Merge pull request #89943 from openshift-cherrypick-robot/cherry-pick-89111-to-rhacs-docs-4.7

agantony · web-flow · commit 88212d8cd7e0 · 2025-03-10T18:48:04.000+05:30
[rhacs-docs-4.7] [RHACS][Docs][4.7 and later versions] ROX-28197: Adding docs for ACS Dev Hub Integration
diff --git a/_topic_maps/_topic_map.yml b/_topic_maps/_topic_map.yml
@@ -190,6 +190,8 @@ Topics:
   File: inviting-users-to-your-rhacs-instance
 - Name: Managing preview features
   File: managing-preview-features
+- Name: Configuring and integrating the RHACS plugin with Red Hat Developer Hub
+  File: configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub
 ---
 Name: Operating
 Dir: operating
diff --git a/configuration/configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub.adoc b/configuration/configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub.adoc
@@ -0,0 +1,15 @@
+:_mod-docs-content-type: ASSEMBLY
+[id="configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub"]
+= Configuring and integrating the RHACS plugin with Red Hat Developer Hub
+include::modules/common-attributes.adoc[]
+:context: configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub
+
+toc::[]
+
+By configuring and integrating the {rh-rhacs-first} plugin with {rh-rhdh-first}, you can view the security information for your deployments in {rh-rhdh}.
+
+:FeatureName: Integration of vulnerability findings into the {rh-rhdh}
+include::snippets/technology-preview.adoc[]
+
+//Viewing security information in {rh-rhdh}
+include::modules/viewing-security-information-in-red-hat-developer-hub.adoc[leveloffset=+1]
diff --git a/modules/common-attributes.adoc b/modules/common-attributes.adoc
@@ -37,6 +37,9 @@ endif::[]
 :rh-rhacs-first: Red{nbsp}Hat Advanced Cluster Security for Kubernetes (RHACS)
 :rh-rhacscs-first: Red{nbsp}Hat Advanced Cluster Security Cloud Service (RHACS Cloud Service)
 :rh-rhacm: RHACM
+:rh-rhdh-first: Red{nbsp}Hat Developer Hub (RHDH)
+:rh-rhdh: RHDH
+:rhdh-latest-version: 1.4
 :sandboxed-containers-first: OpenShift sandboxed containers
 :sandboxed-containers: Sandboxed Containers Operator
 :rh-virtualization-first: Red{nbsp}Hat Virtualization (RHV)
diff --git a/modules/viewing-security-information-in-red-hat-developer-hub.adoc b/modules/viewing-security-information-in-red-hat-developer-hub.adoc
@@ -0,0 +1,101 @@
+// Module included in the following assemblies:
+//
+// * configuration/configuring-and-integrating-the-rhacs-plugin-with-red-hat-developer-hub.adoc
+
+:_mod-docs-content-type: PROCEDURE
+[id="viewing-security-information-in-red-hat-developer-hub_{context}"]
+= Viewing security information in Red Hat Developer Hub
+
+By configuring and integrating the {rh-rhacs-first} plugin with {rh-rhdh-first}, you can access vulnerability data, assess risks, and take proactive security actions without leaving the {rh-rhdh} environment.
+
+.Prerequisites
+
+* You have enabled the {product-title-short} plugin installation in {rh-rhdh}.
++
+For more information, see link:https://docs.redhat.com/en/documentation/red_hat_developer_hub/{rhdh-latest-version}/html/installing_and_viewing_plugins_in_red_hat_developer_hub/rhdh-installing-rhdh-plugins_title-plugins-rhdh-about#con-install-dynamic-plugin-helm_rhdh-installing-rhdh-plugins[Installing dynamic plugins using the Helm chart] ({rh-rhdh} documentation).
+
+.Procedure
+
+. Create an `app-config.yaml` file that contains the `proxy` and `acs` stanzas by using the following content:
++
+[source,yaml]
+----
+# ...
+proxy:
+  endpoints:
+    /acs:
+      target: ${ACS_API_URL}
+      headers:
+        authorization: Bearer ${ACS_API_KEY}
+acs:
+  acsUrl: ${ACS_API_URL}
+# ...
+----
+
+. To enable the {product-title-short} plugin, perform the following steps:
+.. Navigate to the dynamic plugins configuration file in your {rh-rhdh} setup.
+.. To include the {product-title-short} plugin, add the following content to the configuration file, for example:
++
+[source,yaml]
+----
+# ...
+- package: https://github.com/RedHatInsights/backstage-plugin-advanced-cluster-security/releases/download/v0.1.1/redhatinsights-backstage-plugin-acs-dynamic-0.1.1.tgz
+  integrity: sha256-9JeRK2jN/Jgenf9kHwuvTvwTuVpqrRYsTGL6cpYAzn4=
+  disabled: false
+  pluginConfig:
+    dynamicPlugins:
+      frontend:
+        redhatinsights.backstage-plugin-acs:
+          entityTabs:
+            - path: /acs
+              title: RHACS
+              mountPoint: entity.page.acs
+          mountPoints:
+            - mountPoint: entity.page.acs/cards
+              importName: EntityACSContent
+              config:
+                layout:
+                  gridColumnEnd:
+                    lg: span 12
+                    md: span 12
+                    xs: span 12
+# ...
+----
+
+. To add annotations for entities in the {rh-rhdh} catalog, perform the following steps:
++
+[NOTE]
+====
+To display the vulnerability data, each component entity in the {rh-rhdh} catalog must reference the {product-title-short} deployments.
+
+The following values are associated with the entities in the {rh-rhdh} catalog:
+
+** `API`
+** `Component`
+** `Domain`
+** `Group`
+** `Location`
+** `Resource`
+** `System`
+** `Template`
+** `User`
+====
+.. Navigate to the entity configuration file for your service in your {rh-rhdh} setup.
+.. Add the following annotation to the configuration file, for example:
++
+[source,yaml]
+----
+apiVersion: backstage.io/v1alpha1
+kind: Component
+metadata:
+  name: test-service
+  annotations:
+    acs/deployment-name: test-deployment-1,test-deployment-2,test-deployment-3
+# ...
+----
+
+.Verification
+
+. In the {rh-rhdh} portal, click *Catalog*.
+. Click an entity and verify that the *{product-title-short}* tab appears.
+. To view the violations and vulnerability data, click the *{product-title-short}* tab.
