Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: v2.3.0
Branches Tags
helm-externa...
/
providers
/
v1
/
passworddepot
/
passworddepot_api_test.go

passworddepot_api_test.go 7.6 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291 
  1. /*
    2. 

  2. Copyright © The ESO Authors
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8. 	https://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. package passworddepot
    17. 

  17. 

  18. import (
    19. 

  19. 	"bytes"
    20. 

  20. 	"encoding/json"
    21. 

  21. 	"io"
    22. 

  22. 	"net/http"
    23. 

  23. 	"reflect"
    24. 

  24. 	"testing"
    25. 

  25. 	"time"
    26. 

  26. 

  27. 	fakepassworddepot "github.com/external-secrets/external-secrets/providers/v1/passworddepot/fake"
    28. 

  28. )
    29. 

  29. 

  30. const fingerprint1 = "53fe39bd-0d5c-4b46-83b3-122fef14364e"
    31. 

  31. const mySecret = "my-secret"
    32. 

  32. const someDB = "some-db"
    33. 

  33. 

  34. var (
    35. 

  35. 	mockDatabaseList = Databases{
    36. 

  36. 		Databases: []struct {
    37. 

  37. 			Name         string    `json:"name"`
    38. 

  38. 			Fingerprint  string    `json:"fingerprint"`
    39. 

  39. 			Date         time.Time `json:"date"`
    40. 

  40. 			Rights       string    `json:"rights"`
    41. 

  41. 			Reasondelete string    `json:"reasondelete"`
    42. 

  42. 		}{
    43. 

  43. 			{
    44. 

  44. 				Name:        someDB,
    45. 

  45. 				Fingerprint: "434da246-c165-499b-8996-6ee2a9673429",
    46. 

  46. 			},
    47. 

  47. 		},
    48. 

  48. 	}
    49. 

  49. 

  50. 	mockDatabaseEntries = DatabaseEntries{
    51. 

  51. 		Entries: []Entry{
    52. 

  52. 			{
    53. 

  53. 				Name:        mySecret,
    54. 

  54. 				Fingerprint: fingerprint1,
    55. 

  55. 			},
    56. 

  56. 		},
    57. 

  57. 	}
    58. 

  58. )
    59. 

  59. 

  60. func TestPasswortDepotApiListDatabases(t *testing.T) {
    61. 

  61. 	type fields struct {
    62. 

  62. 		funcStack []func(req *http.Request) (*http.Response, error)
    63. 

  63. 	}
    64. 

  64. 	tests := []struct {
    65. 

  65. 		name    string
    66. 

  66. 		fields  fields
    67. 

  67. 		want    Databases
    68. 

  68. 		wantErr bool
    69. 

  69. 	}{
    70. 

  70. 		{
    71. 

  71. 			name: "list databases",
    72. 

  72. 			fields: fields{
    73. 

  73. 				funcStack: []func(req *http.Request) (*http.Response, error){
    74. 

  74. 					createResponder(mockDatabaseList, true), //nolint:bodyclose // linters bug
    75. 

  75. 				},
    76. 

  76. 			},
    77. 

  77. 			want: Databases{
    78. 

  78. 				Databases: []struct {
    79. 

  79. 					Name         string    `json:"name"`
    80. 

  80. 					Fingerprint  string    `json:"fingerprint"`
    81. 

  81. 					Date         time.Time `json:"date"`
    82. 

  82. 					Rights       string    `json:"rights"`
    83. 

  83. 					Reasondelete string    `json:"reasondelete"`
    84. 

  84. 				}{
    85. 

  85. 					{
    86. 

  86. 						Name:        someDB,
    87. 

  87. 						Fingerprint: "434da246-c165-499b-8996-6ee2a9673429",
    88. 

  88. 					},
    89. 

  89. 				},
    90. 

  90. 			},
    91. 

  91. 			wantErr: false,
    92. 

  92. 		},
    93. 

  93. 		{
    94. 

  94. 			name: "bad response body",
    95. 

  95. 			fields: fields{
    96. 

  96. 				funcStack: []func(req *http.Request) (*http.Response, error){
    97. 

  97. 					createResponder([]byte("bad response"), false), //nolint:bodyclose // linters bug
    98. 

  98. 				},
    99. 

  99. 			},
    100. 

  100. 			want:    Databases{},
    101. 

  101. 			wantErr: true,
    102. 

  102. 		},
    103. 

  103. 	}
    104. 

  104. 	for _, tt := range tests {
    105. 

  105. 		t.Run(tt.name, func(t *testing.T) {
    106. 

  106. 			api := &API{
    107. 

  107. 				client: &fakepassworddepot.MockClient{
    108. 

  108. 					FuncStack: tt.fields.funcStack,
    109. 

  109. 				},
    110. 

  110. 				baseURL:  "localhost",
    111. 

  111. 				hostPort: "8714",
    112. 

