Helm chart now allows to enable TLS and basic auth

[nvvfedorov]

This PR adds the ability to enable TLS and HTTP Basic authentication for dcgm-exporter.

The following configuration values were added:

# HTTPS configuration
tlsServerConfig:
  # Enable or disable HTTPS configuration
  enabled: false
  # Use autogenerated self-signed TLS certificates
  autoGenerated: true
  # Existing secret containing your own server key and certificate
  existingSecret: ""
  # Certificate file name
  certFilename: "tls.crt"
  # Key file name
  keyFilename: "tls.key"
  # CA certificate file name
  caFilename: "ca.crt"
  # Server policy for client authentication. Maps to ClientAuth Policies.
  # For more detail on clientAuth options:
  # https://golang.org/pkg/crypto/tls/#ClientAuthType
  #
  # NOTE: If you want to enable client authentication, you need to use
  # RequireAndVerifyClientCert. Other values are insecure.
  clientAuthType: ""
  # TLS Key for HTTPS - ignored if existingSecret is provided
  key: ""
  # TLS Certificate for HTTPS - ignored if existingSecret is provided
  cert: ""
  # CA Certificate for HTTPS - ignored if existingSecret is provided
  ca: ""

basicAuth:
  #Object containing <user>:<passwords> key-value pairs for each user that will have access via basic authentication
  users: {}

Also, new E2E tests were added:

• The dcgm-exporter deployment when TLS is enabled;
• The dcgm-exporter deployment when HTTP basic authentication is enabled.

The E2E suite now allows to specify which tests to run:

• make e2es-tests - run all e2e tests;
• make e2e-basic-auth - run e2e scenario when basic auth is enabled;
• make e2e-tls - run e2e scenario when TLS is enabled;
• make e2e-default - run e2e scenario when tests deploy the helm chart with the default configuration.

[rohit-arora-dev]

Just a couple of minor things, looking god otherwise.

[rohit-arora-dev]

Indentation issue.

[nvvfedorov]

@rohit-arora-dev, can you be more specific about where the issue is?

[rohit-arora-dev]

Please look at the file, it has indentation issues.

[rohit-arora-dev]

Line 81-92

[nvvfedorov]

@rohit-arora-dev Why do you think indentation is wrong when K8S accepts this yaml without issues?

[nvvfedorov]

If your question is about the if - end blocks, it is made intentionally to make it easy to see when the block starts and ends.

[rohit-arora-dev]

I see a mix of styles, the file in general follow a style where if-end aligns with the indentation, and does not stand out. Even in other parts of the code where you have added new if-end blocks the indentation is correct, but for this specific block it is different.

My suggestion is to make it consistent across the file, either change all the if-end to follow this style or this block should follow the style consistent with the rest of the file.

[nvvfedorov]

@rohit-arora-dev done.

[rohit-arora-dev]

Thanks, definitely looking better.

[rohit-arora-dev]

Just out of curiosity why are these not part of BeforeAll anymore?

[nvvfedorov]

@rohit-arora-dev Is it an old comment? BeforeAll now creates a namespace as part of the BeforeAll.

Global variables such as kubeClient, helmClient, and testRunLabels initialize once in the Context, which is the container (https://onsi.github.io/ginkgo/#organizing-specs-with-container-nodes. ) for e2e tests. After global variables are initialized, they are available for child specs, like BeforeAll, etc.

[rohit-arora-dev]

In what scenario we need this flag?

[nvvfedorov]

@rohit-arora-dev Troubleshooting. E2E destroys all resources after the end of the test or cancelation. The flag allows to keep created resources for the investigation of failures.

[rohit-arora-dev]

/LGTM