Your First ArgoCD Application

You've installed ArgoCD and understand its architecture. Now comes the core GitOps practice: creating an Application resource that tells ArgoCD what to sync, where to sync it, and how often to check for changes.

An Application is a Kubernetes Custom Resource Definition (CRD) that acts as a contract between Git and your cluster. When you create an Application, you're saying: "Watch this Git repository for changes. When something changes, apply it to my cluster."

In this chapter, you'll:

1. Understand the Application CRD structure (source, destination, syncPolicy)
2. Create an Application three ways (UI, CLI, declarative YAML)
3. Watch ArgoCD detect your manifests from Git
4. Sync the application to your cluster
5. Monitor sync status (OutOfSync, Synced) and health status (Healthy, Degraded)

By the end, you'll have your Module 6 FastAPI agent running on your cluster, managed by ArgoCD.

The Application CRD: Your GitOps Contract

An Application resource looks like this:

Let's break down each section:

Source: Where to Sync From

repoURL: The Git repository containing your manifests. This can be:

• Public HTTPS: https://github.com/yourname/repo.git
• SSH: git@github.com:yourname/repo.git (requires SSH key in ArgoCD)
• Private HTTPS with credentials (future chapters cover secrets)

path: The directory within the repository containing Kubernetes manifests or Helm charts. Examples:

• k8s/ for plain YAML manifests
• charts/my-app for a Helm chart directory
• . for manifests in the root

targetRevision: Which Git ref to sync from:

• HEAD — Latest on the current branch
• main or master — Latest on main branch
• v1.0.0 — A git tag for versioned releases
• feature/new-config — A specific branch

helm (optional): If syncing a Helm chart, override values without modifying Git:

Destination: Where to Sync To

server: The Kubernetes API server URL:

• https://kubernetes.default.svc — Current cluster (where ArgoCD is running)
• https://other-cluster-api.example.com:6443 — Remote cluster

namespace: The target namespace. ArgoCD creates it if it doesn't exist (with CreateNamespace=true).

Sync Policy: How to Sync

Manual sync (default):

You click "Sync" manually in the UI or run argocd app sync fastapi-agent in the CLI.

Automated sync (this chapter's approach):

prune: If you remove a resource from Git, ArgoCD deletes it from the cluster.

selfHeal: If someone manually edits a resource in the cluster (or it crashes), ArgoCD detects the drift and reapplies the Git state.

Create an Application via the UI

The ArgoCD UI provides a visual way to create applications. This is useful for learning and one-off applications, but production typically uses declarative YAML (GitOps).

Step 1: Access the UI

Make sure you have port-forwarding running (from Chapter 7):

Output:

Navigate to https://localhost:8080 and log in.

Step 2: Click "Create Application"

You'll see an empty Applications list. Click the "+ NEW APP" button in the top right.

A form appears with sections:

1. GENERAL — Application name, project
2. SOURCE — Git repository details
3. DESTINATION — Cluster and namespace
4. SYNC POLICY — Manual or automated

Step 3: Fill in GENERAL

• Application Name: fastapi-agent
• Project: default (you'll learn AppProject in Chapter 11)
• Sync Policy: Choose Automatic (you can change later)

Step 4: Fill in SOURCE

For this chapter, we'll use a public Helm chart as an example. In practice, you'd use your own repository.

• Repository URL: https://github.com/fistasolutions/fastapi-agent-helm.git (public example repo)
• Revision: HEAD
• Path: charts/fastapi-agent

If your repository is private, you'll configure Git credentials in future chapters.

Step 5: Fill in DESTINATION

• Cluster: https://kubernetes.default.svc (your local cluster)
• Namespace: production (ArgoCD creates it with CreateNamespace=true)

Step 6: Configure SYNC POLICY

In the SYNC POLICY section, you'll see checkboxes:

• Prune Resources: Check this (delete removed resources)
• Self Heal: Check this (fix drift)

Then click "CREATE".

ArgoCD now watches your repository. The Application status starts as OutOfSync because the cluster doesn't have the manifests yet.

Step 7: Trigger the First Sync

Click the Application card to view details. You'll see:

• Status: OutOfSync (Git has manifests, cluster doesn't)
• Health: Unknown (no resources deployed yet)

Click "Sync" in the top right. A dialog appears:

• Revision: HEAD (sync the latest)
• Namespace: production

Click "SYNCHRONIZE".

ArgoCD now:

1. Fetches the Git repository
2. Renders the Helm chart
3. Applies manifests to your cluster
4. Updates status to Synced

Watch the UI update. After 30 seconds, the Status changes to Synced and Health updates to Healthy (or Progressing if pods are still starting).

Create an Application via CLI

The CLI approach is faster for experts and enables scripting. You'll use argocd app create.

Step 1: Authenticate the CLI

If you haven't already, authenticate:

Output:

Step 2: Create the Application

Output:

The --auto-prune and --self-heal flags enable automated sync. Without them, sync would be manual.

Step 3: Sync the Application

Output:

Step 4: Check Status

Output:

The Application is now synced and healthy.

