redhat-developer
diff --git a/‎charts/backstage/README.md‎
Lines changed: 38 additions & 0 deletions b/‎charts/backstage/README.md‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎charts/backstage/templates/_helpers.tpl‎
Lines changed: 0 additions & 98 deletions b/‎charts/backstage/templates/_helpers.tpl‎
Lines changed: 0 additions & 98 deletions
diff --git a/‎charts/backstage/templates/dynamic-plugins-configmap.yaml‎
Lines changed: 165 additions & 2 deletions b/‎charts/backstage/templates/dynamic-plugins-configmap.yaml‎
Lines changed: 165 additions & 2 deletions
diff --git a/‎charts/backstage/templates/knatives.yaml‎
Lines changed: 25 additions & 0 deletions b/‎charts/backstage/templates/knatives.yaml‎
Lines changed: 25 additions & 0 deletions
diff --git a/‎charts/backstage/templates/network-policies.yaml‎
Lines changed: 0 additions & 2 deletions b/‎charts/backstage/templates/network-policies.yaml‎
Lines changed: 0 additions & 2 deletions
@@ -191,6 +191,44 @@ Kubernetes: `>= 1.25.0-0`
 | global.dynamic.includes[0] | List of dynamic plugins included inside the `janus-idp/backstage-showcase` container image, some of which are disabled by default. This file ONLY works with the `janus-idp/backstage-showcase` container image. | string | `"dynamic-plugins.default.yaml"` |
 | global.dynamic.plugins | List of dynamic plugins, possibly overriding the plugins listed in `includes` files. Every item defines the plugin `package` as a [NPM package spec](https://docs.npmjs.com/cli/v10/using-npm/package-spec), an optional `pluginConfig` with plugin-specific backstage configuration, and an optional `disabled` flag to disable/enable a plugin listed in `includes` files. It also includes an `integrity` field that is used to verify the plugin package [integrity](https://w3c.github.io/webappsec-subresource-integrity/#integrity-metadata-description). | list | `[]` |
 | global.host | Custom hostname shorthand, overrides `global.clusterRouterBase`, `upstream.ingress.host`, `route.host`, and url values in `upstream.backstage.appConfig`. | string | `""` |
+| orchestrator.argocd.enabled |  | bool | `false` |
+| orchestrator.argocd.namespace |  | string | `""` |
+| orchestrator.enabled |  | bool | `true` |
+| orchestrator.networkPolicy.rhdhNamespace |  | string | `""` |
+| orchestrator.orchestrator.namespace |  | string | `""` |
+| orchestrator.orchestrator.sonataflowPlatform.eventing.broker.name |  | string | `""` |
+| orchestrator.orchestrator.sonataflowPlatform.eventing.broker.namespace |  | string | `""` |
+| orchestrator.orchestrator.sonataflowPlatform.monitoring.enabled |  | bool | `true` |
+| orchestrator.orchestrator.sonataflowPlatform.resources.limits.cpu |  | string | `"500m"` |
+| orchestrator.orchestrator.sonataflowPlatform.resources.limits.memory |  | string | `"1Gi"` |
+| orchestrator.orchestrator.sonataflowPlatform.resources.requests.cpu |  | string | `"250m"` |
+| orchestrator.orchestrator.sonataflowPlatform.resources.requests.memory |  | string | `"64Mi"` |
+| orchestrator.postgres.authSecret.name |  | string | `"sonataflow-psql-postgresql"` |
+| orchestrator.postgres.authSecret.passwordKey |  | string | `"postgres-password"` |
+| orchestrator.postgres.authSecret.userKey |  | string | `"postgres-username"` |
+| orchestrator.postgres.database |  | string | `"sonataflow"` |
+| orchestrator.postgres.serviceName |  | string | `"sonataflow-psql-postgresql"` |
+| orchestrator.postgres.serviceNamespace |  | string | `""` |
+| orchestrator.rhdhOperator.catalogBranch |  | string | `"v1.4.x"` |
+| orchestrator.rhdhOperator.enableGuestProvider |  | bool | `false` |
+| orchestrator.rhdhOperator.enabled |  | bool | `true` |
+| orchestrator.rhdhOperator.secretRef.backstage.backendSecret |  | string | `"{{ .Values.global.auth.value }}"` |
