[IDG-15757] - [API] Improve our development env for OpenShift

msmagnanijr · msmagnanijr · commit 45f48870f316 · 2024-01-10T12:34:00.000-03:00
Signed-off-by: Mauricio Magnani &lt;magnani@redhat.com&gt;
diff --git a/automation/README.md b/automation/README.md
@@ -0,0 +1,48 @@
+Overview
+--------
+
+This is a ansible based project to deploy all eda-server related components.
+
+Pre-requisites
+--------------
+
+Minikube - https://minikube.sigs.k8s.io/docs ( `minikube addons enable storage-provisioner` and `minikube addons enable default-storageclass` )
+
+Red Hat OpenShift Local - https://developers.redhat.com/products/openshift-local/overview
+
+
+Ansible - https://github.com/ansible/ansible
+
+Kubernetes Collection for Ansible - `ansible-galaxy collection install kubernetes.core`
+
+
+Usage
+--------------
+
+Make sure that your Minikube or Openshift Local is running.
+
+After that, review the variables and make any necessary customizations. This can be done in the file:
+
+```bash
+group_vars/all/vars.yml
+ ```
+
+The following variables can be customized to determine whether a specific action is executed or not.
+
+**env_type**: This variable supports `"minikube"` or `"openshift"` as the execution target.
+
+**eda_deploy_operator**: This variable must be set to `"true"` for the eda-server-operator to be installed.
+
+**eda_deploy_server**: This variable must be set to `"true"` for eda-server to be installed. At this moment, this installation still relies on the eda-server-operator, as everything is based on the "eda" crd.
+
+
+To run, simply be in the same directory as the `playbook.yaml` file and execute the command: `ansible-playbook playbook.yaml`
+
+
+At the end of the execution, you should have all components installed in the namespace defined in the variable `eda_namespace`
+
+Attention Points
+----------------
+
+For execution on Openshift, the variable `postgres_storage_class` should be updated
+
diff --git a/automation/ansible.cfg b/automation/ansible.cfg
@@ -0,0 +1,8 @@
+[defaults]
+host_key_checking = False
+retry_files_enabled = False
+callback_whitelist = profile_tasks
+
+[ssh_connection]
+ssh_args = -o ControlMaster=auto -o ControlPersist=600s
+pipelining = True
diff --git a/automation/group_vars/all/vars.yaml b/automation/group_vars/all/vars.yaml
@@ -0,0 +1,77 @@
+---
+ansible_python_interpreter: /usr/bin/python3
+
+env_type: minikube #minikube  #openshift
+eda_deploy_operator: "true"
+eda_deploy_server: "true"
+
+eda_namespace: aap-eda
+
+eda_operator:
+  api_version: kustomize.config.k8s.io/v1beta1
+  namespace: aap-eda
+  disable_name_suffix_hash: true
+  secret_generator_name: redhat-operators-pull-secret
+  operator_literal: eda
+  resource_url: github.com/ansible/eda-server-operator/config/default?ref=0.0.11
+  image_name: quay.io/ansible/eda-server-operator
+  image_new_tag: 0.0.11
+
+eda_operator_files_path: roles/eda-deploy-operator/files
+eda_server_files_path:  roles/eda-deploy-server/files
+
+eda_server:
+  pvc_name: eda-postgres-13-volume
+  access_modes: ReadWriteOnce
+  storage_request: 500Mi
+  namespace: aap-eda
+
+  admin_user: admin
+  admin_password_secret: eda-admin-password
+
+  ingress_type: ingress
+  ingress_class_name: nginx
+  hostname: eda.local 
+  
+  automation_server_url: https://awx.local
+  automation_server_ssl_verify: "no"
+ 
+  image: quay.io/ansible/eda-server
+  image_version: sha-98eaec9
+ 
+  image_web: quay.io/ansible/eda-ui
+  image_web_version: 2.4.860
+
+  redis_image:
+  redis_image_version:
+
+  api:
+    replicas: 1
+
+  ui:
+    replicas: 1
+
+  worker:
+    replicas: 2
+
+  redis:
+    replicas: 1
+
+  database:
+    database_secret: eda-database-configuration
+    #postgres_storage_class: crc-csi-hostpath-provisioner # openshift
+    postgres_storage_class: standard # minishift
+    storage_requirements:
+      requests:
+        storage: 3Gi
+    resource_requirements:
+      requests: {}
+
+eda_server_kustomization:
+  eda_database_configuration_host: eda-postgres-13
+  eda_database_configuration_port: 5432
+  eda_database_configuration_database: eda
+  eda_database_configuration_username: eda
+  eda_database_configuration_password: testpass
+  eda_database_configuration_type: managed
+  eda_admin_password_password: testpass
diff --git a/automation/hosts b/automation/hosts
@@ -0,0 +1,2 @@
+[all]
+localhost
diff --git a/automation/playbook.yaml b/automation/playbook.yaml
@@ -0,0 +1,8 @@
+- hosts: localhost
+  roles:
+
+    - name: eda-deploy-operator
+      when: (env_type == "minikube" or env_type == "openshift") and eda_deploy_operator == "true"
+
+    - name: eda-deploy-server
+      when: (env_type == "minikube" or env_type == "openshift") and eda_deploy_server == "true"
diff --git a/automation/roles/eda-deploy-operator/files/.gitkeep b/automation/roles/eda-deploy-operator/files/.gitkeep
diff --git a/automation/roles/eda-deploy-operator/tasks/main.yaml b/automation/roles/eda-deploy-operator/tasks/main.yaml
@@ -0,0 +1,35 @@
+---
+- name: Check {{ env_type }} connection
+  block:
+    - k8s_info:
+        api_version: v1
+        kind: Pod
+        namespace: default
+        name: ansible-check-pod
+        kubeconfig: "{{ lookup('env', 'KUBECONFIG') }}"
+      register: k8s_info_result
+  rescue:
+    - fail:
+        msg: "Failed to connect to Kubernetes cluster. Please check your configuration and try again."
+  always:
+    - debug:
+        var: k8s_info_result
+
+- name: Create {{ eda_namespace }} namespace
+  k8s:
+    definition:
+      apiVersion: v1
+      kind: Namespace
+      metadata:
+        name: "{{ eda_namespace }}"
+  when: k8s_info_result is succeeded
+
+- name: Generate EDA Operator kustomization file
+  template:
+    src: kustomization-eda-operator.yaml.j2
+    dest: "{{ eda_operator_files_path }}/kustomization.yaml"
+
+- name: Apply EDA Operator kustomization file
+  k8s:
+    definition: "{{ lookup('pipe', 'kustomize build {{ eda_operator_files_path }}') }}"
+    state: present
diff --git a/automation/roles/eda-deploy-operator/templates/kustomization-eda-operator.yaml.j2 b/automation/roles/eda-deploy-operator/templates/kustomization-eda-operator.yaml.j2
@@ -0,0 +1,18 @@
+apiVersion: {{ eda_operator.api_version }}
+kind: Kustomization
+namespace: {{ eda_operator.namespace }}
+
+generatorOptions:
+  disableNameSuffixHash: {{ eda_operator.disable_name_suffix_hash }}
+
+secretGenerator:
+  - name: {{ eda_operator.secret_generator_name }}
+    literals:
+      - operator={{ eda_operator.operator_literal }}
+
+resources:
+  - {{ eda_operator.resource_url }}
+
+images:
+  - name: {{ eda_operator.image_name }}
+    newTag: {{ eda_operator.image_new_tag }}
diff --git a/automation/roles/eda-deploy-server/files/.gitkeep b/automation/roles/eda-deploy-server/files/.gitkeep
diff --git a/automation/roles/eda-deploy-server/tasks/main.yaml b/automation/roles/eda-deploy-server/tasks/main.yaml
@@ -0,0 +1,44 @@
+---
+- name: Check {{ env_type }} connection
+  block:
+    - k8s_info:
+        api_version: v1
+        kind: Pod
+        namespace: default
+        name: ansible-check-pod
+        kubeconfig: "{{ lookup('env', 'KUBECONFIG') }}"
+      register: k8s_info_result
+  rescue:
+    - fail:
+        msg: "Failed to connect to Kubernetes cluster. Please check your configuration and try again."
