While Telefonistka was initially written to be agnostic of the IaC stack some ArgoCD specific features where added recently, this document describes them.
In most cases users directly manipulate Kubernetes manifests in their DRY form (Helm chart/value files or Kustomize configuration), causing a change to have unexpected results in the rendered manifests. Additionally, the state of the in-cluster objects is not always known in advance which prevents the users from knowing the exact change that will happen in the cluster after merging a PR.
Posting the differences between the cluster objects and the manifests rendered from the PR branch helps the PR author and reviewer better understand the effects of a PR merge.
In cases where the rendered diff output goes over the maximum GitHub comment size limit, Telefonistka will try to split each ArgoCD application diff into a separate comment.
If a single application diff is still bigger that the max comment size, Telefonistka will only list the changed objects instead of showing the entire changed content.
If the list of changed objects pushed the comment size beyond the max size Telefonistka will fail.
Telefonistka can even "diff" new applications, ones that do not yet have an ArgoCD application object (e.g. the application has not been merged to main yet). But this feature is currently implemented in a somewhat opinionated way and only support applications created by ApplicationSets with a Git Directory Generator or a Custom Plugin Generator that accept a Path parameter.
This behavior is gated behind the argocd.createTempAppObjectFromNewApps configuration key.
Example:
Telefonistka checks the state of the ArgoCD application and adds warning for this states:
-
App is "Unhealthy"
-
App is "OutOfSync"
-
auto-syncis not enabled
Example:
While displaying a diff in the PR can catch most templating issues, sometime testing a change in a non production environment is needed. If you want to test the configuration before merging the PR you can selectively allow a PR that manipulate files in specific folders to include the Set ArgoCD apps Target Revision to <Pull Request Branch> checkbox.
If the checkbox is marked Telefonistka will set the ArgoCD application object /spec/source/targetRevision key to the PR branch. If you have auto-sync enabled ArgoCD will sync the workload object from the branch.
On PR merge, Telefonistka will revert /spec/source/targetRevision back to the main branch.
Note
As of the time of this writing, Telefonistka will not revert /spec/source/targetRevision to the main branch when you uncheck the checkbox, only on PR merge.
This feature is gated with the argocd.allowSyncfromBranchPathRegex configuration key.
This example configuration will enable synchronising from a non-main branch feature for PRs that only manipulate files under the env/staging/ folder:
argocd:
allowSyncfromBranchPathRegex: '^env/staging/.*$'Note
The ApplicationSet controller might need to be configured to ignore changes to this specific key, like so:
spec:
ignoreApplicationDifferences:
- jsonPointers:
- /spec/source/targetRevisionWhen Telefonistka promote a change it copies the component folder in its entirety. This can lead to situations where a promotion PR is opened but does not affect a promotion target, either because the nature of the change (whitespace/doc) or because the resulting rendered manifests does not change for the target clusters (like when you change a target-specific Helm value/Kustomize configuration).
In those cases Telefonistka can auto-merge the promotion PR, saving the effort of merging the PR and preventing future changes from getting an environment drift warning (TODO link).
This behavior is gated behind the argocd.autoMergeNoDiffPRs configuration key.
While not strictly an "ArgoCD feature" Telefonistka's ability to proxy webhooks can provide greater flexibility in configuration and securing webhook delivery to ArgoCD server and the ApplicationSet controller, see here