adapt to puzzle techlab setup

Author: chrira

.github/ISSUE_TEMPLATE/🎯-epic.md

@@ -0,0 +1,19 @@
+---
+name: "🎯 Epic"
+about: "Large feature or initiative requiring multiple tasks"
+title: "Epic: "
+labels: ["epic"]
+assignees: []
+
+---
+
+## 🎯 Epic Description
+Describe the larger feature or initiative.
+
+## 📝 Subtasks
+- [ ] Task 1
+- [ ] Task 2
+- [ ] Task 3
+
+## 📌 Additional Context
+Any extra information.

.github/ISSUE_TEMPLATE/🐞-bug-report-.md

@@ -0,0 +1,36 @@
+---
+name: "🐞 Bug Report"
+about: "Report an issue to help us improve the project"
+title: "🐞 Bug: "
+labels: ["bug"]
+assignees: []
+
+---
+
+## **🐞 Describe the Bug**
+A clear and concise description of the bug, including what is happening and why it is an issue.
+
+## **🔄 Steps to Reproduce**
+1. Go to '...'
+2. Click on '...'
+3. Perform '...'
+4. See the error
+
+## **💡 Expected Behavior**
+A clear description of what should happen instead.
+
+## **🖥️ Environment (please complete the following information)**
+- OS: [e.g., Windows, macOS, Linux]
+- Database (if applicable): [e.g., PostgreSQL, Oracle, MySQL]
+- Application version: [e.g., 1.0.0]
+
+## **📷 Screenshots (if applicable)**
+If applicable, add screenshots to help explain the problem.
+
+## **🏷️ Priority (Select one)**
+- [ ] 🔴 **High** – Blocks critical functionality, needs immediate attention.
+- [ ] 🟠 **Medium** – Causes issues but has a workaround.
+- [ ] 🟢 **Low** – Minor issue, does not impact core functionality.
+
+## **📌 Additional Context**
+Add any other relevant information, logs, or references.

.github/ISSUE_TEMPLATE/📌-task.md

@@ -0,0 +1,19 @@
+---
+name: "📌 Task"
+about: "Define and track a specific task"
+title: "📌 Task: "
+labels: ["task"]
+assignees: []
+
+---
+
+## 📌 Task Description
+Describe the task that needs to be completed.
+
+## ✅ To-Do
+- [ ] Step 1
+- [ ] Step 2
+- [ ] Step 3
+
+## 📌 Additional Context
+Any other relevant information.

.github/ISSUE_TEMPLATE/📖-documentation_update.md

@@ -0,0 +1,17 @@
+---
+name: "📖 Documentation Update"
+about: "Suggest an improvement to the project documentation"
+title: "📖 Docs: "
+labels: ["documentation"]
+assignees: []
+
+---
+
+## 📖 Documentation Update
+Describe the necessary changes.
+
+## 📌 Affected Pages
+List the pages or files that need updates.
+
+## 📌 Additional Context
+Provide any links or references.

.github/ISSUE_TEMPLATE/🚀-feature_request.md

@@ -0,0 +1,22 @@
+---
+name: "🚀 Feature Request"
+about: "Propose a new feature or improvement for the project"
+title: "🚀 Feature: "
+labels: ["feature", "enhancement"]
+assignees: []
+
+---
+
+## 📝 Feature Request
+
+### 🔹 Is your feature request related to a problem? Please describe.
+A clear and concise description of the issue. Example: "I often encounter situations where [...]"
+
+### 🚀 Describe the solution you'd like
+Provide a detailed explanation of the desired feature and how it should work.
+
+### 🔄 Describe alternatives you've considered
+List any alternative solutions or workarounds you have explored.
+
+### 📌 Additional context
+Add any other relevant context, screenshots, or references related to the feature request.

.github/ISSUE_TEMPLATE/🛠️-refactor.md

@@ -0,0 +1,25 @@
+---
+name: "🛠️ Refactor"
+about: "Suggest code improvements that do not change functionality"
+title: "🛠️Refactor: "
+labels: ["refactor", "enhancement"]
+assignees: []
+
+---
+
+## 🔄 Refactor Proposal
+**What needs to be refactored and why?**  
+Clearly describe the code section that requires refactoring and the reason behind the change.
+
+## ✅ Expected Improvements
+**What are the benefits of this refactor?**  
+Explain how this change improves code readability, maintainability, performance, or scalability.
+
+## 🏷️ Priority (Select one)
+- [ ] 🔴 **High** – Critical refactor that impacts core functionality.
+- [ ] 🟠 **Medium** – Important but not urgent, improves maintainability.
+- [ ] 🟢 **Low** – Minor change for better clarity, no functional impact.
+
+## 📌 Additional Context
+**Relevant links or discussions**  
+Include related issues, discussions, or references that provide more background on this refactor.

