Search in sources :

Example 36 with ValidationFailed

use of io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed in project stackgres by ongres.

the class BackupConfigSourceValidatorTest method givenNonExistentSecretAccessKeySecretForS3StorageCredentialsOnCreation_shouldFail.

@Test
void givenNonExistentSecretAccessKeySecretForS3StorageCredentialsOnCreation_shouldFail() throws ValidationFailed {
    final BackupConfigReview review = getEmptyReview();
    String namespace = review.getRequest().getObject().getMetadata().getNamespace();
    String accessKeyIdName = "secret1";
    String accessKeyIdKey = "key1";
    String secretAccessKeyName = "secret2";
    String secretAccessKeyKey = "key2";
    setS3Credentials(review, accessKeyIdName, accessKeyIdKey, secretAccessKeyName, secretAccessKeyKey);
    when(secretFinder.findByNameAndNamespace(accessKeyIdName, namespace)).thenReturn(Optional.of(new SecretBuilder(secret).withData(ImmutableMap.of(accessKeyIdKey, ResourceUtil.encodeSecret("accessKeyId"))).build()));
    ValidationFailed ex = ValidationUtils.assertErrorType(ErrorType.INVALID_SECRET, () -> validator.validate(review));
    assertEquals("Invalid backup configuration, secret " + secretAccessKeyName + " for secretAccessKey of s3 credentials not found", ex.getResult().getMessage());
    verify(secretFinder).findByNameAndNamespace(eq(accessKeyIdName), eq(namespace));
}
Also used : SecretBuilder(io.fabric8.kubernetes.api.model.SecretBuilder) ValidationFailed(io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed) BackupConfigReview(io.stackgres.operator.common.BackupConfigReview) Test(org.junit.jupiter.api.Test)

Example 37 with ValidationFailed

use of io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed in project stackgres by ongres.

the class BackupConfigSourceValidatorTest method givenNonExistentServiceAccountJsonKeySecretForGcsStorageCredentialsOnCreation_shouldFail.

@Test
void givenNonExistentServiceAccountJsonKeySecretForGcsStorageCredentialsOnCreation_shouldFail() throws ValidationFailed {
    final BackupConfigReview review = getEmptyReview();
    String serviceAccountJsonKeyName = "secret1";
    String serviceAccountJsonKeyKey = "key1";
    setGcsCredentials(review, serviceAccountJsonKeyName, serviceAccountJsonKeyKey);
    ValidationFailed ex = ValidationUtils.assertErrorType(ErrorType.INVALID_SECRET, () -> validator.validate(review));
    assertEquals("Invalid backup configuration, secret " + serviceAccountJsonKeyName + " for serviceAccountJsonKey of gcs credentials not found", ex.getResult().getMessage());
}
Also used : ValidationFailed(io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed) BackupConfigReview(io.stackgres.operator.common.BackupConfigReview) Test(org.junit.jupiter.api.Test)

Example 38 with ValidationFailed

use of io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed in project stackgres by ongres.

the class BackupConfigSourceValidatorTest method givenNonExistentAccessKeyIdKeyForS3StorageCredentialsOnCreation_shouldFail.

@Test
void givenNonExistentAccessKeyIdKeyForS3StorageCredentialsOnCreation_shouldFail() throws ValidationFailed {
    final BackupConfigReview review = getEmptyReview();
    String namespace = review.getRequest().getObject().getMetadata().getNamespace();
    String accessKeyIdName = "secret1";
    String accessKeyIdKey = "key1";
    String secretAccessKeyName = "secret2";
    String secretAccessKeyKey = "key2";
    setS3Credentials(review, accessKeyIdName, accessKeyIdKey, secretAccessKeyName, secretAccessKeyKey);
    when(secretFinder.findByNameAndNamespace(accessKeyIdName, namespace)).thenReturn(Optional.of(new SecretBuilder(secret).withData(ImmutableMap.of(accessKeyIdKey + "-wrong", ResourceUtil.encodeSecret("accessKeyId"))).build()));
    ValidationFailed ex = ValidationUtils.assertErrorType(ErrorType.INVALID_SECRET, () -> validator.validate(review));
    assertEquals("Invalid backup configuration, key " + accessKeyIdKey + " of secret " + accessKeyIdName + " for accessKeyId of s3 credentials not found", ex.getResult().getMessage());
    verify(secretFinder).findByNameAndNamespace(eq(accessKeyIdName), eq(namespace));
}
Also used : SecretBuilder(io.fabric8.kubernetes.api.model.SecretBuilder) ValidationFailed(io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed) BackupConfigReview(io.stackgres.operator.common.BackupConfigReview) Test(org.junit.jupiter.api.Test)

Example 39 with ValidationFailed

use of io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed in project stackgres by ongres.

the class BackupConfigSourceValidatorTest method givenNonExistentAccessKeyIdSecretForS3CompatibleStorageCredentialsOnCreation_shouldFail.

