CH-262 / CH-263 / CH-264 - Tilt and some other minor changes

[ddelpiano]

Implemented solution

• tilt implementation ported from Zoran's branch, the other branch was in a messy state due to a forced push
• some changes required for mongo and kc due to the new version used
• cluster ip detection logic updated for local development

How to test this PR

harness-deployment and check your application will deploy fine, you can now use 'tilt up' to bring all services up and monitor them from the tilt gui.

Sanity checks:

• The pull request is explicitly linked to the relevant issue(s)
• The issue is well described: clearly states the problem and the general proposed solution(s)
• In this PR it is explicitly stated how to test the current change
• The labels in the issue set the scope and the type of issue (bug, feature, etc.)
• The relevant components are indicated in the issue (if any)
• All the automated test checks are passing
• All the linked issues are included in one Sprint
• All the linked issues are in the Review state
• All the linked issues are assigned

Breaking changes (select one):

• The present changes do not change the preexisting api in any way
• This PR and the issue are tagged as a breaking-change and the migration procedure is well described above

Possible deployment updates issues (select one):

• There is no reason why deployments based on CloudHarness may break after the current update
• This PR and the issue are tagged as alert:deployment

Test coverage (select one):

• Tests for the relevant cases are included in this pr
• The changes included in this pr are out of the current test coverage scope

Documentation (select one):

• The documentation has been updated to match the current changes
• The changes included in this PR are out of the current documentation scope

Nice to have (if relevant):

• Screenshots of the changes
• Explanatory video/animated gif

[Copilot]

Pull request overview

Adds Tilt-based local dev deployment support and updates supporting deployment/runtime logic for newer Keycloak/Mongo and improved local cluster IP detection.

Changes:

• Generate a Tiltfile during harness-deployment and add Tilt deployment extension/template support.
• Update local cluster IP detection logic and propagate local=True in Helm/config generator paths.
• Adjust Keycloak/Django event sync behavior and Mongo readiness/liveness probes for newer versions.

Reviewed changes

Copilot reviewed 14 out of 14 changed files in this pull request and generated 12 comments.

Show a summary per file

File	Description
tools/deployment-cli-tools/requirements.txt	Adds jinja2 dependency for Tiltfile generation.
tools/deployment-cli-tools/harness-deployment	Invokes Tiltfile generation as part of deployment generation.
tools/deployment-cli-tools/ch_cli_tools/utils.py	Changes cluster IP detection logic and adds local-dev heuristics.
tools/deployment-cli-tools/ch_cli_tools/tilt.py	New Tiltfile generator using Jinja templates.
tools/deployment-cli-tools/ch_cli_tools/templates/tilt/tilt-template.tpl	Tiltfile template for builds, deploy, and UI helpers.
tools/deployment-cli-tools/ch_cli_tools/helm.py	Uses updated cluster IP logic for local deployments.
tools/deployment-cli-tools/ch_cli_tools/configurationgenerator.py	Uses updated cluster IP logic for hosts info output.
libraries/cloudharness-common/cloudharness/utils/env.py	Updates events service DNS name casing.
libraries/cloudharness-common/cloudharness/auth/keycloak.py	Ensures first/last name are preserved when updating user attributes.
infrastructure/common-images/cloudharness-django/.../services/events.py	Adjusts listener init behavior and event handling timing/group id.
infrastructure/common-images/cloudharness-django/.../apps.py	Starts event listener from Django AppConfig ready().
deployment-configuration/tilt-deploy.ext	New Tilt extension to helm-render and patch deployments for dev workflows.
deployment-configuration/helm/templates/auto-database-mongo.yaml	Uses mongosh for Mongo probes.
applications/accounts/deploy/templates/_components.tpl	Updates Keycloak user profile config (adds stripe_uid attribute).

[Copilot]

Typo in comment: "mnp" should be "npm".

Suggested change

	# don't watch mnp folder
	# don't watch npm folder

[Copilot]

time.sleep(1) is executed for every handled Keycloak event, adding a fixed 1s latency and reducing throughput of the consumer thread. Consider replacing this with a bounded retry/backoff when the subsequent get_user/get_group fetch fails due to eventual consistency, so the common case doesn’t always pay the delay.

[Copilot]

In Python, raise e resets the traceback context. Use a bare raise to preserve the original stack trace (and consider log.exception(...) if you want the traceback in logs).

Suggested change

	raise e
	raise

[Copilot]

Starting the Kafka listener in AppConfig.ready() can run multiple times in common Django setups (e.g. runserver autoreloader spawns a second process; multi-worker gunicorn/uWSGI will start one per worker). This can lead to duplicate consumers/extra connections or repeated retries. Add guards (e.g. check os.environ.get("RUN_MAIN") for runserver, or require an explicit env flag) to ensure it starts exactly once per intended process.

[Copilot]

PackageLoader("ch_cli_tools", "templates/tilt") requires the templates/tilt files to be included in the installed package. Currently tools/deployment-cli-tools/setup.py has no package_data, and MANIFEST.in doesn’t include ch_cli_tools/templates/**, so the generated distribution is likely to miss tilt-template.tpl and fail at runtime. Either switch to loading the template from the filesystem (consistent with other generators) or update packaging to include these template files.

[Copilot]

get_cluster_ip(local=True) now swallows timeouts/errors internally and falls back to get_host_address(), so this except subprocess.TimeoutExpired branch is effectively dead code. Either let TimeoutExpired propagate from get_cluster_ip (so callers can warn appropriately) or simplify this try/except to match the new behavior.

[Copilot]

This call passes dockerfile_path both positionally and as a keyword argument, which will raise TypeError: got multiple values for argument 'dockerfile_path' at runtime. Remove the duplicate keyword argument (or rename the keyword if you intended a different parameter).

Suggested change

	requirements=guess_build_dependencies_from_dockerfile(dockerfile_path), dockerfile_path=dockerfile_path, app_name=app_name)
	requirements=guess_build_dependencies_from_dockerfile(dockerfile_path), app_name=app_name)

[Copilot]

There are many unused imports in this new module (e.g. logging, json, time, exists, abspath, ApplicationTestConfig, DEPLOYMENT_CONFIGURATION_PATH, HELM_ENGINE, COMPOSE_ENGINE, plus several .utils imports). This will fail linting/type-checking in many setups and makes the file harder to maintain. Remove unused imports (and also unused locals like overrides, images/static_images/base_images, builds if they’re not needed).

[Copilot]

container["env"] may not exist on all rendered Deployments. This will raise a KeyError when adding task-image env vars. Use container.setdefault("env", []).append(...) (or initialize env if missing) before appending.

Suggested change

	container["env"].append({
	container.setdefault("env", []).append({

[Copilot]

Avoid bare except: blocks here. They will also swallow KeyboardInterrupt/SystemExit and make failures hard to diagnose. Catch the specific expected exceptions (e.g. subprocess.CalledProcessError, subprocess.TimeoutExpired, FileNotFoundError) and optionally log at debug level so local IP detection failures are observable.

[filippomc]

This PR doesn't reference Jira issues appropriately in the commit messages, nor in the PR.
There was a link to a private Jira issue from an external project, which I removed.
Please reference issues in the Cloudharness Jira project in the PR (especially the Tilt feature is a big one). If an issue doesn't exist, let's create it.

• Added a note about silent exception handling.
• Linting check is not passing

[filippomc]

Should at least log this error