diff --git a/changelogs/fragments/20241207-add-insecure-skip-tls-verify-to-helm-template.yaml b/changelogs/fragments/20241207-add-insecure-skip-tls-verify-to-helm-template.yaml new file mode 100644 index 0000000000..2f2526d5bf --- /dev/null +++ b/changelogs/fragments/20241207-add-insecure-skip-tls-verify-to-helm-template.yaml @@ -0,0 +1,3 @@ +--- +minor_changes: + - Parameter insecure_registry added to helm_template as equivalent of insecure-skip-tls-verify (https://github.com/ansible-collections/kubernetes.core/pull/805). diff --git a/changelogs/fragments/798-drain-pdb-error-message.yaml b/changelogs/fragments/798-drain-pdb-error-message.yaml new file mode 100644 index 0000000000..61b4a2573e --- /dev/null +++ b/changelogs/fragments/798-drain-pdb-error-message.yaml @@ -0,0 +1,2 @@ +minor_changes: + - k8s_drain - Improve error message for pod disruption budget when draining a node (https://github.com/ansible-collections/kubernetes.core/issues/797). diff --git a/docs/kubernetes.core.helm_template_module.rst b/docs/kubernetes.core.helm_template_module.rst index c89d27e216..983616d3f7 100644 --- a/docs/kubernetes.core.helm_template_module.rst +++ b/docs/kubernetes.core.helm_template_module.rst @@ -158,6 +158,26 @@ Parameters
Include custom resource descriptions in rendered templates.
+ + +
+ insecure_registry + +
+ boolean +
+
added in 5.1.0
+ + + + + +
Skip TLS certificate checks for the chart download
+ +
diff --git a/plugins/modules/helm_template.py b/plugins/modules/helm_template.py index b748b15545..16a1131ced 100644 --- a/plugins/modules/helm_template.py +++ b/plugins/modules/helm_template.py @@ -72,6 +72,13 @@ - If the directory already exists, it will be overwritten. required: false type: path + insecure_registry: + description: + - Skip TLS certificate checks for the chart download + required: false + type: bool + default: false + version_added: 5.1.0 release_name: description: - Release name to use in rendered templates. @@ -221,6 +228,7 @@ def template( dependency_update=None, disable_hook=None, output_dir=None, + insecure_registry=None, show_only=None, release_name=None, release_namespace=None, @@ -251,6 +259,9 @@ def template( if output_dir: cmd += " --output-dir=" + output_dir + if insecure_registry: + cmd += " --insecure-skip-tls-verify" + if show_only: for template in show_only: cmd += " -s " + template @@ -289,6 +300,7 @@ def main(): include_crds=dict(type="bool", default=False), release_name=dict(type="str", aliases=["name"]), output_dir=dict(type="path"), + insecure_registry=dict(type="bool", default=False), release_namespace=dict(type="str"), release_values=dict(type="dict", default={}, aliases=["values"]), show_only=dict(type="list", default=[], elements="str"), @@ -308,6 +320,7 @@ def main(): include_crds = module.params.get("include_crds") release_name = module.params.get("release_name") output_dir = module.params.get("output_dir") + insecure_registry = module.params.get("insecure_registry") show_only = module.params.get("show_only") release_namespace = module.params.get("release_namespace") release_values = module.params.get("release_values") @@ -337,6 +350,7 @@ def main(): disable_hook=disable_hook, release_name=release_name, output_dir=output_dir, + insecure_registry=insecure_registry, release_namespace=release_namespace, release_values=release_values, show_only=show_only, diff --git a/plugins/modules/k8s_drain.py b/plugins/modules/k8s_drain.py index 9d8561e708..4009666a70 100644 --- a/plugins/modules/k8s_drain.py +++ b/plugins/modules/k8s_drain.py @@ -106,7 +106,8 @@ kubernetes.core.k8s_drain: state: drain name: foo - force: yes + delete_options: + force: yes - name: Drain node "foo", but abort if there are pods not managed by a ReplicationController, Job, or DaemonSet, and use a grace period of 15 minutes. kubernetes.core.k8s_drain: @@ -143,6 +144,7 @@ """ import copy +import json