New test framework

[nibix]

Signed-Off-By: Nils Bandener [email protected]

Description

This is the first iteration of a new framework for integration tests. The main focus is on conciseness and self-contained test. The framework offers:

• A programmatic way of defining the cluster setup
• A programmatic way of defining users and roles
• A programmatic way of defining indices
• A REST client with methods tailored for testing

This is now all part of the test class, so you do not need to jump around in various configuration files to get an overview on the test setup. There are of course still a lot of features missing, like setting up test data. I propose to add these features in increments.

The new framework and tests live in a new source folder called "newTest" so they do not interfere with the already existing tests

Check List

• New functionality includes testing
• New functionality has been documented
• Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[peternied]

Some comments after an initial pass, I'll circle back with a complete review

[peternied]

Thanks for the contribution, this is a great step forward in how tests are authored in this codebase. I left a lot of feedback, lets work down that list and as we resolve some of those conversations we can checkpoint where this change is at.

[davidlago]

@jochenkressin @lukasz-soszynski-eliatra please amend your commits adding DCO to them, the check is failing. Thanks!

[peternied]

I've reviewed the outstanding comments and resolved a bunch, thanks!

[lukasz-soszynski-eliatra]

@davidlago @peternied
IIRC you mentioned in one of our calls that the CI build has to be run manually. Could you run CI build for me, please?

[peternied]

@lukasz-soszynski-eliatra the build has run and it looked like it failed https:/opensearch-project/security/runs/7877581013?check_suite_focus=true I believe it will continue to trigger automatically on your fork as well as on this pull request as I have approved it. Let us know if you are seeing any 'waiting for approval' gates.

[lukasz-soszynski-eliatra]

I rebased branch eliatra:integration-test-framework into newest opensearch-project:main yesterday. Could you run build one again in order to check if I solve the last problem, please?

[peternied]

I've resolved a bunch of the previous comments that don't need any updates, great progress. The list of changes is going down, but the inclusive name of cluster manager is still a bigger lingering presence in the code.

[codecov-commenter]

Codecov Report

Merging #1967 (67b5446) into main (7f992eb) will decrease coverage by 0.02%.
The diff coverage is 33.33%.

❗ Current head 67b5446 differs from pull request most recent head 6e5e885. Consider uploading reports for the commit 6e5e885 to get more accurate results

@@             Coverage Diff              @@
##               main    #1967      +/-   ##
============================================
- Coverage     60.99%   60.96%   -0.03%     
+ Complexity     3226     3225       -1     
============================================
  Files           256      256              
  Lines         18075    18072       -3     
  Branches       3225     3224       -1     
============================================
- Hits          11024    11017       -7     
- Misses         5472     5476       +4     
  Partials       1579     1579              

Impacted Files	Coverage Δ
.../org/opensearch/security/support/PemKeyReader.java	73.38% <20.00%> (-3.38%)	⬇️
...ch/security/securityconf/DynamicConfigFactory.java	56.05% <100.00%> (ø)

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

[peternied]

I've created some pull requests for specific updates, which you can take or leave, but there seems to be some kind of warnings that are shown when the tests run that seem like they might indicate there is a problem

• Replace non-inclusive terms from configuration settings eliatra/OpenSearch-security-tests#6
• Modify defaults to prevent warnings from being added to the test output eliatra/OpenSearch-security-tests#5

[peternied]

Retriggered the CI - I think we are super close!

[peternied]

Last item before we merge is the copyright headers in the test cases files - could you do a quick pass over any files that can remove this since they are net new for this project?

Please do not modify these in any files that have been copied from other codebases.

[peternied]

@opensearch-project/security Could we have another reviewer take a look?

[cwperks]

I'm curious, why do dependencies need to be repeated for integrationTestImplementation if we already have an entry for testImplementation?

[nibix]

As the goal of the project is the replacement of large parts of the old legacy tests, we want to keep the test definitions as separate as possible.

[DarshitChanpura]

Ty so much for this PR!

[DarshitChanpura]

Does this file come from floragunn repo or is it a new file ? If it is a new file we should remove the floragunn license section

[DarshitChanpura]

This should also apply to any other files in this PR

[nibix]

This is based on code from floragunn

[nibix]

This is based on floragunn code.

[DarshitChanpura]

okay

[DarshitChanpura]

@lukasz-soszynski-eliatra @nibix Can you please provide the link to the source repo where this is based off of? This would be super helpful to add it to merge-commit

[DarshitChanpura]

Ty for adding this! Can you please add a line or two comment over here explaining the idea behind these tests? I feel it would be helpful to understand as it took me a while

[DarshitChanpura]

This could be addressed in a separate PR as it isn't a blocking change

[DarshitChanpura]

Thank you! Can you please respond to couple of comments above and we will get this merged

[peternied]

This is a giant PR and it has two approvals so I am merging. I know there are some outstanding comments - we can handle outstanding comments asynchronously.

@DarshitChanpura if there are any you are feeling passionate about please create issues for follow up or pull requests to resolve.