add openshift release to ci (#642)

* add openshift release to ci

* add a manual trigger action

* use 1.20.4

* bump golangci-lint

* fix typo

Author: freeznet

.github/openshift/community-operators

@@ -0,0 +1,49 @@
+ Signed-off-by: streamnativebot [[email protected]](mailto:[email protected])
+ 
+ Thanks submitting your Operator. Please check below list before you create your Pull Request.
+ 
+ ### New Submissions
+ * [ ]  Are you familiar with our [contribution guidelines](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-via-pr.md)?
+ * [ ]  Have you [packaged and deployed](https://github.com/operator-framework/community-operators/blob/master/docs/testing-operators.md) your Operator for Operator Framework?
+ * [ ]  Have you tested your Operator with all Custom Resource Definitions?
+ * [ ]  Have you tested your Operator in all supported [installation modes](https://github.com/operator-framework/operator-lifecycle-manager/blob/master/doc/design/building-your-csv.md#operator-metadata)?
+ * [ ]  Have you considered whether you want use [semantic versioning order](https://github.com/operator-framework/community-operators/blob/master/docs/operator-ci-yaml.md#semver-mode)?
+ * [ ]  Is your submission [signed](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-prerequisites.md#sign-your-work)?
+ * [ ]  Is operator [icon](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#operator-icon) set?
+ 
+ ### Updates to existing Operators
+ * [x]  Did you create a `ci.yaml` file according to the [update instructions](https://github.com/operator-framework/community-operators/blob/master/docs/operator-ci-yaml.md)?
+ * [x]  Is your new CSV pointing to the previous version with the `replaces` property if you chose `replaces-mode` via the `updateGraph` property in `ci.yaml`?
+ * [x]  Is your new CSV referenced in the [appropriate channel](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#channels) defined in the `package.yaml` or `annotations.yaml` ?
+ * [x]  Have you tested an update to your Operator when deployed via OLM?
+ * [x]  Is your submission [signed](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-prerequisites.md#sign-your-work)?
+ 
+ ### Your submission should not
+ * [x]  Modify more than one operator
+ * [x]  Modify an Operator you don't own
+ * [x]  Rename an operator - please remove and add with a different name instead
+ * [x]  Modify any files outside the above mentioned folders
+ * [x]  Contain more than one commit. **Please squash your commits.**
+ 
+ ### Operator Description must contain (in order)
+ 1. [x]  Description about the managed Application and where to find more information
+ 2. [x]  Features and capabilities of your Operator and how to use it
+ 3. [x]  Any manual steps about potential pre-requisites for using your Operator
+ 
+ ### Operator Metadata should contain
+ * [x]  Human readable name and 1-liner description about your Operator
+ * [x]  Valid [category name](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#categories)1
+ * [x]  One of the pre-defined [capability levels](https://github.com/operator-framework/operator-courier/blob/4d1a25d2c8d52f7de6297ec18d8afd6521236aa2/operatorcourier/validate.py#L556)2
+ * [x]  Links to the maintainer, source code and documentation
+ * [x]  Example templates for all Custom Resource Definitions intended to be used
+ * [x]  A quadratic logo
+ 
+ Remember that you can preview your CSV [here](https://operatorhub.io/preview).
+ 
+ --
+ 
+ 1 If you feel your Operator does not fit any of the pre-defined categories, file an issue against this repo and explain your need
+ 
+ 2 For more information see [here](https://sdk.operatorframework.io/docs/overview/#operator-capability-level)
+
+

