podman/test/e2e/login_logout_test.go

package integration

import (
	"encoding/json"
	"fmt"
	"io/ioutil"
	"os"
	"path/filepath"
	"strconv"
	"strings"

	. "github.com/containers/podman/v2/test/utils"
	. "github.com/onsi/ginkgo"
	"github.com/onsi/ginkgo/config"
	. "github.com/onsi/gomega"
)

var _ = Describe("Podman login and logout", func() {
	var (
		tempdir                  string
		err                      error
		podmanTest               *PodmanTestIntegration
		authPath                 string
		certPath                 string
		certDirPath              string
		port                     int
		server                   string
		testImg                  string
		registriesConfWithSearch []byte
	)

	BeforeEach(func() {
		tempdir, err = CreateTempDirInTempDir()
		if err != nil {
			os.Exit(1)
		}
		podmanTest = PodmanTestCreate(tempdir)

		authPath = filepath.Join(podmanTest.TempDir, "auth")
		os.Mkdir(authPath, os.ModePerm)

		if IsCommandAvailable("getenforce") {
			ge := SystemExec("getenforce", []string{})
			ge.WaitWithDefaultTimeout()
			if ge.OutputToString() == "Enforcing" {
				se := SystemExec("setenforce", []string{"0"})
				se.WaitWithDefaultTimeout()
				if se.ExitCode() != 0 {
					Skip("Cannot disable selinux, this may cause problem for reading cert files inside container.")
				}
				defer SystemExec("setenforce", []string{"1"})
			}
		}

		session := podmanTest.Podman([]string{"run", "--entrypoint", "htpasswd", "registry:2.6", "-Bbn", "podmantest", "test"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		f, _ := os.Create(filepath.Join(authPath, "htpasswd"))
		defer f.Close()

		f.WriteString(session.OutputToString())
		f.Sync()
		port = 4999 + config.GinkgoConfig.ParallelNode
		server = strings.Join([]string{"localhost", strconv.Itoa(port)}, ":")

		registriesConfWithSearch = []byte(fmt.Sprintf("[registries.search]\nregistries = ['%s']", server))

		testImg = strings.Join([]string{server, "test-alpine"}, "/")

		certDirPath = filepath.Join(os.Getenv("HOME"), ".config/containers/certs.d", server)
		os.MkdirAll(certDirPath, os.ModePerm)
		cwd, _ := os.Getwd()
		certPath = filepath.Join(cwd, "../", "certs")

		setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDirPath, "ca.crt")})
		setup.WaitWithDefaultTimeout()

		session = podmanTest.Podman([]string{"run", "-d", "-p", strings.Join([]string{strconv.Itoa(port), strconv.Itoa(port)}, ":"),
			"-e", strings.Join([]string{"REGISTRY_HTTP_ADDR=0.0.0.0", strconv.Itoa(port)}, ":"), "--name", "registry", "-v",
			strings.Join([]string{authPath, "/auth"}, ":"), "-e", "REGISTRY_AUTH=htpasswd", "-e",
			"REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm", "-e", "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd",
			"-v", strings.Join([]string{certPath, "/certs"}, ":"), "-e", "REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt",
			"-e", "REGISTRY_HTTP_TLS_KEY=/certs/domain.key", "registry:2.6"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		if !WaitContainerReady(podmanTest, "registry", "listening on", 20, 1) {
			Skip("Cannot start docker registry.")
		}
	})

	AfterEach(func() {
		podmanTest.Cleanup()
		os.RemoveAll(authPath)
		os.RemoveAll(certDirPath)
	})

	It("podman login and logout", func() {
		session := podmanTest.Podman([]string{"login", "-u", "podmantest", "-p", "test", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"logout", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session).To(ExitWithError())
	})

	It("podman login and logout without registry parameter", func() {
		registriesConf, err := ioutil.TempFile("", "TestLoginWithoutParameter")
		Expect(err).To(BeNil())
		defer registriesConf.Close()
		defer os.Remove(registriesConf.Name())

		err = ioutil.WriteFile(registriesConf.Name(), []byte(registriesConfWithSearch), os.ModePerm)
		Expect(err).To(BeNil())

