feat: Configure new platform profiles

Author: ThomasVitale

.github/workflows/release.yml

@@ -14,10 +14,10 @@ jobs:
     uses: kadras-io/github-reusable-workflows/.github/workflows/package-release.yml@main
     with:
       package-name-slug: engineering-platform
-      package-name-display: Engineering Platform
+      package-name-display: Kadras Engineering Platform
       registry-server: ghcr.io
       registry-username: ${{ github.actor }}
       image: ${{ github.repository }}
-      version: 0.14.0
+      version: 0.15.0
     secrets:
       pull-request-token: ${{ secrets.GH_ORG_PAT }}

README.md

@@ -1,12 +1,12 @@
 # Kadras Engineering Platform
 
-![Test Workflow](https://github.com/kadras-io/engineering-platform/actions/workflows/test.yml/badge.svg)
-![Release Workflow](https://github.com/kadras-io/engineering-platform/actions/workflows/release.yml/badge.svg)
+![Test Workflow](https://github.com/kadras-io/kadras-engineering-platform/actions/workflows/test.yml/badge.svg)
+![Release Workflow](https://github.com/kadras-io/kadras-engineering-platform/actions/workflows/release.yml/badge.svg)
 [![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v1.0/levels)
 [![The Apache 2.0 license badge](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
 [![Follow us on Twitter](https://img.shields.io/static/v1?label=Twitter&message=Follow&color=1DA1F2)](https://twitter.com/kadrasIO)
 
-A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes.
+A cloud native platform aimed at supporting application developers with paved paths to production on Kubernetes and shipped as a Carvel package.
 
 ## 🚀  Getting Started
 
@@ -28,17 +28,17 @@ Add the Kadras [package repository](https://github.com/kadras-io/kadras-packages
   ```shell
   kctrl package repository add -r kadras-packages \
     --url ghcr.io/kadras-io/kadras-packages \
-    -n kadras-packages --create-namespace
+    -n kadras-system --create-namespace
   ```
 
 <details><summary>Installation without package repository</summary>
 The recommended way of installing the Engineering Platform package is via the Kadras <a href="https://github.com/kadras-io/kadras-packages">package repository</a>. If you prefer not using the repository, you can add the package definition directly using <a href="https://carvel.dev/kapp/docs/latest/install"><code>kapp</code></a> or <code>kubectl</code>.
 
   ```shell
-  kubectl create namespace kadras-packages
-  kapp deploy -a engineering-platform-package -n kadras-packages -y \
-    -f https://github.com/kadras-io/engineering-platform/releases/latest/download/metadata.yml \
-    -f https://github.com/kadras-io/engineering-platform/releases/latest/download/package.yml
+  kubectl create namespace kadras-system
+  kapp deploy -a engineering-platform-package -n kadras-system -y \
+    -f https://github.com/kadras-io/kadras-engineering-platform/releases/latest/download/metadata.yml \
+    -f https://github.com/kadras-io/kadras-engineering-platform/releases/latest/download/package.yml
   ```
 </details>
 
@@ -48,20 +48,20 @@ Install the Engineering Platform package:
   kctrl package install -i engineering-platform \
     -p engineering-platform.packages.kadras.io \
     -v ${VERSION} \
-    -n kadras-packages
+    -n kadras-system
   ```
 
 > **Note**
 > You can find the `${VERSION}` value by retrieving the list of package versions available in the Kadras package repository installed on your cluster.
 > 
 >   ```shell
->   kctrl package available list -p engineering-platform.packages.kadras.io -n kadras-packages
+>   kctrl package available list -p engineering-platform.packages.kadras.io -n kadras-system
 >   ```
 
 Verify the installed packages and their status:
 
   ```shell
-  kctrl package installed list -n kadras-packages
+  kctrl package installed list -n kadras-system
   ```
 
 ## 📙&nbsp; Documentation
@@ -86,7 +86,7 @@ Reference the `values.yml` file from the `kctrl` command when installing or upgr
   kctrl package install -i engineering-platform \
     -p engineering-platform.packages.kadras.io \
     -v ${VERSION} \
-    -n kadras-packages \
+    -n kadras-system \
     --values-file values.yml
   ```
 
@@ -98,9 +98,8 @@ The Engineering Platform package has the following configurable properties.
 
