[MOSIP-32901] Updated config server

helm/artifactory/README.md

@@ -0,0 +1,6 @@
+# Artifactory
+
+## Install
+```sh
+./install.sh
+```

helm/artifactory/delete.sh

@@ -0,0 +1,30 @@
+#!/bin/bash
+# Uninstalls artifactory
+# Usage: ./delete.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+function deleting_artifactory() {
+ NS=artifactory
+ while true; do
+ read -p "Are you sure you want to delete artifactory helm chart?(Y/n) " yn
+ if [ $yn = "Y" ]
+ then
+ helm -n $NS delete artifactory
+ break
+ else
+ break
+ fi
+ done
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+deleting_artifactory # calling function

helm/artifactory/install.sh

@@ -0,0 +1,35 @@
+#!/bin/bash
+# Installs artifactory
+## Usage: ./install.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+NS=artifactory
+CHART_VERSION=0.0.1-develop
+
+echo Create $NS namespace
+kubectl create ns $NS
+
+function installing_artifactory() {
+ echo Istio label
+ kubectl label ns $NS istio-injection=enabled --overwrite
+ helm repo update
+
+ echo Installing artifactory
+ helm -n $NS install artifactory mosip/artifactory --version $CHART_VERSION
+
+ kubectl -n $NS get deploy -o name | xargs -n1 -t kubectl -n $NS rollout status
+
+ echo Installed artifactory service
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+installing_artifactory # calling function

helm/artifactory/restart.sh

@@ -0,0 +1,25 @@
+#!/bin/bash
+# Restart the artifactory service
+## Usage: ./restart.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+function Restarting_artifactory() {
+ NS=artifactory
+ kubectl -n $NS rollout restart deploy
+
+ kubectl -n $NS get deploy -o name | xargs -n1 -t kubectl -n $NS rollout status
+
+ echo Restarted Artifactory services
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+Restarting_artifactory # calling function

helm/config-server/README.md

@@ -0,0 +1,14 @@
+# Config server
+
+## Introduction
+Config server serves all properties required by MOSIP modules. This must be installed before any other MOSIP modules.
+
+## Install
+* Review `values.yaml` and make sure git repository parameters are as per your installation.
+* Install
+```sh
+./install.sh
+```
+
+
+

helm/config-server/copy_cm.sh

@@ -0,0 +1,19 @@
+#!/bin/bash
+# Copy configmaps from other namespaces
+
+function copying_cm() {
+ COPY_UTIL=./copy_cm_func.sh
+ DST_NS=config-server # DST_NS: Destination namespace
+
+ $COPY_UTIL configmap global default $DST_NS
+ $COPY_UTIL configmap keycloak-host keycloak $DST_NS
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+copying_cm # calling function

helm/config-server/copy_cm_func.sh

@@ -0,0 +1,28 @@
+#!/bin/bash
+# Copy configmap and secret from one namespace to another.
+# ./copy_cm_func.sh <resource> <configmap_name> <source_namespace> <destination_namespace> [name]
+# Parameters:
+# resource: configmap|secret
+# name: Optional new name of the configmap or secret in destination namespace. This may be needed if there is
+# clash of names
+
+if [ $1 = "configmap" ]
+then
+ RESOURCE=configmap
+elif [ $1 = "secret" ]
+then
+ RESOURCE=secret
+else
+ echo "Incorrect resource $1. Exiting.."
+ exit 1
+fi
+
+
+if [ $# -ge 5 ]
+then
+ kubectl -n $4 delete --ignore-not-found=true $RESOURCE $5
+ kubectl -n $3 get $RESOURCE $2 -o yaml | sed "s/namespace: $3/namespace: $4/g" | sed "s/name: $2/name: $5/g" | kubectl -n $4 create -f -
+else
+ kubectl -n $4 delete --ignore-not-found=true $RESOURCE $2
+ kubectl -n $3 get $RESOURCE $2 -o yaml | sed "s/namespace: $3/namespace: $4/g" | kubectl -n $4 create -f -
+fi

helm/config-server/copy_secrets.sh

@@ -0,0 +1,18 @@
+#!/bin/bash
+# Copy secrets from other namespaces
+
+function copying_secrets() {
+ COPY_UTIL=./copy_cm_func.sh
+ DST_NS=config-server # DST_NS: Destination namespace
+ $COPY_UTIL secret keycloak keycloak $DST_NS
+ $COPY_UTIL secret db-common-secrets postgres $DST_NS
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+copying_secrets # calling function

