chore(test): test-style

Author: lijianguo

Makefile

@@ -1,7 +1,7 @@
 # If DRYCC_REGISTRY is not set, try to populate it from legacy DEV_REGISTRY
 DRYCC_REGISTRY ?= $(DEV_REGISTRY)
 IMAGE_PREFIX ?= drycc
-COMPONENT ?= manager
+COMPONENT ?= passport
 SHORT_NAME ?= $(COMPONENT)
 PLATFORM ?= linux/amd64,linux/arm64
 

charts/passport/Chart.yaml

@@ -1,6 +1,6 @@
 name: passport
 home: https://github.com/drycc/passport
-version: <Will be populated by the ci before publishing the chart>
+version: v1.0.0
 description: Drycc Workflow passport (API).
 maintainers:
   - name: Drycc Team

charts/passport/templates/_helpers.tpl

@@ -12,7 +12,7 @@ rbac.authorization.k8s.io/v1
 {{- end -}}
 
 {{/* Generate passport deployment envs */}}
-{{- define "passport.envs" -}}
+{{- define "passport.envs" }}
 env:
 - name: "TZ"
   value: {{ .Values.time_zone | default "UTC" | quote }}
@@ -28,13 +28,17 @@ env:
     secretKeyRef:
       name: passport-creds
       key: social-auth-drycc-controller-secret
+- name: WORKFLOW_NAMESPACE
+  valueFrom:
+    fieldRef:
+      fieldPath: metadata.namespace
 {{- if (.Values.database_url) }}
 - name: DRYCC_DATABASE_URL
   valueFrom:
     secretKeyRef:
       name: passport-creds
       key: database-url
-{{- else if eq .Values.global.database_location "on-cluster"  }}
+{{- else if eq .Values.global.database_location "on-cluster" }}
 - name: DRYCC_DATABASE_USER
   valueFrom:
     secretKeyRef:
@@ -53,10 +57,6 @@ env:
 - name: DRYCC_DATABASE_URL
   value: "postgres://$(DRYCC_DATABASE_USER):$(DRYCC_DATABASE_PASSWORD)@$(DRYCC_DATABASE_SERVICE_HOST):$(DRYCC_DATABASE_SERVICE_PORT)/$(DRYCC_DATABASE_NAME)"
 {{- end }}
-- name: WORKFLOW_NAMESPACE
-  valueFrom:
-    fieldRef:
-    fieldPath: metadata.namespace
 {{- range $key, $value := .Values.environment }}
 - name: {{ $key }}
   value: {{ $value | quote }}

charts/passport/templates/passport-certificate.yaml

@@ -1,6 +1,6 @@
 {{- if eq .Values.global.passport_location "on-cluster" }}
 {{- if .Values.global.cert_passport_enabled }}
-apiVersion: cert-passport.io/v1alpha2
+apiVersion: cert-manager.io/v1alpha2
 kind: Certificate
 metadata:
   name: drycc-passport

charts/passport/templates/passport-deployment.yaml

@@ -25,8 +25,8 @@ spec:
       serviceAccount: drycc-passport
       containers:
         - name: drycc-passport
-          image: {{.Values.image_registry}}{{.Values.org}}/passport:{{.Values.image_tag}}
-          imagePullPolicy: {{.Values.pull_policy}}
+          image: {{.Values.image_registry}}/{{.Values.org}}/passport:{{.Values.image_tag}}
+          imagePullPolicy: {{.Values.image_pull_policy}}
           livenessProbe:
             httpGet:
               path: /healthz

charts/passport/values.yaml

@@ -1,5 +1,5 @@
 org: "drycc"
-pull_policy: "Always"
+image_pull_policy: "Always"
 image_tag: "canary"
 image_registry: ""
 # Set passport deployment replicas

rootfs/Dockerfile.test

@@ -11,6 +11,9 @@ RUN echo https://dl-cdn.alpinelinux.org/alpine/edge/testing >>/etc/apk/repositor
     libffi-dev \
     musl-dev \
     openldap-dev \
+    openssl-dev \
+    cargo \
+    rust \
   && pip3 install --disable-pip-version-check --no-cache-dir -r /app/requirements.txt \
   && pip3 install --disable-pip-version-check --no-cache-dir -r /app/dev_requirements.txt \
   && runDeps="$( \
@@ -28,6 +31,7 @@ RUN echo https://dl-cdn.alpinelinux.org/alpine/edge/testing >>/etc/apk/repositor
     bash \
     shadow \
     postgresql \
+    openssl \
   && mkdir -p /run/postgresql $PGDATA \
   && chown -R postgres:postgres /run/postgresql $PGDATA \
   && apk del .build-deps \

