Orchestrator flavor in RHDH Operator

Author: GitHub Actions

artifacts/attributes.adoc

@@ -115,6 +115,9 @@
 :installing-on-gke-book-url: https://docs.redhat.com/en/documentation/red_hat_developer_hub/{product-version}/html-single/installing_red_hat_developer_hub_on_google_kubernetes_engine/index
 :installing-in-air-gap-book-title: Installing {product} in an air-gapped environment
 :installing-in-air-gap-book-url: https://docs.redhat.com/en/documentation/red_hat_developer_hub/{product-version}/html-single/installing_red_hat_developer_hub_in_an_air-gapped_environment/index
+:installing-rhdh-orch-on-ocp-book-title: Installing RHDH with the Orchestrator Plugin on {ocp-short} using the {product} Operator
+:installing-rhdh-orch-on-ocp-book-url: https://docs.redhat.com/en/documentation/red_hat_developer_hub/{product-version}/html-single/installing_rhdh_with_orchestrator_plugin_on_{ocp-short}_using_operator_in_an_air-gapped_environment/index
+
 
 :integrating-with-github-book-title: Integrating {product} with GitHub
 :integrating-with-github-book-url: https://docs.redhat.com/en/documentation/red_hat_developer_hub/{product-version}/html-single/integrating_red_hat_developer_hub_with_github/index

modules/orchestrator/con-infrastructure-components.adoc

@@ -0,0 +1,11 @@
+[id='con-infrastructure-components.adoc_{context}']
+= Infrastructure components
+
+To install {product} with the Orchestrator plugin on {ocp-short}, you need the following components to support the plugin and its runtime infrastructure:
+
+* OpenShift Serverless Operator
+* Knative Serving
+* Knative Eventing
+* OpenShift Serverless Logic Operator
+
+The {product} Operator provisions these automatically or you can install them manually using another Operator.

modules/orchestrator/con-orchestrator-plugin-components.adoc

@@ -0,0 +1,9 @@
+[id='con-orchestrator-plugin-components.adoc_{context}']
+= Orchestrator plugin components
+
+The following Orchestrator plugin components are included by default in `dynamic-plugins.default.yaml`:
+
+* `@redhat/backstage-plugin-orchestrator`
+* `@redhat/backstage-plugin-orchestrator-backend-dynamic`
+* `@redhat/backstage-plugin-scaffolder-backend-module-orchestrator-dynamic`
+* `@redhat/backstage-plugin-orchestrator-form-widgets`

modules/orchestrator/con-plugin-dependencies.adoc

@@ -0,0 +1,38 @@
+[id='con-plugin-dependencies.adoc_{context}']
+= Plugin dependencies
+
+To run the Orchestrator plugin instance, you need to install the following dependencies:
+
+* A SonataflowPlatform custom resource created in the namespace of the Backstage CR.
+* A set of NetworkPolicies to allow traffic between infra resources, such as knative and serverless logic Operator, created in the namespace of Backstage CR, traffic for monitoring, and intra-namespace traffic.
+
+The orchestrator-backend plugin uses the service `sonataflow-platform-data-index-service`, which is created by the _SonataFlowPlatform_ CR. The service communicates with the SonataFlow platform.
+
+[IMPORTANT]
+====
+The _sonataflowplatform_ CR contains dataIndex service that requires PostgreSQL database as shown in the following example:
+
+[source,bash]
+----
+      persistence:
+        postgresql:
+          secretRef:
+            name: backstage-psql-secret-{{backstage-name}}
+            userKey: POSTGRES_USER
+            passwordKey: POSTGRES_PASSWORD
+          serviceRef:
+            name: backstage-psql-{{backstage-name}} # Name of the Backstage Custom Resource (CR)
+            namespace: {{backstage-ns}} # Namespace where the Backstage CR is created
+            databaseName: backstage_plugin_orchestrator
+----
+====
+
+The default implementation of the Orchestrator plugin dependencies uses the following:
+
+* The PostgreSQL database named _backstage_plugin_orchestrator_ created by Backstage for Orchestrator plugin.
+* The Secret created by Backstage Operator for the PostgreSQL with *POSTGRES_USER* and *POSTGRES_PASSWORD* keys as the database credentials in the Backstage CR namespace.
+* The Service created by Backstage Operator for the PostgreSQL database with the name `backstage-psql-{{backstage-name}}` in the Backstage CR namespace.
+
+For more information about automatically creating 'plugin dependencies' resources when the Backstage CR is applied to the cluster, see link:https://github.com/redhat-developer/rhdh-operator/blob/release-1.7/docs/dynamic-plugins.md#dynamic-plugins-dependency-management[Dynamic plugins dependency management].
+
+To enable the Backstage Operator to work with the SonataFlow platform, you must grant the appropriate permissions to its ServiceAccount. The Backstage Operator automatically creates the required Role and RoleBinding resource in the `profile/rhdh/plugin-rbac directory` directory when creating the SonataFlowPlatform CR in the Backstage CR namespace.

