provision.sh: add none authentication method for on-premise scenario

`tools/provision.sh` is provisioning SUT always in the same way for both, the Service scenario and the on-premise scenario. While this is not causing any issues, it does not realistically represent how we expect osbuild-composer and worker to be used in these scenarios. The script currently supports the following authentication options: - `none` - Intended for the on-premise scenario with Weldr API. - NO certificates are generated. - NO osbuild-composer configuration file is created. - NO osbuild-worker configuration file is created. This means that no cloud provider credentials are configured directly in the worker. - Only the local worker is started and used. - Only the Weldr API socker is started. - Appropriate repository definitions are copied to `/etc/osbuild-composer/repositories/`. - `jwt` - Intended for the Service scenario with Cloud API. - Should be the only method supported in the Service scenario in the future. - Certificates are generated and copied to `/etc/osbuild-composer`. - osbuild-composer configuration file is created and configured for JWT authentication. - osbuild-worker configuration file is created, configured for JWT authentication and with appropriate cloud provider credentials. - Local worker unit is masked. Only the remote worker is used (the socket is started and one remote-worker instance is created). - Only the Cloud API socket is started (Weldr API socket is stopped). - NO repository definitions are copied to `/etc/osbuild-composer/repositories/`. - `tls` - Intended for the Service scenario with Cloud API. - Should eventually go away. - Certificates are generated and copied to `/etc/osbuild-composer`. - osbuild-composer configuration file is created and configured for TLS client cert authentication. - osbuild-worker configuration file is created, configured for TLS authentication and with appropriate cloud provider credentials. - Services and sockets are started as they used to be originally: - Both local and remote worker sockets are started. - Both Weldr and Cloud API sockets are started. - Only the local worker unit will be started automatically. - NO repository definitions are copied to `/etc/osbuild-composer/repositories/`.
2022-08-03 10:04:10 +02:00 · 2022-08-03 10:04:10 +02:00 · a4b0efb278
commit a4b0efb278
parent 31b1a383f0
28 changed files with 129 additions and 109 deletions
--- a/test/cases/aws.sh
+++ b/test/cases/aws.sh
@ -29,7 +29,7 @@ function get_build_info() {
 CONTAINER_IMAGE_CLOUD_TOOLS="quay.io/osbuild/cloud-tools:latest"

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Check available container runtime
 if which podman 2>/dev/null >&2; then
--- a/test/cases/aws_s3.sh
+++ b/test/cases/aws_s3.sh
@ -19,7 +19,7 @@ set -euo pipefail
 CONTAINER_IMAGE_CLOUD_TOOLS="quay.io/osbuild/cloud-tools:latest"

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Check available container runtime
 if which podman 2>/dev/null >&2; then
--- a/test/cases/azure.sh
+++ b/test/cases/azure.sh
@ -33,7 +33,7 @@ function get_build_info() {
 CONTAINER_IMAGE_CLOUD_TOOLS="quay.io/osbuild/cloud-tools:latest"

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Check available container runtime
 if which podman 2>/dev/null >&2; then
--- a/test/cases/base_tests.sh
+++ b/test/cases/base_tests.sh
@ -45,7 +45,7 @@ run_test_case () {


 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Change to the working directory.
 cd $WORKING_DIRECTORY
--- a/test/cases/container-embedding.sh
+++ b/test/cases/container-embedding.sh
@ -21,7 +21,7 @@ source /usr/libexec/osbuild-composer-test/set-env-variables.sh
 # Provision the software under test.
 #

-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 TEMPDIR=$(mktemp -d)
 function cleanup() {
--- a/test/cases/container-upload.sh
+++ b/test/cases/container-upload.sh
@ -21,7 +21,7 @@ source /usr/libexec/osbuild-composer-test/set-env-variables.sh
 # Provision the software under test.
 #

-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 ARTIFACTS="${ARTIFACTS:-/tmp/artifacts}"
 TEMPDIR=$(mktemp -d)
--- a/test/cases/cross-distro.sh
+++ b/test/cases/cross-distro.sh
@ -46,7 +46,7 @@ esac


 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none
 echo "====> Finished Provisioning system"
 echo "====> Starting $(basename "$0")"

--- a/test/cases/filesystem.sh
+++ b/test/cases/filesystem.sh
@ -8,7 +8,7 @@ set -euo pipefail
 source /etc/os-release

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Colorful output.
 function greenprint {
--- a/test/cases/gcp.sh
+++ b/test/cases/gcp.sh
@ -40,7 +40,7 @@ function get_build_info() {
 CONTAINER_IMAGE_CLOUD_TOOLS="quay.io/osbuild/cloud-tools:latest"

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Check available container runtime
 if which podman 2>/dev/null >&2; then
--- a/test/cases/generic_s3.sh
+++ b/test/cases/generic_s3.sh
@ -20,7 +20,7 @@ CONTAINER_MINIO_CLIENT="quay.io/minio/mc:latest"
 CONTAINER_MINIO_SERVER="quay.io/minio/minio:latest"

