djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Remove an integration test that is covered elsewhere now

Browse Source 
The same coverage that was supplied by
TestCredentialRequest_OtherwiseValidRequestWithRealTokenShouldFailWhenTheClusterIsNotCapable
is now provided by an assertion at the end of TestImpersonationProxy,
so delete the duplicate test which was failing on GKE because the
impersonation proxy is now active by default on GKE.
This commit is contained in:
Ryan Richard 2021-03-10 14:17:20 -08:00
parent 1078bf4dfb
commit 2a2e2f532b
1 changed files with 8 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
test/integration/concierge_credentialrequest_test.go
View File

@ -31,11 +31,14 @@ func TestUnsuccessfulCredentialRequest(t *testing.T) {
defer cancel() defer cancel()
response, err := library.CreateTokenCredentialRequest(ctx, t, response, err := library.CreateTokenCredentialRequest(ctx, t,
validCredentialRequestSpecWithRealToken(t, corev1.TypedLocalObjectReference{ loginv1alpha1.TokenCredentialRequestSpec{
APIGroup: &auth1alpha1.SchemeGroupVersion.Group, Token: env.TestUser.Token,
Kind: "WebhookAuthenticator", Authenticator: corev1.TypedLocalObjectReference{
Name: "some-webhook-that-does-not-exist", APIGroup: &auth1alpha1.SchemeGroupVersion.Group,
}), Kind: "WebhookAuthenticator",
Name: "some-webhook-that-does-not-exist",
},
},
) )
require.NoError(t, err) require.NoError(t, err)
require.Nil(t, response.Status.Credential) require.Nil(t, response.Status.Credential)
@ -182,32 +185,6 @@ func TestCredentialRequest_ShouldFailWhenRequestDoesNotIncludeToken(t *testing.T
require.Nil(t, response.Status.Credential) require.Nil(t, response.Status.Credential)
} }
func TestCredentialRequest_OtherwiseValidRequestWithRealTokenShouldFailWhenTheClusterIsNotCapable(t *testing.T) {
env := library.IntegrationEnv(t).WithoutCapability(library.ClusterSigningKeyIsAvailable)
library.AssertNoRestartsDuringTest(t, env.ConciergeNamespace, "")
ctx, cancel := context.WithTimeout(context.Background(), time.Minute)
defer cancel()
testWebhook := library.CreateTestWebhookAuthenticator(ctx, t)
response, err := library.CreateTokenCredentialRequest(ctx, t, validCredentialRequestSpecWithRealToken(t, testWebhook))
require.NoError(t, err)
require.Empty(t, response.Spec)
require.Nil(t, response.Status.Credential)
require.Equal(t, stringPtr("authentication failed"), response.Status.Message)
}
func validCredentialRequestSpecWithRealToken(t *testing.T, authenticator corev1.TypedLocalObjectReference) loginv1alpha1.TokenCredentialRequestSpec {
return loginv1alpha1.TokenCredentialRequestSpec{
Token: library.IntegrationEnv(t).TestUser.Token,
Authenticator: authenticator,
}
}
func stringPtr(s string) *string { func stringPtr(s string) *string {
return &s return &s
} }