Add helm-chart for the deployment of the FDSC-EDC (#454)

* add fdsc-edc helm chart

* version numbers

* Update helm documentation

* Update helm documentation

* pr fixes

* Update helm documentation

* Update helm documentation

* Update helm documentation

* fix linter issue

* Update helm documentation

* remove end

* Update helm documentation

* fix fullname

* Update helm documentation

* add missing end

* Update helm documentation

---------

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

Author: wistefan

charts/fdsc-edc/Chart.yaml

@@ -0,0 +1,16 @@
+apiVersion: v1
+name: fdsc-edc
+version: 0.0.10
+appVersion: 0.0.2
+description: A Helm chart for running the fdsc-edc on kubernetes.
+icon: https://fiware.github.io/catalogue/img/fiware.png
+keywords:
+  - fiware
+  - data-space-connector
+  - dataspace
+  - dataspace-protocol
+sources:
+  - https://github.com/SEAMWARE/fdsc-edc
+maintainers:
+  - name: wistefan
+    email: stefan.wiedemann@seamware.org

charts/fdsc-edc/README.md

@@ -0,0 +1,56 @@
+
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "fdsc-edc.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "fdsc-edc.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "fdsc-edc.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "fdsc-edc.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create -}}
+    {{ default (include "fdsc-edc.fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Common labels
+*/}}
+{{- define "fdsc-edc.labels" -}}
+app.kubernetes.io/name: {{ include "fdsc-edc.name" . }}
+helm.sh/chart: {{ include "fdsc-edc.chart" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end -}}

