package command import ( "os" "strings" "testing" "github.com/hashicorp/nomad/acl" "github.com/hashicorp/nomad/ci" "github.com/hashicorp/nomad/command/agent" "github.com/hashicorp/nomad/nomad/mock" "github.com/hashicorp/nomad/nomad/structs" "github.com/mitchellh/cli" "github.com/stretchr/testify/assert" ) func TestACLTokenSelfCommand_ViaEnvVar(t *testing.T) { ci.Parallel(t) defer os.Setenv("NOMAD_TOKEN", os.Getenv("NOMAD_TOKEN")) assert := assert.New(t) config := func(c *agent.Config) { c.ACL.Enabled = true } srv, _, url := testServer(t, true, config) defer srv.Shutdown() state := srv.Agent.Server().State() // Bootstrap an initial ACL token token := srv.RootToken assert.NotNil(token, "failed to bootstrap ACL token") ui := cli.NewMockUi() cmd := &ACLTokenSelfCommand{Meta: Meta{Ui: ui, flagAddress: url}} // Create a valid token mockToken := mock.ACLToken() mockToken.Policies = []string{acl.PolicyWrite} mockToken.SetHash() assert.Nil(state.UpsertACLTokens(structs.MsgTypeTestSetup, 1000, []*structs.ACLToken{mockToken})) // Attempt to fetch info on a token without providing a valid management // token invalidToken := mock.ACLToken() os.Setenv("NOMAD_TOKEN", invalidToken.SecretID) code := cmd.Run([]string{"-address=" + url}) assert.Equal(1, code) // Fetch info on a token with a valid token os.Setenv("NOMAD_TOKEN", mockToken.SecretID) code = cmd.Run([]string{"-address=" + url}) assert.Equal(0, code) // Check the output out := ui.OutputWriter.String() if !strings.Contains(out, mockToken.AccessorID) { t.Fatalf("bad: %v", out) } }