replace world parameters with env variables

Issue: ZENKO-5182

Author: SylvainSenechal

.github/scripts/end2end/load-config.sh

@@ -37,7 +37,6 @@ load_common() {
     ENV_VARS=()
 
     # From end2end.yaml
-    ENV_VARS+=("SUBDOMAIN=$(get_env_var SUBDOMAIN)")
     ENV_VARS+=("KEYCLOAK_TEST_REALM_NAME=$(get_env_var OIDC_REALM)")
     ENV_VARS+=("KEYCLOAK_TEST_CLIENT_ID=$(get_env_var OIDC_CLIENT_ID)")
     ENV_VARS+=("KEYCLOAK_TEST_USER=$(get_env_var OIDC_USERNAME)")
@@ -47,8 +46,7 @@ load_common() {
     ENV_VARS+=("KEYCLOAK_TEST_GRANT_TYPE=password")
     ENV_VARS+=("AZURE_ACCOUNT_NAME=$(get_env_var AZURE_ACCOUNT_NAME)")
     ENV_VARS+=("AZURE_SECRET_KEY=$(get_env_var AZURE_SECRET_KEY)")
-    ENV_VARS+=("CLOUDSERVER_ENDPOINT=http://end2end-connector-s3api.default.svc.cluster.local:80")
-    ENV_VARS+=("VAULT_ENDPOINT=http://end2end-management-vault-iam-admin-api:80")
+    ENV_VARS+=("AZURE_BACKEND_ENDPOINT=$(get_env_var AZURE_BACKEND_ENDPOINT)")
 
     # From k8s: Zenko account credentials
     ENV_VARS+=("ZENKO_ACCESS_KEY=$(kubectl get secret end2end-account-zenko -o jsonpath='{.data.AccessKeyId}' | base64 -d)")
@@ -65,7 +63,11 @@ load_common() {
 load_ctst() {
     load_common
 
+    # From end2end.yaml
+    ENV_VARS+=("SUBDOMAIN=$(get_env_var SUBDOMAIN)")
+
     # Hardcoded CTST values
+    ENV_VARS+=("SSL=false")
     ENV_VARS+=("ZENKO_ACCOUNT_NAME=zenko-ctst")
     ENV_VARS+=("STORAGE_MANAGER_USER_NAME=ctst_storage_manager")
     ENV_VARS+=("STORAGE_ACCOUNT_OWNER_USER_NAME=ctst_storage_account_owner")
@@ -79,7 +81,6 @@ load_ctst() {
     # From end2end.yaml
     ENV_VARS+=("DR_SUBDOMAIN=$(get_env_var DR_SUBDOMAIN)")
     ENV_VARS+=("PROMETHEUS_NAME=$(get_env_var PROMETHEUS_NAME)")
-    ENV_VARS+=("AZURE_BACKEND_ENDPOINT=$(get_env_var AZURE_BACKEND_ENDPOINT)")
     ENV_VARS+=("AZURE_BACKEND_QUEUE_ENDPOINT=$(get_env_var AZURE_BACKEND_QUEUE_ENDPOINT)")
     ENV_VARS+=("AZURE_ARCHIVE_BUCKET_NAME=$(get_env_var AZURE_ARCHIVE_BUCKET_NAME)")
     ENV_VARS+=("AZURE_ARCHIVE_BUCKET_NAME_2=$(get_env_var AZURE_ARCHIVE_BUCKET_NAME_2)")
@@ -163,7 +164,6 @@ load_e2e() {
     ENV_VARS+=("GCP_SECRET_KEY=$(get_env_var GCP_SECRET_KEY)")
     ENV_VARS+=("GCP_BACKEND_SERVICE_KEY=$(get_env_var GCP_BACKEND_SERVICE_KEY)")
     ENV_VARS+=("GCP_BACKEND_SERVICE_EMAIL=$(get_env_var GCP_BACKEND_SERVICE_EMAIL)")
-    ENV_VARS+=("AZURE_BACKEND_ENDPOINT=$(get_env_var AZURE_BACKEND_ENDPOINT)")
     ENV_VARS+=("AWS_ENDPOINT=$(get_env_var AWS_ENDPOINT)")
     ENV_VARS+=("AWS_ACCESS_KEY=$(get_env_var AWS_ACCESS_KEY)")
     ENV_VARS+=("AWS_SECRET_KEY=$(get_env_var AWS_SECRET_KEY)")
@@ -185,6 +185,8 @@ load_e2e() {
 
