Merge branch 'master' into update-console-backend-images

Author: varshab1210

Makefile

@@ -65,7 +65,8 @@ IMG ?= $(IMAGE):$(VERSION)
 # Set the Operator SDK version to use.
 # This is useful for CI or a project to utilize a specific version of the operator-sdk toolkit.
 OPERATOR_SDK_VERSION ?= v1.35.0
-
+# Set the path to Operator SDK - OPERATOR_SDK_VERSION will be ignored.
+OPERATOR_SDK ?= bin/operator-sdk
 
 # Get the currently used golang install path (in GOPATH/bin, unless GOBIN is set)
 ifeq (,$(shell go env GOBIN))
@@ -131,19 +132,6 @@ test-e2e: manifests generate fmt vet ## Run e2e tests.
 test-metrics:
 	go test -timeout 30m ./test/e2e -ginkgo.focus="Argo CD metrics controller" -coverprofile cover.out -ginkgo.v
 
-.PHONY: operator-sdk
-OPERATOR_SDK ?= $(LOCALBIN)/operator-sdk
-operator-sdk: ## Download operator-sdk locally if necessary.
-ifeq (,$(wildcard $(OPERATOR_SDK)))
-	@{ \
-	set -e ;\
-	mkdir -p $(dir $(OPERATOR_SDK)) ;\
-	OS=$(shell go env GOOS) && ARCH=$(shell go env GOARCH) && \
-	curl -sSLo $(OPERATOR_SDK) https://github.com/operator-framework/operator-sdk/releases/download/$(OPERATOR_SDK_VERSION)/operator-sdk_$${OS}_$${ARCH} ;\
-	chmod +x $(OPERATOR_SDK) ;\
-	}
-endif
-
 .PHONY: test-route
 test-route:
 	go test -timeout 30m ./test/e2e -ginkgo.focus="Argo CD ConsoleLink controller" -coverprofile cover.out -ginkgo.v
@@ -211,7 +199,7 @@ build: generate fmt vet ## Build manager binary.
 
 .PHONY: run
 run: manifests generate fmt vet ## Run a controller from your host.
-	CLUSTER_SCOPED_ARGO_ROLLOUTS_NAMESPACES=argo-rollouts,test-rom-ns-1,rom-ns-1,openshift-gitops  ARGOCD_CLUSTER_CONFIG_NAMESPACES="openshift-gitops, argocd-e2e-cluster-config, argocd-test-impersonation-1-046, argocd-agent-principal-1-051, argocd-agent-agent-1-052, appset-argocd, appset-old-ns, appset-new-ns, ns-hosting-principal, ns-hosting-managed-agent, ns-hosting-autonomous-agent"  REDIS_CONFIG_PATH="build/redis"   go run ./cmd/main.go
+	CLUSTER_SCOPED_ARGO_ROLLOUTS_NAMESPACES=argo-rollouts,test-rom-ns-1,rom-ns-1,openshift-gitops  ARGOCD_CLUSTER_CONFIG_NAMESPACES="openshift-gitops, argocd-e2e-cluster-config, argocd-test-impersonation-1-046, argocd-agent-principal-1-051, argocd-agent-agent-1-052, appset-argocd, appset-old-ns, appset-new-ns, ns-hosting-principal, ns-hosting-managed-agent, ns-hosting-autonomous-agent, appset-argocd-clusterrole"  REDIS_CONFIG_PATH="build/redis"   go run ./cmd/main.go
 
 .PHONY: docker-build
 docker-build: test ## Build container image with the manager.
@@ -223,27 +211,17 @@ docker-push: ## Push container image with the manager.
 
 ##@ Build Dependencies
 
-## Location to install dependencies to
-LOCALBIN ?= $(shell pwd)/bin
-$(LOCALBIN):
-	mkdir -p $(LOCALBIN)
+# Do not use OPERATOR_SDK variable not to overwrite the user provided path
+bin/operator-sdk:
+	mkdir -p bin
+	curl -sSLo bin/operator-sdk \
+		https://github.com/operator-framework/operator-sdk/releases/download/$(OPERATOR_SDK_VERSION)/operator-sdk_$(shell go env GOOS)_$(shell go env GOARCH)
+	chmod +x bin/operator-sdk
 
+# Install to bin/operator-sdk unless already there or explicit OPERATOR_SDK provided
 .PHONY: operator-sdk
-OPERATOR_SDK ?= $(LOCALBIN)/operator-sdk
-operator-sdk: ## Download operator-sdk locally if necessary.
-ifeq (,$(wildcard $(OPERATOR_SDK)))
-ifeq (,$(shell which operator-sdk 2>/dev/null))
-	@{ \
-	set -e ;\
-	mkdir -p $(dir $(OPERATOR_SDK)) ;\
-	OS=$(shell go env GOOS) && ARCH=$(shell go env GOARCH) && \
-	curl -sSLo $(OPERATOR_SDK) https://github.com/operator-framework/operator-sdk/releases/download/$(OPERATOR_SDK_VERSION)/operator-sdk_$${OS}_$${ARCH} ;\
-	chmod +x $(OPERATOR_SDK) ;\
-	}
-else
-OPERATOR_SDK = $(shell which operator-sdk)
-endif
-endif
+operator-sdk: $(OPERATOR_SDK)
+	@$(OPERATOR_SDK) version
 
 ifndef ignore-not-found
   ignore-not-found = false
@@ -271,6 +249,10 @@ deploy: manifests kustomize ## Deploy controller to the K8s cluster specified in
 undeploy: ## Undeploy controller from the K8s cluster specified in ~/.kube/config.
 	$(KUSTOMIZE) build config/default | kubectl delete --ignore-not-found=true -f -
 
+.PHONY: olm-deploy
+olm-deploy: ## Build the operator bundle and deploy it to OpenShift through OLM
+	./hack/scripts/olm-deploy.sh
+
 CONTROLLER_GEN = $(shell pwd)/bin/controller-gen
 .PHONY: controller-gen
 controller-gen: ## Download controller-gen locally if necessary.

controllers/gitopsservice_controller.go

@@ -73,6 +73,7 @@ var (
 
 const (
 	gitopsServicePrefix = "gitops-service-"
+	kamResourceName     = "kam"
 )
 
 // SetupWithManager sets up the controller with the Manager.
@@ -259,6 +260,8 @@ func (r *ReconcileGitopsService) Reconcile(ctx context.Context, request reconcil
 		Namespace: namespace,
 	}
 
+	r.cleanKAMResources(ctx, reqLogger)
+
 	if !r.DisableDefaultInstall {
 		// Create/reconcile the default Argo CD instance, unless default install is disabled
 		if result, err := r.reconcileDefaultArgoCDInstance(instance, reqLogger); err != nil {
@@ -312,6 +315,44 @@ func (r *ReconcileGitopsService) Reconcile(ctx context.Context, request reconcil
 	}
 }
 
+// Detect the unsupported KAM components across Deployments , Routes , Services and deletes them to perform cleanup as KAM is no longer supported since 1.15
+func (r *ReconcileGitopsService) cleanKAMResources(ctx context.Context, reqLogger logr.Logger) {
+
+	// KAM Deployment
+	cleanupKAMDeployment := &appsv1.Deployment{}
+	if err := r.Client.Get(ctx, types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, cleanupKAMDeployment); err == nil {
+		reqLogger.Info("Detected unsupported KAM Deployment, deleting", "Name", kamResourceName, "Namespace", serviceNamespace)
+		if err := r.Client.Delete(ctx, cleanupKAMDeployment); err != nil && !errors.IsNotFound(err) {
+			reqLogger.Error(err, "Failed to delete KAM Deployment", "Name", kamResourceName, "Namespace", serviceNamespace)
+		}
+	} else if !errors.IsNotFound(err) {
+		reqLogger.Error(err, "Failed to retrieve KAM Deployment", "Name", kamResourceName, "Namespace", serviceNamespace)
+	}
+
+	// KAM Service
+	cleanupKAMService := &corev1.Service{}
+	if err := r.Client.Get(ctx, types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, cleanupKAMService); err == nil {
+		reqLogger.Info("Detected unsupported KAM Service, deleting", "Name", kamResourceName, "Namespace", serviceNamespace)
+		if err := r.Client.Delete(ctx, cleanupKAMService); err != nil && !errors.IsNotFound(err) {
+			reqLogger.Error(err, "Failed to delete KAM Service", "Name", kamResourceName, "Namespace", serviceNamespace)
+		}
+	} else if !errors.IsNotFound(err) {
+		reqLogger.Error(err, "Failed to retrieve KAM Service", "Name", kamResourceName, "Namespace", serviceNamespace)
+	}
+
+	// KAM Route
+	cleanupKAMRoute := &routev1.Route{}
+	if err := r.Client.Get(ctx, types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, cleanupKAMRoute); err == nil {
+		reqLogger.Info("Detected unsupported KAM Route, deleting", "Name", kamResourceName, "Namespace", serviceNamespace)
+		if err := r.Client.Delete(ctx, cleanupKAMRoute); err != nil && !errors.IsNotFound(err) {
+			reqLogger.Error(err, "Failed to delete KAM Route", "Name", kamResourceName, "Namespace", serviceNamespace)
+		}
+	} else if !errors.IsNotFound(err) {
+		reqLogger.Error(err, "Failed to retrieve KAM Route", "Name", kamResourceName, "Namespace", serviceNamespace)
+	}
+
+}
+
 func (r *ReconcileGitopsService) ensureDefaultArgoCDInstanceDoesntExist() error {
 
 	defaultArgoCDInstance, err := argocd.NewCR(common.ArgoCDInstanceName, serviceNamespace, r.Client)

controllers/gitopsservice_controller_test.go

@@ -889,6 +889,132 @@ func TestReconcileBackend_DefaultRequestsAndLimits(t *testing.T) {
 	assert.Equal(t, deployment.Spec.Template.Spec.Containers[0].Resources.Limits["cpu"], resourcev1.MustParse("500m"))
 }
 
