chore: refactor dex promise to remove promise dependencies key

Signed-off-by: Stella Englezou <stella@syntasso.io>
Co-authored-by: Stella Englezou <stella@syntasso.io>

Author: SaphMB

.github/workflows/test-promise.yaml

@@ -59,23 +59,6 @@ jobs:
           ./scripts/register-destination --name platform-cluster --context kind-platform --state-store default --with-label environment=platform
           
           kubectl wait --for condition=available -n kratix-platform-system deployment/kratix-platform-controller-manager --timeout 60s
-      - name: Install worker-resource-builder
-        if: ${{ matrix.promise_dir == 'dex-group-authentication' }}
-        run: |
-          curl -sLo ~/bin/worker-resource-builder.tar.gz https://github.com/syntasso/kratix/releases/download/v0.0.5/worker-resource-builder_0.0.5_linux_amd64.tar.gz
-          tar -xvf ~/bin/worker-resource-builder.tar.gz -C ~/bin
-          mv ~/bin/worker-resource-builder-v* ~/bin/worker-resource-builder
-          chmod +x ~/bin/worker-resource-builder
-      - name: Validate that there are no pending changes
-        if: ${{ matrix.promise_dir == 'dex-group-authentication' }}
-        run: |
-          ./internal/scripts/inject-deps
-          if ! git diff --exit-code .; then
-            echo ""
-            echo "Changes in the dependencies were detected"
-            echo "Injection of dependencies via CI is not supported. Please commit and push them manually."
-            exit 1
-          fi
       - name: Install Promise
         working-directory: ${{ matrix.promise_dir }}
         run: |

dex-group-authentication/internal/configure-pipeline/Dockerfile

@@ -7,7 +7,7 @@ RUN [ "mkdir", "/tmp/transfer" ]
 RUN apk update && apk add --no-cache yq
 
 ADD resources/* /tmp/transfer/
-ADD execute-pipeline execute-pipeline
+ADD resource-configure /usr/local/bin/resource-configure
+ADD promise-configure /usr/local/bin/promise-configure
 
-CMD [ "sh", "-c", "./execute-pipeline" ]
-ENTRYPOINT []
+RUN chmod +x /usr/local/bin/*

…ntication/internal/dependencies/dex.yaml …configure-pipeline/dependencies/dex.yamldex-group-authentication/internal/dependencies/dex.yaml renamed to dex-group-authentication/internal/configure-pipeline/dependencies/dex.yaml dex-group-authentication/internal/dependencies/dex.yaml renamed to dex-group-authentication/internal/configure-pipeline/dependencies/dex.yaml

@@ -0,0 +1,7 @@
+#!/usr/bin/env sh
+
+set -eux
+
+echo "copying deps"
+
+cp /dependencies/* /kratix/output/

…ependencies/oidc-clusterrolebinding.yaml …ependencies/oidc-clusterrolebinding.yamldex-group-authentication/internal/dependencies/oidc-clusterrolebinding.yaml renamed to dex-group-authentication/internal/configure-pipeline/dependencies/oidc-clusterrolebinding.yaml dex-group-authentication/internal/dependencies/oidc-clusterrolebinding.yaml renamed to dex-group-authentication/internal/configure-pipeline/dependencies/oidc-clusterrolebinding.yaml