     # Derived endpoints
     ENV_VARS+=("CLOUDSERVER_HOST=end2end-connector-s3api.default.svc.cluster.local")
+    ENV_VARS+=("CLOUDSERVER_ENDPOINT=http://end2end-connector-s3api.default.svc.cluster.local:80")
+    ENV_VARS+=("VAULT_ENDPOINT=http://end2end-management-vault-iam-admin-api:80")
     ENV_VARS+=("VAULT_STS_ENDPOINT=http://end2end-connector-vault-sts-api:80")
     ENV_VARS+=("BACKBEAT_API_ENDPOINT=http://end2end-management-backbeat-api.default.svc.cluster.local:80")
 

.github/scripts/end2end/run-e2e-ctst.sh

@@ -90,11 +90,6 @@ UTILIZATION_SERVICE_PORT="80"
 # Setting CTST world params
 WORLD_PARAMETERS="$(jq -c <<EOF
 {
-  "subdomain":"${SUBDOMAIN}",
-  "DRSubdomain":"${DR_SUBDOMAIN}",
-  "ssl":false,
-  "port":"${ZENKO_PORT}",
-  "AccountName":"${ZENKO_ACCOUNT_NAME}",
   "AdminAccessKey":"${ADMIN_ACCESS_KEY_ID}",
   "AdminSecretKey":"${ADMIN_SECRET_ACCESS_KEY}",
   "VaultAuthHost":"${VAULT_AUTH_HOST}",

tests/ctst/common/common.ts

@@ -125,14 +125,14 @@ async function createBucket(world: Zenko, versioning: string, bucketName: string
 
 Given('a {string} bucket with dot', async function (this: Zenko, versioning: string) {
     const preName = this.getSaved<string>('accountName') ||
-        this.parameters.AccountName || Constants.ACCOUNT_NAME;
+        process.env.ZENKO_ACCOUNT_NAME || Constants.ACCOUNT_NAME;
     await createBucket(this, versioning,
         `${preName}.${Constants.BUCKET_NAME_TEST}${Utils.randomString()}`.toLocaleLowerCase());
 });
 
 Given('a {string} bucket', async function (this: Zenko, versioning: string) {
     const preName = this.getSaved<string>('accountName') ||
-        this.parameters.AccountName || Constants.ACCOUNT_NAME;
+        process.env.ZENKO_ACCOUNT_NAME || Constants.ACCOUNT_NAME;
     await createBucket(this, versioning,
         `${preName}${Constants.BUCKET_NAME_TEST}${Utils.randomString()}`.toLocaleLowerCase());
 });

tests/ctst/common/hooks.ts

@@ -62,8 +62,8 @@ Before({ tags: '@UtilizationAPI', timeout: 1200000 }, async function (scenarioOp
 
 After(async function (this: Zenko, results) {
     // Reset any configuration set on the endpoint (ssl, port)
-    CacheHelper.parameters.ssl = this.parameters.ssl;
-    CacheHelper.parameters.port = this.parameters.port;
+    CacheHelper.parameters.ssl = process.env.SSL === 'true';
+    CacheHelper.parameters.port = process.env.ZENKO_PORT;
     if (results.result?.status === 'FAILED') {
         this.logger.warn('bucket was not cleaned for test', {
             bucket: this.getSaved<string>('bucketName'),

tests/ctst/steps/cloudserverAuth.ts

@@ -36,7 +36,7 @@ When('the user tries to perform CreateBucket', async function (this: Zenko) {
     this.resetCommand();
     this.useSavedIdentity();
     const preName = this.getSaved<string>('accountName') ||
-        this.parameters.AccountName || Constants.ACCOUNT_NAME;
+        process.env.ZENKO_ACCOUNT_NAME || Constants.ACCOUNT_NAME;
     const usedBucketName = `${preName}${Constants.BUCKET_NAME_TEST}${Utils.randomString()}`.toLocaleLowerCase();
     this.addToSaved('bucketName', usedBucketName);
     this.addCommandParameter({ bucket: usedBucketName });

