OpenShift CI Pipeline

Overlay Documentation

This page covers writing tests within rhdh-plugin-export-overlays. For using rhdh-e2e-test-utils in external projects, see the Guide.

This tutorial explains how E2E tests integrate with the OpenShift CI pipeline in the overlay repository.

Overview

E2E tests in the overlay repository run automatically via OpenShift CI when:

Pull requests are opened or updated
Changes are pushed to the main branch

The CI system automatically:

Builds OCI images from PR changes (via /publish command)
Deploys RHDH to an OpenShift cluster using those images
Runs the E2E tests
Reports results on the PR

e2e-ocp-helm Job

The e2e-ocp-helm job runs Helm-based E2E tests on an OpenShift cluster.

When It Runs

Automatically after /publish completes successfully (and the workspace contains e2e-tests)
Manually via PR comment:

/test e2e-ocp-helm

Where to Find the Playwright Report

Open the ci/prow/e2e-ocp-helm check on the PR
Navigate to the Prow job page
Open:

artifacts/e2e-ocp-helm/redhat-developer-rhdh-plugin-export-overlays-ocp-helm/artifacts/playwright-report/index.html

PR OCI Image Builds

When testing a PR, the plugins need to be built into OCI images that RHDH can use. This is handled through the /publish command.

The /publish Command

To build OCI images from your PR, add this comment to your PR:

/publish

This triggers a workflow that:

Builds the plugins in your PR
Pushes OCI images to ghcr.io/redhat-developer/rhdh-plugin-export-overlays
Tags images with pr_{PR_NUMBER}__{version} format

Automatic OCI URL Replacement

When GIT_PR_NUMBER is set (in CI or locally):

The package reads source.json and plugins-list.yaml
Fetches plugin versions from the source repo's package.json files
Replaces plugin paths with OCI URLs automatically

In CI: This happens automatically for all PR test runs. It doesn't matter what package format you use in your configuration - it will be replaced with the PR's OCI images.

Locally: You can test PR builds by setting GIT_PR_NUMBER:

bash

# Test locally using PR 1845's published OCI images
export GIT_PR_NUMBER=1845
yarn test

See Local OCI Testing for the full local workflow and required files.

What You Don't Need to Do

The OCI URL replacement is automatic. You don't need to:

Specify OCI URLs in your configuration files
Handle different configurations for local vs CI
Modify any files after running /publish

Required Files for OCI Generation

These files must exist in the workspace root when GIT_PR_NUMBER is set:

File	Content
`source.json`	`{"repo": "...", "repo-ref": "commit-sha"}`
`plugins-list.yaml`	List of plugin paths (e.g., `plugins/tech-radar:`)

In CI, these are generated automatically. For local testing with GIT_PR_NUMBER, you may need to copy them from a CI run.

Strict Validation

OCI URL generation is strict - deployment will fail if required files are missing or version fetching fails. This prevents builds from silently falling back to local paths.

Secrets in CI

Vault setup and usage details are documented here: Using Secrets.

See Configuration Files - rhdh-secrets.yaml for more details on the secrets flow.

CI Environment Variables

The following environment variables are available during CI execution:

Variable	Description
`K8S_CLUSTER_ROUTER_BASE`	Cluster router base domain
`RHDH_VERSION`	RHDH version to deploy
`INSTALLATION_METHOD`	`helm` or `operator`
`CI`	Set to `true` in CI environment
`GIT_PR_NUMBER`	PR number (enables OCI URL generation)
`JOB_NAME`	CI job name (if contains `periodic-`, disables metadata)
`VAULT_*`	All Vault secrets with this prefix

Plugin Metadata Variables

Variable	Effect
`GIT_PR_NUMBER`	Enables OCI URL generation for PR builds
`RHDH_SKIP_PLUGIN_METADATA_INJECTION`	Disables all metadata handling
`JOB_NAME`	If contains `periodic-`, disables metadata handling

See Environment Variables Reference for details.

Configuration Behavior in CI

Best Practice

Don't create dynamic-plugins.yaml. The package auto-generates configuration from plugin metadata, which means all plugins in the workspace are enabled by default. For PR builds, local paths are automatically replaced with OCI URLs.

See Configuration Files for complete details on:

Debugging CI Failures

View CI Logs

CI logs are available on the PR. Look for:

Deployment logs
Test execution output
Screenshots and traces (uploaded as artifacts)

Common CI Issues

Secrets not available:

Verify the secret has VAULT_ prefix
Check Vault path has correct annotations
Ensure you have access to the Vault path

Deployment timeout:

Check cluster resources
Verify RHDH version is valid
Review deployment logs for errors

Tests pass locally but fail in CI:

Check for hardcoded values that work locally
Verify all required secrets are in Vault
Ensure env vars are properly prefixed with VAULT_

Local Testing Before CI

Before pushing to CI, test locally:

bash

cd workspaces/<plugin>/e2e-tests

# Set required Vault secrets locally
export VAULT_MY_SECRET="local-value"

# Run tests
yarn test

Running Tests Locally - Local development workflow
Environment Variables - All supported variables
Configuration Files - YAML configuration
Troubleshooting - Common issues

OpenShift CI Pipeline ​

Overview ​

e2e-ocp-helm Job ​

When It Runs ​

Where to Find the Playwright Report ​

PR OCI Image Builds ​

The /publish Command ​

Automatic OCI URL Replacement ​

What You Don't Need to Do ​

Required Files for OCI Generation ​

Secrets in CI ​

CI Environment Variables ​

Plugin Metadata Variables ​

Configuration Behavior in CI ​

Debugging CI Failures ​

View CI Logs ​

Common CI Issues ​

Local Testing Before CI ​

Related Pages ​