Merge pull request #894 from suxess-it/fix/demo

Fix/demo
suxess-it · Dec 6, 2024 · c254aff · c254aff
2 parents 6e99e16 + a8641f5
commit c254aff
Show file tree

Hide file tree

Showing 13 changed files with 336 additions and 56 deletions.
diff --git a/backstage-resources/templates/scaffolder-templates-demo/sx-kargo-demo-app/template.yaml b/backstage-resources/templates/scaffolder-templates-demo/sx-kargo-demo-app/template.yaml
@@ -34,11 +34,8 @@ spec:
           title: Team
           type: string
           description: Repoowner Teamname
-          ui:field: EntityPicker
-          ui:options:
-            allowArbitraryValues: false
-            catalogFilter:
-              - kind: Group
+          ui:field: MyGroupsPicker
+          ui:options: {}
         fqdn:
           title: FQDN
           type: string       

diff --git a/backstage-resources/templates/scaffolder-templates-demo/sx-template-onboarding/template.yaml b/backstage-resources/templates/scaffolder-templates-demo/sx-template-onboarding/template.yaml
@@ -20,11 +20,8 @@ spec:
           title: Team Name
           type: string
           description: Select your team name for onboarding
-          ui:field: EntityPicker
-          ui:options:
-            allowArbitraryValues: false
-            catalogFilter:
-              - kind: Group
+          ui:field: MyGroupsPicker
+          ui:options: {}
 
     - title: Choose a location
       required:

diff --git a/backstage-resources/templates/scaffolder-templates/sx-kargo-demo-app/template.yaml b/backstage-resources/templates/scaffolder-templates/sx-kargo-demo-app/template.yaml
@@ -34,11 +34,8 @@ spec:
           title: Team
           type: string
           description: Repoowner Teamname
-          ui:field: EntityPicker
-          ui:options:
-            allowArbitraryValues: false
-            catalogFilter:
-              - kind: Group
+          ui:field: MyGroupsPicker
+          ui:options: {}
         fqdn:
           title: FQDN
           type: string       

diff --git a/backstage-resources/templates/scaffolder-templates/sx-template-onboarding/template.yaml b/backstage-resources/templates/scaffolder-templates/sx-template-onboarding/template.yaml
@@ -20,11 +20,8 @@ spec:
           title: Team Name
           type: string
           description: Select your team name for onboarding
-          ui:field: EntityPicker
-          ui:options:
-            allowArbitraryValues: false
-            catalogFilter:
-              - kind: Group
+          ui:field: MyGroupsPicker
+          ui:options: {}
 
     - title: Choose a location
       required:

diff --git a/platform-apps/charts/backstage/values-demo-metalstack.yaml b/platform-apps/charts/backstage/values-demo-metalstack.yaml
@@ -20,6 +20,7 @@ backstage:
     extraEnvVarsSecrets:
       - sx-cnp-secret
       - manual-secret
+      - backstage-db-secrets
     extraEnvVars:
       - name: NODE_OPTIONS
         value: "--no-node-snapshot"
@@ -33,11 +34,11 @@ backstage:
         mountPath: /opt/app-root/src/rbac
     appConfig:
       app:
-        title: sX CNP App
+        title: kubriX platform
         baseUrl: https://backstage.demo.kubrix.cloud
 
