

PDF
Detect, debug, deploy with Codefresh and Lightstep
byCodefresh
 
PDF
CICD Pipelines for Microservices: Lessons from the Trenches
byCodefresh
 
PDF
5 Simple Tips for Troubleshooting Your Kubernetes Pods
byCodefresh
 
PDF
Best Practices for Microservice CI/CD: Lessons from Expedia and Codefresh
byCodefresh
 
PDF
Hybrid CI/CD with Kubernetes & Codefresh
byCodefresh
 
PDF
VM vs Docker-Based Pipelines
byCodefresh
 
PDF
Why You Should be Using Multi-stage Docker Builds in 2019
byCodefresh
 
PPTX
Deploy Secure Cloud-Native Apps Fast
byCodefresh
 
PDF
CICD Pipelines for Microservices Best Practices
byCodefresh
 
PDF
Codefresh CICD New Features Launch! May 2019
byCodefresh
 
PDF
Terraform GitOps on Codefresh
byCodefresh
 
PDF
Adding Container Image Scanning to Your Codefresh Pipelines with Anchore
byCodefresh
 
PDF
Image scanning using Clair
byCodefresh
 
PDF
Updating Kubernetes With Helm Charts: Build, Test, Deploy with Codefresh and...
byCodefresh
 
PDF
Docker based-Pipelines with Codefresh
byCodefresh
 
PDF
Automated Serverless Pipelines with #GitOps on Codefresh
byCodefresh
 
PDF
Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Sn...
byCodefresh
 
PDF
Net Pipeline on Windows Kubernetes
byCodefresh
 
PPTX
Multi-cloud CI/CD with failover powered by K8s, Istio, Helm, and Codefresh
byCodefresh
 
PPTX
Skip Staging! Test Docker, Helm, and Kubernetes Apps like a Pro
byCodefresh
 
Detect, debug, deploy with Codefresh and Lightstep
byCodefresh
 
CICD Pipelines for Microservices: Lessons from the Trenches
byCodefresh
 
5 Simple Tips for Troubleshooting Your Kubernetes Pods
byCodefresh
 
Best Practices for Microservice CI/CD: Lessons from Expedia and Codefresh
byCodefresh
 
Hybrid CI/CD with Kubernetes & Codefresh
byCodefresh
 
VM vs Docker-Based Pipelines
byCodefresh
 
Why You Should be Using Multi-stage Docker Builds in 2019
byCodefresh
 
Deploy Secure Cloud-Native Apps Fast
byCodefresh
 
CICD Pipelines for Microservices Best Practices
byCodefresh
 
Codefresh CICD New Features Launch! May 2019
byCodefresh
 
Terraform GitOps on Codefresh
byCodefresh
 
Adding Container Image Scanning to Your Codefresh Pipelines with Anchore
byCodefresh
 
Image scanning using Clair
byCodefresh
 
Updating Kubernetes With Helm Charts: Build, Test, Deploy with Codefresh and...
byCodefresh
 
Docker based-Pipelines with Codefresh
byCodefresh
 
Automated Serverless Pipelines with #GitOps on Codefresh
byCodefresh
 
Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Sn...
byCodefresh
 
Net Pipeline on Windows Kubernetes
byCodefresh
 
Multi-cloud CI/CD with failover powered by K8s, Istio, Helm, and Codefresh
byCodefresh
 
Skip Staging! Test Docker, Helm, and Kubernetes Apps like a Pro
byCodefresh
 

Recently uploaded

PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
final.pdf
byomarbishtawi04
 
PDF
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PPTX
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PDF
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Workflow and decision Automation with Flowable
bychakib ch
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
final.pdf
byomarbishtawi04
 
