StackExchange/dnscontrol
1
1
Fork 0
mirror of https://github.com/StackExchange/dnscontrol.git synced 2025-11-08 07:20:49 +08:00
Code Issues Projects Releases Packages Wiki Activity
dnscontrol/pkg/cloudflare-go/access_mutual_tls_certificates_test.go
Tom Limoncelli 7fd6a74e0c
CLOUDFLAREAPI: CF_REDIRECT/CF_TEMP_REDIRECT should dtrt using Single Redirects (#3002) 
Co-authored-by: Josh Zhang <jzhang1@stackoverflow.com>
2024-06-18 17:38:50 -04:00

405 lines
12 KiB
Go
Raw Blame History

package cloudflare
import (
"context"
"fmt"
"net/http"
"testing"
"time"
"github.com/stretchr/testify/assert"
)
func TestAccessMutualTLSCertificates(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodGet, r.Method, "Expected method 'GET', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": [
{
"id": "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
"created_at": "2014-01-01T05:20:00.12345Z",
"updated_at": "2014-01-01T05:20:00.12345Z",
"expires_on": "2014-01-01T05:20:00.12345Z",
"name": "Allow devs",
"fingerprint": "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
"associated_hostnames": [
"admin.example.com"
]
}
]
}`)
}
createdAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
updatedAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
expiresOn, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
want := []AccessMutualTLSCertificate{{
ID: "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
CreatedAt: createdAt,
UpdatedAt: updatedAt,
ExpiresOn: expiresOn,
Name: "Allow devs",
Fingerprint: "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
AssociatedHostnames: []string{"admin.example.com"},
}}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates", handler)
actual, _, err := client.ListAccessMutualTLSCertificates(context.Background(), testAccountRC, ListAccessMutualTLSCertificatesParams{})
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates", handler)
actual, _, err = client.ListAccessMutualTLSCertificates(context.Background(), testZoneRC, ListAccessMutualTLSCertificatesParams{})
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
func TestAccessMutualTLSCertificate(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodGet, r.Method, "Expected method 'GET', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": {
"id": "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
"created_at": "2014-01-01T05:20:00.12345Z",
"updated_at": "2014-01-01T05:20:00.12345Z",
"expires_on": "2014-01-01T05:20:00.12345Z",
"name": "Allow devs",
"fingerprint": "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
"associated_hostnames": [
"admin.example.com"
]
}
}`)
}
createdAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
updatedAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
expiresOn, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
want := AccessMutualTLSCertificate{
ID: "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
CreatedAt: createdAt,
UpdatedAt: updatedAt,
ExpiresOn: expiresOn,
Name: "Allow devs",
Fingerprint: "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
AssociatedHostnames: []string{"admin.example.com"},
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
actual, err := client.GetAccessMutualTLSCertificate(context.Background(), testAccountRC, "f174e90a-fafe-4643-bbbc-4a0ed4fc8415")
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
actual, err = client.GetAccessMutualTLSCertificate(context.Background(), testZoneRC, "f174e90a-fafe-4643-bbbc-4a0ed4fc8415")
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
func TestCreateAccessMutualTLSCertificate(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodPost, r.Method, "Expected method 'POST', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": {
"id": "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
"created_at": "2014-01-01T05:20:00.12345Z",
"updated_at": "2014-01-01T05:20:00.12345Z",
"expires_on": "2014-01-01T05:20:00.12345Z",
"name": "Allow devs",
"fingerprint": "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
"associated_hostnames": [
"admin.example.com"
]
}
}`)
}
createdAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
updatedAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
expiresOn, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
certificate := CreateAccessMutualTLSCertificateParams{
Name: "Allow devs",
Certificate: "-----BEGIN CERTIFICATE-----\nMIIGAjCCA+qgAwIBAgIJAI7kymlF7CWT...N4RI7KKB7nikiuUf8vhULKy5IX10\nDrUtmu/B\n-----END CERTIFICATE-----",
}
want := AccessMutualTLSCertificate{
ID: "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
CreatedAt: createdAt,
UpdatedAt: updatedAt,
ExpiresOn: expiresOn,
Name: "Allow devs",
Fingerprint: "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
AssociatedHostnames: []string{"admin.example.com"},
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates", handler)
actual, err := client.CreateAccessMutualTLSCertificate(context.Background(), testAccountRC, certificate)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates", handler)
actual, err = client.CreateAccessMutualTLSCertificate(context.Background(), testZoneRC, certificate)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