charts/fdsc-edc/templates/_helpers.tpl

@@ -0,0 +1,113 @@
+{{- range $name, $deployment := .Values.deployment }}
+{{- $cfg := mergeOverwrite (deepCopy $.Values.common) $deployment }}
+
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+  namespace: {{ $.Release.Namespace | quote }}
+  labels:
+    app.kubernetes.io/name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+    app.kubernetes.io/component: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+    app.kubernetes.io/instance: {{ $.Release.Name }}
+
+data:
+  dataspaceconnector-configuration.properties: |
+    default.http.https.resolution=true
+
+    oid4vp.enabled={{ $cfg.config.oid4vp.enabled }}
+    oid4vp.clientId={{ $cfg.config.oid4vp.clientId }}
+    oid4vp.scope={{ $cfg.config.oid4vp.scope }}
+    oid4vp.trustAll={{ $cfg.config.oid4vp.trustAll }}
+    oid4vp.holder.id={{ $cfg.config.oid4vp.holder.id }}
+    oid4vp.holder.kid={{ $cfg.config.oid4vp.holder.kid }}
+    oid4vp.holder.key.type={{ $cfg.config.oid4vp.holder.key.type }}
+    oid4vp.holder.key.path={{ $cfg.config.oid4vp.holder.key.path }}
+    oid4vp.holder.signatureAlgorithm={{ $cfg.config.oid4vp.holder.signatureAlgorithm }}
+    oid4vp.credentialsFolder={{ $cfg.config.oid4vp.credentialsFolder }}
+    oid4vp.trustAnchorsFolder={{ $cfg.config.oid4vp.trustAnchorsFolder }}
+    oid4vp.organizationClaim={{ $cfg.config.oid4vp.organizationClaim }}
+    oid4vp.proxy.enabled={{ $cfg.config.oid4vp.proxy.enabled }}
+    oid4vp.proxy.host={{ $cfg.config.oid4vp.proxy.host }}
+    oid4vp.proxy.port={{ $cfg.config.oid4vp.proxy.port }}
+
+    testExtension.enabled={{ $cfg.config.testExtension.enabled }}
+    testExtension.controller.enabled={{ $cfg.config.testExtension.controller.enabled }}
+    testExtension.controller.port={{ $cfg.config.testExtension.controller.port }}
+    testExtension.controller.path={{ $cfg.config.testExtension.controller.path }}
+    testExtension.identity.enabled={{ $cfg.config.testExtension.identity.enabled }}
+
+    tmfExtension.enabled={{ $cfg.config.tmfExtension.enabled }}
+    tmfExtension.quoteApi={{ $cfg.config.tmfExtension.quoteApi }}
+    tmfExtension.agreementApi={{ $cfg.config.tmfExtension.agreementApi }}
+    tmfExtension.productOrderApi={{ $cfg.config.tmfExtension.productOrderApi }}
+    tmfExtension.productCatalogApi={{ $cfg.config.tmfExtension.productCatalogApi }}
+    tmfExtension.productInventoryApi={{ $cfg.config.tmfExtension.productInventoryApi }}
+    tmfExtension.usageManagementApi={{ $cfg.config.tmfExtension.usageManagementApi }}
+    tmfExtension.partyCatalogApi={{ $cfg.config.tmfExtension.partyCatalogApi }}
+    tmfExtension.catalog.enabled={{ $cfg.config.tmfExtension.catalog.enabled }}
+
+    fdscTransfer.enabled={{ $cfg.config.fdscTransfer.enabled }}
+    fdscTransfer.transferHost={{ $cfg.config.fdscTransfer.transferHost }}
+    fdscTransfer.dcp.enabled={{ $cfg.config.fdscTransfer.dcp.enabled }}
+    fdscTransfer.dcp.oid.host={{ $cfg.config.fdscTransfer.dcp.oid.host }}
+    fdscTransfer.dcp.oid.openIdPath={{ $cfg.config.fdscTransfer.dcp.oid.openIdPath }}
+    fdscTransfer.dcp.oid.jwksPath={{ $cfg.config.fdscTransfer.dcp.oid.jwksPath }}
+    jwksAddress={{ $cfg.config.fdscTransfer.dcp.jwksAddress }}
+
+    fdscTransfer.oid4vc.enabled={{ $cfg.config.fdscTransfer.oid4vc.enabled }}
+    fdscTransfer.oid4vc.credentialsConfigAddress={{ $cfg.config.fdscTransfer.oid4vc.credentialsConfigAddress }}
+    fdscTransfer.oid4vc.verifierHost={{ $cfg.config.fdscTransfer.oid4vc.verifierHost }}
+    fdscTransfer.oid4vc.verifierInternalHost={{ $cfg.config.fdscTransfer.oid4vc.verifierInternalHost }}
+    fdscTransfer.oid4vc.opaHost={{ $cfg.config.fdscTransfer.oid4vc.opaHost }}
+    fdscTransfer.oid4vc.odrlPapHost={{ $cfg.config.fdscTransfer.oid4vc.odrlPapHost }}
+    fdscTransfer.apisix.address={{ $cfg.config.fdscTransfer.apisix.address }}
+    fdscTransfer.apisix.token={{ $cfg.config.fdscTransfer.apisix.token }}
+    fdscTransfer.apisix.httpsProxy={{ $cfg.config.fdscTransfer.apisix.httpsProxy }}
+
+    ebsiTir.enabled={{ $cfg.config.ebsiTir.enabled }}
+    ebsiTir.tilAddress={{ $cfg.config.ebsiTir.tilAddress }}
+
+    dcp.enabled={{ $cfg.config.dcp.enabled }}
+    dcp.scopes.catalog={{ $cfg.config.dcp.scopes.catalog }}
+    dcp.scopes.negotiation={{ $cfg.config.dcp.scopes.negotiation }}
+    dcp.scopes.transfer={{ $cfg.config.dcp.scopes.transfer }}
+    dcp.scopes.version={{ $cfg.config.dcp.scopes.version }}
+
+    edc.participant.id={{ $cfg.config.edc.participant.id }}
+    edc.log.level={{ $cfg.config.edc.log.level }}
+    edc.jsonld.https.enabled={{ $cfg.config.edc.jsonld.https.enabled }}
+    edc.jsonld.http.enabled={{ $cfg.config.edc.jsonld.http.enabled }}
+    {{- if $cfg.config.edc.hostname }}
+    edc.hostname={{ $cfg.config.edc.hostname }}
+    {{- end }}
+
+    web.http.port={{ $cfg.config.web.http.port }}
+    web.http.management.path={{ $cfg.config.web.http.management.path }}
+    web.http.management.port={{ $cfg.config.web.http.management.port }}
+    web.http.protocol.path={{ $cfg.config.web.http.protocol.path }}
+    web.http.protocol.port={{ $cfg.config.web.http.protocol.port }}
+    web.http.control.path={{ $cfg.config.web.http.control.path }}
+    web.http.control.port={{ $cfg.config.web.http.control.port }}
+    web.http.catalog.path={{ $cfg.config.web.http.catalog.path }}
+    web.http.catalog.port={{ $cfg.config.web.http.catalog.port }}
+    web.http.version.path={{ $cfg.config.web.http.version.path }}
+    web.http.version.port={{ $cfg.config.web.http.version.port }}
+
+    edc.iam.sts.oauth.token.url={{ $cfg.config.oauth.tokenUrl }}
+    edc.iam.sts.oauth.client.id={{ $cfg.config.oauth.clientId }}
+    edc.iam.sts.oauth.client.secret.alias={{ $cfg.config.oauth.secretAlias }}
+    edc.iam.issuer.id={{ $cfg.config.issuerId }}
+
+    {{- if (eq $cfg.config.vault.hashicorp.enabled true) }}
+    edc.vault.hashicorp.url={{ tpl $cfg.config.vault.hashicorp.url $ }}
+    edc.vault.hashicorp.token={{ $cfg.config.vault.hashicorp.token }}
+    edc.vault.hashicorp.timeout.seconds={{ $cfg.config.vault.hashicorp.timeout }}
+    edc.vault.hashicorp.health.check.enabled={{ $cfg.config.vault.hashicorp.healthCheck.enabled }}
+    edc.vault.hashicorp.health.check.standby.ok={{ $cfg.config.vault.hashicorp.healthCheck.standbyOk }}
+    edc.vault.hashicorp.api.secret.path={{ $cfg.config.vault.hashicorp.paths.secret }}
+    edc.vault.hashicorp.api.health.check.path={{ $cfg.config.vault.hashicorp.paths.health }}
+    {{- end }}
+
+{{- end }}

charts/fdsc-edc/templates/config-map.yaml

@@ -0,0 +1,146 @@
+{{- range $name, $deployment := .Values.deployment }}
+{{- $cfg := mergeOverwrite (deepCopy $.Values.common) $deployment }}
+
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+  namespace: {{ $.Release.Namespace | quote }}
+  labels:
+    app.kubernetes.io/name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+    app.kubernetes.io/instance: {{ $.Release.Name }}
+    app.kubernetes.io/component: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+
+spec:
+  replicas: {{ $cfg.deployment.replicaCount }}
+
+  revisionHistoryLimit: {{ $cfg.deployment.revisionHistoryLimit }}
+
+  strategy:
+    {{- toYaml $cfg.deployment.updateStrategy | nindent 4 }}
+
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+      app.kubernetes.io/instance: {{ $.Release.Name }}
+      app.kubernetes.io/component: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+        app.kubernetes.io/instance: {{ $.Release.Name }}
+        app.kubernetes.io/component: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+      {{- with $cfg.deployment.additionalAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      serviceAccountName: {{ include "apollo.serviceAccountName" . }}
+      {{- with $cfg.imagePullSecrets }}
+      imagePullSecrets:
+        {{- range . }}
+        - name: {{ . }}
+        {{- end }}
+      {{- end }}
+      {{- with $cfg.deployment.initContainers }}
+      initContainers:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      containers:
+        - name: dsp-controlplane
+          image: "{{ $cfg.deployment.image.repository }}:{{ $cfg.deployment.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ $cfg.deployment.image.pullPolicy }}
+
+          {{- with $cfg.deployment.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+
+          {{- with $cfg.deployment.args }}
+          args:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+
+          ports:
+            - name: http
+              containerPort: {{ $cfg.config.web.http.port }}
+            - name: http-version
+              containerPort: {{ $cfg.config.web.http.version.port }}
+            - name: http-management
+              containerPort: {{ $cfg.config.web.http.management.port }}
+            - name: http-protocol
+              containerPort: {{ $cfg.config.web.http.protocol.port }}
+            - name: http-catalog
+              containerPort: {{ $cfg.config.web.http.catalog.port }}
+            - name: http-control
+              containerPort: {{ $cfg.config.web.http.control.port }}
+            - name: http-tck
+              containerPort: {{ $cfg.config.testExtension.controller.port }}
+
+          livenessProbe:
+            httpGet:
+              path: {{ $cfg.deployment.path }}/check/liveness
+              port: http
+            initialDelaySeconds: {{ $cfg.deployment.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ $cfg.deployment.livenessProbe.periodSeconds }}
+            successThreshold: {{ $cfg.deployment.livenessProbe.successThreshold }}
+            timeoutSeconds: {{ $cfg.deployment.livenessProbe.timeoutSeconds }}
+            failureThreshold: {{ .Values.deployment.livenessProbe.failureThreshold }}
+
+          readinessProbe:
+            httpGet:
+              path: {{ $cfg.deployment.path }}/check/readiness
+              port: http
+            initialDelaySeconds: {{ $cfg.deployment.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ $cfg.deployment.readinessProbe.periodSeconds }}
+            successThreshold: {{ $cfg.deployment.readinessProbe.successThreshold }}
+            timeoutSeconds: {{ $cfg.deployment.readinessProbe.timeoutSeconds }}
+            failureThreshold: {{ .Values.deployment.readinessProbe.failureThreshold }}
+
+          env:
+            - name: EDC_FS_CONFIG
+              value: /config/dataspaceconnector-configuration.properties
+
+            {{- with $cfg.additionalEnvVars }}
+            {{- toYaml . | nindent 12 }}
+            {{- end }}
+
+          volumeMounts:
+            - name: config-properties
+              mountPath: /config/dataspaceconnector-configuration.properties
+              subPath: dataspaceconnector-configuration.properties
+
+            {{- with $cfg.deployment.additionalVolumeMounts }}
+            {{- toYaml . | nindent 12 }}
+            {{- end }}
+
+          resources:
+            {{- toYaml $cfg.deployment.resources | nindent 12 }}
+
+      volumes:
+        - name: config-properties
+          configMap:
+            name: {{ include "fdsc-edc.fullname" . }}-{{ $name }}
+
+        {{- with $cfg.deployment.additionalVolumes }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+
+      {{- with $cfg.deployment.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+
+      {{- with $cfg.deployment.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+
+      {{- with $cfg.deployment.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+
+{{- end }}

charts/fdsc-edc/templates/deployment.yaml

@@ -0,0 +1,50 @@
+{{- range $name, $deployment := .Values.deployment }}
+{{- $cfg := mergeOverwrite (deepCopy $.Values.common) $deployment }}
+{{- if (eq  $cfg.ingress.enabled true) -}}
+---
+{{- $servicePort := $cfg.service.port -}}
+{{- $fullName := include "fdsc-edc.fullname" . -}}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ $fullName }}-{{ $name }}
+  namespace: {{ $.Release.Namespace | quote }}
+  labels:
+    {{ include "fdsc-edc.labels" . | nindent 4 }}
+  {{- if $cfg.ingress.annotations }}
+  annotations:
+    {{- with $cfg.ingress.annotations }}
+      {{- toYaml . | nindent 4 }}
+      {{- end }}
+  {{- end }}
+spec:
+  {{- if $cfg.ingress.className }}
+  ingressClassName: {{ $cfg.ingress.className }}
+  {{- end }}
+  {{- if $cfg.ingress.tls }}
+  tls:
+    {{- range $cfg.ingress.tls }}
+    - hosts:
+      {{- range .hosts }}
+      - {{ . | quote }}
+      {{- end }}
+      secretName: {{ .secretName }}
+    {{- end }}
+  {{- end }}
+  rules:
+  {{- range $cfg.ingress.hosts }}
+  - host: {{ .host | quote }}
+    http:
+      paths:
+      {{- range .paths }}
+      - path: {{ . }}
+        pathType: Prefix
+        backend:
+          service:
+            name: {{ $fullName }}-{{ $name }}
+            port:
+              number: {{ $servicePort }}
+      {{- end }}
+  {{- end }}
+{{- end }}
+{{- end }}