+// Tests for KAM component cleanup
+// No resources exist
+func TestCleanKAMResources_NoResourcesExist(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+	fakeClient := fake.NewClientBuilder().WithScheme(s).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	// No KAM resources exist - function should be a silent no-op
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+}
+
+// Deployment exist
+func TestCleanKAMResources_DeploymentExist(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+
+	kamDeploy := &appsv1.Deployment{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	fakeClient := fake.NewClientBuilder().WithScheme(s).WithObjects(kamDeploy).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+	err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &appsv1.Deployment{})
+	if !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Deployment to be deleted , got err: %v", err)
+	}
+}
+
+// Service exist
+func TestCleanKAMResources_ServiceExist(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+	kamService := &corev1.Service{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	fakeClient := fake.NewClientBuilder().WithScheme(s).WithObjects(kamService).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+	err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &corev1.Service{})
+	if !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Service to be deleted , got err: %v", err)
+	}
+}
+
+// Route exist
+func TestCleanKAMResources_RouteExist(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+	kamRoute := &routev1.Route{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	fakeClient := fake.NewClientBuilder().WithScheme(s).WithObjects(kamRoute).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+	err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &routev1.Route{})
+	if !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Route to be deleted , got err: %v", err)
+	}
+}
+
+// All Resources exist
+func TestCleanKAMResources_AllResourcesExist(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+	kamDeploy := &appsv1.Deployment{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	kamService := &corev1.Service{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	kamRoute := &routev1.Route{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	fakeClient := fake.NewClientBuilder().WithScheme(s).WithObjects(kamDeploy, kamService, kamRoute).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+	if err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &appsv1.Deployment{}); !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Deployment to be deleted , got err: %v", err)
+	}
+	if err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &corev1.Service{}); !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Service to be deleted , got err: %v", err)
+	}
+	if err := fakeClient.Get(context.TODO(), types.NamespacedName{Name: kamResourceName, Namespace: serviceNamespace}, &routev1.Route{}); !errors.IsNotFound(err) {
+		t.Fatalf("expected KAM Route to be deleted , got err: %v", err)
+	}
+}
+
+// Idempotency
+func TestCleanKAMResources_Idempotent(t *testing.T) {
+	logf.SetLogger(zap.New(zap.UseDevMode(true)))
+	s := scheme.Scheme
+	addKnownTypesToScheme(s)
+	kamDeploy := &appsv1.Deployment{
+		ObjectMeta: v1.ObjectMeta{Name: kamResourceName, Namespace: serviceNamespace},
+	}
+	fakeClient := fake.NewClientBuilder().WithScheme(s).WithObjects(kamDeploy).Build()
+	reconciler := newReconcileGitOpsService(fakeClient, s)
+	reqLogger := logs.WithValues("Request.Namespace", "test", "Request.Name", "test")
+
+	// First call - deletes the KAM resource
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+	// Second call - must not panic even if the resources are already deleted
+	reconciler.cleanKAMResources(context.TODO(), reqLogger)
+
+}
+
 func addKnownTypesToScheme(scheme *runtime.Scheme) {
 	scheme.AddKnownTypes(configv1.GroupVersion, &configv1.ClusterVersion{})
 	scheme.AddKnownTypes(pipelinesv1alpha1.GroupVersion, &pipelinesv1alpha1.GitopsService{})

docs/Lightspeed BYOK Gitops configuration guide.md

@@ -16,7 +16,7 @@ We have curated and optimized specialized knowledge sets for the following compo
 * Red Hat OpenShift GitOps Operator
 * ArgoCD Agent
 
-This knowledge is packaged into a container [image](https://quay.io/rhn-support-alkumari/argocd-byok-image:v0.0.2) and can be configured in Lightspeed using the instructions below.
+This knowledge is packaged into a container [image](https://quay.io/devtools_gitops/argocd_lightspeed_byok:v0.0.4) and can be configured in Lightspeed using the instructions below.
 
 ## Prerequisites
 
@@ -42,7 +42,7 @@ metadata:
 spec:
   ols:
     rag:
-      - image: quay.io/rhn-support-alkumari/argocd-byok-image:v0.0.4
+      - image: quay.io/devtools_gitops/argocd_lightspeed_byok:v0.0.4
 ```
 
 Note: Where image specifies the tag for the image that is present in the image registry so that the OpenShift Lightspeed Operator can access the custom content.