mirror of
https://github.com/projectcapsule/capsule.git
synced 2026-02-14 18:09:58 +00:00
164431959c
* add capsule-user-group param * Implementing RBAC controller Co-authored-by: Maksim Fedotov <m_fedotov@wargaming.net> Co-authored-by: Dario Tranchitella <dario@tranchitella.eu>
115 lines
4.0 KiB
Go
115 lines
4.0 KiB
Go
//+build e2e
|
|
|
|
/*
|
|
Copyright 2020 Clastix Labs.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package e2e
|
|
|
|
import (
|
|
"context"
|
|
"time"
|
|
|
|
. "github.com/onsi/gomega"
|
|
appsv1 "k8s.io/api/apps/v1"
|
|
corev1 "k8s.io/api/core/v1"
|
|
rbacv1 "k8s.io/api/rbac/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/types"
|
|
"sigs.k8s.io/controller-runtime/pkg/client"
|
|
|
|
"github.com/clastix/capsule/api/v1alpha1"
|
|
)
|
|
|
|
const (
|
|
defaultTimeoutInterval = 25 * time.Second
|
|
defaultPollInterval = time.Second
|
|
)
|
|
|
|
func NewNamespace(name string) *corev1.Namespace {
|
|
return &corev1.Namespace{
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: name,
|
|
},
|
|
}
|
|
}
|
|
|
|
func NamespaceCreationShouldSucceed(ns *corev1.Namespace, t *v1alpha1.Tenant) {
|
|
cs := ownerClient(t)
|
|
Eventually(func() (err error) {
|
|
_, err = cs.CoreV1().Namespaces().Create(context.TODO(), ns, metav1.CreateOptions{})
|
|
return
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(Succeed())
|
|
}
|
|
|
|
func NamespaceCreationShouldNotSucceed(ns *corev1.Namespace, t *v1alpha1.Tenant) {
|
|
cs := ownerClient(t)
|
|
Eventually(func() (err error) {
|
|
_, err = cs.CoreV1().Namespaces().Create(context.TODO(), ns, metav1.CreateOptions{})
|
|
return
|
|
}, defaultTimeoutInterval, defaultPollInterval).ShouldNot(Succeed())
|
|
}
|
|
|
|
func NamespaceShouldBeManagedByTenant(ns *corev1.Namespace, t *v1alpha1.Tenant) {
|
|
Eventually(func() v1alpha1.NamespaceList {
|
|
Expect(k8sClient.Get(context.TODO(), types.NamespacedName{Name: t.GetName()}, t)).Should(Succeed())
|
|
return t.Status.Namespaces
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(ContainElement(ns.GetName()))
|
|
}
|
|
|
|
func CapsuleClusterGroupParamShouldBeUpdated(capsuleClusterGroup string) {
|
|
capsuleCRB := &rbacv1.ClusterRoleBinding{}
|
|
|
|
Eventually(func() string {
|
|
Expect(k8sClient.Get(context.TODO(), types.NamespacedName{Name: "capsule-namespace:provisioner"}, capsuleCRB)).Should(Succeed())
|
|
return capsuleCRB.Subjects[0].Name
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(BeIdenticalTo(capsuleClusterGroup))
|
|
|
|
}
|
|
|
|
func ModifyCapsuleManagerPodArgs(args []string) {
|
|
capsuleDeployment := &appsv1.Deployment{}
|
|
k8sClient.Get(context.TODO(), types.NamespacedName{Name: capsuleDeploymentName, Namespace: capsuleNamespace}, capsuleDeployment)
|
|
for i, container := range capsuleDeployment.Spec.Template.Spec.Containers {
|
|
if container.Name == capsuleManagerContainerName {
|
|
capsuleDeployment.Spec.Template.Spec.Containers[i].Args = args
|
|
}
|
|
}
|
|
capsuleDeployment.ResourceVersion = ""
|
|
err := k8sClient.Update(context.TODO(), capsuleDeployment)
|
|
Expect(err).ToNot(HaveOccurred())
|
|
|
|
Eventually(func() []string {
|
|
var containerArgs []string
|
|
Expect(k8sClient.Get(context.TODO(), types.NamespacedName{Name: capsuleDeploymentName, Namespace: capsuleNamespace}, capsuleDeployment)).Should(Succeed())
|
|
for i, container := range capsuleDeployment.Spec.Template.Spec.Containers {
|
|
if container.Name == capsuleManagerContainerName {
|
|
containerArgs = capsuleDeployment.Spec.Template.Spec.Containers[i].Args
|
|
}
|
|
}
|
|
return containerArgs
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(HaveLen(len(args)))
|
|
|
|
pl := &corev1.PodList{}
|
|
Eventually(func() []corev1.Pod {
|
|
Expect(k8sClient.List(context.TODO(), pl, client.MatchingLabels{"control-plane": "controller-manager"})).Should(Succeed())
|
|
return pl.Items
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(HaveLen(2))
|
|
Eventually(func() []corev1.Pod {
|
|
Expect(k8sClient.List(context.TODO(), pl, client.MatchingLabels{"control-plane": "controller-manager"})).Should(Succeed())
|
|
return pl.Items
|
|
}, defaultTimeoutInterval, defaultPollInterval).Should(HaveLen(1))
|
|
}
|