2018-09-25 16:28:26 +00:00
|
|
|
import { module, test } from 'qunit';
|
|
|
|
import { setupApplicationTest } from 'ember-qunit';
|
2018-11-05 16:56:59 +00:00
|
|
|
import sinon from 'sinon';
|
2021-05-06 18:29:39 +00:00
|
|
|
import { click, currentURL, visit, settled } from '@ember/test-helpers';
|
2018-04-03 14:16:57 +00:00
|
|
|
import { supportedAuthBackends } from 'vault/helpers/supported-auth-backends';
|
2018-04-17 22:04:34 +00:00
|
|
|
import authForm from '../pages/components/auth-form';
|
2019-02-14 15:39:19 +00:00
|
|
|
import jwtForm from '../pages/components/auth-jwt';
|
2018-04-17 22:04:34 +00:00
|
|
|
import { create } from 'ember-cli-page-object';
|
2018-04-20 20:39:45 +00:00
|
|
|
import apiStub from 'vault/tests/helpers/noop-all-api-requests';
|
2018-11-05 16:56:59 +00:00
|
|
|
import authPage from 'vault/tests/pages/auth';
|
2018-09-25 16:28:26 +00:00
|
|
|
import logout from 'vault/tests/pages/logout';
|
2018-11-05 16:56:59 +00:00
|
|
|
import consoleClass from 'vault/tests/pages/components/console/ui-panel';
|
2021-12-17 03:44:29 +00:00
|
|
|
|
2018-11-05 16:56:59 +00:00
|
|
|
const consoleComponent = create(consoleClass);
|
2018-04-17 22:04:34 +00:00
|
|
|
const component = create(authForm);
|
2019-02-14 15:39:19 +00:00
|
|
|
const jwtComponent = create(jwtForm);
|
2018-04-03 14:16:57 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
module('Acceptance | auth', function (hooks) {
|
2018-09-25 16:28:26 +00:00
|
|
|
setupApplicationTest(hooks);
|
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
hooks.beforeEach(function () {
|
2018-11-05 16:56:59 +00:00
|
|
|
this.clock = sinon.useFakeTimers({
|
|
|
|
now: Date.now(),
|
|
|
|
shouldAdvanceTime: true,
|
|
|
|
});
|
2018-04-20 20:39:45 +00:00
|
|
|
this.server = apiStub({ usePassthrough: true });
|
2018-09-25 16:28:26 +00:00
|
|
|
return logout.visit();
|
|
|
|
});
|
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
hooks.afterEach(function () {
|
2018-11-05 16:56:59 +00:00
|
|
|
this.clock.restore();
|
2018-04-20 20:39:45 +00:00
|
|
|
this.server.shutdown();
|
2018-11-05 16:56:59 +00:00
|
|
|
return logout.visit();
|
2018-09-25 16:28:26 +00:00
|
|
|
});
|
2018-04-03 14:16:57 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
test('auth query params', async function (assert) {
|
2018-09-25 16:28:26 +00:00
|
|
|
let backends = supportedAuthBackends();
|
2019-02-14 15:39:19 +00:00
|
|
|
assert.expect(backends.length + 1);
|
2018-09-25 16:28:26 +00:00
|
|
|
await visit('/vault/auth');
|
2020-01-27 16:41:44 +00:00
|
|
|
assert.equal(currentURL(), '/vault/auth?with=token');
|
2018-09-25 16:28:26 +00:00
|
|
|
for (let backend of backends.reverse()) {
|
2019-02-14 15:39:19 +00:00
|
|
|
await component.selectMethod(backend.type);
|
2020-01-27 16:41:44 +00:00
|
|
|
assert.equal(
|
|
|
|
currentURL(),
|
|
|
|
`/vault/auth?with=${backend.type}`,
|
|
|
|
`has the correct URL for ${backend.type}`
|
|
|
|
);
|
2018-09-25 16:28:26 +00:00
|
|
|
}
|
2018-04-03 14:16:57 +00:00
|
|
|
});
|
2018-04-17 22:04:34 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
test('it clears token when changing selected auth method', async function (assert) {
|
2018-09-25 16:28:26 +00:00
|
|
|
await visit('/vault/auth');
|
2020-01-27 16:41:44 +00:00
|
|
|
assert.equal(currentURL(), '/vault/auth?with=token');
|
2019-02-14 15:39:19 +00:00
|
|
|
await component.token('token').selectMethod('github');
|
|
|
|
await component.selectMethod('token');
|
2018-04-17 22:04:34 +00:00
|
|
|
assert.equal(component.tokenValue, '', 'it clears the token value when toggling methods');
|
|
|
|
});
|
2018-04-20 20:39:45 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
test('it sends the right attributes when authenticating', async function (assert) {
|
2018-09-25 16:28:26 +00:00
