info "Deploy Webhook server"

local certs_dir

certs_dir="${1:-$(mktemp -d)}"

install_webhook_server "${certs_dir}"

create_webhook_server_port_forward

export_webhook_server_certs "${certs_dir}"

certs_tmp_dir="$1"

[[ -n "${certs_tmp_dir}" ]] || die "Usage: $0 <certs_dir>"

[[ -d "${certs_tmp_dir}" ]] || mkdir "${certs_tmp_dir}"

gitroot="$(git rev-parse --show-toplevel)"

[[ -n "${gitroot}" ]] || die "Could not determine git root"

"${gitroot}/tests/scripts/setup-certs.sh" "${certs_tmp_dir}" webhookserver.stackrox "Webhook Server CA"

pushd "${gitroot}/webhookserver"

mkdir -p chart/certs

cp "${certs_tmp_dir}/tls.crt" "${certs_tmp_dir}/tls.key" chart/certs

helm -n stackrox upgrade --install webhookserver chart/

popd

# Ensure webhookserver state is stable before continuing with port forward.

kubectl rollout status deployment webhookserver --namespace stackrox --timeout=5m --watch=true

local log="${ARTIFACT_DIR:-/tmp}/webhook_server_port_forward.log"

nohup "${BASH_SOURCE[0]}" restart_webhook_server_port_forward "${pod}" 0<&- &> "${log}" &

sleep 1

while true

do

echo "INFO: $(date): Starting webhook server port-forward: svc/webhookserver 8080"

kubectl -n stackrox port-forward svc/webhookserver 8080:8080 -v=6 || {

echo "WARNING: $(date): The webhook server port-forward exited with: $?"

echo "Will restart in 5 seconds..."

sleep 5

}

done

local certs_dir="$1"

ci_export GENERIC_WEBHOOK_SERVER_CA_CONTENTS "$(cat "${certs_dir}/ca.crt")"