1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
|
# frozen_string_literal: true
# rubocop:todo all
require 'spec_helper'
describe 'On-demand GCP Credentials' do
require_libmongocrypt
include_context 'define shared FLE helpers'
include_context 'with GCP kms_providers'
let(:client) { ClientRegistry.instance.new_local_client(SpecConfig.instance.addresses) }
let(:client_encryption_opts) do
{
kms_providers: { gcp: {} },
kms_tls_options: kms_tls_options,
key_vault_namespace: key_vault_namespace
}
end
let(:client_encryption) do
Mongo::ClientEncryption.new(
client,
client_encryption_opts
)
end
context 'when credentials are available' do
it 'authenticates successfully' do
skip 'This tests should be run inside Google Cloud only' unless ENV['TEST_FLE_GCP_AUTO']
expect do
client_encryption.create_data_key('gcp', data_key_options)
end.not_to raise_error
end
end
context 'when credentials are not available' do
it 'raises an error' do
skip 'This tests should NOT be run inside Google Cloud only' if ENV['TEST_FLE_GCP_AUTO']
expect do
client_encryption.create_data_key('gcp', data_key_options)
end.to raise_error(Mongo::Error::CryptError, /GCP credentials/)
end
end
end
|