import time import traceback from datetime import datetime @@ -187,6 +189,17 @@ HAS_EVICTION_API = False +def format_dynamic_api_exc(exc): + if exc.body: + if exc.headers and exc.headers.get("Content-Type") == "application/json": + message = json.loads(exc.body).get("message") + if message: + return message + return exc.body + else: + return "%s Reason: %s" % (exc.status, exc.reason) + + def filter_pods(pods, force, ignore_daemonset, delete_emptydir_data): k8s_kind_mirror = "kubernetes.io/config.mirror" daemonSet, unmanaged, mirror, localStorage, to_delete = [], [], [], [], [] @@ -338,7 +351,7 @@ def evict_pods(self, pods): if exc.reason != "Not Found": self._module.fail_json( msg="Failed to delete pod {0}/{1} due to: {2}".format( - namespace, name, exc.reason + namespace, name, to_native(format_dynamic_api_exc(exc)) ) ) except Exception as exc: diff --git a/tests/integration/targets/helm/tasks/main.yml b/tests/integration/targets/helm/tasks/main.yml index 9d8dda3e7b..79c2832031 100644 --- a/tests/integration/targets/helm/tasks/main.yml +++ b/tests/integration/targets/helm/tasks/main.yml @@ -4,4 +4,4 @@ loop_control: loop_var: helm_version with_items: - - "v3.7.0" + - "v3.8.0" diff --git a/tests/integration/targets/helm/tasks/test_helm_reuse_values.yml b/tests/integration/targets/helm/tasks/test_helm_reuse_values.yml index 9384fd4f4f..7801b485ea 100644 --- a/tests/integration/targets/helm/tasks/test_helm_reuse_values.yml +++ b/tests/integration/targets/helm/tasks/test_helm_reuse_values.yml @@ -17,8 +17,7 @@ - name: Initial chart installation helm: binary_path: "{{ helm_binary }}" - chart_ref: redis - chart_repo_url: https://charts.bitnami.com/bitnami + chart_ref: oci://registry-1.docker.io/bitnamicharts/redis release_name: test-redis release_namespace: "{{ helm_namespace }}" create_namespace: true @@ -42,8 +41,7 @@ - name: Upgrade chart using reuse_values=true helm: binary_path: "{{ helm_binary }}" - chart_ref: redis - chart_repo_url: https://charts.bitnami.com/bitnami + chart_ref: oci://registry-1.docker.io/bitnamicharts/redis release_name: test-redis release_namespace: "{{ helm_namespace }}" reuse_values: true diff --git a/tests/integration/targets/helm/tasks/tests_chart.yml b/tests/integration/targets/helm/tasks/tests_chart.yml index ff1c427a86..fda5bf85c2 100644 --- a/tests/integration/targets/helm/tasks/tests_chart.yml +++ b/tests/integration/targets/helm/tasks/tests_chart.yml @@ -374,8 +374,8 @@ chart_ref: "{{ chart_source }}" chart_version: "{{ chart_source_version | default(omit) }}" disable_hook: True - release_name: "MyRelease" - release_namespace: "MyReleaseNamespace" + release_name: "myrelease" + release_namespace: "myreleasenamespace" show_only: - "templates/configmap.yaml" release_values: @@ -388,7 +388,7 @@ - result is changed - result is not failed - result.rc == 0 - - result.command is match(helm_binary+" template MyRelease "+chart_source) + - result.command is match(helm_binary+" template myrelease "+chart_source) - result.stdout is search("ThisValue") when: chart_source is search("test-chart") # limit assertion of test result to controlled (local) chart_source diff --git a/tests/integration/targets/helm_diff/files/test-chart-deployment-time/Chart.yaml b/tests/integration/targets/helm_diff/files/test-chart-deployment-time/Chart.yaml new file mode 100644 index 0000000000..895d86a259 --- /dev/null +++ b/tests/integration/targets/helm_diff/files/test-chart-deployment-time/Chart.yaml @@ -0,0 +1,6 @@ +apiVersion: v2 +name: test-chart-deployment-time +description: A chart with a config map containing the deployment time in data +type: application +version: 0.1.0 +appVersion: "default" diff --git a/tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml b/tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml new file mode 100644 index 0000000000..e585295091 --- /dev/null +++ b/tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml @@ -0,0 +1,7 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: {{ default "ansible-configmap" .Values.myConfigmapName }} +data: + myValue: {{ default "test" .Values.myValue }} + deploymentTime: {{ now }} diff --git a/tests/integration/targets/helm_diff/meta/main.yml b/tests/integration/targets/helm_diff/meta/main.yml index 10d989e78a..b700f8c191 100644 --- a/tests/integration/targets/helm_diff/meta/main.yml +++ b/tests/integration/targets/helm_diff/meta/main.yml @@ -2,3 +2,4 @@ dependencies: - remove_namespace - install_helm + - setup_helm_registry diff --git a/tests/integration/targets/helm_diff/tasks/main.yml b/tests/integration/targets/helm_diff/tasks/main.yml index c37d947f5f..c2228e9afd 100644 --- a/tests/integration/targets/helm_diff/tasks/main.yml +++ b/tests/integration/targets/helm_diff/tasks/main.yml @@ -2,7 +2,6 @@ - name: Test helm diff functionality vars: test_chart_ref: "/tmp/test-chart" - redis_chart_version: '17.0.5' block: @@ -24,7 +23,7 @@ name: test-chart namespace: "{{ helm_namespace }}" chart_ref: "{{ test_chart_ref }}" - create_namespace: yes + create_namespace: true register: install - assert: @@ -49,8 +48,8 @@ name: test-chart namespace: "{{ helm_namespace }}" chart_ref: "{{ test_chart_ref }}" - check_mode: yes - diff: yes + check_mode: true + diff: true register: diff_result - name: Check if helm diff check is correct @@ -79,7 +78,7 @@ namespace: "{{ helm_namespace }}" chart_ref: "{{ test_chart_ref }}" check_mode: yes - diff: yes + diff: true register: diff_result - name: Check if no diff in check mode when no change @@ -101,7 +100,7 @@ - name: Modify values blockinfile: - create: yes + create: true path: "{{ test_chart_ref }}/values.yml" block: | --- @@ -206,52 +205,76 @@ - install is not changed # Test helm diff with chart_repo_url - - name: Define Redis chart values + - name: Uninstall helm diff + helm_plugin: + binary_path: "{{ helm_binary }}" + state: absent + plugin_name: diff + ignore_errors: true + + - name: Define chart variables set_fact: - redis_chart_values: - commonLabels: - phase: testing - company: RedHat - image: - tag: 6.2.6-debian-10-r135 - architecture: standalone - - - name: Install Redis chart + test_chart_values: + myValue: 'Some ConfigMap data value' + myConfigmapName: 'ansible-config-from-url' + test_chart_version: 0.1.0 + test_chart_ref_url: "oci://localhost:6035/testing/test-chart-deployment-time" + + - name: Deploy chart to remote registry + block: + - name: Create local directory to copy chart in + ansible.builtin.tempfile: + suffix: .chart + state: directory + register: _tmpd + + - name: Copy local registry + ansible.builtin.copy: + dest: "{{ _tmpd.path }}" + src: '{{ role_path }}/files/test-chart-deployment-time' + + - name: Push chart to helm registry + ansible.builtin.include_role: + name: push_to_helm_registry + vars: + chart_local_path: '{{ _tmpd.path }}/test-chart-deployment-time' + chart_repo_path: 'testing' + always: + - name: Delete temporary directory + ansible.builtin.file: + state: absent + path: '{{ _tmpd.path }}' + + - name: Log into Helm registry + ansible.builtin.command: "{{ helm_binary }} registry login -u testuser -p 'pass123!' localhost:6035" + + - name: Install chart from remote URL helm: binary_path: "{{ helm_binary }}" - chart_repo_url: https://charts.bitnami.com/bitnami - chart_ref: redis + chart_ref: "{{ test_chart_ref_url }}" + chart_version: 0.1.0 namespace: "{{ helm_namespace }}" - name: redis-chart - chart_version: "{{ redis_chart_version }}" - release_values: "{{ redis_chart_values }}" + name: another-chart + release_values: "{{ test_chart_values }}" - - name: Upgrade Redis chart + - name: Upgrade chart helm: binary_path: "{{ helm_binary }}" - chart_repo_url: https://charts.bitnami.com/bitnami - chart_ref: redis + chart_ref: "{{ test_chart_ref_url }}" + chart_version: 0.1.0 