open-consul/agent/consul/operator_raft_endpoint_test.go

package consul

import (
	"fmt"
	"os"
	"reflect"
	"strings"
	"testing"

	"github.com/hashicorp/consul/agent/consul/structs"
	"github.com/hashicorp/consul/testrpc"
	"github.com/hashicorp/net-rpc-msgpackrpc"
	"github.com/hashicorp/raft"
)

func TestOperator_RaftGetConfiguration(t *testing.T) {
	dir1, s1 := testServer(t)
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	arg := structs.DCSpecificRequest{
		Datacenter: "dc1",
	}
	var reply structs.RaftConfigurationResponse
	if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply); err != nil {
		t.Fatalf("err: %v", err)
	}

	future := s1.raft.GetConfiguration()
	if err := future.Error(); err != nil {
		t.Fatalf("err: %v", err)
	}
	if len(future.Configuration().Servers) != 1 {
		t.Fatalf("bad: %v", future.Configuration().Servers)
	}
	me := future.Configuration().Servers[0]
	expected := structs.RaftConfigurationResponse{
		Servers: []*structs.RaftServer{
			&structs.RaftServer{
				ID:      me.ID,
				Node:    s1.config.NodeName,
				Address: me.Address,
				Leader:  true,
				Voter:   true,
			},
		},
		Index: future.Index(),
	}
	if !reflect.DeepEqual(reply, expected) {
		t.Fatalf("bad: %v", reply)
	}
}

func TestOperator_RaftGetConfiguration_ACLDeny(t *testing.T) {
	dir1, s1 := testServerWithConfig(t, func(c *Config) {
		c.ACLDatacenter = "dc1"
		c.ACLMasterToken = "root"
		c.ACLDefaultPolicy = "deny"
	})
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	// Make a request with no token to make sure it gets denied.
	arg := structs.DCSpecificRequest{
		Datacenter: "dc1",
	}
	var reply structs.RaftConfigurationResponse
	err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), permissionDenied) {
		t.Fatalf("err: %v", err)
	}

	// Create an ACL with operator read permissions.
	var token string
	{
		var rules = `
                    operator = "read"
                `

		req := structs.ACLRequest{
			Datacenter: "dc1",
			Op:         structs.ACLSet,
			ACL: structs.ACL{
				Name:  "User token",
				Type:  structs.ACLTypeClient,
				Rules: rules,
			},
			WriteRequest: structs.WriteRequest{Token: "root"},
		}
		if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {
			t.Fatalf("err: %v", err)
		}
	}

	// Now it should go through.
	arg.Token = token
	if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply); err != nil {
		t.Fatalf("err: %v", err)
	}

	future := s1.raft.GetConfiguration()
	if err := future.Error(); err != nil {
		t.Fatalf("err: %v", err)
	}
	if len(future.Configuration().Servers) != 1 {
		t.Fatalf("bad: %v", future.Configuration().Servers)
	}
	me := future.Configuration().Servers[0]
	expected := structs.RaftConfigurationResponse{
		Servers: []*structs.RaftServer{
			&structs.RaftServer{
				ID:      me.ID,
				Node:    s1.config.NodeName,
				Address: me.Address,
				Leader:  true,
				Voter:   true,
			},
		},
		Index: future.Index(),
	}
	if !reflect.DeepEqual(reply, expected) {
		t.Fatalf("bad: %v", reply)
	}
}

func TestOperator_RaftRemovePeerByAddress(t *testing.T) {
	dir1, s1 := testServer(t)
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	// Try to remove a peer that's not there.
	arg := structs.RaftRemovePeerRequest{
		Datacenter: "dc1",
		Address:    raft.ServerAddress(fmt.Sprintf("127.0.0.1:%d", getPort())),
	}
	var reply struct{}
	err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), "not found in the Raft configuration") {
		t.Fatalf("err: %v", err)
	}

	// Add it manually to Raft.
	{
		future := s1.raft.AddPeer(arg.Address)
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
	}

