Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: e5d6e30d00
Branches Tags
helm-externa...
/
pkg
/
template
/
template_test.go

template_test.go 15 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268 
  1. /*
    2. 

  2. Licensed under the Apache License, Version 2.0 (the "License");
    3. 

  3. you may not use this file except in compliance with the License.
    4. 

  4. You may obtain a copy of the License at
    5. 

  5. 

  6.     http://www.apache.org/licenses/LICENSE-2.0
    7. 

  7. 

  8. Unless required by applicable law or agreed to in writing, software
    9. 

  9. distributed under the License is distributed on an "AS IS" BASIS,
    10. 

  10. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    11. 

  11. See the License for the specific language governing permissions and
    12. 

  12. limitations under the License.
    13. 

  13. */
    14. 

  14. package template
    15. 

  15. 

  16. import (
    17. 

  17. 	"strings"
    18. 

  18. 	"testing"
    19. 

  19. 

  20. 	"github.com/stretchr/testify/assert"
    21. 

  21. 	corev1 "k8s.io/api/core/v1"
    22. 

  22. 

  23. 	esv1alpha1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1alpha1"
    24. 

  24. )
    25. 

  25. 

  26. const (
    27. 

  27. 	pkcs12ContentNoPass   = `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`
    28. 

  28. 	pkcs12ContentWithPass = `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`
    29. 

  29. 	pkcs12Cert            = `-----BEGIN CERTIFICATE-----
    30. 

  30. MIIDHTCCAgWgAwIBAgIRAKC4yxy9QGocND+6avTf7BgwDQYJKoZIhvcNAQELBQAw
    31. 

  31. EjEQMA4GA1UEChMHQWNtZSBDbzAeFw0yMTAzMjAyMDA4MDhaFw0yMTAzMjAyMDM4
    32. 

  32. MDhaMBIxEDAOBgNVBAoTB0FjbWUgQ28wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
    33. 

  33. ggEKAoIBAQC3o6/JdZEqNbqNRkopHhJtJG5c4qS5d0tQ/kZYpfD/v/izAYum4Nzj
    34. 

  34. aG15owr92/11W0pxPUliRLti3y6iScTs+ofm2D7p4UXj/Fnho/2xoWSOoWAodgvW
    35. 

  35. Y8jh8A0LQALZiV/9QsrJdXZdS47DYZLsQ3z9yFC/CdXkg1l7AQ3fIVGKdrQBr9kE
    36. 

  36. 1gEDqnKfRxXI8DEQKXr+CKPUwCAytegmy0SHp53zNAvY+kopHytzmJpXLoEhxq4e
    37. 

  37. ugHe52vXHdh/HJ9VjNp0xOH1waAgAGxHlltCW0PVd5AJ0SXROBS/a3V9sZCbCrJa
    38. 

  38. YOOonQSEswveSv6PcG9AHvpNPot2Xs6hAgMBAAGjbjBsMA4GA1UdDwEB/wQEAwIC
    39. 

  39. pDATBgNVHSUEDDAKBggrBgEFBQcDATAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQW
    40. 

  40. BBR00805mrpoonp95RmC3B6oLl+cGTAVBgNVHREEDjAMggpnb29ibGUuY29tMA0G
    41. 

  41. CSqGSIb3DQEBCwUAA4IBAQAipc1b6JrEDayPjpz5GM5krcI8dCWVd8re0a9bGjjN
    42. 

  42. ioWGlu/eTr5El0ffwCNZ2WLmL9rewfHf/bMvYz3ioFZJ2OTxfazqYXNggQz6cMfa
    43. 

  43. lbedDCdt5XLVX2TyerGvFram+9Uyvk3l0uM7rZnwAmdirG4Tv94QRaD3q4xTj/c0
    44. 

  44. mv+AggtK0aRFb9o47z/BypLdk5mhbf3Mmr88C8XBzEnfdYyf4JpTlZrYLBmDCu5d
    45. 

  45. 9RLLsjXxhag8xqMtd1uLUM8XOTGzVWacw8iGY+CTtBKqyA+AE6/bDwZvEwVtsKtC
    46. 

  46. QJ85ioEpy00NioqcF0WyMZH80uMsPycfpnl5uF7RkW8u
    47. 

  47. -----END CERTIFICATE-----
    48. 

  48. `
    49. 

  49. 	pkcs12Key = `-----BEGIN PRIVATE KEY-----
    50. 

  50. MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQC3o6/JdZEqNbqN
    51. 

  51. RkopHhJtJG5c4qS5d0tQ/kZYpfD/v/izAYum4NzjaG15owr92/11W0pxPUliRLti
    52. 

  52. 3y6iScTs+ofm2D7p4UXj/Fnho/2xoWSOoWAodgvWY8jh8A0LQALZiV/9QsrJdXZd
    53. 

  53. S47DYZLsQ3z9yFC/CdXkg1l7AQ3fIVGKdrQBr9kE1gEDqnKfRxXI8DEQKXr+CKPU
    54. 

  54. wCAytegmy0SHp53zNAvY+kopHytzmJpXLoEhxq4eugHe52vXHdh/HJ9VjNp0xOH1
    55. 

  55. waAgAGxHlltCW0PVd5AJ0SXROBS/a3V9sZCbCrJaYOOonQSEswveSv6PcG9AHvpN
    56. 

  56. Pot2Xs6hAgMBAAECggEACTGPrmVNZDCWa1Y2hkJ0J7SoNcw+9O4M/jwMp4l/PD6P
    57. 

  57. I98S78LYLCZhPLK17SmjUcnFO1AXKW1JeFS2D/fjfP256guvcqQNjLFoioxcOhVb
    58. 

  58. ZGyd1Mi8JPqP5wfOj16gBeYDwTkjz9wqldcfiZaL9XoXetkZecbzR2JwC2FtIVuC
    59. 

  59. 0njTjMNYpaBKnoLb8OTR0EQz7lYEo2MkQiWryz8wseONnFmdfh18p+p10YgCbuCH
    60. 

  60. qesrWfDLLxaxZelNtDhDngg9LoCLmarYy7BgShacmUEgJTZ/x3xFC75thK3ln0OY
    61. 

  61. +ktTgvVotYYaZi7qAjQiEsTvkTAPg5RMpQLd2UIWsQKBgQDCBp+1vURbwGzmTNUg
    62. 

  62. HMipD6WDFdLc9DCacx6+ZqsEPTMWQbCpVZrDKiY0Rjt5F+xOCyMr00J5RDJXRC0G
    63. 

  63. +L7NcJdywOFutT7vB+cmETg7l/6PHweNYBnE66706eTL/KVYZMi4tEinarPWhHmL
    64. 

  64. jasfdLANtpDjdWkRt299TkPRbQKBgQDyS8Rr7KZdv04Csqkf+ASmiJpT5R6Y72kc
    65. 

  65. 3XYpKETyB2FyPZkuh/zInMut9SkkSI9O/jA3zf956jj6sF1DHvp7T8KkIp5OAQeD
    66. 

  66. J9AF65m2MnZfHFUeJ6ZQsggwMWqrD0ycIWP7YWtiBHH+D1wGkjYrssq+bvG/yNpA
    67. 

  67. LtqdKq9lhQKBgQCZA2hIhy61vRckuEsLvCdzTGeW7UsR/XGnHEqOlaEhArKbRsrv
    68. 

  68. gBdA+qiOaSTV5svw8E+YbE7sG6AnuhhYeyreEYEeeoZOLJmpIG5mUwYp2UBj1nC6
    69. 

  69. SaOI7OVZOGu7g09SWokBQQxbG4cgEfFY4Sym7fs5lVTGTP3Dfwppo6NQMQKBgQCo
    70. 

  70. J5NDP3Lafwk58BpV+H/pv8YzUUDh7M2rXbtCpxLqUdr8OOnVlEUISWFF8m5CIyVq
    71. 

  71. MhjuscWLK9Wtjba7/YTjDaDM3sW05xv6lyfU5ATCoNTr/zLHgcb4HAZ4w+L+otiN
    72. 

  72. RtMnxB2NYf5mzuwUF2cG/secUEzwyAlIH/xStSwTLQKBgQCRvqF+rqxnegoOgwVW
    73. 

  73. qrWPv06wXD8dW2FlPpY5GXqA0l6erSK3YsQQToRmbem9ibPD7bd5P4gNbWfxwK4C
    74. 

  74. Wt+1Rcb8OrDhDJbYz85bXBnPecKp4EN0b9SHO0/dsCqn2w30emc+9T/4m1ZDkpBd
    75. 

  75. BixHvI/EJ8YK3ta5WdJWKC6hnA==
    76. 

  76. -----END PRIVATE KEY-----
    77. 

  77. `
    78. 

  78. )
    79. 

  79. 

  80. func TestExecute(t *testing.T) {
    81. 

  81. 	tbl := []struct {
    82. 

  82. 		name        string
    83. 

  83. 		tpl         *esv1alpha1.ExternalSecretTemplate
    84. 

  84. 		data        map[string][]byte
    85. 

  85. 		expetedData map[string][]byte
    86. 

  86. 		expErr      string
    87. 

  87. 	}{
    88. 

  88. 		{
    89. 

  89. 			name: "test empty",
    90. 

  90. 			tpl:  nil,
    91. 

  91. 			data: nil,
    92. 

  92. 		},
    93. 

  93. 		{
    94. 

  94. 			name: "base64decode func",
    95. 

  95. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    96. 

  96. 				"foo": "{{ .secret | base64decode | toString }}",
    97. 

  97. 			}},
    98. 

  98. 			data: map[string][]byte{
    99. 

  99. 				"secret": []byte("MTIzNA=="),
    100. 

  100. 			},
    101. 

  101. 			expetedData: map[string][]byte{
    102. 

  102. 				"foo": []byte("1234"),
    103. 

  103. 			},
    104. 

  104. 		},
    105. 

  105. 		{
    106. 

  106. 			name: "fromJSON func",
    107. 

  107. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    108. 

  108. 				"foo": "{{ $var := .secret | fromJSON }}{{ $var.foo }}",
    109. 

  109. 			}},
    110. 

  110. 			data: map[string][]byte{
    111. 

  111. 				"secret": []byte(`{"foo": "bar"}`),
    112. 

  112. 			},
    113. 

  113. 			expetedData: map[string][]byte{
    114. 

  114. 				"foo": []byte("bar"),
    115. 

  115. 			},
    116. 

  116. 		},
    117. 

  117. 		{
    118. 

  118. 			name: "from & toJSON func",
    119. 

  119. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    120. 

  120. 				"foo": "{{ $var := .secret | fromJSON }}{{ $var.foo | toJSON }}",
    121. 

  121. 			}},
    122. 

  122. 			data: map[string][]byte{
    123. 

  123. 				"secret": []byte(`{"foo": {"baz":"bang"}}`),
    124. 

  124. 			},
    125. 

  125. 			expetedData: map[string][]byte{
    126. 

  126. 				"foo": []byte(`{"baz":"bang"}`),
    127. 

  127. 			},
    128. 

  128. 		},
    129. 

  129. 		{
    130. 

  130. 			name: "multiline template",
    131. 

  131. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    132. 

  132. 				"cfg": `
    133. 

  133. 		datasources:
    134. 

  134. 		- name: Graphite
    135. 

  135. 			type: graphite
    136. 

  136. 			access: proxy
    137. 

  137. 			url: http://localhost:8080
    138. 

  138. 			password: "{{ .password | toString }}"
    139. 

  139. 			user: "{{ .user | toString }}"`,
    140. 

  140. 			}},
    141. 

  141. 			data: map[string][]byte{
    142. 

  142. 				"user":     []byte(`foobert`),
    143. 

  143. 				"password": []byte("harharhar"),
    144. 

  144. 			},
    145. 

  145. 			expetedData: map[string][]byte{
    146. 

  146. 				"cfg": []byte(`
    147. 

  147. 		datasources:
    148. 

  148. 		- name: Graphite
    149. 

  149. 			type: graphite
    150. 

  150. 			access: proxy
    151. 

  151. 			url: http://localhost:8080
    152. 

  152. 			password: "harharhar"
    153. 

  153. 			user: "foobert"`),
    154. 

  154. 			},
    155. 

  155. 		},
    156. 

  156. 		{
    157. 

  157. 			name: "base64 pipeline",
    158. 

  158. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    159. 

  159. 				"foo": `{{ "123412341234" | toBytes | base64encode | base64decode | toString }}`,
    160. 

  160. 			}},
    161. 

  161. 			data: map[string][]byte{},
    162. 

  162. 			expetedData: map[string][]byte{
    163. 

  163. 				"foo": []byte("123412341234"),
    164. 

  164. 			},
    165. 

  165. 		},
    166. 

  166. 		{
    167. 

  167. 			name: "base64 pkcs12 extract",
    168. 

  168. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    169. 

  169. 				"key":  `{{ .secret | base64decode | pkcs12key | pemPrivateKey }}`,
    170. 

  170. 				"cert": `{{ .secret | base64decode | pkcs12cert | pemCertificate }}`,
    171. 

  171. 			}},
    172. 

  172. 			data: map[string][]byte{
    173. 

  173. 				"secret": []byte(pkcs12ContentNoPass),
    174. 

  174. 			},
    175. 

  175. 			expetedData: map[string][]byte{
    176. 

  176. 				"key":  []byte(pkcs12Key),
    177. 

  177. 				"cert": []byte(pkcs12Cert),
    178. 

  178. 			},
    179. 