+| orchestrator.rhdhOperator.secretRef.k8s.clusterToken |  | string | `"K8S_CLUSTER_TOKEN"` |
+| orchestrator.rhdhOperator.secretRef.k8s.clusterUrl |  | string | `"K8S_CLUSTER_URL"` |
+| orchestrator.rhdhOperator.secretRef.name |  | string | `"backstage-backend-auth-secret"` |
+| orchestrator.rhdhPlugins.notificationsEmail.enabled |  | bool | `false` |
+| orchestrator.rhdhPlugins.notificationsEmail.port |  | int | `587` |
+| orchestrator.rhdhPlugins.notificationsEmail.replyTo |  | string | `""` |
+| orchestrator.rhdhPlugins.notificationsEmail.sender |  | string | `""` |
+| orchestrator.rhdhPlugins.npmRegistry |  | string | `""` |
+| orchestrator.rhdhPlugins.orchestrator.integrity |  | string | `"sha512-Vclb+TIL8cEtf9G2nx0UJ+kMJnCGZuYG/Xcw0Otdo/fZGuynnoCaAZ6rHnt4PR6LerekHYWNUbzM3X+AVj5cwg=="` |
+| orchestrator.rhdhPlugins.orchestrator.package |  | string | `"backstage-plugin-orchestrator-1.4.0-rc.7.tgz"` |
+| orchestrator.rhdhPlugins.orchestratorBackend.integrity |  | string | `"sha512-bxD0Au2V9BeUMcZBfNYrPSQ161vmZyKwm6Yik5keZZ09tenkc8fNjipwJsWVFQCDcAOOxdBAE0ibgHtddl3NKw=="` |
+| orchestrator.rhdhPlugins.orchestratorBackend.package |  | string | `"backstage-plugin-orchestrator-backend-dynamic-1.4.0-rc.7.tgz"` |
+| orchestrator.rhdhPlugins.scope |  | string | `"https://github.com/rhdhorchestrator/orchestrator-plugins-internal-release/releases/download/1.4.0"` |
+| orchestrator.serverlessOperator.enabled |  | bool | `true` |
+| orchestrator.sonataFlowOperator.enabled |  | bool | `true` |
+| orchestrator.tekton.enabled |  | bool | `false` |
 | route | OpenShift Route parameters | object | `{"annotations":{},"enabled":true,"host":"{{ .Values.global.host }}","path":"/","tls":{"caCertificate":"","certificate":"","destinationCACertificate":"","enabled":true,"insecureEdgeTerminationPolicy":"Redirect","key":"","termination":"edge"},"wildcardPolicy":"None"}` |
 | route.annotations | Route specific annotations | object | `{}` |
 | route.enabled | Enable the creation of the route resource | bool | `true` |
 
@@ -87,7 +87,6 @@ Referenced from: https://github.com/bitnami/charts/blob/main/bitnami/postgresql/
     {{- end -}}
 {{- end -}}
 
-
 {{- define "cluster.domain" -}}
     {{- if .Capabilities.APIVersions.Has "config.openshift.io/v1/Ingress" -}}
         {{- $cluster := (lookup "config.openshift.io/v1" "Ingress" "" "cluster") -}}
@@ -101,100 +100,3 @@ Referenced from: https://github.com/bitnami/charts/blob/main/bitnami/postgresql/
     {{- end -}}
 {{- end -}}
 
-
-{{- define "install-tekton-task" -}}
-  {{- if and (and (and .Values.orchestrator.tekton.enabled .Values.orchestrator.argocd.enabled) (ne .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterToken "")) (.Capabilities.APIVersions.Has "tekton.dev/v1/Task") }}
-        {{- "true" -}}
-    {{- else }}
-        {{- "false" -}}
-    {{- end -}}
-{{- end -}}
-
-{{- define "install-tekton-pipeline" -}}
-  {{- if and (and (and .Values.orchestrator.tekton.enabled .Values.orchestrator.argocd.enabled) (ne .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterToken "")) (.Capabilities.APIVersions.Has "tekton.dev/v1/Pipeline") }}
-        {{- "true" -}}
-    {{- else }}
-        {{- "false" -}}
-    {{- end -}}
-{{- end -}}
-
-{{- define "install-argocd-project" -}}
-    {{- if and (.Values.orchestrator.argocd.enabled) (.Capabilities.APIVersions.Has "argoproj.io/v1alpha1/AppProject") }}
-        {{- "true" -}}
-    {{- else }}
-        {{- "false" -}}
-    {{- end -}}
-{{- end -}}
-
-
-{{- define "get-namespace-with-label" -}}
-    {{- $paramValue:= index . 0 -}}
-    {{- $matchingLabel:= index . 1 -}}
-    {{- if $paramValue -}}
-        {{- $paramValue -}}
-    {{- else -}}
-        {{- $ns:= "" }}
-        {{- $list:= lookup "v1" "Namespace" "" "" -}}