@@ -34,170 +34,18 @@ spec:
             type: object
         served: true
         storage: true
-  dependencies:
-  - apiVersion: v1
-    kind: Namespace
-    metadata:
-      name: dex
-  - apiVersion: v1
-    kind: ServiceAccount
-    metadata:
-      labels:
-        app: dex
-      name: dex
-      namespace: dex
-  - apiVersion: rbac.authorization.k8s.io/v1
-    kind: ClusterRole
-    metadata:
-      name: dex
-      namespace: default
-    rules:
-    - apiGroups:
-      - dex.coreos.com
-      resources:
-      - '*'
-      verbs:
-      - '*'
-    - apiGroups:
-      - apiextensions.k8s.io
-      resources:
-      - customresourcedefinitions
-      verbs:
-      - create
-  - apiVersion: rbac.authorization.k8s.io/v1
-    kind: ClusterRoleBinding
-    metadata:
-      name: dex
-      namespace: default
-    roleRef:
-      apiGroup: rbac.authorization.k8s.io
-      kind: ClusterRole
-      name: dex
-    subjects:
-    - kind: ServiceAccount
-      name: dex
-      namespace: dex
-  - apiVersion: v1
-    data:
-      config.yaml: |
-        issuer: https://localhost:32000
-        storage:
-          type: kubernetes
-          config:
-            inCluster: true
-        web:
-          https: 0.0.0.0:5556
-          tlsCert: /etc/dex/tls/tls.crt
-          tlsKey: /etc/dex/tls/tls.key
-        connectors:
-        - type: github
-          id: github
-          name: GitHub
-          config:
-            clientID: $GITHUB_CLIENT_ID
-            clientSecret: $GITHUB_CLIENT_SECRET
-            redirectURI: https://localhost:32000/callback
-            loadAllGroups: true
-        staticClients:
-        - id: kube
-          redirectURIs:
-          - http://localhost:8000
-          - http://localhost:18000
-          name: kubernetes
-          secret: ZXhhbXBsZS1hcHAtc2VjcmV0
-    kind: ConfigMap
-    metadata:
-      name: dex
-      namespace: dex
-  - apiVersion: v1
-    kind: Service
-    metadata:
-      name: dex
-      namespace: dex
-    spec:
-      ports:
-      - name: dex
-        nodePort: 32000
-        port: 5556
-        protocol: TCP
-        targetPort: 5556
-      selector:
-        app: dex
-      type: NodePort
-  - apiVersion: apps/v1
-    kind: Deployment
-    metadata:
-      labels:
-        app: dex
-      name: dex
-      namespace: dex
-    spec:
-      replicas: 2
-      selector:
-        matchLabels:
-          app: dex
-      template:
+  workflows:
+    promise:
+      configure:
+      - apiVersion: platform.kratix.io/v1alpha1
+        kind: Pipeline
         metadata:
-          labels:
-            app: dex
+          name: promise-config
         spec:
           containers:
-          - command:
-            - /usr/local/bin/dex
-            - serve
-            - /etc/dex/cfg/config.yaml
-            env:
-            - name: GITHUB_CLIENT_ID
-              valueFrom:
-                secretKeyRef:
-                  key: client-id
-                  name: github-client
-            - name: GITHUB_CLIENT_SECRET
-              valueFrom:
-                secretKeyRef:
-                  key: client-secret
-                  name: github-client
-            image: ghcr.io/dexidp/dex:v2.30.0
-            name: dex
-            ports:
-            - containerPort: 5556
-              name: https
-            readinessProbe:
-              httpGet:
-                path: /healthz
-                port: 5556
-                scheme: HTTPS
-            volumeMounts:
-            - mountPath: /etc/dex/cfg
-              name: config
-            - mountPath: /etc/dex/tls
-              name: tls
-          serviceAccountName: dex
-          volumes:
-          - configMap:
-              items:
-              - key: config.yaml
-                path: config.yaml
-              name: dex
-            name: config
-          - name: tls
-            secret:
-              secretName: dex.example.com.tls
-  - apiVersion: rbac.authorization.k8s.io/v1
-    kind: ClusterRoleBinding
-    metadata:
-      name: oidc-cluster-admin
-      namespace: default
-    roleRef:
-      apiGroup: rbac.authorization.k8s.io
-      kind: ClusterRole
-      name: cluster-admin
-    subjects:
-    - apiGroup: rbac.authorization.k8s.io
-      kind: User
-      name: https://localhost:32000#CgcxNTU3MzQ2EgZnaXRodWI
-  workflows:
-    promise: {}
+          - image: ghcr.io/syntasso/kratix-marketplace/dex-group-authentication-configure-pipeline:v0.1.0
+            name: dex-group-auth-config-pipeline
+            command: [ promise-configure ]
     resource:
       configure:
       - apiVersion: platform.kratix.io/v1alpha1
@@ -208,4 +56,5 @@ spec:
           containers:
           - image: ghcr.io/syntasso/kratix-marketplace/dex-group-authentication-configure-pipeline:v0.1.0
             name: dex-group-auth-config-pipeline
+            command: [ resource-configure ]
 status: {}