kibana/x-pack/test/security_api_integration/saml.config.ts

/*
 * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
 * or more contributor license agreements. Licensed under the Elastic License
 * 2.0; you may not use this file except in compliance with the Elastic License
 * 2.0.
 */

import { resolve } from 'path';
import { FtrConfigProviderContext } from '@kbn/test';
import { services } from './services';

export default async function ({ readConfigFile }: FtrConfigProviderContext) {
  const xPackAPITestsConfig = await readConfigFile(require.resolve('../api_integration/config.ts'));

  const kibanaPort = xPackAPITestsConfig.get('servers.kibana.port');
  const idpPath = resolve(__dirname, './fixtures/saml/idp_metadata.xml');

  return {
    testFiles: [require.resolve('./tests/saml')],
    servers: xPackAPITestsConfig.get('servers'),
    security: { disableTestUser: true },
    services,
    junit: {
      reportName: 'X-Pack Security API Integration Tests (SAML)',
    },

    esTestCluster: {
      ...xPackAPITestsConfig.get('esTestCluster'),
      serverArgs: [
        ...xPackAPITestsConfig.get('esTestCluster.serverArgs'),
        'xpack.security.authc.token.enabled=true',
        'xpack.security.authc.token.timeout=15s',
        'xpack.security.authc.realms.saml.saml1.order=0',
        `xpack.security.authc.realms.saml.saml1.idp.metadata.path=${idpPath}`,
        'xpack.security.authc.realms.saml.saml1.idp.entity_id=http://www.elastic.co/saml1',
        `xpack.security.authc.realms.saml.saml1.sp.entity_id=http://localhost:${kibanaPort}`,
        `xpack.security.authc.realms.saml.saml1.sp.logout=http://localhost:${kibanaPort}/logout`,
        `xpack.security.authc.realms.saml.saml1.sp.acs=http://localhost:${kibanaPort}/api/security/saml/callback`,
        'xpack.security.authc.realms.saml.saml1.attributes.principal=urn:oid:0.0.7',
      ],
    },

    kbnTestServer: {
      ...xPackAPITestsConfig.get('kbnTestServer'),
      serverArgs: [
        ...xPackAPITestsConfig.get('kbnTestServer.serverArgs'),
        `--xpack.security.authc.providers=${JSON.stringify(['saml', 'basic'])}`,
        '--xpack.security.authc.saml.realm=saml1',
        '--xpack.security.authc.saml.maxRedirectURLSize=100b',
      ],
    },
  };
}
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`/*`
			`* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one`
Elastic License 2.0 (#90099) * Updating everything except the license headers themselves * Applying ESLint rules * Manually replacing the stragglers 2021-02-04 03:12:39 +01:00			`* or more contributor license agreements. Licensed under the Elastic License`
			`* 2.0; you may not use this file except in compliance with the Elastic License`
			`* 2.0.`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`*/`