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Check available container runtime
 if which podman 2>/dev/null >&2; then
--- a/test/cases/image_tests.sh
+++ b/test/cases/image_tests.sh
@ -89,7 +89,7 @@ run_test_case () {
 }

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Change to the working directory.
 cd $WORKING_DIRECTORY
--- a/test/cases/installers.sh
+++ b/test/cases/installers.sh
@ -9,7 +9,7 @@ set -euo pipefail
 #

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Get OS data.
 source /usr/libexec/osbuild-composer-test/set-env-variables.sh
--- a/test/cases/libvirt.sh
+++ b/test/cases/libvirt.sh
@ -9,7 +9,7 @@ set -euo pipefail
 source /usr/libexec/osbuild-composer-test/set-env-variables.sh

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Test the images
 /usr/libexec/osbuild-composer-test/libvirt_test.sh qcow2
--- a/test/cases/manifest_tests.sh
+++ b/test/cases/manifest_tests.sh
@ -14,7 +14,7 @@ test_divider () {
 }

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Change to the working directory.
 cd $WORKING_DIRECTORY
--- a/test/cases/ostree-ng.sh
+++ b/test/cases/ostree-ng.sh
@ -2,7 +2,7 @@
 set -euo pipefail

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Get OS data.
 source /usr/libexec/osbuild-composer-test/set-env-variables.sh
--- a/test/cases/ostree-raw-image.sh
+++ b/test/cases/ostree-raw-image.sh
@ -2,7 +2,7 @@
 set -euo pipefail

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Get OS data.
 source /etc/os-release
--- a/test/cases/ostree-rebase.sh
+++ b/test/cases/ostree-rebase.sh
@ -10,7 +10,7 @@ if [[ ${ID} == "rhel" ]] && ! sudo subscription-manager status; then
 fi

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Colorful output.
 function greenprint {
--- a/test/cases/ostree-simplified-installer.sh
+++ b/test/cases/ostree-simplified-installer.sh
@ -2,7 +2,7 @@
 set -euo pipefail

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Get OS data.
 source /etc/os-release
--- a/test/cases/ostree.sh
+++ b/test/cases/ostree.sh
@ -10,7 +10,7 @@ if [[ ${ID} == "rhel" ]] && ! sudo subscription-manager status; then
 fi

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Set os-variant and boot location used by virt-install.
 case "${ID}-${VERSION_ID}" in
--- a/test/cases/regression-bigiso.sh
+++ b/test/cases/regression-bigiso.sh
@ -31,7 +31,7 @@ function get_build_info() {
 }

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none
 BLUEPRINT_FILE=/tmp/blueprint.toml
 COMPOSE_START=/tmp/compose-start.json
 COMPOSE_INFO=/tmp/compose-info.json
--- a/test/cases/regression-composer-works-behind-satellite-fallback.sh
+++ b/test/cases/regression-composer-works-behind-satellite-fallback.sh
@ -47,7 +47,7 @@ if [[ "$ID" == rhel ]] && sudo subscription-manager status; then
 fi

 # Provision the software under tet.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Discover what system is installed on the runner
 case "${ID}" in
--- a/test/cases/regression-composer-works-behind-satellite.sh
+++ b/test/cases/regression-composer-works-behind-satellite.sh
@ -76,7 +76,7 @@ if [[ "$ID" == rhel ]] && sudo subscription-manager status; then
 fi

 # Provision the software under tet.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 # Discover what system is installed on the runner
 case "${ID}" in
--- a/test/cases/regression-excluded-dependency.sh
+++ b/test/cases/regression-excluded-dependency.sh
@ -36,7 +36,7 @@ function get_build_info() {
 }

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none
 BLUEPRINT_FILE=/tmp/blueprint.toml
 COMPOSE_START=/tmp/compose-start.json
 COMPOSE_INFO=/tmp/compose-info.json
--- a/test/cases/regression-include-excluded-packages.sh
+++ b/test/cases/regression-include-excluded-packages.sh
@ -22,7 +22,7 @@ if [[ "${ID}" == "fedora" ]]; then
 fi

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none
 BLUEPRINT_FILE=/tmp/blueprint.toml
 COMPOSE_START=/tmp/compose-start.json
 COMPOSE_INFO=/tmp/compose-info.json
--- a/test/cases/regression-insecure-repo.sh
+++ b/test/cases/regression-insecure-repo.sh
@ -13,7 +13,7 @@ function greenprint {
 source /usr/libexec/osbuild-composer-test/set-env-variables.sh

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 greenprint "Registering clean ups"
 kill_pids=()
--- a/test/cases/regression-no-explicit-rootfs-definition.sh
+++ b/test/cases/regression-no-explicit-rootfs-definition.sh
@ -17,7 +17,7 @@ esac
 set -xeuo pipefail

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none


 function get_build_info() {
--- a/test/cases/vmware.sh
+++ b/test/cases/vmware.sh
@ -32,7 +32,7 @@ if [ "$ID" != "rhel" ]; then
 fi

 # Provision the software under test.
-/usr/libexec/osbuild-composer-test/provision.sh
+/usr/libexec/osbuild-composer-test/provision.sh none

 GOVC_CMD=/tmp/govc