kind: ConfigMap
apiVersion: v1
metadata:
  name: app-config-rhdh
  namespace: rhdh-operator
data:
  app-config-rhdh.yaml: |
    logger:
      level: debug
    app:
      title: Red Hat Developer Hub
    backend:
      csp:
        connect-src: ["'self'", "https://keycloak-keycloak.apps-crc.testing"]
      cors:
        origin: ["https://backstage-developer-hub-rhdh-operator.apps-crc.testing"]
        methods: ['GET', 'HEAD', 'PUT', 'POST', 'DELETE', 'PATCH', 'OPTIONS']
        credentials: true
      auth:
        keys:
          - secret: ${BACKEND_SECRET} # deprecated but still required by some mechanisms
    auth:
      environment: production 
      session:
        secret: mySuperSecret
      providers:
        guest:
          userEntityRef: user:default/pfeifferj
        oidc:
          production:
            clientId: ${AUTH_KEYCLOAK_CLIENT_ID}
            clientSecret: ${AUTH_KEYCLOAK_CLIENT_SECRET}
            metadataUrl: https://keycloak-keycloak.apps-crc.testing/realms/rhdh/.well-known/openid-configuration
            prompt: auto
            callbackUrl: https://backstage-developer-hub-rhdh-operator.apps-crc.testing/api/auth/oidc/handler/frame
    signInPage: oidc
    catalog:
      import:
        entityFilename: catalog-info.yaml
        pullRequestBranchName: backstage-integration
      rules:
        - allow:
            - Component
            - API
            - Resource
            - System
            - Domain
            - Location
            - Template
      providers:
        backstageOpenapi:
          plugins:
            - catalog
            - search
      locations:
        - type: file
          target: 'https://github.com/pfeifferj/backstage-iac-demo/blob/main/backstage/all.yaml'
          rules:
            - allow: [Template, Component, Location, Resource, API, Domain, System]
    permission:
      enabled: true
      rbac:
        admin:
          users:
            - name: user:default/pfeifferj
            - name: user:default/guest
    enabled:
      keycloak: true
---
kind: ConfigMap
apiVersion: v1
metadata:
  name: dynamic-plugins-rhdh
data:
  dynamic-plugins.yaml: |
    includes:
      - dynamic-plugins.default.yaml
---
apiVersion: rhdh.redhat.com/v1alpha1
kind: Backstage
metadata:
  name: developer-hub
  namespace: rhdh-operator
spec:
  application:
    appConfig:
      configMaps:
        - name: app-config-rhdh
      mountPath: /opt/app-root/src
    dynamicPluginsConfigMapName: dynamic-plugins-rhdh
    extraEnvs:
      secrets:
        - name: rhdh-secrets
    extraFiles:
      mountPath: /opt/app-root/src
    replicas: 1
    route:
      enabled: true
  database:
    enableLocalDb: true