kind: ConfigMap
apiVersion: v1
metadata:
  name: app-config-rhdh
  namespace: rhdh-operator
data:
  app-config-rhdh.yaml: |
    logger:
      level: debug
    app:
      title: Red Hat Developer Hub
    backend:
      auth:
        keys:
          - secret: ${BACKEND_SECRET} # deprecated but still required by some mechanisms
    auth:
      environment: production 
      session:
        secret: ${SESSION_SECRET}
      providers:
        guest:
          production: {}
        oidc:
          production:
            clientId: ${AUTH_KEYCLOAK_CLIENT_ID}
            clientSecret: ${AUTH_KEYCLOAK_CLIENT_SECRET}
            metadataUrl: https://keycloak-keycloak.apps-crc.testing/realms/rhdh/.well-known/openid-configuration
            prompt: auto
            signIn:
              resolvers:
                - resolver: preferredUsernameMatchingUserEntityName
      signInPage: oidc
    catalog:
      import:
        entityFilename: catalog-info.yaml
        pullRequestBranchName: backstage-integration
      rules:
        - allow:
            - Component
            - API
            - Resource
            - System
            - Domain
            - Location
            - Template
      providers:
        backstageOpenapi:
          plugins:
            - catalog
            - search
      locations:
        - type: file
          target: 'https://github.com/pfeifferj/backstage-iac-demo/blob/main/backstage/all.yaml'
          rules:
            - allow: [Template, Component, Location, Resource, API, Domain, System]
      permission:
        enabled: true
        rbac:
          admin:
            users:
              - name: user:default/pfeifferj
              - name: user:default/guest
---
apiVersion: rhdh.redhat.com/v1alpha1
kind: Backstage
metadata:
  name: developer-hub
  namespace: rhdh-operator
spec:
  application:
    appConfig:
      mountPath: /opt/app-root/src
    dynamicPluginsConfigMapName: dynamic-plugins-rhdh
    extraFiles:
      mountPath: /opt/app-root/src
    extraEnvs:
      secrets:
        - name: rhdh-secrets
    replicas: 1
    route:
      enabled: true
  database:
    enableLocalDb: true
---
kind: ConfigMap
apiVersion: v1
metadata:
  name: dynamic-plugins-rhdh
data:
  dynamic-plugins.yaml: |
    includes:
      - dynamic-plugins.default.yaml
---
apiVersion: rhdh.redhat.com/v1alpha1
kind: Backstage
metadata:
  name: developer-hub
  namespace: rhdh-operator
spec:
  application:
    appConfig:
      configMaps:
        - name: app-config-rhdh
      mountPath: /opt/app-root/src
    dynamicPluginsConfigMapName: dynamic-plugins-rhdh
    extraEnvs:
      secrets:
        - name: rhdh-secrets
    extraFiles:
      mountPath: /opt/app-root/src
    replicas: 1
    route:
      enabled: true
  database:
    enableLocalDb: true