Kuadrant · didierofrivia · Jan 22, 2025 · Feb 5, 2025 · Feb 18, 2025 · Feb 4, 2025
@@ -0,0 +1,138 @@
+name: Automated Release Operator
+
+on:
+  workflow_dispatch:
+    inputs:
+      gitRef:
+        description: Commit SHA, tag or branch name (usually main branch)
+        required: true
+        default: "main"
+        type: string
+      kuadrantOperatorVersion:
+        description: Kuadrant Operator version (semver)
+        default: 0.0.0
+        type: string
+      authorinoOperatorVersion:
+        description: Authorino Operator bundle version (semver)
+        default: 0.0.0
+        type: string
+      limitadorOperatorVersion:
+        description: Limitador Operator bundle version (semver)
+        default: 0.0.0
+        type: string
+      dnsOperatorVersion:
+        description: DNS Operator bundle version (semver)
+        default: 0.0.0
+        type: string
+      wasmShimVersion:
+        description: WASM Shim version (semver)
+        default: 0.0.0
+        type: string
+      consolePluginVersion:
+        description: ConsolePlugin version (semver)
+        default: 0.0.0
+        type: string
+      olmChannel:
+        description: OLM channel
+        required: false
+        type: string
+        default: "stable"
+
+jobs:
+  auto-release:
+    name: Release operator
+    runs-on: ubuntu-latest
+    steps:
+      - name: Set up Go 1.22.x
+        uses: actions/setup-go@v4
+        with:
+          go-version: 1.22.x
+        id: go
+      - name: Checkout code at git ref
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.inputs.gitRef }}
+          token: ${{ secrets.KUADRANT_WORKFLOWS_PAT }}
+
+      - name: Install gettext-base
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y gettext-base
+
+      - name: Install yq tool
+        run: |
+          make yq
+
+      - name: Create release branch(es)
+        id: create-release-branch
+        shell: bash
+        run: |
+          base_branch=release-v$(echo "${{ github.event.inputs.kuadrantOperatorVersion }}" | sed 's/[+-].*//; s/\.[0-9]*$//')
+          echo BASE_BRANCH=$base_branch >> $GITHUB_ENV
+
+          if git ls-remote --exit-code --heads origin $base_branch ; then
+            echo "Base branch $base_branch already exists"
+          else
+            echo Creating branch "$base_branch"
+            git checkout -b "$base_branch"
+            git push --set-upstream origin "$base_branch"
+          fi
+
+      - name: Prepare release
+        id: prepare-release
+        run: |
+          echo "Updating release.yaml with desired versions"
+
+          VERSION=${{ github.event.inputs.kuadrantOperatorVersion }} \
+          AUTHORINO_OPERATOR_VERSION=${{ github.event.inputs.authorinoOperatorVersion }} \
+          DNS_OPERATOR_VERSION=${{ github.event.inputs.dnsOperatorVersion }} \
+          LIMITADOR_OPERATOR_VERSION=${{ github.event.inputs.limitadorOperatorVersion }} \
+          CONSOLE_PLUGIN_VERSION=${{ github.event.inputs.consolePluginVersion }} \
+          WASM_SHIM_VERSION=${{ github.event.inputs.wasmShimVersion }} \
+          OLM_CHANNEL=${{ github.event.inputs.olmChannel }} \
+          yq eval '(.kuadrant-operator.version = strenv(VERSION)) |
+            (.dependencies.authorino-operator = strenv(AUTHORINO_OPERATOR_VERSION)) |
+            (.dependencies.dns-operator = strenv(DNS_OPERATOR_VERSION)) |
+            (.dependencies.limitador-operator = strenv(LIMITADOR_OPERATOR_VERSION)) |
+            (.dependencies.console-plugin = strenv(CONSOLE_PLUGIN_VERSION)) |
+            (.dependencies.wasm-shim = strenv(WASM_SHIM_VERSION)) |
+            (.olm.default-channel = strenv(OLM_CHANNEL)) |
+            (.olm.channels[0] = strenv(OLM_CHANNEL))' --inplace ./release.yaml
+
+          echo "release.yaml file updated as follows:"
+
+          cat ./release.yaml
+
+          echo "Running prepare-release script"
+
+          GITHUB_TOKEN=${{ secrets.KUADRANT_WORKFLOWS_PAT }} make prepare-release
+
+      - name: Create Pull Request
+        id: cpr
+        if: ${{ !env.ACT }}
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ secrets.KUADRANT_DEV_PAT }}
+          commit-message: Prepare release ${{ github.event.inputs.kuadrantOperatorVersion }}
+          committer: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
+          author: ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>
+          signoff: true
+          base: ${{ env.BASE_BRANCH }}
+          branch: release-v${{ github.event.inputs.kuadrantOperatorVersion }}
+          delete-branch: true
+          title: '[Release] Kuadrant Operator v${{ github.event.inputs.kuadrantOperatorVersion }}'
+          body: |
+            The following PR for the release candidate of Kuadrant Operator version ${{ github.event.inputs.kuadrantOperatorVersion }} includes:
+            - Authorino Operator version ${{ github.event.inputs.authorinoOperatorVersion }}
+            - DNS Operator version ${{ github.event.inputs.dnsOperatorVersion }}
+            - Limitador Operator version ${{ github.event.inputs.limitadorOperatorVersion }}
+            - Console Plugin version ${{ github.event.inputs.consolePluginVersion }}
+            - WASM Shim version ${{ github.event.inputs.wasmShimVersion }}
+
+            Auto-generated by [create-pull-request][1]
+
+            [1]: https://github.com/peter-evans/create-pull-request
+          team-reviewers: |
+            Kuadrant/developers
+            Kuadrant/qe
+          draft: false
@@ -1,6 +1,7 @@
 name: Build and Publish Images For Tag Release
 
 on:
+  workflow_dispatch:
   push:
     tags:
       - "v[0-9]+.[0-9]+.[0-9]+-?**"

