Add options to control ACME propagation checks

pkg/config/static/static_config_test.go

@@ -4,6 +4,7 @@ import (
 	"testing"
 
 	"github.com/stretchr/testify/assert"
+	"github.com/traefik/traefik/v3/pkg/provider/acme"
 )
 
 func TestHasEntrypoint(t *testing.T) {
@@ -37,3 +38,233 @@ func TestHasEntrypoint(t *testing.T) {
 		})
 	}
 }
+
+func TestConfiguration_SetEffectiveConfiguration(t *testing.T) {
+	testCases := []struct {
+		desc     string
+		conf     *Configuration
+		expected *Configuration
+	}{
+		{
+			desc: "empty",
+			conf: &Configuration{
+				Providers: &Providers{},
+			},
+			expected: &Configuration{
+				EntryPoints: EntryPoints{"http": &EntryPoint{
+					Address:         ":80",
+					AllowACMEByPass: false,
+					ReusePort:       false,
+					AsDefault:       false,
+					Transport: &EntryPointsTransport{
+						LifeCycle: &LifeCycle{
+							GraceTimeOut: 10000000000,
+						},
+						RespondingTimeouts: &RespondingTimeouts{
+							ReadTimeout: 60000000000,
+							IdleTimeout: 180000000000,
+						},
+					},
+					ProxyProtocol:    nil,
+					ForwardedHeaders: &ForwardedHeaders{},
+					HTTP: HTTPConfig{
+						MaxHeaderBytes: 1048576,
+					},
+					HTTP2: &HTTP2Config{
+						MaxConcurrentStreams: 250,
+					},
+					HTTP3: nil,
+					UDP: &UDPConfig{
+						Timeout: 3000000000,
+					},
+				}},
+				Providers: &Providers{},
+			},
+		},
+		{
+			desc: "ACME simple",
+			conf: &Configuration{
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							DNSChallenge: &acme.DNSChallenge{
+								Provider: "bar",
+							},
+						},
+					},
+				},
+			},
+			expected: &Configuration{
+				EntryPoints: EntryPoints{"http": &EntryPoint{
+					Address:         ":80",
+					AllowACMEByPass: false,
+					ReusePort:       false,
+					AsDefault:       false,
+					Transport: &EntryPointsTransport{
+						LifeCycle: &LifeCycle{
+							GraceTimeOut: 10000000000,
+						},
+						RespondingTimeouts: &RespondingTimeouts{
+							ReadTimeout: 60000000000,
+							IdleTimeout: 180000000000,
+						},
+					},
+					ProxyProtocol:    nil,
+					ForwardedHeaders: &ForwardedHeaders{},
+					HTTP: HTTPConfig{
+						MaxHeaderBytes: 1048576,
+					},
+					HTTP2: &HTTP2Config{
+						MaxConcurrentStreams: 250,
+					},
+					HTTP3: nil,
+					UDP: &UDPConfig{
+						Timeout: 3000000000,
+					},
+				}},
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							CAServer: "https://acme-v02.api.letsencrypt.org/directory",
+							DNSChallenge: &acme.DNSChallenge{
+								Provider: "bar",
+							},
+						},
+					},
+				},
+			},
+		},
+		{
+			desc: "ACME deprecation DelayBeforeCheck",
+			conf: &Configuration{
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							DNSChallenge: &acme.DNSChallenge{
+								Provider:         "bar",
+								DelayBeforeCheck: 123,
+							},
+						},
+					},
+				},
+			},
+			expected: &Configuration{
+				EntryPoints: EntryPoints{"http": &EntryPoint{
+					Address:         ":80",
+					AllowACMEByPass: false,
+					ReusePort:       false,
+					AsDefault:       false,
+					Transport: &EntryPointsTransport{
+						LifeCycle: &LifeCycle{
+							GraceTimeOut: 10000000000,
+						},
+						RespondingTimeouts: &RespondingTimeouts{
+							ReadTimeout: 60000000000,
+							IdleTimeout: 180000000000,
+						},
+					},
+					ProxyProtocol:    nil,
+					ForwardedHeaders: &ForwardedHeaders{},
+					HTTP: HTTPConfig{
+						MaxHeaderBytes: 1048576,
+					},
+					HTTP2: &HTTP2Config{
+						MaxConcurrentStreams: 250,
+					},
+					HTTP3: nil,
+					UDP: &UDPConfig{
+						Timeout: 3000000000,
+					},
+				}},
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							CAServer: "https://acme-v02.api.letsencrypt.org/directory",
+							DNSChallenge: &acme.DNSChallenge{
+								Provider:         "bar",
+								DelayBeforeCheck: 123,
+								Propagation: &acme.Propagation{
+									DelayBeforeChecks: 123,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+		{
+			desc: "ACME deprecation DisablePropagationCheck",
+			conf: &Configuration{
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							DNSChallenge: &acme.DNSChallenge{
+								Provider:                "bar",
+								DisablePropagationCheck: true,
+							},
+						},
+					},
+				},
+			},
+			expected: &Configuration{
+				EntryPoints: EntryPoints{"http": &EntryPoint{
+					Address:         ":80",
+					AllowACMEByPass: false,
+					ReusePort:       false,
+					AsDefault:       false,
+					Transport: &EntryPointsTransport{
+						LifeCycle: &LifeCycle{
+							GraceTimeOut: 10000000000,
+						},
+						RespondingTimeouts: &RespondingTimeouts{
+							ReadTimeout: 60000000000,
+							IdleTimeout: 180000000000,
+						},
+					},
+					ProxyProtocol:    nil,
+					ForwardedHeaders: &ForwardedHeaders{},
+					HTTP: HTTPConfig{
+						MaxHeaderBytes: 1048576,
+					},
+					HTTP2: &HTTP2Config{
+						MaxConcurrentStreams: 250,
+					},
+					HTTP3: nil,
+					UDP: &UDPConfig{
+						Timeout: 3000000000,
+					},
+				}},
+				Providers: &Providers{},
+				CertificatesResolvers: map[string]CertificateResolver{
+					"foo": {
+						ACME: &acme.Configuration{
+							CAServer: "https://acme-v02.api.letsencrypt.org/directory",
+							DNSChallenge: &acme.DNSChallenge{
+								Provider:                "bar",
+								DisablePropagationCheck: true,
+								Propagation: &acme.Propagation{
+									DisableChecks: true,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	for _, test := range testCases {
+		t.Run(test.desc, func(t *testing.T) {
+			t.Parallel()
+
+			test.conf.SetEffectiveConfiguration()
+
+			assert.Equal(t, test.expected, test.conf)
+		})
+	}
+}