tests/ctst/steps/iam-policies/common.ts

@@ -35,7 +35,7 @@ When('the user tries to perform vault auth {string}', async function (this: Zenk
     switch (action) {
     case 'GetAccountInfo':
         this.setResult(await VaultAuth.getAccounts([
-            this.getSaved<string>('accountNameForScenario') || this.parameters.AccountName,
+            this.getSaved<string>('accountNameForScenario') || process.env.ZENKO_ACCOUNT_NAME,
         ], null, null, {
             // @ts-expect-error accountNames is not generated by CTST yet
             accountNames: true,

tests/ctst/steps/replication.ts

@@ -26,7 +26,7 @@ When('the job to replicate existing objects with status {string} is executed',
         const s3utilsVersion = zenkoVersion.spec.versions.s3utils;
         const credentials = Identity.getCredentialsForIdentity(
             IdentityEnum.ACCOUNT,
-            this.parameters.AccountName
+            process.env.ZENKO_ACCOUNT_NAME
         );
         const podManifest = {
             apiVersion: 'v1',

tests/ctst/steps/website/website.ts

@@ -58,7 +58,7 @@ When('the user creates an S3 Bucket policy granting public read access', async f
 
 Then('the user should be able to load the index.html file from the {string} endpoint',
     async function (this: Zenko, endpoint: string) {
-        const baseUrl = this.parameters.ssl === false ? 'http://' : 'https://';
+        const baseUrl = process.env.SSL === 'false' ? 'http://' : 'https://';
         // The ingress may take some time to be ready (<60s)
         const uri = `${baseUrl}${this.getSaved<string>('bucketName')}.${endpoint}`;
         let response;

tests/ctst/world/Zenko.ts

@@ -44,12 +44,12 @@ export enum EntityType {
 }
 
 export interface ZenkoWorldParameters extends ClientOptions {
-    AccountName: string;
+    // AccountName: string;
     AccountAccessKey: string;
     AccountSecretKey: string;
     DRAdminAccessKey?: string;
     DRAdminSecretKey?: string;
-    DRSubdomain?: string;
+    // DRSubdomain?: string;
     VaultAuthHost: string;
     NotificationDestination: string;
     NotificationDestinationTopic: string;
@@ -141,11 +141,11 @@ export default class Zenko extends World<ZenkoWorldParameters> {
             const serviceUserCredentials =
                 JSON.parse(this.parameters.ServiceUsersCredentials) as Record<string, ServiceUsersCredentials>;
             for (const serviceUserName in serviceUserCredentials) {
-                if (!Identity.hasIdentity(IdentityEnum.SERVICE_USER, serviceUserName, this.parameters.AccountName)) {
+                if (!Identity.hasIdentity(IdentityEnum.SERVICE_USER, serviceUserName, process.env.ZENKO_ACCOUNT_NAME)) {
                     Identity.addIdentity(IdentityEnum.SERVICE_USER, serviceUserName, {
                         accessKeyId: serviceUserCredentials[serviceUserName].accessKey,
                         secretAccessKey: serviceUserCredentials[serviceUserName].secretKey,
-                    }, this.parameters.AccountName);
+                    }, process.env.ZENKO_ACCOUNT_NAME);
                 }
             }
         }
@@ -158,24 +158,25 @@ export default class Zenko extends World<ZenkoWorldParameters> {
         CacheHelper.savedAcrossTests[Zenko.PRA_INSTALL_COUNT_KEY] = 0;
 
 
-        if (this.parameters.AccountName && !Identity.hasIdentity(IdentityEnum.ACCOUNT, this.parameters.AccountName)) {
-            Identity.addIdentity(IdentityEnum.ACCOUNT, this.parameters.AccountName, {
+        if (process.env.ZENKO_ACCOUNT_NAME &&
+            !Identity.hasIdentity(IdentityEnum.ACCOUNT, process.env.ZENKO_ACCOUNT_NAME)) {
+            Identity.addIdentity(IdentityEnum.ACCOUNT, process.env.ZENKO_ACCOUNT_NAME, {
                 accessKeyId: this.parameters.AccountAccessKey,
                 secretAccessKey: this.parameters.AccountSecretKey,
             });
         }
 
