Strona główna Odkrywaj Pomoc
Zaloguj się
logic855
/
helm-external-secrets
kopia lustrzana https://github.com/external-secrets/external-secrets
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Gałąź: mj-aws-v2-parameterstore-e2e
Gałęzie Tagi
helm-external-s...
/
e2e
/
framework
/
addon
/
eso_v2_mutators_test.go

eso_v2_mutators_test.go 11 KB
Bezpośredni odnośnik Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350 
  1. /*
    2. 

  2. Copyright © The ESO Authors
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     https://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package addon
    18. 

  18. 

  19. import (
    20. 

  20. 	"regexp"
    21. 

  21. 	"strconv"
    22. 

  22. 	"testing"
    23. 

  23. )
    24. 

  24. 

  25. func TestWithV2FakeProvider(t *testing.T) {
    26. 

  26. 	t.Setenv("VERSION", "test-version")
    27. 

  27. 

  28. 	eso := NewESO(WithV2FakeProvider())
    29. 

  29. 

  30. 	assertV2ProviderBaseVars(t, eso.HelmChart)
    31. 

  31. 	assertVarValue(t, eso.HelmChart, "providers.enabled", "true")
    32. 

  32. 	assertProvider(
    33. 

  33. 		t,
    34. 

  34. 		eso.HelmChart,
    35. 

  35. 		"fake",
    36. 

  36. 		"fake",
    37. 

  37. 		"ghcr.io/external-secrets/provider-fake",
    38. 

  38. 		"test-version",
    39. 

  39. 	)
    40. 

  40. 	assertSequentialProviderIndexes(t, eso.HelmChart)
    41. 

  41. 

  42. 	providers := providerEntries(t, eso.HelmChart)
    43. 

  43. 	if len(providers) != 1 {
    44. 

  44. 		t.Fatalf("expected exactly one provider entry, got %d", len(providers))
    45. 

  45. 	}
    46. 

  46. 	if providers[0].Name != "fake" {
    47. 

  47. 		t.Fatalf("expected fake to be at index 0 when standalone, got index 0 name %q", providers[0].Name)
    48. 

  48. 	}
    49. 

  49. }
    50. 

  50. 

  51. func TestWithV2AWSProvider(t *testing.T) {
    52. 

  52. 	t.Setenv("VERSION", "test-version")
    53. 

  53. 

  54. 	eso := NewESO(WithV2AWSProvider())
    55. 

  55. 

  56. 	assertV2ProviderBaseVars(t, eso.HelmChart)
    57. 

  57. 	assertVarValue(t, eso.HelmChart, "providers.enabled", "true")
    58. 

  58. 	assertProvider(
    59. 

  59. 		t,
    60. 

  60. 		eso.HelmChart,
    61. 

  61. 		"aws",
    62. 

  62. 		"aws",
    63. 

  63. 		"ghcr.io/external-secrets/provider-aws",
    64. 

  64. 		"test-version",
    65. 

  65. 	)
    66. 

  66. 	assertSequentialProviderIndexes(t, eso.HelmChart)
    67. 

  67. 

  68. 	providers := providerEntries(t, eso.HelmChart)
    69. 

  69. 	if len(providers) != 1 {
    70. 

  70. 		t.Fatalf("expected exactly one provider entry, got %d", len(providers))
    71. 

  71. 	}
    72. 

  72. 	if providers[0].Name != "aws" {
    73. 

  73. 		t.Fatalf("expected aws to be at index 0 when standalone, got index 0 name %q", providers[0].Name)
    74. 

  74. 	}
    75. 

  75. }
    76. 

  76. 

  77. func TestWithV2ProvidersComposeIncludesAWS(t *testing.T) {
    78. 

  78. 	t.Setenv("VERSION", "test-version")
    79. 

  79. 

  80. 	eso := NewESO(
    81. 

  81. 		WithV2Namespace(),
    82. 

  82. 		WithV2KubernetesProvider(),
    83. 

  83. 		WithV2FakeProvider(),
    84. 

  84. 		WithV2AWSProvider(),
    85. 

  85. 	)
    86. 

  86. 

  87. 	if eso.HelmChart.Namespace != v2HelmNamespace {
    88. 

  88. 		t.Fatalf("expected namespace %q, got %q", v2HelmNamespace, eso.HelmChart.Namespace)
    89. 

  89. 	}
    90. 

  90. 	if eso.HelmChart.ReleaseName != v2HelmReleaseName {
    91. 

  91. 		t.Fatalf("expected release name %q, got %q", v2HelmReleaseName, eso.HelmChart.ReleaseName)
    92. 

  92. 	}
    93. 

  93. 	if !containsArg(eso.HelmChart.Args, "--create-namespace") {
    94. 

  94. 		t.Fatalf("expected --create-namespace arg, got %v", eso.HelmChart.Args)
    95. 

