mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-22 15:11:07 +02:00
404356a805
* adding skip flag to db creation * update field name & add default val change to static role * transfer both fields to be toggle buttons * add changelog * test updates * leftover * test fixes * fix tests pt2 * test pt3 * adding conditional to disable role type selection * adding alert when overriding db default * cleanup * pr comments pt1 - updates to logic, adding empty state & form field test * moving empty state placement * updating form field logic for subtext, test fixes * restructuring a bit to use a getter / eliminate separate function * update * fix typo, bring back tests * fixes and cleanup
205 lines
6.3 KiB
JavaScript
205 lines
6.3 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import { module, test } from 'qunit';
|
|
import { setupTest } from 'ember-qunit';
|
|
import { v4 as uuidv4 } from 'uuid';
|
|
|
|
module('Unit | Serializer | database/connection', function (hooks) {
|
|
setupTest(hooks);
|
|
|
|
hooks.beforeEach(function () {
|
|
this.uid = uuidv4();
|
|
this.store = this.owner.lookup('service:store');
|
|
});
|
|
test('it should serialize only keys that are valid for the database type (elasticsearch)', function (assert) {
|
|
const backend = `db-serializer-test-${this.uid}`;
|
|
const name = `elastic-test-${this.uid}`;
|
|
const record = this.store.createRecord('database/connection', {
|
|
plugin_name: 'elasticsearch-database-plugin',
|
|
backend,
|
|
name,
|
|
allowed_roles: ['readonly'],
|
|
connection_url: 'http://localhost:9200',
|
|
url: 'http://localhost:9200',
|
|
username: 'elastic',
|
|
password: 'changeme',
|
|
skip_static_role_rotation_import: false,
|
|
tls_ca: 'some-value',
|
|
ca_cert: undefined, // does not send undefined values
|
|
});
|
|
const expectedResult = {
|
|
plugin_name: 'elasticsearch-database-plugin',
|
|
backend,
|
|
name,
|
|
verify_connection: true,
|
|
allowed_roles: ['readonly'],
|
|
url: 'http://localhost:9200',
|
|
username: 'elastic',
|
|
password: 'changeme',
|
|
skip_static_role_rotation_import: false,
|
|
insecure: false,
|
|
};
|
|
|
|
const serializedRecord = record.serialize();
|
|
assert.deepEqual(
|
|
serializedRecord,
|
|
expectedResult,
|
|
'invalid elasticsearch options were not added to the payload'
|
|
);
|
|
});
|
|
|
|
test('it should normalize values for the database type (elasticsearch)', function (assert) {
|
|
const serializer = this.owner.lookup('serializer:database/connection');
|
|
const normalized = serializer.normalizeSecrets({
|
|
request_id: 'request-id',
|
|
lease_id: '',
|
|
renewable: false,
|
|
lease_duration: 0,
|
|
data: {
|
|
allowed_roles: ['readonly'],
|
|
connection_details: {
|
|
backend: 'database',
|
|
insecure: false,
|
|
url: 'https://localhost:9200',
|
|
username: 'root',
|
|
},
|
|
password_policy: '',
|
|
plugin_name: 'elasticsearch-database-plugin',
|
|
plugin_version: '',
|
|
root_credentials_rotate_statements: [],
|
|
},
|
|
wrap_info: null,
|
|
warnings: null,
|
|
auth: null,
|
|
mount_type: 'database',
|
|
backend: 'database',
|
|
id: 'elastic-test',
|
|
});
|
|
const expectedResult = {
|
|
allowed_roles: ['readonly'],
|
|
backend: 'database',
|
|
id: 'elastic-test',
|
|
insecure: false,
|
|
name: 'elastic-test',
|
|
password_policy: '',
|
|
plugin_name: 'elasticsearch-database-plugin',
|
|
plugin_version: '',
|
|
root_credentials_rotate_statements: [],
|
|
root_rotation_statements: [],
|
