Merge pull request #83509 from shdeshpa07/OADP-4878-install-section-ibmcloud

jab-rh · web-flow · commit 7a403e521b17 · 2024-11-12T17:46:56.000-05:00
OADP 4878 Added install section for IBM Cloud
diff --git a/_attributes/common-attributes.adoc b/_attributes/common-attributes.adoc
@@ -265,6 +265,8 @@ endif::[]
 // IBM Cloud Bare Metal (Classic)
 :ibm-cloud-bm: IBM Cloud(R) Bare Metal (Classic)
 :ibm-cloud-bm-title: IBM Cloud Bare Metal (Classic)
+//IBM Cloud Object Storage (COS)
+:ibm-cloud-object-storage: IBM Cloud Object Storage (COS)
 // IBM Power
 :ibm-power-name: IBM Power(R)
 :ibm-power-title: IBM Power
diff --git a/_topic_maps/_topic_map.yml b/_topic_maps/_topic_map.yml
@@ -3452,6 +3452,8 @@ Topics:
       File: oadp-installing-operator
     - Name: Configuring OADP with AWS S3 compatible storage
       File: installing-oadp-aws
+    - Name: Configuring OADP with IBM Cloud
+      File: installing-oadp-ibm-cloud
     - Name: Configuring OADP with Azure
       File: installing-oadp-azure
     - Name: Configuring OADP with GCP
diff --git a/backup_and_restore/application_backup_and_restore/installing/installing-oadp-aws.adoc b/backup_and_restore/application_backup_and_restore/installing/installing-oadp-aws.adoc
@@ -11,8 +11,6 @@ toc::[]
 
 You install the OpenShift API for Data Protection (OADP) with Amazon Web Services (AWS) S3 compatible storage by installing the OADP Operator. The Operator installs link:https://{velero-domain}/docs/v{velero-version}/[Velero {velero-version}].
 
-{ibm-cloud-name} S3 is supported as an AWS S3 compatible backup storage provider.
-
 include::snippets/oadp-mtc-operator.adoc[]
 
