Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: f5a4107b3f
Branches Tags
helm-externa...
/
pkg
/
provider
/
fake
/
fake_test.go

fake_test.go 7.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318 
  1. /*
    2. 

  2. Licensed under the Apache License, Version 2.0 (the "License");
    3. 

  3. you may not use this file except in compliance with the License.
    4. 

  4. You may obtain a copy of the License at
    5. 

  5. 

  6. 	http://www.apache.org/licenses/LICENSE-2.0
    7. 

  7. 

  8. Unless required by applicable law or agreed to in writing, software
    9. 

  9. distributed under the License is distributed on an "AS IS" BASIS,
    10. 

  10. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    11. 

  11. See the License for the specific language governing permissions and
    12. 

  12. limitations under the License.
    13. 

  13. */
    14. 

  14. package fake
    15. 

  15. 

  16. import (
    17. 

  17. 	"context"
    18. 

  18. 	"errors"
    19. 

  19. 	"fmt"
    20. 

  20. 	"testing"
    21. 

  21. 

  22. 	"github.com/onsi/gomega"
    23. 

  23. 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
    24. 

  24. 

  25. 	esv1alpha1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1alpha1"
    26. 

  26. 	esv1beta1 "github.com/external-secrets/external-secrets/apis/externalsecrets/v1beta1"
    27. 

  27. )
    28. 

  28. 

  29. func TestNewClient(t *testing.T) {
    30. 

  30. 	p := &Provider{}
    31. 

  31. 	gomega.RegisterTestingT(t)
    32. 

  32. 

  33. 	// nil store
    34. 

  34. 	_, err := p.NewClient(context.Background(), nil, nil, "")
    35. 

  35. 	gomega.Expect(err).To(gomega.HaveOccurred())
    36. 

  36. 

  37. 	// missing provider
    38. 

  38. 	_, err = p.NewClient(context.Background(), &esv1beta1.SecretStore{}, nil, "")
    39. 

  39. 	gomega.Expect(err).To(gomega.HaveOccurred())
    40. 

  40. }
    41. 

  41. 

  42. func TestValidateStore(t *testing.T) {
    43. 

  43. 	p := &Provider{}
    44. 

  44. 	gomega.RegisterTestingT(t)
    45. 

  45. 	store := &esv1beta1.SecretStore{
    46. 

  46. 		Spec: esv1beta1.SecretStoreSpec{
    47. 

  47. 			Provider: &esv1beta1.SecretStoreProvider{
    48. 

  48. 				Fake: &esv1beta1.FakeProvider{
    49. 

  49. 					Data: []esv1beta1.FakeProviderData{},
    50. 

  50. 				},
    51. 

  51. 			},
    52. 

  52. 		},
    53. 

  53. 	}
    54. 

  54. 	// empty data must not error
    55. 

  55. 	err := p.ValidateStore(store)
    56. 

  56. 	gomega.Expect(err).To(gomega.BeNil())
    57. 

  57. 	// missing key in data
    58. 

  58. 	data := esv1beta1.FakeProviderData{}
    59. 

  59. 	data.Version = "v1"
    60. 

  60. 	store.Spec.Provider.Fake.Data = []esv1beta1.FakeProviderData{data}
    61. 

  61. 	err = p.ValidateStore(store)
    62. 

  62. 	gomega.Expect(err).To(gomega.BeEquivalentTo(fmt.Errorf(errMissingKeyField, 0)))
    63. 

  63. 	// missing values in data
    64. 

  64. 	data.Key = "/foo"
    65. 

  65. 	store.Spec.Provider.Fake.Data = []esv1beta1.FakeProviderData{data}
    66. 

  66. 	err = p.ValidateStore(store)
    67. 

  67. 	gomega.Expect(err).To(gomega.BeEquivalentTo(fmt.Errorf(errMissingValueField, 0)))
    68. 

  68. 	// spec ok
    69. 

  69. 	data.Value = "bar"
    70. 

  70. 	data.ValueMap = map[string]string{"foo": "bar"}
    71. 

  71. 	store.Spec.Provider.Fake.Data = []esv1beta1.FakeProviderData{data}
    72. 

  72. 	err = p.ValidateStore(store)
    73. 