-        {{- if eq 0 (len (dig "items" (dict "" "") $list ) )}}
-            {{- fail (printf "No namespaces found: %d" (len (dig "items" (dict "" "") $list))  ) }}
-        {{- end -}}
-        {{- range (dig "items" (dict "" "") $list) }}
-            {{- $labels:= dig "metadata" "labels" (dict "" "" ) .  -}}
-            {{- if (hasKey $labels $matchingLabel ) }}
-                {{- if not $ns }}
-                    {{- $ns = dig "metadata" "name" "" . -}}
-                {{- else -}}
-                    {{- fail (printf "More than one namespace found with label %s: %s and %s" $matchingLabel $ns (dig "metadata" "name" "" .) )}}
-                {{- end }}
-            {{- end -}}
-        {{- end -}}
-        {{- if not $ns -}}
-            {{- fail (printf "No namespace found with label '%s'. Please follow the installation instructions to properly configure the environment" $matchingLabel) -}}
-        {{- end }}
-        {{- $ns }}
-    {{- end -}}
-{{- end -}}
-
-{{- define "get-workflow-namespace" -}}
-    {{- if (not (hasKey . "workflowNamespace" ) ) -}}
-        {{- $workflowNamespace := include "get-namespace-with-label" (list .Values.orchestrator.orchestrator.namespace "rhdh.redhat.com/workflow-namespace")  }}
-        {{- $_ := set . "workflowNamespace" $workflowNamespace }}
-    {{- end -}}
-    {{- .workflowNamespace -}}
-{{- end -}}
-
-{{- define "get-argocd-namespace" -}}
-    {{- if .Values.orchestrator.argocd.enabled }}
-        {{- if (not (hasKey . "argoCDNamespace" ) ) -}}
-            {{- $argoCDNamespace := include "get-namespace-with-label" (list .Values.orchestrator.argocd.namespace "rhdh.redhat.com/argocd-namespace")  }}
-            {{- $_ := set . "argoCDNamespace" $argoCDNamespace }}
-        {{- end -}}
-        {{- .argoCDNamespace -}}
-    {{- end -}}
-{{- end -}}
-
-{{- define "get-cluster-version" -}}
-  {{- $v := "" }}
-  {{- $version :=(lookup "config.openshift.io/v1" "ClusterVersion" "" "version") }}
-  {{- range $version.status.history }}
-    {{- if eq .state "Completed" }}
-      {{- $v = (semver .version) }}
-    {{- end }}
-  {{- end }}
-
-  {{- $validMinors := list "4.13" "4.14" "4.15" "4.16" -}}
-  {{- $versionString := printf "%d.%d" $v.Major $v.Minor -}}
-  {{- if not (semverCompare ">=4.13 <=4.16" $versionString) -}}
-    {{- fail (printf "Unsupported OCP version: %s. Supported versions: %s." $versionString $validMinors) -}}
-  {{- end -}}
-  {{- $versionString -}}
-{{- end -}}
-
-{{- define "get-tekton-version" -}}
-        {{- $pipelinesSubs := lookup "operators.coreos.com/v1alpha1" "Subscription" "openshift-operators" "openshift-pipelines-operator-rh" -}}
-        {{- $pipelineInstalledVersion := $pipelinesSubs.status.installedCSV}}
-        {{- $pipelineVersion := substr 33 ( len $pipelineInstalledVersion) $pipelineInstalledVersion}}
-        {{- $pipelineVersion = semver $pipelineVersion }}
-        {{- $pipelineVersionString := printf "%d.%d" $pipelineVersion.Major $pipelineVersion.Minor -}}
-        {{- $pipelineVersionString -}}
-{{- end -}}
@@ -3,6 +3,169 @@ kind: ConfigMap
 metadata:
   name: {{ printf "%s-dynamic-plugins" .Release.Name }}
 data:
+  {{- $dynamic := .Values.global.dynamic }}
+  {{- $plugins := .Values.global.dynamic.plugins }}
   dynamic-plugins.yaml: |
-    {{- include "common.tplvalues.render" ( dict "value"
-    .Values.global.dynamic "context" $) | nindent 4 }}
+    {{- if .Values.orchestrator.enabled }}
+      {{- $orchestratorPlugins := include "orchestrator.plugins" . | fromYaml }} 
+      {{- range $orchestratorPlugins.plugins }} 
+        {{- $plugins = append $plugins . }} 
+      {{- end }}
+    {{- $dynamic = merge $dynamic (dict "plugins" $plugins) }}
+    {{- end }}
