cloud_controller/spec/controllers/services_controller_spec.rb

require 'spec_helper'

require 'mocha'
require 'thin'
require 'uri'

# Shim so that we can stub/mock out desired return values for our forked
# gateway
class ServiceProvisionerStub
  def provision_service(version, plan)
  end

  def unprovision_service(service_id)
  end

  def bind_instance(service_id, binding_options)
  end

  def unbind_instance(service_id, handle_id, binding_options)
  end
end

describe ServicesController do

  describe "Gateway facing apis" do
    before :each do
      request.env['CONTENT_TYPE'] = Mime::JSON
      request.env['HTTP_ACCEPT'] = Mime::JSON
      request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'foobar'
    end

    describe '#create' do

      it 'should reject requests without auth tokens' do
        request.env.delete 'HTTP_X_VCAP_SERVICE_TOKEN'
        post :create
        response.status.should == 403
      end

      it 'should should reject posts with malformed bodies' do
        request.env['RAW_POST_DATA'] = 'foobar'
        post :create
        response.status.should == 400
      end

      it 'should reject requests with missing parameters' do
        request.env['RAW_POST_DATA'] = '{}'
        post :create
        response.status.should == 400
      end

      it 'should reject requests with invalid parameters' do
        request.env['RAW_POST_DATA'] = {:label => 'foobar', :url => 'zazzle'}.to_json
        post :create
        response.status.should == 400
      end

      it 'should create service offerings for builtin services' do
        AppConfig[:builtin_services][:foo] = {:token => 'foobar'}
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://www.google.com')
        end
        AppConfig[:builtin_services].delete(:foo)
        response.status.should == 200
      end

      it 'should create service offerings for single brokered service' do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'broker'
        AppConfig[:service_broker] = {:token => ['broker']}
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://localhost:56789')
        end
        response.status.should == 200
      end

      it 'should create service offerings for multiple brokered service' do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'broker'
        AppConfig[:service_broker] = {:token => ['broker', 'foobar']}
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://localhost:56789')
        end
        response.status.should == 200
      end

      it 'should not create brokered service offerings if token mismatch' do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'foobar'
        AppConfig[:service_broker] = {:token => ['broker']}
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://localhost:56789')
        end
        response.status.should == 403
      end

      it 'should not create service offerings if not builtin' do
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url => 'http://www.google.com',
            :plans => ['foo'])
        end
        response.status.should == 403
      end

      it 'should update existing offerings' do
        acls = {
          'wildcards' => ['*@foo.com'],
          'plans' => {'free' => {'users' => ['a@b.com']}}
        }
        svc = Service.create(
          :label => 'foo-bar',
          :url   => 'http://www.google.com',
          :token => 'foobar',
          :plans => ['foo'])
        svc.should be_valid

        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://www.google.com',
            :acls  => acls,
            :plans => ['foo'],
            :timeout => 20,
            :description => 'foobar')
        end
        response.status.should == 200
        svc = Service.find_by_label('foo-bar')
        svc.should_not be_nil
        svc.description.should == 'foobar'
        svc.timeout.should == 20
      end


      it 'should support reverting existing offerings to nil' do
        acls = {
          'wildcards' => ['*@foo.com'],
          'plans' => {'free' => {'users' => ['aaa@bbb.com']}}
        }
        svc = Service.create(
          :label => 'foo-bar',
          :url   => 'http://www.google.com',
          :token => 'foobar',
          :acls  => acls,
          :timeout => 20,
          :plans => ['foo'])
        svc.should be_valid

        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://www.google.com',
            :plans => ['foo'],
            :description => 'foobar')
        end
        response.status.should == 200
        svc = Service.find_by_label('foo-bar')
        svc.should_not be_nil
        svc.timeout.should be_nil
        svc.acls.should be_nil
      end

      it 'should return not authorized on token mismatch for non builtin services' do
        svc = Service.create(
          :label => 'foo-bar',
          :url   => 'http://www.google.com',
          :token => ['foobar'])
        svc.should be_valid

