test/oauth-server-creation-minimal: adds a test show which input resources are required to run the operator and the controller that creates oauth-server deployment

Author: p0lyn0mial

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/2e46-body-authentication-operator.17fe72c59b829800.b2cdb588.yaml

@@ -0,0 +1,29 @@
+apiVersion: v1
+count: 1
+eventTime: null
+firstTimestamp: "2024-10-14T22:38:20Z"
+involvedObject:
+  kind: Deployment
+  name: authentication-operator
+  namespace: openshift-authentication-operator
+kind: Event
+lastTimestamp: "2024-10-14T22:38:20Z"
+message: 'Writing updated section ("oauthServer") of observed config: "\u00a0\u00a0map[string]any(\n-\u00a0\tnil,\n+\u00a0\t{\n+\u00a0\t\t\"corsAllowedOrigins\":
+  []any{string(`//127\\.0\\.0\\.1(:|$)`), string(\"//localhost(:|$)\")},\n+\u00a0\t\t\"oauthConfig\":
+  map[string]any{\n+\u00a0\t\t\t\"loginURL\": string(\"https://api.ostest.test.metalkube.org:6443\"),\n+\u00a0\t\t\t\"tokenConfig\":
+  map[string]any{\n+\u00a0\t\t\t\t\"accessTokenMaxAgeSeconds\":    float64(86400),\n+\u00a0\t\t\t\t\"authorizeTokenMaxAgeSeconds\":
+  float64(300),\n+\u00a0\t\t\t},\n+\u00a0\t\t},\n+\u00a0\t\t\"serverArguments\": map[string]any{\n+\u00a0\t\t\t\"audit-log-format\":    []any{string(\"json\")},\n+\u00a0\t\t\t\"audit-log-maxbackup\":
+  []any{string(\"10\")},\n+\u00a0\t\t\t\"audit-log-maxsize\":   []any{string(\"100\")},\n+\u00a0\t\t\t\"audit-log-path\":      []any{string(\"/var/log/oauth-server/audit.log\")},\n+\u00a0\t\t\t\"audit-policy-file\":   []any{string(\"/var/run/configmaps/audit/audit.\"...)},\n+\u00a0\t\t},\n+\u00a0\t\t\"servingInfo\":
+  map[string]any{\n+\u00a0\t\t\t\"cipherSuites\": []any{\n+\u00a0\t\t\t\tstring(\"TLS_AES_128_GCM_SHA256\"),
+  string(\"TLS_AES_256_GCM_SHA384\"),\n+\u00a0\t\t\t\tstring(\"TLS_CHACHA20_POLY1305_SHA256\"),\n+\u00a0\t\t\t\tstring(\"TLS_ECDHE_ECDSA_WITH_AES_128_GCM\"...),
+  ...,\n+\u00a0\t\t\t},\n+\u00a0\t\t\t\"minTLSVersion\": string(\"VersionTLS12\"),\n+\u00a0\t\t},\n+\u00a0\t},\n\u00a0\u00a0)\n"'
+metadata:
+  creationTimestamp: null
+  name: authentication-operator.17fe72c59b829800.b2cdb588
+  namespace: openshift-authentication-operator
+reason: ObservedConfigChanged
+reportingComponent: ""
+reportingInstance: ""
+source:
+  component: cluster-authentication-operator-run-once-sync-context
+type: Normal

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/6471-metadata-authentication-operator.17fe72c59b829800.57eb8535.yaml renamed to test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/2e46-metadata-authentication-operator.17fe72c59b829800.b2cdb588.yaml

@@ -1,7 +1,7 @@
 action: Create
 controllerInstanceName: ""
 generateName: ""
-name: authentication-operator.17fe72c59b829800.57eb8535
+name: authentication-operator.17fe72c59b829800.b2cdb588
 namespace: openshift-authentication-operator
 resourceType:
   Group: ""

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/6471-body-authentication-operator.17fe72c59b829800.57eb8535.yaml