|
url: 'https://localhost:9200',
|
|
username: 'root',
|
|
};
|
|
assert.deepEqual(normalized, expectedResult, `Normalizes and flattens database response`);
|
|
});
|
|
|
|
test('it should normalize values for the database type (oracle)', function (assert) {
|
|
const serializer = this.owner.lookup('serializer:database/connection');
|
|
const normalized = serializer.normalizeSecrets({
|
|
request_id: 'request-id',
|
|
lease_id: '',
|
|
renewable: false,
|
|
lease_duration: 0,
|
|
data: {
|
|
allowed_roles: ['*'],
|
|
connection_details: {
|
|
backend: 'database',
|
|
connection_url: '%7B%7Busername%7D%7D/%7B%7Bpassword%7D%7D@//localhost:1521/ORCLPDB1',
|
|
max_connection_lifetime: '0s',
|
|
max_idle_connections: 0,
|
|
max_open_connections: 3,
|
|
username: 'VAULTADMIN',
|
|
},
|
|
password_policy: '',
|
|
plugin_name: 'vault-plugin-database-oracle',
|
|
plugin_version: '',
|
|
root_credentials_rotate_statements: [],
|
|
verify_connection: true,
|
|
},
|
|
wrap_info: null,
|
|
warnings: null,
|
|
auth: null,
|
|
mount_type: 'database',
|
|
backend: 'database',
|
|
id: 'oracle-test',
|
|
});
|
|
const expectedResult = {
|
|
allowed_roles: ['*'],
|
|
backend: 'database',
|
|
connection_url: '{{username}}/{{password}}@//localhost:1521/ORCLPDB1',
|
|
id: 'oracle-test',
|
|
max_connection_lifetime: '0s',
|
|
max_idle_connections: 0,
|
|
max_open_connections: 3,
|
|
name: 'oracle-test',
|
|
password_policy: '',
|
|
plugin_name: 'vault-plugin-database-oracle',
|
|
plugin_version: '',
|
|
root_credentials_rotate_statements: [],
|
|
root_rotation_statements: [],
|
|
username: 'VAULTADMIN',
|
|
verify_connection: true,
|
|
};
|
|
assert.deepEqual(normalized, expectedResult, `Normalizes and flattens database response`);
|
|
});
|
|
|
|
test('it should normalize values if some params do not exist', function (assert) {
|
|
const serializer = this.owner.lookup('serializer:database/connection');
|
|
const normalized = serializer.normalizeSecrets({
|
|
request_id: 'request-id',
|
|
lease_id: '',
|
|
renewable: false,
|
|
lease_duration: 0,
|
|
data: {
|
|
allowed_roles: ['*'],
|
|
connection_details: { backend: 'database' }, // no connection_url param intentionally
|
|
plugin_name: 'vault-postgres-db',
|
|
},
|
|
wrap_info: null,
|
|
warnings: null,
|
|
auth: null,
|
|
mount_type: 'database',
|
|
backend: 'database',
|
|
id: 'db-test',
|
|
});
|
|
const expectedResult = {
|
|
allowed_roles: ['*'],
|
|
backend: 'database',
|
|
id: 'db-test',
|
|
name: 'db-test',
|
|
plugin_name: 'vault-postgres-db',
|
|
};
|
|
assert.deepEqual(normalized, expectedResult, `Normalizes and flattens database response`);
|
|
});
|
|
|
|
test('it should fail gracefully if no connection_details', function (assert) {
|
|
const serializer = this.owner.lookup('serializer:database/connection');
|
|
const normalized = serializer.normalizeSecrets({
|
|
request_id: 'request-id',
|
|
lease_id: '',
|
|
renewable: false,
|
|
lease_duration: 0,
|
|
data: {
|
|
allowed_roles: ['*'],
|
|
plugin_name: 'vault-postgres-db',
|
|
},
|
|
wrap_info: null,
|
|
warnings: null,
|
|
auth: null,
|
|
mount_type: 'database',
|
|
backend: 'database',
|
|
id: 'db-test',
|
|
});
|
|
const expectedResult = {
|
|
allowed_roles: ['*'],
|
|
backend: 'database',
|
|
id: 'db-test',
|
|
name: 'db-test',
|
|
plugin_name: 'vault-postgres-db',
|
|
};
|
|
assert.deepEqual(normalized, expectedResult, `Normalizes and flattens database response`);
|
|
});
|
|
});
|