Weave GitOps 2022.09 Features Launch Event
The latest release of Weave GitOps introduces new features enabling progressive delivery, policy as code, and accelerated application onboarding.
Weave GitOps is the leading full-stack GitOps platform to automate trusted application delivery and secure infrastructure operations on premise, in the cloud and at the edge. Trusted by Customers, including Deutsche Telekom and The Department of Defense, Platform and Application Teams, Weave GitOps unlocks the benefits of increased efficiency and compliance, while boosting deployment velocity and confidence.
Join us where we’ll do a live demo of Weave GitOps showcasing:
- Advanced Deployment Patterns—Progressive Delivery has never been easier
- Multi-tenancy and Application Portability—More collaboration and control
- Strengthened GitOps Security—If you can code it, you can secure it.
Weave GitOps 2022.09 Release: A Fast & Reliable Path to Production with Progressive Delivery & Policy as Code
1. 1
Confidential do not distribute
A Fast & Reliable Path to
Production with
Progressive Delivery &
Policy as Code
Weave GitOps 2022.09 Launch Event
2. 2
2
Webinar Platform - FAQs
Using Zoom
• You are in listen only mode
• This webinar is being recorded
• Q&A session will follow the presentation, please use the Q&A panel to
submit questions
• Hit escape to exit full screen
• Slides and recording will be shared after the webinar
Technical Issues - please visit Zoom Help
https://support.zoom.us/hc/en-us/articles/206175806-Top-Questions
3. 3
Confidential do not distribute 3
Weave GitOps is a continuous operations product that makes it easy to
deploy and manage Kubernetes clusters and applications at scale in any
environment.
Built on Flux it provides continuous application delivery while enhancing
security and accelerating software delivery lifecycle.
Weave GitOps Overview
4. 4
Confidential do not distribute 4
● Part 1: Team Workspaces. Multi-tenancy.
● Part 2: Trusted Delivery. Policy as code.
● Part 3: GitOps Run1
. Making the “inner loop making” easy.
● Part 4: Progressive delivery. Deploy safely.
What’s New in Weave GitOps Enterprise?
1 - Technology preview
6. 6
Confidential do not distribute 6
Team Workspaces
Team Workspaces gives the power to define:
● Access to sources ( Git repos, Helm repos, Buckets etc )
● Access to targets ( Cluster + namespaces )
● Definition of what can get deployed ( examples: Roles, Network Policies, Deployments, ... )
● Use/set the correct Service Account and Role + Rolebindings
7. 7
Confidential do not distribute 7
● Enables multiple DevOps teams to work seamlessly together
● Enables DevOps teams to focus on their area of concern
● Protects sensitive environments
Why Team Workspaces?
8. 8
Confidential do not distribute 8
Team Workspaces Definition
Namespace
Policy
Role
RoleBinding
9. 9
Confidential do not distribute 9
● Platform teams can set safer perimeters for application teams.
● The tenancy is built on Flux’s tenancy model which is used by major cloud providers. This
expands and strengthens their model.
● Engineering teams will have all policies generated for them along with Kubernetes resources
(e.g. rolebindings, service accounts, etc.)
● Teams can filter and view resources based on the assigned tenant.
Workspaces +
12. 12
Confidential do not distribute 12
● Gives DevOps engineers the freedom to ship new features and fixes faster
● Guarantees security, resilience and coding standards
● Removes bottlenecks caused by manual review / approval
Part 2. Trusted Delivery
13. 13
Confidential do not distribute 13
Part 2. Trusted Delivery through Policy as Code
Properly Configured
● App Configurations won’t
break
● Adherence with the
organization operational
rules (Consistent labels /
annotations, replica
counts, resource quotas)
Secure
● Fine-grained access
control through tenancy
● Prevent vulnerable
configurations
● Trusted Artifacts
Follow Industry Standards
● Cloud-native and GitOps
security standards
● Security and Compliance
Benchmarks (HIPAA,
PCI-DSS, etc.)
Not only provides fast application delivery, but also delivers them in a way that is:
14. 14
Confidential do not distribute 14
● Security, resilience & coding standards
● Shift left
● Curated library of 100+ policies
● SOC II, PCI-DSS, HIPAA, MITRE-ATTACK
● Perform checks throughout SDLC
● Automatic remediation
● Break down manual check bottlenecks
Policy as Code in Weave GitOps
17. 17
Confidential do not distribute 17
● Quickly on board clusters into Weave GitOps continuous deployment
● Rapidly iterate changes during development
● Rapidly iterate changes during troubleshooting
GitOps Run
18. 18
Confidential do not distribute 18
GitOps Run
● Engineers can get started quickly with a simple
onboarding process for getting Flux and Weave
GitOps installed.
● Engineers can quickly toggle between GitOps and
near real-time iterative development, saving time.
● Platform operators can preview changes and verify it
will work on a cluster before merging changes.
● Great debugging and development experience!
21. 21
Confidential do not distribute 21
● Reduce risk when deploying new features and fixes
into Production
● Only expose a small percentage of traffic to the new
release
● SLO analysis with metrics from Observability tools
○ Prometheus
○ Datadog
○ New Relic
● Automatic promotion / rollback
● Canary, Blue/Green, A/B Testing
● Built on Flagger
Progressive Delivery
22. 22
Confidential do not distribute 22
● Teams can deliver software faster with automated
gates and checks. If they fail, automatically roll back.
● Easy to configure with one simple file.
● Application teams can choose their deployment
strategy such as Canary or Blue/Green.
● Teams can be notified on success or if things go
wrong and a roll back occurred via Slack, MS Teams,
…
● Platform operators can create templates requiring
progressive delivery deployments into application
teams workflows.
Progressive Delivery