1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
|
require "helper"
# Required because this test file acesses classes under Azure::
require "azure_mgmt_resources"
require "azure_graph_rbac"
require "azure_mgmt_key_vault"
describe "azure transport" do
def transport(options = nil)
ENV["AZURE_TENANT_ID"] = "test_tenant_id"
ENV["AZURE_CLIENT_ID"] = "test_client_id"
ENV["AZURE_CLIENT_SECRET"] = "test_client_secret"
ENV["AZURE_SUBSCRIPTION_ID"] = "test_subscription_id"
# need to require this at here as it captures the envs on load
require "train/transports/azure"
Train::Transports::Azure.new(options)
end
let(:connection) { transport.connection }
let(:options) { connection.instance_variable_get(:@options) }
let(:cache) { connection.instance_variable_get(:@cache) }
let(:credentials) { connection.instance_variable_get(:@credentials) }
describe "options" do
it "defaults to env options" do
_(options[:tenant_id]).must_equal "test_tenant_id"
_(options[:client_id]).must_equal "test_client_id"
_(options[:client_secret]).must_equal "test_client_secret"
_(options[:subscription_id]).must_equal "test_subscription_id"
end
it "allows for options override" do
transport = transport(subscription_id: "102", client_id: "717")
options = transport.connection.instance_variable_get(:@options)
_(options[:tenant_id]).must_equal "test_tenant_id"
_(options[:client_id]).must_equal "717"
_(options[:client_secret]).must_equal "test_client_secret"
_(options[:subscription_id]).must_equal "102"
end
it "allows uri parse override" do
transport = transport(host: "999")
options = transport.connection.instance_variable_get(:@options)
_(options[:tenant_id]).must_equal "test_tenant_id"
_(options[:subscription_id]).must_equal "999"
end
end
describe "platform" do
it "returns platform" do
plat = connection.platform
_(plat.name).must_equal "azure"
_(plat.family_hierarchy).must_equal %w{cloud api}
end
end
describe "azure_client" do
class AzureResource
attr_reader :hash
def initialize(hash)
@hash = hash
end
end
it "can use azure_client with caching" do
connection.instance_variable_set(:@credentials, {})
client = connection.azure_client(AzureResource)
_(client.is_a?(AzureResource)).must_equal true
_(cache[:api_call].count).must_equal 1
end
it "can use azure_client without caching" do
connection.instance_variable_set(:@credentials, {})
connection.disable_cache(:api_call)
client = connection.azure_client(AzureResource)
_(client.is_a?(AzureResource)).must_equal true
_(cache[:api_call].count).must_equal 0
end
it "can use azure_client default client" do
management_api_client = Azure::Resources::Profiles::Latest::Mgmt::Client
client = connection.azure_client
_(client.class).must_equal management_api_client
end
it "can use azure_client graph client" do
graph_api_client = Azure::GraphRbac::Profiles::Latest::Client
client = connection.azure_client(graph_api_client)
_(client.class).must_equal graph_api_client
end
it "can use azure_client vault client" do
vault_api_client = ::Azure::KeyVault::Profiles::Latest::Mgmt::Client
client = connection.azure_client(vault_api_client, vault_name: "Test Vault")
_(client.class).must_equal vault_api_client
end
it "cannot instantiate azure_client vault client without a vault name" do
vault_api_client = ::Azure::KeyVault::Profiles::Latest::Mgmt::Client
assert_raises(Train::UserError) do
connection.azure_client(vault_api_client)
end
end
end
describe "connect" do
it "validate credentials" do
connection.connect
token = credentials[:credentials].instance_variable_get(:@token_provider)
_(token.class).must_equal MsRestAzure::ApplicationTokenProvider
_(credentials[:credentials].class).must_equal MsRest::TokenCredentials
_(credentials[:tenant_id]).must_equal "test_tenant_id"
_(credentials[:client_id]).must_equal "test_client_id"
_(credentials[:client_secret]).must_equal "test_client_secret"
_(credentials[:subscription_id]).must_equal "test_subscription_id"
end
it "validate msi credentials" do
options[:client_id] = nil
options[:client_secret] = nil
Train::Transports::Azure::Connection.any_instance.stubs(:port_open?).returns(true)
connection.connect
token = credentials[:credentials].instance_variable_get(:@token_provider)
_(token.class).must_equal MsRestAzure::MSITokenProvider
_(credentials[:credentials].class).must_equal MsRest::TokenCredentials
_(credentials[:tenant_id]).must_equal "test_tenant_id"
_(credentials[:subscription_id]).must_equal "test_subscription_id"
_(credentials[:client_id]).must_be_nil
_(credentials[:client_secret]).must_be_nil
_(options[:msi_port]).must_equal 50342
end
end
describe "unique_identifier" do
it "returns a subscription id" do
_(connection.unique_identifier).must_equal "test_subscription_id"
end
it "returns a tenant id" do
options = connection.instance_variable_get(:@options)
options[:subscription_id] = nil
_(connection.unique_identifier).must_equal "test_tenant_id"
end
end
end
|
