mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-15 19:17:02 +02:00
a8b593614e
* adds ldap ember engine (#20786) * adds ldap as mountable and supported secrets engine (#20793) * removes active directory as mountable secrets engine (#20798) * LDAP Config Ember Data Setup (#20863) * adds secret-engine-path adapter * adds model, adapater and serializer for ldap config * adds test for ldap config adapter * addresses PR feedback * updates remaining instances of getURL in secrets-engine-path adapter * adds underscore to getURL method in kubernetes/config adapter * adds check config vars test for kubernetes/config adapter * adds comment regarding primaryKey in secrets-engine-path adapter * adds tab-page-header component for ldap secrets engine (#20941) * LDAP Config Route (#21059) * converts secret-mount-path service to ts and moves kubernetes fetch-config decorator to core addon and converts to ts * adds ldap config route * fixes withConfig import path in kubernetes roles route * updates types in ldap config route * adds unit tests for fetch-secret-config decorator * updates comments in fetch-secret-config decorator * renames fetch-secret-config decorator * LDAP Configure Page Component (#21384) * adds ldap page configure component * removes pauseTest and updates radio card selector in ldap config test * LDAP Configuration (#21430) * adds ldap configuration route * adds secrets-engine-mount-config component to core addon * adds ldap config-cta component * adds display fields to ldap configuration page and test * fixes ldap config-cta test * adds yield to secrets-engine-mount-config component * fixes tests * LDAP Overview Route and Page Component (#21579) * adds ldap overview route and page component * changes toolbar link action type for create role on overview page * LDAP Role Model, Adapter and Serializer (#21655) * adds model, adapter and serializer for ldap roles * addresses review feedback * changes ldap role type from tracked prop to attr and sets in adapter for query methods * adds assertions to verify that frontend only props are returned from query methods in ldap role adapter * LDAP Library Model, Adapter and Serializer (#21728) * adds model, adapter and serializer for ldap library * updates capitalization and punction for ldap role and library form fields * LDAP Roles Create and Edit (#21818) * moves stringify and jsonify helpers to core addon * adds validation error for ttl picker in form field component * adds ldap roles create and edit routes and page component * adds ldap mirage handler and factory for roles * adds example workflow to json editor component * adds tests for ldap page create and edit component * addresses feedback * LDAP Role Details (#22036) * adds ldap role route to pass down model to child routes * adds ldap role details route and page component * updates ldap role model capabilities checks * adds periods to error messages * removes modelFor from ldap roles edit and details routes * adds flash message on ldap role delete success * LDAP Roles (#22070) * adds ldap roles route and page component * update ldap role adapter tests and adds adapter options to query for partialErrorInfo * updates ldap role adapter based on PR feedback * adds filter-input component to core addon * updates ldap roles page to use filter-input component * updates ldap role adapter tests * LDAP Role Credentials (#22142) * adds ldap roles route and page component * update ldap role adapter tests and adds adapter options to query for partialErrorInfo * adds credentials actions to ldap roles list menu and fixes rotate action in details view * adds ldap role credentials route and page component * adds tests for ldap role credentials * LDAP Library Create and Edit (#22171) * adds ldap library create/edit routes and page component * adds ldap library create-and-edit tests and library mirage factory * updates form-field component to display validation errors and warnings for all fields * updates ldap library edit route class name * updates ldap library model interface name * adds missing period in flash message * LDAP Libraries (#22184) * updates interface and class names in ldap roles route * adds ldap libraries route and page component * fixes lint error * LDAP Library Details (#22200) * updates interface and class names in ldap roles route * adds ldap libraries route and page component * fixes lint error * adds ldap library details route and page component * LDAP Library Details Configuration (#22201) * updates interface and class names in ldap roles route * adds ldap libraries route and page component * fixes lint error * adds ldap library details route and page component * adds ldap library details configuration route and page component * updates ldap library check-in enforcement value mapping * fixes issue in code mirror modifier after merging upgrade * fixes failing database secrets test * LDAP Library Account Details (#22287) * adds route and page component for ldap library accounts * adds ldap component for checked out accounts * updates ldap library adapter tests * LDAP Library Check-out (#22289) * adds route and page component for ldap library accounts * adds ldap component for checked out accounts * adds route and page component for ldap library checkout * addresses PR feedback * LDAP Overview Cards (#22325) * adds overview cards to ldap overview route * adds create library toolbar action to ldap overview route * adds acceptance tests for ldap workflows (#22375) * Fetch Secrets Engine Config Decorator Docs (#22416) * removes uneccesary asyncs from ldap route model hooks * updates ldap overview route class name * adds documentation for fetch-secrets-engine-config decorator * add changelog * adding back external links, missed due to merge. * changelog * fix test after merging in dashboard work * Update 20790.txt --------- Co-authored-by: Angel Garbarino <angel@hashicorp.com> Co-authored-by: Angel Garbarino <Monkeychip@users.noreply.github.com>
