100 lines
3.1 KiB
Go
100 lines
3.1 KiB
Go
package e2e
|
|
|
|
import (
|
|
"context"
|
|
"testing"
|
|
|
|
"github.com/jenkinsci/kubernetes-operator/pkg/apis/jenkinsio/v1alpha1"
|
|
jenkinsclient "github.com/jenkinsci/kubernetes-operator/pkg/controller/jenkins/client"
|
|
"github.com/jenkinsci/kubernetes-operator/pkg/controller/jenkins/configuration/base/resources"
|
|
|
|
framework "github.com/operator-framework/operator-sdk/pkg/test"
|
|
"github.com/stretchr/testify/require"
|
|
corev1 "k8s.io/api/core/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/types"
|
|
)
|
|
|
|
func TestJenkinsMasterPodRestart(t *testing.T) {
|
|
t.Parallel()
|
|
namespace, ctx := setupTest(t)
|
|
// Deletes test namespace
|
|
defer ctx.Cleanup()
|
|
|
|
jenkins := createJenkinsCR(t, "e2e", namespace)
|
|
waitForJenkinsBaseConfigurationToComplete(t, jenkins)
|
|
restartJenkinsMasterPod(t, jenkins)
|
|
waitForRecreateJenkinsMasterPod(t, jenkins)
|
|
checkBaseConfigurationCompleteTimeIsNotSet(t, jenkins)
|
|
waitForJenkinsBaseConfigurationToComplete(t, jenkins)
|
|
}
|
|
|
|
func TestSafeRestart(t *testing.T) {
|
|
t.Parallel()
|
|
namespace, ctx := setupTest(t)
|
|
// Deletes test namespace
|
|
defer ctx.Cleanup()
|
|
|
|
jenkinsCRName := "e2e"
|
|
configureAuthorizationToUnSecure(t, jenkinsCRName, namespace)
|
|
jenkins := createJenkinsCR(t, jenkinsCRName, namespace)
|
|
waitForJenkinsBaseConfigurationToComplete(t, jenkins)
|
|
waitForJenkinsUserConfigurationToComplete(t, jenkins)
|
|
jenkinsClient := verifyJenkinsAPIConnection(t, jenkins)
|
|
checkIfAuthorizationStrategyUnsecuredIsSet(t, jenkinsClient)
|
|
|
|
err := jenkinsClient.SafeRestart()
|
|
require.NoError(t, err)
|
|
waitForJenkinsSafeRestart(t, jenkinsClient)
|
|
|
|
checkIfAuthorizationStrategyUnsecuredIsSet(t, jenkinsClient)
|
|
}
|
|
|
|
func configureAuthorizationToUnSecure(t *testing.T, jenkinsCRName, namespace string) {
|
|
limitRange := &corev1.ConfigMap{
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: resources.GetUserConfigurationConfigMapName(jenkinsCRName),
|
|
Namespace: namespace,
|
|
},
|
|
Data: map[string]string{
|
|
"set-unsecured-authorization.groovy": `
|
|
import hudson.security.*
|
|
|
|
def jenkins = jenkins.model.Jenkins.getInstance()
|
|
|
|
def strategy = new AuthorizationStrategy.Unsecured()
|
|
jenkins.setAuthorizationStrategy(strategy)
|
|
jenkins.save()
|
|
`,
|
|
},
|
|
}
|
|
|
|
err := framework.Global.Client.Create(context.TODO(), limitRange, nil)
|
|
require.NoError(t, err)
|
|
}
|
|
|
|
func checkIfAuthorizationStrategyUnsecuredIsSet(t *testing.T, jenkinsClient jenkinsclient.Jenkins) {
|
|
logs, err := jenkinsClient.ExecuteScript(`
|
|
import hudson.security.*
|
|
|
|
def jenkins = jenkins.model.Jenkins.getInstance()
|
|
|
|
if (!(jenkins.getAuthorizationStrategy() instanceof AuthorizationStrategy.Unsecured)) {
|
|
throw new Exception('AuthorizationStrategy.Unsecured is not set')
|
|
}
|
|
`)
|
|
require.NoError(t, err, logs)
|
|
}
|
|
|
|
func checkBaseConfigurationCompleteTimeIsNotSet(t *testing.T, jenkins *v1alpha1.Jenkins) {
|
|
jenkinsStatus := &v1alpha1.Jenkins{}
|
|
namespaceName := types.NamespacedName{Namespace: jenkins.Namespace, Name: jenkins.Name}
|
|
err := framework.Global.Client.Get(context.TODO(), namespaceName, jenkinsStatus)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if jenkinsStatus.Status.BaseConfigurationCompletedTime != nil {
|
|
t.Fatalf("Status.BaseConfigurationCompletedTime is set after pod restart, status %+v", jenkinsStatus.Status)
|
|
}
|
|
}
|