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 

Simplify Your Code with Helmfile

  • 1.
    Simplify your Code withHelmfile BRADEN WRIGHT | ROOT LEVEL TECHNOLOGY
  • 2.
  • 3.
  • 4.
    Agenda ● Why Helmfile ●What is Helmfile ● Helm Repos ● More Hooks ● Helm Diff ● Another Approach to Secrets ● Helm Dependencies ● Multiple Environments ● Templating Values yaml https://github.com/rootleveltech/codefresh-helmfile-webinar Common Problems Helmfile can help with...
  • 5.
    Why Helmfile? I loveHelm but if only I could ... ● Setup Helm Repos ● Automate something to run before / after Helm ● See what’s going to change before Deploying ● Manage Secrets as part of Helm Deploy ● Have dependencies installed as separate Helm Deploy ● Control order of my Helm chart dependencies ● Template values.yaml ● Get data from another source / run a script ● Use Environment Variables
  • 6.
    ● Wrapper ontop of Helm ● No Vendor Lock-in ● Golang Templating without Restrictions https://github.com/roboll/helmfile What is Helmfile?
  • 7.
  • 8.
    Demo Disclaimer ● Walkthroughdeploys ● Starting from a completely clean GKE install ● Setup in GCP for things like DNS, credentials, etc. ● Mono Repo for our example
  • 9.
  • 10.
  • 11.
    Helmfile Hooks Events: prepare,presync, postsync, cleanup
  • 12.
    Example: create Namespacebefore deploying chart Helmfile Hooks
  • 13.
    Example: create Namespacebefore deploying chart Helmfile Hooks
  • 14.
    Helm Diff ● WantTerraform Plan for Helm? ● Bug for Helm 3, 3-way diff
  • 15.
    Helm Secrets ● Howdo you create secrets? ● Where do you store sensitive data? ● How do you distribute / share sensitive data? https://github.com/zendesk/helm-secrets
  • 16.
  • 17.
  • 18.
  • 19.
    Helm Secrets ● Helmfileuses Helm Secrets Plugin which uses SOPS ● SOPS supports different types of Encryption ○ AWS KMS, GCP KMS, Azure Key Vault, PGP, etc ● Secrets.yaml file gets encrypted and saved in Git ● Use a Secret Resource and unencrypted Secrets.yaml to create safe, secure, reliable, repeatable and distributed way to create Resources https://github.com/zendesk/helm-secrets https://github.com/mozilla/sops https://gist.github.com/twolfson/01d515258eef8bdbda4f
  • 20.
    Order Dependencies ● RunsHelm apply times ● Run Helm deploy in specified order ● Deploy parts of Stack using labels and selectors ● Different ways to declare dependencies
  • 21.
  • 22.
    Demo in Codefresh ●Deploy MyApp, Ingress, DNS, Namespace ● Using Secrets.yaml ● Started with cfstep-helmfile but needed to customize https://codefresh.io/steps/step/helmfile
  • 23.
    Templating Values YamlFiles ● DRYing out values files ● Use Templating to support ad-hoc environments ● Hierarchy, environment level values files, with default but ability to override. ● Use Env Vars in values.yaml file ● Run scripts to return values ● Expose all of Sprig / Go Templating ● Render out other files ● Use different Secrets.yaml for Different Environments
  • 24.
    Demo in Codefresh ●Deploy Stack in 2 Environments ○ Dev ■ DNS in GCP / CloudDNS ■ External DNS Chart ○ Default / Ad-Hoc ■ Leverage Templating / Script to setup an .xip.io address
  • 25.
    Environments ● Picture ofYaml with Multiple Environments ● Setup another environment, on the same K8s cluster ● Setup another environment in a different K8s cluster ● Leverage Templating for Ad-Hoc environments
  • 26.
    Other Helmfile Features ●Repo Per Chart ● Modules ○ GitHub, S3, etc. ● Env Variables ○ Supports standard, default, required ● Top Level Helmfile to Deploy everything ● Use Helmfile with Kustomize
  • 27.
    Mono Repo vsRepo per Chart 1. Talk about mono repo approach we’ve been taking, common b/c of public helms charts repo. Helmfile flexible, so you can setup how you want to 2. Discuss Repo per Chart and things like getting Helmfile from git instead of a local file.
  • 28.
    Other Tools ● Lookat Helm Plugins ○ Secrets, Diff ● Helmsman, Kustomize ● Check Ecosystem, lots of tools ● Other Tools / Charts ○ https://github.com/stakater/Reloader ○ https://github.com/kubernetes-sigs/external-dns ○ https://github.com/jetstack/cert-manager ○ https://github.com/vmware-tanzu/velero
  • 29.
    Summary ● Simple CaseStudy ● Consider SDLC for Charts ● Tons of power with Sprig / Go Templating ● Try out Helmfile, or evaluate what’s out there
  • 30.
    Signup for aFREE account with UNLIMITED builds & schedule a 1:1 with our experts at https://codefresh.io Questions? Schedule a no cost, 1:1 call with our cloud migration specialists at https://rootleveltech.com/