       organization:
-        name: sX CNP
+        name: kubriX platform
 
       backend:
         # Used for enabling authentication, secret is shared by all backend plugins
@@ -70,8 +71,14 @@ backstage:
         # This is for local development only, it is not recommended to use this in production
         # The production database configuration is stored in app-config.production.yaml
         database:
-          client: better-sqlite3
-          connection: ':memory:'
+        #  client: better-sqlite3
+        #  connection: ':memory:'
+          client: pg
+          connection:
+            host: ${POSTGRES_HOST}
+            port: ${POSTGRES_PORT}
+            user: ${POSTGRES_USER}
+            password: ${POSTGRES_PASSWORD}
         cache:
           store: memory
         # workingDirectory: /tmp # Use this to configure a working directory for the scaffolder, defaults to the OS temp-dir
@@ -175,47 +182,49 @@ backstage:
               - noHashtag
           - title: Central Monitoring
             description: Central Monitoring
-            url: /monitoring
+            url: https://grafana.demo.kubrix.cloud/
             image: /homepage/images/monitoring.jpg
             tags:
               - Monitoring
-              - notReallyavailable
-          - title: Platforms
-            description: Discover other companies platforms
-            url: /platforms
+              - Observability
+          - title: GitOps CD
+            description: Discover kubriX GitOps CD
+            url: https://argocd.demo.kubrix.cloud/
             image: /homepage/images/platforms.jpg
             tags:
-              - platforms
-              - notReallyavailable
-          - title: Infrastructure
-            description: Recommended products for Platform Missions
-            url: /infrastructure
-            image: /homepage/images/infrastructure.jpg
-            tags:
-              - infrastructure
-              - notReallyavailable
-          - title: Client SDKs
-            description: corporate building blocks
-            url: /cliendsdk
+              - GitOps
+              - CD
+              - argocd
+          - title: GitOps Promotion
+            description: orchestrate stage-to-stage deployments
+            url: https://kargo.demo.kubrix.cloud
             image: /homepage/images/sdk.jpg
             tags:
-              - clientSDK
-              - notReallyavailable
-          - title: Hubs
-            description: User experiences arount specific domains of interest
-            url: /hubs
+              - kargo
+              - multistage
+              - promotion
+          - title: Thread Detection
+            description: Discover security threats in real time
+            url: https://falco.demo.kubrix.cloud
+            image: /homepage/images/infrastructure.jpg
+            tags:
+              - falco
+              - Threat Detection
+              - Regulatory Compliance
+          - title: IAM
+            description: Identity and Access Management
+            url: /https://keycloak.demo.kubrix.cloud
             image: /homepage/images/hubs.jpg
             tags:
-              - hubs
-              - notReallyavailable
-          - title: Apps
-            description: Official sX Apps
-            url: /hubs
+              - keycloak
+              - sso
+          - title: Secret Management
+            description: Manage Secrets 
+            url: https://vault.demo.kubrix.cloud
             image: /homepage/images/apps.jpg
             tags:
-              - apps
-              - notReallyavailable
-
+              - vault
+              - secrets
       catalog:
         import:
           entityFilename: catalog-info.yaml
@@ -386,4 +395,28 @@ backstage:
 
 ## pgdb
 cluster:
-  enabled: false
+  type: postgresql
+  mode: standalone
+  version:
+    postgresql: "16"
+  cluster:
+    instances: 3
+    walStorage:
+      enabled: true
+    monitoring:
+      enabled: true
+    superuserSecret: cnpg-superuser-secret
+    roles:
+    - name: backstage
+      ensure: present
+      comment: backstage-admin-user
+      login: true
+      inherit: true
+      superuser: true
+      createdb: true
+      passwordSecret:
+        name: cnpg-backstage-secret
+    annotations:
+      argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true
+  backups:
+    enabled: false
diff --git a/platform-apps/charts/cnpg/values-demo-metalstack.yaml b/platform-apps/charts/cnpg/values-demo-metalstack.yaml
@@ -0,0 +1,44 @@
+cloudnative-pg:
+  replicaCount: 2
+  monitoring:
+    podMonitorEnabled: true
+  commonAnnotations:
+    argocd.argoproj.io/sync-wave: "-2"
+## pgadmin for demopurposes
+pgadmin4:
+  ingress:
+    enabled: true
+    ingressClassName: nginx
+    annotations:
+      external-dns.alpha.kubernetes.io/ttl: "60"
+      cert-manager.io/cluster-issuer: letsencrypt-prod
+    hosts:
+      - host: pgadmin.demo.kubrix.cloud
+        paths:
+          - path: /
+            pathType: Prefix
+    tls:
+      - secretName: pgadmin-server-tls
+        hosts:
+          - pgadmin.demo.kubrix.cloud
+  extraConfigmapMounts:
+    - name: configmap
+      configMap: pgadminconfiglocal
+      mountPath: /pgadmin4/config_local.py
+      subPath: config_local.py
+      readOnly: true
+  envVarsFromSecrets:
+    - pgadmin-secret
+  serverDefinitions:
+    enabled: true
+    servers:
+      backstagePG:
+        Name: "backstagePG"
+        Group: "kubriX"
+        Port: 5432
+        Username: backstage
+        Host: sx-backstage-cluster-rw.backstage.svc.cluster.local
+        MaintenanceDB: "postgres"
+  existingSecret: pgadmin-secret
+  env:
+    email: pgadmin4@kubrix.io
diff --git a/platform-apps/charts/kubevirt-manager/templates/certificate.yaml b/platform-apps/charts/kubevirt-manager/templates/certificate.yaml
@@ -6,7 +6,7 @@ metadata:
 spec:
   secretName: {{ .Values.deployment.tls.name }}
   issuerRef:
-    name: letsencrypt-staging
+    name: letsencrypt-prod
     kind: ClusterIssuer
   dnsNames:
     - {{ .Values.deployment.ingress.host }}

