mirror of
https://github.com/yannh/kubeconform.git
synced 2026-02-11 14:09:21 +00:00
Merge 3b00739e62 into 706cd56e87
This commit is contained in:
Victor Hugo Brito Fernandes
GitHub
commit
d4a947d77d
3 changed files with 35 additions and 16 deletions
|
|
@ -290,6 +290,13 @@ kubeconform -kubernetes-version 3.8.0 -schema-location 'https://raw.githubuserc
|
|||
Summary: 1 resource found in 1 file - Valid: 1, Invalid: 0, Errors: 0 Skipped: 0
|
||||
```
|
||||
|
||||
### Schemas behind private GitHub repos
|
||||
|
||||
By setting the environment variable `GITHUB_TOKEN=x` you can use schemas that are behind a private repository.
|
||||
See [getting a token](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/managing-your-personal-access-tokens) for info on how to get one command line token.
|
||||
> Tip: if using GitHub CLI, `gh auth token` will give a valid token.
|
||||
|
||||
|
||||
## Integrating Kubeconform in the CI
|
||||
|
||||
`Kubeconform` publishes Docker Images to Github's new Container Registry (ghcr.io). These images
|
||||
|
|
|
|||
|
|
@ -13,13 +13,13 @@ import (
|
|||
"github.com/yannh/kubeconform/pkg/cache"
|
||||
)
|
||||
|
||||
type httpGetter interface {
|
||||
Get(url string) (resp *http.Response, err error)
|
||||
type httpDoer interface {
|
||||
Do(*http.Request) (resp *http.Response, err error)
|
||||
}
|
||||
|
||||
// SchemaRegistry is a file repository (local or remote) that contains JSON schemas for Kubernetes resources
|
||||
type SchemaRegistry struct {
|
||||
c httpGetter
|
||||
c httpDoer
|
||||
schemaPathTemplate string
|
||||
cache cache.Cache
|
||||
strict bool
|
||||
|
|
@ -72,8 +72,20 @@ func (r SchemaRegistry) DownloadSchema(resourceKind, resourceAPIVersion, k8sVers
|
|||
return url, b.([]byte), nil
|
||||
}
|
||||
}
|
||||
req, err := http.NewRequest("GET", url, nil)
|
||||
if err != nil {
|
||||
msg := fmt.Sprintf("failed to create http request for schemas at %s: %s", url, err)
|
||||
if r.debug {
|
||||
log.Println(msg)
|
||||
}
|
||||
return url, nil, errors.New(msg)
|
||||
}
|
||||
|
||||
resp, err := r.c.Get(url)
|
||||
if token, exist := os.LookupEnv("KUBECONFORM_AUTH_TOKEN"); exist {
|
||||
req.Header.Add("Authorization", fmt.Sprintf("token %s", token))
|
||||
}
|
||||
|
||||
resp, err := r.c.Do(req)
|
||||
if err != nil {
|
||||
msg := fmt.Sprintf("failed downloading schema at %s: %s", url, err)
|
||||
if r.debug {
|
||||
|
|
|
|||
|
|
@ -9,23 +9,23 @@ import (
|
|||
"testing"
|
||||
)
|
||||
|
||||
type mockHTTPGetter struct {
|
||||
httpGet func(string) (*http.Response, error)
|
||||
type mockHTTPDoer struct {
|
||||
httpDo func(*http.Request) (*http.Response, error)
|
||||
}
|
||||
|
||||
func newMockHTTPGetter(f func(string) (*http.Response, error)) *mockHTTPGetter {
|
||||
return &mockHTTPGetter{
|
||||
httpGet: f,
|
||||
func newMockHTTPDoer(f func(*http.Request) (*http.Response, error)) *mockHTTPDoer {
|
||||
return &mockHTTPDoer{
|
||||
httpDo: f,
|
||||
}
|
||||
}
|
||||
func (m mockHTTPGetter) Get(url string) (resp *http.Response, err error) {
|
||||
return m.httpGet(url)
|
||||
func (m mockHTTPDoer) Do(req *http.Request) (resp *http.Response, err error) {
|
||||
return m.httpDo(req)
|
||||
}
|
||||
|
||||
func TestDownloadSchema(t *testing.T) {
|
||||
for _, testCase := range []struct {
|
||||
name string
|
||||
c httpGetter
|
||||
c httpDoer
|
||||
schemaPathTemplate string
|
||||
strict bool
|
||||
resourceKind, resourceAPIVersion, k8sversion string
|
||||
|
|
@ -34,7 +34,7 @@ func TestDownloadSchema(t *testing.T) {
|
|||
}{
|
||||
{
|
||||
"error when downloading",
|
||||
newMockHTTPGetter(func(url string) (resp *http.Response, err error) {
|
||||
newMockHTTPDoer(func(req *http.Request) (resp *http.Response, err error) {
|
||||
return nil, fmt.Errorf("failed downloading from registry")
|
||||
}),
|
||||
"http://kubernetesjson.dev",
|
||||
|
|
@ -47,7 +47,7 @@ func TestDownloadSchema(t *testing.T) {
|
|||
},
|
||||
{
|
||||
"getting 404",
|
||||
newMockHTTPGetter(func(url string) (resp *http.Response, err error) {
|
||||
newMockHTTPDoer(func(req *http.Request) (resp *http.Response, err error) {
|
||||
return &http.Response{
|
||||
StatusCode: http.StatusNotFound,
|
||||
Body: io.NopCloser(strings.NewReader("http response mock body")),
|
||||
|
|
@ -63,7 +63,7 @@ func TestDownloadSchema(t *testing.T) {
|
|||
},
|
||||
{
|
||||
"getting 503",
|
||||
newMockHTTPGetter(func(url string) (resp *http.Response, err error) {
|
||||
newMockHTTPDoer(func(req *http.Request) (resp *http.Response, err error) {
|
||||
return &http.Response{
|
||||
StatusCode: http.StatusServiceUnavailable,
|
||||
Body: io.NopCloser(strings.NewReader("http response mock body")),
|
||||
|
|
@ -79,7 +79,7 @@ func TestDownloadSchema(t *testing.T) {
|
|||
},
|
||||
{
|
||||
"200",
|
||||
newMockHTTPGetter(func(url string) (resp *http.Response, err error) {
|
||||
newMockHTTPDoer(func(req *http.Request) (resp *http.Response, err error) {
|
||||
return &http.Response{
|
||||
StatusCode: http.StatusOK,
|
||||
Body: io.NopCloser(strings.NewReader("http response mock body")),
|
||||
|
|
|
|||
Loading…
Reference in a new issue