|
|
|
let backends = supportedAuthBackends();
|
|
|
|
await visit('/vault/auth');
|
|
|
|
for (let backend of backends.reverse()) {
|
2019-02-14 15:39:19 +00:00
|
|
|
await component.selectMethod(backend.type);
|
2018-09-25 16:28:26 +00:00
|
|
|
if (backend.type === 'github') {
|
|
|
|
await component.token('token');
|
|
|
|
}
|
2019-02-21 22:21:23 +00:00
|
|
|
if (backend.type === 'jwt' || backend.type === 'oidc') {
|
2019-02-14 15:39:19 +00:00
|
|
|
await jwtComponent.role('test');
|
|
|
|
}
|
2018-09-25 16:28:26 +00:00
|
|
|
await component.login();
|
2018-04-20 20:39:45 +00:00
|
|
|
let lastRequest = this.server.passthroughRequests[this.server.passthroughRequests.length - 1];
|
|
|
|
let body = JSON.parse(lastRequest.requestBody);
|
Ember-cli upgrade from ~3.8 to ~3.20 (#9972)
* Update ember-cli to ~3.20
* Remove bad optional-feature
* Remove ember-fetch dep
* re-install ember-fetch
* update model fragments pr
* update ember model fragments correct package name
* update ember composable helpers to solve array helper error
* update ember-concurrency
* add back engine dependencies, automatically removed during ember-cli-upgrade
* make author-form-options component js file otherwise error
* for now comment out withTestWaiter
* add eslint-node and fix if not with unless in templates
* fix linting for tab index of false is now -1 and add type button to all buttons without types
* fix href errors for linting, likely have to come back and fix
* using eslint fix flag to fix all this.gets
* ember modules codemode removed files that had module twice, will fix in next commit
* finish codemode ember-data-codemod needed to rename const model
* more this.get removal codemode did not work
* cont. removal of this.get
* stop mixin rules until figure out how to reconfig them all
* smaller eslint ignores
* get codemode
* testing app small fixes to bring it back after all the changes
* small changes to eslint
* test removal of getProperties
* fix issue with baseKey because value could be unknown needed to add a question mark in nested get
* smaller linting fixes
* get nested fixes
* small linting error fixes
* small linting changes
* working through more small linting changes
* another round of linting modifications
* liniting fixes
* ember module codemod
* quinit dom codemod
* angle bracket codemod
* discovered that components must have js files
* ran all codemods this is all that's left
* small changes to fix get needs two object, should not have been using get.
* fix issue with one input in form field
* fun times with set and onChange from oninput
* fix issue with model not being passed through on secret-edit-display
* fix issue with yarn run test not working, revert without npm run all
* linting and small fix when loading without a selectAuthBackend
* fix failing test with ui-wizard issue
* fix test failure due to model not being asked for correctly with new changes, probably run into this more.
* fix issue with component helper and at props specific to wizard
* rename log to clilog due to conflict with new eslint rule
* small changes for test failures
* component helper at fixes
* Revert to old component style something with new one broke this and can't figure it out for now
* small fishy smelling test fixes will revisit
* small test changes
* more small test changes, appears upgrade treats spaces differently
* comment out code and test that no longer seems relevant but confirm
* clean run on component test though still some potential timing issues on ui-console test
* fixing one auth test issue and timing issue on enable-test
* small mods
* fix this conditional check from upgrade
* linting fixes after master merge
* package updates using yarn upgrade-interactive
* update libraries that did not effect any of the test failures.