	// Make sure it's there.
	{
		future := s1.raft.GetConfiguration()
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
		configuration := future.Configuration()
		if len(configuration.Servers) != 2 {
			t.Fatalf("bad: %v", configuration)
		}
	}

	// Remove it, now it should go through.
	if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply); err != nil {
		t.Fatalf("err: %v", err)
	}

	// Make sure it's not there.
	{
		future := s1.raft.GetConfiguration()
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
		configuration := future.Configuration()
		if len(configuration.Servers) != 1 {
			t.Fatalf("bad: %v", configuration)
		}
	}
}

func TestOperator_RaftRemovePeerByAddress_ACLDeny(t *testing.T) {
	dir1, s1 := testServerWithConfig(t, func(c *Config) {
		c.ACLDatacenter = "dc1"
		c.ACLMasterToken = "root"
		c.ACLDefaultPolicy = "deny"
	})
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	// Make a request with no token to make sure it gets denied.
	arg := structs.RaftRemovePeerRequest{
		Datacenter: "dc1",
		Address:    raft.ServerAddress(s1.config.RPCAddr.String()),
	}
	var reply struct{}
	err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), permissionDenied) {
		t.Fatalf("err: %v", err)
	}

	// Create an ACL with operator write permissions.
	var token string
	{
		var rules = `
                    operator = "write"
                `

		req := structs.ACLRequest{
			Datacenter: "dc1",
			Op:         structs.ACLSet,
			ACL: structs.ACL{
				Name:  "User token",
				Type:  structs.ACLTypeClient,
				Rules: rules,
			},
			WriteRequest: structs.WriteRequest{Token: "root"},
		}
		if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {
			t.Fatalf("err: %v", err)
		}
	}

	// Now it should kick back for being an invalid config, which means it
	// tried to do the operation.
	arg.Token = token
	err = msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), "at least one voter") {
		t.Fatalf("err: %v", err)
	}
}

func TestOperator_RaftRemovePeerByID(t *testing.T) {
	dir1, s1 := testServerWithConfig(t, func(c *Config) {
		c.RaftConfig.ProtocolVersion = 3
	})
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	// Try to remove a peer that's not there.
	arg := structs.RaftRemovePeerRequest{
		Datacenter: "dc1",
		ID:         raft.ServerID("e35bde83-4e9c-434f-a6ef-453f44ee21ea"),
	}
	var reply struct{}
	err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), "not found in the Raft configuration") {
		t.Fatalf("err: %v", err)
	}

	// Add it manually to Raft.
	{
		future := s1.raft.AddVoter(arg.ID, raft.ServerAddress(fmt.Sprintf("127.0.0.1:%d", getPort())), 0, 0)
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
	}

	// Make sure it's there.
	{
		future := s1.raft.GetConfiguration()
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
		configuration := future.Configuration()
		if len(configuration.Servers) != 2 {
			t.Fatalf("bad: %v", configuration)
		}
	}

	// Remove it, now it should go through.
	if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply); err != nil {
		t.Fatalf("err: %v", err)
	}

	// Make sure it's not there.
	{
		future := s1.raft.GetConfiguration()
		if err := future.Error(); err != nil {
			t.Fatalf("err: %v", err)
		}
		configuration := future.Configuration()
		if len(configuration.Servers) != 1 {
			t.Fatalf("bad: %v", configuration)
		}
	}
}

func TestOperator_RaftRemovePeerByID_ACLDeny(t *testing.T) {
	dir1, s1 := testServerWithConfig(t, func(c *Config) {
		c.ACLDatacenter = "dc1"
		c.ACLMasterToken = "root"
		c.ACLDefaultPolicy = "deny"
		c.RaftConfig.ProtocolVersion = 3
	})
	defer os.RemoveAll(dir1)
	defer s1.Shutdown()
	codec := rpcClient(t, s1)
	defer codec.Close()

	testrpc.WaitForLeader(t, s1.RPC, "dc1")

	// Make a request with no token to make sure it gets denied.
	arg := structs.RaftRemovePeerRequest{
		Datacenter: "dc1",
		ID:         raft.ServerID(s1.config.NodeID),
	}
	var reply struct{}
	err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), permissionDenied) {
		t.Fatalf("err: %v", err)
	}

