-
Notifications
You must be signed in to change notification settings - Fork 2
/
start-console.sh
executable file
·66 lines (57 loc) · 3.46 KB
/
start-console.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
#!/usr/bin/env bash
set -euo pipefail
CONSOLE_IMAGE=${CONSOLE_IMAGE:="quay.io/openshift/origin-console:latest"}
CONSOLE_PORT=${CONSOLE_PORT:=9000}
CONSOLE_IMAGE_PLATFORM=${CONSOLE_IMAGE_PLATFORM:="linux/amd64"}
# Plugin metadata is declared in package.json
PLUGIN_NAME=${npm_package_consolePlugin_name}
echo "Starting local OpenShift console..."
BRIDGE_USER_AUTH="disabled"
BRIDGE_K8S_MODE="off-cluster"
BRIDGE_K8S_AUTH="bearer-token"
BRIDGE_K8S_MODE_OFF_CLUSTER_SKIP_VERIFY_TLS=true
BRIDGE_K8S_MODE_OFF_CLUSTER_ENDPOINT=$(oc whoami --show-server)
BRIDGE_BRANDING="openshift"
# The monitoring operator is not always installed (e.g. for local OpenShift). Tolerate missing config maps.
set +e
BRIDGE_K8S_MODE_OFF_CLUSTER_THANOS=$(oc -n openshift-config-managed get configmap monitoring-shared-config -o jsonpath='{.data.thanosPublicURL}' 2>/dev/null)
BRIDGE_K8S_MODE_OFF_CLUSTER_ALERTMANAGER=$(oc -n openshift-config-managed get configmap monitoring-shared-config -o jsonpath='{.data.alertmanagerPublicURL}' 2>/dev/null)
set -e
BRIDGE_K8S_AUTH_BEARER_TOKEN=$(oc whoami --show-token 2>/dev/null)
BRIDGE_USER_SETTINGS_LOCATION="localstorage"
BRIDGE_I18N_NAMESPACES="plugin__${PLUGIN_NAME}"
# Don't fail if the cluster doesn't have gitops.
set +e
GITOPS_HOSTNAME=$(oc -n openshift-gitops get route cluster -o jsonpath='{.spec.host}' 2>/dev/null)
set -e
if [ -n "$GITOPS_HOSTNAME" ]; then
BRIDGE_K8S_MODE_OFF_CLUSTER_GITOPS="https://$GITOPS_HOSTNAME"
fi
echo "API Server: $BRIDGE_K8S_MODE_OFF_CLUSTER_ENDPOINT"
echo "Console Image: $CONSOLE_IMAGE"
echo "Console URL: http://localhost:${CONSOLE_PORT}"
echo "Console Platform: $CONSOLE_IMAGE_PLATFORM"
# Prefer podman if installed. Otherwise, fall back to docker.
if [ -x "$(command -v podman)" ]; then
if [ "$(uname -s)" = "Linux" ]; then
# Use host networking on Linux since host.containers.internal is unreachable in some environments.
BRIDGE_PLUGINS="${PLUGIN_NAME}=http://localhost:9001"
podman run --pull always --platform $CONSOLE_IMAGE_PLATFORM --rm --network=host --env-file <(set | grep BRIDGE) $CONSOLE_IMAGE
else
# to enable a plugin that is enabled on a remote cluster, expose it with a Route with TLS passthrough
# and then add it to the plugins list:
# BRIDGE_PLUGINS="kubevirt-plugin=https://kubevirt-console-plugin-openshift-cnv.apps.cluster.example.com,${PLUGIN_NAME}=http://host.containers.internal:9001"
BRIDGE_PLUGINS="${PLUGIN_NAME}=http://host.containers.internal:9001"
# we need --plugin-proxy in development instead of relying on the plugin's reverse proxy, but
# can't use BRIDGE_PLUGIN_PROXY environment configuration because `set` will print it beginning
# with a single quote and cannot be parsed as JSON. instead, we have to override the CMD for
# the container https://github.com/openshift/console/blob/master/Dockerfile#L64
podman run --pull always --platform $CONSOLE_IMAGE_PLATFORM --rm -p "$CONSOLE_PORT":9000 --env-file <(set | grep BRIDGE) $CONSOLE_IMAGE \
/opt/bridge/bin/bridge \
--public-dir=/opt/bridge/static \
--plugin-proxy='{"services":[{"consoleAPIPath":"/api/proxy/plugin/falcon-openshift-console-plugin/reproxy/crwdapi/","endpoint":"https://api.us-2.crowdstrike.com"}]}'
fi
else
BRIDGE_PLUGINS="${PLUGIN_NAME}=http://host.docker.internal:9001"
docker run --pull always --platform $CONSOLE_IMAGE_PLATFORM --rm -p "$CONSOLE_PORT":9000 --env-file <(set | grep BRIDGE) $CONSOLE_IMAGE
fi