mirror of
https://github.com/kubernetes-sigs/kustomize.git
synced 2026-06-11 17:12:51 +00:00
155 lines
3.5 KiB
Go
155 lines
3.5 KiB
Go
// Copyright 2019 The Kubernetes Authors.
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package configmapandsecret
|
|
|
|
import (
|
|
"reflect"
|
|
"testing"
|
|
|
|
corev1 "k8s.io/api/core/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"sigs.k8s.io/kustomize/api/filesys"
|
|
"sigs.k8s.io/kustomize/api/kv"
|
|
"sigs.k8s.io/kustomize/api/loader"
|
|
valtest_test "sigs.k8s.io/kustomize/api/testutils/valtest"
|
|
"sigs.k8s.io/kustomize/api/types"
|
|
)
|
|
|
|
func makeEnvSecret(name string) *corev1.Secret {
|
|
return &corev1.Secret{
|
|
TypeMeta: metav1.TypeMeta{
|
|
APIVersion: "v1",
|
|
Kind: "Secret",
|
|
},
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: name,
|
|
},
|
|
Data: map[string][]byte{
|
|
"DB_PASSWORD": []byte("somepw"),
|
|
"DB_USERNAME": []byte("admin"),
|
|
},
|
|
Type: "Opaque",
|
|
}
|
|
}
|
|
|
|
func makeFileSecret(name string) *corev1.Secret {
|
|
return &corev1.Secret{
|
|
TypeMeta: metav1.TypeMeta{
|
|
APIVersion: "v1",
|
|
Kind: "Secret",
|
|
},
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: name,
|
|
},
|
|
Data: map[string][]byte{
|
|
"app-init.ini": []byte(`FOO=bar
|
|
BAR=baz
|
|
`),
|
|
},
|
|
Type: "Opaque",
|
|
}
|
|
}
|
|
|
|
func makeLiteralSecret(name string, labels, annotations map[string]string) *corev1.Secret {
|
|
s := &corev1.Secret{
|
|
TypeMeta: metav1.TypeMeta{
|
|
APIVersion: "v1",
|
|
Kind: "Secret",
|
|
},
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: name,
|
|
},
|
|
Data: map[string][]byte{
|
|
"a": []byte("x"),
|
|
"b": []byte("y"),
|
|
},
|
|
Type: "Opaque",
|
|
}
|
|
if labels != nil {
|
|
s.SetLabels(labels)
|
|
}
|
|
if annotations != nil {
|
|
s.SetAnnotations(annotations)
|
|
}
|
|
return s
|
|
}
|
|
|
|
func TestConstructSecret(t *testing.T) {
|
|
type testCase struct {
|
|
description string
|
|
input types.SecretArgs
|
|
expected *corev1.Secret
|
|
}
|
|
|
|
testCases := []testCase{
|
|
{
|
|
description: "construct secret from env",
|
|
input: types.SecretArgs{
|
|
GeneratorArgs: types.GeneratorArgs{
|
|
Name: "envSecret",
|
|
KvPairSources: types.KvPairSources{
|
|
EnvSources: []string{"secret/app.env"},
|
|
},
|
|
},
|
|
},
|
|
expected: makeEnvSecret("envSecret"),
|
|
},
|
|
{
|
|
description: "construct secret from file",
|
|
input: types.SecretArgs{
|
|
GeneratorArgs: types.GeneratorArgs{
|
|
Name: "fileSecret",
|
|
KvPairSources: types.KvPairSources{
|
|
FileSources: []string{"secret/app-init.ini"},
|
|
},
|
|
},
|
|
},
|
|
expected: makeFileSecret("fileSecret"),
|
|
},
|
|
{
|
|
description: "construct secret from literal",
|
|
input: types.SecretArgs{
|
|
GeneratorArgs: types.GeneratorArgs{
|
|
Name: "literalSecret",
|
|
KvPairSources: types.KvPairSources{
|
|
LiteralSources: []string{"a=x", "b=y"},
|
|
},
|
|
Options: &types.GeneratorOptions{
|
|
Labels: map[string]string{
|
|
"foo": "bar",
|
|
},
|
|
Annotations: map[string]string{
|
|
"fruit": "banana",
|
|
"pet": "dog",
|
|
},
|
|
},
|
|
},
|
|
},
|
|
expected: makeLiteralSecret("literalSecret", map[string]string{
|
|
"foo": "bar",
|
|
}, map[string]string{
|
|
"fruit": "banana",
|
|
"pet": "dog",
|
|
}),
|
|
},
|
|
}
|
|
|
|
fSys := filesys.MakeFsInMemory()
|
|
fSys.WriteFile("/secret/app.env", []byte("DB_USERNAME=admin\nDB_PASSWORD=somepw\n"))
|
|
fSys.WriteFile("/secret/app-init.ini", []byte("FOO=bar\nBAR=baz\n"))
|
|
kvLdr := kv.NewLoader(
|
|
loader.NewFileLoaderAtRoot(fSys),
|
|
valtest_test.MakeFakeValidator())
|
|
for _, tc := range testCases {
|
|
f := NewFactory(kvLdr)
|
|
cm, err := f.MakeSecret(&tc.input)
|
|
if err != nil {
|
|
t.Fatalf("unexpected error: %v", err)
|
|
}
|
|
if !reflect.DeepEqual(*cm, *tc.expected) {
|
|
t.Fatalf("in testcase: %q updated:\n%#v\ndoesn't match expected:\n%#v\n", tc.description, *cm, tc.expected)
|
|
}
|
|
}
|
|
}
|