		// Environment is per-process, so this looks very unsafe; actually it seems fine because tests are not
		// run in parallel unless they opt in by calling t.Parallel().  So don’t do that.
		oldRCP, hasRCP := os.LookupEnv("REGISTRIES_CONFIG_PATH")
		defer func() {
			if hasRCP {
				os.Setenv("REGISTRIES_CONFIG_PATH", oldRCP)
			} else {
				os.Unsetenv("REGISTRIES_CONFIG_PATH")
			}
		}()
		os.Setenv("REGISTRIES_CONFIG_PATH", registriesConf.Name())

		session := podmanTest.Podman([]string{"login", "-u", "podmantest", "-p", "test"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To((Equal(0)))

		session = podmanTest.Podman([]string{"logout"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))
	})

	It("podman login and logout with flag --authfile", func() {
		authFile := filepath.Join(podmanTest.TempDir, "auth.json")
		session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--authfile", authFile, server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		authInfo, _ := ioutil.ReadFile(authFile)
		var info map[string]interface{}
		json.Unmarshal(authInfo, &info)
		fmt.Println(info)

		// push should fail with nonexistent authfile
		session = podmanTest.Podman([]string{"push", "--authfile", "/tmp/nonexistent", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Not(Equal(0)))

		session = podmanTest.Podman([]string{"push", "--authfile", authFile, ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"run", "--authfile", authFile, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		// logout should fail with nonexistent authfile
		session = podmanTest.Podman([]string{"logout", "--authfile", "/tmp/nonexistent", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Not(Equal(0)))

		session = podmanTest.Podman([]string{"logout", "--authfile", authFile, server})
	})

	It("podman login and logout with --tls-verify", func() {
		session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--tls-verify=false", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"logout", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))
	})
	It("podman login and logout with --cert-dir", func() {
		certDir := filepath.Join(podmanTest.TempDir, "certs")
		os.MkdirAll(certDir, os.ModePerm)

		setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDir, "ca.crt")})
		setup.WaitWithDefaultTimeout()

		session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--cert-dir", certDir, server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", "--cert-dir", certDir, ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"logout", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))
	})
	It("podman login and logout with multi registry", func() {
		certDir := filepath.Join(os.Getenv("HOME"), ".config/containers/certs.d", "localhost:9001")
		os.MkdirAll(certDir, os.ModePerm)

		cwd, _ := os.Getwd()
		certPath = filepath.Join(cwd, "../", "certs")

		setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDir, "ca.crt")})
		setup.WaitWithDefaultTimeout()
		defer os.RemoveAll(certDir)

		session := podmanTest.Podman([]string{"run", "-d", "-p", "9001:9001", "-e", "REGISTRY_HTTP_ADDR=0.0.0.0:9001", "--name", "registry1", "-v",
			strings.Join([]string{authPath, "/auth"}, ":"), "-e", "REGISTRY_AUTH=htpasswd", "-e",
			"REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm", "-e", "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd",
			"-v", strings.Join([]string{certPath, "/certs"}, ":"), "-e", "REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt",
			"-e", "REGISTRY_HTTP_TLS_KEY=/certs/domain.key", "registry:2.6"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		if !WaitContainerReady(podmanTest, "registry1", "listening on", 20, 1) {
			Skip("Cannot start docker registry.")
		}

		session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
		session.WaitWithDefaultTimeout()
		Expect(session).To(ExitWithError())

		session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "localhost:9001"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"logout", server})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session).To(ExitWithError())

		session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "localhost:9001"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"logout", "-a"})
		session.WaitWithDefaultTimeout()
		Expect(session.ExitCode()).To(Equal(0))

		session = podmanTest.Podman([]string{"push", ALPINE, testImg})
		session.WaitWithDefaultTimeout()
		Expect(session).To(ExitWithError())

		session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
		session.WaitWithDefaultTimeout()
		Expect(session).To(ExitWithError())
	})
})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+								package integration
 								import (
 									"encoding/json"
 									"fmt"
 									"io/ioutil"
 									"os"
 									"path/filepath"
 									"strconv"
 									"strings"
-												Switch all references to github.com/containers/libpod -> podman

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

											
										
