SONAR-25177 Define a wrapper Azure chart

Author: carminevassallo

.cirrus/azure_app_verify_and_publish.sh

@@ -0,0 +1,84 @@
+#!/bin/bash
+set -e # Exit immediately if a command exits with a non-zero status.
+
+# --- Configuration Variables ---
+# IMPORTANT: Replace these placeholder values with your actual details.
+# You might want to set these as environment variables or use a secure method
+# for production environments.
+
+# Version of the original SonarQube chart (e.g., 2025.3.0)
+# This should match the version in charts/sonarqube/Chart.yaml
+SONARQUBE_CHART_VERSION="2025.3.0" 
+
+# Azure Container Registry (ACR) details
+# This should match the 'registryServer' in your manifest.yaml
+ACR_REGISTRY="testdavi.azurecr.io" 
+ACR_USERNAME="${AZURE_ACR_USERNAME:-}" # Use environment variable or provide directly
+ACR_PASSWORD="${AZURE_ACR_PASSWORD:-}" # Use environment variable or provide directly
+
+# Application name from manifest.yaml (used for the CNAB bundle name)
+APPLICATION_NAME="sonarqube"
+
+# --- Script Start ---
+
+echo "--- Starting Azure Marketplace K8s App Packaging Process ---"
+
+cd ..
+cd azure-marketplace-k8s-app
+
+# 1. Clean up previous build artifacts
+echo "1. Cleaning up old build artifacts..."
+# Removes:
+# - .cnab/ directory (where the bundle is built)
+# - The packaged wrapper chart (if it was created previously)
+# - The charts/ directory within the wrapper chart (containing the .tgz)
+# - The Chart.lock file within the wrapper chart
+rm -rf .cnab/ "${APPLICATION_NAME}-azure-${SONARQUBE_CHART_VERSION}" sonarqube-azure/charts/ sonarqube-azure/Chart.lock
+
+# Ensure the wrapper chart's charts/ directory exists for unpacking
+# mkdir -p sonarqube-azure/charts/
+
+# 2. Navigate into the wrapper chart directory and update Helm dependencies
+echo "2. Updating Helm dependencies for the wrapper chart (sonarqube-azure)..."
+# This command will read sonarqube-azure/Chart.yaml and package the 'sonarqube'
+# dependency (from ../charts/sonarqube) into sonarqube-azure/charts/sonarqube-${SONARQUBE_CHART_VERSION}.tgz
+cd sonarqube-azure
+helm dependency update
+echo "Helm dependencies updated. Packaged subchart is now in sonarqube-azure/charts/."
+
+# 3. Decompress the subchart for CPA validation
+echo "3. Decompressing the SonarQube subchart for CPA validation..."
+cd charts
+tar -xzf "sonarqube-${SONARQUBE_CHART_VERSION}.tgz"
+rm "sonarqube-${SONARQUBE_CHART_VERSION}.tgz"
+echo "SonarQube subchart decompressed and .tgz removed."
+
+# 4. Navigate back to the main offer directory
+cd ../.. # Back to azure-marketplace-k8s-app/
+
+# 5. Perform Docker login to your Azure Container Registry
+echo "5. Logging into Azure Container Registry: ${ACR_REGISTRY}..."
+if [ -z "${ACR_USERNAME}" ] || [ -z "${ACR_PASSWORD}" ]; then
+  echo "WARNING: ACR_USERNAME or ACR_PASSWORD not set. Docker login might fail or prompt for credentials."
+  docker login "${ACR_REGISTRY}"
+else
+  echo "${ACR_PASSWORD}" | docker login "${ACR_REGISTRY}" --username "${ACR_USERNAME}" --password-stdin
+fi
+echo "Docker login complete."
+
+# 6. Run CPA verify within the container
+echo "6. Running CPA verification (cpa verify)..."
+# The -v ./:/data mounts the current directory (azure-marketplace-k8s-app) to /data inside the container.
+# CPA commands will operate on files relative to /data.
+docker run -it --rm -v /var/run/docker.sock:/var/run/docker.sock -v "$(pwd)":/data mcr.microsoft.com/container-package-app:latest cpa verify --directory /data
+echo "CPA verification complete."
+
+# 7. Run CPA buildbundle within the container
+echo "7. Building the CPA bundle (cpa buildbundle)..."
+# This creates the .cnab directory and the bundle file (e.g., sonarqube.cnab)
+# in the current directory (mounted as /data in container).
+DOCKER_BUILDKIT=1 docker run -it --rm -v /var/run/docker.sock:/var/run/docker.sock -v "$(pwd)":/data mcr.microsoft.com/container-package-app:latest cpa buildbundle --force --directory /data
+echo "CPA bundle built successfully."
+echo "CPA bundle pushed to ACR successfully!"
+
+echo "--- Azure Marketplace K8s App Packaging Process Complete ---"