  95. 	}
    96. 

  96. 

  97. 	assertV2ProviderBaseVars(t, eso.HelmChart)
    98. 

  98. 	assertVarValue(t, eso.HelmChart, "providers.enabled", "true")
    99. 

  99. 	assertProvider(
    100. 

  100. 		t,
    101. 

  101. 		eso.HelmChart,
    102. 

  102. 		"kubernetes",
    103. 

  103. 		"kubernetes",
    104. 

  104. 		"ghcr.io/external-secrets/provider-kubernetes",
    105. 

  105. 		"test-version",
    106. 

  106. 	)
    107. 

  107. 	assertProvider(
    108. 

  108. 		t,
    109. 

  109. 		eso.HelmChart,
    110. 

  110. 		"fake",
    111. 

  111. 		"fake",
    112. 

  112. 		"ghcr.io/external-secrets/provider-fake",
    113. 

  113. 		"test-version",
    114. 

  114. 	)
    115. 

  115. 	assertProvider(
    116. 

  116. 		t,
    117. 

  117. 		eso.HelmChart,
    118. 

  118. 		"aws",
    119. 

  119. 		"aws",
    120. 

  120. 		"ghcr.io/external-secrets/provider-aws",
    121. 

  121. 		"test-version",
    122. 

  122. 	)
    123. 

  123. 	assertSequentialProviderIndexes(t, eso.HelmChart)
    124. 

  124. 

  125. 	providers := providerEntries(t, eso.HelmChart)
    126. 

  126. 	if providers[0].Name != "kubernetes" {
    127. 

  127. 		t.Fatalf("expected kubernetes to remain first provider entry, got %q at index 0", providers[0].Name)
    128. 

  128. 	}
    129. 

  129. 	if providers[1].Name != "fake" {
    130. 

  130. 		t.Fatalf("expected fake to be second provider entry, got %q at index 1", providers[1].Name)
    131. 

  131. 	}
    132. 

  132. 	if providers[2].Name != "aws" {
    133. 

  133. 		t.Fatalf("expected aws to be third provider entry, got %q at index 2", providers[2].Name)
    134. 

  134. 	}
    135. 

  135. }
    136. 

  136. 

  137. func TestWithV2FakeProviderDoesNotDuplicateOnRepeat(t *testing.T) {
    138. 

  138. 	t.Setenv("VERSION", "test-version")
    139. 

  139. 

  140. 	eso := NewESO(WithV2FakeProvider(), WithV2FakeProvider())
    141. 

  141. 

  142. 	providers := providerEntries(t, eso.HelmChart)
    143. 

  143. 	if len(providers) != 1 {
    144. 

  144. 		t.Fatalf("expected one provider entry after applying fake mutator twice, got %d", len(providers))
    145. 

  145. 	}
    146. 

  146. 	if providers[0].Name != "fake" {
    147. 

  147. 		t.Fatalf("expected fake provider at index 0 after repeat application, got %q", providers[0].Name)
    148. 

  148. 	}
    149. 

  149. 	assertProvider(t, eso.HelmChart, "fake", "fake", "ghcr.io/external-secrets/provider-fake", "test-version")
    150. 

  150. }
    151. 

  151. 

  152. func TestWithV2FakeProviderUpdatesExistingEntryInPlace(t *testing.T) {
    153. 

  153. 	t.Setenv("VERSION", "test-version")
    154. 

  154. 

  155. 	eso := NewESO()
    156. 

  156. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].name", Value: "fake"})
    157. 

  157. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].type", Value: "fake"})
    158. 

  158. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].enabled", Value: "false"})
    159. 

  159. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].replicaCount", Value: "9"})
    160. 

  160. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].image.repository", Value: "example.invalid/old-fake"})
    161. 

  161. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].image.tag", Value: "old-tag"})
    162. 

  162. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.list[3].image.pullPolicy", Value: "Always"})
    163. 

  163. 

  164. 	WithV2FakeProvider()(eso)
    165. 

  165. 

  166. 	providers := providerEntries(t, eso.HelmChart)
    167. 

  167. 	if len(providers) != 1 {
    168. 

  168. 		t.Fatalf("expected one fake provider entry after in-place update, got %d", len(providers))
    169. 

  169. 	}
    170. 

  170. 	if providers[3].Name != "fake" {
    171. 

  171. 		t.Fatalf("expected fake provider to stay at index 3, got %q", providers[3].Name)
    172. 

  172. 	}
    173. 

  173. 	assertProvider(t, eso.HelmChart, "fake", "fake", "ghcr.io/external-secrets/provider-fake", "test-version")
    174. 

  174. }
    175. 

  175. 

  176. func TestWithV2FakeProviderEnforcesRequiredFlags(t *testing.T) {
    177. 

  177. 	t.Setenv("VERSION", "test-version")
    178. 