 You configure AWS for Velero, create a default `Secret`, and then install the Data Protection Application. For more details, see xref:../../..//backup_and_restore/application_backup_and_restore/installing/oadp-installing-operator.adoc#oadp-installing-operator-doc[Installing the OADP Operator].
diff --git a/backup_and_restore/application_backup_and_restore/installing/installing-oadp-ibm-cloud.adoc b/backup_and_restore/application_backup_and_restore/installing/installing-oadp-ibm-cloud.adoc
@@ -0,0 +1,34 @@
+:_mod-docs-content-type: ASSEMBLY
+[id="installing-oadp-ibm-cloud"]
+= Configuring the {oadp-full} with {ibm-cloud-title}
+include::_attributes/common-attributes.adoc[]
+:context: installing-oadp-ibm-cloud
+:installing-oadp-ibm-cloud:
+:credentials: cloud-credentials
+
+
+toc::[]
+
+You install the {oadp-first} Operator on an {ibm-cloud-title} cluster to back up and restore applications on the cluster. You configure {ibm-cloud-object-storage} to store the backups.
+
+// configuring the IBM COS instance
+include::modules/configuring-ibm-cos.adoc[leveloffset=+1]
+// include the module for creating default secret
+include::modules/oadp-creating-default-secret.adoc[leveloffset=+1]
+// include the module for creating custom secret
+include::modules/oadp-secrets-for-different-credentials.adoc[leveloffset=+1]
+// include the DPA module
+include::modules/oadp-installing-dpa-1-3.adoc[leveloffset=+1]
+// include the module for setting Velero CPU and memory resource allocations 
+include::modules/oadp-setting-resource-limits-and-requests.adoc[leveloffset=+1]
+// include the node agent config module
+include::modules/oadp-configuring-node-agents.adoc[leveloffset=+1]
+// include the module for client burst and qps config
+include::modules/oadp-configuring-client-burst-qps.adoc[leveloffset=+1]
+// include the module for configuring multiple BSL
+include::modules/oadp-configuring-dpa-multiple-bsl.adoc[leveloffset=+1]
+// include the module for disabling node agent in the DPA
+include::modules/oadp-about-disable-node-agent-dpa.adoc[leveloffset=+1]
+
+:!installing-oadp-ibm-cloud:
+
diff --git a/modules/configuring-ibm-cos.adoc b/modules/configuring-ibm-cos.adoc
@@ -0,0 +1,145 @@
+// Module included in the following assemblies:
+//
+// * backup_and_restore/application_backup_and_restore/installing/installing-oadp-ibm-cloud.adoc
+
+:_mod-docs-content-type: PROCEDURE
+[id="configuring-ibm-cos_{context}"]
+= Configuring the COS instance
+
+You create an {ibm-cloud-object-storage} instance to store the {oadp-short} backup data. After you create the COS instance, configure the `HMAC` service credentials.
+
+.Prerequisites
+
+* You have an {ibm-cloud-title} Platform account.
+* You installed the link:https://cloud.ibm.com/docs/cli?topic=cli-getting-started[{ibm-cloud-title} CLI].
+* You are logged in to {ibm-cloud-title}.
+
+.Procedure
+
+. Install the {ibm-cloud-object-storage} plugin by running the following command:
++
+[source,terminal]
+----
+$ ibmcloud plugin install cos -f
+----
+
+. Set a bucket name by running the following command:
++
+[source,terminal]
+----
+$ BUCKET=<bucket_name>
+----
+
+. Set a bucket region by running the following command:
++
+[source,terminal]
+----
+$ REGION=<bucket_region> <1>
+----
+<1> Specify the bucket region, for example, `eu-gb`.
+
+. Create a resource group by running the following command:
++
+[source,terminal]
+----
+$ ibmcloud resource group-create <resource_group_name>
+----
+
+. Set the target resource group by running the following command:
++
+[source,terminal]
+----
+$ ibmcloud target -g <resource_group_name>
+----
+
+. Verify that the target resource group is correctly set by running the following command: 
++
+[source,terminal]
+----
+$ ibmcloud target
+----
++
+.Example output
++
+[source,yaml]
+----
+API endpoint:     https://cloud.ibm.com
+Region:           
+User:             test-user
+Account:          Test Account (fb6......e95) <-> 2...122
+Resource group:   Default
+----
++
+In the example output, the resource group is set to `Default`.
+
+. Set a resource group name by running the following command:
++
+[source,terminal]
+----
+$ RESOURCE_GROUP=<resource_group> <1>
+----
+<1> Specify the resource group name, for example, `"default"`.
+
+. Create an {ibm-cloud-title} `service-instance` resource  by running the following command:
++
+[source,terminal]
+----
+$ ibmcloud resource service-instance-create \
+<service_instance_name> \// <1>
+<service_name> \// <2>
+<service_plan> \// <3>
+<region_name> // <4>
+----
+<1> Specify a name for the `service-instance` resource.
+<2> Specify the service name. Alternatively, you can specify a service ID.
+<3> Specify the service plan for your {ibm-cloud-title} account.
+<4> Specify the region name. 
++
+.Example command
++
+[source,terminal]
+----
+$ ibmcloud resource service-instance-create test-service-instance cloud-object-storage \ // <1>
+standard \
+global \
+-d premium-global-deployment // <2>
+----
+<1> The service name is `cloud-object-storage`.
+<2> The `-d` flag specifies the deployment name.
+
+. Extract the service instance ID by running the following command:
++
+[source,terminal]
+----
+$ SERVICE_INSTANCE_ID=$(ibmcloud resource service-instance test-service-instance --output json | jq -r '.[0].id')
+----
+
+. Create a COS bucket by running the following command: 
++
+[source,terminal]
+----
+$ ibmcloud cos bucket-create \//
+--bucket $BUCKET \//
+--ibm-service-instance-id $SERVICE_INSTANCE_ID \//
+--region $REGION 
+----
++
+Variables such as `$BUCKET`, `$SERVICE_INSTANCE_ID`, and `$REGION` are replaced by the values you set previously.
+
+. Create `HMAC` credentials by running the following command.
++
+[source,terminal]
+----
+$ ibmcloud resource service-key-create test-key Writer --instance-name test-service-instance --parameters {\"HMAC\":true}
+----
+
+. Extract the access key ID and the secret access key from the `HMAC` credentials and save them in the `credentials-velero` file. You can use the `credentials-velero` file to create a `secret` for the backup storage location. Run the following command:
++
+[source,terminal]
+----
+$ cat > credentials-velero << __EOF__
+[default]
+aws_access_key_id=$(ibmcloud resource service-key test-key -o json  | jq -r '.[0].credentials.cos_hmac_keys.access_key_id')
+aws_secret_access_key=$(ibmcloud resource service-key test-key -o json  | jq -r '.[0].credentials.cos_hmac_keys.secret_access_key')
+__EOF__
+----
diff --git a/modules/oadp-installing-dpa-1-3.adoc b/modules/oadp-installing-dpa-1-3.adoc
@@ -108,6 +108,46 @@ spec:
 <15> Specify the name of the `Secret` object that you created. If you do not specify this value, the default name, `{credentials}`, is used. If you specify a custom name, the custom name is used for the snapshot location. If your backup and snapshot locations use different credentials, create separate profiles in the `credentials-velero` file.
 endif::[]
 
