kubespray/tests
Matthew Mosesohn d487b2f927 Security best practice fixes (#1783)
* Disable basic and token auth by default

* Add recommended security params

* allow basic auth to fail in tests

* Enable TLS authentication for kubelet
2017-10-15 20:41:17 +01:00
..
cloud_playbooks Update gce CI (#1748) 2017-10-05 16:52:28 +01:00
local_inventory Update playbooks for automatic deployment tests 2016-02-13 17:57:10 +01:00
scripts Enable netchecker for CI 2016-12-14 13:42:19 +01:00
support choose between gce and aws cloud providers 2016-03-23 17:27:06 +01:00
templates Add all-in-one CI mode and make coreos test aio (#1665) 2017-09-15 22:28:37 +01:00
testcases Security best practice fixes (#1783) 2017-10-15 20:41:17 +01:00
README.md Move common groovy test code for jenkins into git repo and add test result matrix 2016-03-10 22:45:54 +01:00
ansible.cfg Enable ssh opts by in config, set 100 connection retries (#1662) 2017-09-15 10:19:36 +01:00
requirements.txt Update gce CI (#1748) 2017-10-05 16:52:28 +01:00
run-tests.sh Add complete test integration 2016-02-10 22:58:57 +01:00
shebang-unit Add complete test integration 2016-02-10 22:58:57 +01:00

README.md

Kubespray cloud deployment tests

Amazon Web Service

          | Calico        | Flannel       | Weave         |

------------- | ------------- | ------------- | ------------- | Debian Jessie | Build Status | Build Status | Build Status | Ubuntu Trusty |Build Status|Build Status|Build Status| RHEL 7.2 |Build Status|Build Status|Build Status| CentOS 7 |Build Status|Build Status|Build Status|

Test environment variables

Common

Variable Description Required Default
TEST_ID A unique execution ID for this test Yes
KUBE_NETWORK_PLUGIN The network plugin (calico or flannel) Yes
PRIVATE_KEY_FILE The path to the SSH private key file No

AWS Tests

Variable Description Required Default
AWS_ACCESS_KEY The Amazon Access Key ID Yes
AWS_SECRET_KEY The Amazon Secret Access Key Yes
AWS_AMI_ID The AMI ID to deploy Yes
AWS_KEY_PAIR_NAME The name of the EC2 key pair to use Yes
AWS_SECURITY_GROUP The EC2 Security Group to use No default
AWS_REGION The EC2 region No eu-central-1

Use private ssh key

Key
openssl pkcs12 -in gce-secure.p12 -passin pass:notasecret -nodes -nocerts | openssl rsa -out gce-secure.pem
cat gce-secure.pem |base64 -w0 > GCE_PEM_FILE`