refactor: move cert-manager and clusterissuer 'letsencrypt-prod' to universal (multi-cluster)

clusters/cherry/apps/cert-manager.yaml

@@ -1,37 +0,0 @@
-apiVersion: argoproj.io/v1alpha1
-kind: Application
-metadata:
-  name: cherry-cert-manager
-  namespace: argocd
-spec:
-  project: infrastructure
-  syncPolicy:
-    automated:
-      prune: true
-      selfHeal: true
-    syncOptions:
-      - CreateNamespace=true
-  destination:
-    server: https://kubernetes.default.svc
-    namespace: cert-manager
-  source:
-    chart: cert-manager
-    repoURL: https://charts.jetstack.io
-    targetRevision: 1.13.1
-    helm:
-      releaseName: cert-manager
-      valuesObject:
-        installCRDs: true
-        featureGates: "AdditionalCertificateOutputFormats=true"
-        strategy:
-          type: RollingUpdate
-          rollingUpdate:
-            maxSurge: 1
-            maxUnavailable: 0
-        webhook:
-          featureGates: "AdditionalCertificateOutputFormats=true"
-          strategy:
-            type: RollingUpdate
-            rollingUpdate:
-              maxSurge: 1
-              maxUnavailable: 0

clusters/cherry/apps/clusterissuer.yaml

@@ -1,18 +0,0 @@
-apiVersion: argoproj.io/v1alpha1
-kind: Application
-metadata:
-  name: cherry-clusterissuer
-  namespace: argocd
-spec:
-  project: infrastructure
-  syncPolicy:
-    automated:
-      prune: true
-      selfHeal: true
-  destination:
-    server: https://kubernetes.default.svc
-    namespace: default
-  source:
-    path: clusters/cherry/manifests/clusterissuer/
-    repoURL: https://github.com/vojtechmares/gitops.git
-    targetRevision: HEAD

universal/cert-manager.yaml

@@ -0,0 +1,48 @@
+apiVersion: argoproj.io/v1alpha1
+kind: ApplicationSet
+metadata:
+  name: universal-cert-manager
+  annotations:
+    argocd.argoproj.io/sync-wave: "1"
+spec:
+  generators:
+    - list:
+        elements:
+          - cluster: cherry
+            url: https://kubernetes.default.svc
+  syncPolicy:
+    applicationsSync: create-update
+    preserveResourcesOnDeletion: true
+  template:
+    metadata:
+      name: "{{cluster}}-cert-manager"
+    spec:
+      project: infrastructure
+      syncPolicy:
+        automated:
+          prune: true
+          selfHeal: true
+        syncOptions:
+          - CreateNamespace=true
+      source:
+        chart: cert-manager
+        repoURL: https://charts.jetstack.io
+        targetRevision: 1.13.1
+        helm:
+          releaseName: cert-manager
+          valuesObject:
+            installCRDs: true
+            strategy:
+              type: RollingUpdate
+              rollingUpdate:
+                maxSurge: 1
+                maxUnavailable: 0
+            webhook:
+              strategy:
+                type: RollingUpdate
+                rollingUpdate:
+                  maxSurge: 1
+                  maxUnavailable: 0
+      destination:
+        server: "{{url}}"
+        namespace: cert-manager

universal/clusterissuer.yaml

@@ -0,0 +1,31 @@
+apiVersion: argoproj.io/v1alpha1
+kind: ApplicationSet
+metadata:
+  name: universal-clusterissuer
+  annotations:
+    argocd.argoproj.io/sync-wave: "2"
+spec:
+  generators:
+    - list:
+        elements:
+          - cluster: cherry
+            url: https://kubernetes.default.svc
+  syncPolicy:
+    applicationsSync: create-update
+    preserveResourcesOnDeletion: true
+  template:
+    metadata:
+      name: "{{cluster}}-http-clusterissuer"
+    spec:
+      project: infrastructure
+      syncPolicy:
+        automated:
+          prune: true
+          selfHeal: true
+      source:
+        path: clusterissuer/
+        repoURL: https://github.com/vojtechmares/gitops.git
+        targetRevision: HEAD
+      destination:
+        server: "{{url}}"
+        namespace: default