Warning: resource argocds/openshift-gitops is missing the kubectl.kubernetes.io/last-applied-configuration annotation which is required by oc apply. oc apply should only be used on resources created declaratively by either oc create --save-config or oc apply. The missing annotation will be patched automatically.
- Operator Subscription also creates openshift-gitops namespace and an ArgoCD instance.
oc apply -k bootstrap/openshift-gitops/operator- To allow Argo CD to manage resources in other namespaces apart from where it is installed, configure the target namespace with a argocd.argoproj.io/managed-by label. Automatically assigns required roles.
oc label namespace <namespace> argocd.argoproj.io/managed-by=<instance_name> - To allow Argo CD to manage OpenShift cluster resources (operators.coreos.com, user.openshift.io, rbac.authorization.k8s.io, config.openshift.io, storage.k8s.io, console.openshift.io) modify subscription with ARGOCD_CLUSTER_CONFIG_NAMESPACES environment variable. Argo CD is not granted cluster-admin.
Cannot manage cert-manager.io/v1
- Assign cluster-admin role.
oc apply -k bootstrap/openshift-gitops/instance --server-side=true
oc apply -f bootstrap/clusters/defaultssh centos-streams-root "openssl s_client -showcerts -connect api.ocp4.ypolat.me:6443 2>/dev/null </dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > ca.cert"
scp centos-streams-root:~/ca.cert /Users/ypolat/Documents/my-cluster/credentials/ca.cert