* update ember truth helpers library
* settling tests
* Fix ui-panel control group output
* fix features selection test failures
* Fix auth tests (x-vault-token)
* fix shared test
* fix issue with data null on backend
* Revert "Fix auth tests (x-vault-token)"
This reverts commit 89cb174b2f1998efa56d9604d14131415ae65d6f.
* Fix auth tests (x-vault-token) without updating this.set
* Update redirect-to tests
* fix wrapped token test
* skip some flaky test
* fix issue with href and a tags vs buttons
* fix linting
* updates to get tests running (#10409)
* yarn isntall
* increasing resource_class
* whoops
* trying large
* back to xlarge
* Fix param issue on transform item routes
* test fixes
* settle on policies (old) test
* fix browserstack test warning and skips of test confirmed worked
* Fix redirect-to test
* skips
* fix transformation test and skip some kmip
* Skip tests
* Add meep marker to remaining failing tests
* Skip test with failing component
* rever skip on secret-create test
* Skip piece of test that fails due to navigation-input
* fix settings test where can and skip in others after confirming
* fix circle ci test failures
* ssh role settle
* Fix navigate-input and add settled to test
* Remove extra import
* secret cubbyhole and alicloud
* Add settled to gcpkms test
* settles on redirect to test
* Bump browserstack test resource to large
* Update browserstack resource size to xlarge
* update todos
* add back in withTestWaiter
* try and fix credentials conditional action added comment instead
* Update volatile computed properies to get functions
* this step was never reached and we never defined secretType anywhere so I removed
* add settled to policy old test
* Fix navigate-input on policies and leases
* replace ssh test with no var hoping that helps and add settled to other failing tests, unskip console tests
* kmip, transit, role test remove a skip and add in settled
* fix hover copy button, had to remove some testing functionality
* Remove private router service
* remove skip on control ssh and ui panel, fix search select by restructuring how to read the error
* final bit of working through skipped test
* Replace clearNonGlobalModels by linking directly to namespace with href-to
* Remove unused var
* Fix role-ssh id bug by updating form-field-from-model to form-field-group-loop
* Fix transit create id would not update
* Update option toggle selector for ssh-role
* Fix ssh selector
* cleanup pt1
* small clean up
* cleanup part2
* Fix computed on pricing-metrics-form
* small cleanup based on chelseas comments.
Co-authored-by: Chelsea Shaw <chelshaw.dev@gmail.com>
Co-authored-by: Sarah Thompson <sthompson@hashicorp.com>
2020-12-03 23:00:22 +00:00
|
|
|
// Note: x-vault-token used to be lowercase prior to upgrade
|
2018-04-20 20:39:45 +00:00
|
|
|
if (backend.type === 'token') {
|
|
|
|
assert.ok(
|
Ember-cli upgrade from ~3.8 to ~3.20 (#9972)
* Update ember-cli to ~3.20
* Remove bad optional-feature
* Remove ember-fetch dep
* re-install ember-fetch
* update model fragments pr
* update ember model fragments correct package name
* update ember composable helpers to solve array helper error
* update ember-concurrency
* add back engine dependencies, automatically removed during ember-cli-upgrade
* make author-form-options component js file otherwise error
* for now comment out withTestWaiter
* add eslint-node and fix if not with unless in templates
* fix linting for tab index of false is now -1 and add type button to all buttons without types
* fix href errors for linting, likely have to come back and fix
* using eslint fix flag to fix all this.gets
* ember modules codemode removed files that had module twice, will fix in next commit
* finish codemode ember-data-codemod needed to rename const model
* more this.get removal codemode did not work
* cont. removal of this.get
* stop mixin rules until figure out how to reconfig them all
* smaller eslint ignores
* get codemode
* testing app small fixes to bring it back after all the changes
* small changes to eslint
* test removal of getProperties
* fix issue with baseKey because value could be unknown needed to add a question mark in nested get
* smaller linting fixes
* get nested fixes
* small linting error fixes
* small linting changes
* working through more small linting changes
* another round of linting modifications
* liniting fixes
* ember module codemod
* quinit dom codemod
* angle bracket codemod
* discovered that components must have js files
* ran all codemods this is all that's left
* small changes to fix get needs two object, should not have been using get.