.github/openshift/community-operators-prod

@@ -0,0 +1,47 @@
+ Signed-off-by: streamnativebot [[email protected]](mailto:[email protected])
+
+ Thanks submitting your Operator. Please check below list before you create your Pull Request.
+
+ ### New Submissions
+ * [ ]  Are you familiar with our [contribution guidelines](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-via-pr.md)?
+ * [ ]  Have you [packaged and deployed](https://github.com/operator-framework/community-operators/blob/master/docs/testing-operators.md) your Operator for Operator Framework?
+ * [ ]  Have you tested your Operator with all Custom Resource Definitions?
+ * [ ]  Have you tested your Operator in all supported [installation modes](https://github.com/operator-framework/operator-lifecycle-manager/blob/master/doc/design/building-your-csv.md#operator-metadata)?
+ * [ ]  Have you considered whether you want use [semantic versioning order](https://github.com/operator-framework/community-operators/blob/master/docs/operator-ci-yaml.md#semver-mode)?
+ * [ ]  Is your submission [signed](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-prerequisites.md#sign-your-work)?
+ * [ ]  Is operator [icon](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#operator-icon) set?
+
+ ### Updates to existing Operators
+ * [x]  Did you create a `ci.yaml` file according to the [update instructions](https://github.com/operator-framework/community-operators/blob/master/docs/operator-ci-yaml.md)?
+ * [x]  Is your new CSV pointing to the previous version with the `replaces` property if you chose `replaces-mode` via the `updateGraph` property in `ci.yaml`?
+ * [x]  Is your new CSV referenced in the [appropriate channel](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#channels) defined in the `package.yaml` or `annotations.yaml` ?
+ * [x]  Have you tested an update to your Operator when deployed via OLM?
+ * [x]  Is your submission [signed](https://github.com/operator-framework/community-operators/blob/master/docs/contributing-prerequisites.md#sign-your-work)?
+
+ ### Your submission should not
+ * [x]  Modify more than one operator
+ * [x]  Modify an Operator you don't own
+ * [x]  Rename an operator - please remove and add with a different name instead
+ * [x]  Modify any files outside the above mentioned folders
+ * [x]  Contain more than one commit. **Please squash your commits.**
+
+ ### Operator Description must contain (in order)
+ 1. [x]  Description about the managed Application and where to find more information
+ 2. [x]  Features and capabilities of your Operator and how to use it
+ 3. [x]  Any manual steps about potential pre-requisites for using your Operator
+
+ ### Operator Metadata should contain
+ * [x]  Human readable name and 1-liner description about your Operator
+ * [x]  Valid [category name](https://github.com/operator-framework/community-operators/blob/master/docs/packaging-operator.md#categories)1
+ * [x]  One of the pre-defined [capability levels](https://github.com/operator-framework/operator-courier/blob/4d1a25d2c8d52f7de6297ec18d8afd6521236aa2/operatorcourier/validate.py#L556)2
+ * [x]  Links to the maintainer, source code and documentation
+ * [x]  Example templates for all Custom Resource Definitions intended to be used
+ * [x]  A quadratic logo
+
+ Remember that you can preview your CSV [here](https://operatorhub.io/preview).
+
+ --
+
+ 1 If you feel your Operator does not fit any of the pre-defined categories, file an issue against this repo and explain your need
+
+ 2 For more information see [here](https://sdk.operatorframework.io/docs/overview/#operator-capability-level)

