argo-cd/docs/user-guide/auto_sync.md

# Automated Sync Policy

Argo CD has the ability to automatically sync an application when it detects differences between
the desired manifests in Git, and the live state in the cluster. A benefit of automatic sync is that
CI/CD pipelines no longer need direct access to the Argo CD API server to perform the deployment.
Instead, the pipeline makes a commit and push to the Git repository with the changes to the
manifests in the tracking Git repo.

To configure automated sync run:
```bash
argocd app set <APPNAME> --sync-policy automated
```

Alternatively, if creating the application an application manifest, specify a syncPolicy with an
`automated` policy.
```yaml
spec:
  syncPolicy:
    automated: {}
```

## Automatic Pruning

By default (and as a safety mechanism), automated sync will not delete resources when Argo CD detects
the resource is no longer defined in Git. To prune the resources, a manual sync can always be
performed (with pruning checked). Pruning can also be enabled to happen automatically as part of the
automated sync by running:

```bash
argocd app set <APPNAME> --auto-prune
```

Or by setting the prune option to true in the automated sync policy:

```yaml
spec:
  syncPolicy:
    automated:
      prune: true
```

## Automatic Pruning with Allow-Empty (v1.8)

By default (and as a safety mechanism), automated sync with prune have a protection from any automation/human errors 
when there are no target resources. It prevents application from having empty resources. To allow applications have empty resources, run:

```bash
argocd app set <APPNAME> --allow-empty
```

Or by setting the allow empty option to true in the automated sync policy:

```yaml
spec:
  syncPolicy:
    automated:
      prune: true
      allowEmpty: true
```

## Automatic Self-Healing
By default, changes that are made to the live cluster will not trigger automated sync. To enable automatic sync 
when the live cluster's state deviates from the state defined in Git, run:

```bash
argocd app set <APPNAME> --self-heal
```

Or by setting the self heal option to true in the automated sync policy:

```yaml
spec:
  syncPolicy:
    automated:
      selfHeal: true
```

## Automated Sync Semantics

* An automated sync will only be performed if the application is OutOfSync. Applications in a
  Synced or error state will not attempt automated sync.
* Automated sync will only attempt one synchronization per unique combination of commit SHA1 and
  application parameters. If the most recent successful sync in the history was already performed
  against the same commit-SHA and parameters, a second sync will not be attempted, unless `selfHeal` flag is set to true.
* If `selfHeal` flag is set to true then sync will be attempted again after self heal timeout (5 seconds by default)
which is controlled by `--self-heal-timeout-seconds` flag of `argocd-application-controller` deployment.
* Automatic sync will not reattempt a sync if the previous sync attempt against the same commit-SHA
  and parameters had failed.

* Rollback cannot be performed against an application with automated sync enabled.
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			`# Automated Sync Policy`

Make Argo CD naming consistent (#694) * Make Argo CD naming consistent * Change ArgoCD to Argo CD on new lines 2018-11-05 19:29:01 +00:00			`Argo CD has the ability to automatically sync an application when it detects differences between`
Create docs website (#1387) Closes #1390 2019-04-05 22:12:27 +00:00			`the desired manifests in Git, and the live state in the cluster. A benefit of automatic sync is that`
Make Argo CD naming consistent (#694) * Make Argo CD naming consistent * Change ArgoCD to Argo CD on new lines 2018-11-05 19:29:01 +00:00			`CI/CD pipelines no longer need direct access to the Argo CD API server to perform the deployment.`
Create docs website (#1387) Closes #1390 2019-04-05 22:12:27 +00:00			`Instead, the pipeline makes a commit and push to the Git repository with the changes to the`
			`manifests in the tracking Git repo.`
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00
			`To configure automated sync run:`
			```bash
Make Argo CD naming consistent (#694) * Make Argo CD naming consistent * Change ArgoCD to Argo CD on new lines 2018-11-05 19:29:01 +00:00			`argocd app set <APPNAME> --sync-policy automated`
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			```

			`Alternatively, if creating the application an application manifest, specify a syncPolicy with an`
			`automated` policy.
			```yaml
			`spec:`
			`syncPolicy:`
			`automated: {}`
			```

			`## Automatic Pruning`

Make Argo CD naming consistent (#694) * Make Argo CD naming consistent * Change ArgoCD to Argo CD on new lines 2018-11-05 19:29:01 +00:00			`By default (and as a safety mechanism), automated sync will not delete resources when Argo CD detects`
Create docs website (#1387) Closes #1390 2019-04-05 22:12:27 +00:00			`the resource is no longer defined in Git. To prune the resources, a manual sync can always be`
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			`performed (with pruning checked). Pruning can also be enabled to happen automatically as part of the`
			`automated sync by running:`

			```bash
			`argocd app set <APPNAME> --auto-prune`
			```

			`Or by setting the prune option to true in the automated sync policy:`

			```yaml
			`spec:`
			`syncPolicy:`
			`automated:`
			`prune: true`
feat(ui): add docs to sync policy options present in create application panel (Close #3098) (#3203) * feat(ui): document sealHeal & pruneResources options in create-application panel * fix(ui): re-order import statements in application-create-panel.tsx * docs: correct a typo in user guide auto_sync.md * docs: document Automatic Self-Healing in user guide auto_sync.md * docs: add v1.4.3 changelog * fix: capitalize git word * docs: update CHANGELOG * docs: remove CHANGELOG update 2020-03-07 17:03:15 +00:00			```