@@ -0,0 +1,25 @@
+apiVersion: v1
+count: 1
+eventTime: null
+firstTimestamp: "2024-10-14T22:38:20Z"
+involvedObject:
+  kind: Deployment
+  name: authentication-operator
+  namespace: openshift-authentication-operator
+kind: Event
+lastTimestamp: "2024-10-14T22:38:20Z"
+message: 'Writing updated section ("oauthAPIServer") of observed config: "\u00a0\u00a0map[string]any(\n-\u00a0\tnil,\n+\u00a0\t{\n+\u00a0\t\t\"apiServerArguments\":
+  map[string]any{\n+\u00a0\t\t\t\"api-audiences\":        []any{string(\"https://kubernetes.default.svc\")},\n+\u00a0\t\t\t\"cors-allowed-origins\":
+  []any{string(`//127\\.0\\.0\\.1(:|$)`), string(\"//localhost(:|$)\")},\n+\u00a0\t\t\t\"feature-gates\":        []any{},\n+\u00a0\t\t\t\"tls-cipher-suites\":
+  []any{\n+\u00a0\t\t\t\tstring(\"TLS_AES_128_GCM_SHA256\"), string(\"TLS_AES_256_GCM_SHA384\"),\n+\u00a0\t\t\t\tstring(\"TLS_CHACHA20_POLY1305_SHA256\"),\n+\u00a0\t\t\t\tstring(\"TLS_ECDHE_ECDSA_WITH_AES_128_GCM\"...),
+  ...,\n+\u00a0\t\t\t},\n+\u00a0\t\t\t\"tls-min-version\": string(\"VersionTLS12\"),\n+\u00a0\t\t},\n+\u00a0\t},\n\u00a0\u00a0)\n"'
+metadata:
+  creationTimestamp: null
+  name: authentication-operator.17fe72c59b829800.5aa4f723
+  namespace: openshift-authentication-operator
+reason: ObservedConfigChanged
+reportingComponent: ""
+reportingInstance: ""
+source:
+  component: cluster-authentication-operator-run-once-sync-context
+type: Normal

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/86b1-body-authentication-operator.17fe72c59b829800.5aa4f723.yaml

@@ -1,7 +1,7 @@
 action: Create
 controllerInstanceName: ""
 generateName: ""
-name: authentication-operator.17fe72c59b829800.2a24f1b5
+name: authentication-operator.17fe72c59b829800.5aa4f723
 namespace: openshift-authentication-operator
 resourceType:
   Group: ""

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/de10-metadata-authentication-operator.17fe72c59b829800.2a24f1b5.yaml renamed to test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/86b1-metadata-authentication-operator.17fe72c59b829800.5aa4f723.yaml

@@ -6,7 +6,7 @@ metadata:
   labels:
     authentication.openshift.io/csr: openshift-authenticator
 spec:
-  request: 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
+  request: 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
   signerName: kubernetes.io/kube-apiserver-client
   usages:
   - digital signature

test-data/apply-configuration/overall/minimal-cluster/expected-output/Management/Create/namespaces/openshift-authentication-operator/core/events/de10-body-authentication-operator.17fe72c59b829800.2a24f1b5.yaml

@@ -0,0 +1,30 @@
+apiVersion: operator.openshift.io/v1
+kind: Authentication
+metadata:
+  name: cluster
+status:
+  conditions:
+  - lastTransitionTime: "2025-08-07T22:38:20Z"
+    message: no oauth-openshift.openshift-authentication pods available on any node.
+    reason: NoPod
+    status: "False"
+    type: OAuthServerDeploymentAvailable
+  - lastTransitionTime: "2025-08-01T18:45:36Z"
+    reason: AsExpected
+    status: "False"
+    type: OAuthServerDeploymentDegraded
+  - lastTransitionTime: "2025-08-07T22:38:20Z"
+    message: 'deployment/oauth-openshift.openshift-authentication: 0/1 pods have been
+      updated to the latest generation and 0/1 pods are available'
+    reason: PodsUpdating
+    status: "True"
+    type: OAuthServerDeploymentProgressing
+  - lastTransitionTime: "2025-08-01T18:45:36Z"
+    status: "False"
+    type: OAuthServerWorkloadDegraded
+  generations:
+  - group: apps
+    lastGeneration: 0
+    name: oauth-openshift
+    namespace: openshift-authentication
+    resource: deployments

test-data/apply-configuration/overall/minimal-cluster/expected-output/UserWorkload/Create/cluster-scoped-resources/certificates.k8s.io/certificatesigningrequests/64b2-body-system-COLON-openshift-COLON-openshift-authenticator-.yaml renamed to test-data/apply-configuration/overall/minimal-cluster/expected-output/UserWorkload/Create/cluster-scoped-resources/certificates.k8s.io/certificatesigningrequests/ffbf-body-system-COLON-openshift-COLON-openshift-authenticator-.yaml

@@ -0,0 +1,9 @@
+action: ApplyStatus
+controllerInstanceName: TODO-deploymentController
+fieldManager: OAuthServer-Workload
+generateName: ""
+name: cluster
+resourceType:
+  Group: operator.openshift.io
+  Resource: authentications
+  Version: v1