+ifdef::installing-oadp-ibm-cloud[]
++
+[source,yaml,subs="attributes+"]
+----
+apiVersion: oadp.openshift.io/v1alpha1
+kind: DataProtectionApplication
+metadata:
+  namespace: openshift-adp
+  name: <dpa_name>
+spec:
+  configuration:
+    velero:
+      defaultPlugins:
+      - openshift
+      - aws
+      - csi
+  backupLocations:
+    - velero:
+        provider: aws # <1>
+        default: true
+        objectStorage:
+          bucket: <bucket_name> # <2>
+          prefix: velero
+        config:
+          insecureSkipTLSVerify: 'true'
+          profile: default
+          region: <region_name> # <3> 
+          s3ForcePathStyle: 'true'
+          s3Url: <s3_url> # <4>
+        credential:
+          key: cloud
+          name: cloud-credentials # <5>
+----
+<1> The provider is `aws` when you use {ibm-cloud-title} as a backup storage location.
+<2> Specify the {ibm-cloud-object-storage} bucket name.
+<3> Specify the COS region name, for example, `eu-gb`.
+<4> Specify the S3 URL of the COS bucket. For example, `http://s3.eu-gb.cloud-object-storage.appdomain.cloud`. Here, `eu-gb` is the region name. Replace the region name according to your bucket region. 
+<5> Defines the name of the secret you created by using the access key and the secret access key from the `HMAC` credentials.
+endif::[]
+
 ifdef::installing-oadp-azure[]
 +
 [source,yaml,subs="attributes+"]
diff --git a/modules/oadp-secrets-for-different-credentials.adoc b/modules/oadp-secrets-for-different-credentials.adoc
@@ -70,7 +70,7 @@ spec:
           profile: "volumeSnapshot"
 ----
 endif::[]
-ifdef::installing-oadp-azure,installing-oadp-gcp,installing-oadp-ocs,installing-oadp-mcg[]
+ifdef::installing-oadp-ibm-cloud,installing-oadp-azure,installing-oadp-gcp,installing-oadp-ocs,installing-oadp-mcg[]
 = Creating secrets for different credentials
 
 If your backup and snapshot locations use different credentials, you must create two `Secret` objects:
@@ -196,7 +196,7 @@ spec:
 <1> Specify the region, following the naming convention of the documentation of your object storage server.
 <2> Backup location `Secret` with custom name.
 endif::[]
-ifdef::installing-oadp-ocs[]
+ifdef::installing-oadp-ibm-cloud,installing-oadp-ocs[]
 +
 [source,yaml,subs="attributes+"]
 ----