feat: autosync protection (#4475) * feat: autosync protection * feat: autosync protection - update doc * feat: autosync protection - update doc with version 2020-10-07 04:10:50 +00:00			`## Automatic Pruning with Allow-Empty (v1.8)`

			`By default (and as a safety mechanism), automated sync with prune have a protection from any automation/human errors`
			`when there are no target resources. It prevents application from having empty resources. To allow applications have empty resources, run:`

			```bash
			`argocd app set <APPNAME> --allow-empty`
			```

			`Or by setting the allow empty option to true in the automated sync policy:`

			```yaml
			`spec:`
			`syncPolicy:`
			`automated:`
			`prune: true`
			`allowEmpty: true`
			```

feat(ui): add docs to sync policy options present in create application panel (Close #3098) (#3203) * feat(ui): document sealHeal & pruneResources options in create-application panel * fix(ui): re-order import statements in application-create-panel.tsx * docs: correct a typo in user guide auto_sync.md * docs: document Automatic Self-Healing in user guide auto_sync.md * docs: add v1.4.3 changelog * fix: capitalize git word * docs: update CHANGELOG * docs: remove CHANGELOG update 2020-03-07 17:03:15 +00:00			`## Automatic Self-Healing`
			`By default, changes that are made to the live cluster will not trigger automated sync. To enable automatic sync`
			`when the live cluster's state deviates from the state defined in Git, run:`

			```bash
			`argocd app set <APPNAME> --self-heal`
			```

			`Or by setting the self heal option to true in the automated sync policy:`

			```yaml
			`spec:`
			`syncPolicy:`
			`automated:`
Issue #1736 - Auto-sync should support self-healing option (#1990) 2019-07-25 02:26:09 +00:00			`selfHeal: true`
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			```

			`## Automated Sync Semantics`

			`* An automated sync will only be performed if the application is OutOfSync. Applications in a`
			`Synced or error state will not attempt automated sync.`
			`* Automated sync will only attempt one synchronization per unique combination of commit SHA1 and`
			`application parameters. If the most recent successful sync in the history was already performed`
Issue #1736 - Auto-sync should support self-healing option (#1990) 2019-07-25 02:26:09 +00:00			against the same commit-SHA and parameters, a second sync will not be attempted, unless `selfHeal` flag is set to true.
			* If `selfHeal` flag is set to true then sync will be attempted again after self heal timeout (5 seconds by default)
feat(ui): add docs to sync policy options present in create application panel (Close #3098) (#3203) * feat(ui): document sealHeal & pruneResources options in create-application panel * fix(ui): re-order import statements in application-create-panel.tsx * docs: correct a typo in user guide auto_sync.md * docs: document Automatic Self-Healing in user guide auto_sync.md * docs: add v1.4.3 changelog * fix: capitalize git word * docs: update CHANGELOG * docs: remove CHANGELOG update 2020-03-07 17:03:15 +00:00			which is controlled by `--self-heal-timeout-seconds` flag of `argocd-application-controller` deployment.
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			`* Automatic sync will not reattempt a sync if the previous sync attempt against the same commit-SHA`
			`and parameters had failed.`
Issue #1736 - Auto-sync should support self-healing option (#1990) 2019-07-25 02:26:09 +00:00
Update documentation with auto-sync and projects (issue #521) (#616) 2018-09-24 22:27:30 +00:00			`* Rollback cannot be performed against an application with automated sync enabled.`