        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'barfoo'
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :plans => ['foo'],
            :url   => 'http://www.google.com')
        end
        response.status.should == 403
      end

      it 'should return not authorized on token mismatch for builtin services' do
        AppConfig[:builtin_services][:foo] = {:token => 'foobar'}
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :url   => 'http://www.google.com')
        end
        response.status.should == 200
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'barfoo'
        post_msg :create do
          VCAP::Services::Api::ServiceOfferingRequest.new(
            :label => 'foo-bar',
            :plans => ['foo'],
            :url   => 'http://www.google.com')
        end
        response.status.should == 403
        AppConfig[:builtin_services].delete(:foo)
      end
    end

    describe '#delete' do
      before :each do
        @svc = Service.create(
          :label => 'foo-bar',
          :url   => 'http://www.google.com',
          :token => 'foobar')
        @svc.should be_valid
      end

      it 'should return not found for unknown services' do
        delete :delete, :label => 'xxx'
        response.status.should == 404
      end

      it 'should return not authorized on token mismatch' do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'barfoo'
        delete :delete, :label => 'foo-bar'
        response.status.should == 403
      end

      it 'should delete existing offerings' do
        delete :delete, :label => 'foo-bar'
        response.status.should == 200

        svc = Service.find_by_label('foo-bar')
        svc.should be_nil
      end
    end

    describe '#get' do
      before :each do
        @svc = Service.create(
          :label => 'foo-bar',
          :url   => 'http://www.google.com',
          :plans => ['free', 'nonfree'],
          :token => 'foobar')
        @svc.should be_valid
      end

      it 'should return not found for unknown services' do
        get :get, :label => 'xxx'
        response.status.should == 404
      end

      it 'should return not authorized on token mismatch' do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'xxx'
        get :get, :label => 'foo-bar'
        response.status.should == 403
      end

      it 'should return the specific service offering' do
        get :get, :label => 'foo-bar'
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["label"].should == 'foo-bar'
        resp["url"].should   == 'http://www.google.com'
        resp["plans"].should == ['free', 'nonfree']
      end
    end

    describe '#list_handles' do
      it 'should return not found for unknown services' do
        get :list_handles, :label => 'foo-bar'
        response.status.should == 404
      end

      it 'should return provisioned and bound handles' do
        svc = Service.new
        svc.label = "foo-bar"
        svc.url   = "http://localhost:56789"
        svc.token = 'foobar'
        svc.save
        svc.should be_valid

        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => svc)
        cfg.save
        cfg.should be_valid

        bdg = ServiceBinding.new(
          :name  => 'xxxxx',
          :service_config  => cfg,
          :configuration   => {},
          :credentials     => {},
          :binding_options => []
        )
        bdg.save
        bdg.should be_valid

        get :list_handles, :label => 'foo-bar'
        response.status.should == 200
      end
    end

    describe '#list_brokered_services' do
      before :each do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'broker'
        AppConfig[:service_broker] = {:token => ['broker']}
      end

      it "should return not authorized on token mismatch" do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'foobar'
        get :list_brokered_services
        response.status.should == 403
      end

      it "should not list builtin services" do
        AppConfig[:builtin_services] = {
          :foo => {:token => ["foobar"]}
        }
        svc = Service.new
        svc.label = "foo-1.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'foobar'
        svc.save
        svc.should be_valid

        get :list_brokered_services
        response.status.should == 200
        Yajl::Parser.parse(response.body)['brokered_services'].should be_empty
      end

      it "should list single brokered services" do
        AppConfig[:builtin_services] = {
          :foo => {:token => ["foobar"]}
        }

        svc = Service.new
        svc.label = "brokered-1.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'broker'
        svc.save
        svc.should be_valid

        get :list_brokered_services
        response.status.should == 200
        Yajl::Parser.parse(response.body)['brokered_services'].size.should == 1
      end

      it "should list multiple brokered services" do
        AppConfig[:builtin_services] = {
          :foo => {:token => ["foobar"]}
        }

        svc = Service.new
        svc.label = "brokered-1.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'broker'
        svc.save
        svc.should be_valid

        svc = Service.new
        svc.label = "brokered-2.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'broker'
        svc.save
        svc.should be_valid

