feat: Add Config Connector Solutions + project-hierarchy (GoogleCloudPlatform#598)

* copied samples from kcc

* ran kpt pkg init .

* Remove helper script from commit

* deleted create-setters from repo

* added untracked files

* made kpt directory seperate

* added setter for org-id

* created more setters, fixed descriptions

* rearraged directories for better kpt packaging

* added more setters

* rearranged directories again

* added script for two-step process, added placeholders and setter

* Config Connector README Update

* Replace script with README steps

* Redirect README links

* Change Kptfile descriptions, project setter

* Add Google licenses

* Consistent wording for main README

* README Nitfixes

* Fix License Links

* Config Connector YAML configurations

It makes sense for Config Connector YAML files to be
called 'configurations', right?

* Fix misnamed setter

* README - morgante feedback

* Fully qualify kpt package link

* match project-name setter to project-id

* Match folder-name to folder-id

* Remove redundant project-hierarchy setters

Co-authored-by: Thomas Rodgers <thomasrodgers@google.com>
Co-authored-by: Adam Ocsvari <ocsi@google.com>
Co-authored-by: Morgante Pell <morgantep@google.com>

Author: 4 people

README.md

@@ -12,6 +12,9 @@ The Cloud Foundation toolkit (henceforth, CFT) includes the following parts:
   single or multiple CFT-compliant config files - see:
   - The CFT source Python files (the `src/` directory)
   - The [CFT DM User Guide](dm/docs/userguide.md)
+- A growing set of sample [Config
+  Connector](https://cloud.google.com/config-connector/docs/overview)
+  YAML configurations - see [the solutions directory](config-connector/solutions/)
 
 In addition, the CFT repository includes a sample pipeline that enables running
 CFT deployment operations from Jenkins - see the

config-connector/solutions/README.md

@@ -0,0 +1,29 @@
+# Config Connector Solutions
+
+## Overview
+
+Config Connector Solutions provides best practice solutions
+to common cloud applications, formatted as YAML definitions
+for Config Connector CRDs. These YAMLs can be applied to
+clusters running [Config
+Connector](https://cloud.google.com/config-connector/docs/how-to/getting-started).
+
+## Structure
+
+Folders under this directory denote general solution areas.
+In each solution area folder, there are folders for each package
+& customization tool (currently only kpt), under which are nested all available solutions in
+that solution area and package format.
+
+## Usage
+
+### kpt
+
+Samples are consumable as [kpt
+packages](https://googlecontainertools.github.io/kpt/).
+Common targets for modification are provided kpt setters,
+and can be listed with `kpt cfg list-setters`.
+
+## License
+
+Apache 2.0 - See [LICENSE](/LICENSE) for more information.

config-connector/solutions/projects/kpt/README.md

@@ -0,0 +1,20 @@
+# Kpt Project Solutions
+
+## Installing kpt
+
+Follow the instructions on [the kpt
+GitHub](https://github.com/GoogleContainerTools/kpt).
+
+## Listing setters
+
+See which values are available for kpt to change
+`kpt cfg list-setters`
+
+## Setting setters
+
+`kpt cfg set DIR NAME VALUE --set-by NAME`
+
+## SEE ALSO
+
+Comprehensive documentation at
+[https://googlecontainertools.github.io/kpt/](https://googlecontainertools.github.io/kpt/).

config-connector/solutions/projects/kpt/project-hierarchy/Kptfile

@@ -0,0 +1,43 @@
+apiVersion: kpt.dev/v1alpha1
+kind: Kptfile
+metadata:
+  name: project-hierarchy
+packageMetadata:
+  shortDescription: Deploy a project under a folder within an organization
+openAPI:
+  definitions:
+    io.k8s.cli.setters.org-id:
+      description: organization ID for associated services
+      x-k8s-cli:
+        setter:
+          name: org-id
+          value: "${ORG_ID}"
+          setBy: PLACEHOLDER
+    io.k8s.cli.setters.project-id:
+      description: ID of project
+      x-k8s-cli:
+        setter:
+          name: project-id
+          value: project-hierarchy-project
+          setBy: package-default
+    io.k8s.cli.setters.folder-name:
+      description: name of folder
+      x-k8s-cli:
+        setter:
+          name: folder-name
+          value: project-hierarchy-folder
+          setBy: package-default
+    io.k8s.cli.setters.billing-account:
+      description: ID of billing account
+      x-k8s-cli:
+        setter:
+          name: billing-account
+          value: ${BILLING_ACCOUNT_ID?}
+          setBy: PLACEHOLDER
+    io.k8s.cli.setters.folder-number:
+      description: numeric GCP ID of folder
+      x-k8s-cli:
+        setter:
+          name: folder-number
+          value: "${FOLDER_NUMBER?}"
+          setBy: PLACEHOLDER