+  {{- include "common.tplvalues.render" (dict "value" $dynamic "context" $) | nindent 4 }}
+  
+{{- if .Values.orchestrator.enabled }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dynamic-plugins-npmrc
+  namespace: {{ .Release.Namespace | quote }}
+type: Opaque
+stringData:
+  .npmrc: |
+    registry={{ .Values.orchestrator.rhdhPlugins.npmRegistry }}
+{{- end }}
+---
+{{- define "orchestrator.plugins" }}
+{{- $secret := lookup "v1" "Secret" .Release.Namespace .Values.orchestrator.rhdhOperator.secretRef.name }}
+plugins:
+{{- if and 
+  (and .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterToken 
+    (dig "data" .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterToken "" $secret ) )
+  (and .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterUrl   
+    (dig "data" .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterUrl "" $secret ) ) 
+}}
+- package: ./dynamic-plugins/dist/backstage-plugin-kubernetes-backend-dynamic
+  disabled: false
+  pluginConfig:
+    kubernetes:
+      customResources:
+        - group: 'tekton.dev'
+          apiVersion: 'v1'
+          plural: 'pipelines'
+        - group: 'tekton.dev'
+          apiVersion: 'v1'
+          plural: 'pipelineruns'
+        - group: 'tekton.dev'
+          apiVersion: 'v1'
+          plural: 'taskruns'
+        - group: 'route.openshift.io'
+          apiVersion: 'v1'
+          plural: 'routes'
+      serviceLocatorMethod:
+        type: 'multiTenant'
+      clusterLocatorMethods:
+        - type: 'config'
+          clusters:
+            - name: 'Default Cluster'
+              url: {{ printf "${%s}" .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterUrl }}
+              authProvider: 'serviceAccount'
+              skipTLSVerify: true
+              serviceAccountToken: {{ printf "${%s}" .Values.orchestrator.rhdhOperator.secretRef.k8s.clusterToken }}
+- package: ./dynamic-plugins/dist/backstage-plugin-kubernetes
+  disabled: false
+  {{- if .Values.orchestrator.tekton.enabled }}
+- package: ./dynamic-plugins/dist/backstage-community-plugin-tekton
+  disabled: false
+  {{- end }}
+{{- end }}
+{{- if and .Values.orchestrator.argocd.enabled
+  ( and
+      (and (.Values.orchestrator.rhdhOperator.secretRef.argocd.url) (dig "data" .Values.orchestrator.rhdhOperator.secretRef.argocd.url "" $secret ) )
+      (and (.Values.orchestrator.rhdhOperator.secretRef.argocd.username) (dig "data" .Values.orchestrator.rhdhOperator.secretRef.argocd.password "" $secret) )
+  )
+}}
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-community-plugin-redhat-argocd
+- disabled: false
+  package: ./dynamic-plugins/dist/roadiehq-backstage-plugin-argo-cd-backend-dynamic
+- disabled: false
+  package: ./dynamic-plugins/dist/roadiehq-scaffolder-backend-argocd-dynamic
+{{- end }}
+- disabled: false
+  package: "{{ .Values.orchestrator.rhdhPlugins.scope }}/{{ .Values.orchestrator.rhdhPlugins.orchestratorBackend.package }}"
+  integrity: {{ .Values.orchestrator.rhdhPlugins.orchestratorBackend.integrity }}
+  pluginConfig:
+    orchestrator:
+      dataIndexService:
+        url: http://sonataflow-platform-data-index-service.{{ .Release.Namespace }}
+- disabled: false
+  package: "{{ .Values.orchestrator.rhdhPlugins.scope }}/{{ .Values.orchestrator.rhdhPlugins.orchestrator.package }}"
+  integrity: {{ .Values.orchestrator.rhdhPlugins.orchestrator.integrity }}
+  pluginConfig:
+    dynamicPlugins:
+      frontend:
+        red-hat-developer-hub.backstage-plugin-orchestrator:
+          appIcons:
+            - importName: OrchestratorIcon
+              module: OrchestratorPlugin
+              name: orchestratorIcon
+          dynamicRoutes:
+            - importName: OrchestratorPage
+              menuItem:
+                icon: orchestratorIcon