.github/workflows/bundle-release.yml

@@ -0,0 +1,286 @@
+name: Function-Mesh Release
+
+on:
+  workflow_dispatch:
+    inputs:
+      tag:
+        description: 'Version Tag'
+        required: true
+
+jobs:
+  operatorhub:
+    if: startsWith(github.ref, 'refs/tags/v')
+    name: publish to operatorhub.io
+    runs-on: ubuntu-latest
+    steps:
+      - name: clean disk
+        run: |
+          sudo swapoff -a
+          sudo rm -rf /swapfile /usr/share/dotnet /usr/local/lib/android /opt/ghc
+          sudo apt clean
+          docker rmi $(docker images -q) -f
+          df -h
+
+      - name: checkout
+        uses: actions/checkout@v2
+        with:
+          ref: {{ inputs.tag }}
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKER_USER }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Set up GO 1.20.4
+        uses: actions/setup-go@v1
+        with:
+          go-version: 1.20.4
+        id: go
+
+      - name: InstallKubebuilder
+        run: |
+          curl -L https://github.com/kubernetes-sigs/kubebuilder/releases/download/v2.3.1/kubebuilder_2.3.1_linux_amd64.tar.gz | tar -xz -C /tmp/
+          sudo mv /tmp/kubebuilder_2.3.1_linux_amd64 /usr/local/kubebuilder
+          export PATH=$PATH:/usr/local/kubebuilder/bin
+
+      - name: Install operator-sdk
+        run: |
+          RELEASE_VERSION=v1.14.0
+          curl -LO "https://github.com/operator-framework/operator-sdk/releases/download/${RELEASE_VERSION}/operator-sdk_linux_amd64"
+          chmod +x operator-sdk_linux_amd64 && sudo mkdir -p /usr/local/bin/ && sudo mv operator-sdk_linux_amd64 /usr/local/bin/operator-sdk
+
+      - name: Set up yq
+        run: |
+          sudo wget https://github.com/mikefarah/yq/releases/download/v4.30.4/yq_linux_amd64 -O /usr/bin/yq
+          sudo chmod +x /usr/bin/yq
+          yq --help
+
+      - name: Get vertical-pod-autoscaler crd
+        run: |
+          wget https://github.com/raw/kubernetes/autoscaler/master/vertical-pod-autoscaler/deploy/vpa-v1-crd-gen.yaml -O config/crd/bases/vpa-v1-crd.yaml
+
+      - name: build release
+        id: build_release
+        env:
+          VERSION: ${{ inputs.tag }}
+          IMAGE_TAG_BASE: streamnative/function-mesh
+          CATALOG_BRANCH_TAG: latest
+        run: |
+          # convert vx.y.z to x.y.z because a valid semver is needed in creating the bundle
+          VERSION=$(echo $VERSION|cut -c 2-)
+          make release
+
+      - name: Login to Quay
+        uses: docker/login-action@v1
+        with:
+          registry: quay.io
+          username: ${{ secrets.QUAY_DOCKER_USERNAME }}
+          password: ${{ secrets.QUAY_DOCKER_PASSWORD }}
+
+      - name: Build RedHat certificated bundle And Publish to Quay
+        env:
+          VERSION: ${{ inputs.tag }}
+          DOCKER_REPO: quay.io/streamnativeio
+          IMAGE_TAG_BASE: quay.io/streamnativeio/function-mesh
+          CATALOG_BRANCH_TAG: latest
+        run: |
+          # convert vx.y.z to x.y.z because a valid semver is needed in creating the bundle
+          VERSION=$(echo $VERSION|cut -c 2-)
+          echo $VERSION
+          make redhat-certificated-image-build redhat-certificated-image-push redhat-certificated-bundle redhat-certificated-bundle-build redhat-certificated-bundle-push
+
+      - name: Checkout streamnative community-operators
+        uses: actions/checkout@v3
+        with:
+          repository: streamnative/community-operators
+          path: community-operators
+          token: ${{ secrets.SNBOT_GITHUB_TOKEN }}
+
+      - name: Copy bundle to community-operators and create pr
+        env:
+          GITHUB_TOKEN: ${{ secrets.SNBOT_GITHUB_TOKEN }}
+          VERSION: ${{ inputs.tag }}
+        run: |
+          pushd community-operators
+          export VERSION=$(echo $VERSION|cut -c 2-)
+          echo $VERSION
+          export BRANCH=function-mesh-operator-$VERSION
+          echo $BRANCH
+          git push -d origin $BRANCH || echo 'Skip branch deletion'
+          git checkout -b $BRANCH
+
+          export TARGET_DIR=operators/function-mesh/$VERSION
+          mkdir -p $TARGET_DIR
+          cp -rf ../bundle.Dockerfile $TARGET_DIR