        get :list_brokered_services
        response.status.should == 200
        Yajl::Parser.parse(response.body)['brokered_services'].size.should == 2
      end

      it "should list multiple brokered services with different keys" do
        AppConfig[:service_broker] = {
          :token => ['broker', 'foobar']
        }

        svc = Service.new
        svc.label = "brokered-1.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'broker'
        svc.save
        svc.should be_valid

        svc = Service.new
        svc.label = "brokered-2.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'foobar'
        svc.save
        svc.should be_valid

        svc = Service.new
        svc.label = "brokered-3.0"
        svc.url   = "http://localhost:56789"
        svc.token = 'broker'
        svc.save
        svc.should be_valid

        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'broker'
        get :list_brokered_services
        response.status.should == 200
        Yajl::Parser.parse(response.body)['brokered_services'].size.should == 2

        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'foobar'
        get :list_brokered_services
        response.status.should == 200
        Yajl::Parser.parse(response.body)['brokered_services'].size.should == 1
      end
    end

    describe '#update_handle' do
      before :each do
        request.env['HTTP_X_VCAP_SERVICE_TOKEN'] = 'foobar'
        AppConfig[:builtin_services] = {
          :foo => {:token=>"foobar"}
        }

        svc = Service.new
        svc.label = "foo-bar"
        svc.url   = "http://localhost:56789"
        svc.token = 'foobar'
        svc.save
        svc.should be_valid
        @svc = svc

        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => svc)
        cfg.save
        cfg.should be_valid
        @cfg = cfg

        bdg = ServiceBinding.new(
          :name  => 'xxxxx',
          :service_config  => cfg,
          :configuration   => {},
          :credentials     => {},
          :binding_options => []
        )
        bdg.save
        bdg.should be_valid
        @bdg = bdg
      end

      it 'should return not found for unknown handles' do
        post_msg :update_handle, :label => @svc.label, :id => 'xxx' do
          VCAP::Services::Api::HandleUpdateRequest.new(
             :service_id => 'xxx',
             :configuration => [],
             :credentials   => []
          )
        end
        response.status.should == 404
      end

      it 'should update provisioned handles' do
        post_msg :update_handle, :label => @svc.label, :id => @cfg.name do
          VCAP::Services::Api::HandleUpdateRequest.new(
             :service_id => @cfg.name,
             :configuration => [],
             :credentials   => []
          )
        end
        response.status.should == 200
      end

      it 'should update bound handles' do
        post_msg :update_handle, :label => @svc.label, :id => @bdg.name do
          VCAP::Services::Api::HandleUpdateRequest.new(
             :service_id => @bdg.name,
             :configuration => ['foo'],
             :credentials   => ['bar']
          )
        end
        foo = ServiceBinding.find_by_name(@bdg.name)
        response.status.should == 200
      end
    end
  end

  describe "User facing apis" do
    before :each do
      u = User.new(:email => 'foo@bar.com')
      u.set_and_encrypt_password('foobar')
      u.save
      u.should be_valid
      @user = u

      a = App.new(
        :owner => u,
        :name => 'foobar',
        :framework => 'sinatra',
        :runtime => 'ruby18')
      a.save
      a.should be_valid
      @app = a

      svc = Service.new
      svc.label = "foo-bar"
      svc.url   = "http://localhost:56789"
      svc.token = 'foobar'
      svc.plans = ['free', 'nonfree']
      svc.save
      svc.should be_valid
      @svc = svc

      request.env['CONTENT_TYPE'] = Mime::JSON
      request.env['HTTP_AUTHORIZATION'] = UserToken.create('foo@bar.com').encode
    end

    describe '#provision' do

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        post :provision
        response.status.should == 403
      end

      it 'should return not found for unknown services' do
        post_msg :provision do
          VCAP::Services::Api::CloudControllerProvisionRequest.new(
            :label => 'bar-foo',
            :name  => 'foo',
            :plan  => 'free')
        end
        response.status.should == 404
      end