config-connector/solutions/projects/kpt/project-hierarchy/README.md

@@ -0,0 +1,90 @@
+Project Hierarchy
+==================================================
+
+# NAME
+
+  project-hierarchy
+
+# SYNOPSIS
+
+  Config Connector compatible YAML files to create
+  a folder in an organization, and a project
+  beneath it.
+
+# CONSUMPTION
+
+  Using [kpt](https://googlecontainertools.github.io/kpt/):
+
+  Run `kpt pkg get https://github.com/GoogleCloudPlatform/cloud-foundation-toolkit.git/config-connector/solutions/projects/kpt/project-hierarchy project-hierarchy`.
+
+# REQUIREMENTS
+
+  A working Config Connector cluster using a
+  service account with the following roles in
+  the organization:
+  - roles/resourcemanager.folderCreator
+  - roles/resourcemanager.projectCreator
+
+# USAGE
+
+  Replace the
+  `${BILLING_ACCOUNT_ID?}` and `${ORG_ID?}` values:
+
+  From within this directory, run
+  ```
+  kpt cfg set . billing-account VALUE
+  ```
+  and
+  ```
+  kpt cfg set . org-id VALUE
+  ```
+  replacing `VALUE` with your billing account
+  and organization ID respectively.
+
+  You will also need to reset the project ID,
+  since a project with the given ID already exists.
+  ```
+  kpt cfg set . project-id VALUE
+  ```
+
+
+  Currently, to create a project under a
+  folder, you must supply a numeric folder ID,
+  which is only available after the folder is
+  created. An issue outlining this shortfall in
+  Config Connector functionality is filed on the
+  project's GitHub,
+  https://github.com/GoogleCloudPlatform/k8s-config-connector/issues/104.
+
+
+  To be nested beneath it, the project still needs
+  a folder number. This can only be found after
+  creating the folder. You can do so with
+  ```
+  kubectl apply -f folder.yaml
+  ```
+
+  Wait for GCP to generate the folder.
+  ```
+  kubectl wait --for=condition=Ready -f folder.yaml
+  ```
+
+  Now extract the folder number.
+  ```
+  FOLDER_NUMBER=$(kubectl describe -f folder.yaml | grep Name:\ *folders\/ | sed "s/.*folders\///")
+  ```
+  You can set the folder number using the
+  following command:
+  ```
+  kpt cfg set . folder-number $FOLDER_NUMBER --set-by "README-instructions"
+  ```
+
+
+  Now you can fully apply this solution.
+  ```
+  kubectl apply -f .
+  ```
+
+# LICENSE
+
+Apache 2.0 - See [LICENSE](/LICENSE) for more information.

config-connector/solutions/projects/kpt/project-hierarchy/folder.yaml

@@ -0,0 +1,23 @@
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+apiVersion: resourcemanager.cnrm.cloud.google.com/v1beta1
+kind: Folder
+metadata:
+  annotations:
+    # Replace "${ORG_ID?}" with the numeric ID for your organization
+    cnrm.cloud.google.com/organization-id: "${ORG_ID}" # {"$ref":"#/definitions/io.k8s.cli.setters.org-id"}
+  name: project-hierarchy-folder # {"$ref":"#/definitions/io.k8s.cli.setters.folder-name"}
+spec:
+  displayName: project-hierarchy-folder # {"$ref":"#/definitions/io.k8s.cli.setters.folder-name"}

config-connector/solutions/projects/kpt/project-hierarchy/project.yaml

@@ -0,0 +1,26 @@
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+apiVersion: resourcemanager.cnrm.cloud.google.com/v1beta1
+kind: Project
+metadata:
+  annotations:
+    # Set this field after finding the folder number.
+    cnrm.cloud.google.com/folder-id: "${FOLDER_NUMBER?}" # {"$ref":"#/definitions/io.k8s.cli.setters.folder-number"}
+  name: project-hierarchy-project # {"$ref":"#/definitions/io.k8s.cli.setters.project-id"}
+spec:
+  name: project-hierarchy-project # {"$ref":"#/definitions/io.k8s.cli.setters.project-id"}
+  billingAccountRef:
+    # Replace "${BILLING_ACCOUNT_ID?}" with the numeric ID for your billing account
+    external: "${BILLING_ACCOUNT_ID?}" # {"$ref":"#/definitions/io.k8s.cli.setters.billing-account"}