Testing with real IP

Reviewed-on: #27

prod/route-to-staging-dev.yaml

@@ -0,0 +1,33 @@
+http:
+  routers:
+    # Router for HTTP (Port 80)
+    staging:
+      rule: "HostRegexp(`^.+\\.staging\\.kovagoadi\\.hu$`) || HostRegexp(`^.+\\.dev\\.kovagoadi\\.hu$`)"
+      entryPoints:
+        - "web"
+      service: "dev-staging"
+      priority: 1000
+  services:
+    dev-staging:
+      loadBalancer:
+        servers:
+          - url: "http://staging:8080"
+
+tcp:
+  routers:
+    # Router for HTTPS (Passthrough)
+    dev-staging-secure:
+      rule: "HostSNIRegexp(`^.+\\.staging\\.kovagoadi\\.hu$`) || HostSNIRegexp(`^.+\\.dev\\.kovagoadi\\.hu$`)"
+      service: "dev-staging-secure"
+      # Passthrough must be true for SSL to reach Nginx encrypted
+      tls:
+        passthrough: true
+      priority: 1000
+      entryPoints:
+        - "https"
+  services:  
+    dev-staging-secure:
+      loadBalancer:
+        servers:
+          # Note: Ensure Traefik trusts the cert at .85 or set insecureSkipVerify
+          - address: "staging:445"

tests/e2e/test_traefik.py

@@ -7,8 +7,8 @@ DOMAIN = os.getenv("DOMAIN", "dev.kovagoadi.hu")
 PORT = os.getenv("PORT", "898")
 HTTPS_PORT = os.getenv("HTTPS_PORT", "446")
 
-BASE_URL = f"http://127.0.0.1:{PORT}"
+BASE_URL = f"http://192.168.1.85:{PORT}"
-HTTPS_BASE_URL = f"https://127.0.0.1:{HTTPS_PORT}"
+HTTPS_BASE_URL = f"https://192.168.1.85:{HTTPS_PORT}"
 HOST_HEADER = f"test-whoami.{DOMAIN}"
 
 @pytest.fixture(scope="session", autouse=True)
@@ -122,7 +122,7 @@ def test_whoami_https_reachable():
     # We use curl because requests doesn't support --resolve easily to force SNI with custom IP
     cmd = [
         "curl", "-s", "-k", "--fail",
-        "--resolve", f"{HOST_HEADER}:{HTTPS_PORT}:127.0.0.1",
+        "--resolve", f"{HOST_HEADER}:{HTTPS_PORT}:192.168.1.85",
         f"https://{HOST_HEADER}:{HTTPS_PORT}"
     ]
     try:
@@ -159,7 +159,7 @@ def test_unknown_host_https_passthrough():
     # unknown.com should hit the catch-all SNI router
     cmd = [
         "curl", "-s", "-k", "-i", "--fail",
-        "--resolve", f"tar.kovagoadi.hu:{HTTPS_PORT}:127.0.0.1",
+        "--resolve", f"tar.kovagoadi.hu:{HTTPS_PORT}:192.168.1.85",
         f"https://tar.kovagoadi.hu:{HTTPS_PORT}/login"
     ]
     try:
@@ -193,7 +193,7 @@ def test_staging_https_routing():
     host = "test-whoami.staging.kovagoadi.hu"
     cmd = [
         "curl", "-s", "-k", "-i", "--fail",
-        "--resolve", f"{host}:{HTTPS_PORT}:127.0.0.1",
+        "--resolve", f"{host}:{HTTPS_PORT}:192.168.1.85",
         f"https://{host}:{HTTPS_PORT}"
     ]
     try:
@@ -209,7 +209,7 @@ def test_dev_https_routing():
     host = "test-whoami.dev.kovagoadi.hu"
     cmd = [
         "curl", "-s", "-k", "-i", "--fail",
-        "--resolve", f"{host}:{HTTPS_PORT}:127.0.0.1",
+        "--resolve", f"{host}:{HTTPS_PORT}:192.168.1.85",
         f"https://{host}:{HTTPS_PORT}"
     ]
     try: