chore: Replace backend with platform

We have migrated to a new set of backend services and are deprecating the existing python based services. This work in progress replaces the sample code

Author: dmihalcik-virtru

.github/workflows/build.yaml

@@ -146,37 +146,36 @@ jobs:
           path: lib/
       - name: Git clone backend
         run: |
-          git clone https://github.com/opentdf/opentdf.git
-      - uses: yokawasa/action-setup-[email protected]
+          git clone https://github.com/opentdf/platform.git
+      - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491
         with:
-          setup-tools: |
-            kubectl
-            helm
-            tilt
-          # This should be in sync with the minikube-deployed kube version below
-          kubectl: '1.23.1'
-          helm: '3.8.0'
-          tilt: '0.26.2'
+          go-version: "1.21.8"
+          cache-dependency-path: |
+            platform/service/go.sum
+            platform/examples/go.sum
+            platform/protocol/go/go.sum
+            platform/sdk/go.sum
       - run: |
-          kubectl version --client
-          kustomize version
-          tilt version
-      - name: start minikube
-        id: minikube
-        uses: medyagh/setup-minikube@master
+          cd platform
+          docker compose up -d --wait --wait-timeout 240
+          .github/scripts/init-temp-keys.sh
+          cp opentdf-example.yaml opentdf.yaml
+          go run ./service provision keycloak
+      - uses: JarvusInnovations/background-action@313d37130873d82c33fc907b9b78e932aec8e990
+        name: start kas
         with:
-          minikube-version: 1.25.1
-          # This should be in sync with the setup-tools version above
-          kubernetes-version: 1.23.1
-      - name: Run tilt ci
-        env:
-          #path relative to the quickstart Tiltfile
-          TEST_SCRIPT: ../../wait-and-test.sh
-          OPENTDF_INGRESS_HOST_PORT: "5432"
-          OPENTDF_LOAD_FRONTEND: "false"
+          run: |
+            go run ./service start
+          wait-on: |
+            tcp:localhost:8080
+          log-output-if: true
+          wait-for: 90s
+          working-directory: platform
+      - env:
+          OPENTDF_SERVICES_AUTHORIZATION_URL: "http://localhost:65432/"
           PLAYWRIGHT_TESTS_TO_RUN: roundtrip
         run: |-
-          tilt ci --file opentdf/quickstart/Tiltfile
+          ./.github/workflows/roundtrip/wait-and-test.sh
 
   deliver-ghp:
     needs: [lib, web-app, scripts, backend-roundtrip]

.github/workflows/roundtrip/wait-and-test.sh

@@ -13,7 +13,7 @@ _wait-for() {
   echo "[INFO] In retry loop for quickstarted opentdf backend..."
   limit=5
   for i in $(seq 1 $limit); do
-    if curl --show-error --fail --insecure http://localhost:65432/api/kas; then
+    if curl --show-error --fail --insecure http://localhost:8080; then
       return 0
     fi
     if [[ $i == "$limit" ]]; then

README.md

@@ -28,9 +28,6 @@ Start a local, blank cluster. See [Integrate](https://github.com/opentdf/opentdf
   const cipherText = await client.encrypt(plainText);
   const clearText = await client.decrypt(cipherText);
 ```
-### Examples
-
-Review examples to see how to integrate. See [Examples](https://github.com/opentdf/opentdf/tree/main/examples)
 
 ## Distribute
 
@@ -58,3 +55,4 @@ nvm use
 make test
 make start
 ```
+

