2015-12-29 20:18:59 +00:00
|
|
|
package command
|
|
|
|
|
|
|
|
|
|
import (
|
2016-03-10 21:17:09 +00:00
|
|
|
"testing"
|
|
|
|
|
|
2015-12-29 20:18:59 +00:00
|
|
|
"github.com/hashicorp/vault/api"
|
|
|
|
|
"github.com/hashicorp/vault/http"
|
2016-04-01 17:16:05 +00:00
|
|
|
"github.com/hashicorp/vault/meta"
|
2015-12-29 20:18:59 +00:00
|
|
|
"github.com/hashicorp/vault/vault"
|
|
|
|
|
"github.com/mitchellh/cli"
|
|
|
|
|
)
|
|
|
|
|
|
2016-03-10 21:17:09 +00:00
|
|
|
func TestTokenLookupAccessor(t *testing.T) {
|
|
|
|
|
core, _, token := vault.TestCoreUnsealed(t)
|
|
|
|
|
ln, addr := http.TestServer(t, core)
|
|
|
|
|
defer ln.Close()
|
|
|
|
|
|
|
|
|
|
ui := new(cli.MockUi)
|
|
|
|
|
c := &TokenLookupCommand{
|
2016-04-01 17:16:05 +00:00
|
|
|
Meta: meta.Meta{
|
2016-03-10 21:17:09 +00:00
|
|
|
ClientToken: token,
|
|
|
|
|
Ui: ui,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
args := []string{
|
|
|
|
|
"-address", addr,
|
|
|
|
|
}
|
|
|
|
|
c.Run(args)
|
|
|
|
|
|
|
|
|
|
// Create a new token for us to use
|
|
|
|
|
client, err := c.Client()
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("err: %s", err)
|
|
|
|
|
}
|
|
|
|
|
resp, err := client.Auth().Token().Create(&api.TokenCreateRequest{
|
|
|
|
|
Lease: "1h",
|
|
|
|
|
})
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("err: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Enable the accessor flag
|
|
|
|
|
args = append(args, "-accessor")
|
|
|
|
|
|
|
|
|
|
// Expect failure if no argument is passed when accessor flag is set
|
|
|
|
|
code := c.Run(args)
|
|
|
|
|
if code == 0 {
|
|
|
|
|
t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Add token accessor as arg
|
|
|
|
|
args = append(args, resp.Auth.Accessor)
|
|
|
|
|
code = c.Run(args)
|
|
|
|
|
if code != 0 {
|
|
|
|
|
t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-29 20:18:59 +00:00
|
|
|
func TestTokenLookupSelf(t *testing.T) {
|
|
|
|
|
core, _, token := vault.TestCoreUnsealed(t)
|
|
|
|
|
ln, addr := http.TestServer(t, core)
|
|
|
|
|
defer ln.Close()
|
|
|
|
|
|
|
|
|
|
ui := new(cli.MockUi)
|
|
|
|
|
c := &TokenLookupCommand{
|
2016-04-01 17:16:05 +00:00
|
|
|
Meta: meta.Meta{
|
2015-12-29 20:18:59 +00:00
|
|
|
ClientToken: token,
|
|
|
|
|
Ui: ui,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
args := []string{
|
|
|
|
|
"-address", addr,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Run it against itself
|
|
|
|
|
code := c.Run(args)
|
|
|
|
|
|
|
|
|
|
// Verify it worked
|
|
|
|
|
if code != 0 {
|
|
|
|
|
t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestTokenLookup(t *testing.T) {
|
|
|
|
|
core, _, token := vault.TestCoreUnsealed(t)
|
|
|
|
|
ln, addr := http.TestServer(t, core)
|
|
|
|
|
defer ln.Close()
|
|
|
|
|
|
|
|
|
|
ui := new(cli.MockUi)
|
|
|
|
|
c := &TokenLookupCommand{
|
2016-04-01 17:16:05 +00:00
|
|
|
Meta: meta.Meta{
|
2015-12-29 20:18:59 +00:00
|
|
|
ClientToken: token,
|
|
|
|
|
Ui: ui,
|
|
|
|
|
},
|
|
|
|
|
}
|
2016-03-10 21:17:09 +00:00
|
|
|
|
2015-12-29 20:18:59 +00:00
|
|
|
args := []string{
|
|
|
|
|
"-address", addr,
|
|
|
|
|
}
|
|
|
|
|
// Run it once for client
|
|
|
|
|
c.Run(args)
|
|
|
|
|
|
|
|
|
|
// Create a new token for us to use
|
|
|
|
|
client, err := c.Client()
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("err: %s", err)
|
|
|
|
|
}
|
|
|
|
|
resp, err := client.Auth().Token().Create(&api.TokenCreateRequest{
|
|
|
|
|
Lease: "1h",
|
|
|
|
|
})
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("err: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Add token as arg for real test and run it
|
|
|
|
|
args = append(args, resp.Auth.ClientToken)
|
|
|
|
|
code := c.Run(args)
|
|
|
|
|
|
|
|
|
|
// Verify it worked
|
|
|
|
|
if code != 0 {
|
|
|
|
|
t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())
|
|
|
|
|
}
|
2016-03-10 21:17:09 +00:00
|
|
|
}
|
