hydra-maester/README.md

<!-- START doctoc generated TOC please keep comment here to allow auto update -->
<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->

- [Ory Hydra Maester](#ory-hydra-maester)
  - [Prerequisites](#prerequisites)
  - [Design](#design)
  - [How to use it](#how-to-use-it)
    - [Command-line flags](#command-line-flags)
  - [Development](#development)
    - [Testing](#testing)

<!-- END doctoc generated TOC please keep comment here to allow auto update -->

# Ory Hydra Maester

⚠️ ⚠️ ⚠️

> Ory Hydra Maester is developed by the Ory community and is not actively
> maintained by Ory core maintainers due to lack of resources, time, and
> knolwedge. As such please be aware that there might be issues with the system.
> If you have ideas for better testing and development principles please open an
> issue or PR!

⚠️ ⚠️ ⚠️

This project contains a Kubernetes controller that uses Custom Resources (CR) to
manage Hydra Oauth2 clients. ORY Hydra Maester watches for instances of
`oauth2clients.hydra.ory.sh/v1alpha1` CR and creates, updates, or deletes
corresponding OAuth2 clients by communicating with ORY Hydra's API.

Visit Hydra-maester's
[chart documentation](https://github.com/ory/k8s/blob/master/docs/helm/hydra-maester.md)
and view [sample OAuth2 client resources](config/samples) to learn more about
the `oauth2clients.hydra.ory.sh/v1alpha1` CR.

The project is based on
[Kubebuilder](https://github.com/kubernetes-sigs/kubebuilder).

## Prerequisites

- recent version of Go language with support for modules (e.g: 1.12.6)
- make
- kubectl
- kustomize
- [kubebuilder](https://github.com/kubernetes-sigs/kubebuilder) for running
  tests
- [ginkgo](https://onsi.github.io/ginkgo/) for local integration testing
- access to K8s environment: minikube or a remote K8s cluster
- [mockery](https://github.com/vektra/mockery) to generate mocks for testing
  purposes

## Design

Take a look at [Design Readme](./docs/README.md).

## How to use it

- `make test` to run tests
- `make test-integration` to run integration tests
- `make install` to generate CRD file from go sources and install it on the
  cluster
- `export HYDRA_URL={HYDRA_SERVICE_URL} && make run` to run the controller

To deploy the controller, edit the value of the `--hydra-url` argument in the
[manager.yaml](config/manager/manager.yaml) file and run `make deploy`.

### Command-line flags

| Name                         | Required | Description                                                                                                      | Default value | Example values                           |
| ---------------------------- | -------- | ---------------------------------------------------------------------------------------------------------------- | ------------- | ---------------------------------------- |
| **hydra-url**                | yes      | ORY Hydra's service address                                                                                      | -             | ` ory-hydra-admin.ory.svc.cluster.local` |
| **hydra-port**               | no       | ORY Hydra's service port                                                                                         | `4445`        | `4445`                                   |
| **tls-trust-store**          | no       | TLS cert path for hydra client                                                                                   | `""`          | `/etc/ssl/certs/ca-certificates.crt`     |
| **insecure-skip-verify**     | no       | Skip http client insecure verification                                                                           | `false`       | `true` or `false`                        |
| **namespace**                | no       | Namespace in which the controller should operate. Setting this will make the controller ignore other namespaces. | `""`          | `"my-namespace"`                         |
| **leader-elector-namespace** | no       | Leader elector namespace where controller should be set.                                                         | `""`          | `"my-namespace"`                         |

### Environmental Variables

| Variable name           | Default value       | Example value         |
| :---------------------- | ------------------- | --------------------- |
| `**CLIENT_ID_KEY**`     | `**CLIENT_ID**`     | `**MY_SECRET_NAME**`  |
| `**CLIENT_SECRET_KEY**` | `**CLIENT_SECRET**` | `**MY_SECRET_VALUE**` |

## Development

### Testing

Use mockery to generate mock types that implement existing interfaces. To
generate a mock type for an interface, navigate to the directory containing that
interface and run this command:

```
mockery -name={INTERFACE_NAME}
```
docs: Incorporates changes from version v0.0.2-test2 2019-08-30 09:25:40 +00:00			`<!-- START doctoc generated TOC please keep comment here to allow auto update -->`
			`<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->`

docs: Incorporates changes from version v0.0.22 2021-05-13 12:27:12 +00:00			`- [Ory Hydra Maester](#ory-hydra-maester)`
docs: Incorporates changes from version v0.0.2-test2 2019-08-30 09:25:40 +00:00			`- [Prerequisites](#prerequisites)`
			`- [Design](#design)`
			`- [How to use it](#how-to-use-it)`
docs: Incorporates changes from version v0.0.3 2019-08-30 12:01:11 +00:00			`- [Command-line flags](#command-line-flags)`
docs: Incorporates changes from version v0.0.4 2019-09-24 10:53:55 +00:00			`- [Development](#development)`
			`- [Testing](#testing)`
docs: Incorporates changes from version v0.0.2-test2 2019-08-30 09:25:40 +00:00
			`<!-- END doctoc generated TOC please keep comment here to allow auto update -->`