helm/config-server/delete.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+# Uninstalls config server
+## Usage: ./delete.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+function config_server() {
+ NS=config-server
+ while true; do
+ read -p "Are you sure you want to delete config-server helm charts?(Y/n) " yn
+ if [ $yn = "Y" ]
+ then
+ kubectl -n $NS delete configmap global keycloak-host
+ kubectl -n $NS delete secret db-common-secrets keycloak keycloak-client-secrets
+ helm -n $NS delete config-server
+ break
+ else
+ break
+ fi
+ done
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+config_server # calling function

helm/config-server/install.sh

@@ -0,0 +1,39 @@
+#!/bin/bash
+# Installs config-server
+## Usage: ./install.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+NS=config-server
+CHART_VERSION=0.0.1-develop
+
+ echo Create $NS namespace
+ kubectl create ns $NS
+
+ # set commands for error handling.
+ set -e
+ set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+ set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+ set -o errtrace # trace ERR through 'time command' and other functions
+ set -o pipefail # trace ERR through pipes
+
+ echo Istio label
+ kubectl label ns $NS istio-injection=enabled --overwrite
+ helm repo update
+
+ echo Copy configmaps
+ sed -i 's/\r$//' copy_cm.sh
+ ./copy_cm.sh
+
+ echo Copy secrets
+ sed -i 's/\r$//' copy_secrets.sh
+ ./copy_secrets.sh
+
+ echo Installing config-server
+ helm -n $NS install config-server mosip/config-server -f values.yaml --wait --version $CHART_VERSION
+ echo Installed Config-server.
+ else
+ echo Exiting the MOSIP installation. Please meet the pre-requisites and than start again.
+ kill -9 `ps --pid $$ -oppid=`; exit

helm/config-server/restart.sh

@@ -0,0 +1,25 @@
+#!/bin/bash
+# Restart the config-server service
+## Usage: ./restart.sh [kubeconfig]
+
+if [ $# -ge 1 ] ; then
+ export KUBECONFIG=$1
+fi
+
+function config_server() {
+ NS=config-server
+ kubectl -n $NS rollout restart deploy
+
+ kubectl -n $NS get deploy -o name | xargs -n1 -t kubectl -n $NS rollout status
+
+ echo Restarted config-server services
+ return 0
+}
+
+# set commands for error handling.
+set -e
+set -o errexit ## set -e : exit the script if any statement returns a non-true return value
+set -o nounset ## set -u : exit the script if you try to use an uninitialised variable
+set -o errtrace # trace ERR through 'time command' and other functions
+set -o pipefail # trace ERR through pipes
+config_server # calling function

helm/config-server/values.yaml

@@ -0,0 +1,48 @@
+gitRepo:
+ uri: https://github.com/mosip/mosip-config
+ version: develop
+ ## Folders within the base repo where properties may be found.
+ searchFolders: ""
+ private: false
+ ## User name of user who has access to the private repo. Ignore for public repo
+ username: ""
+ token: ""
+
+envVariables:
+ - name: SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_DB_DBUSER_PASSWORD
+ valueFrom:
+ secretKeyRef:
+ name: db-common-secrets
+ key: db-dbuser-password
+ enabled: true
+ - name: SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_KEYCLOAK_EXTERNAL_URL
+ valueFrom:
+ configMapKeyRef:
+ key: keycloak-external-url
+ name: keycloak-host
+ enabled: true
+ - name: SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_MOSIP_API_PUBLIC_HOST
+ valueFrom:
+ configMapKeyRef:
+ key: mosip-api-host
+ name: global
+ enabled: true
+ - name: SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_MOSIP_ABIS_CLIENT_SECRET
+ valueFrom:
+ secretKeyRef:
+ key: mosip_abis_client_secret
+ name: keycloak-client-secrets
+ enabled: true
+ - name: >-
+ SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_MPARTNER_DEFAULT_AUTH_SECRET
+ valueFrom:
+ secretKeyRef:
+ key: mpartner_default_auth_secret
+ name: keycloak-client-secrets
+ enabled: true
+ - name: SPRING_CLOUD_CONFIG_SERVER_OVERRIDES_MOSIP_IDA_CLIENT_SECRET
+ valueFrom:
+ secretKeyRef:
+ key: mosip_ida_client_secret
+ name: keycloak-client-secrets
+ enabled: true