tests(monitoring): refresh VPCSC tests #9437
Conversation
googlebot
added
the
cla: yes
|
The VPCSC tests failed because |
|
Hi @steinwaywhw! Could you modify tests to be similar to what's in #9389? There's more info in this doc. Thank you! |
|
Hi Bu Sun, #9389 disables the tests when run outside of VPCSC. Is it decided that when not inside VPCSC, the tests should not be run at all? The current code has valid test cases when run outside of VPCSC. So shall I disable these tests when running outside of VPCSC, or should we work together to supply proper env variables to make it work outside of VPCSC? |
|
If a test is checking behavior dependent on being inside/outside a VPCSC that should only be run in VPCSC. If you have tests that don't require that environment please remove the What sort of env vars were you looking to set? |
|
In the code there are two sets of tests. One set is run from inside VPCSC, one set is run from outside of VPCSC. For both sets, one half are sending requests to The failing reason is, however, unrelated. It is because the
If the goal is to run as many tests as possible, then we should go with Option 2. |
Ah sorry, I misspoke when I said "in VPCSC". What I wanted to distinguish is the CI environment/project used here by the client libraries team (no VPC or VPC service controls) and the CI environment used by the VPC-SC team (which runs the tests inside a VPC). It looks to me like all the monitoring tests can only run correctly in the VPC-SC team's environment?
The current noxfile sets PROJECT_ID to an empty string, but that can be removed with the modifications I'd was looking to make with #9389. IS_INSIDE_VPCSC = "GOOGLE_CLOUD_TESTS_IN_VPCSC" in os.environ
# If IS_INSIDE_VPCSC is set, these environment variables should also be set
if IS_INSIDE_VPCSC:
PROJECT_INSIDE = os.environ["PROJECT_ID"]
PROJECT_OUTSIDE = os.environ["GOOGLE_CLOUD_TESTS_VPCSC_OUTSIDE_PERIMETER_PROJECT"]Test skip is dependent on @pytest.mark.skipif(
not IS_INSIDE_VPCSC,
reason="This test must be run in VPCSC. To enable this test, set the environment variable GOOGLE_CLOUD_TESTS_IN_VPCSC to True",
) |
tseaver
changed the title
| # | ||
| # DO NOT MODIFY! THIS FILE IS AUTO-GENERATED. | ||
| # This file is auto-generated on 09 Oct 19 18:09 UTC. | ||
|
|
There was a problem hiding this comment.
This file does not appear to be part of autogen for monitoring.
There was a problem hiding this comment.
I've been told that the monitoring team has their own script to generate these tests. @steinwaywhw Could this comment be more specific about the source?
There was a problem hiding this comment.
Hi @tseaver, this file is auto-generated from service protobufs using a script that the monitoring team developed. If you'd like, I can change the comment. Do you have a style that I can follow?
| from google.api_core import exceptions | ||
| from google.cloud import monitoring_v3 | ||
| from google.cloud.monitoring_v3 import enums | ||
|
|
||
| PROJECT_INSIDE = os.environ.get("PROJECT_ID", None) | ||
| if not PROJECT_INSIDE: | ||
| PROJECT_INSIDE = None |
There was a problem hiding this comment.
This test is necessary for the case that the environment variable is set to an empty string: @busunkim96 added it explicitly in #8302.
There was a problem hiding this comment.
I will update the script to treat empty string as None.
There was a problem hiding this comment.
I have changed the "skipIf" to "not PROJECT_INSIDE" and "not PROJECT_OUTSIDE" correspondingly, so we don't need this two lines anymore.
| @@ -47,8 +43,10 @@ def _is_rejected(call): | |||
| # instance, or None. | |||
| list(responses) | |||
| except exceptions.PermissionDenied as e: | |||
| print(e) | |||
There was a problem hiding this comment.
No print statements, please: use logging if absolutely needed.
There was a problem hiding this comment.
Changed to logger.debug(e).
| name_outside = client.alert_policy_path(PROJECT_OUTSIDE, "mock_alert_policy") | ||
| delayed_outside = lambda: client.update_alert_policy({"name": name_outside}) | ||
| TestVPCServiceControlV3._do_test(delayed_inside, delayed_outside) | ||
| self._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
Why does this PR delete this test? I see that it is moved below: is there a reason for reordering the testcases here?
There was a problem hiding this comment.
No particular reason. It is just because the file is auto-generated. I can sort the input endpoints to the script and make it deterministic from now on.
| delayed_outside = lambda: client.list_time_series( | ||
| name_outside, "", {}, enums.ListTimeSeriesRequest.TimeSeriesView.FULL | ||
| ) | ||
| TestVPCServiceControlV3._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
Why does this PR delete this test? I see that it is moved below: is there a reason for reordering the testcases here?
There was a problem hiding this comment.
I've changed the script to arrange tests in a deterministic order by sorting endpoint versions, then services, then methods. Should be good now.
| PROJECT_OUTSIDE, "mock_notification_channel" | ||
| ) | ||
| delayed_outside = lambda: client.delete_notification_channel(name_outside) | ||
| TestVPCServiceControlV3._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
Why does this PR delete this test? I see that it is moved below: is there a reason for reordering the testcases here?
| delayed_outside = lambda: client.get_notification_channel_verification_code( | ||
| name_outside | ||
| ) | ||
| self._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
OK, so this one is a new test.
| delayed_outside = lambda: client.send_notification_channel_verification_code( | ||
| name_outside | ||
| ) | ||
| self._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
OK, so this one is a new test.
| delayed_inside = lambda: client.create_uptime_check_config(name_inside, {}) | ||
| name_outside = client.project_path(PROJECT_OUTSIDE) | ||
| delayed_outside = lambda: client.create_uptime_check_config(name_outside, {}) | ||
| TestVPCServiceControlV3._do_test(delayed_inside, delayed_outside) |
There was a problem hiding this comment.
Why does this PR delete this test? I see that it is moved below: is there a reason for reordering the testcases here?
Hi @busunkim96, the test is able to run from any environment as long as you set This all goes back to the previous comment:
The first set of tests mentioned above has to be run in VPCSC teams dedicated environment. The second set could be run anywhere, including the pull request checks environment that your team owns, as long as you supply the needed So my question is, do you intend to run these tests in the PR presubmit checks? I feel like we were not on the same page. I hope this comment clarifies things. Feel free to find me on chat if you have any questions or concerns. |
I have tested these locally but I needed to modify `noxfile` in order to pass in the correct environment variables. Let's see how it runs on pull requests.
|
Sorry, I'm not sure why the diff page does not know it is a git mv even though I did it ... |
|
Hi Hanwen - I looked at the project and documentation you mentioned in chat. As the tests are written now, I don't think there's much to gain from running them in our presubmits. The VPC-SC team is already running the tests with projects in VPC, so there's no need to duplicate the same setup here. If some tests made valid requests to the backend, I would be open to running them here since they would make the tests more robust. But since these tests are exclusively checking that a request is forbidden/permitted via the status code, they wouldn't be able to catch errors that aren't specific to VPC-SC. Also happy to grab some time next week to chat over GVC if you have other thoughts. Thanks! |
|
That's ok to me. The code as it is right now in this PR will skip all tests since the CI will pass PROJECT_ID = "". So it is safe to merge them now. |
|
friendly ping |
|
Thank you, Bu Sun! |
I have tested these locally but I needed to modify
noxfilein order to pass in the correct environment variables. Let's see how it runs on pull requests.