  73. 	gomega.Expect(err).To(gomega.BeNil())
    74. 

  74. }
    75. 

  75. func TestClose(t *testing.T) {
    76. 

  76. 	p := &Provider{}
    77. 

  77. 	gomega.RegisterTestingT(t)
    78. 

  78. 	err := p.Close(context.TODO())
    79. 

  79. 	gomega.Expect(err).ToNot(gomega.HaveOccurred())
    80. 

  80. }
    81. 

  81. 

  82. type testCase struct {
    83. 

  83. 	name     string
    84. 

  84. 	input    []esv1beta1.FakeProviderData
    85. 

  85. 	request  esv1beta1.ExternalSecretDataRemoteRef
    86. 

  86. 	expValue string
    87. 

  87. 	expErr   string
    88. 

  88. }
    89. 

  89. 

  90. func TestGetSecret(t *testing.T) {
    91. 

  91. 	gomega.RegisterTestingT(t)
    92. 

  92. 	p := &Provider{}
    93. 

  93. 	tbl := []testCase{
    94. 

  94. 		{
    95. 

  95. 			name:  "return err when not found",
    96. 

  96. 			input: []esv1beta1.FakeProviderData{},
    97. 

  97. 			request: esv1beta1.ExternalSecretDataRemoteRef{
    98. 

  98. 				Key:     "/foo",
    99. 

  99. 				Version: "v2",
    100. 

  100. 			},
    101. 

  101. 			expErr: esv1beta1.NoSecretErr.Error(),
    102. 

  102. 		},
    103. 

  103. 		{
    104. 

  104. 			name: "get correct value from multiple versions",
    105. 

  105. 			input: []esv1beta1.FakeProviderData{
    106. 

  106. 				{
    107. 

  107. 					Key:     "/foo",
    108. 

  108. 					Value:   "bar2",
    109. 

  109. 					Version: "v2",
    110. 

  110. 				},
    111. 

  111. 				{
    112. 

  112. 					Key:   "junk",
    113. 

  113. 					Value: "xxxxx",
    114. 

  114. 				},
    115. 

  115. 				{
    116. 

  116. 					Key:     "/foo",
    117. 

  117. 					Value:   "bar1",
    118. 

  118. 					Version: "v1",
    119. 

  119. 				},
    120. 

  120. 			},
    121. 

  121. 			request: esv1beta1.ExternalSecretDataRemoteRef{
    122. 

  122. 				Key:     "/foo",
    123. 

  123. 				Version: "v2",
    124. 

  124. 			},
    125. 

  125. 			expValue: "bar2",
    126. 

  126. 		},
    127. 

  127. 		{
    128. 

  128. 			name: "get correct value from multiple properties",
    129. 

  129. 			input: []esv1beta1.FakeProviderData{
    130. 

  130. 				{
    131. 

  131. 					Key:   "junk",
    132. 

  132. 					Value: "xxxxx",
    133. 

  133. 				},
    134. 

  134. 				{
    135. 

  135. 					Key:   "/foo",
    136. 

  136. 					Value: `{"p1":"bar","p2":"bar2"}`,
    137. 

  137. 				},
    138. 

  138. 			},
    139. 

  139. 			request: esv1beta1.ExternalSecretDataRemoteRef{
    140. 

  140. 				Key:      "/foo",
    141. 

  141. 				Property: "p2",
    142. 

  142. 			},
    143. 

  143. 			expValue: "bar2",
    144. 

  144. 		},
    145. 

  145. 	}
    146. 

  146. 

  147. 	for i, row := range tbl {
    148. 

  148. 		t.Run(row.name, func(t *testing.T) {
    149. 

  149. 			cl, err := p.NewClient(context.Background(), &esv1beta1.SecretStore{
    150. 

  150. 				ObjectMeta: metav1.ObjectMeta{
    151. 

  151. 					Name: fmt.Sprintf("secret-store-%v", i),
    152. 

  152. 				},
    153. 

  153. 				Spec: esv1beta1.SecretStoreSpec{
    154. 

  154. 					Provider: &esv1beta1.SecretStoreProvider{
    155. 

  155. 						Fake: &esv1beta1.FakeProvider{
    156. 

  156. 							Data: row.input,
    157. 

  157. 						},
    158. 

