Real e2e

config/BUILD.bazel

@@ -41,10 +41,12 @@ genrule(
         "//cmd/clusterctl/examples/aws:out/aws_manager_image_patch.yaml",
         "//cmd/clusterctl/examples/aws:test-credentials",
         "config",
+        ":credential_file",
         "//:WORKSPACE",
     ],
     outs = ["aws_provider.yaml"],
-    cmd = """CONFIG_SRCDIR={root_dir}/config && \\
+    cmd = """install -D $(location :credential_file) $(@D)/../cmd/clusterctl/examples/aws/out/credentials && \\
+             CONFIG_SRCDIR={root_dir}/config && \\
              cp -R $$CONFIG_SRCDIR/default $(@D)/default && \\
              cp -R $$CONFIG_SRCDIR/manager $(@D)/manager && \\
              {kustomize} build $(@D)/default > $@
@@ -55,3 +57,18 @@ genrule(
     tools = ["@io_k8s_sigs_kustomize//:kustomize"],
     visibility = ["//visibility:public"],
 )
+
+genrule(
+    name = "credential_file",
+    outs = ["credentials"],
+    visibility = ["//visibility:public"],
+    cmd = " && ".join([
+        "touch $@",
+        "export AWS_ACCESS_KEY_ID=$$(grep ^AWS_ACCESS_KEY_ID bazel-out/volatile-status.txt | cut -f2 -d\" \")",
+        "export AWS_SECRET_ACCESS_KEY=$$(grep ^AWS_SECRET_ACCESS_KEY bazel-out/volatile-status.txt | cut -f2 -d\" \")",
+        "echo '[default]' >> $@",
+        "echo aws_access_key_id = $$AWS_ACCESS_KEY_ID >> $@",
+        "echo aws_secret_access_key = $$AWS_SECRET_ACCESS_KEY >> $@",
+    ]),
+    stamp = 1,
+)

hack/checkin_account.py

@@ -14,6 +14,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
+import sys
 import httplib
 import urllib
 import os

hack/print-workspace-status.sh

@@ -80,4 +80,6 @@ GIT_VERSION ${GIT_VERSION-}
 GIT_BRANCH ${GIT_BRANCH-}
 GIT_RELEASE_TAG ${GIT_RELEASE_TAG-}
 GIT_RELEASE_COMMIT ${GIT_RELEASE_COMMIT-}
+AWS_ACCESS_KEY_ID ${AWS_ACCESS_KEY_ID-}
+AWS_SECRET_ACCESS_KEY ${AWS_SECRET_ACCESS_KEY-}
 EOF

scripts/ci-bazel-e2e.sh

@@ -20,7 +20,7 @@ set -o pipefail
 REPO_ROOT=$(dirname "${BASH_SOURCE}")/..
 
 cd $REPO_ROOT
-bazel test --define='gotags=integration' --test_output all //test/e2e/...
+bazel test --define='gotags=integration' --test_output all //test/integration/...
 bazel_status=$?
 python hack/coalesce.py
 exit $bazel_status

test/e2e/BUILD

@@ -1,43 +1,50 @@
-load("@io_bazel_rules_go//go:def.bzl", "go_library", "go_test")
+load("@io_bazel_rules_go//go:def.bzl", "go_test")
 
 go_test(
     name = "go_default_test",
     size = "large",
     srcs = [
+        "aws_test.go",
         "e2e_suite_test.go",
-        "metacluster_test.go",
     ],
     args = [
         "-kindBinary=$(location @io_k8s_sigs_kind//:kind)",
         "-kubectlBinary=$(location @io_k8s_kubernetes//cmd/kubectl:kubectl)",
         "-awsProviderYAML=$(location //config:aws-provider-yaml)",
         "-clusterAPIYAML=$(location //vendor/sigs.k8s.io/cluster-api/config:cluster-api-yaml)",
         "-managerImageTar=$(location //cmd/manager:manager-amd64.tar)",
+        "-credFile=$(location //config:credential_file)",
     ],
     data = [
         "//config:aws-provider-yaml",
+        "//config:credential_file",
         "//vendor/sigs.k8s.io/cluster-api/config:cluster-api-yaml",
         "//cmd/manager:manager-amd64.tar",
         "@io_k8s_kubernetes//cmd/kubectl:kubectl",
         "@io_k8s_sigs_kind//:kind",
     ],
-    embed = [":go_default_library"],
     rundir = ".",
     deps = [
+        "//pkg/apis/awsprovider/v1alpha1:go_default_library",
+        "//pkg/cloud/aws/services/awserrors:go_default_library",
+        "//pkg/cloud/aws/services/cloudformation:go_default_library",
+        "//pkg/cloud/aws/services/sts:go_default_library",
         "//test/e2e/util/kind:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/aws:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/aws/client:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/aws/credentials:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/aws/session:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/service/cloudformation:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/service/ec2:go_default_library",
+        "//vendor/github.com/aws/aws-sdk-go/service/sts:go_default_library",
         "//vendor/github.com/onsi/ginkgo:go_default_library",
         "//vendor/github.com/onsi/gomega:go_default_library",
         "//vendor/github.com/onsi/gomega/gstruct:go_default_library",
         "//vendor/github.com/onsi/gomega/types:go_default_library",
-        "//vendor/k8s.io/api/apps/v1:go_default_library",
+        "//vendor/k8s.io/api/core/v1:go_default_library",
         "//vendor/k8s.io/apimachinery/pkg/apis/meta/v1:go_default_library",
         "//vendor/k8s.io/client-go/kubernetes:go_default_library",
+        "//vendor/sigs.k8s.io/cluster-api/pkg/apis/cluster/v1alpha1:go_default_library",
+        "//vendor/sigs.k8s.io/cluster-api/pkg/client/clientset_generated/clientset:go_default_library",
     ],
 )
-
-go_library(
-    name = "go_default_library",
-    srcs = ["e2e.go"],
-    importpath = "sigs.k8s.io/cluster-api-provider-aws/test/e2e",
-    visibility = ["//visibility:public"],
-)