Functional test setup with kbn-test package (#18568) Restructure testing with kbn-test package - Run with multiple configs, move cli options to config - Package-ify kbn-test - Eventually we'll have functional_test_runner live in a package of its own, and then this kbn-test will use that as a dependency, probably still as a devDependency. - Implement functional_tests_server - Collapse single and multiple config apis into one command Use kbn-es Replace es_test_cluster + es_test_config with kbn/test utils Implement new createEsTestCluster Improve scripts, jsdocs, cli top-level tools Lift error handling to the top level 2018-05-10 01:23:49 +02:00			`import { resolve } from 'path';`
[kbn/test] move types/ftr into src (#99555) * [kbn/test] move types/ftr into src * Apply eslint updates * fix import of Lifecycle type Co-authored-by: spalger <spalger@users.noreply.github.com> Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com> 2021-05-17 18:51:53 +02:00			`import { FtrConfigProviderContext } from '@kbn/test';`
Migrate privilege/role/user-related operations to a new Elasticsearch client. (#84641) 2020-12-04 14:24:30 +01:00			`import { services } from './services';`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00
apply prettier styles 2020-05-22 09:08:58 +02:00			`export default async function ({ readConfigFile }: FtrConfigProviderContext) {`
Register privileges in Kibana Platform Security plugin and remove legacy `getUser` API. (#65472) 2020-06-05 08:11:58 +02:00			`const xPackAPITestsConfig = await readConfigFile(require.resolve('../api_integration/config.ts'));`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00
Functional test setup with kbn-test package (#18568) Restructure testing with kbn-test package - Run with multiple configs, move cli options to config - Package-ify kbn-test - Eventually we'll have functional_test_runner live in a package of its own, and then this kbn-test will use that as a dependency, probably still as a devDependency. - Implement functional_tests_server - Collapse single and multiple config apis into one command Use kbn-es Replace es_test_cluster + es_test_config with kbn/test utils Implement new createEsTestCluster Improve scripts, jsdocs, cli top-level tools Lift error handling to the top level 2018-05-10 01:23:49 +02:00			`const kibanaPort = xPackAPITestsConfig.get('servers.kibana.port');`
Ignore intermediate unauthenticated session during repeated authentication attempt. (#79300) 2020-10-05 20:07:23 +02:00			`const idpPath = resolve(__dirname, './fixtures/saml/idp_metadata.xml');`
Functional test setup with kbn-test package (#18568) Restructure testing with kbn-test package - Run with multiple configs, move cli options to config - Package-ify kbn-test - Eventually we'll have functional_test_runner live in a package of its own, and then this kbn-test will use that as a dependency, probably still as a devDependency. - Implement functional_tests_server - Collapse single and multiple config apis into one command Use kbn-es Replace es_test_cluster + es_test_config with kbn/test utils Implement new createEsTestCluster Improve scripts, jsdocs, cli top-level tools Lift error handling to the top level 2018-05-10 01:23:49 +02:00
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`return {`
Ignore intermediate unauthenticated session during repeated authentication attempt. (#79300) 2020-10-05 20:07:23 +02:00			`testFiles: [require.resolve('./tests/saml')],`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`servers: xPackAPITestsConfig.get('servers'),`
FTR configurable test users (#52431) * initial implementation of configurable test users * user superuser by default to match master * referenced the configs in reporting and api integration * setting the minimum number of default roles * looking for x-pack tests with users and roles * add testUserService in dashboard mode tests * running only ciGroup7 * uncommenting - addign visualization * re-enabling all CI groups to run on CI * reinstating Jenkinsfile * disable Test user for OIDC config * improved logging and added Roles for OSS tests to get better info on the runs. * disable test_user for auth tests * don't fetch enabledPlugins when testuser disabled * fix es-lint * running oss tests with x-pack enabled * [revertme] build default dist for oss tests * updating NOTICE.txt file as it complained in the kibana intake tests * changed to pick OSS builds * trying a license change to trial * switch back to xpack builds * created a new sample data role and used it in homepage tests * revert test/scripts/jenkins_ci_group.sh * only refresh browser and wait for chrome if we are already on Kibana page * fix large_string test to use minimum set of roles and privileges * fix for date nanos custom timestamp with a configured role * changes to the files with addition of new roles for the test_user * reverting to OSS changes and few additions to the time_zone test to run as a test_user * changes to security * changes to the x-pack test to use elastic superuser * fix for chart_types test * fixes to area chart , input control test * fix for dashboard filtering test and a new config role * changes to handle the x-pack tests * additional role for date nanos mixed * added the logstash role to the accessibility tests * removed telemetry setting * docs+few changes to the tests * removed Page navigation * removed pageNavigation which was unused * test/accessibility/apps/management.ts * update management.ts * aria label, and other changes * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * reverted * unloading of logstash data, fixing aria label * aria-label * added the required role * fix for tsvb chart * fix for sample data test reverted home_page pageobject file * changes to sample data test and visualize index file to incorporate OSS changes * changes to describe() and some more changes to incorporate in settings_page * re-adding the after() * removed unwanted roles * replaced kibana_user with kibana_admin * added the check of deprecated kibana_user * testing with kibana_admin role * fix for discover test * incorporated the review comments * incorporated the review comments * incorporate review comments and added restoreDefaults() * removed describe.only * reverted the OSS logic change I had here- pulled into seperate PR * incorporated the review comments * incorporated review changes * adding hidden=true to find hidden kibanaChrome * change field.test.tsx to be same as that of master branch Co-authored-by: spalger <spalger@users.noreply.github.com> Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com> 2020-03-17 18:41:23 +01:00			`security: { disableTestUser: true },`
Migrate privilege/role/user-related operations to a new Elasticsearch client. (#84641) 2020-12-04 14:24:30 +01:00			`services,`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`junit: {`
Ignore intermediate unauthenticated session during repeated authentication attempt. (#79300) 2020-10-05 20:07:23 +02:00			`reportName: 'X-Pack Security API Integration Tests (SAML)',`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`},`
Functional test setup with kbn-test package (#18568) Restructure testing with kbn-test package - Run with multiple configs, move cli options to config - Package-ify kbn-test - Eventually we'll have functional_test_runner live in a package of its own, and then this kbn-test will use that as a dependency, probably still as a devDependency. - Implement functional_tests_server - Collapse single and multiple config apis into one command Use kbn-es Replace es_test_cluster + es_test_config with kbn/test utils Implement new createEsTestCluster Improve scripts, jsdocs, cli top-level tools Lift error handling to the top level 2018-05-10 01:23:49 +02:00
			`esTestCluster: {`
			`...xPackAPITestsConfig.get('esTestCluster'),`
			`serverArgs: [`
			`...xPackAPITestsConfig.get('esTestCluster.serverArgs'),`
			`'xpack.security.authc.token.enabled=true',`
			`'xpack.security.authc.token.timeout=15s',`
Using the new ES Realm syntax for SAML (#25223) 2018-11-08 18:28:53 +01:00			`'xpack.security.authc.realms.saml.saml1.order=0',`
			`xpack.security.authc.realms.saml.saml1.idp.metadata.path=${idpPath}`,
Implement Kibana Login Selector (#53010) 2020-03-23 22:45:26 +01:00			`'xpack.security.authc.realms.saml.saml1.idp.entity_id=http://www.elastic.co/saml1',`
Using the new ES Realm syntax for SAML (#25223) 2018-11-08 18:28:53 +01:00			`xpack.security.authc.realms.saml.saml1.sp.entity_id=http://localhost:${kibanaPort}`,
			`xpack.security.authc.realms.saml.saml1.sp.logout=http://localhost:${kibanaPort}/logout`,
Preserve URL fragment during SAML handshake. (#44513) 2019-10-09 18:12:14 +02:00			`xpack.security.authc.realms.saml.saml1.sp.acs=http://localhost:${kibanaPort}/api/security/saml/callback`,
Using the new ES Realm syntax for SAML (#25223) 2018-11-08 18:28:53 +01:00			`'xpack.security.authc.realms.saml.saml1.attributes.principal=urn:oid:0.0.7',`
Functional test setup with kbn-test package (#18568) Restructure testing with kbn-test package - Run with multiple configs, move cli options to config - Package-ify kbn-test - Eventually we'll have functional_test_runner live in a package of its own, and then this kbn-test will use that as a dependency, probably still as a devDependency. - Implement functional_tests_server - Collapse single and multiple config apis into one command Use kbn-es Replace es_test_cluster + es_test_config with kbn/test utils Implement new createEsTestCluster Improve scripts, jsdocs, cli top-level tools Lift error handling to the top level 2018-05-10 01:23:49 +02:00			`],`
			`},`

