Update documentation with deploy script and other minor changes

[SpaceFace02]

Added deploy script + minor changes

Summary by Sourcery

Update the getting started guide to document a full one-shot deployment flow and required environment/setup steps for creating and using a kind-based cluster with the operator.

Enhancements:

• Add a documented one-shot deploy bash script that automates cluster creation, KubeVirt and operator installation, and a sample VM deployment for quick end-to-end testing.

Documentation:

• Expand the getting started guide with required environment variables, cluster cleanup and setup steps, KubeVirt installation, cluster readiness checks, and references to a new one-shot deploy script.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: SpaceFace02

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[sourcery-ai]

Reviewer's Guide

Updates the getting-started documentation to include explicit environment setup, cluster lifecycle steps, KubeVirt installation, and a new one-shot deployment script for quickly standing up a test environment.

Flow diagram for one-shot deploy script in getting-started guide

flowchart TD
  A[Start one-shot deploy script] --> B[Set environment exports
CONTAINER_CLI, RUNTIME
AK_REGISTRATION_ADDR
TRUSTEE_ADDR
REGISTRY]
  B --> C[make cluster-down]
  C --> D[make cluster-up]
  D --> E[make install-kubevirt]
  E --> F[make push]
  F --> G[make manifests]
  G --> H[make install]
  H --> I[kubectl -n trusted-execution-clusters get po,svc]
  I --> J[sleep 10m]
  J --> K[examples/create-ignition-secret.sh
examples/ignition-coreos.json
coreos-ignition-secret]
  K --> L[kubectl apply -f examples/vm-coreos-ign.yaml]
  L --> M[End]

Loading

File-Level Changes

Change	Details	Files
Clarified environment setup and cluster lifecycle steps for Kind-based installations.	Documented the need to set CONTAINER_CLI alongside RUNTIME for container runtime configuration. Added explicit instruction to tear down any existing cluster with make cluster-down before creating a new one. Separated and clarified the step for bringing the cluster up using make cluster-up.	docs/usage/getting-started-guide.md
Expanded operator installation instructions with KubeVirt installation, readiness waiting, and cluster status checks.	Added a step to install KubeVirt via make install-kubevirt before installing the operator. Introduced an explicit wait (sleep 10m) for cluster readiness after installation. Documented how to inspect operator-related resources with a kubectl get po,svc command in the target namespace. Added a forward reference to a one-shot deploy script section for quicker installs once the manual process is understood.	docs/usage/getting-started-guide.md
Added a one-shot deploy bash script to automate the full local deployment flow for the trusted cluster operator.	Defined environment exports for Kind (CONTAINER_CLI, RUNTIME) and operator configuration (AK_REGISTRATION_ADDR, TRUSTEE_ADDR, REGISTRY). Automated cluster cleanup and recreation including KubeVirt installation using make targets. Automated operator build/push, manifest generation, and installation using make targets. Automated post-installation checks, readiness wait, and creation of a sample VM via ignition secret and VM manifest application.	docs/usage/getting-started-guide.md

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

Hey - I've found 3 issues, and left some high level feedback:

• The one-shot deploy script currently relies on a hardcoded sleep 10m; consider replacing this with a readiness check (e.g., kubectl wait or checking specific pods) so the script fails fast if the cluster or operator never becomes ready.
• There are a few small typos in the new content (e.g., Kube-virt vs KubeVirt, oparator exports, deplyoed) that should be corrected for clarity and consistency.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- The one-shot deploy script currently relies on a hardcoded `sleep 10m`; consider replacing this with a readiness check (e.g., `kubectl wait` or checking specific pods) so the script fails fast if the cluster or operator never becomes ready.
- There are a few small typos in the new content (e.g., `Kube-virt` vs `KubeVirt`, `oparator exports`, `deplyoed`) that should be corrected for clarity and consistency.

## Individual Comments

### Comment 1
<location path="docs/usage/getting-started-guide.md" line_range="91" />
<code_context>
 ```
 This example works with KubeVirt when the KBS is reachable using the pod networking.

+Make sure Kube-virt is also installed before trying to install the operator and testing functionality.
+```console
+make install-kubevirt
</code_context>
<issue_to_address>
**suggestion (typo):** Use the correct project name capitalization (KubeVirt).

Also remove the hyphen so it matches the upstream spelling.

```suggestion
Make sure KubeVirt is also installed before trying to install the operator and testing functionality.
```
</issue_to_address>

### Comment 2
<location path="docs/usage/getting-started-guide.md" line_range="115" />
<code_context>
+Refer to the one-shot deploy script at the end of this README for a quick install once you've understood the process.
+
 Further customization of the project can be controlled with the following env variables:
 + NAMESPACE: sets the namespace where the operator will be deplyoed
 + PLATFORM: use during the installation to configure the platform where the operator will be deployed (`kind` or `openshift`)
</code_context>
<issue_to_address>
**issue (typo):** Fix the typo in "deplyoed".

In the NAMESPACE description, update the word to "deployed".

```suggestion
+ NAMESPACE: sets the namespace where the operator will be deployed
```
</issue_to_address>

### Comment 3
<location path="docs/usage/getting-started-guide.md" line_range="176" />
<code_context>
+export CONTAINER_CLI=docker
+export RUNTIME=docker
+
+# oparator exports
+export AK_REGISTRATION_ADDR=attestation-key-register.trusted-execution-clusters.svc.cluster.local
+export TRUSTEE_ADDR=kbs-service.trusted-execution-clusters.svc.cluster.local
</code_context>
<issue_to_address>
**issue (typo):** Fix the misspelling of "operator" in this comment.

Currently spelled "oparator"; please correct it to "operator".

```suggestion
# operator exports
```
</issue_to_address>

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[SpaceFace02]

@Jakob-Naucke For some reason I cannot add reviewers, unsure whether its a permission issue. Is /cc the correct way?

[SpaceFace02]

/cc @Jakob-Naucke

[SpaceFace02]

/cc @alicefr

[Jakob-Naucke]

Thank you for the improvements! Some small comments.

[Jakob-Naucke]

Building should work fine on Podman -- did you find this to be necessary?

[SpaceFace02]

There is a line in the guide saying:

Kind can be used with docker or podman. Although, we set podman as default, right now there are some networking issues, therefore, the suggested runtime to use is docker at the moment. The runtime can be configured with:

So I went ahead and set default of runtime and container_cli to docker.

If the aforementioned issue is resolved, I'll change it to podman/CRI agnostic.

[Jakob-Naucke]

Ah yes. CONTAINER_CLI is really just used for building and pushing, but this deserves clarification so let's maybe remove the paragraph but put this in its place:

If you require a non-Podman engine for building and pushing images, you can override it with the `$CONTAINER_CLI` variable.

[SpaceFace02]

building and pushing can be either podman or docker, but for the runtime env variable? That has to be docker due to networking issues on podman?

[Jakob-Naucke]

Exactly, that's what the paragraph just above is about

[Jakob-Naucke]

I think it's good to have it in the one-shot but this install guide could be used for non-KubeVirt too.

[alicefr]

do we really need to put a sleep in the doc?

[alicefr]

Something we could add is a Ready Condition in the TEC CR and wait for it. @Jakob-Naucke WDYT?

[alicefr]

Instead of putting a script in the doc, please commit it in the code

[alicefr]

I don't think this script is necessary the steps are described in the guide and depending on what the users want to achieve they might skip certain steps here

[alicefr]

what I don't quite like of this script is that it always tears down the cluster while the cluster installation is necessary only once. You can run multiple times make install if you make some changes. I would simply discard this script

[alicefr]

I would remove the script from the guide and therefore this sentence