New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HOSTEDCP-1308: Add e2e to ensure SA token not mounted on mgmt workloa… #3301
HOSTEDCP-1308: Add e2e to ensure SA token not mounted on mgmt workloa… #3301
Conversation
@Patryk-Stefanski: This pull request references HOSTEDCP-1308 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Skipping CI for Draft Pull Request. |
/test all |
@Patryk-Stefanski: This pull request references HOSTEDCP-1308 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@Patryk-Stefanski: This pull request references HOSTEDCP-1308 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/retest-required |
test/e2e/util/util.go
Outdated
break | ||
} | ||
} | ||
if !hasPrefix { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
why is this not checking Spec.AutomountServiceAccountToken?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
hmm wasnt aware of it, that makes things cleaner. Thanks
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
just looking into it not many pods actually use this. I think keeping it the way it is may not be as clean as checking a spec in a pod but its a more accurate way of checking atm.
I can do some refactoring so the expected pods use spec.AutomountServiceAccountToken but think it falls outside of the scope of this Jira. WDYT @enxebre
926713e
to
804fcc5
Compare
✅ Deploy Preview for hypershift-docs ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
8fe197e
to
54a5dc2
Compare
/hold found more pods that mount the SA token, will look into this in the new year. |
54a5dc2
to
fad8432
Compare
c3d8315
to
72e7f8f
Compare
/retest |
/retest-required |
1 similar comment
/retest-required |
3dd0c8f
to
e7ef3a5
Compare
/test e2e-aws |
/test e2e-kubevirt-aws-ovn |
1 similar comment
/test e2e-kubevirt-aws-ovn |
…ds unless necessary
574c5f0
to
1ef63af
Compare
1ef63af
to
76d9195
Compare
/test e2e-kubevirt-aws-ovn |
/test e2e-aws |
1 similar comment
/test e2e-aws |
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: muraee, Patryk-Stefanski The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/lgtm |
/override "Red Hat Trusted App Pipeline / hypershift-operator-main-on-pull-request" |
@csrwng: Overrode contexts on behalf of csrwng: Red Hat Trusted App Pipeline / hypershift-operator-main-on-pull-request In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/hold cancel |
@Patryk-Stefanski: all tests passed! Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
ef43500
into
openshift:main
[ART PR BUILD NOTIFIER] This PR has been included in build ose-hypershift-container-v4.16.0-202401230706.p0.gef43500.assembly.stream for distgit hypershift. |
What this PR does / why we need it: Adds e2e to ensure SA token not mounted on mgmt workloa…
Which issue(s) this PR fixes (optional, use
fixes #<issue_number>(, fixes #<issue_number>, ...)
format, where issue_number might be a GitHub issue, or a Jira story:Fixes # HOSTEDCP-1308
Checklist