aboutsummaryrefslogtreecommitdiff
path: root/server/config/config_test.go
blob: 399e143d4472c0f6baf3d123b4b482a5277ddefe (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
package config

import (
	"bytes"
	"testing"

	"github.com/nsheridan/cashier/server/config/testdata"
	"github.com/stretchr/testify/assert"
)

var (
	parsedConfig = &Config{
		Server: &Server{
			UseTLS:       true,
			TLSKey:       "server.key",
			TLSCert:      "server.crt",
			Addr:         "127.0.0.1",
			Port:         443,
			User:         "nobody",
			CookieSecret: "supersecret",
			CSRFSecret:   "supersecret",
			HTTPLogFile:  "cashierd.log",
			Database:     Database{"type": "mysql", "username": "user", "password": "passwd", "address": "localhost:3306"},
			Datastore:    "mysql:user:passwd:localhost:3306",
		},
		Auth: &Auth{
			OauthClientID:     "client_id",
			OauthClientSecret: "secret",
			OauthCallbackURL:  "https://sshca.example.com/auth/callback",
			Provider:          "google",
			ProviderOpts:      map[string]string{"domain": "example.com"},
			UsersWhitelist:    []string{"a_user"},
		},
		SSH: &SSH{
			SigningKey:           "signing_key",
			AdditionalPrincipals: []string{"ec2-user", "ubuntu"},
			MaxAge:               "720h",
			Permissions:          []string{"permit-pty", "permit-X11-forwarding", "permit-port-forwarding", "permit-user-rc"},
		},
		AWS: &AWS{
			Region:    "us-east-1",
			AccessKey: "abcdef",
			SecretKey: "omg123",
		},
		Vault: &Vault{
			Address: "https://vault:8200",
			Token:   "abc-def-456-789",
		},
	}
)

func TestConfigParser(t *testing.T) {
	c, err := ReadConfig(bytes.NewBuffer(testdata.Config))
	if err != nil {
		t.Error(err)
	}
	assert.Equal(t, parsedConfig, c)
}

func TestConfigVerify(t *testing.T) {
	bad := bytes.NewBuffer([]byte(""))
	_, err := ReadConfig(bad)
	assert.Contains(t, err.Error(), "missing ssh config section", "missing server config section", "missing auth config section")
}

func TestDatastoreConversion(t *testing.T) {
	tests := []struct {
		in  string
		out Database
	}{
		{
			"mysql:user:passwd:localhost:3306", Database{"type": "mysql", "username": "user", "password": "passwd", "address": "localhost:3306"},
		},
		{
			"mongo:::host1,host2", Database{"type": "mongo", "username": "", "password": "", "address": "host1,host2"},
		},
		{
			"mem", Database{"type": "mem"},
		},
		{
			"sqlite:/data/certs.db", Database{"type": "sqlite", "filename": "/data/certs.db"},
		},
	}

	for _, tc := range tests {
		config := &Config{
			Server: &Server{
				Datastore: tc.in,
			},
		}
		convertDatastoreConfig(config)
		assert.EqualValues(t, config.Server.Database, tc.out)
	}
}