* fix issue with one input in form field
* fun times with set and onChange from oninput
* fix issue with model not being passed through on secret-edit-display
* fix issue with yarn run test not working, revert without npm run all
* linting and small fix when loading without a selectAuthBackend
* fix failing test with ui-wizard issue
* fix test failure due to model not being asked for correctly with new changes, probably run into this more.
* fix issue with component helper and at props specific to wizard
* rename log to clilog due to conflict with new eslint rule
* small changes for test failures
* component helper at fixes
* Revert to old component style something with new one broke this and can't figure it out for now
* small fishy smelling test fixes will revisit
* small test changes
* more small test changes, appears upgrade treats spaces differently
* comment out code and test that no longer seems relevant but confirm
* clean run on component test though still some potential timing issues on ui-console test
* fixing one auth test issue and timing issue on enable-test
* small mods
* fix this conditional check from upgrade
* linting fixes after master merge
* package updates using yarn upgrade-interactive
* update libraries that did not effect any of the test failures.
* update ember truth helpers library
* settling tests
* Fix ui-panel control group output
* fix features selection test failures
* Fix auth tests (x-vault-token)
* fix shared test
* fix issue with data null on backend
* Revert "Fix auth tests (x-vault-token)"
This reverts commit 89cb174b2f1998efa56d9604d14131415ae65d6f.
* Fix auth tests (x-vault-token) without updating this.set
* Update redirect-to tests
* fix wrapped token test
* skip some flaky test
* fix issue with href and a tags vs buttons
* fix linting
* updates to get tests running (#10409)
* yarn isntall
* increasing resource_class
* whoops
* trying large
* back to xlarge
* Fix param issue on transform item routes
* test fixes
* settle on policies (old) test
* fix browserstack test warning and skips of test confirmed worked
* Fix redirect-to test
* skips
* fix transformation test and skip some kmip
* Skip tests
* Add meep marker to remaining failing tests
* Skip test with failing component
* rever skip on secret-create test
* Skip piece of test that fails due to navigation-input
* fix settings test where can and skip in others after confirming
* fix circle ci test failures
* ssh role settle
* Fix navigate-input and add settled to test
* Remove extra import
* secret cubbyhole and alicloud
* Add settled to gcpkms test
* settles on redirect to test
* Bump browserstack test resource to large
* Update browserstack resource size to xlarge
* update todos
* add back in withTestWaiter
* try and fix credentials conditional action added comment instead
* Update volatile computed properies to get functions
* this step was never reached and we never defined secretType anywhere so I removed
* add settled to policy old test
* Fix navigate-input on policies and leases
* replace ssh test with no var hoping that helps and add settled to other failing tests, unskip console tests
* kmip, transit, role test remove a skip and add in settled
* fix hover copy button, had to remove some testing functionality
* Remove private router service
* remove skip on control ssh and ui panel, fix search select by restructuring how to read the error
* final bit of working through skipped test
* Replace clearNonGlobalModels by linking directly to namespace with href-to
* Remove unused var
* Fix role-ssh id bug by updating form-field-from-model to form-field-group-loop
* Fix transit create id would not update
* Update option toggle selector for ssh-role
* Fix ssh selector
* cleanup pt1
* small clean up
* cleanup part2
* Fix computed on pricing-metrics-form
* small cleanup based on chelseas comments.
