rm3l/install-rhdh-catalog-source.sh

## install-rhdh-catalog-source.sh
#!/bin/bash
#
#  Copyright (c) 2023 Red Hat, Inc.
#  Licensed under the Apache License, Version 2.0 (the "License");
#  you may not use this file except in compliance with the License.
#  You may obtain a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
#  Unless required by applicable law or agreed to in writing, software
#  distributed under the License is distributed on an "AS IS" BASIS,
#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
#  See the License for the specific language governing permissions and
#  limitations under the License.
#
# Script to streamline installing an IIB image in an OpenShift cluster for testing.
#
# Requires: oc, jq

set -e

RED='\033[0;31m'
NC='\033[0m'

NAMESPACE_CATALOGSOURCE="openshift-marketplace"
NAMESPACE_SUBSCRIPTION="rhdh-operator"
OLM_CHANNEL="fast"

errorf() {
  echo -e "${RED}$1${NC}"
}

usage() {
echo "
This script streamlines testing IIB images by configuring an OpenShift cluster to enable it to use the specified IIB image
in a catalog. The CatalogSource is created in the openshift-marketplace namespace,
and is named 'operatorName-channelName', eg., rhdh-fast

If IIB installation fails, see https://docs.engineering.redhat.com/display/CFC/Test and
follow steps in section 'Adding Brew Pull Secret'

Usage:
  $0 [OPTIONS]

Options:
  --latest                     : Install from iib quay.io/rhdh/iib:latest-\$OCP_VER-\$OCP_ARCH (eg., latest-v4.14-x86_64)
  --next                       : Install from iib quay.io/rhdh/iib:next-\$OCP_VER-\$OCP_ARCH (eg., next-v4.14-x86_64)
  --install-operator <NAME>    : Install operator named \$NAME after creating CatalogSource

Developer Hub Examples:
  $0 \\
  --latest --install-operator rhdh # RC release in progess (from stable branch)

  $0 \\
  --next --install-operator rhdh   # CI future release (from main branch)
"
}

# minimum requirements
if [[ ! $(command -v oc) ]]; then
  errorf "Please install oc 4.10+ from an RPM or https://mirror.openshift.com/pub/openshift-v4/clients/ocp/"
  exit 1
fi
if [[ ! $(command -v jq) ]]; then
  errorf "Please install jq 1.2+ from an RPM or https://pypi.org/project/jq/"
  exit 1
fi


# Check we're logged into a cluster
if ! oc whoami > /dev/null 2>&1; then
  errorf "Not logged into an OpenShift cluster"
  exit 1
fi

# log into your OCP cluster before running this or you'll get null values for OCP vars!
OCP_VER="v$(oc version -o json | jq -r '.openshiftVersion' | sed -r -e "s#([0-9]+\.[0-9]+)\..+#\1#")"
OCP_ARCH="$(oc version -o json | jq -r '.serverVersion.platform' | sed -r -e "s#linux/##")"
if [[ $OCP_ARCH == "amd64" ]]; then OCP_ARCH="x86_64"; fi
# if logged in, this should return something like latest-v4.12-x86_64
UPSTREAM_IIB="quay.io/rhdh/iib:latest-${OCP_VER}-${OCP_ARCH}";

while [[ "$#" -gt 0 ]]; do
  case $1 in
    '--install-operator')
      # Create project if necessary
      if ! oc get project "$NAMESPACE_SUBSCRIPTION" > /dev/null 2>&1; then
        echo "Project $NAMESPACE_SUBSCRIPTION does not exist; creating it"
        oc create namespace "$NAMESPACE_SUBSCRIPTION"
      fi
      TO_INSTALL="$2"; shift 1;;
    '--next'|'--latest')
      # if logged in, this should return something like latest-v4.12-x86_64 or next-v4.12-x86_64
      UPSTREAM_IIB="quay.io/rhdh/iib:${1/--/}-${OCP_VER}-$OCP_ARCH";;
    '-h'|'--help') usage; exit 0;;
    *) echo "[ERROR] Unknown parameter is used: $1."; usage; exit 1;;
  esac
  shift 1
done

