From 809c612510e47198ee9b8dcf649fdcf7842d1223 Mon Sep 17 00:00:00 2001
From: Iryna Shustava <iryna@hashicorp.com>
Date: Tue, 23 Nov 2021 15:26:08 -0700
Subject: [PATCH] Add comment

---
 acceptance/framework/vault/vault_cluster.go | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/acceptance/framework/vault/vault_cluster.go b/acceptance/framework/vault/vault_cluster.go
index 96ae5c2794..4ebb32e3ad 100644
--- a/acceptance/framework/vault/vault_cluster.go
+++ b/acceptance/framework/vault/vault_cluster.go
@@ -144,6 +144,9 @@ func (v *VaultCluster) bootstrap(t *testing.T, ctx environment.TestContext) {
 	}
 
 	v.logger.Logf(t, "updating vault kube auth config")
+
+	// To configure the auth method, we need to read the token and the ca cert from the Vault's server
+	// service account token.
 	namespace := v.helmOptions.KubectlOptions.Namespace
 	sa, err := v.kubernetesClient.CoreV1().ServiceAccounts(namespace).Get(context.Background(), fmt.Sprintf("%s-vault", v.releaseName), metav1.GetOptions{})
 	require.NoError(t, err)
@@ -302,12 +305,13 @@ func (v *VaultCluster) initAndUnseal(t *testing.T) {
 	namespace := v.helmOptions.KubectlOptions.Namespace
 	retrier := &retry.Timer{Timeout: 2 * time.Minute, Wait: 1 * time.Second}
 	retry.RunWith(retrier, t, func(r *retry.R) {
-		// First wait for vault server pod to be running.
+		// Wait for vault server pod to be running so that we can create Vault client without errors.
 		serverPod, err := v.kubernetesClient.CoreV1().Pods(namespace).Get(context.Background(), fmt.Sprintf("%s-vault-0", v.releaseName), metav1.GetOptions{})
 		require.NoError(r, err)
 		require.Equal(r, serverPod.Status.Phase, corev1.PodRunning)
 
 		v.vaultClient = v.SetupVaultClient(t)
+
 		initResp, err := v.vaultClient.Sys().Init(&vapi.InitRequest{
 			SecretShares:    1,
 			SecretThreshold: 1,