RHIDP-4807: Third-party plugin installation in RHDH

hmanwani-rh · hmanwani-rh · commit 3cda7fe9de04 · 2024-11-26T18:33:02.000+05:30
diff --git a/assemblies/dynamic-plugins/assembly-installing-rhdh-plugins.adoc b/assemblies/dynamic-plugins/assembly-installing-rhdh-plugins.adoc
@@ -6,20 +6,17 @@ The dynamic plugin support is based on the backend plugin manager package, which
 You can use the dynamic plugins that come preinstalled with {product} or install external dynamic plugins from a public NPM registry.
 
 // Operator installation
-include::../modules/dynamic-plugins/proc-config-dynamic-plugins-rhdh-operator.adoc[leveloffset=+1]
+include::../modules/dynamic-plugins/proc-config-dynamic-plugins-rhdh-operator.adoc[leveloffset=+2]
 
 // Helm installation
-include::../modules/dynamic-plugins/con-install-dynamic-plugin-helm.adoc[leveloffset=+1]
-include::../modules/dynamic-plugins/proc-obtaining-integrity-checksum.adoc[leveloffset=+2]
-include::../modules/dynamic-plugins/ref-example-dynamic-plugin-helm-installations.adoc[leveloffset=+2]
-include::../modules/dynamic-plugins/proc-rhdh-example-external-dynamic-plugins.adoc[leveloffset=+2]
+include::../modules/dynamic-plugins/con-install-dynamic-plugin-helm.adoc[leveloffset=+2]
+include::../modules/dynamic-plugins/proc-obtaining-integrity-checksum.adoc[leveloffset=+3]
+include::../modules/dynamic-plugins/ref-example-dynamic-plugin-helm-installations.adoc[leveloffset=+3]
+include::../modules/dynamic-plugins/proc-rhdh-example-external-dynamic-plugins.adoc[leveloffset=+3]
 
 // Air gapped environment
 //include::../modules/dynamic-plugins/proc-rhdh-installing-external-dynamic-plugins-airgapped.adoc[leveloffset=+1]
-include::../modules/dynamic-plugins/proc-using-custom-npm-registry.adoc[leveloffset=+1]
-
-// Viewing installed plugins
-include::../modules/dynamic-plugins/proc-viewing-installed-plugins.adoc[leveloffset=+1]
+include::../modules/dynamic-plugins/proc-install-plugins-using-custom-npm-registry.adoc[leveloffset=+2]
 
 //basic plugin configuration
 //include::../modules/dynamic-plugins/con-basic-config-dynamic-plugins.adoc[leveloffset=+1]
diff --git a/assemblies/dynamic-plugins/assembly-third-party-plugins-installation.adoc b/assemblies/dynamic-plugins/assembly-third-party-plugins-installation.adoc
@@ -0,0 +1,114 @@
+[id="assembly-third-party-plugins-installation"]
+= Third-party plugins in {product}
+:context: assembly-third-party-plugins-installation
+
+In {product}, third-party dynamic plugins can be integrated seamlessly, enabling the use of external plugins alongside native ones. This flexibility allows you to enhance the platform’s functionality without modifying its core structure. To add third-party dynamic plugins, you can either export them as standalone packages or wrap them in custom wrappers, especially if you want to adjust the plugin’s dependencies or configurations for compatibility.
+
+The third-party plugins are typically packaged as dynamic plugins, which means they can be loaded at runtime, enabling you to easily manage external modules without rebuilding the entire application. The process involves creating a wrapper that exports the plugin code, ensuring that dependencies are correctly bundled or marked as shared, depending on their relationship to the {product-short} environment.
+
+To integrate a third-party plugin into {product-short}:
+
+. First, obtain the plugin's source code.
+. Export the plugin as a dynamic plugin package. See xref:proc-export-third-party-plugins-rhdh_{context}[].
+. Package and publish the dynamic plugin. See xref:proc-package-third-party-dynamic-plugin_{context}[].
+. Install the plugin in the {product-short} environment. See xref:proc-install-third-party-plugins-rhdh_{context}[].
+
+The third-party plugins include:
+
+Backend plugins::
++
+--
+To ensure compatibility with the dynamic plugin support and enable their use as dynamic plugins, existing backend plugins must be compatible with, the new backend system. Additionally, these plugins must be rebuilt using a dedicated CLI command.
+
+The new backend system is created using `createBackendPlugin()` or `createBackendModule()`. You must export the new backend system as the default export from either the main package or an alpha package (if support exists in alpha). The dynamic export mechanism automatically identifies private dependencies, and adds them to the `bundleDependencies` field in the `package.json` file. This mechanism ensures that the dynamic plugin package is self-contained, with private dependencies bundled within a private `node_modules` folder.
+
+The backend plugins contains two types of dependencies, including:
+
+* *Shared dependencies* are provided by the Backstage application and listed as `peerDependencies` in `package.json` file, not bundled in the dynamic plugin package. By default, all `@backstage` packages are shared.
++
+You can use the `--shared-package` flag to specify shared dependencies. To treat a `@backstage` package as private, use the negation prefix (`!`).
+
+* *Embedded dependencies* are bundled into the dynamic plugin package with their dependencies hoisted to the top level. By default, packages with `-node` or `-common` suffixes are embedded.
++
+You can use the `--embed-package` flag to specify additional embedded packages, including those in the same monorepo that do not follow the default naming convention.
+
+The following is an example of exporting a dynamic plugin with shared and embedded packages:
+
+.Example dynamic plugin export with shared and embedded packages
+[source,bash]
+----
+npx @janus-idp/cli@latest export-dynamic-plugin --shared-package '!/@backstage/plugin-notifications/'<1> --embed-package @backstage/plugin-notifications-backend <2>
+----
+
+<1> `@backstage/plugin-notifications` package is treated as a private dependency and is bundled in the dynamic plugin package, despite being in the `@backstage` scope.
+<2> `@backstage/plugin-notifications-backend` package is marked as an embedded dependency and is bundled in the dynamic plugin package.
+--
+
+Frontend plugins::
++
+--
+Frontend plugins can leverage Scalprum for configuration, which the CLI can generate automatically during the export process. The generated default configuration is logged when running the following command:
+
+.Example command to log the default configuration
+[source,bash]
+----
+npx @janus-idp/cli@latest export-dynamic
+----
+
+The following is an example of default Scalprum configuration:
+
+.Default Scalprum configuration
+[source,json]
+----
+"scalprum": {
+  "name": "<package_name>",  // The Webpack container name matches the NPM package name, with "@" replaced by "." and "/" removed.
+  "exposedModules": {
+    "PluginRoot": "./src/index.ts"  // The default module name is "PluginRoot" and doesn't need explicit specification in the app-config.yaml file.
+  }
+}
+----
+
+To customize Scalprum, add a `scalprum` section to the `package.json` file. For example:
+
+.Example Scalprum customization
+[source,json]
+----
+"scalprum": {
+  "name": "custom-package-name",
+  "exposedModules": {
+    "FooModuleName": "./src/foo.ts",
+    "BarModuleName": "./src/bar.ts"
+    // Define multiple modules here, with each exposed as a separate entry point in the Webpack container.
+  }
+}
+----
+
+Dynamic plugins might need adjustments for {product-short} needs, such as static JSX for mountpoints or dynamic routes. These changes are optional but might be incompatible with static plugins.
+
+To include static JSX, define an additional export and use it as the dynamic plugin's `importName`. For example:
+
+.Example static and dynamic plugin export
+[source,tsx]
+----
+// For a static plugin
+export const EntityTechdocsContent = () => {...}
+
+// For a dynamic plugin
+export const DynamicEntityTechdocsContent = {
+  element: EntityTechdocsContent,
+  staticJSXContent: (
+    <TechDocsAddons>
+      <ReportIssue />
+    </TechDocsAddons>
+  ),
+};
+----
+--
+//Export third-party plugins
+include::../modules/dynamic-plugins/proc-export-third-party-plugins-rhdh.adoc[leveloffset=+2]
+
+//package and publish third-party plugins
+include::../modules/dynamic-plugins/proc-package-third-party-dynamic-plugin.adoc[leveloffset=+2]
+
+//install third-party plugins
+include::../modules/dynamic-plugins/proc-install-third-party-plugins-rhdh.adoc[leveloffset=+2]
diff --git a/modules/dynamic-plugins/proc-export-third-party-plugins-rhdh.adoc b/modules/dynamic-plugins/proc-export-third-party-plugins-rhdh.adoc
@@ -0,0 +1,35 @@
+[id="proc-export-third-party-plugins-rhdh_{context}"]
+= Exporting third-party plugins in {product}
+
+To use dynamic plugins in {product}, the plugins must be exported as separate packages. These packages contain the plugin code and dependencies, ready for dynamic plugin integration into {product-short}.
+
+.Prerequisites
+* The `@janus-idp/cli` package is installed. Use the latest version (`@latest` tag) for compatibility with the most recent features and fixes.
+* The third-party plugin must have a valid package.json file in its root directory, containing all required metadata and dependencies.
+* Node.js and NPM is installed and configured.
+* You have access to a private NPM registry for publishing and distributing the exported plugin package.
+* The third-party plugin is compatible with your {product} version. For more information, see link:https://github.com/janus-idp/backstage-showcase/blob/main/docs/dynamic-plugins/versions.md[Version compatibility matrix].
+
+.Procedure
+. Use the `package export-dynamic-plugin` command from the `@janus-idp/cli` package to export the plugin:
++
+--
+.Example command to export a third-party plugin
+[source,bash]
+----
+npx @janus-idp/cli@latest package export-dynamic-plugin
+----
+
+Ensure that you execute the previous command in the root directory of the plugin's JavaScript package (containing `package.json` file).
+--
+
+. Located the exported package in the `dist-dynamic` sub-folder.
+. Use `npm pack` or a private NPM registry to package or distribute the plugin. For more information, see xref:proc-package-third-party-dynamic-plugin_{context}[].
++
+--
+[IMPORTANT]
+====
+Ensure that you do not push derived dynamic plugin packages to a public NPM registry. Use a private NPM registry only.
+====
+--
+
diff --git a/modules/dynamic-plugins/proc-install-plugins-using-custom-npm-registry.adoc b/modules/dynamic-plugins/proc-install-plugins-using-custom-npm-registry.adoc
@@ -1,4 +1,4 @@
-[id="proc-using-custom-npm-registry"]
+[id="proc-install-plugins-using-custom-npm-registry"]
 
