OrgGo/Mainflux.mainflux
1
0
Fork 0
mirror of https://github.com/mainflux/mainflux.git synced 2025-04-28 13:48:49 +08:00
Code Issues Projects Releases Wiki Activity
Mainflux.mainflux/pkg/sdk/go/certs_test.go

357 lines
9.4 KiB
Go
Raw Normal View History

MF-1699 - Enrich SDK and CLI (#1719) * initial commit update api docs Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * initial commit enrich sdk Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * initial commit enrich cli Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * add consumers test Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * remove dead code Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * add certs sdk tests Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * change contact name Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * fix tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Rename Disconnect Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix subscription typo Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Swagger File Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Change Limit to 10 Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Remove empty line Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Co-authored-by: rodneyosodo <socials@rodneyosodo.com>
2023-05-25 06:02:46 +08:00
// Copyright (c) Mainflux
// SPDX-License-Identifier: Apache-2.0
package sdk_test
import (
"fmt"
"net/http"
"net/http/httptest"
"strconv"
"testing"
"time"
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require"
"github.com/mainflux/mainflux"
bsmocks "github.com/mainflux/mainflux/bootstrap/mocks"
"github.com/mainflux/mainflux/certs"
httpapi "github.com/mainflux/mainflux/certs/api"
"github.com/mainflux/mainflux/certs/mocks"
"github.com/mainflux/mainflux/internal/apiutil"
"github.com/mainflux/mainflux/logger"
"github.com/mainflux/mainflux/pkg/errors"
sdk "github.com/mainflux/mainflux/pkg/sdk/go"
"github.com/mainflux/mainflux/things"
thmocks "github.com/mainflux/mainflux/things/mocks"
)
var (
thingsNum = 1
thingKey = "thingKey"
thingID = "1"
caPath = "../../../docker/ssl/certs/ca.crt"
caKeyPath = "../../../docker/ssl/certs/ca.key"
cfgAuthTimeout = "1s"
cfgSignHoursValid = "24h"
)
func newCertsThingsService(auth mainflux.AuthServiceClient) things.Service {
ths := make(map[string]things.Thing, thingsNum)
for i := 0; i < thingsNum; i++ {
id := strconv.Itoa(i + 1)
ths[id] = things.Thing{
ID: id,
Key: thingKey,
Owner: email,
}
}
return bsmocks.NewThingsService(ths, map[string]things.Channel{}, auth)
}
func newCertService() (certs.Service, error) {
ac := bsmocks.NewAuthClient(map[string]string{token: email})
server := newThingsServer(newCertsThingsService(ac))
policies := []thmocks.MockSubjectSet{{Object: "users", Relation: "member"}}
auth := thmocks.NewAuthService(map[string]string{token: email}, map[string][]thmocks.MockSubjectSet{email: policies})
config := sdk.Config{
ThingsURL: server.URL,
}
mfsdk := sdk.NewSDK(config)
repo := mocks.NewCertsRepository()
tlsCert, caCert, err := certs.LoadCertificates(caPath, caKeyPath)
if err != nil {
return nil, err
}
authTimeout, err := time.ParseDuration(cfgAuthTimeout)
if err != nil {
return nil, err
}
pki := mocks.NewPkiAgent(tlsCert, caCert, cfgSignHoursValid, authTimeout)
return certs.New(auth, repo, mfsdk, pki), nil
}
func newCertServer(svc certs.Service) *httptest.Server {
logger := logger.NewMock()
mux := httpapi.MakeHandler(svc, logger)
return httptest.NewServer(mux)
}
func TestIssueCert(t *testing.T) {
svc, err := newCertService()
require.Nil(t, err, fmt.Sprintf("unexpected error during creating service: %s", err))
ts := newCertServer(svc)
defer ts.Close()
sdkConf := sdk.Config{
CertsURL: ts.URL,
MsgContentType: contentType,
TLSVerification: false,
}
mainfluxSDK := sdk.NewSDK(sdkConf)
cases := []struct {
desc string
thingID string
duration string
token string
err errors.SDKError
}{
{
desc: "create new cert with thing id and duration",
thingID: thingID,
duration: "10h",
token: token,
err: nil,
},
{
desc: "create new cert with empty thing id and duration",
thingID: "",
duration: "10h",
token: token,
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingID, http.StatusBadRequest),
},
{
desc: "create new cert with invalid thing id and duration",
thingID: "ah",
duration: "10h",
token: token,
err: errors.NewSDKErrorWithStatus(certs.ErrFailedCertCreation, http.StatusInternalServerError),
},
{
desc: "create new cert with thing id and empty duration",
thingID: thingID,
duration: "",
token: exampleUser1,
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingCertData, http.StatusBadRequest),
},
{
desc: "create new cert with thing id and malformed duration",
thingID: thingID,
duration: "10g",
token: exampleUser1,
err: errors.NewSDKErrorWithStatus(apiutil.ErrInvalidCertData, http.StatusBadRequest),
},
{
desc: "create new cert with empty token",
thingID: thingID,
duration: "10h",
token: "",