  179. 		},
    180. 

  180. 		{
    181. 

  181. 			name: "base64 pkcs12 extract with password",
    182. 

  182. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    183. 

  183. 				"key":  `{{ .secret | base64decode | pkcs12keyPass "123456" | pemPrivateKey }}`,
    184. 

  184. 				"cert": `{{ .secret | base64decode | pkcs12certPass "123456" | pemCertificate }}`,
    185. 

  185. 			}},
    186. 

  186. 			data: map[string][]byte{
    187. 

  187. 				"secret": []byte(pkcs12ContentWithPass),
    188. 

  188. 			},
    189. 

  189. 			expetedData: map[string][]byte{
    190. 

  190. 				"key":  []byte(pkcs12Key),
    191. 

  191. 				"cert": []byte(pkcs12Cert),
    192. 

  192. 			},
    193. 

  193. 		},
    194. 

  194. 		{
    195. 

  195. 			name: "base64 decode error",
    196. 

  196. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    197. 

  197. 				"key": `{{ .example | base64decode }}`,
    198. 

  198. 			}},
    199. 

  199. 			data: map[string][]byte{
    200. 

  200. 				"example": []byte("iam_no_base64"),
    201. 

  201. 			},
    202. 

  202. 			expErr: "unable to decode base64",
    203. 

  203. 		},
    204. 

  204. 		{
    205. 

  205. 			name: "pkcs12 key wrong password",
    206. 

  206. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    207. 

  207. 				"key": `{{ .secret | base64decode | pkcs12keyPass "wrong" | pemPrivateKey }}`,
    208. 

  208. 			}},
    209. 

  209. 			data: map[string][]byte{
    210. 

  210. 				"secret": []byte(pkcs12ContentWithPass),
    211. 

  211. 			},
    212. 

  212. 			expErr: "unable to decode pkcs12",
    213. 

  213. 		},
    214. 

  214. 		{
    215. 

  215. 			name: "pkcs12 cert wrong password",
    216. 

  216. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    217. 

  217. 				"cert": `{{ .secret | base64decode | pkcs12certPass "wrong" | pemCertificate }}`,
    218. 

  218. 			}},
    219. 

  219. 			data: map[string][]byte{
    220. 

  220. 				"secret": []byte(pkcs12ContentWithPass),
    221. 

  221. 			},
    222. 

  222. 			expErr: "unable to decode pkcs12",
    223. 

  223. 		},
    224. 

  224. 		{
    225. 

  225. 			name: "fromJSON error",
    226. 

  226. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    227. 

  227. 				"key": `{{ "{ # no json # }" | toBytes | fromJSON }}`,
    228. 

  228. 			}},
    229. 

  229. 			data:   map[string][]byte{},
    230. 

  230. 			expErr: "unable to unmarshal json",
    231. 

  231. 		},
    232. 

  232. 		{
    233. 

  233. 			name: "template syntax error",
    234. 

  234. 			tpl: &esv1alpha1.ExternalSecretTemplate{Data: map[string]string{
    235. 

  235. 				"key": `{{ #xx }}`,
    236. 

  236. 			}},
    237. 

  237. 			data:   map[string][]byte{},
    238. 

  238. 			expErr: "unable to parse template",
    239. 

  239. 		},
    240. 

  240. 	}
    241. 

  241. 

  242. 	for i := range tbl {
    243. 

  243. 		row := tbl[i]
    244. 

  244. 		t.Run(row.name, func(t *testing.T) {
    245. 

  245. 			sec := &corev1.Secret{
    246. 

  246. 				Data: make(map[string][]byte),
    247. 

  247. 			}
    248. 

  248. 			err := Execute(row.tpl, sec, row.data)
    249. 

  249. 			if !ErrorContains(err, row.expErr) {
    250. 

  250. 				t.Errorf("unexpected error: %s, expected: %s", err, row.expErr)
    251. 

  251. 			}
    252. 

  252. 			if row.expetedData == nil {
    253. 

  253. 				return
    254. 

  254. 			}
    255. 

  255. 			assert.EqualValues(t, row.expetedData, sec.Data)
    256. 

  256. 		})
    257. 

  257. 	}
    258. 

  258. }
    259. 

  259. 

  260. func ErrorContains(out error, want string) bool {
    261. 

  261. 	if out == nil {
    262. 

  262. 		return want == ""
    263. 

  263. 	}
    264. 

  264. 	if want == "" {
    265. 

  265. 		return false
    266. 

  266. 	}
    267. 

  267. 	return strings.Contains(out.Error(), want)
    268. 

  268. }
    269.