 //= Using a custom NPM registry for dynamic plugin packages
 = Installing dynamic plugins in an air-gapped environment
diff --git a/modules/dynamic-plugins/proc-install-third-party-plugins-rhdh.adoc b/modules/dynamic-plugins/proc-install-third-party-plugins-rhdh.adoc
@@ -0,0 +1,138 @@
+[id="proc-install-third-party-plugins-rhdh_{context}"]
+= Installing third-party plugins in {product}
+
+You can install a third-party plugins in {product} without rebuilding the {product-very-short} application.
+
+.Prerequisites
+* The third-party plugin is packaged as a dynamic plugin in one of the following formats:
+** OCI image
+** TGZ file
+** NPM or JavaScript package
+
+For more information about packaging a third-party plugin, see xref:proc-package-third-party-dynamic-plugin_{context}[].
+
+[NOTE]
+====
+You can also load dynamic plugins from a plain directory, though this is intended for development or testing purposes and is not recommended for production, except for plugins included in the {product-very-short} container image.
+====
+
+.Procedure
+Load a plugin packaged as an OCI image::
++
+--
+. Define the plugin with the `oci://` prefix in the following format in `dynamic-plugins.default.yaml` file:
++
+`oci://<image-name>:<tag>!<plugin-name>`
++
+.Example configuration in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: oci://quay.io/example/image:v0.0.1!backstage-plugin-myplugin
+----
+
+. Configure authentication for private registries by setting the `REGISTRY_AUTH_FILE` environment variable to the path of the registry configuration file. For example, `~/.config/containers/auth.json` or `~/.docker/config.json`.
+
+. To perform an integrity check, use the image digest in place of the tag in `dynamic-plugins.default.yaml` file as follows:
++
+.Example configuration in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: oci://quay.io/example/image@sha256:<digest>!<plugin-name>
+----
+
+. To apply the changes, restart the {product-very-short} application.
+--
+
+Load a plugin packaged as a TGZ file::
++
+--
+. Specify the archive URL and its integrity hash in the `dynamic-plugins.default.yaml` file using the following format:
++
+.Configuration format in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: https://example.com/backstage-plugin-myplugin-1.0.0.tgz
+    integrity: <hash>
+----
++
+.Example configuration in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: https://example.com/backstage-plugin-myplugin-1.0.0.tgz
+    integrity: sha512-9WlbgEdadJNeQxdn1973r5E4kNFvnT9GjLD627GWgrhCaxjCmxqdNW08cj+Bf47mwAtZMt1Ttyo+ZhDRDj9PoA==
+----
+
+. To apply the changes, restart the {product-very-short} application.
+--
+
+Load a plugin packaged as a JavaScript or NPM package::
++
+--
+. Run the following command to obtain the integrity hash from the NPM registry:
++
+[source,bash]
+----
+npm view --registry <registry-url> @backstage-community/plugin-todo-dynamic@<version> dist.integrity
+----
+
+. Specify the package name, version, and its integrity hash in the `dynamic-plugins.default.yaml` file as follows:
++
+.Configuration format in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: @example/backstage-plugin-myplugin@1.0.0
+    integrity: <hash>
+----
++
+.Example configuration in `dynamic-plugins.default.yaml` file
+[source,yaml]
+----
+plugins:
+  - disabled: false
+    package: @example/backstage-plugin-myplugin@1.0.0
+    integrity: sha512-9WlbgEdadJNeQxdn1973r5E4kNFvnT9GjLD627GWgrhCaxjCmxqdNW08cj+Bf47mwAtZMt1Ttyo+ZhDRDj9PoA==
+----
+
+. If you are using a custom NPM registry, create a `.npmrc` file with the registry URL and authentication details:
++
+.Example code for `.npmrc` file
+[source,text]
+----
+registry=<registry-url>
+//<registry-url>:_authToken=<auth-token>
+----
+
+. When using {ocp-short} or Kubernetes:
++
+* Create a secret with the `.npmrc` content as follows:
++
+.Example secret configuration
+[source,yaml]
+----
+apiVersion: v1
+kind: Secret
+metadata:
+  name: dynamic-plugins-npmrc
+type: Opaque
+stringData:
+  .npmrc: |
+    registry=<registry-url>
+    //<registry-url>:_authToken=<auth-token>
+----
+
+* For {product-very-short} Helm chart, name the secret using the following format for automatic mounting:
++
+`<release-name>-dynamic-plugins-npmrc`
+
+. To apply the changes, restart the {product-very-short} application.
+--
diff --git a/modules/dynamic-plugins/proc-package-third-party-dynamic-plugin.adoc b/modules/dynamic-plugins/proc-package-third-party-dynamic-plugin.adoc
diff --git a/titles/plugins-rhdh-install/master.adoc b/titles/plugins-rhdh-install/master.adoc

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-[id="proc-using-custom-npm-registry"]`
	`1`	`+[id="proc-install-plugins-using-custom-npm-registry"]`
`2`	`2`
`3`	`3`	`//= Using a custom NPM registry for dynamic plugin packages`
`4`	`4`	`= Installing dynamic plugins in an air-gapped environment`