      it 'should provision services' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:provision_service).returns({:data => {}, :service_id => 'foo', :credentials => {}})
        gw_pid = start_gateway(@svc, shim)
        post_msg :provision do
          VCAP::Services::Api::CloudControllerProvisionRequest.new(
            :label => 'foo-bar',
            :name  => 'foo',
            :plan  => 'free')
        end
        response.status.should == 200
        stop_gateway(gw_pid)
      end

      it 'should fail to provision a config with the same name as an existing config' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:provision_service).returns({:data => {}, :service_id => 'foo', :credentials => {}})
        gw_pid = start_gateway(@svc, shim)

        post_msg :provision do
          VCAP::Services::Api::CloudControllerProvisionRequest.new(
            :label => 'foo-bar',
            :name  => 'foo',
            :plan  => 'free')
        end
        response.status.should == 200

        post_msg :provision do
          VCAP::Services::Api::CloudControllerProvisionRequest.new(
            :label => 'foo-bar',
            :name  => 'foo',
            :plan  => 'free')
        end
        response.status.should == 400

        stop_gateway(gw_pid)
      end
    end

    describe "#bind" do
      before :each do
        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        post :bind
        response.status.should == 403
      end

      it 'should return not found for unknown apps' do
        post_msg :bind do
          VCAP::Services::Api::CloudControllerBindRequest.new(
            :app_id          => 1234,
            :service_id      => 'xxx',
            :binding_options => []
          )
        end
        response.status.should == 404
      end

      it 'should return not found for unknown service configs' do
        post_msg :bind do
          VCAP::Services::Api::CloudControllerBindRequest.new(
            :app_id          => @app.id,
            :service_id      => 'xxx',
            :binding_options => []
          )
        end
        response.status.should == 404
      end

      it 'should successfully bind a known config to a known app' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:bind_instance).returns({:configuration => {}, :service_id => 'foo', :credentials => {}})
        gw_pid = start_gateway(@svc, shim)
        post_msg :bind do
          VCAP::Services::Api::CloudControllerBindRequest.new(
            :service_id      => @cfg.name,
            :app_id          => @app.id,
            :binding_options => ['foo']
          )
        end
        response.status.should == 200
        binding = ServiceBinding.find_by_user_id_and_app_id(@user.id, @app.id)
        binding.should_not be_nil
        stop_gateway(gw_pid)
      end
    end

    describe "#bind_external" do
      before :each do
        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg

        tok = BindingToken.generate(:label => 'foo', :service_config => cfg, :binding_options => ['free'])
        tok.save
        tok.should be_valid
        @tok = tok
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        post :bind_external
        response.status.should == 403
      end

      it 'should return not found for unknown tokens' do
        post_msg :bind_external do
          VCAP::Services::Api::BindExternalRequest.new(
            :app_id        => @app.id,
            :binding_token => 'xxx'
          )
        end
        response.status.should == 404
      end

      it 'should return not found for unknown apps' do
        post_msg :bind_external do
          VCAP::Services::Api::BindExternalRequest.new(
            :app_id        => 1234,
            :binding_token => @tok.uuid
          )
        end
        response.status.should == 404
      end

      it 'should successfully bind a known token to a known app' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:bind_instance).returns({:configuration => {}, :service_id => 'foo', :credentials => {}})
        gw_pid = start_gateway(@svc, shim)
        post_msg :bind_external do
          VCAP::Services::Api::BindExternalRequest.new(
            :app_id        => @app.id,
            :binding_token => @tok.uuid
          )
        end
        response.status.should == 200
        binding = ServiceBinding.find_by_user_id_and_app_id(@user.id, @app.id)
        binding.should_not be_nil
        stop_gateway(gw_pid)
      end
    end

    describe "#unbind" do
      before :each do
        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg

        tok = BindingToken.generate(
          :label => 'foo-bar',
          :binding_options => [],
          :service_config => @cfg
        )
        tok.save
        tok.should be_valid
        @tok = tok

        bdg = ServiceBinding.new(
          :app   => @app,
          :user  => @user,
          :name  => 'xxxxx',
          :service_config  => @cfg,
          :configuration   => {},
          :credentials     => {},
          :binding_options => [],
          :binding_token   => @tok
        )
        bdg.save
        bdg.should be_valid
        @bdg = bdg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        delete :unbind, :binding_token => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown bindings' do
        delete :unbind, :binding_token => 'xxx'
        response.status.should == 404
      end

