Home Verkennen Help
Inloggen
logic855
/
helm-external-secrets
spiegel van https://github.com/external-secrets/external-secrets
1
0
Vork 0
Bestanden Issues 0 Wiki
Bladeren bron

Test: gcp wrong label tested; Fix: kubernetes lint

William Young 4 jaren geleden
bovenliggende
b38b263e19
commit
f33d6a543d
4 gewijzigde bestanden met toevoegingen van 35 en 7 verwijderingen
Zij-aan-zij weergave Toon Diff Stats
  1. 0 4
      go.sum
  2. 1 0
      pkg/provider/gcp/secretmanager/secretsmanager.go
  3. 32 1
      pkg/provider/gcp/secretmanager/secretsmanager_test.go
  4. 2 2
      pkg/provider/kubernetes/kubernetes.go

+ 0 - 4
go.sum
Bestand weergeven 

@@ -1483,7 +1483,6 @@ golang.org/x/crypto v0.0.0-20200302210943-78000ba7a073/go.mod h1:LzIPMQfyMNhhGPh
 
 golang.org/x/crypto v0.0.0-20200414173820-0848c9571904/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
-golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
 
 golang.org/x/crypto v0.0.0-20210322153248-0c34fe9e7dc2/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 
 golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 
 golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 
@@ -1787,7 +1786,6 @@ golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBc
 
 golang.org/x/sys v0.0.0-20220502124256-b6088ccd6cba/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
 
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
-golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
 
@@ -2281,8 +2279,6 @@ sigs.k8s.io/yaml v1.1.0/go.mod h1:UJmg0vDUVViEyp3mgSv9WPwZCDxu4rQW1olrI1uml+o=
 
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
 
 sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
 
 sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
 
-software.sslmate.com/src/go-pkcs12 v0.0.0-20210415151418-c5206de65a78 h1:SqYE5+A2qvRhErbsXFfUEUmpWEKxxRSMgGLkvRAFOV4=
 
-software.sslmate.com/src/go-pkcs12 v0.0.0-20210415151418-c5206de65a78/go.mod h1:B7Wf0Ya4DHF9Yw+qfZuJijQYkWicqDa+79Ytmmq3Kjg=
 
 software.sslmate.com/src/go-pkcs12 v0.2.0 h1:nlFkj7bTysH6VkC4fGphtjXRbezREPgrHuJG20hBGPE=
 
 software.sslmate.com/src/go-pkcs12 v0.2.0/go.mod h1:23rNcYsMabIc1otwLpTkCCPwUq6kQsTyowttG/as0kQ=
 
 sourcegraph.com/sourcegraph/appdash v0.0.0-20190731080439-ebfcffb1b5c0/go.mod h1:hI742Nqp5OhwiqlzhgfbWU4mW4yO10fP+LoT9WOswdU=

+ 1 - 0
pkg/provider/gcp/secretmanager/secretsmanager.go
Bestand weergeven 

@@ -306,6 +306,7 @@ func (sm *ProviderGCP) GetAllSecrets(ctx context.Context, ref esv1beta1.External
 
 	if len(ref.Tags) > 0 {
 
 		return sm.findByTags(ctx, ref)
 
 	}
 
+
 
 	return nil, errors.New(errUnexpectedFindOperator)
 
 }

+ 32 - 1
pkg/provider/gcp/secretmanager/secretsmanager_test.go
Bestand weergeven 

@@ -20,6 +20,7 @@ import (
 
 	"strings"
 
 	"testing"
 
 
+	"github.com/stretchr/testify/assert"
 
 	"google.golang.org/api/googleapi"
 
 	secretmanagerpb "google.golang.org/genproto/googleapis/cloud/secretmanager/v1"
 
 	"k8s.io/utils/pointer"
 
@@ -227,7 +228,7 @@ func TestSecretManagerGetSecret(t *testing.T) {
 
 // 	}
 
 // }
 
 
-func TestSecretManagerSecretNotFound(t *testing.T) {
 
+func TestSecretNotFound(t *testing.T) {
 
 	client := new(fakes.GoogleSecretManagerClient)
 
 	pushRemoteRef := new(fakeprr.PushRemoteRef)
 
 
@@ -253,6 +254,36 @@ func TestSecretManagerSecretNotFound(t *testing.T) {
 
 	}
 
 }
 
 
+func TestSecretWrongLabel(t *testing.T) {
 
+	client := new(fakes.GoogleSecretManagerClient)
 
+	pushRemoteRef := new(fakeprr.PushRemoteRef)
 
+	expectedErr := "secret foo-bar is not managed by external secrets"
 
+	projectID := "default"
 
+
 
+	p := secretmanager.ProviderGCP{
 
+		SecretManagerClient: client,
 
+		ProjectID:           projectID,
 
+	}
 
+
 
+	secret := secretmanagerpb.Secret{
 
+		Name: "projects/default/secrets/foo-bar",
 
+		Replication: &secretmanagerpb.Replication{
 
+			Replication: &secretmanagerpb.Replication_Automatic_{
 
+				Automatic: &secretmanagerpb.Replication_Automatic{},
 
+			},
 
+		},
 
+		Labels: map[string]string{
 
+			"managed-by": "not-external-secrets",
 
+		},
 
+	}
 
+
 
+	pushRemoteRef.GetRemoteKeyReturns("foo-bar")
 
+	client.GetSecretReturns(&secret, nil)
 
+	err := p.SetSecret(context.Background(), nil, pushRemoteRef)
 
+
 
+	assert.Equal(t, err.Error(), expectedErr, "Should be raised")
 
+}
 
+
 
 func TestGetSecretMap(t *testing.T) {
 
 	// good case: default version & deserialization
 
 	setDeserialization := func(smtc *secretManagerTestCase) {

+ 2 - 2
pkg/provider/kubernetes/kubernetes.go
Bestand weergeven 

@@ -74,7 +74,7 @@ func init() {
 
 }
 
 
 // Capabilities return the provider supported capabilities (ReadOnly, WriteOnly, ReadWrite).
 
-func (k *ProviderKubernetes) Capabilities() esv1beta1.SecretStoreCapabilities {
 
+func (p *ProviderKubernetes) Capabilities() esv1beta1.SecretStoreCapabilities {
 
 	return esv1beta1.SecretStoreReadOnly
 
 }
 
 
@@ -153,7 +153,7 @@ func (p *ProviderKubernetes) Close(ctx context.Context) error {
 
 }
 
 
 // Not Implemented SetSecret.
 
-func (k *ProviderKubernetes) SetSecret(ctx context.Context, value []byte, remoteRef esv1beta1.PushRemoteRef) error {
 
+func (p *ProviderKubernetes) SetSecret(ctx context.Context, value []byte, remoteRef esv1beta1.PushRemoteRef) error {
 
 	return fmt.Errorf("not implemented")
 
 }