ozg-3938 enable grpc tls

9a6db20d · OZGCloud · b864d2dc · 9a6db20d · 9a6db20d · 9a6db20d
Commit 9a6db20d authored 1 year ago by OZGCloud
--- a/run_helm_test.sh
+++ b/run_helm_test.sh
@@ -4,4 +4,4 @@ set -e
 helm template  ./src/main/helm/ -f src/test/helm-linter-values.yaml
 helm lint -f src/test/helm-linter-values.yaml ./src/main/helm/
-cd src/main/helm && helm unittest  -f '../../test/helm/**/*test.yaml' .
+cd src/main/helm && helm unittest  -f '../../test/helm/**/*.yaml' .
\ No newline at end of file
--- a/src/main/helm/templates/deployment.yaml
+++ b/src/main/helm/templates/deployment.yaml
@@ -59,6 +59,8 @@ spec:
            app.kubernetes.io/name: {{ .Release.Name }}
      containers:
      - env:
+        - name: SERVICE_BINDING_ROOT
+          value: "/bindings"
        {{- range (.Values.env).grpc }}
        - name: {{ .name }} 
          value: {{ .value }}
@@ -79,7 +81,7 @@ spec:
        - name: grpc_client_vorgang-manager-{{ (.Values.routing).targetVorgangManagerName}}_address
          value: 'vorgang-manager.{{ coalesce (.Values.routing).targetNamespace .Release.Namespace }}:9090'
        - name: grpc_client_vorgang-manager-{{ (.Values.routing).targetVorgangManagerName}}_negotiationType
-          value: {{ (.Values.routing).negotiationType | default "PLAINTEXT" }}
+          value: {{ (.Values.routing).negotiationType | default "TLS" }}
        {{- end }}
        {{- with (.Values.env).customList }}
 {{ toYaml . | indent 8 }}
@@ -150,9 +152,23 @@ spec:
        volumeMounts:
          - name: temp-dir
            mountPath: "/tmp"
+          - name: namespace-ca-cert
+            mountPath: "/bindings/namespace-certificate"
+            readOnly: true
      volumes:
        - name: temp-dir
          emptyDir: {}
+        - name: namespace-ca-cert
+          projected:
+            sources:
+            - secret:
+                name: {{ include "app.namespace" . }}-ca-cert
+                optional: true
+                items:
+                  - key: ca.crt
+                    path: ca.crt
+            - configMap:
+                name: bindings-type
      dnsConfig: {}
      dnsPolicy: ClusterFirst
      imagePullSecrets:

--- a/src/test/helm/deployment_routing_strategy_env.yaml
+++ b/src/test/helm/deployment_routing_strategy_env.yaml
@@ -49,13 +49,13 @@ tests:
          path: spec.template.spec.containers[0].env
          content:
            name: grpc_client_vorgang-manager-vorgang-manager_negotiationType
-            value: PLAINTEXT
+            value: TLS
  - it: validate routing infos
    set:
      routing:
        routingStrategy: MULTI
        fallbackStrategy: FUNDSTELLE
-        negotiationType: TLS
+        negotiationType: PLAINTEXT
    asserts:
      - contains:
          path: spec.template.spec.containers[0].env
@@ -71,4 +71,4 @@ tests:
          path: spec.template.spec.containers[0].env
          content:
            name: grpc_client_vorgang-manager-vorgang-manager_negotiationType
-            value: TLS
+            value: PLAINTEXT
\ No newline at end of file