      it 'should successfully delete known bindings' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:unbind_instance).returns(true)
        gw_pid = start_gateway(@svc, shim)
        delete :unbind, :binding_token => @bdg.binding_token.uuid
        response.status.should == 200
        binding = ServiceBinding.find_by_user_id_and_app_id(@user.id, @app.id)
        binding.should be_nil
        stop_gateway(gw_pid)
      end
    end


    describe '#unprovision' do
      before :each do
        cfg = ServiceConfig.new(:name => 'foo', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg

        bdg = ServiceBinding.new(
          :app   => @app,
          :user  => @user,
          :name  => 'xxx',
          :service_config => @cfg,
          :credentials => {},
          :binding_options => []
        )
        bdg.save
        bdg.should be_valid
        @bdg = bdg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        delete :unprovision, :id => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        delete :unprovision, :id => 'xxx'
        response.status.should == 404
      end

      it 'should successfully delete known service configs and their associated bindings' do
        shim = ServiceProvisionerStub.new
        shim.stubs(:unprovision_service).returns(true)
        gw_pid = start_gateway(@svc, shim)
        delete :unprovision, :id => @cfg.name
        response.status.should == 200
        binding = ServiceBinding.find_by_user_id_and_app_id(@user.id, @app.id)
        binding.should be_nil
        cfg = ServiceConfig.find_by_id(@cfg.id)
        cfg.should be_nil
        stop_gateway(gw_pid)
      end
    end

    describe "#lifecycle_extension" do

      it 'should return not implemented error when lifecycle is disabled' do
        begin
          origin = AppConfig.delete :service_lifecycle
          %w(create_snapshot enum_snapshots import_from_url import_from_data).each do |api|
            post api.to_sym, :id => 'xxx'
            response.status.should == 501
            resp = Yajl::Parser.parse(response.body)
            resp['description'].include?("not implemented").should == true
          end

          %w(snapshot_details rollback_snapshot delete_snapshot serialized_url create_serialized_url ).each do |api|
            post api.to_sym, :id => 'xxx', :sid => '1'
            response.status.should == 501
            resp = Yajl::Parser.parse(response.body)
            resp['description'].include?("not implemented").should == true
          end

          get :job_info, :id => 'xxx', :job_id => '1'
          response.status.should == 501
          resp = Yajl::Parser.parse(response.body)
          resp['description'].include?("not implemented").should == true
        ensure
          AppConfig[:service_lifecycle] = origin
        end
      end
    end

    describe "#create_snapshot" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        post :create_snapshot, :id => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        post :create_snapshot, :id => 'xxx'
        response.status.should == 404
      end

      it 'should create a snapshot job' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:create_snapshot).with(:service_id => @cfg.name).returns job

        post :create_snapshot, :id => @cfg.name
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end

    end

    describe "#enum_snapshots" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        get :enum_snapshots, :id => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        get :enum_snapshots, :id => 'xxx'
        response.status.should == 404
      end

      it 'should enum snapshots' do
        snapshots = VCAP::Services::Api::SnapshotList.decode(
          {
          :snapshots => [{:snapshot_id => "abc"}]
          }.to_json
        )
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:enum_snapshots).with(:service_id => @cfg.name).returns snapshots

        post :enum_snapshots, :id => @cfg.name
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["snapshots"].size.should == 1
        resp["snapshots"][0]["snapshot_id"].should == "abc"
      end
    end

    describe "#snapshot_details" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        get :snapshot_details, :id => 'xxx' , :sid => 'yyy'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        get :snapshot_details, :id => 'xxx', :sid => 'yyy'
        response.status.should == 404
      end

      it 'should get snapshot_details' do
        snapshot = VCAP::Services::Api::Snapshot.decode(
          {
            :snapshot_id => "abc",
            :date => "1",
            :size => 123
          }.to_json
        )
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:snapshot_details).with(:service_id => @cfg.name, :snapshot_id => snapshot.snapshot_id).returns snapshot