test/e2e/aws_test.go

@@ -0,0 +1,217 @@
+/*
+Copyright 2018 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package e2e_test
+
+import (
+	"flag"
+	"time"
+
+	. "github.com/onsi/ginkgo"
+	. "github.com/onsi/gomega"
+	. "github.com/onsi/gomega/gstruct"
+	"github.com/onsi/gomega/types"
+
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/client"
+	"github.com/aws/aws-sdk-go/aws/credentials"
+	"github.com/aws/aws-sdk-go/aws/session"
+	cfn "github.com/aws/aws-sdk-go/service/cloudformation"
+	"github.com/aws/aws-sdk-go/service/ec2"
+	awssts "github.com/aws/aws-sdk-go/service/sts"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/kubernetes"
+
+	capa "sigs.k8s.io/cluster-api-provider-aws/pkg/apis/awsprovider/v1alpha1"
+	"sigs.k8s.io/cluster-api-provider-aws/pkg/cloud/aws/services/awserrors"
+	"sigs.k8s.io/cluster-api-provider-aws/pkg/cloud/aws/services/cloudformation"
+	"sigs.k8s.io/cluster-api-provider-aws/pkg/cloud/aws/services/sts"
+	"sigs.k8s.io/cluster-api-provider-aws/test/e2e/util/kind"
+	capi "sigs.k8s.io/cluster-api/pkg/apis/cluster/v1alpha1"
+	clientset "sigs.k8s.io/cluster-api/pkg/client/clientset_generated/clientset"
+)
+
+const (
+	kindTimeout      = 5 * 60
+	namespace        = "capa-test"
+	clusterName      = "capa-test-cluster"
+	controlPlaneName = "capa-test-control-plane"
+
+	kubeletVersion = "v1.13.2"
+	instanceType   = "t2.medium"
+	awsRegion      = "us-east-1"
+	stackName      = "cluster-api-provider-aws-sigs-k8s-io"
+	keyPairName    = "cluster-api-provider-aws-sigs-k8s-io"
+)
+
+var credFile = flag.String("credFile", "", "path to an AWS credentials file")
+
+var _ = Describe("AWS", func() {
+	var (
+		cluster kind.Cluster
+		client  *clientset.Clientset
+	)
+	BeforeEach(func() {
+		cluster.Setup()
+		cfg := cluster.RestConfig()
+		var err error
+		client, err = clientset.NewForConfig(cfg)
+		Expect(err).To(BeNil())
+	}, kindTimeout)
+
+	AfterEach(func() {
+		cluster.Teardown()
+	})
+
+	Describe("control plane node", func() {
+		It("should be running", func() {
+
+			sess := getSession()
+			accountID := getAccountID(sess)
+
+			createKeyPair(sess)
+			createIAMRoles(sess, accountID)
+
+			createNamespace(cluster.KubeClient())
+
+			By("Creating a cluster")
+			clusterapi := client.ClusterV1alpha1().Clusters(namespace)
+			_, err := clusterapi.Create(makeCluster())
+			Expect(err).To(BeNil())
+
+			By("Creating a machine")
+			machineapi := client.ClusterV1alpha1().Machines(namespace)
+			_, err = machineapi.Create(makeMachine())
+			Expect(err).To(BeNil())
+
+			Eventually(
+				func() (*capa.AWSMachineProviderStatus, error) {
+					machine, err := machineapi.Get(controlPlaneName, metav1.GetOptions{})
+					if err != nil {
+						return nil, err
+					}
+					return capa.MachineStatusFromProviderStatus(machine.Status.ProviderStatus)
+				},
+				10*time.Minute, 15*time.Second,
+			).Should(beHealthy())
+		})
+	})
+})
+
+func beHealthy() types.GomegaMatcher {
+	return PointTo(
+		MatchFields(IgnoreExtras, Fields{
+			"InstanceState": PointTo(Equal(capa.InstanceStateRunning)),
+		}),
+	)
+}
+
+func makeCluster() *capi.Cluster {
+	clusterSpec, err := capa.EncodeClusterSpec(&capa.AWSClusterProviderSpec{
+		Region:     awsRegion,
+		SSHKeyName: keyPairName,
+	})
+	Expect(err).To(BeNil())
+
+	return &capi.Cluster{
+		ObjectMeta: metav1.ObjectMeta{
+			Name: clusterName,
+		},
+		Spec: capi.ClusterSpec{
+			ClusterNetwork: capi.ClusterNetworkingConfig{
+				Services: capi.NetworkRanges{
+					CIDRBlocks: []string{"10.96.0.0/12"},
+				},
+				Pods: capi.NetworkRanges{
+					CIDRBlocks: []string{"192.168.0.0/16"},
+				},
+				ServiceDomain: "cluster.local",
+			},
+			ProviderSpec: capi.ProviderSpec{
+				Value: clusterSpec,
+			},
+		},
+	}
+}
+
+func makeMachine() *capi.Machine {
+	providerSpec, err := capa.EncodeMachineSpec(&capa.AWSMachineProviderSpec{
+		InstanceType:       instanceType,
+		IAMInstanceProfile: "control-plane.cluster-api-provider-aws.sigs.k8s.io",
+		KeyName:            keyPairName,
+	})
+	Expect(err).To(BeNil())
+
+	return &capi.Machine{
+		ObjectMeta: metav1.ObjectMeta{
+			Name: controlPlaneName,
+			Labels: map[string]string{
+				"set":                         "controlplane",
+				"cluster.k8s.io/cluster-name": clusterName,
+			},
+		},
+		Spec: capi.MachineSpec{
+			Versions: capi.MachineVersionInfo{
+				Kubelet:      kubeletVersion,
+				ControlPlane: kubeletVersion,
+			},
+			ProviderSpec: capi.ProviderSpec{
+				Value: providerSpec,
+			},
+		},
+	}
+}
+
+func createNamespace(client kubernetes.Interface) {
+	_, err := client.CoreV1().Namespaces().Create(&corev1.Namespace{
+		ObjectMeta: metav1.ObjectMeta{
+			Name: namespace,
+		},
+	})
+	Expect(err).To(BeNil())
+}
+
+func getAccountID(prov client.ConfigProvider) string {
+	stsSvc := sts.NewService(awssts.New(prov))
+	accountID, err := stsSvc.AccountID()
+	Expect(err).To(BeNil())
+	return accountID
+}
+
+func createIAMRoles(prov client.ConfigProvider, accountID string) {
+	cfnSvc := cloudformation.NewService(cfn.New(prov))
+	Expect(
+		cfnSvc.ReconcileBootstrapStack(stackName, accountID),
+	).To(Succeed())
+}
+
+func createKeyPair(prov client.ConfigProvider) {
+	ec2c := ec2.New(prov)
+	_, err := ec2c.CreateKeyPair(&ec2.CreateKeyPairInput{KeyName: aws.String(keyPairName)})
+	if code, _ := awserrors.Code(err); code != "InvalidKeyPair.Duplicate" {
+		Expect(err).To(BeNil())
+	}
+}
+
+func getSession() client.ConfigProvider {
+	creds := credentials.NewCredentials(&credentials.SharedCredentialsProvider{
+		Filename: *credFile,
+	})
+	sess, err := session.NewSession(aws.NewConfig().WithCredentials(creds).WithRegion(awsRegion))
+	Expect(err).To(BeNil())
+	return sess
+}