  112. 				password: "test",
    113. 

  113. 				username: "test",
    114. 

  114. 				secret: &AccessData{
    115. 

  115. 					ClientID:    "12345",
    116. 

  116. 					AccessToken: "f02a1f7c-7629-422e-96f5-a98b29da1287",
    117. 

  117. 				},
    118. 

  118. 			}
    119. 

  119. 			got, err := api.ListDatabases()
    120. 

  120. 			if (err != nil) != tt.wantErr {
    121. 

  121. 				t.Errorf("PasswortDepotApi.ListDatabases() error = %v, wantErr %v", err, tt.wantErr)
    122. 

  122. 				return
    123. 

  123. 			}
    124. 

  124. 			if !reflect.DeepEqual(got, tt.want) {
    125. 

  125. 				t.Errorf("PasswortDepotApi.ListDatabases() = %v, want %v", got, tt.want)
    126. 

  126. 			}
    127. 

  127. 		})
    128. 

  128. 	}
    129. 

  129. }
    130. 

  130. 

  131. func TestPasswortDepotApiGetSecret(t *testing.T) {
    132. 

  132. 	type fields struct {
    133. 

  133. 		funcStack []func(req *http.Request) (*http.Response, error)
    134. 

  134. 	}
    135. 

  135. 	type args struct {
    136. 

  136. 		database   string
    137. 

  137. 		secretName string
    138. 

  138. 	}
    139. 

  139. 	tests := []struct {
    140. 

  140. 		name    string
    141. 

  141. 		fields  fields
    142. 

  142. 		args    args
    143. 

  143. 		want    SecretEntry
    144. 

  144. 		wantErr bool
    145. 

  145. 	}{
    146. 

  146. 		{
    147. 

  147. 			name: "get secret",
    148. 

  148. 			fields: fields{
    149. 

  149. 				funcStack: []func(req *http.Request) (*http.Response, error){
    150. 

  150. 					createResponder(mockDatabaseList, true),    //nolint:bodyclose // linters bug
    151. 

  151. 					createResponder(mockDatabaseEntries, true), //nolint:bodyclose // linters bug
    152. 

  152. 					createResponder(SecretEntry{ //nolint:bodyclose // linters bug
    153. 

  153. 						Name:        mySecret,
    154. 

  154. 						Fingerprint: fingerprint1,
    155. 

  155. 						Pass:        "yery53cr3t",
    156. 

  156. 					}, true),
    157. 

  157. 				},
    158. 

  158. 			},
    159. 

  159. 			args: args{
    160. 

  160. 				database:   someDB,
    161. 

  161. 				secretName: mySecret,
    162. 

  162. 			},
    163. 

  163. 			want: SecretEntry{
    164. 

  164. 				Name:        mySecret,
    165. 

  165. 				Fingerprint: fingerprint1,
    166. 

  166. 				Pass:        "yery53cr3t",
    167. 

  167. 			},
    168. 

  168. 			wantErr: false,
    169. 

  169. 		},
    170. 

  170. 		{
    171. 

  171. 			name: "get nested secret",
    172. 

  172. 			fields: fields{
    173. 

  173. 				funcStack: []func(req *http.Request) (*http.Response, error){
    174. 

  174. 					createResponder(mockDatabaseList, true), //nolint:bodyclose // linters bug
    175. 

  175. 					createResponder(DatabaseEntries{ //nolint:bodyclose // linters bug
    176. 

  176. 						Entries: []Entry{
    177. 

  177. 							{
    178. 

  178. 								Name:        "Production",
    179. 

  179. 								Fingerprint: "33f918ae-ec60-41cb-8131-67d8f21eef4c",
    180. 

  180. 							},
    181. 

  181. 						},
    182. 

  182. 					}, true),
    183. 

  183. 					createResponder(mockDatabaseEntries, true), //nolint:bodyclose // linters bug
    184. 

  184. 					createResponder(SecretEntry{ //nolint:bodyclose // linters bug
    185. 

  185. 						Name:        mySecret,
    186. 

  186. 						Fingerprint: fingerprint1,
    187. 

  187. 						Pass:        "yery53cr3t",
    188. 

  188. 					}, true),
    189. 

  189. 				},
    190. 

  190. 			},
    191. 

  191. 			args: args{
    192. 

  192. 				database:   someDB,
    193. 

  193. 				secretName: "Production.my-secret",
    194. 

  194. 			},
    195. 

  195. 			want: SecretEntry{
    196. 

  196. 				Name:        mySecret,
    197. 

  197. 				Fingerprint: fingerprint1,
    198. 

  198. 				Pass:        "yery53cr3t",
    199. 

  199. 			},
    200. 

  200. 			wantErr: false,
    201. 

  201. 		},
    202. 

  202. 		{
    203. 

  203. 			name: "bad response body on database entries",
    204. 

