1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
|
from unittest import TestCase
import requests_mock
from parameterized import parameterized
from hvac import Client
class TestGcpMethods(TestCase):
"""Unit tests providing coverage for GCP auth backend-related methods/routes."""
@parameterized.expand(
[
(
"default mount point",
"custom_role",
"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
None,
),
(
"custom mount point",
"custom_role",
"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
"gcp-not-default",
),
]
)
@requests_mock.Mocker()
def test_auth_gcp(
self, test_label, test_role, test_jwt, mount_point, requests_mocker
):
mock_response = {
"auth": {
"accessor": "accessor-1234-5678-9012-345678901234",
"client_token": "cltoken-1234-5678-9012-345678901234",
"lease_duration": 10000,
"metadata": {
"role": "custom_role",
"service_account_email": "dev1@project-123456.iam.gserviceaccount.com",
"service_account_id": "111111111111111111111",
},
"policies": ["default", "custom_role"],
"renewable": True,
},
"data": None,
"lease_duration": 0,
"lease_id": "",
"renewable": False,
"request_id": "requesti-1234-5678-9012-345678901234",
"warnings": [],
"wrap_info": None,
}
mock_url = "http://localhost:8200/v1/auth/{}/login".format(
"gcp" if mount_point is None else mount_point
)
requests_mocker.register_uri(method="POST", url=mock_url, json=mock_response)
client = Client()
if mount_point is None:
actual_response = client.auth.gcp.login(role=test_role, jwt=test_jwt)
else:
actual_response = client.auth.gcp.login(
role=test_role, jwt=test_jwt, mount_point=mount_point
)
# ensure we received our mock response data back successfully
self.assertEqual(mock_response, actual_response)
|