        get :snapshot_details, :id => @cfg.name, :sid => snapshot.snapshot_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["snapshot_id"].should == "abc"
      end

      it "should handle not found error in snapshot details" do
        err = VCAP::Services::Api::ServiceGatewayClient::NotFoundResponse.new(
            VCAP::Services::Api::ServiceErrorResponse.decode(
            {:code => 10000, :description => "not found"}.to_json
          )
        )
        snapshot_id = "abc"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:snapshot_details).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).raises err

        get :snapshot_details, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 404
      end
    end

    describe "#rollback_snapshot" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        put :rollback_snapshot, :id => 'xxx', :sid => 'yyy'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        put :rollback_snapshot, :id => 'xxx' , :sid => 'yyy'
        response.status.should == 404
      end

      it 'should rollback a snapshot' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        snapshot_id = "abc"

        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:rollback_snapshot).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).returns job

        put :rollback_snapshot, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end

      it "should handle not found error in rollback snapshot" do
        err = VCAP::Services::Api::ServiceGatewayClient::NotFoundResponse.new(
            VCAP::Services::Api::ServiceErrorResponse.decode(
            {:code => 10000, :description => "not found"}.to_json
          )
        )
        snapshot_id = "abc"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:rollback_snapshot).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).raises err

        put :rollback_snapshot, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 404
      end
    end

    describe "#delete_snapshot" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        delete :delete_snapshot, :id => 'xxx', :sid => 'yyy'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        delete :delete_snapshot, :id => 'xxx' , :sid => 'yyy'
        response.status.should == 404
      end

      it 'should delete a snapshot' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        snapshot_id = "abc"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:delete_snapshot).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).returns job

        delete :delete_snapshot, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end

      it "should handle not found error in delete snapshot" do
        err = VCAP::Services::Api::ServiceGatewayClient::NotFoundResponse.new(
            VCAP::Services::Api::ServiceErrorResponse.decode(
            {:code => 10000, :description => "not found"}.to_json
          )
        )
        snapshot_id = "abc"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:delete_snapshot).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).raises err

        delete :delete_snapshot, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 404
      end
    end

    describe "#serialized_url" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        get :serialized_url, :id => 'xxx', :sid => '1'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        get :serialized_url, :id => 'xxx', :sid => '1'
        response.status.should == 404
      end

      it 'should get serialized url' do
        url = "http://api.vcap.me"
        snapshot_id = "abc"
        serialized_url = VCAP::Services::Api::SerializedURL.new(:url  => url)
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:serialized_url).with(:service_id => @cfg.name, :snapshot_id => snapshot_id ).returns serialized_url

        get :serialized_url, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["url"].should == url
      end
    end

    describe "#create_serialized_url" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        post :create_serialized_url, :id => 'xxx', :sid => '1'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        post :create_serialized_url, :id => 'xxx', :sid => '1'
        response.status.should == 404
      end

      it 'should create serialized url job' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        snapshot_id = "abc"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:create_serialized_url).with(:service_id => @cfg.name, :snapshot_id => snapshot_id).returns job

        post :create_serialized_url, :id => @cfg.name, :sid => snapshot_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end
    end

    describe "#import_from_url" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        put :import_from_url, :id => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        put_msg :import_from_url, :id => 'xxx' do
          VCAP::Services::Api::SerializedURL.new(:url  => 'http://api.vcap.me')
        end
        response.status.should == 404
      end

      it 'should return bad request for malformed request' do
        put_msg :import_from_url, :id => 'xxx' do
          # supply wrong request
          VCAP::Services::Api::SerializedData.new(:data => "raw_data")
        end
        response.status.should == 400
      end

      it 'should create import from url job' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        url = "http://api.cloudfoundry.com"

        req = VCAP::Services::Api::SerializedURL.new(:url => url)
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:import_from_url).with(anything).returns job

        put_msg :import_from_url, :id => @cfg.name do
          req
        end
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end
    end

    describe "#import_from_data" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        put :import_from_data, :id => 'xxx'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        put_msg :import_from_data, :id => 'xxx' do
          VCAP::Services::Api::SerializedData.new(:data  => 'raw_data')
        end
        response.status.should == 404
      end