  178. 

  179. 	eso := NewESO()
    180. 

  180. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "replicaCount", Value: "7"})
    181. 

  181. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "v2.enabled", Value: "false"})
    182. 

  182. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "crds.createProvider", Value: "false"})
    183. 

  183. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "crds.createClusterProvider", Value: "false"})
    184. 

  184. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providers.enabled", Value: "false"})
    185. 

  185. 	setOrAppendVar(eso.HelmChart, StringTuple{Key: "providerDefaults.replicaCount", Value: "8"})
    186. 

  186. 

  187. 	WithV2FakeProvider()(eso)
    188. 

  188. 

  189. 	assertVarValue(t, eso.HelmChart, "replicaCount", "7")
    190. 

  190. 	assertVarValue(t, eso.HelmChart, "v2.enabled", "true")
    191. 

  191. 	assertVarValue(t, eso.HelmChart, "crds.createProvider", "true")
    192. 

  192. 	assertVarValue(t, eso.HelmChart, "crds.createClusterProvider", "true")
    193. 

  193. 	assertVarValue(t, eso.HelmChart, "providers.enabled", "true")
    194. 

  194. 	assertVarValue(t, eso.HelmChart, "providerDefaults.replicaCount", "8")
    195. 

  195. }
    196. 

  196. 

  197. func TestWithV2ProviderServiceAccountOverridesAWSInPlace(t *testing.T) {
    198. 

  198. 	t.Setenv("VERSION", "test-version")
    199. 

  199. 

  200. 	eso := NewESO(WithV2AWSProvider())
    201. 

  201. 	WithV2ProviderServiceAccount("aws", "irsa-sa")(eso)
    202. 

  202. 

  203. 	assertVarValue(t, eso.HelmChart, "providers.list[0].serviceAccount.create", "false")
    204. 

  204. 	assertVarValue(t, eso.HelmChart, "providers.list[0].serviceAccount.name", "irsa-sa")
    205. 

  205. }
    206. 

  206. 

  207. func assertVarValue(t *testing.T, chart *HelmChart, key, wantValue string) {
    208. 

  208. 	t.Helper()
    209. 

  209. 

  210. 	for _, variable := range chart.Vars {
    211. 

  211. 		if variable.Key == key {
    212. 

  212. 			if variable.Value != wantValue {
    213. 

  213. 				t.Fatalf("expected %s=%s, got %s", key, wantValue, variable.Value)
    214. 

  214. 			}
    215. 

  215. 			return
    216. 

  216. 		}
    217. 

  217. 	}
    218. 

  218. 

  219. 	t.Fatalf("expected %s=%s to be set", key, wantValue)
    220. 

  220. }
    221. 

  221. 

  222. func assertV2ProviderBaseVars(t *testing.T, chart *HelmChart) {
    223. 

  223. 	t.Helper()
    224. 

  224. 

  225. 	assertVarValue(t, chart, "replicaCount", "1")
    226. 

  226. 	assertVarValue(t, chart, "v2.enabled", "true")
    227. 

  227. 	assertVarValue(t, chart, "crds.createProvider", "true")
    228. 

  228. 	assertVarValue(t, chart, "crds.createClusterProvider", "true")
    229. 

  229. 	assertVarValue(t, chart, "providerDefaults.replicaCount", "1")
    230. 

  230. }
    231. 

  231. 

  232. func assertProvider(t *testing.T, chart *HelmChart, name, providerType, imageRepository, imageTag string) {
    233. 

  233. 	t.Helper()
    234. 

  234. 

  235. 	for _, provider := range providerEntries(t, chart) {
    236. 

  236. 		if provider.Name != name {
    237. 

  237. 			continue
    238. 

  238. 		}
    239. 

  239. 		if provider.Type != providerType {
    240. 

  240. 			t.Fatalf("expected provider %q to have type %q, got %q", name, providerType, provider.Type)
    241. 

  241. 		}
    242. 

  242. 		if provider.Enabled != "true" {
    243. 

  243. 			t.Fatalf("expected provider %q to be enabled, got %q", name, provider.Enabled)
    244. 

  244. 		}
    245. 

  245. 		if provider.ReplicaCount != "1" {
    246. 

  246. 			t.Fatalf("expected provider %q replicaCount 1, got %q", name, provider.ReplicaCount)
    247. 

  247. 		}
    248. 

  248. 		if provider.ImageRepository != imageRepository {
    249. 

  249. 			t.Fatalf("expected provider %q image repository %q, got %q", name, imageRepository, provider.ImageRepository)
    250. 

  250. 		}
    251. 

  251. 		if provider.ImageTag != imageTag {
    252. 

  252. 			t.Fatalf("expected provider %q image tag %q, got %q", name, imageTag, provider.ImageTag)
    253. 

  253. 		}
    254. 