@Test
void givenNonExistentAccessKeyIdSecretForS3CompatibleStorageCredentialsOnCreation_shouldFail() throws ValidationFailed {
    final BackupConfigReview review = getEmptyReview();
    String accessKeyIdName = "secret1";
    String accessKeyIdKey = "key1";
    String secretAccessKeyName = "secret2";
    String secretAccessKeyKey = "key2";
    setS3CompatibleCredentials(review, accessKeyIdName, accessKeyIdKey, secretAccessKeyName, secretAccessKeyKey);
    ValidationFailed ex = ValidationUtils.assertErrorType(ErrorType.INVALID_SECRET, () -> validator.validate(review));
    assertEquals("Invalid backup configuration, secret " + accessKeyIdName + " for accessKeyId of s3compatible credentials not found", ex.getResult().getMessage());
}
Also used : ValidationFailed(io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed) BackupConfigReview(io.stackgres.operator.common.BackupConfigReview) Test(org.junit.jupiter.api.Test)

Example 40 with ValidationFailed

use of io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed in project stackgres by ongres.

the class BackupConfigSourceValidatorTest method givenNonExistentSecretAccessKeyKeyForS3CompatibleStorageCredentialsKeyOnCreation_shouldFail.

@Test
void givenNonExistentSecretAccessKeyKeyForS3CompatibleStorageCredentialsKeyOnCreation_shouldFail() throws ValidationFailed {
    final BackupConfigReview review = getEmptyReview();
    String namespace = review.getRequest().getObject().getMetadata().getNamespace();
    String accessKeyIdName = "secret1";
    String accessKeyIdKey = "key1";
    String secretAccessKeyName = "secret2";
    String secretAccessKeyKey = "key2";
    setS3CompatibleCredentials(review, accessKeyIdName, accessKeyIdKey, secretAccessKeyName, secretAccessKeyKey);
    when(secretFinder.findByNameAndNamespace(accessKeyIdName, namespace)).thenReturn(Optional.of(new SecretBuilder(secret).withData(ImmutableMap.of(accessKeyIdKey, ResourceUtil.encodeSecret("accessKeyId"))).build()));
    when(secretFinder.findByNameAndNamespace(secretAccessKeyName, namespace)).thenReturn(Optional.of(new SecretBuilder(secret).withData(ImmutableMap.of(secretAccessKeyKey + "-wrong", ResourceUtil.encodeSecret("secretAccessKey"))).build()));
    ValidationFailed ex = ValidationUtils.assertErrorType(ErrorType.INVALID_SECRET, () -> validator.validate(review));
    assertEquals("Invalid backup configuration, key " + secretAccessKeyKey + " of secret " + secretAccessKeyName + " for secretAccessKey of s3compatible credentials not found", ex.getResult().getMessage());
    verify(secretFinder).findByNameAndNamespace(eq(accessKeyIdName), eq(namespace));
    verify(secretFinder).findByNameAndNamespace(eq(secretAccessKeyName), eq(namespace));
}
Also used : SecretBuilder(io.fabric8.kubernetes.api.model.SecretBuilder) ValidationFailed(io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed) BackupConfigReview(io.stackgres.operator.common.BackupConfigReview) Test(org.junit.jupiter.api.Test)

Aggregations

ValidationFailed (io.stackgres.operatorframework.admissionwebhook.validating.ValidationFailed)61 Test (org.junit.jupiter.api.Test)46 StackGresClusterReview (io.stackgres.operator.common.StackGresClusterReview)24 BackupConfigReview (io.stackgres.operator.common.BackupConfigReview)17 ArgumentMatchers.anyString (org.mockito.ArgumentMatchers.anyString)15 SecretBuilder (io.fabric8.kubernetes.api.model.SecretBuilder)10 StackGresClusterSpec (io.stackgres.common.crd.sgcluster.StackGresClusterSpec)5 Status (io.fabric8.kubernetes.api.model.Status)4 StackGresPostgresConfig (io.stackgres.common.crd.sgpgconfig.StackGresPostgresConfig)4 StatusBuilder (io.fabric8.kubernetes.api.model.StatusBuilder)3 ParameterizedTest (org.junit.jupiter.params.ParameterizedTest)3 ValueSource (org.junit.jupiter.params.provider.ValueSource)3 StatusDetailsBuilder (io.fabric8.kubernetes.api.model.StatusDetailsBuilder)2 StackGresCluster (io.stackgres.common.crd.sgcluster.StackGresCluster)2 PgConfigReview (io.stackgres.operator.common.PgConfigReview)2 StackGresDbOpsReview (io.stackgres.operator.common.StackGresDbOpsReview)2 Operation (io.stackgres.operatorframework.admissionwebhook.Operation)2 List (java.util.List)2 ImmutableList (com.google.common.collect.ImmutableList)1 HasMetadata (io.fabric8.kubernetes.api.model.HasMetadata)1