TMPDIR=$(mktemp -d)
trap "rm -fr $TMPDIR" EXIT

# Add ImageContentSourcePolicy to let resolve references to images not on quay as if from quay.io
echo "[INFO] Adding ISCP to let resolve references to images not on Quay as if from quay.io"
ICSP_URL="quay.io/rhdh/"
ICSP_URL_PRE=${ICSP_URL%%/*}
# echo "[DEBUG] ${ICSP_URL_PRE}, ${ICSP_URL_PRE//./-}, ${ICSP_URL}"
echo "apiVersion: operator.openshift.io/v1alpha1
kind: ImageContentSourcePolicy
metadata:
  name: ${ICSP_URL_PRE//./-}
spec:
  repositoryDigestMirrors:
  ## 1. add mappings for Developer Hub bundle, operator, hub
  - mirrors:
    - ${ICSP_URL}rhdh-operator-bundle
    source: registry.redhat.io/rhdh/rhdh-operator-bundle
  - mirrors:
    - ${ICSP_URL}rhdh-operator-bundle
    source: registry.stage.redhat.io/rhdh/rhdh-operator-bundle
  - mirrors:
    - ${ICSP_URL}rhdh-operator-bundle
    source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-operator-bundle

  - mirrors:
    - ${ICSP_URL}rhdh-rhel9-operator
    source: registry.redhat.io/rhdh/rhdh-rhel9-operator
  - mirrors:
    - ${ICSP_URL}rhdh-rhel9-operator
    source: registry.stage.redhat.io/rhdh/rhdh-rhel9-operator
  - mirrors:
    - ${ICSP_URL}rhdh-rhel9-operator
    source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-rhel9-operator

  - mirrors:
    - ${ICSP_URL}rhdh-hub-rhel9
    source: registry.redhat.io/rhdh/rhdh-hub-rhel9
  - mirrors:
    - ${ICSP_URL}rhdh-hub-rhel9
    source: registry.stage.redhat.io/rhdh/rhdh-hub-rhel9
  - mirrors:
    - ${ICSP_URL}rhdh-hub-rhel9
    source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-hub-rhel9

  ## 2. general repo mappings
  - mirrors:
    - ${ICSP_URL_PRE}
    source: registry.redhat.io
  - mirrors:
    - ${ICSP_URL_PRE}
    source: registry.stage.redhat.io
  - mirrors:
    - ${ICSP_URL_PRE}
    source: registry-proxy.engineering.redhat.com

  ### now add mappings to resolve internal references
  - mirrors:
    - registry.redhat.io
    source: registry.stage.redhat.io
  - mirrors:
    - registry.stage.redhat.io
    source: registry-proxy.engineering.redhat.com
  - mirrors:
    - registry.redhat.io
    source: registry-proxy.engineering.redhat.com
" > "$TMPDIR/ImageContentSourcePolicy_${ICSP_URL_PRE}.yml" && oc apply -f "$TMPDIR/ImageContentSourcePolicy_${ICSP_URL_PRE}.yml"

echo "[INFO] Using iib from image $UPSTREAM_IIB"
IIB_IMAGE="${UPSTREAM_IIB}"
CATALOGSOURCE_NAME="${TO_INSTALL}-${OLM_CHANNEL}"
DISPLAY_NAME_SUFFIX="${TO_INSTALL}"

# Add CatalogSource for the IIB
if [ -z "$TO_INSTALL" ]; then
  IIB_NAME="${UPSTREAM_IIB##*:}"
  IIB_NAME="${IIB_NAME//_/-}"
  IIB_NAME="${IIB_NAME//./-}"
  IIB_NAME="$(echo "$IIB_NAME" | tr '[:upper:]' '[:lower:]')"
  CATALOGSOURCE_NAME="rhdh-iib-${IIB_NAME}-${OLM_CHANNEL}"
  DISPLAY_NAME_SUFFIX="${IIB_NAME}"
fi
echo "apiVersion: operators.coreos.com/v1alpha1
kind: CatalogSource
metadata:
  name: ${CATALOGSOURCE_NAME}
  namespace: ${NAMESPACE_CATALOGSOURCE}
spec:
  sourceType: grpc
  image: ${IIB_IMAGE}
  publisher: IIB testing ${DISPLAY_NAME_SUFFIX}
  displayName: IIB testing catalog ${DISPLAY_NAME_SUFFIX}
" > $TMPDIR/CatalogSource.yml && oc apply -f $TMPDIR/CatalogSource.yml

if [ -z "$TO_INSTALL" ]; then
  echo "Done"
  exit 0
fi

# Create subscription for operator
echo "apiVersion: operators.coreos.com/v1alpha1
kind: Subscription
metadata:
  name: $TO_INSTALL
  namespace: ${NAMESPACE_SUBSCRIPTION}
spec:
  channel: $OLM_CHANNEL
  installPlanApproval: $INSTALL_PLAN_APPROVAL
  name: $TO_INSTALL
  source: ${CATALOGSOURCE_NAME}
  sourceNamespace: ${NAMESPACE_CATALOGSOURCE}
" > $TMPDIR/Subscription.yml && oc apply -f $TMPDIR/Subscription.yml
	#!/bin/bash
	#
	# Copyright (c) 2023 Red Hat, Inc.
	# Licensed under the Apache License, Version 2.0 (the "License");
	# you may not use this file except in compliance with the License.
	# You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS,
	# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	# See the License for the specific language governing permissions and
	# limitations under the License.
	#
	# Script to streamline installing an IIB image in an OpenShift cluster for testing.
	#
	# Requires: oc, jq

	set -e

	RED='\033[0;31m'
	NC='\033[0m'

