tests/e2e: add forward auth e2e test (#11374)

* add nginx forward_auth e2e tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add envoy Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove even more duplicate code Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add traefik static config Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more cleanup, don't generate dex config cause they support env variables Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use default dex entrypoint to use templating Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove options that are always set as default Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix compose flag Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add caddy Signed-off-by: Jens Langhammer <jens@goauthentik.io> * merge python files Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use whoami api to check better Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix envoy config Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set invalidation flow Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix logout checks Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2024-10-16 18:01:59 +02:00
parent c4caef4c38
commit 89f251d559
24 changed files with 678 additions and 302 deletions
--- a/tests/integration/test_proxy_docker.py
+++ b/tests/integration/test_proxy_docker.py
@ -6,8 +6,6 @@ from tempfile import mkdtemp
 import pytest
 import yaml
 from channels.testing.live import ChannelsLiveServerTestCase
-from docker import DockerClient, from_env
-from docker.models.containers import Container
 from docker.types.healthcheck import Healthcheck

 from authentik.core.tests.utils import create_test_flow
@ -27,11 +25,11 @@ from tests.e2e.utils import DockerTestCase, get_docker_tag
 class TestProxyDocker(DockerTestCase, ChannelsLiveServerTestCase):
    """Test Docker Controllers"""

-    def _start_container(self, ssl_folder: str) -> Container:
-        client: DockerClient = from_env()
-        container = client.containers.run(
+    def setUp(self):
+        super().setUp()
+        self.ssl_folder = mkdtemp()
+        self.run_container(
            image="library/docker:dind",
-            detach=True,
            network_mode="host",
            privileged=True,
            healthcheck=Healthcheck(
@ -41,18 +39,11 @@ class TestProxyDocker(DockerTestCase, ChannelsLiveServerTestCase):
            ),
            environment={"DOCKER_TLS_CERTDIR": "/ssl"},
            volumes={
-                f"{ssl_folder}/": {
+                f"{self.ssl_folder}/": {
                    "bind": "/ssl",
                }
            },
        )
-        self.wait_for_container(container)
-        return container
-
-    def setUp(self):
-        super().setUp()
-        self.ssl_folder = mkdtemp()
-        self.container = self._start_container(self.ssl_folder)
        # Ensure that local connection have been created
        outpost_connection_discovery()
        self.provider: ProxyProvider = ProxyProvider.objects.create(
@ -91,7 +82,6 @@ class TestProxyDocker(DockerTestCase, ChannelsLiveServerTestCase):

    def tearDown(self) -> None:
        super().tearDown()
-        self.container.kill()
        try:
            rmtree(self.ssl_folder)
        except PermissionError: