Run IT tests with security plugin #335
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Yury-Fridlyand
requested review from
MaxKsyunz,
forestmvey,
acarbonetto and
GumpacG
as code owners
MitchellGale
reviewed
Aug 8, 2023
peternied
reviewed
Aug 9, 2023
| @@ -57,6 +60,20 @@ ext { | |||
| projectSubstitutions = [:] | |||
| licenseFile = rootProject.file('LICENSE.TXT') | |||
| noticeFile = rootProject.file('NOTICE') | |||
|
|
|||
| getSecurityPluginDownloadLink = { -> | |||
| var repo = "https://aws.oss.sonatype.org/content/repositories/snapshots/org/opensearch/plugin/" + | |||
There was a problem hiding this comment.
The Security Plugin maintainers (myself included) have had trouble with build breaks and fixing them in a timely manner - it would be unfortunate for your integration tests to be flaky due to downstream issues. This isn't an issue with release builds with the trade-off of longer time between updates.
integ-test/build.gradle
Outdated
| setting 'plugins.security.ssl.transport.enforce_hostname_verification', 'false' | ||
| // https is disabled, because `OpenSearchCluster` is hardcoded to validate cluster health by http | ||
| // refer how IT framework implemented in security plugin and reuse/copy to activate https | ||
| setting 'plugins.security.ssl.http.enabled', 'false' |
There was a problem hiding this comment.
There are some features of the security plugin - such as being able to make changes to the security configuration dynamically that will not be possible with this setting disabled. Depends if your tests will ever need to exercise that kind of functionality.
There was a problem hiding this comment.
This issue was raised because Release testing runs IT tests with the security plugin. If we can catch errors early, we can avoid blocking release.
acarbonetto
reviewed
Aug 9, 2023
integ-test/build.gradle
Outdated
| setting 'plugins.security.ssl.transport.enforce_hostname_verification', 'false' | ||
| // https is disabled, because `OpenSearchCluster` is hardcoded to validate cluster health by http | ||
| // refer how IT framework implemented in security plugin and reuse/copy to activate https | ||
| setting 'plugins.security.ssl.http.enabled', 'false' |
There was a problem hiding this comment.
This issue was raised because Release testing runs IT tests with the security plugin. If we can catch errors early, we can avoid blocking release.
integ-test/src/test/java/org/opensearch/sql/legacy/OpenSearchSQLRestTestCase.java
Show resolved
Hide resolved
Yury-Fridlyand
force-pushed
the
dev-IT-with-security
branch
from
58c5c1f
to
90f2873
Compare
GumpacG
approved these changes
Aug 14, 2023
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com>
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Yury-Fridlyand
force-pushed
the
dev-IT-with-security
branch
from
9277659
to
e25e7af
Compare
acarbonetto
approved these changes
Aug 16, 2023
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
acarbonetto
approved these changes
Aug 17, 2023
integ-test/src/test/java/org/opensearch/sql/legacy/OpenSearchSQLRestTestCase.java
Show resolved
Hide resolved
integ-test/src/test/java/org/opensearch/sql/legacy/OpenSearchSQLRestTestCase.java
Show resolved
Hide resolved
integ-test/src/test/java/org/opensearch/sql/legacy/OpenSearchSQLRestTestCase.java
Show resolved
Hide resolved
Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
Codecov Report
@@ Coverage Diff @@
## integ-IT-with-security #335 +/- ##
=========================================================
Coverage 97.51% 97.51%
Complexity 4657 4657
=========================================================
Files 408 408
Lines 11933 11933
Branches 829 829
=========================================================
Hits 11637 11637
Misses 289 289
Partials 7 7
Flags with carried forward coverage won't be shown. Click here to find out more. 📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more |
6 tasks
6 tasks
MitchellGale
pushed a commit
that referenced
this pull request
Aug 21, 2023
* Run IT tests with security plugin (#335) * Add extra IT flow. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Remove unneeded files. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Fix GHA matrix syntax. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Fix GHA matrix syntax. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Code clean up. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Optimize downloading. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Apply suggestions from code review Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Update integ-test/build.gradle Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Rework implementation. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR review. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR feedback + some fixes. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> --------- Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Minor fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR feedback. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> --------- Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com>
Yury-Fridlyand
added a commit
that referenced
this pull request
Aug 23, 2023
* Run IT tests with security plugin (#335) * Add extra IT flow. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Remove unneeded files. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Fix GHA matrix syntax. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Fix GHA matrix syntax. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Code clean up. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Optimize downloading. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Apply suggestions from code review Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Update integ-test/build.gradle Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Rework implementation. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR review. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR feedback + some fixes. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> --------- Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> * Minor fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Address PR feedback. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> * Typo fix. Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> --------- Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com> Co-authored-by: Andrew Carbonetto <andrewc@bitquilltech.com> (cherry picked from commit 7e3a718) Signed-off-by: Yury-Fridlyand <yury.fridlyand@improving.com>
5 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
This PR adds a new IT gradle task:
integTestWithSecurity. It starts a cluster with security plugin installed (it takes latest snapshot), configures cluster, http client for tests and runs one test which required to be run with security plugin.A new GHA is added which runs this test task.
This PR temporary includes files from opensearch-project#1943.
Issues Resolved
opensearch-project#1713
Check List
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.