Polishing

This change polishes the contributed code a bit and adds a test for it.

[resolves #365]

Author: nebhale

config/dyadic_ekm_security_provider.yml

@@ -17,4 +17,3 @@
 ---
 version: 1.+
 repository_root: https://repo.dyadicsec.com/cust/pcf
-logging_enabled: false

java-buildpack.iml

@@ -270,7 +270,7 @@
     <orderEntry type="sourceFolder" forTests="false" />
     <orderEntry type="library" scope="PROVIDED" name="addressable (v2.4.0, rbenv: 2.2.5) [gem]" level="application" />
     <orderEntry type="library" scope="PROVIDED" name="ast (v2.3.0, rbenv: 2.2.5) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="bundler (v1.12.5, rbenv: 2.2.5) [gem]" level="application" />
+    <orderEntry type="library" scope="PROVIDED" name="bundler (v1.13.6, rbenv: 2.2.5) [gem]" level="application" />
     <orderEntry type="library" scope="PROVIDED" name="codeclimate-test-reporter (v0.6.0, rbenv: 2.2.5) [gem]" level="application" />
     <orderEntry type="library" scope="PROVIDED" name="crack (v0.4.3, rbenv: 2.2.5) [gem]" level="application" />
     <orderEntry type="library" scope="PROVIDED" name="diff-lcs (v1.2.5, rbenv: 2.2.5) [gem]" level="application" />

lib/java_buildpack/framework/dyadic_ekm_security_provider.rb

@@ -31,33 +31,32 @@ def compile
         download_tar
         setup_ext_dir
 
-       @droplet.copy_resources
+        @droplet.copy_resources
 
-       credentials = @application.services.find_service(FILTER)['credentials']
-       write_key credentials['key']
-       write_cert credentials['ca']
-	   write_conf credentials['servers'], credentials['send_timeout'], credentials['recv_timeout'], credentials['retries']
-	   end
+        credentials = @application.services.find_service(FILTER)['credentials']
+        write_key credentials['key']
+        write_cert credentials['ca']
+        write_conf credentials['servers'], credentials['send_timeout'], credentials['recv_timeout'],
+                   credentials['retries']
+      end
 
       # (see JavaBuildpack::Component::BaseComponent#release)
       def release
-      @droplet
-          .java_opts
-          .add_system_property('java.library.path', @droplet.sandbox + 'usr/lib')
-      @droplet.environment_variables.add_environment_variable 'LD_LIBRARY_PATH', @droplet.sandbox + 'usr/lib'
+        @droplet
+          .environment_variables
+          .add_environment_variable 'LD_LIBRARY_PATH', @droplet.sandbox + 'usr/lib'
 
         @droplet
           .java_opts
-          .add_system_property('java.security.properties', @droplet.sandbox + 'java.security')
           .add_system_property('java.ext.dirs', ext_dirs)
+          .add_system_property('java.security.properties', @droplet.sandbox + 'java.security')
       end
 
       protected
 
       # (see JavaBuildpack::Component::VersionedDependencyComponent#supports?)
       def supports?
-        @application.services.one_service? FILTER
-        #true
+        @application.services.one_service? FILTER, 'ca', 'key', 'recv_timeout', 'retries', 'send_timeout', 'servers'
       end
 
       private
@@ -66,56 +65,61 @@ def supports?
 
       private_constant :FILTER
 
-      def ext_dir
-        @droplet.sandbox + 'ext'
+      def cert_file
+        @droplet.sandbox + 'etc/dsm/ca.crt'
       end
-	  
-	  def dyadic_jar
-	   @droplet.sandbox + 'usr/lib/dsm/dsm-advapi-1.0.jar'
-	  end
 
-      def setup_ext_dir
-        FileUtils.mkdir ext_dir     
-        FileUtils.ln_s dyadic_jar.relative_path_from(ext_dir), ext_dir, force: true     
+      def conf_file
+        @droplet.sandbox + 'etc/dsm/client.conf'
+      end
+
+      def dyadic_jar
+        @droplet.sandbox + 'usr/lib/dsm/dsm-advapi-1.0.jar'
+      end
+
+      def ext_dir
+        @droplet.sandbox + 'ext'
       end
 
       def ext_dirs
         "#{qualify_path(@droplet.java_home.root + 'lib/ext', @droplet.root)}:" \
         "#{qualify_path(ext_dir, @droplet.root)}"
       end
-	  
-	  def key_file
-	    @droplet.sandbox + 'etc/dsm/key.pem'
-      end
-      
-	  def cert_file
-	    @droplet.sandbox + 'etc/dsm/ca.crt'
-      end		  
 
-	  def conf_file
-	    @droplet.sandbox + 'etc/dsm/client.conf'
+      def key_file
+        @droplet.sandbox + 'etc/dsm/key.pem'
       end
-	  	
-	  def write_key(key)
-        key_file.open(File::CREAT | File::WRONLY) do |f|
-          f.write key
-        end
+
+      def setup_ext_dir
+        FileUtils.mkdir ext_dir
+        FileUtils.ln_s dyadic_jar.relative_path_from(ext_dir), ext_dir, force: true
       end
-	  
-	  def write_cert(cert)
+
+      def write_cert(cert)
+        FileUtils.mkdir_p cert_file.parent
         cert_file.open(File::CREAT | File::WRONLY) do |f|
-          f.write cert
+          f.write "#{cert}\n"
         end
       end
-	  
-	  def write_conf(servers,send_timeout,recv_timeout,retries)
+
+      def write_conf(servers, send_timeout, recv_timeout, retries)
+        FileUtils.mkdir_p conf_file.parent
         conf_file.open(File::CREAT | File::WRONLY) do |f|
-          f.write "servers = " + servers + "\n"
-		  f.write "send_timeout = " + send_timeout + "\n"
-		  f.write "recv_timeout = " + recv_timeout + "\n"
-		  f.write "retries = " + retries + "\n"
+          f.write <<EOS
+servers      = #{servers}
+send_timeout = #{send_timeout}
+recv_timeout = #{recv_timeout}
+retries      = #{retries}
+EOS
+        end
+      end
+
+      def write_key(key)
+        FileUtils.mkdir_p key_file.parent
+        key_file.open(File::CREAT | File::WRONLY) do |f|
+          f.write "#{key}\n"
         end
-      end  
+      end
 