      it 'should create import from data job' do
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => "abc",
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        req = VCAP::Services::Api::SerializedData.new(:data => 'raw_data' )
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:import_from_data).with(anything).returns job

        put_msg :import_from_data, :id => @cfg.name do
          req
        end
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == "abc"
      end
    end

    describe "#job_info" do
      before :each do
        cfg = ServiceConfig.new(:name => 'lifecycle', :alias => 'bar', :service => @svc, :user => @user)
        cfg.save
        cfg.should be_valid
        @cfg = cfg
      end

      it 'should return not authorized for unknown users' do
        request.env['HTTP_AUTHORIZATION'] = UserToken.create('bar@foo.com').encode
        get :job_info, :id => 'xxx', :job_id => 'yyy'
        response.status.should == 403
      end

      it 'should return not found for unknown ids' do
        get :job_info, :id => 'xxx' , :job_id => 'yyy'
        response.status.should == 404
      end

      it 'should return job_info' do
        job_id = "job1"
        job = VCAP::Services::Api::Job.decode(
          {
          :job_id => job_id,
          :status => "queued",
          :start_time => "1"
          }.to_json
        )
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:job_info).with(:service_id => @cfg.name, :job_id => job_id).returns job

        get :job_info, :id => @cfg.name, :job_id => job_id
        response.status.should == 200
        resp = Yajl::Parser.parse(response.body)
        resp["job_id"].should == job_id
      end

      it "should handle not found error in get job_info" do
        err = VCAP::Services::Api::ServiceGatewayClient::NotFoundResponse.new(
            VCAP::Services::Api::ServiceErrorResponse.decode(
            {:code => 10000, :description => "job not found"}.to_json
          )
        )
        job_id = "job1"
        VCAP::Services::Api::ServiceGatewayClient.any_instance.stubs(:job_info).with(:service_id => @cfg.name, :job_id => job_id).raises err

        get :job_info, :id => @cfg.name, :job_id => job_id
        response.status.should == 404
      end
    end
  end

  def start_gateway(svc, shim)
    svc_info = {
      :name    => svc.name,
      :version => svc.version
    }
    uri = URI.parse(svc.url)
    gateway = VCAP::Services::SynchronousServiceGateway.new(:service => svc_info, :token => svc.token, :provisioner => shim)
    pid = Process.fork do
      # Prevent the subscriptions registered with the rails initializers from running when we fork the server and start it.
      # If we don't do this we run the risk of a) starting NATS if it isn't running, or b) sending messages
      # through an existing NATS server, possibly upsetting already running tests.
      EM.instance_variable_set(:@next_tick_queue, [])

      outfile = File.new('/dev/null', 'w+')
      $stderr.reopen(outfile)
      $stdout.reopen(outfile)
      trap("INT") { exit }
      Thin::Server.start(uri.host, uri.port, gateway, :signals => false)
    end
    server_alive = wait_for {port_open? uri.port}
    server_alive.should be_true

    # In case an exception is thrown before we can cleanup
    at_exit { Process.kill(9, pid) if VCAP.process_running?(pid) }

    pid
  end

  def stop_gateway(pid)
    Process.kill("INT", pid)
    Process.waitpid(pid)
  end

  def post_msg(*args, &blk)
    msg = yield
    request.env['RAW_POST_DATA'] = msg.encode
    post(*args)
  end

  def put_msg(*args, &blk)
    msg = yield
    request.env['RAW_POST_DATA'] = msg.encode
    put(*args)
  end

  def delete_msg(*args, &blk)
    msg = yield
    request.env['RAW_POST_DATA'] = msg.encode
    delete(*args)
  end

  def port_open?(port)
    port_open = true
    begin
      s = TCPSocket.new('localhost', port)
      s.close()
    rescue
      port_open = false
    end
    port_open
  end

  def wait_for(timeout=5, &predicate)
    start = Time.now()
    cond_met = predicate.call()
    while !cond_met && ((Time.new() - start) < timeout)
      cond_met = predicate.call()
      sleep(0.2)
    end
    cond_met
  end

end