err: errors.NewSDKErrorWithStatus(apiutil.ErrBearerToken, http.StatusUnauthorized),
},
{
desc: "create new cert with invalid token",
thingID: thingID,
duration: "10h",
token: wrongValue,
err: errors.NewSDKErrorWithStatus(errors.ErrAuthentication, http.StatusUnauthorized),
},
{
desc: "create new empty cert",
thingID: "",
duration: "",
token: token,
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingID, http.StatusBadRequest),
},
}
for _, tc := range cases {
cert, err := mainfluxSDK.IssueCert(tc.thingID, tc.duration, tc.token)
assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
if err == nil {
assert.NotEmpty(t, cert, fmt.Sprintf("%s: got empty cert", tc.desc))
}
}
}
func TestViewCert(t *testing.T) {
svc, err := newCertService()
require.Nil(t, err, fmt.Sprintf("unexpected error during creating service: %s", err))
ts := newCertServer(svc)
defer ts.Close()
sdkConf := sdk.Config{
CertsURL: ts.URL,
MsgContentType: contentType,
TLSVerification: false,
}
mainfluxSDK := sdk.NewSDK(sdkConf)
cert, err := mainfluxSDK.IssueCert(thingID, "10h", token)
require.Nil(t, err, fmt.Sprintf("unexpected error during creating cert: %s", err))
cases := []struct {
desc string
certID string
token string
err errors.SDKError
response sdk.Subscription
}{
{
desc: "get existing cert",
certID: cert.CertSerial,
token: token,
err: nil,
response: sub1,
},
{
desc: "get non-existent cert",
certID: "43",
token: token,
err: errors.NewSDKErrorWithStatus(errors.ErrNotFound, http.StatusInternalServerError),
response: sdk.Subscription{},
},
{
desc: "get cert with invalid token",
certID: cert.CertSerial,
token: "",
err: errors.NewSDKErrorWithStatus(apiutil.ErrBearerToken, http.StatusUnauthorized),
response: sdk.Subscription{},
},
}
for _, tc := range cases {
cert, err := mainfluxSDK.ViewCert(tc.certID, tc.token)
assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
if err == nil {
assert.NotEmpty(t, cert, fmt.Sprintf("%s: got empty cert", tc.desc))
}
}
}
func TestViewCertByThing(t *testing.T) {
svc, err := newCertService()
require.Nil(t, err, fmt.Sprintf("unexpected error during creating service: %s", err))
ts := newCertServer(svc)
defer ts.Close()
sdkConf := sdk.Config{
CertsURL: ts.URL,
MsgContentType: contentType,
TLSVerification: false,
}
mainfluxSDK := sdk.NewSDK(sdkConf)
_, err = mainfluxSDK.IssueCert(thingID, "10h", token)
require.Nil(t, err, fmt.Sprintf("unexpected error during creating cert: %s", err))
cases := []struct {
desc string
thingID string
token string
err errors.SDKError
response sdk.Subscription
}{
{
desc: "get existing cert",
thingID: thingID,
token: token,
err: nil,
response: sub1,
},
{
desc: "get non-existent cert",
thingID: "43",
token: token,
err: errors.NewSDKErrorWithStatus(errors.ErrNotFound, http.StatusInternalServerError),
response: sdk.Subscription{},
},
{
desc: "get cert with invalid token",
thingID: thingID,
token: "",
err: errors.NewSDKErrorWithStatus(apiutil.ErrBearerToken, http.StatusUnauthorized),
response: sdk.Subscription{},
},
}
for _, tc := range cases {
cert, err := mainfluxSDK.ViewCertByThing(tc.thingID, tc.token)
assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
if err == nil {
assert.NotEmpty(t, cert, fmt.Sprintf("%s: got empty cert", tc.desc))
}
}
}
func TestRevokeCert(t *testing.T) {
svc, err := newCertService()
require.Nil(t, err, fmt.Sprintf("unexpected error during creating service: %s", err))
ts := newCertServer(svc)
defer ts.Close()
sdkConf := sdk.Config{
CertsURL: ts.URL,
MsgContentType: contentType,
TLSVerification: false,
}
mainfluxSDK := sdk.NewSDK(sdkConf)
_, err = mainfluxSDK.IssueCert(thingID, "10h", token)
require.Nil(t, err, fmt.Sprintf("unexpected error during creating cert: %s", err))
cases := []struct {
desc string
thingID string
token string
err errors.SDKError
}{
{
desc: "revoke cert with invalid token",
thingID: thingID,
token: wrongValue,
err: errors.NewSDKErrorWithStatus(errors.ErrAuthentication, http.StatusUnauthorized),
},
{
desc: "revoke non-existing cert",
thingID: "2",
token: token,
err: errors.NewSDKErrorWithStatus(certs.ErrFailedCertRevocation, http.StatusInternalServerError),
},
{
desc: "revoke cert with invalid id",
thingID: "",
token: token,
err: errors.NewSDKErrorWithStatus(apiutil.ErrMissingID, http.StatusBadRequest),
},
{
desc: "revoke cert with empty token",
thingID: thingID,
token: "",
err: errors.NewSDKErrorWithStatus(apiutil.ErrBearerToken, http.StatusUnauthorized),
},
{
desc: "revoke existing cert",
thingID: thingID,
token: token,
err: nil,
},
{
desc: "revoke deleted cert",
thingID: thingID,
token: token,
err: errors.NewSDKErrorWithStatus(certs.ErrFailedToRemoveCertFromDB, http.StatusInternalServerError),
},
}
for _, tc := range cases {
response, err := mainfluxSDK.RevokeCert(tc.thingID, tc.token)
assert.Equal(t, tc.err, err, fmt.Sprintf("%s: expected error %s, got %s", tc.desc, tc.err, err))
if err == nil {
assert.NotEmpty(t, response, fmt.Sprintf("%s: got empty revocation time", tc.desc))
}
}
}
Reference in New Issue Copy Permalink