File: set_test.go

package info (click to toggle)
golang-github-spiffe-go-spiffe 2.5.0-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 1,116 kB
  • sloc: makefile: 157
file content (85 lines) | stat: -rw-r--r-- 2,239 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
 
package spiffebundle_test

import (
	"crypto"
	"crypto/x509"
	"testing"

	"github.com/spiffe/go-spiffe/v2/bundle/jwtbundle"
	"github.com/spiffe/go-spiffe/v2/bundle/spiffebundle"
	"github.com/spiffe/go-spiffe/v2/bundle/x509bundle"
	"github.com/stretchr/testify/require"
)

var (
	b1 = spiffebundle.New(td)
)

func TestNewSet(t *testing.T) {
	s := spiffebundle.NewSet(b1)
	require.True(t, s.Has(td))

	s = spiffebundle.NewSet(spiffebundle.New(td), spiffebundle.New(td2))
	require.True(t, s.Has(td))
	require.True(t, s.Has(td2))
}

func TestAdd(t *testing.T) {
	s := spiffebundle.NewSet()
	require.False(t, s.Has(td))
	s.Add(b1)
	require.True(t, s.Has(td))
}

func TestRemove(t *testing.T) {
	s := spiffebundle.NewSet(b1)
	require.True(t, s.Has(td))
	s.Remove(td2)
	require.True(t, s.Has(td))
	s.Remove(td)
	require.False(t, s.Has(td))
}

func TestHas(t *testing.T) {
	s := spiffebundle.NewSet(spiffebundle.New(td))
	require.False(t, s.Has(td2))
	require.True(t, s.Has(td))
}

func TestSetGetBundleForTrustDomain(t *testing.T) {
	s := spiffebundle.NewSet(b1)
	_, err := s.GetBundleForTrustDomain(td2)
	require.EqualError(t, err, `spiffebundle: no SPIFFE bundle for trust domain "domain2.test"`)

	b, err := s.GetBundleForTrustDomain(td)
	require.NoError(t, err)
	require.Equal(t, b1, b)
}

func TestSetGetX509BundleForTrustDomain(t *testing.T) {
	xb1 := x509bundle.FromX509Authorities(td, []*x509.Certificate{x509Cert1})
	b := spiffebundle.FromX509Bundle(xb1)
	s := spiffebundle.NewSet(b)
	_, err := s.GetX509BundleForTrustDomain(td2)
	require.EqualError(t, err, `spiffebundle: no X.509 bundle for trust domain "domain2.test"`)

	xb2, err := s.GetX509BundleForTrustDomain(td)
	require.NoError(t, err)
	require.Equal(t, xb1, xb2)
}

func TestSetGetJWTBundleForTrustDomain(t *testing.T) {
	jwtAuthorities := map[string]crypto.PublicKey{
		"key-1": "test-1",
		"key-2": "test-2",
	}
	jb1 := jwtbundle.FromJWTAuthorities(td, jwtAuthorities)
	b := spiffebundle.FromJWTBundle(jb1)
	s := spiffebundle.NewSet(b)
	_, err := s.GetJWTBundleForTrustDomain(td2)
	require.EqualError(t, err, `spiffebundle: no JWT bundle for trust domain "domain2.test"`)

	jb2, err := s.GetJWTBundleForTrustDomain(td)
	require.NoError(t, err)
	require.Equal(t, jb1, jb2)
}