docs: add warning regarding project state 2021-05-11 18:44:40 +02:00			`# Ory Hydra Maester`
Initial readme (#1) 2019-07-31 14:44:45 +02:00
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`⚠️ ⚠️ ⚠️`
docs: add warning regarding project state 2021-05-11 18:44:40 +02:00
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`> Ory Hydra Maester is developed by the Ory community and is not actively`
			`> maintained by Ory core maintainers due to lack of resources, time, and`
			`> knolwedge. As such please be aware that there might be issues with the system.`
			`> If you have ideas for better testing and development principles please open an`
			`> issue or PR!`
docs: add warning regarding project state 2021-05-11 18:44:40 +02:00
			`⚠️ ⚠️ ⚠️`
Initial readme (#1) 2019-07-31 14:44:45 +02:00
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`This project contains a Kubernetes controller that uses Custom Resources (CR) to`
			`manage Hydra Oauth2 clients. ORY Hydra Maester watches for instances of`
			`oauth2clients.hydra.ory.sh/v1alpha1` CR and creates, updates, or deletes
			`corresponding OAuth2 clients by communicating with ORY Hydra's API.`
sample/cr ref 2019-08-30 11:45:27 +02:00
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`Visit Hydra-maester's`
			`[chart documentation](https://github.com/ory/k8s/blob/master/docs/helm/hydra-maester.md)`
			`and view [sample OAuth2 client resources](config/samples) to learn more about`
			the `oauth2clients.hydra.ory.sh/v1alpha1` CR.
Initial readme (#1) 2019-07-31 14:44:45 +02:00
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`The project is based on`
			`[Kubebuilder](https://github.com/kubernetes-sigs/kubebuilder).`
Initial readme (#1) 2019-07-31 14:44:45 +02:00
readme 2019-08-29 12:55:29 +02:00			`## Prerequisites`
Initial readme (#1) 2019-07-31 14:44:45 +02:00
readme 2019-08-29 12:55:29 +02:00			`- recent version of Go language with support for modules (e.g: 1.12.6)`
			`- make`
			`- kubectl`
			`- kustomize`
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`- [kubebuilder](https://github.com/kubernetes-sigs/kubebuilder) for running`
			`tests`
readme 2019-08-29 12:55:29 +02:00			`- [ginkgo](https://onsi.github.io/ginkgo/) for local integration testing`
			`- access to K8s environment: minikube or a remote K8s cluster`
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`- [mockery](https://github.com/vektra/mockery) to generate mocks for testing`
			`purposes`
readme 2019-08-29 12:55:29 +02:00
			`## Design`

			`Take a look at [Design Readme](./docs/README.md).`

			`## How to use it`

			- `make test` to run tests
			- `make test-integration` to run integration tests
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			- `make install` to generate CRD file from go sources and install it on the
			`cluster`
readme 2019-08-29 12:55:29 +02:00			- `export HYDRA_URL={HYDRA_SERVICE_URL} && make run` to run the controller

chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			To deploy the controller, edit the value of the `--hydra-url` argument in the
			[manager.yaml](config/manager/manager.yaml) file and run `make deploy`.
extend readme 2019-08-30 10:37:35 +02:00
			`### Command-line flags`

chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`\| Name \| Required \| Description \| Default value \| Example values \|`
			`\| ---------------------------- \| -------- \| ---------------------------------------------------------------------------------------------------------------- \| ------------- \| ---------------------------------------- \|`
			\| hydra-url \| yes \| ORY Hydra's service address \| - \| ` ory-hydra-admin.ory.svc.cluster.local` \|
			\| hydra-port \| no \| ORY Hydra's service port \| `4445` \| `4445` \|
			\| tls-trust-store \| no \| TLS cert path for hydra client \| `""` \| `/etc/ssl/certs/ca-certificates.crt` \|
			\| insecure-skip-verify \| no \| Skip http client insecure verification \| `false` \| `true` or `false` \|
			\| namespace \| no \| Namespace in which the controller should operate. Setting this will make the controller ignore other namespaces. \| `""` \| `"my-namespace"` \|
			\| leader-elector-namespace \| no \| Leader elector namespace where controller should be set. \| `""` \| `"my-namespace"` \|
comments 2019-09-05 11:31:32 +02:00
feat: move release to gha (#137) 2023-10-26 15:32:50 +02:00			`### Environmental Variables`

			`\| Variable name \| Default value \| Example value \|`
			`\| :---------------------- \| ------------------- \| --------------------- \|`
			\| `CLIENT_ID_KEY` \| `CLIENT_ID` \| `MY_SECRET_NAME` \|
			\| `CLIENT_SECRET_KEY` \| `CLIENT_SECRET` \| `MY_SECRET_VALUE` \|

comments 2019-09-05 11:31:32 +02:00			`## Development`

			`### Testing`

chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			`Use mockery to generate mock types that implement existing interfaces. To`
			`generate a mock type for an interface, navigate to the directory containing that`
			`interface and run this command:`

comments 2019-09-05 11:31:32 +02:00			```
			`mockery -name={INTERFACE_NAME}`
chore: format using Make (#111) 2022-09-22 07:52:52 -05:00			```