Remove the helm chart and associated scripts

The chart has now moved to the helm-charts repository with all the
others to avoid duplicating the sources

Author: sjoubert

.github/workflows/build_test_package.yml

@@ -283,69 +283,3 @@ jobs:
           docker image tag com.cosmotech/cosmotech-api:${{github.sha}} \
             ghcr.io/cosmo-tech/cosmotech-api:latest
           docker image push ghcr.io/cosmo-tech/cosmotech-api:latest
-
-
-  push_helm_charts_to_oci_registries:
-    runs-on: ubuntu-latest
-    if: ${{ github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/') }}
-    strategy:
-      fail-fast: false
-      matrix:
-        include:
-          - path: api/kubernetes/helm-chart
-            chart_name: cosmotech-api-chart
-            name: API
-    needs:
-      - unit_tests
-      - integration_tests
-      - controller_tests
-    permissions:
-      packages: write
-      contents: read
-    env:
-      # OCI Support by Helm is considered experimental
-      HELM_EXPERIMENTAL_OCI: 1
-
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Set up Helm
-        uses: azure/setup-helm@v4
-        with:
-          version: v3.6.0
-
-      - name: Retrieve branch or tag name
-        id: refvar
-        run: echo "::set-output name=gitRefName::${GITHUB_REF#refs/*/}"
-
-      - name: Login to GitHub Container Registry
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        run: |
-          echo "${GITHUB_TOKEN}" | \
-            helm registry login ghcr.io \
-              --username "${{ github.actor }}" \
-              --password-stdin
-
-      - name: Push Helm Chart (sha) for ${{ matrix.name }} to GitHub Container Registry
-        run: |
-          helm dependency update ${{ matrix.path }}
-          helm chart save ${{ matrix.path }} ghcr.io/cosmo-tech/${{ matrix.chart_name }}:${GITHUB_SHA}
-          helm chart push ghcr.io/cosmo-tech/${{ matrix.chart_name }}:${GITHUB_SHA}
-
-      - name: Push Helm Chart (tag) for ${{ matrix.name }} to GitHub Container Registry
-        if: startsWith(github.ref, 'refs/tags/')
-        run: |
-          helm chart save ${{ matrix.path }} ghcr.io/cosmo-tech/${{ matrix.chart_name }}:${{ steps.refvar.outputs.gitRefName }}
-          helm chart push ghcr.io/cosmo-tech/${{ matrix.chart_name }}:${{ steps.refvar.outputs.gitRefName }}
-
-      - name: Push Helm Chart (latest) for ${{ matrix.name }} to GitHub Container Registry
-        if: github.ref == 'refs/heads/main'
-        run: |
-          helm chart save ${{ matrix.path }} ghcr.io/cosmo-tech/${{ matrix.chart_name }}:latest
-          helm chart push ghcr.io/cosmo-tech/${{ matrix.chart_name }}:latest
-
-      - name: Logout from GitHub Container Registry
-        if: ${{ always() }}
-        run: |
-          helm registry logout ghcr.io || true

.github/workflows/doc.yml

@@ -64,33 +64,3 @@ jobs:
           fi
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-
-  generate_and_push_doc_for_helm_charts:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Update Helm Charts documentation
-        run: ./scripts/kubernetes/update-helm-chart-readme.sh
-
-      - name: Set Git identity
-        if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }}
-        run: |
-          git config --global user.email "[email protected]"
-          git config --global user.name "$GITHUB_ACTOR"
-
-      - name: Push generated documentation if needed
-        if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }}
-        run: |
-          git fetch --prune
-          git pull --rebase --autostash
-          if [[ `git status --porcelain` ]]; then
-            git checkout -b helm_documentation
-            git add api/kubernetes/*/README.md
-            git commit -m "chore(docs): Update generated Helm Charts documentations" \
-              -m "Co-authored-by: csmplatform <[email protected]>"
-            git push --set-upstream origin helm_documentation
-            gh pr create -B main -H helm_documentation --title 'Merge helm_documentation into main' --body 'Created by Github action'
-          fi
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/lint.yml

@@ -68,45 +68,3 @@ jobs:
         if: ${{ always() }}
         with:
           sarif_file: 'build/reports/detekt/sarif/'
-
-  helm-lint:
-    runs-on: ubuntu-latest
-
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Set up Helm
-        uses: azure/setup-helm@v4
-        with:
-          version: v3.6.0
-
-      - name: Lint Helm Chart (api) with helm
-        run: helm lint api/kubernetes/helm-chart
-
-  kube-linter:
-    runs-on: ubuntu-latest
-    strategy:
-      matrix:
-        chart:
-          - helm-chart
-
-    steps:
-      - uses: actions/checkout@v4
-
-      - run: mkdir -p api/kubernetes/.sarif
-
-      - name: Scan '${{ matrix.chart }}' Chart with kube-linter
-        uses: stackrox/[email protected]
-        with:
-          directory: api/kubernetes/${{ matrix.chart }}
-          config: api/kubernetes/.kube-linter.yaml
-          format: sarif
-          output-file: api/kubernetes/.sarif/${{ matrix.chart }}.sarif
-          version: 0.2.5
-
-      - name: Upload SARIF file
-        if: ${{ always() }}
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: api/kubernetes/.sarif/${{ matrix.chart }}.sarif
-

.gitignore

@@ -44,21 +44,12 @@ out/
 # generated
 openapi/plantuml/.openapi-generator/
 openapi/openapi.yaml
-api/kubernetes/cronjob/*.yaml
 
 ### Personal directory ###
 perso
 config/application-dev*.properties
 config/application-*.yml
 !config/application-dev.sample.yml
-api/kubernetes/helm-chart/values-vcr.yaml
-/api/kubernetes/helm-chart/values-JREY*.yaml
 
 ### Logs ###
 logs/*access_log*.log
-
-### Helm ###
-# Chart dependencies
-**/charts/*.tgz
-/kube-prometheus-stack.yaml
-/values-cosmotech-api-deploy.yaml

README.md

@@ -159,151 +159,13 @@ If you want to use a different context/cluster without changing your default set
 ./gradlew :cosmotech-api:bootRun -PjvmArgs=-DuseKubernetesContext=<MY_CONTEXT>
 ```
 
-## Deploying
-
-This project comes with a set of [Helm](https://helm.sh/) Charts to make it deployable to local or remote Kubernetes clusters.
-
-### Prerequisites
-
-- [kubectl](https://kubernetes.io/docs/tasks/tools/#kubectl)
-- [Helm](https://helm.sh/docs/intro/install/)
-
-### Azure Kubernetes Service (AKS)
-
-* Login against the container registry of your choice, like Azure Container Registries in the example below:
-
-```shell
-az login
-az acr login --name csmenginesdev
-```
-
-* Build and push the container image, e.g.:
-
-```shell
-./gradlew :cosmotech-api:jib \
-  -Djib.to.image=csmphoenixdev.azurecr.io/cosmotech-api:latest
-```
-
-* Configure the cluster
-
-This assumes you already retrieved the AKS cluster credentials, and configured your
-current `kubectl` context accordingly.
-
-Otherwise, run `az aks get-credentials`, e.g.:
-
-```shell
-az aks get-credentials \
-  --resource-group phoenix \
-  --name phoenixAKSdev
-```
-
-* Run the deployment script
-
-```
- ./api/kubernetes/deploy_via_helm.sh --help
-
-This script takes at least 4 parameters.
-
-The following optional environment variables can be set to alter this script behavior:
-- ARGO_MINIO_REQUESTS_MEMORY | units of bytes (default is 4Gi) | Memory requests for the Argo MinIO server
-- NGINX_INGRESS_CONTROLLER_ENABLED | boolean (default is false) | indicating whether an NGINX Ingress Controller should be deployed and an Ingress resource created too
-- NGINX_INGRESS_CONTROLLER_REPLICA_COUNT | int (default is 1) | number of pods for the NGINX Ingress Controller
-- NGINX_INGRESS_CONTROLLER_LOADBALANCER_IP | IP Address String | optional public IP Address to use as LoadBalancer IP. You can create one with this Azure CLI command: az network public-ip create --resource-group <my-rg>> --name <a-name> --sku Standard --allocation-method static --query publicIp.ipAddress -o tsv
-- NGINX_INGRESS_CONTROLLER_HELM_ADDITIONAL_OPTIONS | Additional Helm options for the NGINX Ingress Controller | Additional options to pass to Helm when creating the Ingress Controller, e.g.: --set controller.service.annotations."service.beta.kubernetes.io/azure-load-balancer-resource-group"=my-azure-resource-group
-- CERT_MANAGER_ENABLED  | boolean (default is false). Deprecated - use TLS_CERTIFICATE_TYPE instead | indicating whether cert-manager should be deployed. It is in charge of requesting and managing renewal of Let's Encrypt certificates
-- CERT_MANAGER_INSTALL_WAIT_TIMEOUT | string (default is 3m) | how much time to wait for the cert-manager Helm Chart to be successfully deployed
-- CERT_MANAGER_USE_ACME_PROD | boolean (default is false) | whether to use the Let's Encrypt Production server. Note that this is subject to rate limiting
-- CERT_MANAGER_COSMOTECH_API_DNS_NAME | FQDN String. Deprecated - use COSMOTECH_API_DNS_NAME instead | DNS name, used for Let's Encrypt certificate requests, e.g.: dev.api.cosmotech.com
-- COSMOTECH_API_DNS_NAME | FQDN String | DNS name, used for configuring the Ingress resource, e.g.: dev.api.cosmotech.com
-- CERT_MANAGER_ACME_CONTACT_EMAIL | Email String. Deprecated - use TLS_CERTIFICATE_LET_S_ENCRYPT_CONTACT_EMAIL instead | contact email, used for Let's Encrypt certificate requests
-- TLS_CERTIFICATE_TYPE | one of 'none', 'custom', 'let_s_encrypt' | strategy for TLS certificates
-- TLS_CERTIFICATE_LET_S_ENCRYPT_CONTACT_EMAIL | Email String | contact email, used for Let's Encrypt certificate requests
-- TLS_CERTIFICATE_CUSTOM_CERTIFICATE_PATH | File path | path to a file containing the custom TLS certificate to use for HTTPS
