the name of this package sounds much bigger than the content. However there are plans to grow it, have it in both container and stand-alone form (currently standalone only), add ldap checker (currently only the ElasticSearch config is validated) and maybe to add this package to tctl utility
- the package is using the users current Kubernetes context to query
istio-systemnamespace - if successful it obtains:
- Elastic Search credentials that are stored in
elastic-credentials - Elastic Search CA certificate that are stored in
elastic-credentials - TSB Tokens
zipkin-token,oap-token,xcp-edge-central-auth-tokenandotel-token - than TSB Control Plane CRD is read -
telemetryStoreandmanagementPlanesections
- Elastic Search credentials that are stored in
- When all info is collected the package analyzes the received data and tries to make an educated call to the ElasticSearch
- if Data from Elastic search is returned then the correct config is displayed for the user to apply
- Encoded credentials might have a carriage return - it can cause unpredictable behavior (eg oap-deployment works but zipkin using the same credentials fails) - the package informs the user on any found carriage returns in the Kubernetes secret.
- CA certificate if presented by Elastic search gets placed in
/tmpdirectory - easy for the user to apply curlcommand with the complete list of parameters is displayed to help with additional testing- Tokens expiration date is validated and user is informed of any expired tokens
- Checks can be done when TSB ControlPlane is pointing to standalone ElasticSearch or via MP FrontEnvoy