[NO-ISSUE] compatibility with all cert-managers

There's two variant of cert-manager available on the openshift
operatorHub, one for upstream (the community one) and one for downstream
built by Red Hat. Depending on which one the cluster administrator did
chose, the deploy and undeploy script must adapt to it. This is what
this PR brings in to the table. Now the scripts are looking first if the
upstream version is installed, and then if the downstream version is
there. The deploy script will fail if no cert-manager are present on the
cluster.

Author: lavocatt

deploy.sh

@@ -40,32 +40,36 @@ done
 certManagerNamespace=$(oc get Subscriptions --all-namespaces -ojson | jq -r '.items[] | select(.spec.name == "cert-manager") | .metadata.namespace')
 if test -z "$certManagerNamespace"
 then
-      echo "cert-manager's namespace can't be determined, check that it is installed"
-      oc get Subscriptions --all-namespaces
-      exit 1
+  certManagerNamespace=$(oc get Subscriptions --all-namespaces -ojson | jq -r '.items[] | select(.spec.name == "openshift-cert-manager-operator") | .metadata.namespace')
+  if test -z "$certManagerNamespace"
+  then
+    echo "cert-manager's namespace can't be determined, check that it is installed"
+    oc get Subscriptions --all-namespaces
+    exit 1
+  fi
 fi
 echo "cert-manager's namespace: $certManagerNamespace"
 
 # retrieve the cluster domain to produce a valid cluster issuer
 clusterDomain=$(oc get -n openshift-ingress-operator ingresscontroller/default -o json | jq -r '.status.domain')
 if test -z "$certManagerNamespace"
 then
-      echo "The cluster domain can't be retrived"
-      exit 1
+  echo "The cluster domain can't be retrived"
+  exit 1
 fi
 echo "cluster domain: $clusterDomain"
 
 echo "deploying using image: ${API_SERVER_IMAGE}"
 oc kustomize deploy \
     | sed "s|image: .*|image: ${API_SERVER_IMAGE}|" \
     | sed "s|- issuer.mydomain.tld|- issuer.${clusterDomain}|" \
+    | sed "s|namespace: openshift-operators|namespace: ${certManagerNamespace}|" \
     | oc apply -f -
 
-
-while ! kubectl get secret jolokia-api-server-selfsigned-ca-cert-secret   --namespace openshift-operators; do echo "Waiting for the CA"; sleep 1; done
+while ! oc get secret jolokia-api-server-selfsigned-ca-cert-secret   --namespace=${certManagerNamespace}; do echo "Waiting for the CA"; sleep 1; done
 # copy the secret from the cert-manager namespace to the jolokia api server
 # namespace
 oc get secret jolokia-api-server-selfsigned-ca-cert-secret \
-    --namespace=openshift-operators -oyaml \
+    --namespace=${certManagerNamespace} -oyaml \
     | sed s/"namespace: ${certManagerNamespace}"/"namespace: activemq-artemis-jolokia-api-server"/\ \
-    | kubectl apply -n activemq-artemis-jolokia-api-server -f -
+    | oc apply -n activemq-artemis-jolokia-api-server -f -

undeploy.sh

@@ -1,5 +1,20 @@
 #!/usr/bin/env sh
 
-oc kustomize deploy | oc delete -f -
+# find the cert-manager operator namespace, if this can't be retrived there's no
+# possibility to proceed
+certManagerNamespace=$(oc get Subscriptions --all-namespaces -ojson | jq -r '.items[] | select(.spec.name == "cert-manager") | .metadata.namespace')
+if test -z "$certManagerNamespace"
+then
+  certManagerNamespace=$(oc get Subscriptions --all-namespaces -ojson | jq -r '.items[] | select(.spec.name == "openshift-cert-manager-operator") | .metadata.namespace')
+  if test -z "$certManagerNamespace"
+  then
+    echo "cert-manager's namespace can't be determined, defaulting to default namespace"
+    certManagerNamespace="openshift-operators"
+  fi
+fi
+echo "cert-manager's namespace: $certManagerNamespace"
+oc kustomize deploy \
+    | sed "s|namespace: openshift-operators|namespace: ${certManagerNamespace}|" \
+    | oc delete -f -
 oc delete secret jolokia-api-server-selfsigned-ca-cert-secret -n activemq-artemis-jolokia-api-server
-oc delete secret jolokia-api-server-selfsigned-ca-cert-secret -n openshift-operators
+oc delete secret jolokia-api-server-selfsigned-ca-cert-secret -n ${certManagerNamespace}