853cb06842
* Initial commit * Added openshift flag * added self signed certificate for service annotation * added OpenShift flag * Added OpenShift flag * cleanup * Cleanup * Further cleanup * Further cleanup * reverted security context on injector * Extra corrections * cleanup * Removed Raft config for OpenShift, removed generated certs for ha and standby services * Add openshift flag to global block, route disabled by default, condition for injector in network policy * Added Unit tests for OpenShift * Fixed unit test for HA statefulset for OpenShift * Removed debug log level from stateful set * Added port 8201 to networkpolicy * Updated injector image * Add openshift beta support * Add openshift beta support * Remove comments from configs * Remove vault-k8s note from values * Change route to use active service when HA Co-authored-by: Radu Domnu <radu.domnu@sixdx.com> Co-authored-by: Radu Domnu <radu.domnu@gmail.com>
116 lines
3.7 KiB
Bash
Executable file
116 lines
3.7 KiB
Bash
Executable file
#!/usr/bin/env bats
|
|
|
|
load _helpers
|
|
|
|
@test "server/route: OpenShift - disabled by default" {
|
|
cd `chart_dir`
|
|
local actual=$( (helm template \
|
|
--set 'global.openshift=true' \
|
|
--show-only templates/server-route.yaml \
|
|
. || echo "---") | tee /dev/stderr |
|
|
yq 'length > 0' | tee /dev/stderr)
|
|
[ "${actual}" = "false" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift -disable by injector.externalVaultAddr" {
|
|
cd `chart_dir`
|
|
local actual=$( (helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'injector.externalVaultAddr=http://vault-outside' \
|
|
. || echo "---") | tee /dev/stderr |
|
|
yq 'length > 0' | tee /dev/stderr)
|
|
[ "${actual}" = "false" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - checking host entry gets added and path is /" {
|
|
cd `chart_dir`
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'server.route.host=test.com' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.spec.host' | tee /dev/stderr)
|
|
[ "${actual}" = 'test.com' ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - vault backend should be added when I specify a path" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'server.route.host=test.com' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.spec.to.name | length > 0' | tee /dev/stderr)
|
|
[ "${actual}" = "true" ]
|
|
|
|
}
|
|
|
|
@test "server/route: OpenShift - labels gets added to object" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'server.route.labels.traffic=external' \
|
|
--set 'server.route.labels.team=dev' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.metadata.labels.traffic' | tee /dev/stderr)
|
|
[ "${actual}" = "external" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - annotations added to object - string" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'server.route.annotations=kubernetes.io/route.class: haproxy' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.metadata.annotations["kubernetes.io/route.class"]' | tee /dev/stderr)
|
|
[ "${actual}" = "haproxy" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - annotations added to object - yaml" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set server.route.annotations."kubernetes\.io/route\.class"=haproxy \
|
|
. | tee /dev/stderr |
|
|
yq -r '.metadata.annotations["kubernetes.io/route.class"]' | tee /dev/stderr)
|
|
[ "${actual}" = "haproxy" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - route points to main service by default" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.spec.to.name' | tee /dev/stderr)
|
|
[ "${actual}" = "RELEASE-NAME-vault" ]
|
|
}
|
|
|
|
@test "server/route: OpenShift - route points to active service by when HA" {
|
|
cd `chart_dir`
|
|
|
|
local actual=$(helm template \
|
|
--show-only templates/server-route.yaml \
|
|
--set 'global.openshift=true' \
|
|
--set 'server.route.enabled=true' \
|
|
--set 'server.ha.enabled=true' \
|
|
. | tee /dev/stderr |
|
|
yq -r '.spec.to.name' | tee /dev/stderr)
|
|
[ "${actual}" = "RELEASE-NAME-vault-active" ]
|
|
}
|