+  always:
+    - debug:
+        var: k8s_info_result
+
+- name: Check if {{ eda_namespace }} namespace exists
+  k8s_info:
+    kind: Namespace
+    name: "{{ eda_namespace }}"
+    kubeconfig: "{{ lookup('env', 'KUBECONFIG') }}"
+  register: namespace_info
+  failed_when: namespace_info.resources|length == 0
+
+- name: Generate EDA Server pvc file
+  template:
+    src: eda-server-pvc.yaml.j2
+    dest: "{{ eda_server_files_path }}/eda-server-pvc.yaml"
+
+- name: Generate EDA Server file
+  template:
+    src: eda-server.yaml.j2
+    dest: "{{ eda_server_files_path }}/eda-server.yaml"
+
+- name: Generate EDA Server kustomization file
+  template:
+    src: eda-server-kustomization.yaml.j2
+    dest: "{{ eda_server_files_path }}/kustomization.yaml"
+
+- name: Apply EDA Server kustomization file
+  k8s:
+    definition: "{{ lookup('pipe', 'kustomize build {{ eda_server_files_path }}') }}"
+    state: present
diff --git a/automation/roles/eda-deploy-server/templates/eda-server-kustomization.yaml.j2 b/automation/roles/eda-deploy-server/templates/eda-server-kustomization.yaml.j2
@@ -0,0 +1,27 @@
+---
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: {{ eda_namespace }}
+ 
+generatorOptions:
+  disableNameSuffixHash: true
+
+secretGenerator: 
+  - name: eda-database-configuration
+    type: Opaque
+    literals:
+      - host={{ eda_server_kustomization.eda_database_configuration_host }}
+      - port={{ eda_server_kustomization.eda_database_configuration_port }}
+      - database={{ eda_server_kustomization.eda_database_configuration_database }}
+      - username={{ eda_server_kustomization.eda_database_configuration_username }}
+      - password={{ eda_server_kustomization.eda_database_configuration_password }}
+      - type=managed
+ 
+  - name: eda-admin-password
+    type: Opaque
+    literals:
+      - password={{ eda_server_kustomization.eda_admin_password_password }}
+
+resources:
+  - eda-server-pvc.yaml
+  - eda-server.yaml
diff --git a/automation/roles/eda-deploy-server/templates/eda-server-pvc.yaml.j2 b/automation/roles/eda-deploy-server/templates/eda-server-pvc.yaml.j2
@@ -0,0 +1,12 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: {{ eda_server.pvc_name }}
+  namespace: {{ eda_server.namespace }}
+spec:
+  accessModes:
+    - "{{ eda_server.access_modes }}"
+  resources:
+    requests:
+      storage: {{ eda_server.storage_request }}
+status: {}
diff --git a/automation/roles/eda-deploy-server/templates/eda-server.yaml.j2 b/automation/roles/eda-deploy-server/templates/eda-server.yaml.j2
@@ -0,0 +1,45 @@
+apiVersion: eda.ansible.com/v1alpha1
+kind: EDA
+metadata:
+  name: eda
+spec:
+  admin_user: {{ eda_server.admin_user }}
+  admin_password_secret: {{ eda_server.admin_password_secret }}
+ 
+  ingress_type: {{ eda_server.ingress_type }}
+  ingress_class_name: {{ eda_server.ingress_class_name }}
+  hostname: {{ eda_server.hostname }}
+  
+  automation_server_url: {{ eda_server.automation_server_url }}
+  automation_server_ssl_verify: {{ eda_server.automation_server_ssl_verify }}
+ 
+  image: {{ eda_server.image }}
+  image_version: {{ eda_server.image_version }}
+ 
+  image_web: {{ eda_server.image_web }}
+  image_web_version: {{ eda_server.image_web_version }}
+
+  api:
+    replicas: {{ eda_server.api.replicas }}
+    resource_requirements:
+      requests: {}
+  ui:
+    replicas: {{ eda_server.ui.replicas }}
+    resource_requirements:
+      requests: {}
+  worker:
+    replicas: {{ eda_server.worker.replicas }}
+    resource_requirements:
+      requests: {}
+  redis:
+    replicas: {{ eda_server.redis.replicas }}
+    resource_requirements:
+      requests: {}
+  database:
+    database_secret: {{ eda_server.database.database_secret }}
+    postgres_storage_class: {{ eda_server.database.postgres_storage_class }}
+    storage_requirements:
+      requests:
+        storage: {{ eda_server.database.storage_requirements.requests.storage }}
+    resource_requirements:
+      requests: {}
diff --git a/automation/roles/requirements.yaml b/automation/roles/requirements.yaml
@@ -0,0 +1,4 @@
+---
+collections:
+  - name: kubernetes.core
+    version: 3.0.0
