What is GitOps?

While much of the software development lifecycle has been automated, infrastructure has remained a largely manual process that requires specialized teams. With the demands made on today’s infrastructure, it has become increasingly crucial to implement infrastructure automation. Modern infrastructure needs to be elastic so that it can effectively manage cloud resources that are needed for continuous deployments.

Modern and cloud native applications are developed with speed and scale in mind. Organizations with a mature DevOps culture can deploy code to production hundreds of times per day. DevOps teams can accomplish this through development best practices such as version control, code review, and CI/CD pipelines that automate testing and deployments.

GitOps is used to automate the process of provisioning infrastructure, especially modern cloud infrastructure. Similar to how teams use application source code, operations teams that adopt GitOps use configuration files stored as code (infrastructure as code). GitOps configuration files generate the same infrastructure environment every time it’s deployed, just as application source code generates the same application binaries every time it’s built.

GitOps is not a single product, plugin, or platform. There is no one-size-fits-all answer to this question, as the best way for teams to put GitOps into practice will vary depending on the specific needs and goals of the team. However, some tips on how to get started with GitOps include using a dedicated GitOps repository for all team members to share configurations and code, automating the deployment of code changes, and setting up alerts to notify the team when changes occur.

GitOps requires three core components:

IaC:

GitOps uses a Git repository as the single source of truth for infrastructure definitions. Git is an open source version control system that tracks code management changes, and a Git repository is a .git folder in a project that tracks all changes made to files in a project over time. Infrastructure as code (IaC) is the practice of keeping all infrastructure configuration stored as code. The actual desired state may or may not be not stored as code (e.g., number of replicas or pods).

MRs:

GitOps uses merge requests (MRs) or pull requests (PRs) as the change mechanism for all infrastructure updates. The MR or PR is where teams can collaborate via reviews and comments and where formal approvals take place. A merge commits to your main (or trunk) branch and serves as an audit log or audit trail.

CI/CD:

GitOps automates infrastructure updates using a Git workflow with continuous integration and continuous delivery (CI/CD). When new code is merged, the CI/CD pipeline enacts the change in the environment. Any configuration drift, such as manual changes or errors, is overwritten by GitOps automation so the environment converges on the desired state defined in Git. GitLab uses CI/CD pipelines to manage and implement GitOps automation, but other forms of automation, such as definitions operators, can be used as well.

With any collaborative effort, change can be tricky and GitOps is no exception. GitOps is a process change that will require discipline from all participants and a commitment to doing things in a new way. It is vital for teams to write everything down.

GitOps allows for greater collaboration, but that is not necessarily something that comes naturally for some individuals or organizations. A GitOps approval process means that developers make changes to the code, create a merge request, an approver merges these changes, and the change is deployed. This sequence introduces a “change by committee” element to infrastructure, which can seem tedious and time-consuming to engineers used to making quick, manual changes.

It is important for everyone on the team to record what’s going on in merge requests and issues. The temptation to edit something directly in production or change something manually is going to be difficult to suppress, but the less “cowboy engineering” there is, the better GitOps will work.

There are many benefits of GitOps, including improved efficiency and security, a better developer experience, reduced costs, and faster deployments.

With GitOps, organizations can manage their entire infrastructure and application development lifecycle using a single, unified tool. This allows for greater collaboration and coordination between teams and results in fewer errors and faster problem resolution.

In addition, GitOps can help organizations take advantage of containers and microservices and maintain consistency across all their infrastructure — from Kubernetes cluster configurations and Docker images to cloud instances and anything on-prem.

There are a few key differences between GitOps and DevOps. For one, GitOps relies heavily on automation and tooling to manage and deploy code changes, while DevOps focuses more on communication and collaboration between teams. Additionally, GitOps is typically used in conjunction with containerization technologies like Kubernetes, while DevOps can be used with any type of application.

GitOps is a branch of DevOps that focuses on using Git code repositories to manage infrastructure and application code deployments. The main difference between the two is that in GitOps, the Git repository is the source of truth for the deployment state, while in DevOps, it is the application or server configuration files.

A GitOps workflow refers to a systematic and version-controlled approach to infrastructure and application management. Imagine it as treating your system operations with the same rigor you expect from your codebase. In GitOps, Git repositories serve as the single source of truth for system and infrastructure configurations.

Changes to configurations are made through pull requests, ensuring peer reviews and audit trails for updates. Automated tools implement these changes, allowing for consistent and reproducible deployments. This methodology enables high velocity, empowers collaboration among team members, and heightens operational efficiencies through clear documentation and traceability.

Key components of a GitOps workflow

A GitOps workflow is built around four fundamental components, each playing a vital role in streamlining the deployment and management of applications.

1. Git Repository: This serves as the foundational element, acting as the central source of truth for both the application's code and its configuration. By storing all critical information in the Git repository, teams ensure consistency and transparency across the development lifecycle.

2. Continuous Delivery (CD) Pipeline: The CD pipeline automates the processes of building, testing, and deploying the application. It bridges the gap between code development and deployment, facilitating a smooth transition from development to production environments while ensuring that the application meets quality standards.

3. Application Deployment Tool: This tool takes charge of deploying the application into the desired environment. It handles the orchestration and management of application resources, ensuring that the application is deployed correctly and efficiently according to the configurations defined in the Git repository.

4. Monitoring System: Essential for maintaining application health, the monitoring system keeps a vigilant eye on application performance. It gathers data and provides the development team with actionable insights and feedback, enabling them to make informed decisions and quickly address any issues that may arise.

Together, these components create a cohesive GitOps workflow that not only enhances the efficiency and reliability of application deployments but also aligns with modern DevOps practices by emphasizing automation, monitoring, and continuous improvement.