  158. 					},
    159. 

  159. 				},
    160. 

  160. 			}, nil, "")
    161. 

  161. 			gomega.Expect(err).ToNot(gomega.HaveOccurred())
    162. 

  162. 			out, err := cl.GetSecret(context.Background(), row.request)
    163. 

  163. 			if row.expErr != "" {
    164. 

  164. 				gomega.Expect(err).To(gomega.MatchError(row.expErr))
    165. 

  165. 			} else {
    166. 

  166. 				gomega.Expect(err).ToNot(gomega.HaveOccurred())
    167. 

  167. 			}
    168. 

  168. 			gomega.Expect(string(out)).To(gomega.Equal(row.expValue))
    169. 

  169. 		})
    170. 

  170. 	}
    171. 

  171. }
    172. 

  172. 

  173. type setSecretTestCase struct {
    174. 

  174. 	name       string
    175. 

  175. 	input      []esv1beta1.FakeProviderData
    176. 

  176. 	requestKey string
    177. 

  177. 	expValue   string
    178. 

  178. 	expErr     string
    179. 

  179. }
    180. 

  180. 

  181. func TestSetSecret(t *testing.T) {
    182. 

  182. 	gomega.RegisterTestingT(t)
    183. 

  183. 	p := &Provider{}
    184. 

  184. 	tbl := []setSecretTestCase{
    185. 

  185. 		{
    186. 

  186. 			name:       "return nil if no existing secret",
    187. 

  187. 			input:      []esv1beta1.FakeProviderData{},
    188. 

  188. 			requestKey: "/foo",
    189. 

  189. 			expValue:   "my-secret-value",
    190. 

  190. 		},
    191. 

  191. 		{
    192. 

  192. 			name: "return err if existing secret",
    193. 

  193. 			input: []esv1beta1.FakeProviderData{
    194. 

  194. 				{
    195. 

  195. 					Key:   "/foo",
    196. 

  196. 					Value: "bar2",
    197. 

  197. 				},
    198. 

  198. 			},
    199. 

  199. 			requestKey: "/foo",
    200. 

  200. 			expErr:     errors.New("key already exists").Error(),
    201. 

  201. 		},
    202. 

  202. 	}
    203. 

  203. 

  204. 	for i, row := range tbl {
    205. 

  205. 		t.Run(row.name, func(t *testing.T) {
    206. 

  206. 			cl, err := p.NewClient(context.Background(), &esv1beta1.SecretStore{
    207. 

  207. 				ObjectMeta: metav1.ObjectMeta{
    208. 

  208. 					Name: fmt.Sprintf("secret-store-%v", i),
    209. 

  209. 				},
    210. 

  210. 				Spec: esv1beta1.SecretStoreSpec{
    211. 

  211. 					Provider: &esv1beta1.SecretStoreProvider{
    212. 

  212. 						Fake: &esv1beta1.FakeProvider{
    213. 

  213. 							Data: row.input,
    214. 

  214. 						},
    215. 

  215. 					},
    216. 

  216. 				},
    217. 

  217. 			}, nil, "")
    218. 

  218. 			gomega.Expect(err).ToNot(gomega.HaveOccurred())
    219. 

  219. 			err = cl.PushSecret(context.TODO(), []byte(row.expValue), nil, esv1alpha1.PushSecretRemoteRef{
    220. 

  220. 				RemoteKey: row.requestKey,
    221. 

  221. 			})
    222. 

  222. 			if row.expErr != "" {
    223. 

  223. 				gomega.Expect(err).To(gomega.MatchError(row.expErr))
    224. 

  224. 			} else {
    225. 

  225. 				gomega.Expect(err).ToNot(gomega.HaveOccurred())
    226. 

  226. 				out, err := cl.GetSecret(context.Background(), esv1beta1.ExternalSecretDataRemoteRef{
    227. 

  227. 					Key: row.requestKey,
    228. 

  228. 				})
    229. 

  229. 				gomega.Expect(err).ToNot(gomega.HaveOccurred())
    230. 

  230. 				gomega.Expect(string(out)).To(gomega.Equal(row.expValue))
    231. 

  231. 			}
    232. 

  232. 		})
    233. 

  233. 	}
    234. 

  234. }
    235. 

  235. 