namespace: "{{ helm_namespace }}" - name: redis-chart - chart_version: "{{ redis_chart_version }}" - release_values: "{{ redis_chart_values }}" - check_mode: yes - register: redis_upgrade + name: another-chart + release_values: "{{ test_chart_values }}" + check_mode: true + register: _upgrade - name: Assert that module raised a warning assert: that: - - not redis_upgrade.changed - - redis_upgrade.warnings is defined - - redis_upgrade.warnings | length == 1 - - redis_upgrade.warnings[0] == "The default idempotency check can fail to report changes in certain cases. Install helm diff >= 3.4.1 for better results." - - - name: Uninstall helm diff - helm_plugin: - binary_path: "{{ helm_binary }}" - state: absent - plugin_name: diff - ignore_errors: yes + - not _upgrade.changed + - _upgrade.warnings is defined + - _upgrade.warnings | length == 1 + - _upgrade.warnings[0] == "The default idempotency check can fail to report changes in certain cases. Install helm diff >= 3.4.1 for better results." - name: Install helm diff (version=3.4.1) helm_plugin: @@ -260,37 +283,36 @@ plugin_path: https://github.com/databus23/helm-diff plugin_version: 3.4.1 - - name: Upgrade Redis chart once again + - name: Upgrade chart once again helm: binary_path: "{{ helm_binary }}" - chart_repo_url: https://charts.bitnami.com/bitnami - chart_ref: redis + chart_ref: "{{ test_chart_ref_url }}" + chart_version: 0.1.0 namespace: "{{ helm_namespace }}" - name: redis-chart - chart_version: "{{ redis_chart_version }}" - release_values: "{{ redis_chart_values }}" - check_mode: yes - register: redis_upgrade_2 + name: another-chart + release_values: "{{ test_chart_values }}" + check_mode: true + register: _upgrade_2 - name: Assert that module raised a warning assert: that: - - redis_upgrade_2.changed - - redis_upgrade_2.warnings is not defined + - _upgrade_2.changed + - _upgrade_2.warnings is not defined always: - name: Remove chart directory file: path: "{{ test_chart_ref }}" state: absent - ignore_errors: yes + ignore_errors: true - name: Uninstall helm diff helm_plugin: binary_path: "{{ helm_binary }}" state: absent plugin_name: diff - ignore_errors: yes + ignore_errors: true - name: Remove helm namespace k8s: @@ -299,6 +321,6 @@ name: "{{ helm_namespace }}" state: absent wait: true - ignore_errors: yes + ignore_errors: true - include_tasks: reuse_values.yml diff --git a/tests/integration/targets/helm_kubeconfig/tasks/tests_helm_auth.yml b/tests/integration/targets/helm_kubeconfig/tasks/tests_helm_auth.yml index 8599b66a92..5b66660914 100644 --- a/tests/integration/targets/helm_kubeconfig/tasks/tests_helm_auth.yml +++ b/tests/integration/targets/helm_kubeconfig/tasks/tests_helm_auth.yml @@ -18,7 +18,12 @@ - set_fact: saved_kubeconfig_path: "{{ _dir.path }}/config" -- block: +- vars: + helm_repo_name: autoscaler + helm_repo_url: "https://kubernetes.github.io/autoscaler" + helm_release_name: "autoscaler" + helm_chart_name: "cluster-autoscaler" + block: - name: Copy default kubeconfig copy: remote_src: true @@ -59,14 +64,14 @@ - plugin_info.plugin_list != [] # helm_repository, helm, helm_info - - name: Add test_bitnami chart repository + - name: 'Add "{{ helm_repo_name }}" chart repository' helm_repository: binary_path: "{{ helm_binary }}" - name: test_bitnami + name: "{{ helm_repo_name }}" kubeconfig: "{{ test_kubeconfig | default(omit) }}" validate_certs: "{{ test_validate_certs | default(omit) }}" ca_cert: "{{ test_ca_cert | default(omit) }}" - repo_url: https://charts.bitnami.com/bitnami + repo_url: "{{ helm_repo_url }}" register: repository - name: Assert that repository was added @@ -77,8 +82,8 @@ - name: Install chart from repository added before helm: binary_path: "{{ helm_binary }}" - name: rabbitmq - chart_ref: test_bitnami/rabbitmq + name: "{{ helm_release_name }}" + chart_ref: "{{ helm_repo_name }}/{{ helm_chart_name }}" namespace: "{{ helm_namespace }}" update_repo_cache: true kubeconfig: "{{ test_kubeconfig | default(omit) }}" @@ -98,7 +103,7 @@ kubeconfig: "{{ test_kubeconfig | default(omit) }}" validate_certs: "{{ test_validate_certs | default(omit) }}" ca_cert: "{{ test_ca_cert | default(omit) }}" - name: "rabbitmq" + name: "{{ helm_release_name }}" namespace: "{{ helm_namespace }}" register: chart_info @@ -112,7 +117,7 @@ - name: Remove chart helm: binary_path: "{{ helm_binary }}" - name: rabbitmq + name: "{{ helm_release_name }}" namespace: "{{ helm_namespace }}" kubeconfig: "{{ test_kubeconfig | default(omit) }}" validate_certs: "{{ test_validate_certs | default(omit) }}" @@ -131,7 +136,7 @@ kubeconfig: "{{ test_kubeconfig | default(omit) }}" validate_certs: "{{ test_validate_certs | default(omit) }}" ca_cert: "{{ test_ca_cert | default(omit) }}" - name: "rabbitmq" + name: "{{ helm_release_name }}" namespace: "{{ helm_namespace }}" register: chart_info @@ -143,7 +148,7 @@ - name: Remove chart repository helm_repository: binary_path: "{{ helm_binary }}" - name: test_bitnami + name: "{{ helm_repo_name }}" kubeconfig: "{{ test_kubeconfig | default(omit) }}" validate_certs: "{{ test_validate_certs | default(omit) }}" ca_cert: "{{ test_ca_cert | default(omit) }}" @@ -192,6 +197,6 @@ - name: Delete helm repository helm_repository: binary_path: "{{ helm_binary }}" - name: test_bitnami + name: "{{ helm_repo_name }}" state: absent ignore_errors: true diff --git a/tests/integration/targets/helm_pull/tasks/main.yml b/tests/integration/targets/helm_pull/tasks/main.yml index 3705c5cb1c..1faf2be35c 100644 --- a/tests/integration/targets/helm_pull/tasks/main.yml +++ b/tests/integration/targets/helm_pull/tasks/main.yml @@ -203,9 +203,8 @@ - name: Download chart using untar_chart helm_pull: binary_path: "{{ helm_path }}" - chart_ref: redis + chart_ref: "oci://registry-1.docker.io/bitnamicharts/redis" destination: "{{ destination }}" - repo_url: "https://charts.bitnami.com/bitnami" untar_chart: true register: _result diff --git a/tests/integration/targets/helm_set_values/tasks/main.yml b/tests/integration/targets/helm_set_values/tasks/main.yml index 7ce5125f8d..f18428180e 100644 --- a/tests/integration/targets/helm_set_values/tasks/main.yml +++ b/tests/integration/targets/helm_set_values/tasks/main.yml @@ -1,8 +1,7 @@ - name: Install helm using set_values parameters helm: binary_path: "{{ helm_binary }}" - chart_ref: mariadb - chart_repo_url: https://charts.bitnami.com/bitnami + chart_ref: oci://registry-1.docker.io/bitnamicharts/mariadb release_name: test-mariadb release_namespace: "{{ helm_namespace }}" create_namespace: true @@ -36,8 +35,7 @@ - name: Install helm using set_values parameters helm: binary_path: "{{ helm_binary }}" - chart_ref: apache - chart_repo_url: https://charts.bitnami.com/bitnami + chart_ref: oci://registry-1.docker.io/bitnamicharts/apache release_name: test-apache release_namespace: "{{ helm_namespace }}" create_namespace: true @@ -79,8 +77,7 @@ - name: Install helm using set_values parameters helm: binary_path: "{{ helm_binary }}" - chart_ref: minio - chart_repo_url: https://charts.bitnami.com/bitnami + chart_ref: oci://registry-1.docker.io/bitnamicharts/minio release_name: test-minio release_namespace: "{{ helm_namespace }}" create_namespace: true diff --git a/tests/integration/targets/install_helm/defaults/main.yml b/tests/integration/targets/install_helm/defaults/main.yml index 0f8c952f49..6161efb680 100644 --- a/tests/integration/targets/install_helm/defaults/main.yml +++ b/tests/integration/targets/install_helm/defaults/main.yml @@ -1,4 +1,4 @@ --- -helm_version: v3.7.0 +helm_version: v3.8.0 helm_install_path: /tmp/helm helm_default_archive_name: "helm-{{ helm_version }}-{{ ansible_system | lower }}-amd64.tar.gz" diff --git a/tests/integration/targets/push_to_helm_registry/aliases b/tests/integration/targets/push_to_helm_registry/aliases