aherman
/
boundary
mirror of https://github.com/hashicorp/boundary
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'jeff-error-cli-update'
${ noResults }
boundary/internal/cmd/commands/config/encryptdecrypt_test.go

105 lines
2.4 KiB
Raw Permalink Blame History

package config
import (
"bufio"
"bytes"
"fmt"
"io/ioutil"
"os"
"strings"
"testing"
"github.com/hashicorp/boundary/internal/cmd/base"
"github.com/mitchellh/cli"
"github.com/stretchr/testify/assert"
)
const (
configEncryptPath = "./fixtures/config_encrypt.hcl"
configDecryptPath = "./fixtures/config_decrypt.hcl"
configKmsPath = "./fixtures/config_kms.hcl"
configExtEncryptPath = "./fixtures/config_ext_encrypt.hcl"
configExtEncryptStrippedPath = "./fixtures/config_ext_encrypt_stripped.hcl"
configExtDecryptPath = "./fixtures/config_ext_decrypt.hcl"
)
func TestEncryptDecrypt(t *testing.T) {
cases := []struct {
f string
config string
configKms string
exp string
strip bool
}{
{
f: "encrypt",
config: configEncryptPath,
},
{
f: "decrypt",
config: configDecryptPath,
exp: configEncryptPath,
},
{
f: "encrypt-ext",
config: configExtEncryptPath,
configKms: configKmsPath,
},
{
f: "decrypt-ext",
config: configExtDecryptPath,
configKms: configKmsPath,
exp: configExtEncryptPath,
},
{
f: "decrypt-ext-strip",
config: configExtDecryptPath,
configKms: configKmsPath,
exp: configExtEncryptStrippedPath,
},
}
for _, c := range cases {
t.Run(fmt.Sprintf("Test encrypt %v", c.f), func(t *testing.T) {
var b bytes.Buffer
ui := &cli.BasicUi{
Reader: bufio.NewReader(os.Stdin),
Writer: &b,
ErrorWriter: &b,
}
cmd := &EncryptDecryptCommand{
Command: base.NewCommand(ui),
Func: c.f,
}
args := []string{"-config", c.config}
if c.configKms != "" {
args = append(args, "-config-kms", c.configKms)
}
if c.strip {
args = append(args, "-strip")
}
if err := cmd.Run(args); err != 0 {
assert.Equal(t, err, 0)
}
got := b.String()
assert.Greater(t, len(got), 0)
fmt.Printf("%s\n", got)
// If it's encrypting, then we can assume that it did the right thing since
// there are many tests on the underlying codebase for that. If it's not
// encrypting, compare it to the cleartext to verify because we can.
if c.f == "decrypt" {
expected, err := ioutil.ReadFile(c.exp)
assert.NoError(t, err)
assert.Equal(t, strings.TrimSpace(string(expected)), strings.TrimSpace(string(got)))
}
})
}
}
Reference in new issue View Git Blame Copy Permalink