  236. type testMapCase struct {
    237. 

  237. 	name     string
    238. 

  238. 	input    []esv1beta1.FakeProviderData
    239. 

  239. 	request  esv1beta1.ExternalSecretDataRemoteRef
    240. 

  240. 	expValue map[string][]byte
    241. 

  241. 	expErr   string
    242. 

  242. }
    243. 

  243. 

  244. func TestGetSecretMap(t *testing.T) {
    245. 

  245. 	gomega.RegisterTestingT(t)
    246. 

  246. 	p := &Provider{}
    247. 

  247. 	tbl := []testMapCase{
    248. 

  248. 		{
    249. 

  249. 			name:  "return err when not found",
    250. 

  250. 			input: []esv1beta1.FakeProviderData{},
    251. 

  251. 			request: esv1beta1.ExternalSecretDataRemoteRef{
    252. 

  252. 				Key:     "/foo",
    253. 

  253. 				Version: "v2",
    254. 

  254. 			},
    255. 

  255. 			expErr: esv1beta1.NoSecretErr.Error(),
    256. 

  256. 		},
    257. 

  257. 		{
    258. 

  258. 			name: "get correct value from multiple versions",
    259. 

  259. 			input: []esv1beta1.FakeProviderData{
    260. 

  260. 				{
    261. 

  261. 					Key: "junk",
    262. 

  262. 					ValueMap: map[string]string{
    263. 

  263. 						"junk": "ok",
    264. 

  264. 					},
    265. 

  265. 				},
    266. 

  266. 				{
    267. 

  267. 					Key: "/foo",
    268. 

  268. 					ValueMap: map[string]string{
    269. 

  269. 						"foo": "bar",
    270. 

  270. 						"baz": "bang",
    271. 

  271. 					},
    272. 

  272. 					Version: "v1",
    273. 

  273. 				},
    274. 

  274. 				{
    275. 

  275. 					Key: "/foo",
    276. 

  276. 					ValueMap: map[string]string{
    277. 

  277. 						"foo": "bar",
    278. 

  278. 						"baz": "bang",
    279. 

  279. 					},
    280. 

  280. 					Version: "v2",
    281. 

  281. 				},
    282. 

  282. 			},
    283. 

  283. 			request: esv1beta1.ExternalSecretDataRemoteRef{
    284. 

  284. 				Key:     "/foo",
    285. 

  285. 				Version: "v2",
    286. 

  286. 			},
    287. 

  287. 			expValue: map[string][]byte{
    288. 

  288. 				"foo": []byte("bar"),
    289. 

  289. 				"baz": []byte("bang"),
    290. 

  290. 			},
    291. 

  291. 		},
    292. 

  292. 	}
    293. 

  293. 

  294. 	for i, row := range tbl {
    295. 

  295. 		t.Run(row.name, func(t *testing.T) {
    296. 

  296. 			cl, err := p.NewClient(context.Background(), &esv1beta1.SecretStore{
    297. 

  297. 				ObjectMeta: metav1.ObjectMeta{
    298. 

  298. 					Name: fmt.Sprintf("secret-store-%v", i),
    299. 

  299. 				},
    300. 

  300. 				Spec: esv1beta1.SecretStoreSpec{
    301. 

  301. 					Provider: &esv1beta1.SecretStoreProvider{
    302. 

  302. 						Fake: &esv1beta1.FakeProvider{
    303. 

  303. 							Data: row.input,
    304. 

  304. 						},
    305. 

  305. 					},
    306. 

  306. 				},
    307. 

  307. 			}, nil, "")
    308. 

  308. 			gomega.Expect(err).ToNot(gomega.HaveOccurred())
    309. 

  309. 			out, err := cl.GetSecretMap(context.Background(), row.request)
    310. 

  310. 			if row.expErr != "" {
    311. 

  311. 				gomega.Expect(err).To(gomega.MatchError(row.expErr))
    312. 

  312. 			} else {
    313. 

  313. 				gomega.Expect(err).ToNot(gomega.HaveOccurred())
    314. 

  314. 			}
    315. 

  315. 			gomega.Expect(out).To(gomega.Equal(row.expValue))
    316. 

  316. 		})
    317. 

  317. 	}
    318. 

  318. }
    319.