A Kubernetes operator designed to deploy and manage containerized frontend applications in the Red Hat Insights (consoledot) ecosystem.
Comprehensive documentation is available to help you get started and configure the Frontend Operator:
-
FrontendEnvironment Configuration Guide - Complete guide for creating and configuring FrontendEnvironment custom resources
- Step-by-step instructions for basic and advanced configurations
- Common use cases and practical examples
- Troubleshooting guide
- Integration with Bonfire for ephemeral deployments
-
API Reference - Complete API specification for all custom resources
- Detailed field descriptions for FrontendEnvironment and Frontend resources
- Validation requirements and best practices
- Cross-references to configuration guides
-
Documentation Index - Documentation landing page with navigation to all guides
See the Local Development section below for instructions on setting up the operator for local development.
- CONTRIBUTING.md - Development workflow, commit conventions, PR guidelines, CI checks
- AGENTS.md - Onboarding guide for AI-assisted development: project conventions, structure overview, and documentation index
- Architecture - System design, controller flow, CRD design decisions, key subsystems
- Testing Guidelines - Unit test patterns, e2e test conventions, CI checks
- Operator Development Guidelines - CRD types, reconciliation flow, ConfigMap generation, pushcache jobs
The Frontend Operator is already running in the Consoledot Ephemeral and Dev Clusters — you do not need to deploy it yourself. To use it, you simply apply a Frontend custom resource to a namespace you manage.
Bonfire is the consoledot tool for deploying applications into ephemeral namespaces. It is not used to deploy the Frontend Operator itself.
To deploy your app into an ephemeral namespace where the operator is already running:
bonfire deploy $MYAPP --frontends true -d 8hIf your app does not have an entry in app-interface yet, reserve a namespace and apply your Frontend resource manually:
bonfire namespace reserve
oc apply -f $My-Frontend-CRD.yaml -n $NSFor detailed configuration options and examples, see the FrontendEnvironment Configuration Guide.
If you are running a full app stack locally — including backend services managed by Clowder — you will need both operators running in your local cluster. See the Clowder repo for setup instructions. Once Clowder's CRDs are installed, apply the example ClowdEnvironment:
oc apply -f examples/clowdenvironment.yamlNote: We only recommend this method for local development on the operator itself.
Please use the above section to develop an app that depends on this operator.
You need to run kubernetes locally, we recommend minikube.
You will also need the OpenShift CLI (oc) installed, as the resource commands use oc rather than kubectl.
The operator creates Ingress resources (defaulting to the nginx ingress class) for each Frontend and for the reverse proxy. Enable the ingress addon if you want deployed frontends to be accessible in the browser:
minikube addons enable ingress# Create the `boot` and `env-boot` namespaces (also regenerates manifests):
make create-namespaces
# Install CRDs and example resources:
make install-resources
# Run (defaults to Info log level, use --log-level -1 for Debug)
make run-local
The operator supports the following log levels via --log-level: -1 (Debug), 0 (Info), 1 (Warn), 2 (Error). make run-local defaults to Info.
If you make changes to the CRDs make sure to install the resources and run again.
Create .vscode/launch.json and put this in that file:
{
"version": "0.2.0",
"configurations": [
{
"name": "Debug Operator",
"type": "go",
"request": "launch",
"mode": "auto",
"program": "${workspaceFolder}/",
"args": [
"--metrics-bind-address", ":9090",
"--health-probe-bind-address", ":9091",
]
}
]
}Once that is saved you'll see "Debug Operator" in the launch menu in VS Code. Also, before running in VS Code make sure you have created the boot namespace and install the resources as shown above.
If you want to access the app from your computer, you have to update /etc/hosts where the IP is the one from minikube ip
192.168.99.102 env-boot
192.168.99.102 env-boot-auth
Once you update it you can access the app from https://env-boot/insights/inventory
The pushcache job or valpop copies frontend assets to an S3 bucket (MinIO locally). It is enabled by default in examples/feenvironment.yaml using the valpop image from the Red Hat image registry.
If you enable push cache (enablePushCache: true), you must also set valpopImage in the FrontendEnvironment, otherwise the operator will error on reconciliation:
spec:
enablePushCache: true
valpopImage: quay.io/redhat-services-prod/hcc-platex-services-tenant/valpop:latestFor local development, MinIO is used as the S3 backend. The bucket secrets are stored under examples/minio-bucket-secret.yaml.
The reverse proxy functionality allows you to deploy a Caddy-based reverse proxy that serves frontend assets from an S3-compatible object storage backend. This is part of an initiative to implement an object storage-based push cache for historical and current frontend assets.
The reverse proxy uses the frontend-asset-proxy container image and supports:
- Reverse proxying requests to S3/Minio
- SPA routing support by serving the main application entrypoint for non-existent asset paths
- Configurable runtime behavior via environment variables
- Health checks via
/healthzendpoint
To enable the reverse proxy for a frontend environment, configure the following in your FrontendEnvironment:
spec:
reverseProxyImage: quay.io/redhatinsights/frontend-asset-proxy:latest
reverseProxySPAEntrypointPath: /index.html # optional, defaults to /index.html
reverseProxyLogLevel: INFO # optional, defaults to DEBUGThis will create a deployment and service for the reverse proxy, making it accessible within the cluster.
Kuttl is an end to end testing framework for Kubernetes operators. We hope to provide full test coverage for the Frontend Operator with kuttl.
To run the kuttl tests you'll need to be running the operator in minikube as shown in the directions above. You also need to make sure you have kuttl installed on your machine.
Once all that is in place you can run the kuttl tests:
$ make kuttlFriendly reminder: make sure you have the frontend operator runnning (make run-local) before you run the tests or they will never work and you'll go nuts trying to figure out why.
If you want to run a single test you can do this:
$ kubectl kuttl test --config kuttl-config.yml ./tests/e2e --test bundleswhere bundles is the name of the directory that contains the test you want to run.