	// Create an ACL with operator write permissions.
	var token string
	{
		var rules = `
                    operator = "write"
                `

		req := structs.ACLRequest{
			Datacenter: "dc1",
			Op:         structs.ACLSet,
			ACL: structs.ACL{
				Name:  "User token",
				Type:  structs.ACLTypeClient,
				Rules: rules,
			},
			WriteRequest: structs.WriteRequest{Token: "root"},
		}
		if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {
			t.Fatalf("err: %v", err)
		}
	}

	// Now it should kick back for being an invalid config, which means it
	// tried to do the operation.
	arg.Token = token
	err = msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)
	if err == nil || !strings.Contains(err.Error(), "at least one voter") {
		t.Fatalf("err: %v", err)
	}
}
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`package consul`

			`import (`
			`"fmt"`
			`"os"`
			`"reflect"`
			`"strings"`
			`"testing"`

pkg refactor command/agent/* -> agent/* command/consul/* -> agent/consul/* command/agent/command{,_test}.go -> command/agent{,_test}.go command/base/command.go -> command/base.go command/base/* -> command/* commands.go -> command/commands.go The script which did the refactor is: ( cd $GOPATH/src/github.com/hashicorp/consul git mv command/agent/command.go command/agent.go git mv command/agent/command_test.go command/agent_test.go git mv command/agent/flag_slice_value{,_test}.go command/ git mv command/agent . git mv command/base/command.go command/base.go git mv command/base/config_util{,_test}.go command/ git mv commands.go command/ git mv consul agent rmdir command/base/ gsed -i -e 's\|package agent\|package command\|' command/agent{,_test}.go gsed -i -e 's\|package agent\|package command\|' command/flag_slice_value{,_test}.go gsed -i -e 's\|package base\|package command\|' command/base.go command/config_util{,_test}.go gsed -i -e 's\|package main\|package command\|' command/commands.go gsed -i -e 's\|base.Command\|BaseCommand\|' command/commands.go gsed -i -e 's\|agent.Command\|AgentCommand\|' command/commands.go gsed -i -e 's\|\tCommand:\|\tBaseCommand:\|' command/commands.go gsed -i -e 's\|base\.\|\|' command/commands.go gsed -i -e 's\|command\.\|\|' command/commands.go gsed -i -e 's\|command\|c\|' main.go gsed -i -e 's\|range Commands\|range command.Commands\|' main.go gsed -i -e 's\|Commands: Commands\|Commands: command.Commands\|' main.go gsed -i -e 's\|base\.BoolValue\|BoolValue\|' command/operator_autopilot_set.go gsed -i -e 's\|base\.DurationValue\|DurationValue\|' command/operator_autopilot_set.go gsed -i -e 's\|base\.StringValue\|StringValue\|' command/operator_autopilot_set.go gsed -i -e 's\|base\.UintValue\|UintValue\|' command/operator_autopilot_set.go gsed -i -e 's\|\bCommand\b\|BaseCommand\|' command/base.go gsed -i -e 's\|BaseCommand Options\|Command Options\|' command/base.go gsed -i -e 's\|base.Command\|BaseCommand\|' command/.go gsed -i -e 's\|c\.Command\|c.BaseCommand\|g' command/.go gsed -i -e 's\|\tCommand:\|\tBaseCommand:\|' command/_test.go gsed -i -e 's\|base\.\|\|' command/_test.go gsed -i -e 's\|\bCommand\b\|AgentCommand\|' command/agent{,_test}.go gsed -i -e 's\|cmd.AgentCommand\|cmd.BaseCommand\|' command/agent.go gsed -i -e 's\|cli.AgentCommand = new(Command)\|cli.Command = new(AgentCommand)\|' command/agent_test.go gsed -i -e 's\|exec.AgentCommand\|exec.Command\|' command/agent_test.go gsed -i -e 's\|exec.BaseCommand\|exec.Command\|' command/agent_test.go gsed -i -e 's\|NewTestAgent\|agent.NewTestAgent\|' command/agent_test.go gsed -i -e 's\|= TestConfig\|= agent.TestConfig\|' command/agent_test.go gsed -i -e 's\|: RetryJoin\|: agent.RetryJoin\|' command/agent_test.go gsed -i -e 's\|\.\./\.\./\|../\|' command/config_util_test.go gsed -i -e 's\|\bverifyUniqueListeners\|VerifyUniqueListeners\|' agent/config{,_test}.go command/agent.go gsed -i -e 's\|\bserfLANKeyring\b\|SerfLANKeyring\|g' agent/{agent,keyring,testagent}.go command/agent.go gsed -i -e 's\|\bserfWANKeyring\b\|SerfWANKeyring\|g' agent/{agent,keyring,testagent}.go command/agent.go gsed -i -e 's\|\bNewAgent\b\|agent.New\|g' command/agent{,_test}.go gsed -i -e 's\|\bNewAgent\|New\|' agent/{acl_test,agent,testagent}.go gsed -i -e 's\|\bAgent\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bBool\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bConfig\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bDefaultConfig\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bDevConfig\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bMergeConfig\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bReadConfigPaths\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bParseMetaPair\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bSerfLANKeyring\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|\bSerfWANKeyring\b\|agent.&\|g' command/agent{,_test}.go gsed -i -e 's\|circonus\.agent\|circonus\|g' command/agent{,_test}.go gsed -i -e 's\|logger\.agent\|logger\|g' command/agent{,_test}.go gsed -i -e 's\|metrics\.agent\|metrics\|g' command/agent{,_test}.go gsed -i -e 's\|// agent.Agent\|// agent\|' command/agent{,_test}.go gsed -i -e 's\|a\.agent\.Config\|a.Config\|' command/agent{,_test}.go gsed -i -e 's\|agent\.AppendSliceValue\|AppendSliceValue\|' command/{configtest,validate}.go gsed -i -e 's\|consul/consul\|agent/consul\|' GNUmakefile gsed -i -e 's\|\.\./test\|../../test\|' agent/consul/server_test.go # fix imports f=$(grep -rl 'github.com/hashicorp/consul/command/agent' * \| grep '\.go') gsed -i -e 's\|github.com/hashicorp/consul/command/agent\|github.com/hashicorp/consul/agent\|' $f goimports -w $f f=$(grep -rl 'github.com/hashicorp/consul/consul' * \| grep '\.go') gsed -i -e 's\|github.com/hashicorp/consul/consul\|github.com/hashicorp/consul/agent/consul\|' $f goimports -w $f goimports -w command/*.go main.go ) 2017-06-09 22:28:28 +00:00			`"github.com/hashicorp/consul/agent/consul/structs"`
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`"github.com/hashicorp/consul/testrpc"`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`"github.com/hashicorp/net-rpc-msgpackrpc"`
			`"github.com/hashicorp/raft"`
			`)`

			`func TestOperator_RaftGetConfiguration(t *testing.T) {`
			`dir1, s1 := testServer(t)`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00
			`arg := structs.DCSpecificRequest{`
			`Datacenter: "dc1",`
			`}`
			`var reply structs.RaftConfigurationResponse`
			`if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`

			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`if len(future.Configuration().Servers) != 1 {`
			`t.Fatalf("bad: %v", future.Configuration().Servers)`
			`}`
			`me := future.Configuration().Servers[0]`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`expected := structs.RaftConfigurationResponse{`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`Servers: []*structs.RaftServer{`
			`&structs.RaftServer{`
			`ID: me.ID,`
			`Node: s1.config.NodeName,`
			`Address: me.Address,`
			`Leader: true,`
			`Voter: true,`
			`},`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`},`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`Index: future.Index(),`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`}`
			`if !reflect.DeepEqual(reply, expected) {`
			`t.Fatalf("bad: %v", reply)`
			`}`
			`}`

			`func TestOperator_RaftGetConfiguration_ACLDeny(t *testing.T) {`
			`dir1, s1 := testServerWithConfig(t, func(c *Config) {`
			`c.ACLDatacenter = "dc1"`
			`c.ACLMasterToken = "root"`
			`c.ACLDefaultPolicy = "deny"`
			`})`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00
			`// Make a request with no token to make sure it gets denied.`
			`arg := structs.DCSpecificRequest{`
			`Datacenter: "dc1",`
			`}`
			`var reply structs.RaftConfigurationResponse`
			`err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), permissionDenied) {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Create an ACL with operator read permissions.`
			`var token string`
			`{`
			var rules = `
			`operator = "read"`
			`

			`req := structs.ACLRequest{`
			`Datacenter: "dc1",`
			`Op: structs.ACLSet,`
			`ACL: structs.ACL{`
			`Name: "User token",`
			`Type: structs.ACLTypeClient,`
			`Rules: rules,`
			`},`
			`WriteRequest: structs.WriteRequest{Token: "root"},`
			`}`
			`if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`// Now it should go through.`
			`arg.Token = token`
			`if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftGetConfiguration", &arg, &reply); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`

			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`if len(future.Configuration().Servers) != 1 {`
			`t.Fatalf("bad: %v", future.Configuration().Servers)`
			`}`
			`me := future.Configuration().Servers[0]`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`expected := structs.RaftConfigurationResponse{`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`Servers: []*structs.RaftServer{`
			`&structs.RaftServer{`
			`ID: me.ID,`
			`Node: s1.config.NodeName,`
			`Address: me.Address,`
			`Leader: true,`
			`Voter: true,`
			`},`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`},`
Makes the Raft configuration API easier to consume. 2016-08-30 18:30:56 +00:00			`Index: future.Index(),`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`}`
			`if !reflect.DeepEqual(reply, expected) {`
			`t.Fatalf("bad: %v", reply)`
			`}`
			`}`

			`func TestOperator_RaftRemovePeerByAddress(t *testing.T) {`
			`dir1, s1 := testServer(t)`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00
			`// Try to remove a peer that's not there.`
Add CLI/API endpoints for removing peer by ID 2017-03-30 01:09:41 +00:00			`arg := structs.RaftRemovePeerRequest{`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`Datacenter: "dc1",`
			`Address: raft.ServerAddress(fmt.Sprintf("127.0.0.1:%d", getPort())),`
			`}`
			`var reply struct{}`
			`err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), "not found in the Raft configuration") {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Add it manually to Raft.`
			`{`
			`future := s1.raft.AddPeer(arg.Address)`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`// Make sure it's there.`
			`{`
			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`configuration := future.Configuration()`
			`if len(configuration.Servers) != 2 {`
			`t.Fatalf("bad: %v", configuration)`
			`}`
			`}`

			`// Remove it, now it should go through.`
			`if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Make sure it's not there.`
			`{`
			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`configuration := future.Configuration()`
			`if len(configuration.Servers) != 1 {`
			`t.Fatalf("bad: %v", configuration)`
			`}`
			`}`
			`}`

			`func TestOperator_RaftRemovePeerByAddress_ACLDeny(t *testing.T) {`
			`dir1, s1 := testServerWithConfig(t, func(c *Config) {`
			`c.ACLDatacenter = "dc1"`
			`c.ACLMasterToken = "root"`
			`c.ACLDefaultPolicy = "deny"`
			`})`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00
			`// Make a request with no token to make sure it gets denied.`
Add CLI/API endpoints for removing peer by ID 2017-03-30 01:09:41 +00:00			`arg := structs.RaftRemovePeerRequest{`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`Datacenter: "dc1",`
			`Address: raft.ServerAddress(s1.config.RPCAddr.String()),`
			`}`
			`var reply struct{}`
			`err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), permissionDenied) {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Create an ACL with operator write permissions.`
			`var token string`
			`{`
			var rules = `
			`operator = "write"`
			`

			`req := structs.ACLRequest{`
			`Datacenter: "dc1",`
			`Op: structs.ACLSet,`
			`ACL: structs.ACL{`
			`Name: "User token",`
			`Type: structs.ACLTypeClient,`
			`Rules: rules,`
			`},`
			`WriteRequest: structs.WriteRequest{Token: "root"},`
			`}`
			`if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`// Now it should kick back for being an invalid config, which means it`
			`// tried to do the operation.`
			`arg.Token = token`
			`err = msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByAddress", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), "at least one voter") {`
Add CLI/API endpoints for removing peer by ID 2017-03-30 01:09:41 +00:00			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`func TestOperator_RaftRemovePeerByID(t *testing.T) {`
			`dir1, s1 := testServerWithConfig(t, func(c *Config) {`
			`c.RaftConfig.ProtocolVersion = 3`
			`})`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Add CLI/API endpoints for removing peer by ID 2017-03-30 01:09:41 +00:00
			`// Try to remove a peer that's not there.`
			`arg := structs.RaftRemovePeerRequest{`
			`Datacenter: "dc1",`
			`ID: raft.ServerID("e35bde83-4e9c-434f-a6ef-453f44ee21ea"),`
			`}`
			`var reply struct{}`
			`err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), "not found in the Raft configuration") {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Add it manually to Raft.`
			`{`
			`future := s1.raft.AddVoter(arg.ID, raft.ServerAddress(fmt.Sprintf("127.0.0.1:%d", getPort())), 0, 0)`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`// Make sure it's there.`
			`{`
			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`configuration := future.Configuration()`
			`if len(configuration.Servers) != 2 {`
			`t.Fatalf("bad: %v", configuration)`
			`}`
			`}`

			`// Remove it, now it should go through.`
			`if err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Make sure it's not there.`
			`{`
			`future := s1.raft.GetConfiguration()`
			`if err := future.Error(); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`configuration := future.Configuration()`
			`if len(configuration.Servers) != 1 {`
			`t.Fatalf("bad: %v", configuration)`
			`}`
			`}`
			`}`

			`func TestOperator_RaftRemovePeerByID_ACLDeny(t *testing.T) {`
			`dir1, s1 := testServerWithConfig(t, func(c *Config) {`
			`c.ACLDatacenter = "dc1"`
			`c.ACLMasterToken = "root"`
			`c.ACLDefaultPolicy = "deny"`
			`c.RaftConfig.ProtocolVersion = 3`
			`})`
			`defer os.RemoveAll(dir1)`
			`defer s1.Shutdown()`
			`codec := rpcClient(t, s1)`
			`defer codec.Close()`

Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package. 2017-04-19 23:00:11 +00:00			`testrpc.WaitForLeader(t, s1.RPC, "dc1")`
Add CLI/API endpoints for removing peer by ID 2017-03-30 01:09:41 +00:00
			`// Make a request with no token to make sure it gets denied.`
			`arg := structs.RaftRemovePeerRequest{`
			`Datacenter: "dc1",`
			`ID: raft.ServerID(s1.config.NodeID),`
			`}`
			`var reply struct{}`
			`err := msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), permissionDenied) {`
			`t.Fatalf("err: %v", err)`
			`}`

			`// Create an ACL with operator write permissions.`
			`var token string`
			`{`
			var rules = `
			`operator = "write"`
			`

			`req := structs.ACLRequest{`
			`Datacenter: "dc1",`
			`Op: structs.ACLSet,`
			`ACL: structs.ACL{`
			`Name: "User token",`
			`Type: structs.ACLTypeClient,`
			`Rules: rules,`
			`},`
			`WriteRequest: structs.WriteRequest{Token: "root"},`
			`}`
			`if err := msgpackrpc.CallWithCodec(codec, "ACL.Apply", &req, &token); err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`
			`}`

			`// Now it should kick back for being an invalid config, which means it`
			`// tried to do the operation.`
			`arg.Token = token`
			`err = msgpackrpc.CallWithCodec(codec, "Operator.RaftRemovePeerByID", &arg, &reply)`
			`if err == nil \|\| !strings.Contains(err.Error(), "at least one voter") {`
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands. 2016-08-30 02:09:57 +00:00			`t.Fatalf("err: %v", err)`
			`}`
			`}`