  204. 			fields: fields{
    205. 

  205. 				funcStack: []func(req *http.Request) (*http.Response, error){
    206. 

  206. 					createResponder(mockDatabaseList, true),    //nolint:bodyclose // linters bug
    207. 

  207. 					createResponder([]byte("bad body"), false), //nolint:bodyclose // linters bug
    208. 

  208. 				},
    209. 

  209. 			},
    210. 

  210. 			args: args{
    211. 

  211. 				database:   someDB,
    212. 

  212. 				secretName: mySecret,
    213. 

  213. 			},
    214. 

  214. 			want:    SecretEntry{},
    215. 

  215. 			wantErr: true,
    216. 

  216. 		},
    217. 

  217. 		{
    218. 

  218. 			name: "bad response on secret entry",
    219. 

  219. 			fields: fields{
    220. 

  220. 				funcStack: []func(req *http.Request) (*http.Response, error){
    221. 

  221. 					createResponder(mockDatabaseList, true),             //nolint:bodyclose // linters bug
    222. 

  222. 					createResponder(mockDatabaseEntries, true),          //nolint:bodyclose // linters bug
    223. 

  223. 					createResponder([]byte("bad response body"), false), //nolint:bodyclose // linters bug
    224. 

  224. 				},
    225. 

  225. 			},
    226. 

  226. 			args: args{
    227. 

  227. 				database:   someDB,
    228. 

  228. 				secretName: mySecret,
    229. 

  229. 			},
    230. 

  230. 			want:    SecretEntry{},
    231. 

  231. 			wantErr: true,
    232. 

  232. 		},
    233. 

  233. 		{
    234. 

  234. 			name: "no secret with name",
    235. 

  235. 			fields: fields{
    236. 

  236. 				funcStack: []func(req *http.Request) (*http.Response, error){
    237. 

  237. 					createResponder(mockDatabaseList, true),                    //nolint:bodyclose // linters bug
    238. 

  238. 					createResponder(DatabaseEntries{Entries: []Entry{}}, true), //nolint:bodyclose // linters bug
    239. 

  239. 				},
    240. 

  240. 			},
    241. 

  241. 			args: args{
    242. 

  242. 				database:   someDB,
    243. 

  243. 				secretName: mySecret,
    244. 

  244. 			},
    245. 

  245. 			want:    SecretEntry{},
    246. 

  246. 			wantErr: true,
    247. 

  247. 		},
    248. 

  248. 	}
    249. 

  249. 	for _, tt := range tests {
    250. 

  250. 		t.Run(tt.name, func(t *testing.T) {
    251. 

  251. 			api := &API{
    252. 

  252. 				client: &fakepassworddepot.MockClient{
    253. 

  253. 					FuncStack: tt.fields.funcStack,
    254. 

  254. 				},
    255. 

  255. 				baseURL:  "localhost",
    256. 

  256. 				hostPort: "8714",
    257. 

  257. 				password: "test",
    258. 

  258. 				username: "test",
    259. 

  259. 				secret: &AccessData{
    260. 

  260. 					ClientID:    "12345",
    261. 

  261. 					AccessToken: "f02a1f7c-7629-422e-96f5-a98b29da1287",
    262. 

  262. 				},
    263. 

  263. 			}
    264. 

  264. 			got, err := api.GetSecret(tt.args.database, tt.args.secretName)
    265. 

  265. 			if (err != nil) != tt.wantErr {
    266. 

  266. 				t.Errorf("PasswortDepotApi.GetSecret() error = %v, wantErr %v", err, tt.wantErr)
    267. 

  267. 				return
    268. 

  268. 			}
    269. 

  269. 			if !reflect.DeepEqual(got, tt.want) {
    270. 

  270. 				t.Errorf("PasswortDepotApi.GetSecret() = %v, want %v", got, tt.want)
    271. 

  271. 			}
    272. 

  272. 		})
    273. 

  273. 	}
    274. 

  274. }
    275. 

  275. 

  276. func createResponder(payload any, withMarshal bool) func(*http.Request) (*http.Response, error) {
    277. 

  277. 	return func(req *http.Request) (*http.Response, error) {
    278. 

  278. 		var payloadBytes []byte
    279. 

  279. 		if withMarshal {
    280. 

  280. 			payloadBytes, _ = json.Marshal(payload)
    281. 

  281. 		} else {
    282. 

  282. 			payloadBytes = payload.([]byte)
    283. 

  283. 		}
    284. 

  284. 		res := http.Response{
    285. 

  285. 			Status:     "OK",
    286. 

  286. 			StatusCode: http.StatusOK,
    287. 

  287. 			Body:       io.NopCloser(bytes.NewReader(payloadBytes)),
    288. 

  288. 		}
    289. 

  289. 		return &res, nil
    290. 

  290. 	}
    291. 

  291. }
    292.