										
											2020-07-28 12:23:45 +00:00
+									. "github.com/containers/podman/v2/test/utils"
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									. "github.com/onsi/ginkgo"
 									"github.com/onsi/ginkgo/config"
 									. "github.com/onsi/gomega"
 								)
 								var _ = Describe("Podman login and logout", func() {
 									var (
-												fix mandatory parameter in login/logout

fix #5146
Insted of using a registry as mandatory parameter, this path allows podman to use the first registry from registries.conf.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-17 16:59:12 +00:00
+										tempdir                  string
 										err                      error
 										podmanTest               *PodmanTestIntegration
 										authPath                 string
 										certPath                 string
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										certDirPath              string
-												fix mandatory parameter in login/logout

fix #5146
Insted of using a registry as mandatory parameter, this path allows podman to use the first registry from registries.conf.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-17 16:59:12 +00:00
+										port                     int
 										server                   string
 										testImg                  string
 										registriesConfWithSearch []byte
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									)
 									BeforeEach(func() {
 										tempdir, err = CreateTempDirInTempDir()
 										if err != nil {
 											os.Exit(1)
 										}
 										podmanTest = PodmanTestCreate(tempdir)
 										authPath = filepath.Join(podmanTest.TempDir, "auth")
 										os.Mkdir(authPath, os.ModePerm)
 										if IsCommandAvailable("getenforce") {
 											ge := SystemExec("getenforce", []string{})
 											ge.WaitWithDefaultTimeout()
 											if ge.OutputToString() == "Enforcing" {
 												se := SystemExec("setenforce", []string{"0"})
 												se.WaitWithDefaultTimeout()
 												if se.ExitCode() != 0 {
-												Make all Skips specify a reason

Always use CGROUPV2 rather then reading from system all the time.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

											
										
										
											2020-09-28 13:17:27 +00:00
+													Skip("Cannot disable selinux, this may cause problem for reading cert files inside container.")
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+												}
 												defer SystemExec("setenforce", []string{"1"})
 											}
 										}
-												CI: force registry:2.6

For using the `registry:2.6` image. 2.7 and beyond dropped the
`htpasswd` binary from the rootfs which parts of our CI depends
on.

While this is not a sustainable solution (assuming `htpasswd` is gone
for ever), it unblocks the CI for now.

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>

											
										
										
											2020-06-19 10:54:02 +00:00
+										session := podmanTest.Podman([]string{"run", "--entrypoint", "htpasswd", "registry:2.6", "-Bbn", "podmantest", "test"})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										f, _ := os.Create(filepath.Join(authPath, "htpasswd"))
 										defer f.Close()
 										f.WriteString(session.OutputToString())
 										f.Sync()
 										port = 4999 + config.GinkgoConfig.ParallelNode
 										server = strings.Join([]string{"localhost", strconv.Itoa(port)}, ":")
-												fix mandatory parameter in login/logout

fix #5146
Insted of using a registry as mandatory parameter, this path allows podman to use the first registry from registries.conf.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-17 16:59:12 +00:00
 										registriesConfWithSearch = []byte(fmt.Sprintf("[registries.search]\nregistries = ['%s']", server))
-												Spelling

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

											
										
										
											2020-12-21 22:48:43 +00:00
+										testImg = strings.Join([]string{server, "test-alpine"}, "/")
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										certDirPath = filepath.Join(os.Getenv("HOME"), ".config/containers/certs.d", server)
 										os.MkdirAll(certDirPath, os.ModePerm)
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										cwd, _ := os.Getwd()
 										certPath = filepath.Join(cwd, "../", "certs")
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDirPath, "ca.crt")})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										setup.WaitWithDefaultTimeout()
 										session = podmanTest.Podman([]string{"run", "-d", "-p", strings.Join([]string{strconv.Itoa(port), strconv.Itoa(port)}, ":"),
 											"-e", strings.Join([]string{"REGISTRY_HTTP_ADDR=0.0.0.0", strconv.Itoa(port)}, ":"), "--name", "registry", "-v",
 											strings.Join([]string{authPath, "/auth"}, ":"), "-e", "REGISTRY_AUTH=htpasswd", "-e",
 											"REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm", "-e", "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd",
 											"-v", strings.Join([]string{certPath, "/certs"}, ":"), "-e", "REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt",
-												CI: force registry:2.6

For using the `registry:2.6` image. 2.7 and beyond dropped the
`htpasswd` binary from the rootfs which parts of our CI depends
on.

While this is not a sustainable solution (assuming `htpasswd` is gone
for ever), it unblocks the CI for now.

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>

											
										
										
											2020-06-19 10:54:02 +00:00
+											"-e", "REGISTRY_HTTP_TLS_KEY=/certs/domain.key", "registry:2.6"})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										if !WaitContainerReady(podmanTest, "registry", "listening on", 20, 1) {
-												Make all Skips specify a reason

Always use CGROUPV2 rather then reading from system all the time.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

											
										
										
											2020-09-28 13:17:27 +00:00
+											Skip("Cannot start docker registry.")
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										}
 									})
 									AfterEach(func() {
 										podmanTest.Cleanup()
 										os.RemoveAll(authPath)
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										os.RemoveAll(certDirPath)
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									})
 									It("podman login and logout", func() {
 										session := podmanTest.Podman([]string{"login", "-u", "podmantest", "-p", "test", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"logout", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
-												Refactor tests when checking for error exit codes

Rather than checking for non-zero, we need to check for >0 to
distinguish between timeouts and error exit codes.