	NAMESPACE_CATALOGSOURCE="openshift-marketplace"
	NAMESPACE_SUBSCRIPTION="rhdh-operator"
	OLM_CHANNEL="fast"

	errorf() {
	echo -e "${RED}$1${NC}"
	}

	usage() {
	echo "
	This script streamlines testing IIB images by configuring an OpenShift cluster to enable it to use the specified IIB image
	in a catalog. The CatalogSource is created in the openshift-marketplace namespace,
	and is named 'operatorName-channelName', eg., rhdh-fast

	If IIB installation fails, see https://docs.engineering.redhat.com/display/CFC/Test and
	follow steps in section 'Adding Brew Pull Secret'

	Usage:
	$0 [OPTIONS]

	Options:
	--latest : Install from iib quay.io/rhdh/iib:latest-\$OCP_VER-\$OCP_ARCH (eg., latest-v4.14-x86_64)
	--next : Install from iib quay.io/rhdh/iib:next-\$OCP_VER-\$OCP_ARCH (eg., next-v4.14-x86_64)
	--install-operator <NAME> : Install operator named \$NAME after creating CatalogSource

	Developer Hub Examples:
	$0 \\
	--latest --install-operator rhdh # RC release in progess (from stable branch)

	$0 \\
	--next --install-operator rhdh # CI future release (from main branch)
	"
	}

	# minimum requirements
	if [[ ! $(command -v oc) ]]; then
	errorf "Please install oc 4.10+ from an RPM or https://mirror.openshift.com/pub/openshift-v4/clients/ocp/"
	exit 1
	fi
	if [[ ! $(command -v jq) ]]; then
	errorf "Please install jq 1.2+ from an RPM or https://pypi.org/project/jq/"
	exit 1
	fi


	# Check we're logged into a cluster
	if ! oc whoami > /dev/null 2>&1; then
	errorf "Not logged into an OpenShift cluster"
	exit 1
	fi

	# log into your OCP cluster before running this or you'll get null values for OCP vars!
	OCP_VER="v$(oc version -o json \| jq -r '.openshiftVersion' \| sed -r -e "s#([0-9]+\.[0-9]+)\..+#\1#")"
	OCP_ARCH="$(oc version -o json \| jq -r '.serverVersion.platform' \| sed -r -e "s#linux/##")"
	if [[ $OCP_ARCH == "amd64" ]]; then OCP_ARCH="x86_64"; fi
	# if logged in, this should return something like latest-v4.12-x86_64
	UPSTREAM_IIB="quay.io/rhdh/iib:latest-${OCP_VER}-${OCP_ARCH}";

	while [[ "$#" -gt 0 ]]; do
	case $1 in
	'--install-operator')
	# Create project if necessary
	if ! oc get project "$NAMESPACE_SUBSCRIPTION" > /dev/null 2>&1; then
	echo "Project $NAMESPACE_SUBSCRIPTION does not exist; creating it"
	oc create namespace "$NAMESPACE_SUBSCRIPTION"
	fi
	TO_INSTALL="$2"; shift 1;;
	'--next'\|'--latest')
	# if logged in, this should return something like latest-v4.12-x86_64 or next-v4.12-x86_64
	UPSTREAM_IIB="quay.io/rhdh/iib:${1/--/}-${OCP_VER}-$OCP_ARCH";;
	'-h'\|'--help') usage; exit 0;;
	*) echo "[ERROR] Unknown parameter is used: $1."; usage; exit 1;;
	esac
	shift 1
	done

	TMPDIR=$(mktemp -d)
	trap "rm -fr $TMPDIR" EXIT

	# Add ImageContentSourcePolicy to let resolve references to images not on quay as if from quay.io
	echo "[INFO] Adding ISCP to let resolve references to images not on Quay as if from quay.io"
	ICSP_URL="quay.io/rhdh/"
	ICSP_URL_PRE=${ICSP_URL%%/*}
	# echo "[DEBUG] ${ICSP_URL_PRE}, ${ICSP_URL_PRE//./-}, ${ICSP_URL}"
	echo "apiVersion: operator.openshift.io/v1alpha1
	kind: ImageContentSourcePolicy
	metadata:
	name: ${ICSP_URL_PRE//./-}
	spec:
	repositoryDigestMirrors:
	## 1. add mappings for Developer Hub bundle, operator, hub
	- mirrors:
	- ${ICSP_URL}rhdh-operator-bundle
	source: registry.redhat.io/rhdh/rhdh-operator-bundle
	- mirrors:
	- ${ICSP_URL}rhdh-operator-bundle
	source: registry.stage.redhat.io/rhdh/rhdh-operator-bundle
	- mirrors:
	- ${ICSP_URL}rhdh-operator-bundle
	source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-operator-bundle