Co-authored-by: Chelsea Shaw <chelshaw.dev@gmail.com>
Co-authored-by: Sarah Thompson <sthompson@hashicorp.com>
2020-12-03 23:00:22 +00:00
|
|
|
Object.keys(lastRequest.requestHeaders).includes('X-Vault-Token'),
|
2018-04-20 20:39:45 +00:00
|
|
|
'token uses vault token header'
|
|
|
|
);
|
2018-08-16 13:16:24 +00:00
|
|
|
} else if (backend.type === 'github') {
|
2018-04-20 20:39:45 +00:00
|
|
|
assert.ok(Object.keys(body).includes('token'), 'GitHub includes token');
|
2019-02-21 22:21:23 +00:00
|
|
|
} else if (backend.type === 'jwt' || backend.type === 'oidc') {
|
2019-03-14 19:26:09 +00:00
|
|
|
let authReq = this.server.passthroughRequests[this.server.passthroughRequests.length - 2];
|
|
|
|
body = JSON.parse(authReq.requestBody);
|
2019-02-14 15:39:19 +00:00
|
|
|
assert.ok(Object.keys(body).includes('role'), `${backend.type} includes role`);
|
2018-04-20 20:39:45 +00:00
|
|
|
} else {
|
|
|
|
assert.ok(Object.keys(body).includes('password'), `${backend.type} includes password`);
|
|
|
|
}
|
2018-09-25 16:28:26 +00:00
|
|
|
}
|
2018-04-20 20:39:45 +00:00
|
|
|
});
|
2018-11-05 16:56:59 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
test('it shows the token warning beacon on the menu', async function (assert) {
|
2018-11-05 16:56:59 +00:00
|
|
|
let authService = this.owner.lookup('service:auth');
|
|
|
|
await authPage.login();
|
2021-10-15 16:44:22 +00:00
|
|
|
await settled();
|
2018-11-05 16:56:59 +00:00
|
|
|
await consoleComponent.runCommands([
|
|
|
|
'write -field=client_token auth/token/create policies=default ttl=1h',
|
|
|
|
]);
|
|
|
|
let token = consoleComponent.lastTextOutput;
|
|
|
|
await logout.visit();
|
2021-10-15 16:44:22 +00:00
|
|
|
await settled();
|
2018-11-05 16:56:59 +00:00
|
|
|
await authPage.login(token);
|
2021-10-15 16:44:22 +00:00
|
|
|
await settled();
|
2018-11-05 16:56:59 +00:00
|
|
|
this.clock.tick(authService.IDLE_TIMEOUT);
|
|
|
|
authService.shouldRenew();
|
|
|
|
await settled();
|
2021-12-17 03:44:29 +00:00
|
|
|
assert.dom('[data-test-allow-expiration]').exists('shows expiration beacon');
|
2018-11-05 16:56:59 +00:00
|
|
|
|
|
|
|
await visit('/vault/access');
|
2021-12-17 03:44:29 +00:00
|
|
|
|
|
|
|
assert.dom('[data-test-allow-expiration]').doesNotExist('hides beacon when the api is used again');
|
2018-11-05 16:56:59 +00:00
|
|
|
});
|
2021-05-06 18:29:39 +00:00
|
|
|
|
2021-12-17 03:44:29 +00:00
|
|
|
test('it shows the push notification warning only for okta auth method after submit', async function (assert) {
|
2021-05-06 18:29:39 +00:00
|
|
|
await visit('/vault/auth');
|
|
|
|
await component.selectMethod('token');
|
2021-12-17 03:44:29 +00:00
|
|
|
await click('[data-test-auth-submit]');
|
2021-05-06 18:29:39 +00:00
|
|
|
assert
|
|
|
|
.dom('[data-test-auth-message="push"]')
|
|
|
|
.doesNotExist('message is not shown for other authentication methods');
|
|
|
|
|
|
|
|
await component.selectMethod('okta');
|
2021-12-17 03:44:29 +00:00
|
|
|
await click('[data-test-auth-submit]');
|
2021-05-06 18:29:39 +00:00
|
|
|
assert.dom('[data-test-auth-message="push"]').exists('shows push notification message');
|
|
|
|
});
|
2018-04-20 20:39:45 +00:00
|
|
|
});
|