.github/workflows/build-and-publish.yaml

@@ -0,0 +1,188 @@
+name: Backstage Techlab Puzzle Build and Publish
+
+permissions:
+  contents: read
+  packages: write
+  id-token: write
+  pull-requests: write
+
+on:
+  pull_request:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+  HELM_NAME: backstage-techlab-puzzle
+  TRAINING_VERSION: ${{ github.sha }}
+  BUILD_VERSION: ${{ github.ref == 'refs/heads/main' && 'latest' || format('pr-{0}', github.event.pull_request.number) }}
+  DEPLOY_SECRET_VARIABLE_NAME: ${{ github.ref == 'refs/heads/main' && 'KUBECONFIG_PROD_AV2' || 'KUBECONFIG_TEST_AV2' }}
+  NAMESPACE_NAME: ${{ github.ref == 'refs/heads/main' && 'pitc-cicd-backstage-techlab-prod' || 'pitc-cicd-backstage-techlab-test' }}
+  PR_ENV_URL: https://backstage-techlab-pr-${{ github.event.pull_request.number }}.ocp.cloudscale.puzzle.ch
+
+jobs:
+  lint:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Set up npm for linting
+        uses: actions/setup-node@v4
+        with:
+          node-version: 'latest'
+      - name: Cache npm dependencies
+        uses: actions/cache@v4
+        with:
+          path: ~/.npm
+          key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-node-
+      - name: Cache node_modules
+        uses: actions/cache@v4
+        with:
+          path: node_modules
+          key: ${{ runner.os }}-modules-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-modules-
+      - name: Lint Markdown
+        run: npm ci && npm run mdlint
+
+
+  build_push_image:
+    runs-on: ubuntu-latest
+    needs: lint
+    outputs:
+      digest: ${{ steps.build-push.outputs.digest }}
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v3
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Log into registry ${{ env.REGISTRY }}
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Push Docker image
+        id: build-push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: ./Dockerfile
+          push: true
+          tags: |
+            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.BUILD_VERSION }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          
+  sign_image:
+    runs-on: ubuntu-latest
+    needs: build_push_image
+    outputs:
+      digest: ${{ needs.build_push_image.outputs.digest }}
+    steps:
+      - name: Log into registry ${{ env.REGISTRY }}
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Install cosign
+        uses: sigstore/cosign-installer@v3.8.2
+        with:
+          cosign-release: 'v2.2.4'
+      - name: Sign Docker image with cosign
+        env:
+          TAG: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.BUILD_VERSION }}
+          DIGEST: ${{ needs.build_push_image.outputs.digest }}
+        run: |
+          COSIGN_EXPERIMENTAL=1 cosign sign --yes ${TAG}@${DIGEST}
+
+  verify_image:
+    runs-on: ubuntu-latest
+    needs: sign_image
+    outputs:
+      digest: ${{ needs.sign_image.outputs.digest }}
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@v4
+        with:
+          sparse-checkout: |
+            scripts
+          sparse-checkout-cone-mode: false
+          fetch-depth: 0
+      - name: Log into registry ${{ env.REGISTRY }}
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Install cosign
+        uses: sigstore/cosign-installer@v3.8.2
+        with:
+          cosign-release: 'v2.2.4'
+      - name: Verify Docker image with cosign
+        env:
+          TAG: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.BUILD_VERSION }}
+          DIGEST: ${{ needs.sign_image.outputs.digest }}
+        run: bash ./scripts/verify_cosign.sh
+
+  deploy:
+    runs-on: ubuntu-latest
+    needs: verify_image
+    env:
+      KUBE_CONFIG_PATH: '$HOME/.kube'
+      KUBE_CONFIG_FILENAME: 'config'
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@v4
+        with:
+          sparse-checkout: |
+            helm-chart
+            scripts
+          sparse-checkout-cone-mode: false
+          fetch-depth: 0
+      - name: 'Install Helm'
+        uses: azure/setup-helm@v4
+        with:
+          version: 'latest'
+      - name: Install Kubectl
+        uses: azure/setup-kubectl@v4
+        with:
+          version: 'latest'
+      - name: Create KUBECONFIG
+        env:
+          KUBE_CONFIG: ${{ secrets[env.DEPLOY_SECRET_VARIABLE_NAME] }}
+        run: bash ./scripts/create_kubeconfig.sh
+      - name: Deploy Helm Release
+        env:
+          HELM_RELEASE: ${{ env.BUILD_VERSION }}
+          NAMESPACE: ${{ env.NAMESPACE_NAME }}
+        run: bash ./scripts/deploy_helm_release.sh
+      - name: Redeploy Deployments
+        env:
+          HELM_RELEASE: ${{ env.BUILD_VERSION }}
+          NAMESPACE: ${{ env.NAMESPACE_NAME }}
+        run: bash ./scripts/redeploy_deployment.sh
+
+  comment:
+    if: github.ref != 'refs/heads/main'
+    runs-on: ubuntu-latest
+    needs: verify_image
+    steps:
+      - name: Comment PR Environments in PR
+        uses: marocchino/sticky-pull-request-comment@v2
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          message: |
+            🚀 PR Environment: [Open Deployment](${{ env.PR_ENV_URL }})
+            🏷️ Image Tag: `${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.BUILD_VERSION }}`
+            🖋️ Image Digest: `${{ needs.verify_image.outputs.digest }}`