package config import ( "testing" "time" "github.com/hashicorp/go-sockaddr" "github.com/hashicorp/shared-secure-libs/configutil" "github.com/stretchr/testify/assert" ) func TestDevController(t *testing.T) { actual, err := DevController() if err != nil { t.Fatal(err) } addr, err := sockaddr.NewIPAddr("127.0.0.1") if err != nil { t.Fatal(err) } exp := &Config{ SharedConfig: &configutil.SharedConfig{ DisableMlock: true, Listeners: []*configutil.Listener{ { Type: "tcp", Purpose: []string{"api"}, TLSDisable: true, ProxyProtocolBehavior: "allow_authorized", ProxyProtocolAuthorizedAddrs: []*sockaddr.SockAddrMarshaler{ {SockAddr: addr}, }, CorsEnabled: true, CorsAllowedOrigins: []string{"*"}, }, { Type: "tcp", Purpose: []string{"cluster"}, TLSDisable: true, ProxyProtocolBehavior: "allow_authorized", ProxyProtocolAuthorizedAddrs: []*sockaddr.SockAddrMarshaler{ {SockAddr: addr}, }, }, }, Seals: []*configutil.KMS{ { Type: "aead", Purpose: []string{"root"}, Config: map[string]string{ "aead_type": "aes-gcm", "key_id": "global_root", }, }, { Type: "aead", Purpose: []string{"worker-auth"}, Config: map[string]string{ "aead_type": "aes-gcm", "key_id": "global_worker-auth", }, }, { Type: "aead", Purpose: []string{"recovery"}, Config: map[string]string{ "aead_type": "aes-gcm", "key_id": "global_recovery", }, }, }, Telemetry: &configutil.Telemetry{ DisableHostname: true, PrometheusRetentionTime: 24 * time.Hour, UsageGaugePeriod: 10 * time.Minute, MaximumGaugeCardinality: 500, }, }, Controller: &Controller{ Name: "dev-controller", Description: "A default controller created in dev mode", }, DevController: true, } exp.Listeners[0].RawConfig = actual.Listeners[0].RawConfig exp.Listeners[1].RawConfig = actual.Listeners[1].RawConfig exp.Seals[0].Config["key"] = actual.Seals[0].Config["key"] exp.Seals[1].Config["key"] = actual.Seals[1].Config["key"] exp.Seals[2].Config["key"] = actual.Seals[2].Config["key"] exp.Controller.DevControllerKey = actual.Seals[0].Config["key"] exp.Controller.DevWorkerAuthKey = actual.Seals[1].Config["key"] exp.Controller.DevRecoveryKey = actual.Seals[2].Config["key"] assert.Equal(t, exp, actual) } func TestDevWorker(t *testing.T) { actual, err := DevWorker() if err != nil { t.Fatal(err) } addr, err := sockaddr.NewIPAddr("127.0.0.1") if err != nil { t.Fatal(err) } exp := &Config{ SharedConfig: &configutil.SharedConfig{ DisableMlock: true, Listeners: []*configutil.Listener{ { Type: "tcp", TLSDisable: true, Purpose: []string{"proxy"}, ProxyProtocolBehavior: "allow_authorized", ProxyProtocolAuthorizedAddrs: []*sockaddr.SockAddrMarshaler{ {SockAddr: addr}, }, }, }, Telemetry: &configutil.Telemetry{ DisableHostname: true, PrometheusRetentionTime: 24 * time.Hour, UsageGaugePeriod: 10 * time.Minute, MaximumGaugeCardinality: 500, }, }, Worker: &Worker{ Name: "dev-worker", Description: "A default worker created in dev mode", Controllers: []string{"127.0.0.1"}, }, } exp.Listeners[0].RawConfig = actual.Listeners[0].RawConfig assert.Equal(t, exp, actual) }