+          cp -rf ../bundle/* $TARGET_DIR
+
+          git add .
+          git commit -s -m "operator function-mesh ($VERSION)"
+          git push --set-upstream origin $BRANCH
+          gh pr create --title "operator function-mesh ($VERSION)" -F ../.github/openshift/community-operators -R k8s-operatorhub/community-operators
+          popd
+
+  openshift:
+    if: startsWith(github.ref, 'refs/tags/v')
+    name: publish to openshift certificated
+    runs-on: ubuntu-latest
+    steps:
+      - name: clean disk
+        run: |
+          sudo swapoff -a
+          sudo rm -rf /swapfile /usr/share/dotnet /usr/local/lib/android /opt/ghc
+          sudo apt clean
+          docker rmi $(docker images -q) -f
+          df -h
+
+      - name: checkout
+        uses: actions/checkout@v2
+        with:
+          ref: {{ inputs.tag }}
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKER_USER }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Set up GO 1.20.4
+        uses: actions/setup-go@v1
+        with:
+          go-version: 1.20.4
+        id: go
+
+      - name: InstallKubebuilder
+        run: |
+          curl -L https://github.com/kubernetes-sigs/kubebuilder/releases/download/v2.3.1/kubebuilder_2.3.1_linux_amd64.tar.gz | tar -xz -C /tmp/
+          sudo mv /tmp/kubebuilder_2.3.1_linux_amd64 /usr/local/kubebuilder
+          export PATH=$PATH:/usr/local/kubebuilder/bin
+
+      - name: Install operator-sdk
+        run: |
+          RELEASE_VERSION=v1.14.0
+          curl -LO "https://github.com/operator-framework/operator-sdk/releases/download/${RELEASE_VERSION}/operator-sdk_linux_amd64"
+          chmod +x operator-sdk_linux_amd64 && sudo mkdir -p /usr/local/bin/ && sudo mv operator-sdk_linux_amd64 /usr/local/bin/operator-sdk
+
+      - name: Set up yq
+        run: |
+          sudo wget https://github.com/mikefarah/yq/releases/download/v4.30.4/yq_linux_amd64 -O /usr/bin/yq
+          sudo chmod +x /usr/bin/yq
+          yq --help
+
+      - name: Get vertical-pod-autoscaler crd
+        run: |
+          wget https://github.com/raw/kubernetes/autoscaler/master/vertical-pod-autoscaler/deploy/vpa-v1-crd-gen.yaml -O config/crd/bases/vpa-v1-crd.yaml
+
+      - name: build release
+        id: build_release
+        env:
+          VERSION: ${{ inputs.tag }}
+          IMAGE_TAG_BASE: streamnative/function-mesh
+          CATALOG_BRANCH_TAG: latest
+        run: |
+          VERSION=$(echo $VERSION|cut -c 2-)
+          make release
+
+      - name: Login to Quay for RedHat container certification
+        uses: docker/login-action@v1
+        with:
+          registry: quay.io
+          username: ${{ secrets.REDHAT_CERTIFICATED_CONTAINER_REGISTRY_USER }}
+          password: ${{ secrets.REDHAT_CERTIFICATED_CONTAINER_REGISTRY_PASSWORD }}
+
+      - name: Build Openshift certificated container And Publish to Quay
+        env:
+          VERSION: ${{ inputs.tag }}
+          DOCKER_REPO: registry.connect.redhat.com/streamnative
+          IMAGE_TAG_BASE: registry.connect.redhat.com/streamnative/function-mesh
+          CATALOG_BRANCH_TAG: latest
+          CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID: ${{ secrets.CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID }}
+        run: |
+          echo $VERSION
+          make redhat-certificated-image-build
+          docker tag $IMAGE_TAG_BASE:$VERSION quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION
+          docker push quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION
+
+      - name: Trigger openshift preflight test
+        env:
+          VERSION: ${{ inputs.tag }}
+          CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID: ${{ secrets.CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID }}
+          PFLT_PYXIS_API_TOKEN: ${{ secrets.PFLT_PYXIS_API_TOKEN }}
+          REDHAT_CERTITICATED_CONTAINER_AUTHFILE: ${{ secrets.REDHAT_CERTITICATED_CONTAINER_AUTHFILE }}
+        run: |
+          echo $VERSION
+          mkdir ./artifacts
+          echo $REDHAT_CERTITICATED_CONTAINER_AUTHFILE > ./authfile.json