-- TLS_CERTIFICATE_CUSTOM_KEY_PATH | File path | path to a file containing the key for the custom TLS certificate to use for HTTPS
-
-Usage: ./deploy_via_helm.sh CHART_PACKAGE_VERSION NAMESPACE ARGO_POSTGRESQL_PASSWORD API_VERSION [any additional options to pass as is to the cosmotech-api Helm Chart]
-
-Examples:
-
-- ./deploy_via_helm.sh latest phoenix "a-super-secret-password-for-postgresql" latest \
-    --values /path/to/my/cosmotech-api-values.yaml \
-    --set image.pullPolicy=Always
-
-- ./deploy_via_helm.sh 1.0.1 phoenix "change-me" v1 --values /path/to/my/cosmotech-api-values.yaml
-```
-
-You may want to use a dedicated `values.yaml` file instead, like below.
-Feel free to copy and customize this [values-azure.yaml](api/kubernetes/helm-chart/values-azure.yaml) file as needed.
-
-```shell
-./api/kubernetes/deploy_via_helm.sh latest phoenix "a-secret" latest --values /path/to/my/values-azure-dev.yaml
-```
-
-See the dedicated [README](api/kubernetes/helm-chart/README.md) for more details about the different properties.
-
-### Local Kubernetes Cluster
-
-* Spawn a local cluster. Skip if you already have configured a local cluster.
-
-Otherwise, you may want to leverage the [scripts/kubernetes/create-local-k8s-cluster.sh](scripts/kubernetes/create-local-k8s-cluster.sh) script,
-  which provisions a local [Kind](https://kind.sigs.k8s.io/) cluster, along with a private local container
-registry and an [NGINX Ingress Controller](https://kubernetes.github.io/ingress-nginx/).
-
-To use it, simply [install Kind](https://kind.sigs.k8s.io/docs/user/quick-start/#installation), and run the script, like so (`<cluster_name>` is optional and defaults to `local-k8s-cluster`):
-
-```shell
-/bin/sh -c scripts/kubernetes/create-local-k8s-cluster.sh [<cluster_name>]
-```
-This creates a Kubernetes context named `kind-<cluster_name>`.
-
-* Build and push the container image to the local registry, e.g.:
-
-```shell
-./gradlew :cosmotech-api:jib \
-  -Djib.allowInsecureRegistries=true \
-  -Djib.to.image=localhost:5000/cosmotech-api:latest
-```
-
-* Create the namespace if needed
-
-```shell
-kubectl create namespace phoenix
-```
-
-* Run the dev deployment script
-
-**Example**
-
-```
-./api/kubernetes/deploy_via_helm-dev.sh phoenix "a-super-secret-password" latest --values /path/to/my/values-dev.yaml
-```
-
-This uses the default [values-dev.yaml](api/kubernetes/helm-chart/values-dev.yaml).
-
-**Usage**
-
-```
-❯ ./api/kubernetes/deploy_via_helm-dev.sh --help
-
-This script takes at least 3 parameters.
-
-The following optional environment variables can be set to alter this script behavior:
-- ARGO_MINIO_REQUESTS_MEMORY | units of bytes (default is 4Gi) | Memory requests for the Argo MinIO server
-
-Usage: ./deploy_via_helm-dev.sh NAMESPACE ARGO_POSTGRESQL_PASSWORD API_VERSION [any additional options to pass as is to the cosmotech-api Helm Chart]
-
-```
-
-See the dedicated [README](api/kubernetes/helm-chart/README.md) for more details about the different properties.
-
 ## Contributing
 
 Feel free to submit pull requests or open issues for bugs or feature requests.
 
 We leverage the following tools to enforce code formatting and for code static analysis:
 - [Spotless](https://github.com/diffplug/spotless)
 - [Detekt](https://detekt.github.io/detekt/)
-- [KubeLinter](https://github.com/stackrox/kube-linter) and [helm lint](https://helm.sh/docs/helm/helm_lint/)
 
 These checks are automatically enforced as part of the continuous integration runs on GitHub.
 
@@ -345,19 +207,6 @@ To run a local analysis with Detekt, simply run the `detekt` Gradle task:
 
 You will then find the reports for the different sub-projects in the `build/reports/detekt` folder, under different formats: Plain text, HTML, and [SARIF](https://sarifweb.azurewebsites.net/).
 
-#### KubeLinter
-
-To run a local analysis of the Helm Charts maintained in this repo:
-- install KubeLinter : https://github.com/stackrox/kube-linter#installing-kubelinter
-- Run KubeLinter against the 2 Charts:
-
-```shell
-kube-linter --config api/kubernetes/.kube-linter.yaml lint api/kubernetes/helm-chart
-```
-
-```shell
-kube-linter --config api/kubernetes/.kube-linter.yaml lint api/kubernetes/csm-argo
-```
 
 #### Vulnerability report