Fix flakey tests related to ACL token updates

hashicorp · Mar 6, 2023 · 76a5d2f · 76a5d2f
1 parent 63204b5
commit 76a5d2f
Showing 1 changed file with 69 additions and 48 deletions.
diff --git a/command/acl/token/update/token_update_test.go b/command/acl/token/update/token_update_test.go
@@ -109,22 +109,6 @@ func TestTokenUpdateCommand(t *testing.T) {
 		require.ElementsMatch(t, expected, token.NodeIdentities)
 	})
 
-	// update with append-node-identity
-	t.Run("append-node-identity", func(t *testing.T) {
-
-		token := run(t, []string{
-			"-http-addr=" + a.HTTPAddr(),
-			"-accessor-id=" + token.AccessorID,
-			"-token=root",
-			"-append-node-identity=third:node",
-			"-description=test token",
-		})
-
-		require.Len(t, token.NodeIdentities, 3)
-		require.Equal(t, "third", token.NodeIdentities[2].NodeName)
-		require.Equal(t, "node", token.NodeIdentities[2].Datacenter)
-	})
-
 	// update with policy by name
 	t.Run("policy-name", func(t *testing.T) {
 		token := run(t, []string{
@@ -165,19 +149,6 @@ func TestTokenUpdateCommand(t *testing.T) {
 		require.Equal(t, "service", token.ServiceIdentities[0].ServiceName)
 	})
 
-	// update with append-service-identity
-	t.Run("append-service-identity", func(t *testing.T) {
-		token := run(t, []string{
-			"-http-addr=" + a.HTTPAddr(),
-			"-accessor-id=" + token.AccessorID,
-			"-token=root",
-			"-append-service-identity=web",
-			"-description=test token",
-		})
-		require.Len(t, token.ServiceIdentities, 2)
-		require.Equal(t, "web", token.ServiceIdentities[1].ServiceName)
-	})
-
 	// update with no description shouldn't delete the current description
 	t.Run("merge-description", func(t *testing.T) {
 		token := run(t, []string{
@@ -219,27 +190,13 @@ func TestTokenUpdateCommandWithAppend(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	// create a token
-	token, _, err := client.ACL().TokenCreate(
-		&api.ACLToken{Description: "test", Policies: []*api.ACLTokenPolicyLink{{Name: policy.Name}}},
-		&api.WriteOptions{Token: "root"},
-	)
-	require.NoError(t, err)
-
 	//secondary policy
 	secondPolicy, _, policyErr := client.ACL().PolicyCreate(
 		&api.ACLPolicy{Name: "secondary-policy"},
 		&api.WriteOptions{Token: "root"},
 	)
 	require.NoError(t, policyErr)
 
-	//third policy
-	thirdPolicy, _, policyErr := client.ACL().PolicyCreate(
-		&api.ACLPolicy{Name: "third-policy"},
-		&api.WriteOptions{Token: "root"},
-	)
-	require.NoError(t, policyErr)
-
 	run := func(t *testing.T, args []string) *api.ACLToken {
 		ui := cli.NewMockUi()
 		cmd := New(ui)
@@ -255,28 +212,92 @@ func TestTokenUpdateCommandWithAppend(t *testing.T) {
 
 	// update with append-policy-name
 	t.Run("append-policy-name", func(t *testing.T) {
-		token := run(t, []string{
+		// create a token
+		token, _, err := client.ACL().TokenCreate(
+			&api.ACLToken{Description: "test", Policies: []*api.ACLTokenPolicyLink{{Name: policy.Name}}},
+			&api.WriteOptions{Token: "root"},
+		)
+		require.NoError(t, err)
+
+		responseToken := run(t, []string{
 			"-http-addr=" + a.HTTPAddr(),
 			"-accessor-id=" + token.AccessorID,
 			"-token=root",
 			"-append-policy-name=" + secondPolicy.Name,
 			"-description=test token",
 		})
 
-		require.Len(t, token.Policies, 2)
+		require.Len(t, responseToken.Policies, 2)
 	})
 
 	// update with append-policy-id
 	t.Run("append-policy-id", func(t *testing.T) {
-		token := run(t, []string{
+		// create a token
+		token, _, err := client.ACL().TokenCreate(
+			&api.ACLToken{Description: "test", Policies: []*api.ACLTokenPolicyLink{{Name: policy.Name}}},
+			&api.WriteOptions{Token: "root"},
+		)
+		require.NoError(t, err)
+
+		responseToken := run(t, []string{
+			"-http-addr=" + a.HTTPAddr(),
+			"-accessor-id=" + token.AccessorID,
+			"-token=root",
+			"-append-policy-id=" + secondPolicy.ID,
+			"-description=test token",
+		})
+
+		require.Len(t, responseToken.Policies, 2)
+	})
+
+	// update with append-node-identity
+	t.Run("append-node-identity", func(t *testing.T) {
+		// create a token
+		token, _, err := client.ACL().TokenCreate(
+			&api.ACLToken{
+				Description:    "test",
+				Policies:       []*api.ACLTokenPolicyLink{{Name: policy.Name}},
+				NodeIdentities: []*api.ACLNodeIdentity{{NodeName: "namenode", Datacenter: "somewhere"}},
+			},
+			&api.WriteOptions{Token: "root"},
+		)
+		require.NoError(t, err)
+
+		responseToken := run(t, []string{
 			"-http-addr=" + a.HTTPAddr(),
 			"-accessor-id=" + token.AccessorID,
 			"-token=root",
-			"-append-policy-id=" + thirdPolicy.ID,
+			"-append-node-identity=third:node",
 			"-description=test token",
 		})
 
-		require.Len(t, token.Policies, 3)
+		require.Len(t, responseToken.NodeIdentities, 2)
+		require.Equal(t, "third", responseToken.NodeIdentities[1].NodeName)
+		require.Equal(t, "node", responseToken.NodeIdentities[1].Datacenter)
+	})
+
+	// update with append-service-identity
+	t.Run("append-service-identity", func(t *testing.T) {
+		// create a token
+		token, _, err := client.ACL().TokenCreate(
+			&api.ACLToken{
+				Description:       "test",
+				Policies:          []*api.ACLTokenPolicyLink{{Name: policy.Name}},
+				ServiceIdentities: []*api.ACLServiceIdentity{{ServiceName: "service"}},
+			},
+			&api.WriteOptions{Token: "root"},
+		)
+		require.NoError(t, err)
+
+		responseToken := run(t, []string{
+			"-http-addr=" + a.HTTPAddr(),
+			"-accessor-id=" + token.AccessorID,
+			"-token=root",
+			"-append-service-identity=web",
+			"-description=test token",
+		})
+		require.Len(t, responseToken.ServiceIdentities, 2)
+		require.Equal(t, "web", responseToken.ServiceIdentities[1].ServiceName)
 	})
 }