diff --git a/platform-apps/charts/kubevirt-manager/values-demo-metalstack.yaml b/platform-apps/charts/kubevirt-manager/values-demo-metalstack.yaml
@@ -0,0 +1,15 @@
+cert:
+  enabled: true
+
+gardenercert:
+  enabled: false
+
+deployment:
+  version: 1.4.1
+  tls: 
+    name: kubevirt-manager-server-tls
+  ingress:
+    host: kubevirt-manager.demo.kubrix.cloud
+  service:
+    name: kubevirt-manager
+    port: 8080
diff --git a/platform-apps/charts/kubevirt/values-demo-metalstack.yaml b/platform-apps/charts/kubevirt/values-demo-metalstack.yaml
@@ -0,0 +1,20 @@
+kubevirt:
+  version: v1.2.0
+cdi:
+  version: v1.59.0
+datasources:
+  enabled: true
+  clientnamespaces:
+    - prod-demo-kubevirt
+    - test-demo-kubevirt
+    - qa-demo-kubevirt
+  sources:
+    - name: ubuntu-jammy-server
+      url: http://cloud-images.ubuntu.com/jammy/current/jammy-server-cloudimg-amd64.img
+      storage: 3G
+      # description for backstage Software Catalog
+      description: ubuntu 22.02 Base Image
+    - name: fedora-cloud-base
+      url: https://download.fedoraproject.org/pub/fedora/linux/releases/40/Cloud/x86_64/images/Fedora-Cloud-Base-Generic.x86_64-40-1.14.qcow2
+      storage: 10G
+      description: fedoa cloud v40.1.14 Base Image
diff --git a/platform-apps/charts/minio/values-demo-metalstack.yaml b/platform-apps/charts/minio/values-demo-metalstack.yaml
@@ -0,0 +1,57 @@
+minio:
+  enabled: true
+  replicas: 1
+  mode: standalone  
+  persistence:
+    size: 5Gi
+  resources:
+    requests:
+      memory: 2Gi
+  buckets:
+    - name: velero
+      policy: public
+      purge: false
+  metrics:
+    serviceMonitor:
+      enabled: true
+      includeNode: true
+  existingSecret: minio-admin-secret
+  users:
+  #  - accessKey: minio
+  #    secretKey: minio123
+  #    policy: consoleAdmin
+    - accessKey: minio
+      existingSecret: minio-admin-secret
+      existingSecretKey: secretKey
+      policy: consoleAdmin
+  tls:
+    enabled: true
+    certSecret: "minio-server-tls"
+    publicCrt: tls.crt
+    privateKey: tls.key
+  consoleIngress:
+    enabled: true
+    ingressClassName: nginx
+    annotations:
+      external-dns.alpha.kubernetes.io/ttl: "60"
+      cert-manager.io/cluster-issuer: letsencrypt-prod
+      nginx.ingress.kubernetes.io/backend-protocol: "HTTPS"
+    path: /
+    hosts:
+      - minio-console.demo.kubrix.cloud
+    tls: 
+      - secretName: minio-console-tls
+        hosts:
+          - minio-console.demo.kubrix.cloud
+  ingress:
+    enabled: true
+    ingressClassName: ~
+    annotations:
+      nginx.ingress.kubernetes.io/backend-protocol: "HTTPS"
+    path: /
+    hosts:
+      - minio.demo.kubrix.cloud
+    tls: 
+      - secretName: minio-server-tls
+        hosts:
+          - minio.demo.kubrix.cloud
diff --git a/platform-apps/charts/velero-ui/values-demo-metalstack.yaml b/platform-apps/charts/velero-ui/values-demo-metalstack.yaml
@@ -0,0 +1,33 @@
+vui:
+  global:
+    veleroNamespace: velero
+    kubernetesClusterDomain: cluster.local
+    clusterName: "kubriX--demo"
+
+  apiConfig:
+    apiEnableDocumentation: "1"
+    k8SInClusterMode: "True"
+    origins1: 'https://velero-ui.demo.kubrix.cloud'
+    veleroCliVersion: v1.14.0
+    existingSecret: velero-ui-credential
+
+  uiIngress:
+    enabled: true
+    host: velero-ui.demo.kubrix.cloud
+    ingressClassName: nginx
+    metadata:
+      annotations:
+        external-dns.alpha.kubernetes.io/ttl: "60"
+        cert-manager.io/cluster-issuer: letsencrypt-prod
+    spec:
+      tls:
+        - secretName: velero-ui-tls
+          hosts:
+            - velero-ui.demo.kubrix.cloud
+
+  uiNp: # NodePort
+    enabled: false
+    ip: ""
+    apiPort: "30001"
+    uiPort: "30002"
+