1kustomize := "bazel run //hack/tools:kustomize --"
2kubectl := "bazel run //hack/tools:kubectl --"
3just := "just --justfile=" + justfile_directory() + "/../../../justfile"
4
5# build the operator, provider and web/identity
6build:
7 bazel build ...
8
9# push the containers to your local repo
10push registry="localhost:21700":
11 #!/usr/bin/env bash
12 echo "🔨 pushing images and building if necessary"
13 bazel run //cmd/tools/pusha -- --repo={{registry}} --insecure-repository=true cmd/edge/edge-issuer/...
14
15update: gen-code update-manifests
16 {{just}} gazelle
17
18update-manifests: gen-crds gen-rbac
19 {{just}} fmt-manifests
20
21gen-crds:
22 {{just}} run pkg/edge/edge-issuer/api:gen_crds
23
24gen-rbac:
25 # {{just}} run pkg/edge/edge-issuer/internal/controllers:gen_rbac
26
27gen-code:
28 {{just}} run pkg/edge/edge-issuer/api:gen_code
29
30cert-manager:
31 #!/usr/bin/env bash
32 echo "🚀 deploying cert manager"
33 {{kubectl}} apply -f {{invocation_directory()}}/third_party/k8s/certmanager/manifests.yaml
34 {{kubectl}} wait --for=condition=Available apiservice v1.cert-manager.io --timeout=300s
35 {{kubectl}} wait --for=condition=Available deploy/cert-manager -n cert-manager --timeout=300s
36 {{kubectl}} wait --for=condition=Available deploy/cert-manager-cainjector -n cert-manager --timeout=300s
37 {{kubectl}} wait --for=condition=Available deploy/cert-manager-webhook -n cert-manager --timeout=300s
38
39crds:
40 #!/usr/bin/env bash
41 echo "📦 deploying all required crds"
42 {{kubectl}} apply -k {{invocation_directory()}}/config/pallets/edge/edge-issuer/base/crds
43
44deploy:
45 #!/usr/bin/env bash
46 echo "🚀 deploying the crds, edge issuer components"
47 {{kubectl}} apply -k {{invocation_directory()}}/config/pallets/edge/edge-issuer/kind
48
49reset:
50 #!/usr/bin/env bash
51 echo "cleaning up"
52 {{kubectl}} delete -k {{invocation_directory()}}/config/pallets/edge/edge-issuer/kind
53 {{kubectl}} delete -k {{invocation_directory()}}/config/pallets/edge/edge-issuer/kind/sample
54 {{kubectl}} delete secret -n default certificate-by-edgeissuer --ignore-not-found
55
56
57kind: reset push crds deploy
58
59certificate:
60 #!/usr/bin/env bash
61 {{kubectl}} apply -k {{invocation_directory()}}/config/pallets/edge/edge-issuer/kind/sample
62
63verify:
64 #!/usr/bin/env bash
65 {{kubectl}} wait --for=condition=Ready --timeout=5s edgeissuers.edge-issuer.edge.ncr.com edgeissuer-sample
66 {{kubectl}} wait --for=condition=Ready --timeout=5s certificates.cert-manager.io certificate-by-edgeissuer
67 {{kubectl}} get secret certificate-by-edgeissuer &> /dev/null && echo "certificate-by-edgeissuer secret exists" || echo "certificate-by-edgeissuer secret just does not exist"
68 {{kubectl}} wait --for=condition=Ready --timeout=5s edgeclusterissuers.edge-issuer.edge.ncr.com edgeclusterissuer-sample -n edge-issuer
69 {{kubectl}} wait --for=condition=Ready --timeout=5s certificates.cert-manager.io certificate-by-edgeclusterissuer -n edge-issuer
70 {{kubectl}} get secret -n edge-issuer certificate-by-edgeclusterissuer &> /dev/null && echo "certificate-by-edgeclusterissuer secret exists" || echo "certificate-by-edgeclusterissuer secret just does not exist"
71 {{kubectl}} get secret -n edge-issuer certificate-by-edgeclusterissuer -o=jsonpath='{.data.tls\.crt}' | base64 -d | openssl x509 -noout -textView as plain text