test: add secrests tests

defenseunicorns · May 23, 2024 · 556a397 · 556a397
1 parent 42e1bf9
commit 556a397
Show file tree

Hide file tree

Showing 2 changed files with 78 additions and 0 deletions.
diff --git a/src/pkg/cluster/secrets.go b/src/pkg/cluster/secrets.go
@@ -75,6 +75,7 @@ func (c *Cluster) GenerateGitPullCreds(namespace, name string, gitServerInfo typ
 }
 
 // UpdateZarfManagedImageSecrets updates all Zarf-managed image secrets in all namespaces based on state
+// TODO: Refactor to return errors properly.
 func (c *Cluster) UpdateZarfManagedImageSecrets(ctx context.Context, state *types.ZarfState) {
 	spinner := message.NewProgressSpinner("Updating existing Zarf-managed image secrets")
 	defer spinner.Stop()
@@ -109,6 +110,7 @@ func (c *Cluster) UpdateZarfManagedImageSecrets(ctx context.Context, state *type
 }
 
 // UpdateZarfManagedGitSecrets updates all Zarf-managed git secrets in all namespaces based on state
+// TODO: Refactor to return errors properly.
 func (c *Cluster) UpdateZarfManagedGitSecrets(ctx context.Context, state *types.ZarfState) {
 	spinner := message.NewProgressSpinner("Updating existing Zarf-managed git secrets")
 	defer spinner.Stop()

diff --git a/src/pkg/cluster/secrets_test.go b/src/pkg/cluster/secrets_test.go
@@ -0,0 +1,76 @@
+// SPDX-License-Identifier: Apache-2.0
+// SPDX-FileCopyrightText: 2021-Present The Zarf Authors
+
+package cluster
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/require"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"github.com/defenseunicorns/zarf/src/pkg/k8s"
+	"github.com/defenseunicorns/zarf/src/types"
+)
+
+func TestGenerateRegistryPullCreds(t *testing.T) {
+	c := &Cluster{}
+	ri := types.RegistryInfo{
+		PushUsername: "push-user",
+		PushPassword: "push-password",
+		PullUsername: "pull-user",
+		PullPassword: "pull-password",
+		Address:      "example.com",
+	}
+	secret := c.GenerateRegistryPullCreds("foo", "bar", ri)
+	expectedSecret := corev1.Secret{
+		TypeMeta: metav1.TypeMeta{
+			APIVersion: "v1",
+			Kind:       "Secret",
+		},
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      "bar",
+			Namespace: "foo",
+			Labels: map[string]string{
+				k8s.ZarfManagedByLabel: "zarf",
+			},
+		},
+		Type: corev1.SecretTypeDockerConfigJson,
+		Data: map[string][]byte{
+			".dockerconfigjson": []byte(`{"auths":{"example.com":{"auth":"cHVsbC11c2VyOnB1bGwtcGFzc3dvcmQ="}}}`),
+		},
+	}
+	require.Equal(t, expectedSecret, *secret)
+}
+
+func TestGenerateGitPullCreds(t *testing.T) {
+	c := &Cluster{}
+	gi := types.GitServerInfo{
+		PushUsername: "push-user",
+		PushPassword: "push-password",
+		PullUsername: "pull-user",
+		PullPassword: "pull-password",
+	}
+	secret := c.GenerateGitPullCreds("foo", "bar", gi)
+	expectedSecret := corev1.Secret{
+		TypeMeta: metav1.TypeMeta{
+			APIVersion: "v1",
+			Kind:       "Secret",
+		},
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      "bar",
+			Namespace: "foo",
+			Labels: map[string]string{
+				k8s.ZarfManagedByLabel: "zarf",
+			},
+		},
+		Type: corev1.SecretTypeOpaque,
+		Data: map[string][]byte{},
+		StringData: map[string]string{
+			"username": "pull-user",
+			"password": "pull-password",
+		},
+	}
+	require.Equal(t, expectedSecret, *secret)
+}