github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-08-29 21:03:03 +00:00
Code Issues Projects Releases Wiki Activity

tests: remove k8s-policy-set-keys.bats

Browse Source 
Remove k8s-policy-set-keys.bats in preparation for using the regorus
crate instead of the OPA daemon for evaluating the Agent Policy. This
test depended on sending HTTP requests to OPA.

Fixes: #9388

Signed-off-by: Dan Mihai <dmihai@microsoft.com>
This commit is contained in:
Dan Mihai 2024-04-18 02:15:13 +00:00
parent b509c1beee
commit 58e608d61a
2 changed files with 0 additions and 47 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

46
tests/integration/kubernetes/k8s-policy-set-keys.bats
View File

@ -1,46 +0,0 @@
#!/usr/bin/env bats
#
# Copyright (c) 2023 Microsoft.
#
# SPDX-License-Identifier: Apache-2.0
#
load "${BATS_TEST_DIRNAME}/../../common.bash"
load "${BATS_TEST_DIRNAME}/tests_common.sh"
setup() {
policy_tests_enabled || skip "Policy tests are disabled."
get_pod_config_dir
pod_name="set-keys-test"
pod_yaml="${pod_config_dir}/k8s-policy-set-keys.yaml"
set_keys_policy=$(base64 -w 0 "${pod_config_dir}/k8s-policy-set-keys.rego")
}
@test "Set guest keys using policy" {
yq write -i "${pod_yaml}" \
'metadata.annotations."io.katacontainers.config.agent.policy"' \
"${set_keys_policy}"
# Create the pod
kubectl create -f "${pod_yaml}"
# Wait for pod to start
kubectl wait --for=condition=Ready --timeout=$timeout pod "$pod_name"
# Obtain the keys from the policy by querying the OPA service
my_test_data="http://localhost:8181/v1/data/agent_policy/my_test_data"
kubectl exec "$pod_name" -- wget -O - "$my_test_data/default/key/ssh-demo" | grep "{\"result\":\"HUlOu8NWz8si11OZUzUJMnjiq/iZyHBJZMSD3BaqgMc=\"}"
kubectl exec "$pod_name" -- wget -O - "$my_test_data/default/key/enabled" | grep "{\"result\":false}"
kubectl exec "$pod_name" -- wget -O - "$my_test_data/key1" | grep "{\"result\":\[\"abc\",\"9876\",\"xyz\"\]}"
kubectl exec "$pod_name" -- wget -O - "$my_test_data/key2" | grep "{\"result\":45}"
}
teardown() {
policy_tests_enabled || skip "Policy tests are disabled."
# Debugging information
kubectl describe "pod/$pod_name"
kubectl delete pod "$pod_name"
}

1
tests/integration/kubernetes/run_kubernetes_tests.sh
View File

@ -54,7 +54,6 @@ else
"k8s-policy-job.bats" \ "k8s-policy-job.bats" \
"k8s-policy-pod.bats" \ "k8s-policy-pod.bats" \
"k8s-policy-rc.bats" \ "k8s-policy-rc.bats" \
"k8s-policy-set-keys.bats" \
"k8s-port-forward.bats" \ "k8s-port-forward.bats" \
"k8s-projected-volume.bats" \ "k8s-projected-volume.bats" \
"k8s-qos-pods.bats" \ "k8s-qos-pods.bats" \