github/kubelogin
1
0
Fork 0
mirror of https://github.com/int128/kubelogin.git synced 2026-02-14 16:39:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
9e27385c0b5dfac2216baf7061720617581569fb
kubelogin/acceptance_test
History
Hidetake Iwata 9e27385c0b Add acceptance test (#315)
2020-06-23 14:47:29 +09:00
..
cluster.yaml
Add acceptance test (#315)
2020-06-23 14:47:29 +09:00
Makefile
Add acceptance test (#315)
2020-06-23 14:47:29 +09:00
README.md
Add acceptance test (#315)
2020-06-23 14:47:29 +09:00

README.md

kubelogin/acceptance_test

This is a manual test for verifying Kubernetes OIDC authentication with your OIDC provider.

Purpose

This test checks the following points:

  1. You can set up your OIDC provider using setup guide.
  2. The plugin works with your OIDC provider.

Getting Started

Prerequisite

You need to build the plugin into the parent directory.

make -C ..

You need to set up your provider. See setup guide for more.

You need to install the following tools:

  • Docker
  • Kind
  • kubectl

You can check if the tools are available.

make check

1. Create a cluster

Create a cluster. For example, you can create a cluster with Google account authentication.

make OIDC_ISSUER_URL=https://accounts.google.com \
  OIDC_CLIENT_ID=REDACTED.apps.googleusercontent.com \
  OIDC_CLIENT_SECRET=REDACTED \
  YOUR_EMAIL=REDACTED@gmail.com

It will do the following steps:

  1. Create a cluster.
  2. Set up access control. It allows read-only access from your email address.
  3. Set up kubectl to enable the plugin.

You can change kubectl configuration in generated output/kubeconfig.yaml.

2. Run kubectl

Make sure you can log in to the provider and access the cluster.

% export KUBECONFIG=$PWD/output/kubeconfig.yaml
% kubectl get pods -A

Clean up

To delete the cluster and generated files:

make delete-cluster
make clean
Reference in New Issue View Git Blame Copy Permalink