restore codefresh-csdp 1.0.1 (#530)

Author: mikhail-klimko

workflows/codefresh-csdp/versions/1.0.1/README.md

@@ -0,0 +1,17 @@
+# CSDP-metadata
+
+## Summary
+
+A set of templates to operate against Codefresh Software Delivery Platform such as reporting image information to the Argo platform, and enriching images with metadata and annotation for GitHub (PRs, commits, etc) and Jira (title, assignee, etc).
+
+## Templates
+
+1. [image-enricher-git-info](https://github.com/codefresh-io/argo-hub/blob/main/workflows/codefresh-csdp/versions/1.0.0/docs/image-enricher-git-info.md)
+2. [image-enricher-jira-info](https://github.com/codefresh-io/argo-hub/blob/main/workflows/codefresh-csdp/versions/1.0.0/docs/image-enricher-jira-info.md)
+3. [report-image-info](https://github.com/codefresh-io/argo-hub/blob/main/workflows/codefresh-csdp/versions/1.0.0/docs/report-image-info.md)
+
+## Security
+
+Minimal required permissions
+
+[Full rbac permissions list](https://github.com/codefresh-io/argo-hub/blob/main/workflows/codefresh-csp/versions/1.0.0/rbac.yaml)

workflows/codefresh-csdp/versions/1.0.1/docs/image-enricher-git-info.md

@@ -0,0 +1,68 @@
+# image-enricher-git-info
+
+## Summary
+Enrich images with metadata and annotation such as PR, commits, committers.
+
+## Inputs/Outputs
+
+### Inputs
+* IMAGE_NAME (required) - The image name that was imported into Codefresh to enrich
+* IMAGE_SHA (required) - The image sha that was imported into Codefresh to enrich
+* GIT_PROVIDER (required) - One of the supported git providers: github
+* BRANCH (required) - The git branch to use to enrich
+* REPO (required) - The repo to use to enrich
+* CF_API_KEY (required) - The Kubernetes secret containing the Codefresh API key
+* CF_API_KEY_SECRET_KEY (optional) - The key in the Kubernetes secret that has the Codefresh API Key. Default is 'token'
+* CF_HOST_URL (optional) - The URL to reach Codefresh (support on-premises Codefresh). Default is 'https://g.codefresh.io'
+* GITHUB_API_HOST_URL (optional) - The URL to reach the GitHub API (support on-premises GitHub api). Default is 'https://api.github.com'
+* GITHUB_API_PATH_PREFIX (optional) - The API prefix path for GitHub (support on-premises GitHub path prefix).
+* GITHUB_TOKEN_SECRET_NAME (optional) - The Kubernetes secret containing the GitHub token
+* GITHUB_TOKEN_SECRET_KEY (optional) - The key in the Kubernetes secret containing the GitHub token. Default is 'token'
+* GITHUB_CONTEXT (optional) - The name of the github context from classic codefresh platform
+* GITLAB_HOST_URL (optional) - The Kubernetes secret containing the GitHub token
+* GITLAB_TOKEN_SECRET_NAME (optional) - The Kubernetes secret containing the GitHub token
+* GITLAB_TOKEN_SECRET_KEY (optional) - The key in the Kubernetes secret containing the GitHub token. Default is 'token'
+
+
+### Outputs
+no outputs
+
+## Examples
+
+### task Example
+```
+apiVersion: argoproj.io/v1alpha1
+kind: Workflow
+metadata:
+  generateName: image-enricher-git-info-
+spec:
+  entrypoint: main
+  templates:
+  - name: main
+    dag:
+      tasks:
+      - name: image-enricher-git-info
+        templateRef:
+          name: argo-hub.codefresh-csdp.1.0.1
+          template: image-enricher-git-info
+        arguments:
+          parameters:
+          - name: CF_API_KEY
+            value: 'codefresh-token'
+          - name: CF_API_KEY_SECRET_KEY
+            value: 'token'
+          - name: IMAGE_NAME
+            value: 'gcr.io/codefresh/cfstep-helm:lastest'
+          - name: IMAGE_SHA
+            value: 'sha256:cbe433136120cea1f146cf1b7f72e77fa763ff0c18b10ef605c1fc5c3d5fbec'
+          - name: GIT_PROVIDER
+            value: 'github'
+          - name: REPO
+            value: 'codefresh/cfstep-helm'
+          - name: BRANCH
+            value: 'main'
+          - name: GITHUB_TOKEN_SECRET_NAME
+            value: 'github-creds'
+          - name: GITHUB_TOKEN_SECRET_KEY
+            value: 'token'
+```

workflows/codefresh-csdp/versions/1.0.1/docs/image-enricher-jira-info.md

@@ -0,0 +1,65 @@
+# image-enricher-jira-info
+
+## Summary
+Enrich images with metadata and annotation such as ticket number, title, assignee, status.
+
+## Inputs/Outputs
+
+### Inputs
+* IMAGE_NAME (required) - The image URI that was imported into Codefresh to enrich
+* JIRA_HOST_URL (required) - jira host url
+* JIRA_API_TOKEN_SECRET (required) - Name of Kubernetes secret that contains a jira email and token that you generate in jira
+* JIRA_API_TOKEN_SECRET_KEY (required) - The key in the Kubernetes secret with the Jira API token. Default is 'token'
+* JIRA_EMAIL_SECRET_KEY (required) - The key in the Kubernetes secret with the Jira Email associated with the API token. Default is 'email'
+* JIRA_MESSAGE (required) - message from which you want retrieve issue name, can be a branch, commit message, whatever
+* JIRA_PROJECT_PREFIX (required) - jira project prefix like: SAAS, CF, etc
+* CF_API_KEY (required) - The Kubernetes secret containing the Codefresh API key
+* CF_API_KEY_SECRET_KEY (optional) - The key in the Kubernetes secret that has the Codefresh API Key. Default is 'token'
+* CF_HOST_URL (optional) - The URL to reach Codefresh (support on-premises Codefresh). Default is 'https://g.codefresh.io'
+* JIRA_CONTEXT (optional) - The Jira context to use
+* FAIL_ON_NOT_FOUND (optional) - fail in case of ticket not found. Default is 'false'
+
+### Outputs
+no outputs
+
+## Examples
+
+### task Example
+```
+apiVersion: argoproj.io/v1alpha1
+kind: Workflow
+metadata:
+  generateName: image-enricher-jira-info-
+spec:
+  entrypoint: main
+  templates:
+  - name: main
+    dag:
+      tasks:
+      - name: image-enricher-jira-info
+        templateRef:
+          name: argo-hub.codefresh-csdp.1.0.1
+          template: image-enricher-jira-info
+        arguments:
+          parameters:
+          - name: CF_API_KEY
+            value: 'codefresh-token'
+          - name: CF_API_KEY_SECRET_KEY
+            value: 'token'
+          - name: IMAGE_NAME
+            value: 'gcr.io/codefresh/cfstep-helm:lastest'
+          - name: IMAGE_SHA
+            value: 'sha256:b5fd0f2fe40fa240975abc4b1b7bf101d4cadcf296f51af799917bcaa76aeb4f'
+          - name: JIRA_PROJECT_PREFIX
+            value: 'CR'
+          - name: JIRA_MESSAGE
+            value: 'working on CR-11027'
+          - name: JIRA_HOST_URL
+            value: 'https://jira.atlassian.net'
+          - name: JIRA_API_TOKEN_SECRET
+            value: 'jira-creds'
+          - name: JIRA_API_TOKEN_SECRET_KEY
+            value: 'token'
+          - name: JIRA_EMAIL_SECRET_KEY
+            value: 'email'
+```

workflows/codefresh-csdp/versions/1.0.1/docs/report-image-info.md

@@ -0,0 +1,80 @@
+# report-image-info
+
+## Summary
+Report image info to argo platform.
+
+## Inputs/Outputs
+
+### Inputs
+* IMAGE_NAME (required) - your image to which you want to report
+* CF_API_KEY (required) - Codefresh API key created by runtime
+* CF_HOST_URL (optional) - support on-premises Codefresh URL
+* WORKFLOW_URL (optional) - external url for the workflow
+* LOGS_URL (optional) - external url for the logs
+* REGISTRY_INSECURE (optional) - security flag for standard registry protocol, when set to true it enables http protocol.
+* RETRIEVE_CREDENTIALS_BY_DOMAIN (optional) - decide about the authentication method based on the image domain
+#### Specify one from following required registry parameters:
+* GCR_KEY_FILE_PATH (required) - JSON key for authenticating to a Google GCR
+* GCR_KEY_SECRET (required) - The Kubernetes secret containing the GCR key information. Default is 'gcr-key-file'
+* GCR_KEY_SECRET_KEY (optional) - The key in the Kubernetes secret containing the GCR key information. Default is '.keyjson'
+* AWS_ACCESS_KEY (required) - The Kubernetes secret with the Amazon access key
+* AWS_ACCESS_KEY_SECRET_KEY (optional) - The key in the Kubernetes secret with the Amazon access key. Default is 'aws-access-key'
+* AWS_SECRET_KEY (required) - The Kubernetes secret with the Amazon secret key
+* AWS_SECRET_KEY_SECRET_KEY (optional) - The key in the Kubernetes secret with the Amazon secret key. Default is 'aws-secret-key'
+* AWS_REGION (required) - The Kubernetes secret with the Amazon region
+* AWS_REGION_SECRET_KEY (optional) - The key in the Kubernetes secret with the Amazon region. Default is 'aws-region'
+* DOCKER_CONFIG_FILE_PATH (required) - docker config json for authenticating to a registry (GCR, ECR, ACR not supported)
+* DOCKER_CONFIG_SECRET (required) - The Kubernetes secret containing the docker config json information. Default is 'docker-registry'
+* DOCKER_CONFIG_SECRET_KEY  (optional) - The key in the Kubernetes secret containing the docker config json information. Default is '.dockerconfigjson'
+* DOCKERHUB_USERNAME (required) - The Kubernetes secret with the docker username
+* DOCKERHUB_USERNAME_SECRET_KEY (optional) The key in the Kubernetes secret with the docker username. Default is 'username'
+* DOCKERHUB_PASSWORD (required) - The Kubernetes secret with the docker password
+* DOCKERHUB_PASSWORD_SECRET_KEY (optional) The key in the Kubernetes secret with the docker password. Default is 'password'
+* REGISTRY_USERNAME (required) - The Kubernetes secret with the standard registry username
+* USERNAME_SECRET_KEY (optional) The key in the Kubernetes secret with the standard registry username. Default is 'username'
+* REGISTRY_PASSWORD (required) - The Kubernetes secret with the standard registry password
+* PASSWORD_SECRET_KEY (optional) The key in the Kubernetes secret with the standard registry password. Default is 'password'
+* REGISTRY_DOMAIN (required) - The Kubernetes secret with the standard registry domain
+* REGISTRY_DOMAIN_SECRET_KEY (optional) - The key in the Kubernetes secret with the standard registry domain. Default is 'domain'
+* AWS_ROLE_SECRET (required) - The Kubernetes secret with the Amazon role
+* AWS_ROLE_SECRET_KEY (optional) -The key in the Kubernetes secret with the standard Amazon role. Default is 'role'
+
+### Outputs
+* `image-name` – name of the reported image
+* `image-sha` – SHA of the reported image
+
+## Examples
+
+### task Example
+```
+apiVersion: argoproj.io/v1alpha1
+kind: Workflow
+metadata:
+  generateName: report-image-info-
+spec:
+  entrypoint: main
+  templates:
+  - name: main
+    dag:
+      tasks:
+      - name: report-image-info
+        templateRef:
+          name: argo-hub.codefresh-csdp.1.0.1
+          template: report-image-info
+        arguments:
+          parameters:
+          - name: CF_API_KEY
+            value: 'codefresh-token'
+          - name: CF_API_KEY_SECRET_KEY
+            value: 'token'
+          - name: IMAGE_NAME
+            value: 'deniscodefresh/ppid-inspector:latest'
+          - name: DOCKERHUB_USERNAME
+            value: 'dockerhub-creds'
+          - name: USERNAME_SECRET_KEY
+            value: 'username'
+          - name: DOCKERHUB_PASSWORD
+            value: 'dockerhub-creds'
+          - name: PASSWORD_SECRET_KEY
+            value: 'password'
+```

workflows/codefresh-csdp/versions/1.0.1/rbac.yaml

@@ -0,0 +1,43 @@
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: argo-hub.codefresh-csdp.1.0.1
+  annotations:
+    argo-hub/version: '1.0.1'
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: argo-hub.codefresh-csdp.1.0.1
+  annotations:
+    argo-hub/version: '1.0.1'
+rules:
+  - apiGroups:
+      - ""
+    resources:
+      - pods
+    verbs:
+      - get
+      - watch
+      - patch
+  - apiGroups:
+      - ""
+    resources:
+      - pods/log
+    verbs:
+      - get
+      - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: argo-hub.codefresh-csdp.1.0.1
+  annotations:
+    argo-hub/version: '1.0.1'
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: argo-hub.codefresh-csdp.1.0.1
+subjects:
+  - kind: ServiceAccount
+    name: argo-hub.codefresh-csdp.1.0.1