terraform-ibm-modules · jor2 · Feb 18, 2025 · Feb 18, 2025 · Feb 18, 2025 · Feb 21, 2025
@@ -0,0 +1,13 @@
+---
+apiVersion: v1
+offerings:
+  - name: deploy-arch-ibm-observability-agents
+    kind: solution
+    catalog_id: _
+    offering_id: _
+    variations:
+      - name: baseline
+        mark_ready: true
+        install_type: fullstack
+        pre_validation: "tests/scripts/pre-validation-deploy-slz-roks-and-obs-instances.sh"
+        post_validation: "tests/scripts/post-validation-destroy-slz-roks-and-obs-instances.sh"
@@ -10,6 +10,9 @@
     }],
     ["@semantic-release/exec", {
       "successCmd": "echo \"SEMVER_VERSION=${nextRelease.version}\" >> $GITHUB_ENV"
+    }],
+    ["@semantic-release/exec", {
+      "publishCmd": "./ci/trigger-catalog-onboarding-pipeline.sh --version=v${nextRelease.version}"
     }]
   ]
 }
@@ -0,0 +1,249 @@
+{
+  "products": [
+    {
+      "label": "Cloud automation for Observability agents",
+      "name": "deploy-arch-ibm-observability-agents",
+      "product_kind": "solution",
+      "tags": [
+        "ibm_created",
+        "logging_monitoring"
+      ],
+      "short_description": "Deploys IBM Cloud Observability agents to a cluster",
+      "long_description": "Solutions that support deploying IBM Cloud Observability agents for logging, monitoring.",
+      "offering_docs_url": "https://github.com/terraform-ibm-modules/terraform-ibm-observability-agents/blob/main/solutions/baseline/README.md",
+      "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-observability-agents/main/images/observability-icon.svg",
+      "flavors": [
+        {
+          "label": "Baseline",
+          "name": "baseline",
+          "working_directory": "solutions/baseline",
+          "compliance": {},
+          "iam_permissions": [
+            {
+              "service_name": "containers-kubernetes",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Viewer"
+              ]
+            }
+          ],
+          "architecture": {
+            "features": [
+              {
+                "title": "Works with any Openshift or k8s cluster",
+                "description": "Works with Red Hat OpenShift, and Kubernetes clusters."
+              },
+              {
+                "title": "Deploys the IBM Cloud Monitoring agent on an existing cluster.",
+                "description": "Deploys the IBM Cloud Monitoring agent on an existing Red Hat OpenShift cluster."
+              },
+              {
+                "title": "Deploys the IBM Logs agent on an existing cluster.",
+                "description": "Deploys the IBM Logs agent on an existing Red Hat OpenShift cluster."
+              }
+            ],
+            "diagrams": [
+              {
+                "diagram": {
+                  "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-observability-agents/refs/heads/addons/reference-architecture/deployable-architecture-observability-agents.svg",
+                  "caption": "Observability agents on a Red Hat OpenShift cluster",
+                  "type": "image/svg+xml"
+                },
+                "description": "Observability agents deployed on a Red Hat OpenShift cluster on a secure landing zone."
+              }
+            ]
+          },
+          "dependencies": [
+            {
+              "name": "testing-deploy-arch-ibm-observability",
+              "id": "daf2cf91-2384-4205-b7f4-621299a4896d",
+              "version": ">=1.2.2",
+              "flavors": [
+                "standard"
+              ],
+              "catalog_id": "f64499c8-eb50-4985-bf91-29f9e605a433",
+              "optional": true
+            }
+          ],
+          "dependency_version_2": true,
+          "configuration": [
+            {
+              "key": "ibmcloud_api_key",
+              "required": true
+            },
+            {
+              "key": "prefix",
+              "required": true,
+              "description": "The prefix to add to all resources that this solution creates. To not use any prefix value, you can enter the string `__NULL__`."