func TestUpdateAccessMutualTLSCertificate(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodPut, r.Method, "Expected method 'PUT', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": {
"id": "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
"created_at": "2014-01-01T05:20:00.12345Z",
"updated_at": "2014-01-01T05:20:00.12345Z",
"expires_on": "2014-01-01T05:20:00.12345Z",
"name": "Allow devs",
"fingerprint": "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
"associated_hostnames": [
"admin.example.com"
]
}
}`)
}
createdAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
updatedAt, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
expiresOn, _ := time.Parse(time.RFC3339, "2014-01-01T05:20:00.12345Z")
certificate := UpdateAccessMutualTLSCertificateParams{
ID: "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
Name: "Allow devs",
Certificate: "-----BEGIN CERTIFICATE-----\nMIIGAjCCA+qgAwIBAgIJAI7kymlF7CWT...N4RI7KKB7nikiuUf8vhULKy5IX10\nDrUtmu/B\n-----END CERTIFICATE-----",
}
want := AccessMutualTLSCertificate{
ID: "f174e90a-fafe-4643-bbbc-4a0ed4fc8415",
CreatedAt: createdAt,
UpdatedAt: updatedAt,
ExpiresOn: expiresOn,
Name: "Allow devs",
Fingerprint: "MD5 Fingerprint=1E:80:0F:7A:FD:31:55:96:DE:D5:CB:E2:F0:91:F6:91",
AssociatedHostnames: []string{"admin.example.com"},
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
actual, err := client.UpdateAccessMutualTLSCertificate(context.Background(), testAccountRC, certificate)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
actual, err = client.UpdateAccessMutualTLSCertificate(context.Background(), testZoneRC, certificate)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
func TestDeleteAccessMutualTLSCertificate(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodDelete, r.Method, "Expected method 'DELETE', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": {
"id": "f174e90a-fafe-4643-bbbc-4a0ed4fc8415"
}
}`)
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
err := client.DeleteAccessMutualTLSCertificate(context.Background(), testAccountRC, "f174e90a-fafe-4643-bbbc-4a0ed4fc8415")
assert.NoError(t, err)
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates/f174e90a-fafe-4643-bbbc-4a0ed4fc8415", handler)
err = client.DeleteAccessMutualTLSCertificate(context.Background(), testZoneRC, "f174e90a-fafe-4643-bbbc-4a0ed4fc8415")
assert.NoError(t, err)
}
func TestGetAccessMutualTLSHostnameSettings(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodGet, r.Method, "Expected method 'GET', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": [
{
"china_network": false,
"client_certificate_forwarding": true,
"hostname": "admin.example.com"
},
{
"china_network": true,
"client_certificate_forwarding": false,
"hostname": "foobar.example.com"
}
]
}`)
}
want := []AccessMutualTLSHostnameSettings{
{
ChinaNetwork: BoolPtr(false),
ClientCertificateForwarding: BoolPtr(true),
Hostname: "admin.example.com",
},
{
ChinaNetwork: BoolPtr(true),
ClientCertificateForwarding: BoolPtr(false),
Hostname: "foobar.example.com",
},
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates/settings", handler)
actual, err := client.GetAccessMutualTLSHostnameSettings(context.Background(), testAccountRC)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates/settings", handler)
actual, err = client.GetAccessMutualTLSHostnameSettings(context.Background(), testZoneRC)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
func TestUpdateAccessMutualTLSHostnameSettings(t *testing.T) {
setup()
defer teardown()
handler := func(w http.ResponseWriter, r *http.Request) {
assert.Equal(t, http.MethodPut, r.Method, "Expected method 'PUT', got %s", r.Method)
w.Header().Set("content-type", "application/json")
fmt.Fprintf(w, `{
"success": true,
"errors": [],
"messages": [],
"result": [
{
"china_network": false,
"client_certificate_forwarding": true,
"hostname": "admin.example.com"
},
{
"china_network": true,
"client_certificate_forwarding": false,
"hostname": "foobar.example.com"
}
]
}`)
}
certificateSettings := UpdateAccessMutualTLSHostnameSettingsParams{
Settings: []AccessMutualTLSHostnameSettings{
{
ChinaNetwork: BoolPtr(false),
ClientCertificateForwarding: BoolPtr(true),
Hostname: "admin.example.com",
},
{
ChinaNetwork: BoolPtr(true),
ClientCertificateForwarding: BoolPtr(false),
Hostname: "foobar.example.com",
},
},
}
want := []AccessMutualTLSHostnameSettings{
{
ChinaNetwork: BoolPtr(false),
ClientCertificateForwarding: BoolPtr(true),
Hostname: "admin.example.com",
},
{
ChinaNetwork: BoolPtr(true),
ClientCertificateForwarding: BoolPtr(false),
Hostname: "foobar.example.com",
},
}
mux.HandleFunc("/accounts/"+testAccountID+"/access/certificates/settings", handler)
actual, err := client.UpdateAccessMutualTLSHostnameSettings(context.Background(), testAccountRC, certificateSettings)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
mux.HandleFunc("/zones/"+testZoneID+"/access/certificates/settings", handler)
actual, err = client.UpdateAccessMutualTLSHostnameSettings(context.Background(), testZoneRC, certificateSettings)
if assert.NoError(t, err) {
assert.Equal(t, want, actual)
}
}
Reference in a new issue View git blame Copy permalink