+                text: Orchestrator
+              module: OrchestratorPlugin
+              path: /orchestrator
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-notifications
+  pluginConfig:
+    dynamicPlugins:
+      frontend:
+        backstage.plugin-notifications:
+          dynamicRoutes:
+            - importName: NotificationsPage
+              menuItem:
+                config:
+                  props:
+                    titleCounterEnabled: true
+                    webNotificationsEnabled: false
+                importName: NotificationsSidebarItem
+              path: /notifications
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-signals
+  pluginConfig:
+    dynamicPlugins:
+      frontend:
+        backstage.plugin-signals: {}
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-notifications-backend-dynamic
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-signals-backend-dynamic
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-scaffolder-backend-module-github-dynamic
+{{- if and .Values.orchestrator.rhdhPlugins.notificationsEmail.enabled
+  ( and (.Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.hostname) (dig "data" .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.hostname "" $secret ) )
+}}
+- disabled: false
+  package: ./dynamic-plugins/dist/backstage-plugin-notifications-backend-module-email-dynamic
+  pluginConfig:
+    notifications:
+      processors:
+        email:
+          transportConfig:
+            transport: smtp
+            hostname: {{ printf "${%s}" .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.hostname }}
+            port: {{ .Values.orchestrator.rhdhPlugins.notificationsEmail.port }}
+            secure: false
+          {{- if .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.username }}
+            username: {{ printf "${%s}" .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.username }}
+          {{- end}}
+          {{- if .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.password }}
+            password: {{ printf "${%s}" .Values.orchestrator.rhdhOperator.secretRef.notificationsEmail.password }}
+          {{- end}}
+          sender: {{ .Values.orchestrator.rhdhPlugins.notificationsEmail.sender }}
+          {{- if .Values.orchestrator.rhdhPlugins.notificationsEmail.replyTo }}
+          replyTo: {{ .Values.orchestrator.rhdhPlugins.notificationsEmail.replyTo }}
+          {{- end}}
+          broadcastConfig:
+            receiver: "none"
+          concurrencyLimit: 10
+          cache:
+            ttl:
+              days: 1
+  {{- end }}
+{{- $unmanagedNamespaceExists := include "unmanaged-resource-exists" (list "rhdh.redhat.com/v1alpha1" "Backstage" .Release.Namespace "backstage" .Release.Name .Capabilities.APIVersions ) }}
+{{- end }}
@@ -0,0 +1,25 @@
+{{- if .Values.orchestrator.enabled }}
+---
+apiVersion: operator.knative.dev/v1beta1
+kind: KnativeServing
+metadata:
+  name: knative-serving
+  namespace: knative-serving
+  annotations:
+    "meta.helm.sh/release-name": {{ .Release.Name }}
+spec:
+  controller-custom-certs:
+    name: ""
+    type: ""
+  registry: {}
+---
+apiVersion: operator.knative.dev/v1beta1
+kind: KnativeEventing
+metadata:
+  name: knative-eventing
+  namespace: knative-eventing
+  annotations:
+    "meta.helm.sh/release-name": {{ .Release.Name }}
+spec:
+  Registry:
+{{- end }}
@@ -1,4 +1,3 @@
-{{- if .Values.orchestrator.enabled }}
 {{- if .Values.orchestrator.sonataFlowOperator.enabled }}
 apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
@@ -72,5 +71,4 @@ spec:
           matchLabels:
             # Allow openshift-user-workload-monitoring pods to access the workflow.
             kubernetes.io/metadata.name: openshift-user-workload-monitoring
-{{- end }}
 {{- end }}