mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-07 07:07:05 +02:00
Code Issues Projects Releases Wiki Activity
194241e1d1
vault/command/policy_fmt_test.go
Bruno Oliveira de Souza 194241e1d1
VAULT-35838: advance deprecation of duplicate HCL attributes to pending removal stage (#31215) 
* HCL dup attr deprecation: pending removal

* correct docs

* add changelog

* better error message for possible common errors

* Update website/content/partials/deprecation/duplicate-hcl-attributes.mdx

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>

* Update website/content/partials/deprecation/duplicate-hcl-attributes.mdx

Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>

---------

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>
2025-07-24 15:17:51 -03:00

153 lines
3.4 KiB
Go
Raw Blame History

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: BUSL-1.1
package command
import (
"os"
"strings"
"testing"
"github.com/hashicorp/cli"
"github.com/hashicorp/vault/helper/random"
"github.com/stretchr/testify/require"
)
func testPolicyFmtCommand(tb testing.TB) (*cli.MockUi, *PolicyFmtCommand) {
tb.Helper()
ui := cli.NewMockUi()
return ui, &PolicyFmtCommand{
BaseCommand: &BaseCommand{
UI: ui,
},
}
}
func TestPolicyFmtCommand_Run(t *testing.T) {
testCases := map[string]struct {
args []string
envVars map[string]string
policyArg string
out string
expected string
code int
}{
"not_enough_args": {
args: []string{},
out: "Not enough arguments",
code: 1,
},
"too_many_args": {
args: []string{"foo", "bar"},
out: "Too many arguments",
code: 1,
},
"default": {
policyArg: `
path "secret" {
capabilities = ["create", "update","delete"]
}`,
expected: `
path "secret" {
capabilities = ["create", "update", "delete"]
}
`,
code: 0,
},
"bad_hcl": {
policyArg: `dafdaf`,
out: "failed to parse policy",
code: 1,
},
"bad_policy": {
policyArg: `banana "foo" {}`,
out: "failed to parse policy",
code: 1,
},
"bad_policy2": {
policyArg: `path "secret" { capabilities = ["bogus"] }`,
out: "failed to parse policy",
code: 1,
},
// TODO (HCL_DUP_KEYS_DEPRECATION): remove this test once deprecation is fully done
"hcl_duplicate_key_env_set": {
policyArg: `
path "secret" {
capabilities = ["create", "update", "delete"]
capabilities = ["create"]
}
`,
envVars: map[string]string{random.AllowHclDuplicatesEnvVar: "true"},
code: 0,
out: "WARNING: Duplicate keys found in the provided policy, duplicate keys in HCL files are deprecated and will be forbidden in a future release.",
},
"hcl_duplicate_key_env_not_set": {
policyArg: `
path "secret" {
capabilities = ["create", "update", "delete"]
capabilities = ["create"]
}
`,
code: 1,
out: "failed to parse policy: The argument \"capabilities\" at 4:3 was already set. Each argument can only be defined once",
},
"hcl_duplicate_key_env_set_to_false": {
policyArg: `
path "secret" {
capabilities = ["create", "update", "delete"]
capabilities = ["create"]
}
`,
envVars: map[string]string{random.AllowHclDuplicatesEnvVar: "false"},
code: 1,
out: "failed to parse policy: The argument \"capabilities\" at 4:3 was already set. Each argument can only be defined once",
},
}
client, closer := testVaultServer(t)
t.Cleanup(closer)
for name, tc := range testCases {
t.Run(name, func(t *testing.T) {
r := require.New(t)
for k, v := range tc.envVars {
t.Setenv(k, v)
}
args := tc.args
if tc.policyArg != "" {
f := populateTempFile(t, "fmt-test-*.hcl", tc.policyArg)
args = append(args, f.Name())
}
ui, cmd := testPolicyFmtCommand(t)
cmd.client = client
code := cmd.Run(args)
r.Equal(tc.code, code)
if tc.out != "" {
t.Log(ui.ErrorWriter.String())
r.Contains(ui.ErrorWriter.String(), tc.out)
}
if tc.expected != "" {
contents, err := os.ReadFile(args[0])
r.NoError(err)
r.Equal(strings.TrimSpace(tc.expected), strings.TrimSpace(string(contents)))
}
})
}
}
// TestPolicyFmtCommandNoTabs asserts the CLI help has no tab characters.
func TestPolicyFmtCommandNoTabs(t *testing.T) {
t.Parallel()
_, cmd := testPolicyFmtCommand(t)
assertNoTabs(t, cmd)
}
Reference in New Issue View Git Blame Copy Permalink