Add cluster hardening tests (#759)

* Add first tests for cluster hardening standard

Signed-off-by: michal.gubricky <[email protected]>

* Add test for Pod security admission controller

Signed-off-by: michal.gubricky <[email protected]>

* Add test for authorization methods

Signed-off-by: michal.gubricky <[email protected]>

* Add test for authentication methods

Signed-off-by: michal.gubricky <[email protected]>

* Add test if communication with etcd is secured via TLS

Signed-off-by: michal.gubricky <[email protected]>

* Add test whether the etcd is isolated from k8s cluster

Signed-off-by: michal.gubricky <[email protected]>

* Rebase after current sonobuoy golang framework was restructured

Signed-off-by: michal.gubricky <[email protected]>

* Adjust test for etcd tls communication

Signed-off-by: michal.gubricky <[email protected]>

* Adjust test which checks if kubelet readonly port is disabled

Signed-off-by: michal.gubricky <[email protected]>

* Remove unused functions

Signed-off-by: michal.gubricky <[email protected]>

* Remove development artifact

Signed-off-by: michal.gubricky <[email protected]>

* Restructure the code to make it a bit more clearly

Signed-off-by: michal.gubricky <[email protected]>

* Update kind config

Signed-off-by: michal.gubricky <[email protected]>

* Remove kubeadmConfigPatches section in kind_config.yaml

Signed-off-by: michal.gubricky <[email protected]>

---------

Signed-off-by: michal.gubricky <[email protected]>
Co-authored-by: cah-patrickthiem <[email protected]>

Author: michal-gubricky