OpenStaticFish/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: wait directly on ESO Helm readiness
Deploy Cluster / Terraform (push) Successful in 27s
Details
Deploy Cluster / Ansible (push) Failing after 47m9s
Details

Browse Source
This commit is contained in:
MichaelFisher1997
2026-04-23 22:09:45 +00:00
parent 869880c152
commit 6e22bd26b3
1 changed files with 19 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitea/workflows/deploy.yml
+19 -3
View File
@@ -266,6 +266,14 @@ jobs:
done done
} }
eso_diagnostics() {
kubectl -n flux-system get kustomizations,helmrepositories,helmcharts,helmreleases || true
kubectl -n flux-system describe kustomization addon-external-secrets || true
kubectl -n flux-system describe helmrepository external-secrets || true
kubectl -n flux-system describe helmrelease external-secrets || true
kubectl -n external-secrets get pods -o wide || true
}
kubectl create namespace flux-system --dry-run=client -o yaml | kubectl apply -f - kubectl create namespace flux-system --dry-run=client -o yaml | kubectl apply -f -
ssh-keyscan -p "${FLUX_GIT_PORT}" "${FLUX_GIT_HOST}" > /tmp/flux_known_hosts ssh-keyscan -p "${FLUX_GIT_PORT}" "${FLUX_GIT_HOST}" > /tmp/flux_known_hosts
kubectl -n flux-system create secret generic flux-system \ kubectl -n flux-system create secret generic flux-system \
@@ -291,11 +299,19 @@ jobs:
flux_rollout_status helm-controller flux_rollout_status helm-controller
kubectl -n flux-system wait --for=condition=Ready gitrepository/platform --timeout=300s kubectl -n flux-system wait --for=condition=Ready gitrepository/platform --timeout=300s
kubectl -n flux-system wait --for=condition=Ready kustomization/infrastructure --timeout=600s kubectl -n flux-system wait --for=condition=Ready kustomization/infrastructure --timeout=600s
# Wait for ESO objects to be created before waiting on their conditions # Wait directly on the ESO Helm objects; Kustomization readiness hides useful failure details.
wait_for_resource flux-system kustomization.kustomize.toolkit.fluxcd.io/addon-external-secrets 600 wait_for_resource flux-system kustomization.kustomize.toolkit.fluxcd.io/addon-external-secrets 600
kubectl -n flux-system wait --for=condition=Ready kustomization/addon-external-secrets --timeout=900s kubectl -n flux-system annotate kustomization/addon-external-secrets reconcile.fluxcd.io/requestedAt="$(date +%s)" --overwrite
wait_for_resource flux-system helmrepository.source.toolkit.fluxcd.io/external-secrets 600
if ! kubectl -n flux-system wait --for=condition=Ready helmrepository/external-secrets --timeout=900s; then
eso_diagnostics
exit 1
fi
wait_for_resource flux-system helmrelease.helm.toolkit.fluxcd.io/external-secrets 600 wait_for_resource flux-system helmrelease.helm.toolkit.fluxcd.io/external-secrets 600
kubectl -n flux-system wait --for=condition=Ready helmrelease/external-secrets --timeout=900s if ! kubectl -n flux-system wait --for=condition=Ready helmrelease/external-secrets --timeout=1800s; then
eso_diagnostics
exit 1
fi
wait_for_resource "" crd/clustersecretstores.external-secrets.io 900 wait_for_resource "" crd/clustersecretstores.external-secrets.io 900
wait_for_resource "" crd/externalsecrets.external-secrets.io 900 wait_for_resource "" crd/externalsecrets.external-secrets.io 900
kubectl wait --for=condition=established --timeout=600s crd/clustersecretstores.external-secrets.io kubectl wait --for=condition=established --timeout=600s crd/clustersecretstores.external-secrets.io