 | Config | Default | Description |
 |-------|-------------------|-------------|
-| `platform.profile` | `run` | The platform profile to install. Options: `standalone`, `dev`, `build`, `run`. |
-| `platform.supply_chain` | `basic` | The type of supply chain to deploy. Options: `basic`, `advanced`. |
-| `platform.namespace` | `kadras-packages` | The namespace where to install the platform. |
+| `platform.profile` | `run` | The platform profile to install. Options: `standalone`, `build`, `run`. |
+| `platform.namespace` | `kadras-system` | The namespace where to install the platform. |
 | `platform.excluded_packages` | `[]` | A list of packages to exclude from being installed. |
 | `platform.ca_cert_data` | `""` | PEM-encoded certificate data to trust TLS connections with a custom CA. |
 | `platform.infrastructure_provider` | `""` | The underlying infrastructure provider. Options are `local` and `vsphere`. This field is not required, but it enables better validation and defaulting if provided. |
@@ -111,29 +110,27 @@ The Engineering Platform package has the following configurable properties.
 | `platform.oci_registry.server` | `""` | The server of the OCI Registry where the platform will publish OCI images. Example: "ghcr.io". |
 | `platform.oci_registry.repository` | `""` | The repository in the OCI Registry where the platform will publish OCI images. Example: "my-org". |
 | `platform.oci_registry.secret.name` | `""` | The name of the Secret holding the credentials to access the OCI registry. The credentials should provide read-only access to the OCI registry except when installing the platform with one of these profiles: `standalone`, `dev`, `build`. |
-| `platform.oci_registry.secret.namespace` | `kadras-packages` | The namespace of the Secret holding the credentials to access the OCI registry. |
+| `platform.oci_registry.secret.namespace` | `kadras-system` | The namespace of the Secret holding the credentials to access the OCI registry. |
 | `platform.cosign.secret.name` | `""` | The name of the Secret holding the Cosign key pair. |
-| `platform.cosign.secret.namespace` | `kadras-packages` | The namespace of the Secret holding the Cosign key pair. |
+| `platform.cosign.secret.namespace` | `kadras-system` | The namespace of the Secret holding the Cosign key pair. |
 | `platform.git.server` | `https://github.com` | The server hosting the Git repositories used by the plaform. |
 | `platform.git.secret.name` | `""` | The name of the Secret holding the credentials to access the Git server. The credentials should provide read-only access to the Git server except when installing the platform with one of these profiles: `standalone`, `build`. |
-| `platform.git.secret.namespace` | `kadras-packages` | The namespace of the Secret holding the credentials to access the Git server. |
+| `platform.git.secret.namespace` | `kadras-system` | The namespace of the Secret holding the credentials to access the Git server. |
 
 Each Kadras package included in the platform can be configured independently.
 
 | Config | Default | Description |
 |-------|-------------------|-------------|
 | `buildpacks.catalog` | `{}` | Configuration for the Buildpacks Catalog package. |
 | `buildpacks.kpack` | `{}` | Configuration for the Kpack package. |
-| `cartographer.core` | `{}` | Configuration for the Cartographer Core package including Cartographer and Cartographer Conventions. |
-| `cartographer.supply_chains` | `{}` | Configuration for the Cartographer Supply Chains package. |
 | `cert_manager.core` | `{}` | Configuration for the Cert Manager package. |
 | `cert_manager.issuers` | `{}` | Configuration for the Cert Manager Issuers package. |
 | `contour` | `{}` | Configuration for the Contour package. |
-| `conventions.spring_boot` | `{}` | Configuration for the Spring Boot Conventions package. |
 | `crossplane` | `{}` | Configuration for the Crossplane package. |
 | `dapr` | `{}` | Configuration for the Dapr package. |
 | `developer_portal` | `{}` | Configuration for the Developer Portal package. |
 | `flux` | `{}` | Configuration for the Flux package. |
+| `gitops_configurer` | `{}` | Configuration for the GitOps Configurer package. |
 | `knative.serving` | `{}` | Configuration for the Knative Serving package. |
 | `kyverno.core` | `{}` | Configuration for the Kyverno package. |
 | `metrics_server` | `{}` | Configuration for the Metrics Server package. |

docs/quick-start/getting-started.md

@@ -50,8 +50,8 @@ Add the Kadras repository to make the platform packages available to the cluster
 
   ```shell
   kctrl package repository add -r kadras-packages \
-    --url ghcr.io/kadras-io/kadras-packages:0.14.2 \
-    -n kadras-packages --create-namespace
+    --url ghcr.io/kadras-io/kadras-packages:0.15.0 \
+    -n kadras-system --create-namespace
   ```
 
 ## Configure the Platform
@@ -75,8 +75,8 @@ Reference the `values.yml` file you created in the previous step and install the
   ```shell
   kctrl package install -i engineering-platform \
     -p engineering-platform.packages.kadras.io \
-    -v 0.12.2 \
-    -n kadras-packages \
+    -v 0.17.0 \
+    -n kadras-system \
     --values-file values.yml
   ```
 
@@ -85,7 +85,7 @@ Reference the `values.yml` file you created in the previous step and install the
 Verify that all the platform components have been installed and properly reconciled.
 
