Merge pull request #1 from discoverygarden/implementation

FDSF-295: Implementation

Author: Alexander-Cairns

.github/workflows/auto-semver.yml

@@ -0,0 +1,27 @@
+---
+name: Auto Semver
+on:
+  pull_request:
+    types: closed
+    branches:
+      - main
+jobs:
+  update:
+    if: "github.event.pull_request.merged == true && !contains(github.event.pull_request.labels.*.name, 'no-update')"
+    runs-on: ubuntu-latest
+    outputs:
+      tag: ${{ steps.semver.outputs.tag }}
+    steps:
+      - name: Run Auto Semver
+        id: semver
+        uses: discoverygarden/auto-semver@v1
+  build:
+    if: github.event.pull_request.merged == true && needs.update.outputs.tag
+    uses: ./.github/workflows/build-image-from-tag-push.yml
+    needs: update
+    secrets: inherit
+    permissions:
+      id-token: write
+      contents: read
+    with:
+      tag: ${{ needs.update.outputs.tag }}

.github/workflows/bot-pr-to-jira.yml

@@ -0,0 +1,27 @@
+---
+name: Bot Pull-Request to Ticket
+on:
+  pull_request:
+    types: [opened]
+permissions:
+  pull-requests: write
+  repository-projects: read
+
+jobs:
+  bot-job:
+    runs-on: ubuntu-latest
+    if: "( github.actor == 'dependabot[bot]' || github.actor == 'renovate[bot]' ) && contains(github.event.pull_request.labels.*.name, 'major')"
+    steps:
+      - name: Create Issue
+        uses: discoverygarden/create-issue@v1
+        with:
+          project: IT
+          summary: "[${{ github.repository }}] ${{ github.actor }} update"
+          description: |
+            ${{ github.actor }} generated a PR to update a dependency.
+          transition: "Request QA Review"
+          deployment-instructions: "N/A"
+          jira-url: ${{ vars.JIRA_BASE_URL }}
+          jira-user: ${{ vars.JIRA_USER_EMAIL }}
+          jira-token: ${{ secrets.JIRA_API_TOKEN }}
+          slack-webhook: ${{ secrets.FEED_WORKFLOW_WEBHOOK }}

.github/workflows/build-image-from-tag-push.yml

@@ -0,0 +1,28 @@
+---
+name: Build image from version tag
+
+permissions:
+  id-token: write
+  contents: read
+on:
+  push:
+    # XXX: Tags pushed via actions (i.e., auto-semver) are not able to trigger additional workflows;
+    # they should instead go via an additional workflow_call.
+    tags: [ 'v[0-9]+.[0-9]+.[0-9]+' ]
+  pull_request:
+    branches: [ main ]
+  workflow_call:
+    inputs:
+      tag:
+        description: Base tag to build.
+        required: false
+        type: string
+
+jobs:
+  build:
+    if: github.event_name == 'push' || github.event_name == 'pull_request'
+    uses: discoverygarden/docker-image-reusable-workflows/.github/workflows/build-image.yml@v1
+    secrets: inherit
+    with:
+      image-name: ${{ vars.DOCKER_IMAGE_NAME }}
+      tag: ${{ inputs.tag }}

.github/workflows/chart-release.yml

@@ -0,0 +1,38 @@
+# Helm Chart releasing workflow.
+# Adapted from:
+# - https://github.com/helm/chart-releaser-action?tab=readme-ov-file#example-workflow
+# - https://github.com/discoverygarden/helm-charts/blob/main/.github/workflows/chart-releaser.yml
+name: Release Charts
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - "dist/*/Chart.yaml"
+
+jobs:
+  release:
+    # depending on default permission settings for your org (contents being read-only or read-write for workloads), you will have to add permissions
+    # see: https://docs.github.com/en/actions/security-guides/automatic-token-authentication#modifying-the-permissions-for-the-github_token
+    permissions:
+      contents: write
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Configure Git
+        run: |
+          git config user.name "$GITHUB_ACTOR"
+          git config user.email "[email protected]"
+
+      - name: Run chart-releaser
+        uses: helm/chart-releaser-action@cae68fefc6b5f367a0275617c9f83181ba54714f # v1.7.0
+        env:
+          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
+        with:
+          charts_dir: dist
+          packages_with_index: true

.github/workflows/enforce-labels.yml

@@ -0,0 +1,17 @@
+---
+name: Enforce Labeling
+on:
+  pull_request_target:
+    types: [opened, synchronize, reopened, labeled, unlabeled]
+    branches:
+      - main
+  workflow_dispatch:
+
+jobs:
+  check_labels:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check Pull Request Labels
+        uses: discoverygarden/enforce-label@v1
+        with:
+          required_labels: major,minor,patch,no-update