+            },
+            {
+              "key": "cloud_monitoring_access_key",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_add_cluster_name",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_agent_name",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_agent_namespace",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_agent_tags",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_agent_tolerations",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_enabled",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_endpoint_type",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_instance_region",
+              "display_name": "Region",
+              "required": false,
+              "custom_config": {
+                "type": "vpc_region",
+                "grouping": "deployment",
+                "original_grouping": "deployment",
+                "config_constraints": {
+                  "generationType": "2"
+                }
+              }
+            },
+            {
+              "key": "cloud_monitoring_metrics_filter",
+              "required": false
+            },
+            {
+              "key": "cloud_monitoring_secret_name",
+              "required": false
+            },
+            {
+              "key": "cluster_config_endpoint_type",
+              "required": false
+            },
+            {
+              "key": "cluster_id",
+              "type": "string",
+              "default_value": "",
+              "display_name": "Cluster",
+              "required": true,
+              "custom_config": {
+                  "type": "cluster_var",
+                  "grouping": "deployment",
+                  "original_grouping": "deployment"
+              }
+            },
+            {
+              "key": "cluster_resource_group_id",
+              "type": "string",
+              "default_value": "",
+              "display_name": "Cluster resource group",
+              "required": true,
+              "custom_config": {
+                  "type": "resource_group",
+                  "grouping": "deployment",
+                  "original_grouping": "deployment",
+                  "config_constraints": {
+                      "identifier": "rg_id"
+                  }
+              }
+            },
+            {
+              "key": "cluster_data",
+              "required": false
+            },
+            {
+              "key": "cloud_logs_ingress_endpoint",
+              "required": false
+            },
+            {
+              "key": "cloud_logs_ingress_port",
+              "required": false
+            },
+            {
+              "key": "is_vpc_cluster",
+              "required": false
+            },
+            {
+              "key": "logs_agent_additional_log_source_paths",
+              "required": false
+            },
+            {
+              "key": "logs_agent_additional_metadata",
+              "required": false
+            },
+            {
+              "key": "logs_agent_enable_scc",
+              "required": false
+            },
+            {
+              "key": "logs_agent_enabled",
+              "required": false
+            },
+            {
+              "key": "logs_agent_exclude_log_source_paths",
+              "required": false
+            },
+            {
+              "key": "logs_agent_iam_api_key",
+              "required": false
+            },
+            {
+              "key": "logs_agent_iam_environment",
+              "required": false
+            },
+            {
+              "key": "logs_agent_iam_mode",
+              "required": false
+            },
+            {
+              "key": "logs_agent_log_source_namespaces",
+              "required": false
+            },
+            {
+              "key": "logs_agent_name",
+              "required": false
+            },
+            {
+              "key": "logs_agent_namespace",
+              "required": false
+            },
+            {
+              "key": "logs_agent_selected_log_source_paths",
+              "required": false
+            },
+            {
+              "key": "logs_agent_tolerations",
+              "required": false
+            },
+            {
+              "key": "logs_agent_trusted_profile",
+              "required": false
+            },
+            {
+              "key": "wait_till",
+              "required": false
+            },
+            {
+              "key": "wait_till_timeout",
+              "required": false
+            }
+          ],
+          "install_type": "fullstack"
+        }
+      ]
+    }
+  ]
+}
diff --git a/solutions/baseline/README.md b/solutions/baseline/README.md
@@ -0,0 +1,12 @@
+# Deploying observability agents on a Red Hat OpenShift cluster
+
+This architecture deploys the following observability agents on a Red Hat OpenShift cluster:
+
+* Cloud Monitoring agent
+* Cloud Logs agent
+
+## Before you begin
+
+* Make sure that the Red Hat OpenShift Cluster is deployed.
+
+* Make sure that the observability instances (Cloud Logs and Cloud Monitoring) for which specific agents are required are deployed.
diff --git a/solutions/baseline/catalogValidationValues.json.template b/solutions/baseline/catalogValidationValues.json.template
@@ -0,0 +1,3 @@
+{
+  "ibmcloud_api_key": $VALIDATION_APIKEY
+}
diff --git a/solutions/baseline/kubeconfig/.gitignore b/solutions/baseline/kubeconfig/.gitignore
@@ -0,0 +1,6 @@
+# Ignore everything
+*
+
+# But not these files...
