Creates alternative kustomize installer for installation of the camel-k operator

[phantomjinx]

Re-layout config directory to implement a declarative kustomize installer.

Release Note

An alternative kustomize based installer that applies the kubernetes resources using `kustomize` & `kubectl`.

The `config` directory contains all the resources for installation and configuration of the camel-k operator. While, by default, those resource are installed through the `kamel` binary, they can also be applied directly to a cluster using `kustomize`. These resources can be modified prior to their installation and the `kustomize.yaml` files be changed to include extra patches and settings, as required.

A Makefile is included to provide an imperative guide to the otherwise declarative structure. The sequence is thus:

1. `make setup` (must be executed as cluster-admin)
2. `make operator`
3. `make platform` (if a customized integration-platform is required)
4. `make example` (optional - installs the `hello-world` camel-k integration)

Each of these Makefile rules have their own extra environment variables that can be customized. Please review the rules in the Makefile for details.

[phantomjinx]

@astefanutti
Rewrite in accordance with discussions.
Fixes to ensure e2e tests work and pass (hopefully!)

[astefanutti]

@phantomjinx wow, that looks fantastic! I love how you addressed patching, Role (resp. RoleBinding) auto-promoting to ClusterRole (resp. ClusterRoleBinding), and that you fixed #2167 in the process 👍🏼.

I'd like to test it locally to give you more feedback on the Kustomize directory structure, even if that looks great at first glance. But if you prefer, we can have this merged once CI is green, and iterate later on. Whatever option we choose, may I suggest to create a new GitHub Actions workflow called kustomize, that would install Camel K with plain kustomize, and run some tests. Ideally, If we were confident enough, we could even migrate an existing workflow to using plain kustomize, but that would require to refactor the way Camel K is installed from the tests themselves.

[phantomjinx]

Thanks....

e2e tests still failing (oddly!) so will run back through those again.

[astefanutti]

Yes GH Actions didn't seem to be very healthy. I've restarted the failing workflows 🤞🏼.

[astefanutti]

GH Actions are experiencing an incident: https://www.githubstatus.com/incidents/m16jzl31gnqt.

[phantomjinx]

Hoepfully, the openshift failing test is just a one-off since it passed fine here -> https://github.com/phantomjinx/camel-k/actions/runs/853465524

[astefanutti]

Right, the failure seems unrelated. I've restarted it 🤞🏼.

[phantomjinx]

Already seeing conflicts on this so will need to rebase. However, am now adding e2e tests so I'll finish those before rebasing.

[phantomjinx]

Rebased and now includes e2e tests for kustomize. Currently included in kubernetes.yml action but could be spun out if so desired.

[phantomjinx]

All checks passed! :-)

[astefanutti]

I'd like to keep the config directory structure as simple as possible, and as close to the Kustomize way as possible. It is important for developers that maintain the configuration, and for users relying on it. I find it a bit difficult with the current structure to understand the graph of resources (thinking how to use this without the Makefile can help).

Here are a few propositions that I have in mind:

• Merge the manager and the operator directories (maybe keep manager which is the Kustomize way)
• "Revert" the infrastructure directory: move the SA back into the manager directory, move the RBAC resources into the main rbac directory
• Flatten the structure as much as possible: simplify the rbac directory, move patches into the same directory, rather than creating a dedicated directory.

I've been reviewing this "interruptibly", so I apologise if the review sounds inconsistent or even off 😅.

[phantomjinx]

I'd like to keep the config directory structure as simple as possible, and as close to the Kustomize way as possible. It is important for developers that maintain the configuration, and for users relying on it. I find it a bit difficult with the current structure to understand the graph of resources (thinking how to use this without the Makefile can help).

Noted. Maybe an ancillary directory structure targetting install-type operations would be more transparent?
I am concerned about the differentiation between openshift and kubernetes resources. The 'mutually exclusive' question I have eluded to elsewhere but will determine what we do about this aspect of the directory structure. The original kustomize way makes no provision for this.

Here are a few propositions that I have in mind:

* Merge the `manager` and the `operator` directories (maybe keep `manager` which is the Kustomize way)

The operator directory's kustomize.yaml does more than the manager directory since its adds the infrastructure resources as well. They cannot be added to manager since they are operand-related and not operator-related.

* "Revert" the `infrastructure` directory: move the SA back into the `manager` directory, move the RBAC resources into the main `rbac` directory

Discussed elsewhere but to summarize, these are operand resources that the operator should be installing rather than resources required to get the operator installed. These 2 concepts are fundamentally different and that division should be maintained, in my view.

* Flatten the structure as much as possible: simplify the `rbac` directory, move patches into the same directory, rather than creating a dedicated directory.

I can certainly run with that philosophy for the main config directory. Anything that requires 'Makefile-magic' I can migrate to the 'install' directory instead.

I've been reviewing this "interruptibly", so I apologise if the review sounds inconsistent or even off sweat_smile.

Absolutely, not a problem. This is a longstanding issue with some rather knotty problems so happy to label this WIP and we'll keep returning to it, iteratively.

[astefanutti]

Would it be possible to merge the install directory into the config directory, at least for the manifests / patches, to follow Kustomize conventions, and to have it working with plain Kustomize / kubectl apply -k.

I wonder, would you think ultimately something like curl https://github.com/apache/camel-k/releases/download/$VERSION/installer.tar.gz | tar xvz | kubectl apply -k - would be possible? Maybe we could produce default YAMLs as part of the release, with default configurations for Kubernetes and OpenShift, to have like curl https://github.com/apache/camel-k/releases/download/$VERSION/openshift-install.yaml | kubectl apply -k -.

Once we have the structure right, I think it'll be good to go, and we'll be able to iterate subsequently on the testing and think about how to replace kamel install.

[phantomjinx]

Would it be possible to merge the install directory into the config directory, at least for the manifests / patches, to follow Kustomize conventions, and to have it working with plain Kustomize / kubectl apply -k.

I have migrated all the patches over to the config directory but I think we should go with your original suggestion of keeping the install directory separate so as to avoid confusion with the kustomize layout. The install directory can be used to "drive" the automation of the kustomize install.

I wonder, would you think ultimately something like curl https://github.com/apache/camel-k/releases/download/$VERSION/installer.tar.gz | tar xvz | kubectl apply -k - would be possible? Maybe we could produce default YAMLs as part of the release, with default configurations for Kubernetes and OpenShift, to have like curl https://github.com/apache/camel-k/releases/download/$VERSION/openshift-install.yaml | kubectl apply -k -.

I do not think this is possible at the moment. The biggest obstacle is that the namespace of the service-account listed in the bindings is by default 'placeholder'. Therefore, I use the Makefile to call sed to change this. If this were fixed in kustomize so that 'kustomize set namespace' updated it would be worth doing.

Once we have the structure right, I think it'll be good to go, and we'll be able to iterate subsequently on the testing and think about how to replace kamel install.

[astefanutti]

I've just left a couple of small comments. We can have this merged then as an initial version, and iterate further based on usage feedback.

[astefanutti]

Let's merge it once CI passes. Thanks a lot for the awesome work!

[astefanutti]

Well done! Thanks.

[heiko-braun]

Congrats! It has been a long way :)