@@ -0,0 +1,40 @@
+name: Release Operator
+
+on:
+  pull_request:
+    types:
+    - closed
+    branches:
+      - 'release-v[0-9]+.[0-9]+'
+  workflow_dispatch: {}
+
+jobs:
+  release-operator:
+    if: github.event.pull_request.merged == true
+    name: Release operator
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code at git ref
+        uses: actions/checkout@v4
+        with:
+          token: '${{ secrets.KUADRANT_DEV_PAT }}'
+      - name: Set environment variables
+        id: set_env_variables
+        run: |
+          bash ./utils/release/load_github_envvar.sh
+      - name: Create tag
+        id: create_tag
+        run: |
+          tag_name="${{ env.kuadratantOperatorTag }}"
+          git tag $tag_name
+          git push origin $tag_name
+      - name: Create release
+        id: create_release
+        uses: softprops/action-gh-release@v2
+        with:
+          name: ${{ env.kuadratantOperatorTag }}
+          tag_name: ${{ env.kuadratantOperatorTag }}
+          body: "${{ env.releaseBody }}"
+          generate_release_notes: true
+          target_commitish: ${{ env.releaseBranch }}
+          prerelease: ${{ env.prerelease }}
@@ -1,15 +1,15 @@
 name: Test
 
 on:
+  workflow_dispatch:
   push:
-    branches: [ 'main', 'release-*' ]
+    branches: ['main', 'release-v*']
   pull_request:
     branches: ['*']
   merge_group:
     types: [ checks_requested ]
   schedule:
     - cron: "15 1 * * *"
-  workflow_dispatch:
 
 jobs:
   pre-job:
@@ -272,10 +272,9 @@ jobs:
         if: always()
         run: |
           kubectl get pods -n kuadrant-system
-
-  verify-manifests:
-    name: Verify manifests
-    if: needs.pre-job.outputs.should_skip != 'true'
+  verify-release:
+    name: Validate release data
+    if: startsWith(github.ref_name, 'release-v') && needs.pre-job.outputs.should_skip != 'true'
     needs: pre-job
     runs-on: ubuntu-latest
     steps:
@@ -284,28 +283,30 @@ jobs:
         with:
           go-version: 1.22.x
         id: go
-      - name: Check out code
+      - name: Checkout code at git ref
         uses: actions/checkout@v4
-      - name: Run make verify-manifests
-        run: |
-          make verify-manifests
+      - name: Check bundles and manifests
+        run: make verify-prepare-release
 
-  verify-bundle:
-    name: Verify bundle
-    if: needs.pre-job.outputs.should_skip != 'true'
+  verify-manifests:
+    name: Validate set of manifests
+    if: !startsWith(github.ref_name, 'release-v') && needs.pre-job.outputs.should_skip != 'true'
     needs: pre-job
     runs-on: ubuntu-latest
     steps:
+      - name: Install gettext-base
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y gettext-base
       - name: Set up Go 1.22.x
         uses: actions/setup-go@v4
         with:
           go-version: 1.22.x
         id: go
-      - name: Check out code
+      - name: Checkout code at git ref
         uses: actions/checkout@v4
-      - name: Run make verify-bundle
-        run: |
-          make verify-bundle
+      - name: Check bundles and manifests
+        run: make verify-manifests
 
   verify-fmt:
     name: Verify fmt
@@ -382,28 +383,12 @@ jobs:
         run: |
           make verify-go-mod
 
-  verify-helm-charts:
-    name: Verify helm charts
-    if: needs.pre-job.outputs.should_skip != 'true'
-    needs: pre-job
-    runs-on: ubuntu-latest
-    steps:
-      - name: Set up Go 1.22.x
-        uses: actions/setup-go@v4
-        with:
-          go-version: 1.22.x
-        id: go
-      - name: Check out code
-        uses: actions/checkout@v4
-      - name: Run make verify-helm-charts
-        run: |
-          make verify-helm-charts
   required-checks:
     name: Test Required Checks
     # This check adds a list of checks to one job to simplify adding settings to the repo.
     # If a new check is added in this file, and it should be retested on entry to the merge queue,
     # it needs to be added to the list below aka needs: [ existing check 1, existing check 2, new check ].
-    needs: [ unit-tests, controllers-integration-tests, bare-k8s-integration-tests, gatewayapi-integration-tests, gatewayapi-provider-integration-tests, verify-manifests, verify-bundle, verify-fmt, test-scripts, verify-generate, verify-go-mod, verify-helm-charts ]
+    needs: [ unit-tests, controllers-integration-tests, bare-k8s-integration-tests, gatewayapi-integration-tests, gatewayapi-provider-integration-tests, verify-fmt, test-scripts, verify-generate, verify-go-mod ]
     if: always()
     runs-on: ubuntu-latest
     steps: