// Copyright (c) HashiCorp, Inc. // SPDX-License-Identifier: MPL-2.0 package http import ( "testing" "github.com/hashicorp/vault/sdk/helper/jsonutil" "github.com/hashicorp/vault/vault" ) func TestSysRenew(t *testing.T) { core, _, token := vault.TestCoreUnsealed(t) ln, addr := TestServer(t, core) defer ln.Close() TestServerAuth(t, addr, token) // write secret resp := testHttpPut(t, token, addr+"/v1/secret/foo", map[string]interface{}{ "data": "bar", "lease": "1h", }) testResponseStatus(t, resp, 204) // read secret resp = testHttpGet(t, token, addr+"/v1/secret/foo") var result struct { LeaseID string `json:"lease_id"` } if err := jsonutil.DecodeJSONFromReader(resp.Body, &result); err != nil { t.Fatalf("bad: %s", err) } var renewResult struct { LeaseID string `json:"lease_id"` Data map[string]interface{} `json:"data"` } resp = testHttpPut(t, token, addr+"/v1/sys/renew/"+result.LeaseID, nil) testResponseStatus(t, resp, 200) if err := jsonutil.DecodeJSONFromReader(resp.Body, &renewResult); err != nil { t.Fatal(err) } if result.LeaseID != renewResult.LeaseID { t.Fatal("lease id changed in renew request") } resp = testHttpPut(t, token, addr+"/v1/sys/leases/renew/"+result.LeaseID, nil) testResponseStatus(t, resp, 200) if err := jsonutil.DecodeJSONFromReader(resp.Body, &renewResult); err != nil { t.Fatal(err) } if result.LeaseID != renewResult.LeaseID { t.Fatal("lease id changed in renew request") } } func TestSysRevoke(t *testing.T) { core, _, token := vault.TestCoreUnsealed(t) ln, addr := TestServer(t, core) defer ln.Close() TestServerAuth(t, addr, token) resp := testHttpPut(t, token, addr+"/v1/sys/revoke/secret/foo/1234", nil) testResponseStatus(t, resp, 204) } func TestSysRevokePrefix(t *testing.T) { core, _, token := vault.TestCoreUnsealed(t) ln, addr := TestServer(t, core) defer ln.Close() TestServerAuth(t, addr, token) resp := testHttpPut(t, token, addr+"/v1/sys/revoke-prefix/secret/foo/1234", nil) testResponseStatus(t, resp, 204) }