.github/workflows/rebuild-image.yml

@@ -0,0 +1,27 @@
+---
+name: Rebuild image
+
+permissions:
+  id-token: write
+  contents: read
+on:
+  schedule:
+    - cron: '47 4 1 * *'
+  workflow_dispatch:
+    inputs:
+      env:
+        description: The env in which to rebuild.
+        required: false
+        type: choice
+        default: prod
+        options:
+          - dev
+          - prod
+
+jobs:
+  build:
+    uses: discoverygarden/docker-image-reusable-workflows/.github/workflows/build-image.yml@v1
+    secrets: inherit
+    with:
+      env: ${{ inputs.env || github.event_name == 'pull_request' && 'dev' || 'prod' }}
+      image-name: ${{ vars.DOCKER_IMAGE_NAME }}

.github/workflows/test-chart.yml

@@ -0,0 +1,90 @@
+name: Test Chart
+
+on:
+  push:
+  pull_request:
+
+jobs:
+  test-e2e:
+    name: Run on Ubuntu
+    runs-on: ubuntu-latest
+    steps:
+      - name: Clone the code
+        uses: actions/checkout@v4
+
+      - name: Setup Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: Install the latest version of kind
+        run: |
+          curl -Lo ./kind https://kind.sigs.k8s.io/dl/latest/kind-linux-amd64
+          chmod +x ./kind
+          sudo mv ./kind /usr/local/bin/kind
+
+      - name: Verify kind installation
+        run: kind version
+
+      - name: Create kind cluster
+        run: kind create cluster
+
+      - name: Prepare solr-user-operator
+        run: |
+          go mod tidy
+          make docker-build IMG=solr-user-operator:v0.1.0
+          kind load docker-image solr-user-operator:v0.1.0
+
+      - name: Install Helm
+        run: |
+          curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
+
+      - name: Verify Helm installation
+        run: helm version
+
+      - name: Lint Helm Chart
+        run: |
+          helm lint ./dist/chart
+
+# TODO: Uncomment if cert-manager is enabled
+#      - name: Install cert-manager via Helm
+#        run: |
+#          helm repo add jetstack https://charts.jetstack.io
+#          helm repo update
+#          helm install cert-manager jetstack/cert-manager --namespace cert-manager --create-namespace --set installCRDs=true
+#
+#      - name: Wait for cert-manager to be ready
+#        run: |
+#          kubectl wait --namespace cert-manager --for=condition=available --timeout=300s deployment/cert-manager
+#          kubectl wait --namespace cert-manager --for=condition=available --timeout=300s deployment/cert-manager-cainjector
+#          kubectl wait --namespace cert-manager --for=condition=available --timeout=300s deployment/cert-manager-webhook
+
+# TODO: Uncomment if Prometheus is enabled
+#      - name: Install Prometheus Operator CRDs
+#        run: |
+#          helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+#          helm repo update
+#          helm install prometheus-crds prometheus-community/prometheus-operator-crds
+#
+#      - name: Install Prometheus via Helm
+#        run: |
+#          helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+#          helm repo update
+#          helm install prometheus prometheus-community/prometheus --namespace monitoring --create-namespace
+#
+#      - name: Wait for Prometheus to be ready
+#        run: |
+#          kubectl wait --namespace monitoring --for=condition=available --timeout=300s deployment/prometheus-server
+
+      - name: Install Helm chart for project
+        run: |
+          helm install my-release ./dist/chart --create-namespace --namespace solr-user-operator-system
+
+      - name: Check Helm release status
+        run: |
+          helm status my-release --namespace solr-user-operator-system
+
+# TODO: Uncomment if prometheus.enabled is set to true to confirm that the ServiceMonitor gets created
+#      - name: Check Presence of ServiceMonitor
+#        run: |
+#          kubectl wait --namespace solr-user-operator-system --for=jsonpath='{.kind}'=ServiceMonitor servicemonitor/solr-user-operator-controller-manager-metrics-monitor

Makefile

@@ -1,5 +1,5 @@
 # Image URL to use all building/pushing image targets
-IMG ?= controller:latest
+IMG ?= solr-user-operator:latest
 
 # Get the currently used golang install path (in GOPATH/bin, unless GOBIN is set)
 ifeq (,$(shell go env GOBIN))

PROJECT

@@ -5,6 +5,27 @@
 domain: dgicloud.com
 layout:
 - go.kubebuilder.io/v4
+plugins:
+  helm.kubebuilder.io/v1-alpha: {}
 projectName: solr-user-operator
 repo: github.com/discoverygarden/solr-user-operator
+resources:
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: dgicloud.com
+  group: solr
+  kind: User
+  path: github.com/discoverygarden/solr-user-operator/api/v1alpha1
+  version: v1alpha1
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: dgicloud.com
+  group: solr
+  kind: Collection
+  path: github.com/discoverygarden/solr-user-operator/api/v1alpha1
+  version: v1alpha1
 version: "3"

README.md

@@ -132,4 +132,3 @@ distributed under the License is distributed on an "AS IS" BASIS,
 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
-