New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ingress Firewall Operator Automation #100

Open

Yashansh-Sharma15 wants to merge 1 commit into ocp-power-automation:main from Yashansh-Sharma15:ingress

Contributor

Yashansh-Sharma15 commented Jan 30, 2025

This is the Playbook for automation of ingress firewall operator.

Contributor

ppc64le-cloud-bot commented Jan 30, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Yashansh-Sharma15
Once this PR has been reviewed and has the lgtm label, please assign sajauddin for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

ppc64le-cloud-bot requested review from aman4433 and pravin-dsilva

January 30, 2025 07:57

ppc64le-cloud-bot added the size/L label

aman4433 commented Jan 30, 2025

Please squash the multiple commits and add your Signed-off-by to the commit.

Yashansh-Sharma15 force-pushed the ingress branch 2 times, most recently from 00b56de to 40e69ba Compare

January 30, 2025 09:18

aman4433 reviewed

View reviewed changes

examples/all.yaml Show resolved Hide resolved

aman4433 reviewed

View reviewed changes

examples/ocp_ingress_vars.yaml Outdated Show resolved Hide resolved

aman4433 reviewed

View reviewed changes

examples/ocp_ingress_vars.yaml Outdated Show resolved Hide resolved

aman4433 reviewed

View reviewed changes

playbooks/roles/ocp-ingress-firewall-operator/default/main.yaml Outdated Show resolved Hide resolved

aman4433 reviewed

View reviewed changes

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated Show resolved Hide resolved

aman4433 reviewed

View reviewed changes

playbooks/roles/ocp-ingress-firewall-operator/vars/main.yml Outdated Show resolved Hide resolved

Yashansh-Sharma15 force-pushed the ingress branch from 40e69ba to eafcc6a Compare

February 6, 2025 08:47

Yashansh-Sharma15 requested a review from aman4433

February 11, 2025 11:20

aman4433 reviewed

View reviewed changes

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+                  seconds: 30
+              - name: Verify creation of Catsrc
+                shell: " oc get catsrc -A | grep qe-app-registry"

aman4433 Feb 11, 2025

shouldn't we using the variable ingress_catalogsource_name instead to hardcoded value - qe-app-registry

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+                failed_when: catsrc.rc != 0
+              - name: Verify creation of pods
+                shell: "oc get pods -n openshift-marketplace | grep qe-app-registry | grep Running"

aman4433 Feb 11, 2025

Also here - shouldn't we using the variable ingress_catalogsource_name instead to hardcoded value - qe-app-registry

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+                    spec:
+                      name: ingress-node-firewall
+                      channel: stable
+                      source: qe-app-registry

aman4433 Feb 11, 2025

Also here - shouldn't we using the variable ingress_catalogsource_name instead to hardcoded value - qe-app-registry

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+                        - eth0
+                      nodeSelector:
+                        matchLabels:
+                          <ingress_firewall_label_name>: <label_value>

aman4433 Feb 11, 2025

These placeholders should either be defined as variables or explicitly documented in README.

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+                        - eth1
+                      nodeSelector:
+                        matchLabels:
+                          <ingress_firewall_label_name>: <label_value>  # Replace with actual label selectors

aman4433 Feb 11, 2025

Also here - These placeholders should either be defined as variables or explicitly documented in README.

playbooks/roles/ocp-ingress-firewall-operator/tasks/main.yaml Outdated

+              # Delete the Dual operator group
+              - name: Delete Ingress Node Firewall OperatorGroup
+                shell: "oc delete og ingress-node-firewall-operators -n openshift-ingress-node-firewall"

aman4433 Feb 11, 2025

Can we do the cleanup in the same way we create the OperatorGroup, by using kubernetes.core.k8s with state: absent? It would make the process more declarative and consistent.


          ocp_ingress

ea12084

Signed-off-by: Yashansh-Sharma15 <[email protected]>

Yashansh-Sharma15 force-pushed the ingress branch from eafcc6a to ea12084 Compare

February 13, 2025 09:21

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

size/L