rootfs/api/serializers.py

@@ -2,7 +2,6 @@
 Classes to serialize the RESTful representation of Drycc API models.
 """
 import logging
-import json
 
 from django.contrib.auth.models import User
 from django.contrib.auth.forms import UserCreationForm

rootfs/api/settings/production.py

@@ -12,7 +12,6 @@
 import os.path
 import tempfile
 import ldap
-import base64
 import dj_database_url
 
 from django_auth_ldap.config import LDAPSearch, GroupOfNamesType
@@ -359,11 +358,11 @@
     "OAUTH2_VALIDATOR_CLASS": "api.serializers.CustomOAuth2Validator",
     "PKCE_REQUIRED": False,
     "ALLOWED_REDIRECT_URI_SCHEMES": ["http", "https"],
-    "ACCESS_TOKEN_EXPIRE_SECONDS": int(os.environ.get('ACCESS_TOKEN_EXPIRE_SECONDS', 30 * 86400)),
-    "ID_TOKEN_EXPIRE_SECONDS": int(os.environ.get('ID_TOKEN_EXPIRE_SECONDS', 30 * 86400)),
-    "AUTHORIZATION_CODE_EXPIRE_SECONDS": int(os.environ.get('AUTHORIZATION_CODE_EXPIRE_SECONDS', 600)),
-    "CLIENT_SECRET_GENERATOR_LENGTH": int(os.environ.get('CLIENT_SECRET_GENERATOR_LENGTH', 64)),
-    "REFRESH_TOKEN_EXPIRE_SECONDS": int(os.environ.get('REFRESH_TOKEN_EXPIRE_SECONDS', 60 * 86400)),
+    "ACCESS_TOKEN_EXPIRE_SECONDS": int(os.environ.get('ACCESS_TOKEN_EXPIRE_SECONDS', 30 * 86400)),  # noqa
+    "ID_TOKEN_EXPIRE_SECONDS": int(os.environ.get('ID_TOKEN_EXPIRE_SECONDS', 30 * 86400)),  # noqa
+    "AUTHORIZATION_CODE_EXPIRE_SECONDS": int(os.environ.get('AUTHORIZATION_CODE_EXPIRE_SECONDS', 600)),  # noqa
+    "CLIENT_SECRET_GENERATOR_LENGTH": int(os.environ.get('CLIENT_SECRET_GENERATOR_LENGTH', 64)),  # noqa
+    "REFRESH_TOKEN_EXPIRE_SECONDS": int(os.environ.get('REFRESH_TOKEN_EXPIRE_SECONDS', 60 * 86400)),  # noqa
     "ROTATE_REFRESH_TOKEN": True,
     "SCOPES": {
         "profile": "Profile",

rootfs/api/urls.py

@@ -14,15 +14,21 @@
     re_path(r'accounts/', include('django.contrib.auth.urls')),
 
     re_path(r'accounts/register/?$', RegisterView.as_view(), name='register'),
-    re_path(r'accounts/activate/(?P<uidb64>.+)/(?P<token>.+)/?$', ActivateAccount.as_view(), name='activate_account'),
-    re_path(r'accounts/register/done/?$', RegisterDoneView.as_view(), name='register_done'),
-    re_path(r'accounts/activate/done/?$', ActivateAccountDoneView.as_view(), name='activate_account_done'),
-    re_path(r'accounts/activate/fail/?$', ActivateAccountFailView.as_view(), name='activate_account_done'),
+    re_path(r'accounts/activate/(?P<uidb64>.+)/(?P<token>.+)/?$',
+            ActivateAccount.as_view(), name='activate_account'),
+    re_path(r'accounts/register/done/?$', RegisterDoneView.as_view(),
+            name='register_done'),
+    re_path(r'accounts/activate/done/?$', ActivateAccountDoneView.as_view(),
+            name='activate_account_done'),
+    re_path(r'accounts/activate/fail/?$', ActivateAccountFailView.as_view(),
+            name='activate_account_done'),
 
-    re_path(r'oauth/', include('oauth2_provider.urls', namespace='oauth2_provider')),
+    re_path(r'oauth/',
+            include('oauth2_provider.urls', namespace='oauth2_provider')),
 
     re_path(r'users/?$', views.UserDetailView.as_view({'get': 'retrieve'})),
-    re_path(r'users/emails/?$', views.UserEmailView.as_view({'get': 'retrieve'})),
+    re_path(r'users/emails/?$',
+            views.UserEmailView.as_view({'get': 'retrieve'})),
 
     re_path(r'login/done/?$', LoginDoneView.as_view(), name='login_done'),
 ]