151 lines
5.4 KiB
JavaScript
151 lines
5.4 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: MPL-2.0
|
|
*/
|
|
|
|
import { module, test } from 'qunit';
|
|
import { setupRenderingTest } from 'ember-qunit';
|
|
import { setupEngine } from 'ember-engines/test-support';
|
|
import { setupMirage } from 'ember-cli-mirage/test-support';
|
|
import { render, click, fillIn } from '@ember/test-helpers';
|
|
import hbs from 'htmlbars-inline-precompile';
|
|
import { Response } from 'miragejs';
|
|
import sinon from 'sinon';
|
|
import { generateBreadcrumbs } from 'vault/tests/helpers/ldap';
|
|
|
|
const selectors = {
|
|
radioCard: '[data-test-radio-card="OpenLDAP"]',
|
|
save: '[data-test-config-save]',
|
|
binddn: '[data-test-field="binddn"] input',
|
|
bindpass: '[data-test-field="bindpass"] input',
|
|
};
|
|
|
|
module('Integration | Component | ldap | Page::Configure', function (hooks) {
|
|
setupRenderingTest(hooks);
|
|
setupEngine(hooks, 'ldap');
|
|
setupMirage(hooks);
|
|
|
|
const fillAndSubmit = async (rotate) => {
|
|
await click(selectors.radioCard);
|
|
await fillIn(selectors.binddn, 'foo');
|
|
await fillIn(selectors.bindpass, 'bar');
|
|
await click(selectors.save);
|
|
await click(`[data-test-save-${rotate}-rotate]`);
|
|
};
|
|
|
|
hooks.beforeEach(function () {
|
|
this.store = this.owner.lookup('service:store');
|
|
this.newModel = this.store.createRecord('ldap/config', { backend: 'ldap-new' });
|
|
this.existingConfig = {
|
|
schema: 'openldap',
|
|
binddn: 'cn=vault,ou=Users,dc=hashicorp,dc=com',
|
|
bindpass: 'foobar',
|
|
};
|
|
this.store.pushPayload('ldap/config', {
|
|
modelName: 'ldap/config',
|
|
backend: 'ldap-edit',
|
|
...this.existingConfig,
|
|
});
|
|
this.editModel = this.store.peekRecord('ldap/config', 'ldap-edit');
|
|
this.breadcrumbs = generateBreadcrumbs('ldap', 'configure');
|
|
this.model = this.newModel; // most of the tests use newModel but set this to editModel when needed
|
|
this.renderComponent = () => {
|
|
return render(
|
|
hbs`<div id="modal-wormhole"></div><Page::Configure @model={{this.model}} @breadcrumbs={{this.breadcrumbs}} />`,
|
|
{
|
|
owner: this.engine,
|
|
}
|
|
);
|
|
};
|
|
this.transitionStub = sinon.stub(this.owner.lookup('service:router'), 'transitionTo');
|
|
});
|
|
|
|
test('it should render empty state when schema is not selected', async function (assert) {
|
|
await this.renderComponent();
|
|
|
|
assert.dom('[data-test-empty-state-title]').hasText('Choose an option', 'Empty state title renders');
|
|
assert
|
|
.dom('[data-test-empty-state-message]')
|
|
.hasText('Pick an option above to see available configuration options', 'Empty state title renders');
|
|
assert.dom(selectors.save).isDisabled('Save button is disabled when schema is not selected');
|
|
|
|
await click(selectors.radioCard);
|
|
assert
|
|
.dom('[data-test-component="empty-state"]')
|
|
.doesNotExist('Empty state is hidden when schema is selected');
|
|
});
|
|
|
|
test('it should render validation messages for invalid form', async function (assert) {
|
|
await this.renderComponent();
|
|
|
|
await click(selectors.radioCard);
|
|
await click(selectors.save);
|
|
|
|
assert
|
|
.dom('[data-test-field="binddn"] [data-test-inline-error-message]')
|
|
.hasText('Administrator distinguished name is required.', 'Validation message renders for binddn');
|
|
assert
|
|
.dom('[data-test-field="bindpass"] [data-test-inline-error-message]')
|
|
.hasText('Administrator password is required.', 'Validation message renders for bindpass');
|
|
assert
|
|
.dom('[data-test-invalid-form-message] p')
|
|
.hasText('There are 2 errors with this form.', 'Invalid form message renders');
|
|
});
|
|
|
|
test('it should save new configuration without rotating root password', async function (assert) {
|
|
assert.expect(2);
|
|
|
|
this.server.post('/ldap-new/config', () => {
|
|
assert.ok(true, 'POST request made to save config');
|
|
return new Response(204, {});
|
|
});
|
|
|
|
await this.renderComponent();
|
|
await fillAndSubmit('without');
|
|
|
|
assert.ok(
|
|
this.transitionStub.calledWith('vault.cluster.secrets.backend.ldap.configuration'),
|
|
'Transitions to configuration route on save success'
|
|
);
|
|
});
|
|
|
|
test('it should save new configuration and rotate root password', async function (assert) {
|
|
assert.expect(3);
|
|
|
|
this.server.post('/ldap-new/config', () => {
|
|
assert.ok(true, 'POST request made to save config');
|
|
return new Response(204, {});
|
|
});
|
|
this.server.post('/ldap-new/rotate-root', () => {
|
|
assert.ok(true, 'POST request made to rotate root password');
|
|
return new Response(204, {});
|
|
});
|
|
|
|
await this.renderComponent();
|
|
await fillAndSubmit('with');
|
|
|
|
assert.ok(
|
|
this.transitionStub.calledWith('vault.cluster.secrets.backend.ldap.configuration'),
|
|
'Transitions to configuration route on save success'
|
|
);
|
|
});
|
|
|
|
test('it should populate fields when editing form', async function (assert) {
|
|
this.model = this.editModel;
|
|
|
|
await this.renderComponent();
|
|
|
|
assert.dom(selectors.radioCard).isChecked('Correct radio card is checked for schema value');
|
|
assert.dom(selectors.binddn).hasValue(this.existingConfig.binddn, 'binddn value renders');
|
|
|
|
await fillIn(selectors.binddn, 'foobar');
|
|
await click('[data-test-config-cancel]');
|
|
|
|
assert.strictEqual(this.model.binddn, this.existingConfig.binddn, 'Model is rolled back on cancel');
|
|
assert.ok(
|
|
this.transitionStub.calledWith('vault.cluster.secrets.backend.ldap.configuration'),
|
|
'Transitions to configuration route on save success'
|
|
);
|
|
});
|
|
});
|