	- mirrors:
	- ${ICSP_URL}rhdh-rhel9-operator
	source: registry.redhat.io/rhdh/rhdh-rhel9-operator
	- mirrors:
	- ${ICSP_URL}rhdh-rhel9-operator
	source: registry.stage.redhat.io/rhdh/rhdh-rhel9-operator
	- mirrors:
	- ${ICSP_URL}rhdh-rhel9-operator
	source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-rhel9-operator

	- mirrors:
	- ${ICSP_URL}rhdh-hub-rhel9
	source: registry.redhat.io/rhdh/rhdh-hub-rhel9
	- mirrors:
	- ${ICSP_URL}rhdh-hub-rhel9
	source: registry.stage.redhat.io/rhdh/rhdh-hub-rhel9
	- mirrors:
	- ${ICSP_URL}rhdh-hub-rhel9
	source: registry-proxy.engineering.redhat.com/rh-osbs/rhdh-rhdh-hub-rhel9

	## 2. general repo mappings
	- mirrors:
	- ${ICSP_URL_PRE}
	source: registry.redhat.io
	- mirrors:
	- ${ICSP_URL_PRE}
	source: registry.stage.redhat.io
	- mirrors:
	- ${ICSP_URL_PRE}
	source: registry-proxy.engineering.redhat.com

	### now add mappings to resolve internal references
	- mirrors:
	- registry.redhat.io
	source: registry.stage.redhat.io
	- mirrors:
	- registry.stage.redhat.io
	source: registry-proxy.engineering.redhat.com
	- mirrors:
	- registry.redhat.io
	source: registry-proxy.engineering.redhat.com
	" > "$TMPDIR/ImageContentSourcePolicy_${ICSP_URL_PRE}.yml" && oc apply -f "$TMPDIR/ImageContentSourcePolicy_${ICSP_URL_PRE}.yml"

	echo "[INFO] Using iib from image $UPSTREAM_IIB"
	IIB_IMAGE="${UPSTREAM_IIB}"
	CATALOGSOURCE_NAME="${TO_INSTALL}-${OLM_CHANNEL}"
	DISPLAY_NAME_SUFFIX="${TO_INSTALL}"

	# Add CatalogSource for the IIB
	if [ -z "$TO_INSTALL" ]; then
	IIB_NAME="${UPSTREAM_IIB##*:}"
	IIB_NAME="${IIB_NAME//_/-}"
	IIB_NAME="${IIB_NAME//./-}"
	IIB_NAME="$(echo "$IIB_NAME" \| tr '[:upper:]' '[:lower:]')"
	CATALOGSOURCE_NAME="rhdh-iib-${IIB_NAME}-${OLM_CHANNEL}"
	DISPLAY_NAME_SUFFIX="${IIB_NAME}"
	fi
	echo "apiVersion: operators.coreos.com/v1alpha1
	kind: CatalogSource
	metadata:
	name: ${CATALOGSOURCE_NAME}
	namespace: ${NAMESPACE_CATALOGSOURCE}
	spec:
	sourceType: grpc
	image: ${IIB_IMAGE}
	publisher: IIB testing ${DISPLAY_NAME_SUFFIX}
	displayName: IIB testing catalog ${DISPLAY_NAME_SUFFIX}
	" > $TMPDIR/CatalogSource.yml && oc apply -f $TMPDIR/CatalogSource.yml

	if [ -z "$TO_INSTALL" ]; then
	echo "Done"
	exit 0
	fi

	# Create subscription for operator
	echo "apiVersion: operators.coreos.com/v1alpha1
	kind: Subscription
	metadata:
	name: $TO_INSTALL
	namespace: ${NAMESPACE_SUBSCRIPTION}
	spec:
	channel: $OLM_CHANNEL
	installPlanApproval: $INSTALL_PLAN_APPROVAL
	name: $TO_INSTALL
	source: ${CATALOGSOURCE_NAME}
	sourceNamespace: ${NAMESPACE_CATALOGSOURCE}
	" > $TMPDIR/Subscription.yml && oc apply -f $TMPDIR/Subscription.yml