Cleanup namespaces (#4985)

* Script for cleaning projects

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* adding script,function for cleaning projects

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* generify function

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* updated with comment

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* update script and use ioutil.writefile

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* file permission change to 0600

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* add labels and label checks

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* rebase typo fix

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* remove labels, add configmaps with data, team and type

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* use odo to create project

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* add team check for cleanup

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* remove namespace labeling

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* rebase

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

* fix lint error

Signed-off-by: anandrkskd <anandrkskd@gmail.com>

scripts/clean-old-namespace-from-cluster.sh

@@ -0,0 +1,47 @@
+#!/usr/bin/env sh
+# this scripts logins as kubeadmin and removes the namespaces that are more than oneday old.
+# this script is used in a kubernetes cronjob for PSI/IBM cloud openshift cluster.
+
+# TEAM_PROVIDED is used to check if the namespace belongs to that team or not 
+TEAM_PROVIDED=${TEAM_PROVIDED:-"odo"}
+
+# login as kubeadmin
+if [[ $CLUSTER_TYPE == "PSI" ]]; then
+     #PSI cluster login
+     oc login -u kubeadmin -p ${OCP4X_KUBEADMIN_PASSWORD} --insecure-skip-tls-verify ${OCP4X_API_URL}
+else
+     # Login to cluster in IBM Cloud using cluster API key
+     oc login -u ${IBM_OC_LOGIN_USER} -p ${IBMC_ADMIN_OCLOGIN_APIKEY} --server=${IBMC_OCP47_SERVER}
+fi
+
+# PROJECT_AND_TIME var will contain namespace and date with time seperated with `|`
+# PROJECT_AND_TIME is selected using labels app and team. e.g: app=test and team=odo
+# eg. cmd-push-test157kgb|2021-08-17T12:40:20Z
+PROJECT_AND_TIME=$(kubectl get namespace -o jsonpath='{range .items[*]}{.metadata.name}{"|"}{.metadata.creationTimestamp} {"\n"}{end}' | grep -v '^openshift\|^kube\|^default\|^ibm\|^calico\|^tigera\|^odo-operator-test')
+
+for PROJECT in ${PROJECT_AND_TIME}; do
+    IFS='|' read -r PRJ TIME <<<"$PROJECT" # seperate the Namespace and time of creation using IFS(Input Field Seperators) value `|`
+
+    CONFIGMAP=$(kubectl get configmaps -n $PRJ -o jsonpath='{range .items[*]}{.metadata.name}{"\n"}' | grep config-map-for-cleanup) # check if PROJECT contains configmap named 'config-map-for-cleanup'
+                                                                                                                                    # if not then the value of CONFIGMAP will be empty
+    if [[ ! -z $CONFIGMAP ]]; then
+
+        TEAMANDTYPE=$(kubectl get configmaps $CONFIGMAP -n $PRJ -o jsonpath='{.data.team}{"|"}{.data.type}') # fetch team and tyoe(testing) data from the configmap
+        IFS='|' read -r TEAM TYPE <<<"$TEAMANDTYPE"                                                          # seperate the TEAM and TYPE of creation using IFS(Input Field Seperators) value `|`
+
+        if [[ $TYPE -eq "testing" ]] &&  [[ $TEAM -eq $TEAM_PROVIDED ]]; then # check if type if testing
+
+            dtSec=$(date --date "${TIME}" +'%s')    # convert time in sec for namespace age
+            taSec=$(date --date "1 days ago" +'%s') # convert time allowed for the namespace to be in the cluster
+
+            if [ $dtSec -lt $taSec ]; then
+                echo "INFO: Project="${PRJ}, "Date=" ${TIME}
+                echo too old project : ${TIME}
+                # delete namespace
+                echo Delete project : ${PRJ}
+                kubectl delete namespace ${PRJ} # delete namespace
+                echo ---------
+            fi
+        fi
+    fi
+done