Create the initial version of the Penpot charm (#4)

.github/workflows/publish_charm.yaml

@@ -12,3 +12,5 @@ jobs:
     secrets: inherit
     with:
       channel: latest/edge
+      charmcraft-channel: latest/edge
+      integration-test-workflow-file: test.yaml

.github/workflows/test.yaml

@@ -8,5 +8,15 @@ jobs:
     uses: canonical/operator-workflows/.github/workflows/test.yaml@main
     secrets: inherit
     with:
+      charmcraft-channel: latest/edge
+      self-hosted-runner: true
+      self-hosted-runner-label: "edge"
+  integration-tests:
+    uses: canonical/operator-workflows/.github/workflows/integration_test.yaml@main
+    secrets: inherit
+    with:
+      channel: 1.28-strict/stable
+      charmcraft-channel: latest/edge
+      juju-channel: 3.4/stable
       self-hosted-runner: true
       self-hosted-runner-label: "edge"

.licenserc.yaml

@@ -9,15 +9,29 @@ header:
     - '**'
   paths-ignore:
     - '.github/**'
+    - '**/.gitkeep'
+    - '**/*.cfg'
+    - '**/*.conf'
+    - '**/*.j2'
     - '**/*.json'
     - '**/*.md'
+    - '**/*.rule'
+    - '**/*.tmpl'
     - '**/*.txt'
+    - '.codespellignore'
+    - '.dockerignore'
+    - '.flake8'
     - '.jujuignore'
     - '.gitignore'
     - '.licenserc.yaml'
+    - '.trivyignore'
+    - '.woke.yaml'
+    - '.woke.yml'
     - 'CODEOWNERS'
+    - 'icon.svg'
     - 'LICENSE'
-    - 'trivy.yaml'
     - 'pyproject.toml'
+    - 'trivy.yaml'
     - 'zap_rules.tsv'
+    - 'lib/**'
   comment: on-failure

.trivyignore

@@ -0,0 +1,15 @@
+# penpot
+CVE-2022-31159
+CVE-2020-36518
+CVE-2021-46877
+CVE-2022-42003
+CVE-2022-42004
+CVE-2022-25647
+CVE-2024-5971
+CVE-2024-6162
+CVE-2023-5685
+CVE-2021-37714
+CVE-2022-1471
+CVE-2024-21634
+# nodejs
+CVE-2024-37890

.woke.yaml

@@ -0,0 +1,2 @@
+ignore_files:
+  - lib/charms/redis_k8s/v0/redis.py

charmcraft.yaml

@@ -1,17 +1,6 @@
 # Copyright 2024 Canonical Ltd.
 # See LICENSE file for licensing details.
 
-type: charm
-bases:
-  - build-on:
-    - name: ubuntu
-      channel: "22.04"
-      architectures: [amd64]
-    run-on:
-    - name: ubuntu
-      channel: "24.04"
-      architectures: [amd64]
-
 name: penpot
 title: Penpot
 description: |
@@ -24,3 +13,77 @@ links:
   source: https://github.com/canonical/penpot-operator
   contact:
     - https://launchpad.net/~canonical-is-devops
+
+config:
+  options:
+    smtp-from-address:
+      description: >-
+        The default "from" address penpot uses to send emails.
+        If unspecified, it is automatically derived from the SMTP integration, typically `<user>@<domain>`, 
+        or `no-reply@<domain>` if the SMTP username is not provided in the SMTP integration.
+        For more detailed information on SMTP integration, visit https://charmhub.io/smtp-integrator/configuration.
+      type: string
+
+actions:
+  create-profile:
+    description: Create a new penpot user.
+    params:
+      email:
+        type: string
+      fullname:
+        type: string
+
+  delete-profile:
+    description: Delete an existing penpot user.
+    params:
+      email:
+        type: string
+
+peers:
+  penpot_peer:
+    interface: penpot_peer
+
+requires:
+  postgresql:
+    interface: postgresql_client
+    limit: 1
+  redis:
+    interface: redis
+    limit: 1
+  s3:
+    interface: s3
+    limit: 1
+  ingress:
+    interface: ingress
+    limit: 1
+  smtp:
+    interface: smtp
+    limit: 1
+    optional: true
+
+resources:
+  penpot-image:
+    type: oci-image
+    description: OCI image for penpot
+
+containers:
+  penpot:
+    resource: penpot-image
+
+type: charm
+base: [email protected]
+build-base: [email protected]
+platforms:
+  amd64:
+
+parts:
+  charm:
+    build-packages:
+      - cargo
+      - libffi-dev
+      - libssl-dev
+      - pkg-config
+      - rustc
+
+assumes:
+  - juju >= 3.4