You are viewing documentation for Flux version: 2.5

Version 2.5 of the documentation is no longer actively maintained. The site that you are currently viewing is an archived snapshot. For up-to-date documentation, see the latest version.

Flux OpenShift installation

How to configure Flux for OpenShift

Required permissions

To bootstrap Flux, the person running the command must have cluster admin rights for the target OpenShift cluster. It is also required to prepare a Git repository as described in the bootstrap customization.

First copy the scc.yaml to the flux-system directory. This manifest contains the RBAC necessary to allow the Flux controllers to run as non-root on OpenShift.

Then add the scc.yaml and the following patches to the flux-system kustomization.yaml:

apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization resources:  - gotk-components.yaml  - gotk-sync.yaml  - scc.yaml patches:  - patch: |  apiVersion: apps/v1  kind: Deployment  metadata:  name: all  spec:  template:  spec:  securityContext:  $patch: delete  containers:  - name: manager  securityContext:  runAsUser: 65534  seccompProfile:  $patch: delete  target:  kind: Deployment  labelSelector: app.kubernetes.io/part-of=flux  - patch: |-  - op: remove  path: /metadata/labels/pod-security.kubernetes.io~1warn  - op: remove  path: /metadata/labels/pod-security.kubernetes.io~1warn-version  target:  kind: Namespace  labelSelector: app.kubernetes.io/part-of=flux

Finally, push the changes to the Git repository and run flux bootstrap.

Last modified 2024-04-17: Update OpenShift bootstrap instruction (f162da7)