Getting Started

Setting up Welkin consists of two parts: setting up at least two vanilla Kubernetes clusters and deploying compliantkubernetes-apps on top of them.

Pre-requisites for Creating Vanilla Kubernetes clusters

In theory, any vanilla Kubernetes cluster can be used for Welkin. We suggest the Kubespray way. To this end, you need:

• Git
• Python3 pip
• Terraform
• Ansible
• pwgen

Ansible is best installed as follows:

git clone --recursive https://github.com/elastisys/compliantkubernetes-kubespray
cd compliantkubernetes-kubespray
pip3 install -r kubespray/requirements.txt

Optional: For debugging, you may want CLI tools to interact with your chosen Infrastructure Provider:

• AWS CLI
• Exoscale CLI
• OpenStack Client
• VMware vSphere CLI (govmomi)

Pre-requisites for Welkin Apps

Install pre-requisites for Welkin Apps:

git clone https://github.com/elastisys/compliantkubernetes-apps
cd compliantkubernetes-apps
./bin/ck8s install-requirements

Misc

Welkin relies on SSH for accessing Nodes. If you haven't already done so, generate an SSH key as follows:

ssh-keygen

Configuration secrets in Welkin are encrypted using SOPS. We currently only support using PGP when encrypting secrets. If you haven't already done so, generate your own PGP key as follows:

gpg --full-generate-key