open-vault/vault/external_tests/api/api_integration_test.go

package api

import (
	"encoding/base64"
	"testing"

	log "github.com/hashicorp/go-hclog"
	"github.com/hashicorp/vault/api"
	"github.com/hashicorp/vault/audit"
	auditFile "github.com/hashicorp/vault/builtin/audit/file"
	credUserpass "github.com/hashicorp/vault/builtin/credential/userpass"
	"github.com/hashicorp/vault/builtin/logical/database"
	"github.com/hashicorp/vault/builtin/logical/pki"
	"github.com/hashicorp/vault/builtin/logical/transit"
	"github.com/hashicorp/vault/helper/builtinplugins"
	"github.com/hashicorp/vault/http"
	"github.com/hashicorp/vault/sdk/logical"
	"github.com/hashicorp/vault/vault"
)

// testVaultServer creates a test vault cluster and returns a configured API
// client and closer function.
func testVaultServer(t testing.TB) (*api.Client, func()) {
	t.Helper()

	client, _, closer := testVaultServerUnseal(t)
	return client, closer
}

// testVaultServerUnseal creates a test vault cluster and returns a configured
// API client, list of unseal keys (as strings), and a closer function.
func testVaultServerUnseal(t testing.TB) (*api.Client, []string, func()) {
	t.Helper()

	return testVaultServerCoreConfig(t, &vault.CoreConfig{
		DisableMlock: true,
		DisableCache: true,
		Logger:       log.NewNullLogger(),
		CredentialBackends: map[string]logical.Factory{
			"userpass": credUserpass.Factory,
		},
		AuditBackends: map[string]audit.Factory{
			"file": auditFile.Factory,
		},
		LogicalBackends: map[string]logical.Factory{
			"database":       database.Factory,
			"generic-leased": vault.LeasedPassthroughBackendFactory,
			"pki":            pki.Factory,
			"transit":        transit.Factory,
		},
		BuiltinRegistry: builtinplugins.Registry,
	})
}

// testVaultServerCoreConfig creates a new vault cluster with the given core
// configuration. This is a lower-level test helper.
func testVaultServerCoreConfig(t testing.TB, coreConfig *vault.CoreConfig) (*api.Client, []string, func()) {
	t.Helper()

	cluster := vault.NewTestCluster(t, coreConfig, &vault.TestClusterOptions{
		HandlerFunc: http.Handler,
	})
	cluster.Start()

	// Make it easy to get access to the active
	core := cluster.Cores[0].Core
	vault.TestWaitActive(t, core)

	// Get the client already setup for us!
	client := cluster.Cores[0].Client
	client.SetToken(cluster.RootToken)

	// Convert the unseal keys to base64 encoded, since these are how the user
	// will get them.
	unsealKeys := make([]string, len(cluster.BarrierKeys))
	for i := range unsealKeys {
		unsealKeys[i] = base64.StdEncoding.EncodeToString(cluster.BarrierKeys[i])
	}

	return client, unsealKeys, func() { defer cluster.Cleanup() }
}
This moves api_test package tests into vault/external_tests This prevents projects importing Vault's API from then also importing the rest of Vault. 2019-03-06 16:20:42 +00:00			`package api`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00
			`import (`
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`"encoding/base64"`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`"testing"`

Merge multiple functions for creating consul containers into one. (#6612) Merge both functions for creating mongodb containers into one. Add retries to docker container cleanups. Require $VAULT_ACC be set to enable AWS tests. 2019-04-22 16:26:10 +00:00			`log "github.com/hashicorp/go-hclog"`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`"github.com/hashicorp/vault/api"`
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`"github.com/hashicorp/vault/audit"`
Merge multiple functions for creating consul containers into one. (#6612) Merge both functions for creating mongodb containers into one. Add retries to docker container cleanups. Require $VAULT_ACC be set to enable AWS tests. 2019-04-22 16:26:10 +00:00			`auditFile "github.com/hashicorp/vault/builtin/audit/file"`
			`credUserpass "github.com/hashicorp/vault/builtin/credential/userpass"`
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`"github.com/hashicorp/vault/builtin/logical/database"`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`"github.com/hashicorp/vault/builtin/logical/pki"`
			`"github.com/hashicorp/vault/builtin/logical/transit"`
Run all builtins as plugins (#5536) 2018-11-07 01:21:24 +00:00			`"github.com/hashicorp/vault/helper/builtinplugins"`
Merge multiple functions for creating consul containers into one. (#6612) Merge both functions for creating mongodb containers into one. Add retries to docker container cleanups. Require $VAULT_ACC be set to enable AWS tests. 2019-04-22 16:26:10 +00:00			`"github.com/hashicorp/vault/http"`
Create sdk/ and api/ submodules (#6583) 2019-04-12 21:54:35 +00:00			`"github.com/hashicorp/vault/sdk/logical"`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`"github.com/hashicorp/vault/vault"`
			`)`

Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// testVaultServer creates a test vault cluster and returns a configured API`
			`// client and closer function.`
			`func testVaultServer(t testing.TB) (*api.Client, func()) {`
			`t.Helper()`

			`client, _, closer := testVaultServerUnseal(t)`
			`return client, closer`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`}`

Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// testVaultServerUnseal creates a test vault cluster and returns a configured`
			`// API client, list of unseal keys (as strings), and a closer function.`
			`func testVaultServerUnseal(t testing.TB) (*api.Client, []string, func()) {`
			`t.Helper()`

			`return testVaultServerCoreConfig(t, &vault.CoreConfig{`
			`DisableMlock: true,`
			`DisableCache: true,`
Move to "github.com/hashicorp/go-hclog" (#4227) * logbridge with hclog and identical output * Initial search & replace This compiles, but there is a fair amount of TODO and commented out code, especially around the plugin logclient/logserver code. * strip logbridge * fix majority of tests * update logxi aliases * WIP fixing tests * more test fixes * Update test to hclog * Fix format * Rename hclog -> log * WIP making hclog and logxi love each other * update logger_test.go * clean up merged comments * Replace RawLogger interface with a Logger * Add some logger names * Replace Trace with Debug * update builtin logical logging patterns * Fix build errors * More log updates * update log approach in command and builtin * More log updates * update helper, http, and logical directories * Update loggers * Log updates * Update logging * Update logging * Update logging * Update logging * update logging in physical * prefixing and lowercase * Update logging * Move phyisical logging name to server command * Fix som tests * address jims feedback so far * incorporate brians feedback so far * strip comments * move vault.go to logging package * update Debug to Trace * Update go-plugin deps * Update logging based on review comments * Updates from review * Unvendor logxi * Remove null_logger.go 2018-04-03 00:46:59 +00:00			`Logger: log.NewNullLogger(),`
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`CredentialBackends: map[string]logical.Factory{`
			`"userpass": credUserpass.Factory,`
			`},`
			`AuditBackends: map[string]audit.Factory{`
			`"file": auditFile.Factory,`
			`},`
			`LogicalBackends: map[string]logical.Factory{`
			`"database": database.Factory,`
			`"generic-leased": vault.LeasedPassthroughBackendFactory,`
			`"pki": pki.Factory,`
			`"transit": transit.Factory,`
			`},`
Run all builtins as plugins (#5536) 2018-11-07 01:21:24 +00:00			`BuiltinRegistry: builtinplugins.Registry,`
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`})`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`}`

Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// testVaultServerCoreConfig creates a new vault cluster with the given core`
			`// configuration. This is a lower-level test helper.`
			`func testVaultServerCoreConfig(t testing.TB, coreConfig vault.CoreConfig) (api.Client, []string, func()) {`
			`t.Helper()`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00
Add a -dev-three-node option for devs. (#3081) 2017-07-31 15:28:06 +00:00			`cluster := vault.NewTestCluster(t, coreConfig, &vault.TestClusterOptions{`
Merge multiple functions for creating consul containers into one. (#6612) Merge both functions for creating mongodb containers into one. Add retries to docker container cleanups. Require $VAULT_ACC be set to enable AWS tests. 2019-04-22 16:26:10 +00:00			`HandlerFunc: http.Handler,`
Add a -dev-three-node option for devs. (#3081) 2017-07-31 15:28:06 +00:00			`})`
			`cluster.Start()`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// Make it easy to get access to the active`
updating for TestCluster changes 2017-07-11 03:47:03 +00:00			`core := cluster.Cores[0].Core`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00			`vault.TestWaitActive(t, core)`

Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// Get the client already setup for us!`
updating for TestCluster changes 2017-07-11 03:47:03 +00:00			`client := cluster.Cores[0].Client`
Add a -dev-three-node option for devs. (#3081) 2017-07-31 15:28:06 +00:00			`client.SetToken(cluster.RootToken)`
Use a separate package for API integration tests This removes the cyclic dependency 2017-06-26 21:21:14 +00:00
Add API functions for token helpers 2017-09-02 22:48:48 +00:00			`// Convert the unseal keys to base64 encoded, since these are how the user`
			`// will get them.`
			`unsealKeys := make([]string, len(cluster.BarrierKeys))`
			`for i := range unsealKeys {`
			`unsealKeys[i] = base64.StdEncoding.EncodeToString(cluster.BarrierKeys[i])`
			`}`

			`return client, unsealKeys, func() { defer cluster.Cleanup() }`
			`}`