azure-marketplace-k8s-app/Chart.yaml

@@ -175,13 +175,11 @@
     },
     "resources": [
         {
-            "type": "Microsoft.ContainerService/managedClusters",
             "condition": "[parameters('createNewCluster')]",
+            "type": "Microsoft.ContainerService/managedClusters",
             "apiVersion": "2024-05-01",
             "name": "[parameters('clusterResourceName')]",
             "location": "[parameters('location')]",
-            "dependsOn": [],
-            "tags": {},
             "sku": {
                 "name": "Basic",
                 "tier": "Free"
@@ -209,9 +207,7 @@
                         "type": "VirtualMachineScaleSets",
                         "mode": "System",
                         "maxPods": 110,
-                        "availabilityZones": [],
-                        "enableNodePublicIP": false,
-                        "tags": {}
+                        "enableNodePublicIP": false
                     }
                 ],
                 "networkProfile": {
@@ -235,9 +231,18 @@
             }
         },
         {
+            "scope": "[concat('Microsoft.ContainerService/managedClusters/', parameters('clusterResourceName'))]",
             "type": "Microsoft.KubernetesConfiguration/extensions",
             "apiVersion": "2023-05-01",
             "name": "[parameters('extensionResourceName')]",
+            "plan": {
+                "name": "[variables('plan-name')]",
+                "publisher": "[variables('plan-publisher')]",
+                "product": "[variables('plan-offerID')]"
+            },
+            "dependsOn": [
+                "[resourceId('Microsoft.ContainerService/managedClusters/', parameters('clusterResourceName'))]"
+            ],
             "properties": {
                 "extensionType": "[variables('clusterExtensionTypeName')]",
                 "autoUpgradeMinorVersion": true,
@@ -248,20 +253,8 @@
                     "jdbcOverwrite.jdbcUrl": "[parameters('jdbcOverwriteJdbcUrl')]",
                     "jdbcOverwrite.jdbcUsername": "[parameters('jdbcOverwriteJdbcUsername')]",
                     "jdbcOverwrite.jdbcPassword": "[parameters('jdbcOverwriteJdbcPassword')]"
-                },
-                "configurationProtectedSettings": {
-
                 }
-            },
-            "plan": {
-                "name": "[variables('plan-name')]",
-                "publisher": "[variables('plan-publisher')]",
-                "product": "[variables('plan-offerID')]"
-            },
-            "scope": "[concat('Microsoft.ContainerService/managedClusters/', parameters('clusterResourceName'))]",
-            "dependsOn": [
-                "[resourceId('Microsoft.ContainerService/managedClusters/', parameters('clusterResourceName'))]"
-            ]
+            }
         }
     ],
     "outputs": {

azure-marketplace-k8s-app/helpers.sh

@@ -2,7 +2,7 @@ applicationName: sonarqube
 publisher: "SonarSource"
 description: "SonarQube Server is a self-managed, automatic code review tool that systematically helps you deliver clean code. As a core element of our Sonar solution, SonarQube integrates into your existing workflow and detects issues in your code to help you perform continuous code inspections of your projects. The tool analyses 30+ different programming languages and integrates into your CI pipeline and DevOps platform to ensure that your code meets high-quality standards."
 version: 2025.2.0
-helmChart: "../charts/sonarqube"
+helmChart: "./sonarqube-azure"
 clusterArmTemplate: "./mainTemplate.json"
 uiDefinition: "./createUIDefinition.json"
 registryServer: "testdavi.azurecr.io" # Verify this!

