Carvel ytt Instead Of Helm? A Better Way To Manage Kubernetes Resources?

Ive been a fan of ytt and the other tools in that package for a couple of years now. I much prefer using them to Helm, even tough Helm's UX is better now, its still not good.

Helm + schema.json at the moment covers what I need. The main problem I see with this new tool is you have to change everything you have implemented, and that's usually a lot of work. And probably other tools, like argoCD or Flux are not prepared for that. So, from my point of view I would continue with the Helm standard because it generates less problem with other tools and standard deployment ways.

Another failed attempt

I'd rather like to see something built on top of Helm that makes it more user-friendly. Sort of like a helm compiler/transpiler, which takes simplified YAML and outputs Helm charts/values so Helm can use them. Not sure if I'm the only one with this one, but as a developer, I think this would be the best solution. Simply because Helm is pretty much standard these days, or at least the most widely spread option out there currently. No idea how that compiler/transpiler would look like, though, as I'm not too fond of the Kubernetes internals, but in my Kubernetes-infant-vision it makes sense what I said. Would love to hear Kubernetes experts' opinions on this.
Edit: On second thought, that thing would probably end up being a compiler of a compiler of a compiler at some point, depending on the future of Kubernetes in general. Let's just hope that's not gonna be the case :D

I'll add that topic to my TODO list for one of the upcoming videos. A hint while waiting... The main difference is in the API. That opens new doors that were closed with client-side.

Getting into CNCF should give it a boost. That's great news.

I think that's the most important next step for ytt or Carvel in general. It needs to disassociate itself from Tanzu. That does not mean that it shouldn't be included in Tanzu but that it should become clearer that it's a separate project (or a group of projects) that is not tied or coupled with Tanzu. Otherwise, the adoption is going to keep being low, and that can damage not only the project itself but even Tanzu as a whole (for having some obscure components).

Kapp is already on my todo list :)

Kapp or kapp controller?

@@vrabbi both :)

Awesome! I love them both and this week will have a huge UX improvement release for kapp controller packaging APIs via the kctrl CLI tool

I kept that one for the next video that combines ytt with crossplane :)

@@DevOpsToolkit uuuuh what a tease you are. Combining ytt with crossplane. Sounds super interesting.

Bear in mind that it will be published on the Upbound channel. I'm avoiding crossplane on my personal channel (this one) so that I do not get labeled as biased

Something like cdk8s?

That's actually a very good idea. The major issue with all the similar tools is that none can beat Helm charts in terms of support for third party apps. If someone would come up with a good replacement for helm templates while still being able to use third party charts, we would get a winner.
As a side note, I don't think that Jinja should be part of the solution. It is a free text templating solution while yaml is essentially a data language. It would make sense to treat it as data.

@@DevOpsToolkit That makes complete sense. I've been using helm and pulumi to create/template yamls for me. The issue I always run into is using Helm dependencies are essentially string like objects. As soon as you start changing/overriding some of the values in the values file, you lose the pros of using objects, since those charts you are dependant on are only pulled in runtime.
If we want to create k8s yamls in a proper language, we need to be able to download and manage dependencies so you can run static analysis, linting, etc based on those dependencies. Helm dependencies should, essentially, be treated as interfaces that you implement.

There's more to ytt than is exposed in this vid. As @devopstoolkit is referring to ( in other comments on this vic ) a later vid. will look into this. Think the capability to avoid storing Helm charts locally or in your own chart repo. when you need to customize whatever in x Helm chart because it doesn't support xyz. I've had to customize several Helm charts. E.g. to get Kubernetes services created for exposing a metrics endpoint for Prometheus to scrap. Just as an example. There's more.
Using ytt allows me to use the overlay function of ytt and thereby still be using the upstream helm chart and follow that charts release cycle. Good stuff!

You're right. There is much more to ytt than what I showed. I had to limit the scope to keep the duration reasonable. I might create another one though.

You're right. That is certainly an option, but not a "pretty" one. I heard of some incoming improvements that will make helm+ytt experience much better so I'm waiting for it to be released.

@@DevOpsToolkit is it the YAML ghost you don't like about the solution? I mean what is making it not that pretty?

Initially, there is a feeling that it's doing too much. However, the more I used it, the more it sticks with me. I would say I don't like it but rather that it makes sense only if what we do is complex and that it requires time to wrap ones head around it. It is likely going to become my tool of choice in the future, and only for specific use cases. Right now, I'm still weighting it against jsonnet but, as it stands now, it'll probably get on top.

Have you considered using ArgoCD applicationsets + generator for paramaters?

The post-renderer flag allows the templating engine to be changed

Since Helm was written in Go, choosing Go templates is the default option (not necessarily the best).
Nevertheless, my complaint is that free-text templating is wrong when applied to data language (YAML). Using Jinja instead of Go templates would not be a significant improvement.

@@DevOpsToolkit at.least jinja2 is object based, where go template is string based. Whoever accepted nindent() has no children

Jinja2 is developed for Python. And as Helm is written in Go, so it uses Go templating. I would also prefer Jinja2 over Go templating, but what can we do, right? 🤓

I recently tried it and it was great

Cilium was just released: th-cam.com/video/sfhRFtYbuyo/w-d-xo.html

Normally, you have one ingress controller and as many ingress resources for each service you want to expose. Is that what you're trying to do or... ?

@@DevOpsToolkit I have one aws alb ingress controller on eks and I want one ingress resource for multiple services.

It is possible when using yaml and kubectl cli to deploy ingress object but if you are using one helm chart with multiple service yaml in it then you will get issue like release name is already there kind of error because helm adds annotations like managed by and release name.

What would be the reason for having one ingress resource for multiple services? If you have many, there is still one controller and one ELB (not using ALB but I guess it's the same).

Is that a problem given that resource names are still chosen by you, even though they might be prefixed by chart name, they are still unique.

You can use ytt overlays to modify helm charts.

@@DevOpsToolkit yeah but then I can't use helm for deployment anymore and ytt can't handle go template syntax inside yaml files

That's true. If you are using helm to deploy and not only to define manifests, you need to stick with helm exclusively.

@@DevOpsToolkit I have seen that carvel has an (experimental) terraform provider so I think I will try the post-processing route anyways.

@@zoop2174 You might also want to explore GitOps and ditch deployments with `helm` directly or similar actions.

Don't you think that Helm results in more boilerplate and repetition inherited from Kubernetes itself?