     end
   end

spec/fixtures/framework_dyadic_ekm_security_provider/ca.crt

@@ -0,0 +1,3 @@
+-----BEGIN CERTIFICATE-----
+test-client-cert
+-----END CERTIFICATE-----

spec/fixtures/framework_dyadic_ekm_security_provider/client.conf

@@ -0,0 +1,4 @@
+servers      = server-1,server-2
+send_timeout = 3
+recv_timeout = 1
+retries      = 2

spec/fixtures/framework_dyadic_ekm_security_provider/key.pem

@@ -0,0 +1,3 @@
+-----BEGIN RSA PRIVATE KEY-----
+test-client-private-key
+-----END RSA PRIVATE KEY-----

spec/fixtures/stub-dyadic-ekm-security-provider.tar.gz

@@ -0,0 +1,111 @@
+# Encoding: utf-8
+# Cloud Foundry Java Buildpack
+# Copyright 2013-2016 the original author or authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+require 'spec_helper'
+require 'component_helper'
+require 'java_buildpack/framework/dyadic_ekm_security_provider'
+
+describe JavaBuildpack::Framework::DyadicEkmSecurityProvider do
+  include_context 'component_helper'
+
+  it 'does not detect without dyadic-n/a service' do
+    expect(component.detect).to be_nil
+  end
+
+  context do
+
+    before do
+      allow(services).to receive(:one_service?)
+        .with(/dyadic/, 'ca', 'key', 'recv_timeout', 'retries', 'send_timeout', 'servers')
+        .and_return(true)
+
+      allow(services).to receive(:find_service).and_return(
+        'credentials' => {
+          'ca'           => "-----BEGIN CERTIFICATE-----\ntest-client-cert\n-----END CERTIFICATE-----",
+          'key'          => "-----BEGIN RSA PRIVATE KEY-----\ntest-client-private-key\n-----END RSA PRIVATE KEY-----",
+          'recv_timeout' => 1,
+          'retries'      => 2,
+          'send_timeout' => 3,
+          'servers'      => 'server-1,server-2'
+        }
+      )
+    end
+
+    it 'detects with dyadic-n/a service' do
+      expect(component.detect).to eq("dyadic-ekm-security-provider=#{version}")
+    end
+
+    it 'copies resources',
+       cache_fixture: 'stub-dyadic-ekm-security-provider.tar.gz' do
+
+      component.compile
+
+      expect(sandbox + 'java.security').to exist
+    end
+
+    it 'unpacks the dyadic tar',
+       cache_fixture: 'stub-dyadic-ekm-security-provider.tar.gz' do
+
+      component.compile
+
+      expect(sandbox + 'usr/lib/dsm/dsm-advapi-1.0.jar').to exist
+      expect(sandbox + 'usr/lib').to exist
+    end
+
+    it 'write certificate and key files',
+       cache_fixture: 'stub-dyadic-ekm-security-provider.tar.gz' do
+
+      component.compile
+
+      expect(sandbox + 'etc/dsm/ca.crt').to exist
+      expect(sandbox + 'etc/dsm/key.pem').to exist
+
+      check_file_contents(sandbox + 'etc/dsm/ca.crt',
+                          'spec/fixtures/framework_dyadic_ekm_security_provider/ca.crt')
+      check_file_contents(sandbox + 'etc/dsm/key.pem',
+                          'spec/fixtures/framework_dyadic_ekm_security_provider/key.pem')
+    end
+
+    it 'writes configuration',
+       cache_fixture: 'stub-dyadic-ekm-security-provider.tar.gz' do
+
+      component.compile
+
+      expect(sandbox + 'etc/dsm/client.conf').to exist
+      check_file_contents(sandbox + 'etc/dsm/client.conf',
+                          'spec/fixtures/framework_dyadic_ekm_security_provider/client.conf')
+    end
+
+    it 'updates environment variables' do
+      component.release
+      expect(environment_variables).to include('LD_LIBRARY_PATH=$PWD/.java-buildpack/' \
+                                               'dyadic_ekm_security_provider/usr/lib')
+    end
+
+    it 'updates JAVA_OPTS' do
+      component.release
+      expect(java_opts).to include('-Djava.ext.dirs=$PWD/.test-java-home/lib/ext:$PWD/.java-buildpack/' \
+                                   'dyadic_ekm_security_provider/ext')
+      expect(java_opts).to include('-Djava.security.properties=$PWD/.java-buildpack/' \
+                                   'dyadic_ekm_security_provider/java.security')
+    end
+
+    def check_file_contents(actual, expected)
+      expect(File.read(actual)).to eq File.read(expected)
+    end
+
+  end
+end