test/e2e/util/kind/BUILD.bazel

@@ -9,6 +9,7 @@ go_library(
         "//vendor/github.com/onsi/ginkgo:go_default_library",
         "//vendor/github.com/onsi/gomega:go_default_library",
         "//vendor/k8s.io/client-go/kubernetes:go_default_library",
+        "//vendor/k8s.io/client-go/rest:go_default_library",
         "//vendor/k8s.io/client-go/tools/clientcmd:go_default_library",
     ],
 )

test/e2e/util/kind/setup.go

@@ -29,6 +29,7 @@ import (
 	"github.com/onsi/ginkgo"
 	"github.com/onsi/gomega"
 	"k8s.io/client-go/kubernetes"
+	restclient "k8s.io/client-go/rest"
 	"k8s.io/client-go/tools/clientcmd"
 )
 
@@ -95,10 +96,16 @@ func (c *Cluster) applyYAML() {
 	))
 }
 
-// KubeConfig returns an absolute path to the Kube Config
-func (c *Cluster) KubeClient() kubernetes.Interface {
+// RestConfig returns a rest configuration pointed at the provisioned cluster
+func (c *Cluster) RestConfig() *restclient.Config {
 	cfg, err := clientcmd.BuildConfigFromFlags("", c.kubepath)
 	gomega.ExpectWithOffset(1, err).To(gomega.BeNil())
+	return cfg
+}
+
+// KubeClient returns a Kubernetes client pointing at the provisioned cluster
+func (c *Cluster) KubeClient() kubernetes.Interface {
+	cfg := c.RestConfig()
 	client, err := kubernetes.NewForConfig(cfg)
 	gomega.ExpectWithOffset(1, err).To(gomega.BeNil())
 	return client