modules/orchestrator/proc-install-components-for-orchestrator-plugin.adoc

@@ -0,0 +1,48 @@
+:_mod-docs-content-type: PROCEDURE
+
+[id="proc-install-components-for-orchestrator-plugin.adoc_{context}"]
+= Installing the components for the Orchestrator plugin on {ocp-short}
+
+You can install the required components for the Orchestrator plugin on {ocp-short} using the following methods:
+
+.Manual installation
+
+The manual installation is suitable for production environments particularly when you have installed the versions of required components such as when OpenShift Serverless is already in use by other applications.
+
+For more information on preparing the required infrastructure, see link:https://docs.redhat.com/en/documentation/red_hat_openshift_serverless/1.36[Red Hat OpenShift Serverless] and carry out the following steps to:
+
+* Prepare for OpenShift Serverless installation.
+
+* Install the OpenShift Serverless Operator.
+
+* Install Knative Serving.
+
+* Install Knative Eventing.
+
+* Install the OpenShift Serverless Logic Operator.
+
+.{product-very-short} helper script
+
+You can install the OpenShift Serverless infrastructure for the Orchestrator plugin using the {product-very-short} helper script. You can use the script in empty clusters, however, use with caution in production clusters.
+
+For more information on controlling the installation of the Operators, see link:https://olm.operatorframework.io/docs/tasks/install-operator-with-olm/[Install your Operator with OLM].
+
+.Procedure
+. Download the `plugin-infra.sh` script as shown in the following example:
++
+[source,bash]
+----
+curl -sSLO https://raw.githubusercontent.com/redhat-developer/rhdh-operator/refs/heads/release-1.7/config/profile/rhdh/plugin-infra/plugin-infra.sh # Specify the {product} version in the URL or use main
+----
+. Run the script as shown in the following example:
++
+[source,bash]
+----
+bash plugin-infra.sh
+----
+
+.{product-very-short} Orchestrator Infra Helm Chart
+{product-very-short} Orchestrator Infra Helm Chart has the same usage and cautions as the {product-very-short} helper script.
+
+.Procedure
+. Install the required components using the Orchestrator infrastructure helm chart.

modules/orchestrator/proc-install-orchestrator-plugin.adoc

@@ -0,0 +1,79 @@
+:_mod-docs-content-type: PROCEDURE
+
+[id="proc-install-orchestrator-plugin.adoc_{context}"]
+= Installing the Orchestrator plugin
+
+The Orchestrator plugin has the following dynamic plugins:
+
+* Orchestrator-backend
+* Orchestrator-frontend
+* Orchestrator-scaffolder-backend-module
+* Orchestrator-form-widgets
+
+These plugins are included in the default `dynamic-plugins.yaml` file of the `install-dynamic-plugins` container and are disabled by default. You can enable the Orchestrator plugin by referring the `dynamic-plugins-rhdh` ConfigMap file with the following data:
+
+[source,bash]
+----
+    includes:
+       - dynamic-plugins.default.yaml
+    plugins:
+       - package: "@redhat/[email protected]"
+         disabled: false
+       - package: "@redhat/[email protected]"
+         disabled: false
+         dependencies:
+            - ref: sonataflow
+       - package: "@redhat/backstage-plugin-scaffolder-backend-module-orchestrator-dynamic@1.6.0"
+         disabled: false
+      - package: "@redhat/[email protected]"
+         disabled: false
+----
+
+The following is an example of the complete configuration of the Orchestrator plugin:
+
+[source,bash]
+----
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: orchestrator-plugin
+data:
+  dynamic-plugins.yaml: |
+    includes:
+      - dynamic-plugins.default.yaml
+    plugins:
+      - package: "@redhat/[email protected]"
+        disabled: false
+      - package: "@redhat/[email protected]"
+        disabled: false
+        dependencies:
+          - ref: sonataflow
+      - package: "@redhat/backstage-plugin-scaffolder-backend-module-orchestrator-dynamic@1.6.0"
+        disabled: false
+      - package: "@redhat/[email protected]"
+        disabled: false
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: app-config-rhdh
+data:
+  app-config-rhdh.yaml: |-
+    auth:
+      environment: development
+      providers:
+        guest:
+          # using the guest user to query the '/api/dynamic-plugins-info/loaded-plugins' endpoint.
+          dangerouslyAllowOutsideDevelopment: true
+
+apiVersion: rhdh.redhat.com/v1alpha3
+kind: Backstage
+metadata:
+  name: orchestrator
+spec:
+  application:
+    appConfig:
+      configMaps:
+        - name: app-config-rhdh
+    dynamicPluginsConfigMapName: orchestrator-plugin
+----