azure-marketplace-k8s-app/mainTemplate.json

@@ -0,0 +1,13 @@
+apiVersion: v2 # Or v1 depending on your Helm version
+name: my-sonarqube-offer
+version: 1.0.0 # This is the version of your wrapper chart
+appVersion: "2025.2.0" # This could match the SonarQube app version
+description: "SonarQube Offer for Azure Marketplace with custom configurations"
+type: application
+dependencies:
+  - name: sonarqube # The name of the chart you're wrapping
+    version: "2025.3.0" # IMPORTANT: Match the version from charts/sonarqube/Chart.yaml
+    repository: "file://../../charts/sonarqube" # Reference your local SonarQube chart
+    # OR if you've already packaged sonarqube as a .tgz in my-sonarqube-offer/charts/:
+    # repository: "file://./charts/sonarqube-YOUR_SONARQUBE_CHART_VERSION.tgz"
+    # condition: sonarqube.enabled # Example: Allow enabling/disabling the subchart

azure-marketplace-k8s-app/manifest.yaml

@@ -0,0 +1,34 @@
+# Default values for azure-marketplace-k8s-app.
+# This is a YAML-formatted file.
+sonarqube:
+  edition: enterprise
+  monitoringPasscode: helloguys
+
+  postgresql:
+  # Enable to deploy the bitnami PostgreSQL chart
+    enabled: false
+
+global:
+  azure:
+    identity:
+      # Application's Managed Service Identity (MSI) Client ID. ClientID can be used to generate authentication token to communicate to external services like Microsoft Marketplace Metering API
+      clientId: "DONOTMODIFY" # Azure populates this value at deployment time
+    marketplace:
+      # id of the plan purchased for the Azure Marketplace Kubernetes application,to be used in usage event payload to metering api, for more information please refer: https://learn.microsoft.com/en-us/partner-center/marketplace/marketplace-metering-service-apis 
+      planId: "DONOTMODIFY" # Azure populates this value at deployment time
+    extension:
+      # resource id of the Azure Marketplace Kubernetes application,to be used in usage event payload to metering api, for more information please refer: https://learn.microsoft.com/en-us/partner-center/marketplace/marketplace-metering-service-apis 
+      resourceId: "DONOTMODIFY" # application's Azure Resource ID, Azure populates this value at deployment time
+    images:
+      sonarqube:
+        registry: testdavi.azurecr.io
+        image: sonarqube
+        tag: 2025.2.0-enterprise
+      postgres:
+        registry: testdavi.azurecr.io
+        image: sonarqube
+        tag: 2025.2.0-enterprise
+      nginx:
+        registry: testdavi.azurecr.io
+        image: sonarqube
+        tag: 2025.2.0-enterprise

azure-marketplace-k8s-app/sonarqube-azure/Chart.yaml

@@ -53,8 +53,12 @@ app.kubernetes.io/version: {{ (tpl (include "image.tag" .) . ) | trunc 63 | trim
 Expand the Application Image name.
 */}}
 {{- define "sonarqube.image" -}}
+{{- if and .Values.global .Values.global.azure .Values.global.azure.images .Values.global.azure.images.sonarqube }}
+{{- printf "%s/%s:%s" .Values.global.azure.images.sonarqube.registry .Values.global.azure.images.sonarqube.image .Values.global.azure.images.sonarqube.tag }}
+{{- else }}
 {{- printf "%s:%s" .Values.image.repository (tpl (include "image.tag" .) .) }}
 {{- end -}}
+{{- end -}}
 
 {{/*
   Define the image.tag value that computes the right tag to be used as `sonarqube.image`

azure-marketplace-k8s-app/sonarqube-azure/values.yaml

@@ -56,14 +56,6 @@ community:
   enabled: false
   buildNumber: "25.1.0.102122"
 
-global:
-  azure:
-    images:
-      sonarqube:
-        registry: testdavi.azurecr.io
-        image: sonarqube
-        tag: 2025.2.0-enterprise
-
 image:
   repository: sonarqube
   # tag: ""