   ```shell
-  kctrl package installed list -n kadras-packages 
+  kctrl package installed list -n kadras-system
   ```
 
 ## Run an Application via CLI

docs/verify-release.md

@@ -2,19 +2,19 @@
 
 This package is published as an OCI artifact, signed with Sigstore [Cosign](https://docs.sigstore.dev/cosign/overview), and associated with a [SLSA Provenance](https://slsa.dev/provenance) attestation.
 
-Using `cosign`, you can display the supply chain security related artifacts for the `ghcr.io/kadras-io/engineering-platform` images. Use the specific digest you'd like to verify.
+Using `cosign`, you can display the supply chain security related artifacts for the `ghcr.io/kadras-io/kadras-engineering-platform` images. Use the specific digest you'd like to verify.
 
 ```shell
-cosign tree ghcr.io/kadras-io/engineering-platform
+cosign tree ghcr.io/kadras-io/kadras-engineering-platform
 ```
 
 The result:
 
 ```shell
-📦 Supply Chain Security Related artifacts for an image: ghcr.io/kadras-io/engineering-platform
-└── 🔐 Signatures for an image tag: ghcr.io/kadras-io/engineering-platform:sha256-be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a.sig
+📦 Supply Chain Security Related artifacts for an image: ghcr.io/kadras-io/kadras-engineering-platform
+└── 🔐 Signatures for an image tag: ghcr.io/kadras-io/kadras-engineering-platform:sha256-be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a.sig
    └── 🍒 sha256:3155f34d804f7c0c1b7067db6b200591835c5612faaa45469952b1bb8ace8f4c
-└── 💾 Attestations for an image tag: ghcr.io/kadras-io/engineering-platform:sha256-be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a.att
+└── 💾 Attestations for an image tag: ghcr.io/kadras-io/kadras-engineering-platform:sha256-be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a.att
    └── 🍒 sha256:ce0068e03c1b25884ab7a774408956a930f5c6e087c431ee24f9c692d3c761f5
 ```
 
@@ -24,7 +24,7 @@ You can verify the signature and its claims:
 cosign verify \
    --certificate-identity-regexp https://github.com/kadras-io \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
-   ghcr.io/kadras-io/engineering-platform | jq
+   ghcr.io/kadras-io/kadras-engineering-platform | jq
 ```
 
 You can also verify the SLSA Provenance attestation associated with the image.
@@ -33,5 +33,5 @@ You can also verify the SLSA Provenance attestation associated with the image.
 cosign verify-attestation --type slsaprovenance \
    --certificate-identity-regexp https://github.com/slsa-framework \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
-   ghcr.io/kadras-io/engineering-platform | jq .payload -r | base64 --decode | jq
+   ghcr.io/kadras-io/kadras-engineering-platform | jq .payload -r | base64 --decode | jq
 ```

package/config/components/buildpacks-catalog.yml

@@ -3,7 +3,7 @@
 #@ load("@ytt:yaml", "yaml")
 #@ load("/helpers.star", "is_any_profile_enabled", "is_package_enabled", "profiles")
 
-#@ if is_package_enabled("buildpacks-catalog") and is_any_profile_enabled([profiles.standalone, profiles.dev, profiles.build]):
+#@ if is_package_enabled("buildpacks-catalog") and is_any_profile_enabled([profiles.standalone, profiles.build]):
 
 #@ def compute_package_values():
 #@   values = struct.decode(data.values.buildpacks.catalog)

package/config/components/cartographer-supply-chains.yml

@@ -23,7 +23,7 @@ spec:
   packageRef:
     refName: cert-manager.packages.kadras.io
     versionSelection:
-      constraints: 1.14.3
+      constraints: 1.14.4
       prereleases: {}
   values:
     - secretRef:

package/config/components/cartographer.yml

@@ -7,15 +7,6 @@
 
 #@ def compute_package_values():
 #@   values = struct.decode(data.values.flux)
-#@
-#@   #! Disable Kustomize Controller based on profile
-#@   if is_any_profile_enabled([profiles.dev]):
-#@     if not hasattr(data.values.flux, "optional_components") or not data.values.flux.optional_components or not hasattr(data.values.flux.optional_components, "kustomize_controller") or not data.values.flux.optional_components.kustomize_controller:
-#@       values["optional_components"] = {}
-#@       values["optional_components"]["kustomize_controller"] = False
-#@     end
-#@   end 
-#@
 #@   return struct.encode(values)
 #@ end