App for TA collector mtls e2e tests

.chloggen/publish-test-e2e-images.yaml

@@ -0,0 +1,17 @@
+# One of 'breaking', 'deprecation', 'new_component', 'enhancement', 'bug_fix'
+change_type: enhancement
+
+# The name of the component, or a single word describing the area of concern, (e.g. collector, target allocator, auto-instrumentation, opamp, github action)
+component: github action e2e test image
+
+# A brief description of the change. Surround your text with quotes ("") if it needs to start with a backtick (`).
+note: "Docker image for a simple server with a metrics endpoint that has authentication required"
+
+# One or more tracking issues related to the change
+issues: [1669]
+
+# (Optional) One or more lines of additional information to render under the primary note.
+# These lines will be padded with 2 spaces and then inserted directly into the document.
+# Use pipe (|) for multiline entries.
+subtext: |
+  Used for testing the feature that enables mTLS between the TA and the collector for scraping endpoints that have authentication

.github/workflows/publish-test-e2e-images.yaml

@@ -53,3 +53,8 @@ jobs:
     with:
       path: nodejs
       platforms: linux/arm64,linux/amd64,linux/s390x,linux/ppc64le
+  metrics-basic-auth:
+    uses: ./.github/workflows/reusable-publish-test-e2e-images.yaml
+    with:
+      path: metrics-basic-auth
+      platforms: linux/arm64,linux/amd64,linux/s390x,linux/ppc64le 

tests/test-e2e-apps/metrics-basic-auth/Dockerfile

@@ -0,0 +1,10 @@
+FROM python:3.11-slim
+
+COPY requirements.txt .
+RUN pip install -r requirements.txt
+
+COPY app.py .
+
+EXPOSE 9123
+
+CMD ["python", "app.py"]

tests/test-e2e-apps/metrics-basic-auth/app.py

@@ -0,0 +1,36 @@
+import os
+os.environ['PROMETHEUS_DISABLE_CREATED_SERIES'] = 'true'
+
+from flask import Flask, Response, request
+from prometheus_client import Gauge, generate_latest, REGISTRY, PROCESS_COLLECTOR, PLATFORM_COLLECTOR, GC_COLLECTOR
+
+app = Flask(__name__)
+
+REGISTRY.unregister(PROCESS_COLLECTOR)
+REGISTRY.unregister(PLATFORM_COLLECTOR)
+REGISTRY.unregister(GC_COLLECTOR)
+
+secure = Gauge('authenticated', 'Client was authenticated')
+secure.set(1)
+
+USERNAME = "user"
+PASSWORD = "t0p$ecreT"
+
+def check_auth(username, password):
+    return username == USERNAME and password == PASSWORD
+
+def authenticate():
+    return Response(
+    'Could not verify your access level for that URL.\n'
+    'You have to login with proper credentials', 401,
+    {'WWW-Authenticate': 'Basic realm="Login Required"'})
+
+@app.route('/metrics')
+def metrics():
+    auth = request.authorization
+    if not auth or not check_auth(auth.username, auth.password):
+        return authenticate()
+    return Response(generate_latest(), mimetype='text/plain')
+
+if __name__ == '__main__':
+    app.run(host='0.0.0.0', port=9123)

tests/test-e2e-apps/metrics-basic-auth/requirements.txt

@@ -0,0 +1,2 @@
+Flask==2.3.3
+prometheus_client==0.20.0