improve tests & code

SchwarzIT · Mar 27, 2023 · e5dffea · e5dffea
1 parent dcf0b25
commit e5dffea
Show file tree

Hide file tree

Showing 2 changed files with 200 additions and 0 deletions.
diff --git a/pkg/clients/key_flow.go b/pkg/clients/key_flow.go
@@ -90,6 +90,9 @@ type ServiceAccountKeyPrivateResponse struct {
 
 // GetEnvironment returns the defined API environment
 func (c *KeyFlow) GetEnvironment() env.Environment {
+	if c.config == nil {
+		return ""
+	}
 	return c.config.Environment
 }
 

diff --git a/pkg/clients/key_flow_test.go b/pkg/clients/key_flow_test.go
@@ -1,10 +1,19 @@
 package clients
 
 import (
+	"context"
+	"crypto/rand"
+	"crypto/rsa"
+	"crypto/x509"
+	"encoding/pem"
+	"fmt"
+	"io/ioutil"
 	"os"
+	"reflect"
 	"testing"
 
 	"github.com/SchwarzIT/community-stackit-go-client/pkg/env"
+	"github.com/google/uuid"
 	"github.com/stretchr/testify/assert"
 )
 
@@ -65,3 +74,191 @@ func TestKeyFlow_processConfig(t *testing.T) {
 		})
 	}
 }
+
+func TestKeyFlow_validateConfig(t *testing.T) {
+	type fields struct {
+		config *KeyFlowConfig
+	}
+	tests := []struct {
+		name    string
+		fields  fields
+		wantErr bool
+	}{
+		{"ok", fields{&KeyFlowConfig{ServiceAccountKey: []byte("a"), PrivateKey: []byte("b")}}, false},
+		{"fail 1", fields{&KeyFlowConfig{ServiceAccountKey: []byte("a")}}, true},
+		{"fail 2", fields{&KeyFlowConfig{PrivateKey: []byte("b")}}, true},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			c := &KeyFlow{
+				config: tt.fields.config,
+			}
+			if err := c.validateConfig(); (err != nil) != tt.wantErr {
+				t.Errorf("KeyFlow.validateConfig() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}
+
+func TestKeyFlow_Init(t *testing.T) {
+	// Create a temporary file with a random name in the default temporary directory
+	tmpfile1, err := ioutil.TempFile("", "sakey")
+	if err != nil {
+		panic(err)
+	}
+	defer os.Remove(tmpfile1.Name())
+
+	// Create a temporary file with a random name in the default temporary directory
+	tmpfile2, err := ioutil.TempFile("", "pkey")
+	if err != nil {
+		panic(err)
+	}
+	defer os.Remove(tmpfile2.Name())
+
+	// Generate a new RSA key pair with a size of 2048 bits
+	privKey, err := rsa.GenerateKey(rand.Reader, 2048)
+	if err != nil {
+		panic(err)
+	}
+
+	// Encode the private key in PEM format
+	privKeyPEM := &pem.Block{
+		Type:  "RSA PRIVATE KEY",
+		Bytes: x509.MarshalPKCS1PrivateKey(privKey),
+	}
+
+	testUUID := uuid.New().String()
+
+	// Print the private and public keys
+	pkp := pem.EncodeToMemory(privKeyPEM)
+	saKey := fmt.Sprintf(saKeyStrPattern, testUUID, testUUID, testUUID)
+
+	type args struct {
+		cfg []KeyFlowConfig
+	}
+	tests := []struct {
+		name    string
+		config  []KeyFlowConfig
+		wantErr bool
+	}{
+		{
+			"ok 1",
+			[]KeyFlowConfig{
+				{PrivateKey: pkp},
+				{ServiceAccountKey: []byte(saKey)},
+			},
+			false,
+		},
+		{
+			"ok 2",
+			[]KeyFlowConfig{
+				{PrivateKeyPath: tmpfile2.Name()},
+				{ServiceAccountKeyPath: tmpfile1.Name()},
+			},
+			false,
+		},
+		{
+			"bad config 1",
+			[]KeyFlowConfig{
+				{PrivateKey: pkp},
+			},
+			true,
+		},
+		{
+			"bad config 2",
+			[]KeyFlowConfig{
+				{PrivateKey: []byte("somekey")},
+				{ServiceAccountKey: []byte(saKey)},
+			},
+			true,
+		},
+		{
+			"bad config 3",
+			[]KeyFlowConfig{},
+			true,
+		},
+		{
+			"bad files 1",
+			[]KeyFlowConfig{
+				{PrivateKeyPath: "somepath"},
+				{ServiceAccountKey: []byte(saKey)},
+			},
+			true,
+		},
+		{
+			"bad files 2",
+			[]KeyFlowConfig{
+				{PrivateKey: pkp},
+				{ServiceAccountKeyPath: "somepath"},
+			},
+			true,
+		},
+		{
+			"bad file 1",
+			[]KeyFlowConfig{
+				{PrivateKey: pkp},
+				{ServiceAccountKeyPath: tmpfile1.Name()},
+			},
+			true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			c := &KeyFlow{}
+			switch tt.name {
+			case "bad file 1":
+				if _, err := tmpfile1.Write([]byte("something")); err != nil {
+					t.Error(err)
+					return
+				}
+			case "ok 2":
+				if _, err := tmpfile1.Write([]byte(saKey)); err != nil {
+					t.Error(err)
+					return
+				}
+				if _, err := tmpfile2.Write(pkp); err != nil {
+					t.Error(err)
+					return
+				}
+			case "bad config 3":
+				if !reflect.DeepEqual(c.GetConfig(), KeyFlowConfig{}) {
+					t.Error("config doesn't match")
+				}
+				if c.GetEnvironment() != "" {
+					t.Error("env should be empty before Init")
+				}
+				if c.GetServiceAccountEmail() != "" {
+					t.Error("sa email should be empty before Init")
+				}
+			}
+			if err := c.Init(context.Background(), tt.config...); (err != nil) != tt.wantErr {
+				t.Errorf("KeyFlow.Init() error = %v, wantErr %v", err, tt.wantErr)
+			}
+			if c.GetEnvironment() != "prod" {
+				t.Errorf("c.GetEnvironment() = %s != prod", c.GetEnvironment())
+			}
+			if tt.name == "ok 2" {
+				if c.GetServiceAccountEmail() != "stackit@sa.stackit.cloud" {
+					t.Errorf("c.GetServiceAccountEmail() = %s != stackit@sa.stackit.cloud", c.GetServiceAccountEmail())
+				}
+			}
+		})
+	}
+}
+
+const saKeyStrPattern = `{
+	"active": true,
+	"createdAt": "2023-03-23T18:26:20.335Z",
+	"credentials": {
+	  "aud": "https://stackit-service-account-prod.apps.01.cf.eu01.stackit.cloud",
+	  "iss": "stackit@sa.stackit.cloud",
+	  "kid": "%s",
+	  "sub": "%s"
+	},
+	"id": "%s",
+	"keyAlgorithm": "RSA_2048",
+	"keyOrigin": "USER_PROVIDED",
+	"keyType": "USER_MANAGED",
+	"publicKey": "...",
+	"validUntil": "2024-03-22T18:05:41Z"
+}`