Create an Application via Declarative YAML

This is the GitOps way: define your Application as YAML in a Git repository, then apply it with kubectl.

Step 1: Write the Application Manifest

Create a file argocd/fastapi-agent.yaml:

Step 2: Apply the Manifest

Output:

Kubernetes creates the Application resource. The ArgoCD Application Controller detects it and immediately starts syncing.

Step 3: Watch the Sync Progress

Output:

Wait 10-20 seconds:

Output:

Step 4: View Detailed Status

Output:

Your Application is now synced and healthy, managed entirely by GitOps.

Understanding Sync Status

When ArgoCD compares Git with the cluster, it produces a Sync Status.

OutOfSync

What it means: Git has resources that the cluster doesn't have, or Git has removed resources the cluster still has.

Why it happens:

• You just created the Application (first sync not run yet)
• You pushed new manifests to Git
• You removed manifests from Git (and prune is disabled)

How to fix: Click "Sync" in the UI or run argocd app sync <app-name> in the CLI.

Example:

Output:

Syncing

What it means: ArgoCD is actively applying changes to the cluster.

Why it happens:

• You just clicked "Sync"
• Auto-sync detected a Git change and is reconciling

How to monitor: Watch the UI or run:

Synced

What it means: The cluster state matches the Git state. Everything is in sync.

Why it's good: Your cluster is exactly as defined in Git. You have a single source of truth.

Example:

Output:

Understanding Health Status

Sync Status tells you if Git and cluster match. Health Status tells you if the deployed resources are actually working.

Healthy

What it means: All resources are running and reporting healthy. Deployments have desired replicas running, Services have endpoints, StatefulSets are ready.

Example:

Output:

Progressing

What it means: Resources are deploying. Pods are starting, but not all replicas are ready yet.

Why it happens:

• New Deployment was just synced
• Pods are pulling images
• Pods are initializing

How to monitor: This usually resolves within 30-60 seconds. If it stays Progressing for more than 5 minutes, check pod logs:

Degraded

What it means: Resources are deployed but not functioning. Pods are CrashLooping, Services have no endpoints, or Deployments have failed replicas.

Why it happens:

• Image doesn't exist or failed to pull
• Container is crashing
• Liveness probe is failing
• Database connection is broken

How to fix: Check pod logs and events:

Unknown

What it means: ArgoCD hasn't checked health yet, or it can't determine health.

Why it happens:

• Application just created (first health check is 3-5 seconds away)
• Custom resources without health rules
• Network issues between ArgoCD and cluster

How to fix: Wait 10 seconds and refresh. If it stays Unknown, check ArgoCD logs:

Missing

What it means: A resource defined in Git doesn't exist in the cluster.

Why it happens:

• Sync failed
• Prune is disabled and you removed the manifest from Git
• RBAC permissions prevent ArgoCD from creating the resource

How to fix: Trigger a sync or check ArgoCD logs for RBAC errors.

Inspecting the Synced Resources

After your Application is synced, verify the actual resources were created:

Output:

These resources came from the Helm chart that ArgoCD rendered and applied. You can verify this by comparing with Git:

This shows you exactly what ArgoCD rendered before applying.

Application Lifecycle: From Git Change to Cluster

Here's the complete flow when you push changes to Git:

1. Developer Pushes to Git

2. ArgoCD Detects the Change

The Repository Server fetches your repo every 3 seconds (default interval, configurable). When it detects a new commit, the Application status changes to OutOfSync.

3. Auto-Sync (If Enabled)

If you have automated: { enabled: true } in syncPolicy, ArgoCD immediately syncs:

• Renders the Helm chart
• Compares rendered output with current cluster state
• Applies changes

4. Sync Status Updates

Syncing → Synced as changes are applied.

5. Health Check

ArgoCD checks if all resources are healthy (Deployments have desired replicas, Services have endpoints, etc.).

Progressing → Healthy (assuming no errors).

6. Your Service is Updated

Users see the new version. If something breaks, you revert the Git commit and push again. Rollback is just git revert <commit>.

Customizing Source Configuration

Source Type: Plain YAML

If your repository contains plain Kubernetes YAML files (no Helm, no Kustomize):

ArgoCD uses the YAML as-is. No templating.

Source Type: Helm Chart

If you're syncing a Helm chart, specify the chart values:

ArgoCD runs helm template with these values before applying.

Source Type: Kustomize

If your manifests use Kustomize:

ArgoCD runs kustomize build before applying.

Customizing Destination Configuration

Single Cluster (This Chapter)

Multiple Clusters (Chapter 15)

You can register multiple clusters and deploy to them:

ArgoCD then syncs the same manifests to multiple clusters.

---

Reflect on Your Skill

You built a gitops-deployment skill in Chapter 0. Test and improve it based on what you learned.

Test Your Skill

Identify Gaps

Ask yourself:

• Did my skill include health status interpretation (Healthy, Progressing, Degraded)?
• Did it handle sync vs. health status differences?

Improve Your Skill

If you found gaps: