feat: enhance deployment configurations to use OCM Deployer and RGD from OCM Component

local-setup/README.md

@@ -221,7 +221,7 @@ The `scripts/start.sh` script performs the following operations:
 
 2. **Cluster Management**
    - Creates Kind cluster named `platform-mesh` (if not exists)
-   - Uses Kubernetes v1.33.1 (`kindest/node:v1.33.1`)
+   - Uses Kubernetes v1.33.1 (`kindest/node:v1.34.0`)
    - Configures cluster with custom networking for local development
 
 3. **Certificate Generation**
@@ -231,18 +231,18 @@ The `scripts/start.sh` script performs the following operations:
 
 4. **Core Infrastructure Installation**
    - Installs Flux for GitOps workflow management
-   - Deploys Cert-Manager for SSL certificate management
    - Sets up OCM (Open Component Model) controller
+   - Installs KRO (Kubernetes Resource Orchestrator)
 
 5. **Platform Mesh Deployment**
    - Applies base Kustomize configurations
-   - Creates necessary secrets (Keycloak, Grafana, certificates)
+   - Creates necessary secrets (Keycloak, certificates)
    - Deploys Platform Mesh operator and components
-   - Installs supporting services (Keycloak, RBAC webhook, etc.)
+   - The Platform Mesh Operator then deploys all components of platform-mesh automatically
 
 6. **Post-Installation Setup**
+   - Waits for the Platform Mesh Resource to be ready
    - Creates KCP admin kubeconfig for workspace access
-   - Waits for all components to become ready
    - Provides access instructions and next steps
 
 7. **Example Data Setup** (when using `--example-data` flag)

local-setup/kustomize/base/ocm-k8s-toolkit/flux-sync.yaml

@@ -29,7 +29,10 @@ spec:
           value:
             - --health-probe-bind-address=:8081
             - --resource-controller-concurrency=21
-            - --zap-log-level=4
+      target:
+        kind: Deployment
+        name: controller-manager
+    - patch: |
         - op: replace
           path: /spec/template/spec/containers/0/image
           value: ghcr.io/open-component-model/kubernetes/controller@sha256:5e790dad020adcfd0793f249d177a28429ef22446def39c9286eab90c52175c1

local-setup/kustomize/components/ocm/kustomization.yaml

@@ -2,4 +2,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
   - repository.yaml
-  - component.yaml
+  - platform-mesh-operator-rgd-resource.yaml
+  - platform-mesh-operator-deployer.yaml

local-setup/kustomize/components/ocm/platform-mesh-operator-deployer.yaml

@@ -0,0 +1,14 @@
+apiVersion: delivery.ocm.software/v1alpha1
+kind: Deployer
+metadata:
+  name: platform-mesh-operator
+spec:
+  resourceRef:
+    name: platform-mesh-operator-rgd
+    namespace: default
+  ocmConfig:
+    - apiVersion: delivery.ocm.software/v1alpha1
+      kind: Repository
+      name: platform-mesh
+      namespace: default
+      policy: Propagate

local-setup/kustomize/components/ocm/platform-mesh-operator-rgd-resource.yaml

@@ -0,0 +1,21 @@
+apiVersion: delivery.ocm.software/v1alpha1
+kind: Resource
+metadata:
+  name: platform-mesh-operator-rgd
+spec:
+  componentRef:
+    name: platform-mesh
+  interval: 3m0s
+  ocmConfig:
+    - apiVersion: delivery.ocm.software/v1alpha1
+      kind: Repository
+      name: platform-mesh
+      namespace: default
+      policy: Propagate
+  resource:
+    byReference:
+      referencePath:
+        - name: platform-mesh-operator
+      resource:
+        name: rgd
+  skipVerify: true

local-setup/kustomize/components/ocm/repository.yaml

@@ -4,6 +4,7 @@ metadata:
   name: platform-mesh
 spec:
   repositorySpec:
-    baseUrl: ghcr.io/platform-mesh
+    baseUrl: ghcr.io
+    subPath: platform-mesh
     type: OCIRegistry
   interval: 1m

local-setup/kustomize/components/platform-mesh-operator-resource/platform-mesh.yaml

@@ -16,6 +16,34 @@ spec:
    - name: "feature-enable-getting-started"
    - name: "feature-enable-marketplace-account"
   values:
+    account-operator:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: account-operator
+    etcd-druid:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: etcd-druid
+    extension-manager-operator:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: extension-manager-operator
+    rebac-authz-webhook:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: rebac-authz-webhook
     keycloak:
       enabled: true
       values:
@@ -82,6 +110,12 @@ spec:
           infra: "true"
           component: infra
     security-operator:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: security-operator
       values:
         log:
           noJson: true
@@ -97,6 +131,12 @@ spec:
         hostAliases:
           enabled: true
     portal:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: portal
       enabled: true
       values:
         gatewayApi:
@@ -141,6 +181,12 @@ spec:
               tls:
                 enabled: false
     virtual-workspaces:
+      imageResource:
+        enabled: true
+        labels:
+          repo: oci
+          artifact: image
+          for: virtual-workspaces
       values:
         virtualWorkspaceSecretName: virtual-workspaces-cert
         deployment:

local-setup/kustomize/components/platform-mesh-operator/platform-mesh-operator.yaml

@@ -3,9 +3,10 @@ kind: PlatformMeshOperator
 metadata:
   name: platform-mesh-operator
 spec:
-  resource:
-    byReference:
-      referencePath:
-        - name: platform-mesh-operator
-      resource:
-        name: chart
+  ocm:
+    resource:
+      byReference:
+        referencePath:
+          - name: platform-mesh-operator
+        resource:
+          name: chart

local-setup/kustomize/components/ocm-latest/component.yaml → local-setup/kustomize/overlays/default-latest/component.yaml

@@ -6,7 +6,7 @@ spec:
   repositoryRef:
     name: platform-mesh
   component: github.com/platform-mesh/platform-mesh
-  semver: 0.2.0-build.28
+  semver: 0.2.0-build.29
   interval: 1m
   ocmConfig:
     - kind: Repository

local-setup/kustomize/overlays/default-latest/kustomization.yaml

@@ -2,5 +2,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - ../../components/platform-mesh-operator
-  - ../../components/ocm-latest
+  - ../../components/ocm
+  - ./component.yaml

local-setup/kustomize/overlays/default/kustomization.yaml

@@ -2,5 +2,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - ../../components/platform-mesh-operator
   - ../../components/ocm
+  - ./component.yaml

local-setup/kustomize/base/rgd/kustomization.yaml → local-setup/kustomize/overlays/platform-mesh-operator/kustomization.yaml

@@ -2,4 +2,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
-  - rgd.yaml
+  - ../../components/platform-mesh-operator

local-setup/scripts/check-environment.sh

@@ -174,7 +174,7 @@ run_environment_checks() {
         exit 1
     fi
 
-    echo -e "${COL}✅ All environment checks passed!${COL_RES}"
+    echo -e "${COL}[$(date '+%H:%M:%S')] ✅ All environment checks passed!${COL_RES}"
     echo ""
 }
 

local-setup/scripts/start.sh

@@ -123,11 +123,6 @@ kubectl create secret generic domain-certificate-ca -n platform-mesh-system \
   --from-file=tls.crt=$SCRIPT_DIR/certs/ca.crt --dry-run=client -oyaml | kubectl apply -f -
 
 echo -e "${COL}[$(date '+%H:%M:%S')] Install Platform-Mesh Operator ${COL_RES}"
-kubectl apply -k $SCRIPT_DIR/../kustomize/base/rgd
-kubectl wait --namespace default \
-  --for=condition=Ready resourcegraphdefinition \
-  --timeout=480s platform-mesh-operator
-
 if [ "$LATEST" = true ]; then
   echo -e "${COL}[$(date '+%H:%M:%S')] Using LATEST OCM Component version ${COL_RES}"
   kubectl apply -k $SCRIPT_DIR/../kustomize/overlays/default-latest
@@ -136,6 +131,12 @@ else
   kubectl apply -k $SCRIPT_DIR/../kustomize/overlays/default
 fi
 
+kubectl wait --namespace default \
+  --for=condition=Ready Deployer \
+  --timeout=480s platform-mesh-operator
+
+kubectl apply -k $SCRIPT_DIR/../kustomize/overlays/platform-mesh-operator
+
 kubectl wait --namespace default \
   --for=condition=Ready PlatformMeshOperator \
   --timeout=480s platform-mesh-operator