+!.gitignore
+!README.md
diff --git a/solutions/baseline/kubeconfig/README.md b/solutions/baseline/kubeconfig/README.md
@@ -0,0 +1,2 @@
+This directory must exist in source control so the `ibm_container_cluster_config` data lookup can use it to place the
+config.yml used to connect to a kubernetes cluster.
diff --git a/solutions/baseline/main.tf b/solutions/baseline/main.tf
@@ -0,0 +1,58 @@
+##############################################################################
+# Observability Agents
+##############################################################################
+
+data "ibm_container_cluster_config" "cluster_config" {
+  cluster_name_id   = local.is_vpc_cluster ? data.ibm_container_vpc_cluster.cluster[0].name : data.ibm_container_cluster.cluster[0].name
+  resource_group_id = local.cluster_resource_group_id
+  config_dir        = "${path.module}/kubeconfig"
+  endpoint_type     = local.cluster_config_endpoint_type != "default" ? local.cluster_config_endpoint_type : null
+}
+
+locals {
+  use_cluster_data = length(var.cluster_data) > 0
+
+  first_cluster_key = local.use_cluster_data ? keys(var.cluster_data)[0] : null
+
+  cluster_id                   = local.use_cluster_data ? var.cluster_data[local.first_cluster_key].id : var.cluster_id
+  cluster_resource_group_id    = local.use_cluster_data ? var.cluster_data[local.first_cluster_key].resource_group_id : var.cluster_resource_group_id
+  cluster_config_endpoint_type = var.cluster_config_endpoint_type
+  is_vpc_cluster               = var.is_vpc_cluster
+}
+
+module "observability_agents" {
+  source                       = "../.."
+  cluster_id                   = local.cluster_id
+  cluster_resource_group_id    = local.cluster_resource_group_id
+  cluster_config_endpoint_type = local.cluster_config_endpoint_type
+  # Cloud Monitoring (Sysdig) Agent
+  cloud_monitoring_enabled           = var.cloud_monitoring_enabled
+  cloud_monitoring_agent_name        = var.prefix != null ? "${var.prefix}-${var.cloud_monitoring_agent_name}" : var.cloud_monitoring_agent_name
+  cloud_monitoring_agent_namespace   = var.cloud_monitoring_agent_namespace
+  cloud_monitoring_endpoint_type     = var.cloud_monitoring_endpoint_type
+  cloud_monitoring_access_key        = var.cloud_monitoring_access_key
+  cloud_monitoring_secret_name       = var.prefix != null ? "${var.prefix}-${var.cloud_monitoring_secret_name}" : var.cloud_monitoring_secret_name
+  cloud_monitoring_metrics_filter    = var.cloud_monitoring_metrics_filter
+  cloud_monitoring_agent_tags        = var.cloud_monitoring_agent_tags
+  cloud_monitoring_instance_region   = var.cloud_monitoring_instance_region
+  cloud_monitoring_agent_tolerations = var.cloud_monitoring_agent_tolerations
+  cloud_monitoring_add_cluster_name  = var.cloud_monitoring_add_cluster_name
+  # Logs Agent
+  logs_agent_enabled                     = var.logs_agent_enabled
+  logs_agent_name                        = var.logs_agent_name
+  logs_agent_namespace                   = var.logs_agent_namespace
+  logs_agent_trusted_profile             = var.logs_agent_trusted_profile
+  logs_agent_iam_api_key                 = var.logs_agent_iam_api_key
+  logs_agent_tolerations                 = var.logs_agent_tolerations
+  logs_agent_additional_log_source_paths = var.logs_agent_additional_log_source_paths
+  logs_agent_exclude_log_source_paths    = var.logs_agent_exclude_log_source_paths
+  logs_agent_selected_log_source_paths   = var.logs_agent_selected_log_source_paths
+  logs_agent_log_source_namespaces       = var.logs_agent_log_source_namespaces
+  logs_agent_iam_mode                    = var.logs_agent_iam_mode
+  logs_agent_iam_environment             = var.logs_agent_iam_environment
+  logs_agent_additional_metadata         = var.logs_agent_additional_metadata
+  logs_agent_enable_scc                  = var.logs_agent_enable_scc
+  cloud_logs_ingress_endpoint            = var.cloud_logs_ingress_endpoint
+  cloud_logs_ingress_port                = var.cloud_logs_ingress_port
+  is_vpc_cluster                         = var.is_vpc_cluster
+}
diff --git a/solutions/baseline/outputs.tf b/solutions/baseline/outputs.tf
@@ -0,0 +1,6 @@
+##############################################################################
+# Outputs
+##############################################################################
+
+
+##############################################################################
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,2 @@
		This directory must exist in source control so the `ibm_container_cluster_config` data lookup can use it to place the
		config.yml used to connect to a kubernetes cluster.