Signed-off-by: Jhon Honce <jhonce@redhat.com>

											
										
										
											2019-10-04 17:09:24 +00:00
+										Expect(session).To(ExitWithError())
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									})
-												fix mandatory parameter in login/logout

fix #5146
Insted of using a registry as mandatory parameter, this path allows podman to use the first registry from registries.conf.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-17 16:59:12 +00:00
+									It("podman login and logout without registry parameter", func() {
 										registriesConf, err := ioutil.TempFile("", "TestLoginWithoutParameter")
 										Expect(err).To(BeNil())
 										defer registriesConf.Close()
 										defer os.Remove(registriesConf.Name())
 										err = ioutil.WriteFile(registriesConf.Name(), []byte(registriesConfWithSearch), os.ModePerm)
 										Expect(err).To(BeNil())
 										// Environment is per-process, so this looks very unsafe; actually it seems fine because tests are not
 										// run in parallel unless they opt in by calling t.Parallel().  So don’t do that.
 										oldRCP, hasRCP := os.LookupEnv("REGISTRIES_CONFIG_PATH")
 										defer func() {
 											if hasRCP {
 												os.Setenv("REGISTRIES_CONFIG_PATH", oldRCP)
 											} else {
 												os.Unsetenv("REGISTRIES_CONFIG_PATH")
 											}
 										}()
 										os.Setenv("REGISTRIES_CONFIG_PATH", registriesConf.Name())
 										session := podmanTest.Podman([]string{"login", "-u", "podmantest", "-p", "test"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To((Equal(0)))
 										session = podmanTest.Podman([]string{"logout"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 									})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									It("podman login and logout with flag --authfile", func() {
 										authFile := filepath.Join(podmanTest.TempDir, "auth.json")
 										session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--authfile", authFile, server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										authInfo, _ := ioutil.ReadFile(authFile)
 										var info map[string]interface{}
 										json.Unmarshal(authInfo, &info)
 										fmt.Println(info)
-												Spelling

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

											
										
										
											2020-12-21 22:48:43 +00:00
+										// push should fail with nonexistent authfile
 										session = podmanTest.Podman([]string{"push", "--authfile", "/tmp/nonexistent", ALPINE, testImg})
-												fix bug check nonexist authfile

Use GetDefaultAuthFile() from buildah.
For podman command(except login), if authfile does not exist returns error.

close #4328

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2019-10-26 01:16:37 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Not(Equal(0)))
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session = podmanTest.Podman([]string{"push", "--authfile", authFile, ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
-												fix create&run getting --authfile from cli

Add flag `--authfile` to create and run so Podman can read authfile path from not only environemnt variable REGISTRY_AUTH_FILE but also CLI

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2019-08-06 15:22:18 +00:00
+										session = podmanTest.Podman([]string{"run", "--authfile", authFile, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
-												Spelling

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

											
										
										
											2020-12-21 22:48:43 +00:00
+										// logout should fail with nonexistent authfile
 										session = podmanTest.Podman([]string{"logout", "--authfile", "/tmp/nonexistent", server})
-												fix bug check nonexist authfile

Use GetDefaultAuthFile() from buildah.
For podman command(except login), if authfile does not exist returns error.

close #4328

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2019-10-26 01:16:37 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Not(Equal(0)))
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session = podmanTest.Podman([]string{"logout", "--authfile", authFile, server})
 									})
 									It("podman login and logout with --tls-verify", func() {
 										session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--tls-verify=false", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"logout", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 									})
 									It("podman login and logout with --cert-dir", func() {
 										certDir := filepath.Join(podmanTest.TempDir, "certs")
 										os.MkdirAll(certDir, os.ModePerm)
 										setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDir, "ca.crt")})
 										setup.WaitWithDefaultTimeout()
 										session := podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "--cert-dir", certDir, server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										session = podmanTest.Podman([]string{"push", "--cert-dir", certDir, ALPINE, testImg})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"logout", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 									})
 									It("podman login and logout with multi registry", func() {
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										certDir := filepath.Join(os.Getenv("HOME"), ".config/containers/certs.d", "localhost:9001")
 										os.MkdirAll(certDir, os.ModePerm)
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
 										cwd, _ := os.Getwd()
 										certPath = filepath.Join(cwd, "../", "certs")
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										setup := SystemExec("cp", []string{filepath.Join(certPath, "domain.crt"), filepath.Join(certDir, "ca.crt")})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										setup.WaitWithDefaultTimeout()
-												fix rootless login/logout tests

fix rootless login/logout tests. Since c/image can support peruser certs directory, this path uses $HOME dir as certs.d to avoid permission deny failures.

Signed-off-by: Qi Wang <qiwan@redhat.com>

											
										
										
											2020-02-10 21:26:35 +00:00
+										defer os.RemoveAll(certDir)
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
 										session := podmanTest.Podman([]string{"run", "-d", "-p", "9001:9001", "-e", "REGISTRY_HTTP_ADDR=0.0.0.0:9001", "--name", "registry1", "-v",
 											strings.Join([]string{authPath, "/auth"}, ":"), "-e", "REGISTRY_AUTH=htpasswd", "-e",
 											"REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm", "-e", "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd",
 											"-v", strings.Join([]string{certPath, "/certs"}, ":"), "-e", "REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt",
-												CI: force registry:2.6

For using the `registry:2.6` image. 2.7 and beyond dropped the
`htpasswd` binary from the rootfs which parts of our CI depends
on.

While this is not a sustainable solution (assuming `htpasswd` is gone
for ever), it unblocks the CI for now.

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>

											
										
										
											2020-06-19 10:54:02 +00:00
+											"-e", "REGISTRY_HTTP_TLS_KEY=/certs/domain.key", "registry:2.6"})
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										if !WaitContainerReady(podmanTest, "registry1", "listening on", 20, 1) {
-												Make all Skips specify a reason

Always use CGROUPV2 rather then reading from system all the time.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

											
										
										
											2020-09-28 13:17:27 +00:00
+											Skip("Cannot start docker registry.")
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+										}
 										session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
 										session.WaitWithDefaultTimeout()
-												Refactor tests when checking for error exit codes

Rather than checking for non-zero, we need to check for >0 to
distinguish between timeouts and error exit codes.

Signed-off-by: Jhon Honce <jhonce@redhat.com>

											
										
										
											2019-10-04 17:09:24 +00:00
+										Expect(session).To(ExitWithError())
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
 										session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "localhost:9001"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"logout", server})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
-												Refactor tests when checking for error exit codes

Rather than checking for non-zero, we need to check for >0 to
distinguish between timeouts and error exit codes.

Signed-off-by: Jhon Honce <jhonce@redhat.com>

											
										
										
											2019-10-04 17:09:24 +00:00
+										Expect(session).To(ExitWithError())
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
 										session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"login", "--username", "podmantest", "--password", "test", "localhost:9001"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"logout", "-a"})
 										session.WaitWithDefaultTimeout()
 										Expect(session.ExitCode()).To(Equal(0))
 										session = podmanTest.Podman([]string{"push", ALPINE, testImg})
 										session.WaitWithDefaultTimeout()
-												Refactor tests when checking for error exit codes

Rather than checking for non-zero, we need to check for >0 to
distinguish between timeouts and error exit codes.

Signed-off-by: Jhon Honce <jhonce@redhat.com>

											
										
										
											2019-10-04 17:09:24 +00:00
+										Expect(session).To(ExitWithError())
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
 										session = podmanTest.Podman([]string{"push", ALPINE, "localhost:9001/test-alpine"})
 										session.WaitWithDefaultTimeout()
-												Refactor tests when checking for error exit codes

Rather than checking for non-zero, we need to check for >0 to
distinguish between timeouts and error exit codes.

Signed-off-by: Jhon Honce <jhonce@redhat.com>

											
										
										
											2019-10-04 17:09:24 +00:00
+										Expect(session).To(ExitWithError())
-												Add test cases for login and logout

As logout test request login to the registry, we plan to test them
together. There are five test cases added:
1. Podman login and logout with default value
3. Podman login and logout with --authfile
2. Podman login and logout with --tls-verify
4. Podman login and logout with --cert-dir
5. Podman login and logout with multi registry

All above test cases are using docker rgistry v2

Signed-off-by: Yiqiao Pu <ypu@redhat.com>

											
										
										
											2019-03-20 10:24:45 +00:00
+									})
 								})