new file mode 100644 index 0000000000..87e7bdaaec --- /dev/null +++ b/tests/integration/targets/push_to_helm_registry/aliases @@ -0,0 +1 @@ +disabled \ No newline at end of file diff --git a/tests/integration/targets/push_to_helm_registry/defaults/main.yml b/tests/integration/targets/push_to_helm_registry/defaults/main.yml new file mode 100644 index 0000000000..4b5df41389 --- /dev/null +++ b/tests/integration/targets/push_to_helm_registry/defaults/main.yml @@ -0,0 +1,5 @@ +--- +helm_binary_path: "helm" +chart_repo_url: 'localhost:6035' +chart_repo_username: testuser +chart_repo_password: 'pass123!' diff --git a/tests/integration/targets/push_to_helm_registry/tasks/main.yml b/tests/integration/targets/push_to_helm_registry/tasks/main.yml new file mode 100644 index 0000000000..d3dfda18f8 --- /dev/null +++ b/tests/integration/targets/push_to_helm_registry/tasks/main.yml @@ -0,0 +1,38 @@ +--- +- name: Ensure we can log into the helm registry + command: >- + {{ helm_binary_path }} registry login + -u {{ chart_repo_username }} + -p {{ chart_repo_password }} + {{ chart_repo_url }} + +- name: Package chart and push to helm registry + block: + - name: Create temporary directory to store chart + ansible.builtin.tempfile: + state: directory + suffix: .chart + register: _tmpfile + + - name: Package helm chart + command: '{{ helm_binary_path }} package {{ chart_local_path }} --destination {{ _tmpfile.path }}' + + - name: Locate helm chart package + ansible.builtin.find: + paths: "{{ _tmpfile.path }}" + patterns: '*.tgz' + register: _files + + - name: Helm push chart to the registry + command: '{{ helm_binary_path }} push {{ _files.files.0.path }} oci://{{ chart_repo_url }}/{{ chart_repo_path }}' + + always: + - name: Logout from registry + command: '{{ helm_binary_path }} registry logout {{ chart_repo_url }}' + ignore_errors: true + + - name: Delete temporary directory + ansible.builtin.file: + state: absent + path: '{{ _tmpfile.path }}' + ignore_errors: true diff --git a/tests/integration/targets/setup_helm_registry/aliases b/tests/integration/targets/setup_helm_registry/aliases new file mode 100644 index 0000000000..7a68b11da8 --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/aliases @@ -0,0 +1 @@ +disabled diff --git a/tests/integration/targets/setup_helm_registry/defaults/main.yml b/tests/integration/targets/setup_helm_registry/defaults/main.yml new file mode 100644 index 0000000000..0d8c3ba4c8 --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/defaults/main.yml @@ -0,0 +1,5 @@ +--- +# user: testuser, password: pass123! +registry_credentials: testuser:$2y$05$d8tw6L1hojRFW.FjHOAnIOihJWAvFb0/Pu/30hLbQNJIYzCmlyBCi +registry_name: helm_registry +registry_port: 6035 diff --git a/tests/integration/targets/setup_helm_registry/handlers/main.yml b/tests/integration/targets/setup_helm_registry/handlers/main.yml new file mode 100644 index 0000000000..92bbe5978b --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/handlers/main.yml @@ -0,0 +1,3 @@ +--- +- name: Teardown registry + include_tasks: teardown_registry.yml diff --git a/tests/integration/targets/setup_helm_registry/tasks/main.yml b/tests/integration/targets/setup_helm_registry/tasks/main.yml new file mode 100644 index 0000000000..4c84898680 --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/tasks/main.yml @@ -0,0 +1,32 @@ +--- +- name: Ensure we can talk to docker daemon + ansible.builtin.shell: + cmd: docker ps + +- name: Create temporary directory to store file in + tempfile: + state: directory + suffix: .helm_registry + register: _tmpfile + # notify: + # - Teardown registry + +- name: Create authentication file + copy: + content: "{{ registry_credentials }}" + dest: "{{ _tmpfile.path }}/htpasswd" + +- name: Remove existing registry + ansible.builtin.include_tasks: remove_docker_container.yml + +- name: Create registry container + command: >- + docker run -d + -p {{ registry_port }}:5000 + --restart=always + --name "{{ registry_name }}" + -v "{{ _tmpfile.path }}:/auth" + -e "REGISTRY_AUTH=htpasswd" + -e "REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm" + -e REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd + registry:2 diff --git a/tests/integration/targets/setup_helm_registry/tasks/remove_docker_container.yml b/tests/integration/targets/setup_helm_registry/tasks/remove_docker_container.yml new file mode 100644 index 0000000000..77d33b61ac --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/tasks/remove_docker_container.yml @@ -0,0 +1,15 @@ +--- +- name: Inspect docker container + command: docker container inspect {{ registry_name }} -f '{{ '{{' }} .State.Running {{ '}}' }}' + register: _inspect + ignore_errors: true + +- name: Remove container + when: _inspect.rc == 0 + block: + - name: Stop running container + command: docker container stop {{ registry_name }} + when: _inspect.stdout == "true" + + - name: Remove container + command: docker container rm {{ registry_name }} diff --git a/tests/integration/targets/setup_helm_registry/tasks/teardown_registry.yml b/tests/integration/targets/setup_helm_registry/tasks/teardown_registry.yml new file mode 100644 index 0000000000..7382a8bb00 --- /dev/null +++ b/tests/integration/targets/setup_helm_registry/tasks/teardown_registry.yml @@ -0,0 +1,9 @@ +--- +- name: Remove Docker container + ansible.builtin.include_tasks: remove_docker_container.yml + +- name: Delete temporary directory + file: + state: absent + path: '{{ _tmpfile.path }}' + ignore_errors: true diff --git a/tests/sanity/ignore-2.14.txt b/tests/sanity/ignore-2.14.txt index 5f1713d7dc..66d03d7b21 100644 --- a/tests/sanity/ignore-2.14.txt +++ b/tests/sanity/ignore-2.14.txt @@ -25,3 +25,4 @@ plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/k8s_delete/files/deployments.yaml yamllint!skip tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip diff --git a/tests/sanity/ignore-2.15.txt b/tests/sanity/ignore-2.15.txt index 7eee4a23c7..cfcff02404 100644 --- a/tests/sanity/ignore-2.15.txt +++ b/tests/sanity/ignore-2.15.txt @@ -26,3 +26,4 @@ plugins/modules/k8s_scale.py validate-modules:return-syntax-error plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip diff --git a/tests/sanity/ignore-2.16.txt b/tests/sanity/ignore-2.16.txt index c154baaf2d..c8e746f58d 100644 --- a/tests/sanity/ignore-2.16.txt +++ b/tests/sanity/ignore-2.16.txt @@ -29,3 +29,4 @@ plugins/modules/k8s_scale.py validate-modules:return-syntax-error plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip diff --git a/tests/sanity/ignore-2.17.txt b/tests/sanity/ignore-2.17.txt index c154baaf2d..c8e746f58d 100644 --- a/tests/sanity/ignore-2.17.txt +++ b/tests/sanity/ignore-2.17.txt @@ -29,3 +29,4 @@ plugins/modules/k8s_scale.py validate-modules:return-syntax-error plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip diff --git a/tests/sanity/ignore-2.18.txt b/tests/sanity/ignore-2.18.txt index 39dca9ac9c..615376934a 100644 --- a/tests/sanity/ignore-2.18.txt +++ b/tests/sanity/ignore-2.18.txt @@ -26,3 +26,4 @@ plugins/modules/k8s_scale.py validate-modules:return-syntax-error plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip diff --git a/tests/sanity/ignore-2.19.txt b/tests/sanity/ignore-2.19.txt index 39dca9ac9c..615376934a 100644 --- a/tests/sanity/ignore-2.19.txt +++ b/tests/sanity/ignore-2.19.txt @@ -26,3 +26,4 @@ plugins/modules/k8s_scale.py validate-modules:return-syntax-error plugins/modules/k8s_service.py validate-modules:return-syntax-error plugins/modules/k8s_taint.py validate-modules:return-syntax-error tests/integration/targets/helm_diff/files/test-chart-reuse-values/templates/configmap.yaml yamllint!skip +tests/integration/targets/helm_diff/files/test-chart-deployment-time/templates/configmap.yaml yamllint!skip