Option to run kibana from build for CI (#19125) (#19225) * Option to run kibana from build for CI (#19125) * Support --dev option for servers only * try skipping dashboard time zones test 2018-05-21 15:31:30 +02:00			`kbnTestServer: {`
			`...xPackAPITestsConfig.get('kbnTestServer'),`
			`serverArgs: [`
			`...xPackAPITestsConfig.get('kbnTestServer.serverArgs'),`
Make SAML realm name configurable (#37346) 2019-06-11 18:05:20 +02:00			`--xpack.security.authc.providers=${JSON.stringify(['saml', 'basic'])}`,
Make `xpack.security.authc.saml.realm` mandatory and completely remove `xpack.security.authProviders` and `xpack.security.public`. (#38657) 2019-06-13 17:43:18 +02:00			`'--xpack.security.authc.saml.realm=saml1',`
Preserve URL fragment during SAML handshake. (#44513) 2019-10-09 18:12:14 +02:00			`'--xpack.security.authc.saml.maxRedirectURLSize=100b',`
Option to run kibana from build for CI (#19125) (#19225) * Option to run kibana from build for CI (#19125) * Support --dev option for servers only * try skipping dashboard time zones test 2018-05-21 15:31:30 +02:00			`],`
			`},`
Migrate x-pack-kibana source to kibana 2018-04-20 21:13:37 +02:00			`};`
			`}`