modules/orchestrator/proc-install-rhdh-in-air-gapped-environment.adoc

@@ -0,0 +1,75 @@
+:_mod-docs-content-type: PROCEDURE
+
+[id="proc-install-in-air-gapped-environment.adoc_{context}"]
+=  Installing {product} with the Orchestrator in an air-gapped environment
+
+You can install {product} with the Orchestrator in an air-gapped environment by mirroring required container images, Helm charts, and NPM packages to internal registries.
+
+.Prerequisites
+
+* You have administrative access to the {ocp-short} cluster and mirroring tools such as `oc`, `podman`, or `skopeo`.
+* You have access to `npm.registry.redhat.com` from a connected network to pull and mirror Orchestrator plugin tarballs.
+* You have mirroring permissions and credentials for all required sources.
+
+.Procedure
+
+. From a connected network, log in to the external registries:
++
+[source,bash]
+----
+podman login registry.redhat.io
+podman login registry.access.redhat.com
+podman login npm.registry.redhat.com
+----
+
+. Identify and mirror all required container images to your internal registry:
++
+[source,bash]
+----
+oc image mirror \
+  registry.redhat.io/openshift-serverless/*=internal-registry.example.com/openshift-serverless/* \
+  registry.redhat.io/openshift-knative/*=internal-registry.example.com/openshift-knative/* \
+  registry.redhat.io/sonataflow/*=internal-registry.example.com/sonataflow/* \
+  registry.redhat.io/rhdh/*=internal-registry.example.com/rhdh/* \
+  registry.redhat.io/postgresql/*=internal-registry.example.com/postgresql/*
+----
+
+. Mirror the Orchestrator plugin NPM packages to your internal NPM registry:
++
+[source,bash]
+----
+npm pack @redhat/backstage-plugin-orchestrator@<version>
+npm pack @redhat/backstage-plugin-orchestrator-backend-dynamic@<version>
+npm pack @redhat/backstage-plugin-scaffolder-backend-module-orchestrator-dynamic@<version>
+npm pack @redhat/backstage-plugin-orchestrator-form-widgets@<version>
+
+npm publish <package>.tgz --registry https://internal-npm.example.com
+----
+
+. Update the `dynamic-plugins` configuration to reference the internal NPM registry:
++
+[source,yaml]
+----
+plugins:
+  - package: "@redhat/backstage-plugin-orchestrator@<version>"
+    disabled: false
+    registry: https://internal-npm.example.com
+----
+
+. If using Helm charts, download them from a connected environment and push them to your internal chart repository:
++
+[source,bash]
+----
+helm pull <chart> --version <version>
+helm push <chart>.tgz oci://internal-chart-repo.example.com/rhdh
+----
+
+. Ensure NetworkPolicies, Role, and RoleBinding resources for the SonataFlow platform are included in your deployment configuration. The {product-short} Operator applies these automatically when the `SonataFlowPlatform` CR is created.
+
+[NOTE]
+====
+For the connected environment resource requirements, see link:{installing-orch-on-ocp-book-url}[Resource requirements for the Operator-based Orchestrator].
+====
+
+.Verification
+* Ensure all pods for OpenShift Serverless, Knative Serving/Eventing, SonataFlow, and PostgreSQL start successfully.

titles/orchestrator/artifacts

@@ -0,0 +1 @@
+../../artifacts

titles/orchestrator/assemblies

@@ -0,0 +1 @@
+../../assemblies

titles/orchestrator/docinfo.xml

@@ -0,0 +1,11 @@
+<title>{title}</title>
+<productname>{product}</productname>
+<productnumber>{product-version}</productnumber>
+<subtitle>{subtitle}</subtitle>
+<abstract>
+  <para>{abstract}</para>
+</abstract>
+<authorgroup>
+  <orgname>{company-name} Customer Content Services</orgname>
+</authorgroup>
+<xi:include href="Common_Content/Legal_Notice.xml" xmlns:xi="http://www.w3.org/2001/XInclude" />