scripts/demo-evironment.sh

@@ -0,0 +1,112 @@
+#!/usr/bin/env bash
+
+set -x
+
+APP_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" >/dev/null && pwd)"
+ROOT_DIR="$(cd "${APP_DIR}/.." >/dev/null && pwd)"
+
+_run_platform() {
+  git clone https://github.com/opentdf/platform.git
+  cd platform
+  # TODO Modify docker-compose.yaml as follows:
+  #    KC_HOSTNAME_PORT: "65432"
+  docker compose up -d --wait --wait-timeout 240
+  .github/scripts/init-temp-keys.sh
+
+  # TODO Modify opentdf-example.yaml as follows:
+  #    KC_HOSTNAME_PORT: "65432"
+  cp opentdf-example.yaml opentdf.yaml
+  go run ./service provision keycloak
+}
+
+_wait-for() {
+  echo "[INFO] In retry loop for quickstarted opentdf backend..."
+  limit=5
+  for i in $(seq 1 $limit); do
+    if curl --show-error --fail --insecure http://localhost:8080; then
+      return 0
+    fi
+    if [[ $i == "$limit" ]]; then
+      echo "[WARN] Breaking _wait-for loop as we are at limit"
+      break
+    fi
+    sleep_for=$((10 + i * i * 2))
+    echo "[INFO] retrying in ${sleep_for} seconds... ( ${i} / $limit ) ..."
+    sleep ${sleep_for}
+  done
+  echo "[ERROR] Couldn't connect to opentdf backend"
+  exit 1
+}
+
+_init_server() {
+  output=$(mktemp)
+  if ! cd "${WEB_APP_DIR}"; then
+    echo "[ERROR] unable to cd ${WEB_APP_DIR}"
+    exit 2
+  fi
+  npm uninstall @opentdf/client
+  if ! npm ci; then
+    echo "[ERROR] Couldn't ci web-app"
+    exit 2
+  fi
+  if ! npm i "../lib/opentdf-client-${app_version}.tgz"; then
+    ls -ls ../lib/
+    echo "[ERROR] Couldn't install @opentdf/client tarball"
+    return 1
+  fi
+  npm run dev &>"$output" &
+  server_pid=$!
+  echo "Server pid: $server_pid"
+  echo "Output: $output"
+  echo "Wait:"
+  limit=5
+  for i in $(seq 1 $limit); do
+    if grep -q -i 'ready' "$output"; then
+      return 0
+    fi
+    if ! ps $server_pid >/dev/null; then
+      echo "The server died" >&2
+      cat "${output}"
+      exit 1
+    fi
+    if [[ $i == "$limit" ]]; then
+      echo "[WARN] Breaking _init_server loop after ${limit} iterations"
+      cat "${output}"
+      break
+    fi
+    sleep_for=$((5 + i * i * 2))
+    echo "[INFO] retrying in ${sleep_for} seconds... ( ${i} / $limit ) ..."
+    sleep ${sleep_for}
+  done
+}
+
+if ! _init_server; then
+  echo "[ERROR] Couldn't run web app server"
+  exit 2
+fi
+
+if ! _wait-for; then
+  exit 1
+fi
+
+if ! cd "${WEB_APP_DIR}"; then
+  echo "[ERROR] Couldn't cd to web-app dir, [${WEB_APP_DIR}]"
+  exit 2
+fi
+
+if ! cd tests; then
+  echo "[ERROR] Couldn't open web integration tests folder"
+  exit 2
+fi
+
+if ! npm i; then
+  echo "[ERROR] Unable to install integration tests deps"
+  exit 2
+fi
+
+if ! npx playwright install --with-deps; then
+  echo "[ERROR] Unable to install playwright"
+  exit 2
+fi
+
+npm test

web-app/src/App.tsx

@@ -30,8 +30,8 @@ function decryptedFileExtension(encryptedFileName: string): string {
 }
 
 const oidcClient = new OidcClient(
-  'http://localhost:65432/auth/realms/tdf',
-  'browsertest',
+  'http://localhost:65432/auth/realms/opentdf',
+  'opentdf',
   'otdf-sample-web-app'
 );
 

web-app/vite.config.ts

@@ -15,8 +15,8 @@ export default defineConfig({
   server: {
     port: 65432,
     proxy: {
-      '/api': 'http://localhost:5432',
-      '/auth': 'http://localhost:5432',
+      '/kas': 'http://localhost:5432',
+      '/auth': 'http://localhost:8888',
     },
   },
 });