+          docker run -it --rm --security-opt=label=disable --env PFLT_LOGLEVEL=trace  --env PFLT_ARTIFACTS=/artifacts --env PFLT_LOGFILE=/artifacts/preflight.log --env PFLT_CERTIFICATION_PROJECT_ID=$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID --env PFLT_PYXIS_API_TOKEN=$PFLT_PYXIS_API_TOKEN --env PFLT_DOCKERCONFIG=/temp-authfile.json -v ./artifacts:/artifacts -v ./authfile.json:/temp-authfile.json:ro quay.io/opdev/preflight:stable check container quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION --submit
+
+      - name: Label the image as latest
+        env:
+          VERSION: ${{ inputs.tag }}
+          DOCKER_REPO: registry.connect.redhat.com/streamnative
+          IMAGE_TAG_BASE: registry.connect.redhat.com/streamnative/function-mesh
+          CATALOG_BRANCH_TAG: latest
+          CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID: ${{ secrets.CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID }}
+        run: |
+          echo $VERSION
+          docker tag $IMAGE_TAG_BASE:$VERSION quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:latest
+          docker push quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:latest
+          docker rmi quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:latest
+          docker rmi quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION
+          docker pull quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION
+          docker inspect quay.io/redhat-isv-containers/$CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID:$VERSION
+
+      - name: Build the openshift bundle
+        env:
+          VERSION: ${{ inputs.tag }}
+          DOCKER_REPO: registry.connect.redhat.com/streamnative
+          IMAGE_TAG_BASE: registry.connect.redhat.com/streamnative/function-mesh
+          CATALOG_BRANCH_TAG: latest
+          CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID: ${{ secrets.CONTAINER_IMAGE_CERTIFICATION_PROJECT_ID }}
+        run: |
+          echo $VERSION
+          make redhat-certificated-bundle redhat-certificated-bundle-build
+
+      - name: Checkout streamnative certified-operators
+        uses: actions/checkout@v3
+        with:
+          repository: streamnative/certified-operators
+          path: certified-operators
+          token: ${{ secrets.SNBOT_GITHUB_TOKEN }}
+
+      - name: Copy bundle to certified-operators and create pr
+        env:
+          GITHUB_TOKEN: ${{ secrets.SNBOT_GITHUB_TOKEN }}
+          VERSION: ${{ inputs.tag }}
+        run: |
+          # install operator-manifest-tools
+          wget -q https://github.com/operator-framework/operator-manifest-tools/releases/download/v0.2.2/operator-manifest-tools_0.2.2_linux_amd64 -O operator-manifest-tools
+          chmod +x operator-manifest-tools
+          mv operator-manifest-tools /usr/local/bin
+
+          # install skopeo
+          sudo apt-get -y install skopeo
+
+          pushd certified-operators
+          echo $VERSION
+          export BRANCH=function-mesh-operator-$VERSION
+          echo $BRANCH
+          git push -d origin $BRANCH || echo 'Skip branch deletion'
+          git checkout -b $BRANCH
+
+          export TARGET_DIR=operators/function-mesh/${{ inputs.channel-tag }}
+          mkdir -p $TARGET_DIR
+          cp -rf ../bundle.Dockerfile $TARGET_DIR
+          cp -rf ../bundle/* $TARGET_DIR
+#
+#          export MANIFEST_DIR=$TARGET_DIR/manifests
+#          operator-manifest-tools pinning pin $MANIFEST_DIR
+#          operator-manifest-tools pinning replace $MANIFEST_DIR replacements.json
+#          rm references.json replacements.json
+
+          git add .
+          git commit -s -m "operator function-mesh ($VERSION)"
+          git push --set-upstream origin $BRANCH
+          gh pr create --title "operator function-mesh ($VERSION)" --body "Signed-off-by: streamnativebot [email protected]" -R redhat-openshift-ecosystem/certified-operators
+          popd

.github/workflows/olm-verify.yml

@@ -27,10 +27,10 @@ jobs:
       - name: checkout
         uses: actions/checkout@v2
 
-      - name: Set up GO 1.18
+      - name: Set up GO 1.20.4
         uses: actions/setup-go@v1
         with:
-          go-version: 1.18
+          go-version: 1.20.4
         id: go
 
       - name: InstallKubebuilder