-        if (this.parameters.AccountName) {
-            Identity.useIdentity(IdentityEnum.ACCOUNT, this.parameters.AccountName);
-            Identity.defaultAccountName = this.parameters.AccountName;
+        if (process.env.ZENKO_ACCOUNT_NAME) {
+            Identity.useIdentity(IdentityEnum.ACCOUNT, process.env.ZENKO_ACCOUNT_NAME);
+            Identity.defaultAccountName = process.env.ZENKO_ACCOUNT_NAME;
         }
 
         if (this.parameters.AdminAccessKey && this.parameters.AdminSecretKey &&
             !Identity.hasIdentity(IdentityEnum.ADMIN, Zenko.PRIMARY_SITE_NAME)) {
             Identity.addIdentity(IdentityEnum.ADMIN, Zenko.PRIMARY_SITE_NAME, {
                 accessKeyId: this.parameters.AdminAccessKey,
                 secretAccessKey: this.parameters.AdminSecretKey,
-            }, undefined, undefined, undefined, this.parameters.Subdomain);
+            }, undefined, undefined, undefined, process.env.SUBDOMAIN);
 
             Zenko.sites['source'] = {
                 accountName: Identity.defaultAccountName,
@@ -188,11 +189,11 @@ export default class Zenko extends World<ZenkoWorldParameters> {
                 Identity.addIdentity(IdentityEnum.ADMIN, Zenko.SECONDARY_SITE_NAME, {
                     accessKeyId: this.parameters.DRAdminAccessKey!,
                     secretAccessKey: this.parameters.DRAdminSecretKey!,
-                }, undefined, undefined, undefined, this.parameters.DRSubdomain);
+                }, undefined, undefined, undefined, process.env.DR_SUBDOMAIN);
             }
 
             Zenko.sites['sink'] = {
-                accountName: `dr${this.parameters.AccountName}`,
+                accountName: `dr${process.env.ZENKO_ACCOUNT_NAME}`,
                 adminIdentityName: Zenko.SECONDARY_SITE_NAME,
             };
         }
@@ -203,7 +204,7 @@ export default class Zenko extends World<ZenkoWorldParameters> {
     }
 
     private needsSecondarySite() {
-        return this.parameters.DRAdminAccessKey && this.parameters.DRAdminSecretKey && this.parameters.DRSubdomain;
+        return this.parameters.DRAdminAccessKey && this.parameters.DRAdminSecretKey && process.env.DR_SUBDOMAIN;
     }
 
     /**
@@ -411,7 +412,7 @@ export default class Zenko extends World<ZenkoWorldParameters> {
         clientId: string,
         grantType: string,
     ): Promise<string> {
-        const baseUrl = this.parameters.ssl === false ? 'http://' : 'https://';
+        const baseUrl = process.env.SSL === 'false' ? 'http://' : 'https://';
         const data = qs.stringify({
             username,
             password,
@@ -899,10 +900,10 @@ export default class Zenko extends World<ZenkoWorldParameters> {
 
         const axiosInstance = axios.create();
         axiosInstance.interceptors.request.use(interceptor);
-        const protocol = this.parameters.ssl === false ? 'http://' : 'https://';
+        const protocol = process.env.SSL === 'false' ? 'http://' : 'https://';
         const axiosConfig: AxiosRequestConfig = {
             method,
-            url: `${protocol}s3.${this.parameters.Subdomain
+            url: `${protocol}s3.${process.env.SUBDOMAIN
                 || Constants.DEFAULT_SUBDOMAIN}${path}`,
             headers,
             data: payload,
@@ -949,15 +950,15 @@ export default class Zenko extends World<ZenkoWorldParameters> {
             this.parameters.KeycloakGrantType || 'password',
         );
         const axiosInstance = axios.create();
-        const protocol = this.parameters.ssl === false ? 'http://' : 'https://';
+        const protocol = process.env.SSL === 'false' ? 'http://' : 'https://';
         // eslint-disable-next-line no-param-reassign
         headers = {
             ...headers,
             'X-Authentication-Token': token,
         };
         const axiosConfig: AxiosRequestConfig = {
             method,
-            url: `${protocol}management.${this.parameters.Subdomain || Constants.DEFAULT_SUBDOMAIN}/api/v1${path}`,
+            url: `${protocol}management.${process.env.SUBDOMAIN || Constants.DEFAULT_SUBDOMAIN}/api/v1${path}`,
             headers,
             data: payload,
         };