This patch introduces backup member tests to the octavia-tempest-plugin.
There is one new scenario test:
- test_backup_member
And 5 new API tests:
- test_ipv4_HTTP_LC_backup_member_create
- test_HTTP_LC_backup_member_show
- test_HTTP_LC_backup_member_update
- test_HTTP_LC_backup_member_delete
- test_HTTP_LC_backup_member_list
Change-Id: If7c255ed24cf310a6a0db1a70fee104461e79d61
So far we did not have TERMINATED_HTTPS API tests in the listener API
tests (we only had scenario tests).
This patch adds the missing API tests.
Change-Id: I90b1c7c00e8642ef7d3b7af63c9bb90ba8855adb
In some of the tests, cleanups were missing after creating Octavia
resources.
This patch adds the missing cleanups.
Change-Id: I848e08295580709fa739df2d216dad0efd19a795
The stable/2023.2 release was already created so we should start
testing it. Also stable/yoga already passed the end of its extended
maintenace phase and is no longer supported by latest tempst.
Change-Id: If54ec0211e7467583690144fdf450f89e06987fc
The cryptography library has been bumped to 3.1 in upper-constraints
file during Ussuri, which is quite old. So we no longer have to
maintain logic for cryptography < 3.0.
Change-Id: I1a463e320b94b0e99e92541581e1ee5feffd356a
Define and add 2 jobs to the check pipeline:
* octavia-v2-dsvm-scenario-rockylinux-9-traffic-ops
* octavia-v2-dsvm-scenario-rockylinux-9-non-traffic-ops
Depends-On: https://review.opendev.org/c/openstack/octavia/+/873489
Change-Id: I18324cc6873d12969e20bb06045d4868c27b8a57
As 2023.1 is released, we should add its job on master
gate to keep branchless tempest plugins compatible
to stable branch.
Ref: Tempest plugins guide for stable branch testing:
- https://docs.openstack.org/tempest/latest/stable_branch_testing_policy.html
Change-Id: Ia8f73e9fa07cbfaea5024047c650dfe5ca747420
Each scenario job is splitted in scenario-traffic-ops and
scenario-non-traffic-ops jobs to avoid possible TIMEOUT in the CI.
Change-Id: Ib8af2af6696b27879eb923793959837646469905
Because octavia-tempest-plugin is branchless, job definitions need to
work for all octavia branches >=wallaby. Older branches should not use
the definitions from current master.
Change-Id: Ic76288560086d225fa59aee399cd75ae4c459559
There was an intermittent test failure in the
test_pool_reencryption_client_authentication test where members are detected
as unbalanced. This was due to the time it takes for the health monitor to
bring the member back into the pool.
This change adds a waiter for the members to go operating_status ONLINE before
checking for balanced member requests.
Story: 2010660
Task: 47710
Change-Id: Ibb1f351c77f3ed7a0c69c8295973f77ab2069dad
There has been a direction change in the "secure-RBAC" goal and scoped
tokens are no longer being implemented[1].
The Octavia tempest tests were updated for the new keystone roles and
scoped tokens at the same time with an (bad) assumption that they would be
turned on at the same time.
This patch updates the Octavia tempest plugin to not assume that scoped
tokens are in use when the RBAC type is set to keystone_default_roles.
[1] https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#direction-change
Depends-On: https://review.opendev.org/c/openstack/octavia/+/877433
Change-Id: Ia1c4ca0b675d39bd43640184d6d3deba823fd3f6
This patch updates the README file to have instructions for running the tempest tests using the "all" environment instead of "all-plugins". The "all-plugins" environment has been deprecated for years and uses site-packages, which may cause unintended test scenarios.
Change-Id: I297babd2e97ad146f60f32ae9073e47a62973860
The duration of the c9s scenario job is really close to the max timeout
in Zuul, spliting it into 2 jobs would reduce the duration of the tests
and would avoid possible timeouts.
Change-Id: I3b70171624e5c42fd6055d73a040704af5910944
This patch adds a test where we test both h2 and HTTP traffic on the
same load balancer.
For this purpose, we deploy an HTTP listener, a TERMINATED_HTTPS
listener with h2 alpn protocols, and an HTTP pool with h2 alpn protocol
and backend re-encryption.
Change-Id: I470268c91cce18a00baf3fb1f721299bf4662e13
Some services are enabling "new defaults" RBAC by default. This will require all non-admin users to have either the "member" or "reader" role. This patch updates the Octavia tempest plugin to include the "member" role in test credentials when the tempest plugin is configured for "RBAC_test_type" other than owner-or-admin.
Change-Id: I8aadb98d438943b18a8d72ff54e216930cfd3ccc
Not in every cloud does tempest have permissions to list the
role assignments. Since it is not critial for running the tests,
the logging of the user roles should be configurable.
Change-Id: I8aea2b597b9dd9bbdc5a1527fae03e86364aab4c
This patch adds API and scenario tests for PROMETHEUS listeners. This
includes scenario tests that connect to the metrics endpoint.
Depends-On: https://review.opendev.org/c/openstack/octavia/+/812258
Change-Id: Ia46d8c0967bc5b0f7cd11b6e3ca3a4e03c0bc138
Several tests are skipped because of story 2007979 [1] even though it
seems that the bug tracked by the story has already been resolved.
This patch removes the skip flag for these tests as the bug has already
been resolved.
[1] https://storyboard.openstack.org/#!/story/2007979
Change-Id: Ibec0bf4fba52a32dd1c9980c5d6bd7afc35d81a3