Argo-cd: Ignore existing resources for diffing

Created on 17 Apr 2019 · 8Comments · Source: argoproj/argo-cd

Is your feature request related to a problem? Please describe.
We are using velero (ark) schedule objects to automatically create backups. These backups are themselves objects that are created with an instance label (but in a different namespace) and shown in the application as out-of-sync.

Describe the solution you'd like
I'd like to be able to ignore resources in the cluster to avoid them marking the application as out of sync.

I hope I didn't misunderstand the existing functionality around resource exclusion, but I had no luck finding a solution for this particular problem. Thanks to the maintainers for this great software and all the hard work!

enhancement

Source

archnode

All 8 comments

Would this work for you?

https://argoproj.github.io/argo-cd/operator-manual/declarative-setup/#resource-exclusion

alexec on 17 Apr 2019

I tried various configurations, but as I understand it, resource exclusion as per documentation would still lead to resources not in config, but existing in the cluster marked as out-of-sync, which is the issue I'd like to avoid.

Or ist this unexpected? Maybe I got something wrong.

archnode on 17 Apr 2019

If resource is added to resource.exclusions list then ArgoCD don't even try to check it in the target cluster. I think it should help in your case, but this is rather workaround then solution. Once you add backup resource group/kind into to resource.exclusions the resources should disappear as long as you are not trying to deploy it as part of your application. @archnode Can you please try and let me know if it helped?

alexmt on 17 Apr 2019

This is not the first time we are seeing this issue. Resources labeled with app.kubernetes.io/instance label and without ownerReferences confuses Argo CD. I see couple options to solve it:

use custom annotation instead of app.kubernetes.io/instance label
extend resource exclusion feature and allow to specify exclude resources per application

@jessesuen what do you think

alexmt on 17 Apr 2019

👍1

Thank you for your response: I currently have following resource exclusions entry:

- apiGroups:
  - "*"
  kinds:
  - Backup
  clusters:
  - "*"

Quite loose to avoid namespacing issues, the kind of the resource is "Backup", but resources are still displaying.

archnode on 20 Apr 2019

👍1

I updated to the newest version and the problem seems to have disappeared!

archnode on 7 May 2019

@alexmt is this possible to do this per application?

This is not the first time we are seeing this issue. Resources labeled with app.kubernetes.io/instance label and without ownerReferences confuses Argo CD. I see couple options to solve it:

use custom annotation instead of app.kubernetes.io/instance label

extend resource exclusion feature and allow to specify exclude resources per application

@jessesuen what do you think

abhishekjiitr on 18 Dec 2019

👍1

Thank you for your response: I currently have following resource exclusions entry:
- apiGroups:
  - "*"
  kinds:
  - Backup
  clusters:
  - "*"
Quite loose to avoid namespacing issues, the kind of the resource is "Backup", but resources are still displaying.

- apiGroups:
  - "velero.io"
  kinds:
  - Backup
  clusters:
  - "*"

Works for me as well

Atrax1 on 9 Jan 2020

Was this page helpful?

0 / 5 - 0 ratings

Related issues

Issues with github authentication with Argo-ha setup

chiragthaker · 3Comments

Deploy application on selection of clusters

peterbosalliandercom · 3Comments

Setting proxy in argocd server fails to start

ksaito1125 · 3Comments

Join the CNCF to help gain mind share and publicity

clintberry · 3Comments

ArgoCD fails to create the nginx-ingress webhook

estahn · 3Comments