Validated Patterns

Technical requirements

Consider these requirements specific to the implementation of all Validated Patterns and their tiers.

The requirements are categorized as follows:


These are nonnegotiable, core requirements that must be implemented.


These are important but not critical; their implementation enhances the pattern.


These are optional or desirable features, but their absence does not hinder the implementation of a pattern.


  1. Patterns must include one or more Git repositories in a publicly accessible location, containing configuration elements that can be consumed by the Red Hat OpenShift GitOps Operator without supplying custom Argo CD images.

  2. Patterns must be useful without all content stored in private Git repositories.

  3. Patterns must include a list of names and versions of all the products and projects that the pattern consumes.

  4. Patterns must be useful without any sample applications that are private or that lack public sources.

  5. Patterns must not degrade due to lack of updates or opaque incompatibilities in closed source applications.

  6. Patterns must not store sensitive data elements including, but not limited to, passwords in Git repositories.

  7. Patterns must be possible to deploy on any installer-provisioned infrastructure OpenShift cluster (BYO).

    Validated Patterns distinguish between the provisioning and configuration requirements of the initial cluster (Patterns) and of clusters or machines that are managed by the initial cluster (Managed clusters).

  8. Patterns must use a standardized clustergroup Helm chart as the initial Red Hat OpenShift GitOps application that describes all namespaces, subscriptions, and any other GitOps applications which contain the configuration elements that make up the solution.

  9. Managed clusters must operate on the premise of eventual consistency (automatic retries, and an expectation of idempotence), which is one of the essential benefits of the GitOps model.

  10. Imperative elements must be implemented as idempotent code stored in Git repository.


  1. Patterns should include sample applications to demonstrate the business problems addressed by the pattern.

  2. Patterns should try to indicate which parts are foundational as opposed to being for demonstration purposes.

  3. Patterns should use the Validated Patterns Operator to deploy patterns. However, anything that creates the OpenShift GitOps subscription and initial clustergroup application could be acceptable.

  4. Patterns should embody the Open Hybrid Cloud model unless there is a compelling reason to limit the availability of functionality to a specific platform or topology.

  5. Patterns should use industry standards and Red Hat products for all required tooling.

    Patterns require current best practices at the time of pattern development. Solutions that do not conform to best practices should expect to justify non-conformance or expend engineering effort to conform.

  6. Patterns should not make use of upstream or community Operators and images except, depending on the market segment, where it is critical to the overall solution.

    Such Operators are forbidden to be deployed into an increasing number of customer environments, which limits the pattern reuse. Alternatively, consider to productize the Operator, and build it in-cluster from trusted sources as part of the pattern.

  7. Patterns should be decomposed into modules that perform a specific function, so that they can be reused in other patterns.

    For example, Bucket Notification is a capability in the Medical Diagnosis pattern that could be used for other solutions.

  8. Patterns should use Red Hat Ansible Automation Platform to drive the declarative provisioning and management of managed hosts, for example, Red Hat Enterprise Linux (RHEL). See also Imperative elements.

  9. Patterns should use Red Hat Advanced Cluster Management (RHACM) to manage policy and compliance on any managed clusters.

  10. Patterns should use RHACM and a standardized RHACM chart to deploy and configure OpenShift GitOps to managed clusters.

  11. Managed clusters should be loosely coupled to their hub, and use OpenShift GitOps to consume applications and configuration directly from Git as opposed to having hard dependencies on a centralized cluster.

  12. Managed clusters should use the pull deployment model for obtaining their configuration.

  13. Imperative elements should be implemented as Ansible playbooks.

  14. Imperative elements should be driven declaratively implying that the playbooks should be triggered by Jobs or CronJobs stored in Git and delivered by OpenShift GitOps.


  1. Patterns can include additional configuration and/or demo elements located in one or more additional private Git repositories.

  2. Patterns can include automation that deploys a known set of clusters and/or machines in a specific topology.

  3. Patterns can limit functionality/testing claims to specific platforms, topologies, and cluster/node sizes.

  4. Patterns can consume Operators from established partners (for example, Hashicorp Vault, and Seldon)

  5. Patterns can include managed clusters.

  6. Patterns can include details or automation for provisioning managed clusters, or rely on the admin to pre-provision them out-of-band.

  7. Patterns can also choose to model multi-cluster solutions as an uncoordinated collection of initial hub clusters.

  8. Imperative elements can interact with cluster state or external influences.