  254. 		if provider.ImagePullPolicy != "IfNotPresent" {
    255. 

  255. 			t.Fatalf("expected provider %q image pull policy IfNotPresent, got %q", name, provider.ImagePullPolicy)
    256. 

  256. 		}
    257. 

  257. 		return
    258. 

  258. 	}
    259. 

  259. 

  260. 	t.Fatalf("expected provider %q to exist", name)
    261. 

  261. }
    262. 

  262. 

  263. func assertSequentialProviderIndexes(t *testing.T, chart *HelmChart) {
    264. 

  264. 	t.Helper()
    265. 

  265. 

  266. 	providers := providerEntries(t, chart)
    267. 

  267. 	for i := 0; i < len(providers); i++ {
    268. 

  268. 		if _, ok := providers[i]; !ok {
    269. 

  269. 			t.Fatalf("expected provider index %d to exist, got indexes %v", i, sortedProviderIndexes(providers))
    270. 

  270. 		}
    271. 

  271. 	}
    272. 

  272. }
    273. 

  273. 

  274. type providerEntry struct {
    275. 

  275. 	Name            string
    276. 

  276. 	Type            string
    277. 

  277. 	Enabled         string
    278. 

  278. 	ReplicaCount    string
    279. 

  279. 	ImageRepository string
    280. 

  280. 	ImageTag        string
    281. 

  281. 	ImagePullPolicy string
    282. 

  282. }
    283. 

  283. 

  284. var providerVarPattern = regexp.MustCompile(`^providers\.list\[(\d+)\]\.(.+)$`)
    285. 

  285. var allowedProviderFields = map[string]struct{}{
    286. 

  286. 	"name":             {},
    287. 

  287. 	"type":             {},
    288. 

  288. 	"enabled":          {},
    289. 

  289. 	"replicaCount":     {},
    290. 

  290. 	"image.repository": {},
    291. 

  291. 	"image.tag":        {},
    292. 

  292. 	"image.pullPolicy": {},
    293. 

  293. }
    294. 

  294. 

  295. func providerEntries(t *testing.T, chart *HelmChart) map[int]providerEntry {
    296. 

  296. 	t.Helper()
    297. 

  297. 

  298. 	providers := make(map[int]providerEntry)
    299. 

  299. 	for _, variable := range chart.Vars {
    300. 

  300. 		matches := providerVarPattern.FindStringSubmatch(variable.Key)
    301. 

  301. 		if matches == nil {
    302. 

  302. 			continue
    303. 

  303. 		}
    304. 

  304. 		index, err := strconv.Atoi(matches[1])
    305. 

  305. 		if err != nil {
    306. 

  306. 			t.Fatalf("unable to parse provider index from key %q: %v", variable.Key, err)
    307. 

  307. 		}
    308. 

  308. 		field := matches[2]
    309. 

  309. 		if _, ok := allowedProviderFields[field]; !ok {
    310. 

  310. 			t.Fatalf("unexpected provider field %q in key %q", field, variable.Key)
    311. 

  311. 		}
    312. 

  312. 

  313. 		entry := providers[index]
    314. 

  314. 		switch field {
    315. 

  315. 		case "name":
    316. 

  316. 			entry.Name = variable.Value
    317. 

  317. 		case "type":
    318. 

  318. 			entry.Type = variable.Value
    319. 

  319. 		case "enabled":
    320. 

  320. 			entry.Enabled = variable.Value
    321. 

  321. 		case "replicaCount":
    322. 

  322. 			entry.ReplicaCount = variable.Value
    323. 

  323. 		case "image.repository":
    324. 

  324. 			entry.ImageRepository = variable.Value
    325. 

  325. 		case "image.tag":
    326. 

  326. 			entry.ImageTag = variable.Value
    327. 

  327. 		case "image.pullPolicy":
    328. 

  328. 			entry.ImagePullPolicy = variable.Value
    329. 

  329. 		}
    330. 

  330. 		providers[index] = entry
    331. 

  331. 	}
    332. 

  332. 	return providers
    333. 

  333. }
    334. 

  334. 

  335. func sortedProviderIndexes(providers map[int]providerEntry) []int {
    336. 

  336. 	indexes := make([]int, 0, len(providers))
    337. 

  337. 	for index := range providers {
    338. 

  338. 		indexes = append(indexes, index)
    339. 

  339. 	}
    340. 

  340. 

  341. 	for i := 0; i < len(indexes); i++ {
    342. 

  342. 		for j := i + 1; j < len(indexes); j++ {
    343. 

  343. 			if indexes[j] < indexes[i] {
    344. 

  344. 				indexes[i], indexes[j] = indexes[j], indexes[i]
    345. 

  345. 			}
    346. 

  346. 		}
    347. 

  347. 	}
    348. 

  348. 

  349. 	return indexes
    350. 

  350. }
    351.