#14 Add username/password authentication for seed jobs
- validate if seed job ids are unique
This commit is contained in:
Tomasz Sęk
parent
ed3dc80ab8
commit
1a8fd8828b
|
|
@ -18,11 +18,13 @@ import (
|
|||
)
|
||||
|
||||
// ValidateSeedJobs verify seed jobs configuration
|
||||
func (r *SeedJobs) ValidateSeedJobs(jenkins *v1alpha1.Jenkins) (bool, error) {
|
||||
func (r *SeedJobs) ValidateSeedJobs(jenkins v1alpha1.Jenkins) (bool, error) {
|
||||
valid := true
|
||||
|
||||
// TODO id must be unique
|
||||
if jenkins.Spec.SeedJobs != nil {
|
||||
if !r.validateIfIDIsUnique(jenkins.Spec.SeedJobs) {
|
||||
valid = false
|
||||
}
|
||||
|
||||
for _, seedJob := range jenkins.Spec.SeedJobs {
|
||||
logger := r.logger.WithValues("seedJob", fmt.Sprintf("%+v", seedJob)).V(log.VWarn)
|
||||
|
||||
|
|
@ -86,10 +88,21 @@ func (r *SeedJobs) ValidateSeedJobs(jenkins *v1alpha1.Jenkins) (bool, error) {
|
|||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
return valid, nil
|
||||
}
|
||||
|
||||
func (r *SeedJobs) validateIfIDIsUnique(seedJobs []v1alpha1.SeedJob) bool {
|
||||
ids := map[string]bool{}
|
||||
for _, seedJob := range seedJobs {
|
||||
if _, found := ids[seedJob.ID]; found {
|
||||
r.logger.V(log.VWarn).Info(fmt.Sprintf("'%s' seed job ID is not unique", seedJob.ID))
|
||||
return false
|
||||
}
|
||||
ids[seedJob.ID] = true
|
||||
}
|
||||
return true
|
||||
}
|
||||
|
||||
func validateBasicSSHSecret(logger logr.InfoLogger, secret v1.Secret) bool {
|
||||
valid := true
|
||||
username, exists := secret.Data[UsernameSecretKey]
|
||||
|
|
|
|||
|
|
@ -57,7 +57,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
Namespace: "default",
|
||||
}
|
||||
t.Run("Valid with public repository and without private key", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -79,7 +79,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, true, result)
|
||||
})
|
||||
t.Run("Invalid without id", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -99,7 +99,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Valid with private key and secret", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -132,7 +132,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, true, result)
|
||||
})
|
||||
t.Run("Invalid private key in secret", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -165,7 +165,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid with PrivateKey and empty Secret data", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -198,7 +198,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid with ssh RepositoryURL and empty PrivateKey", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -220,7 +220,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid without targets", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -240,7 +240,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid without repository URL", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -260,7 +260,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid without repository branch", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -280,7 +280,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Valid with username and password", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -313,7 +313,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, true, result)
|
||||
})
|
||||
t.Run("Invalid with empty username", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -346,7 +346,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid with empty password", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -379,7 +379,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid without username", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -411,7 +411,7 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
t.Run("Invalid without password", func(t *testing.T) {
|
||||
jenkins := &v1alpha1.Jenkins{
|
||||
jenkins := v1alpha1.Jenkins{
|
||||
Spec: v1alpha1.JenkinsSpec{
|
||||
SeedJobs: []v1alpha1.SeedJob{
|
||||
{
|
||||
|
|
@ -443,3 +443,22 @@ func TestValidateSeedJobs(t *testing.T) {
|
|||
assert.Equal(t, false, result)
|
||||
})
|
||||
}
|
||||
|
||||
func TestValidateIfIDIsUnique(t *testing.T) {
|
||||
t.Run("happy", func(t *testing.T) {
|
||||
seedJobs := []v1alpha1.SeedJob{
|
||||
{ID: "first"}, {ID: "second"},
|
||||
}
|
||||
ctrl := New(nil, nil, logf.ZapLogger(false))
|
||||
got := ctrl.validateIfIDIsUnique(seedJobs)
|
||||
assert.Equal(t, true, got)
|
||||
})
|
||||
t.Run("duplicated ids", func(t *testing.T) {
|
||||
seedJobs := []v1alpha1.SeedJob{
|
||||
{ID: "first"}, {ID: "first"},
|
||||
}
|
||||
ctrl := New(nil, nil, logf.ZapLogger(false))
|
||||
got := ctrl.validateIfIDIsUnique(seedJobs)
|
||||
assert.Equal(t, false, got)
|
||||
})
|
||||
}
|
||||
|
|
|
|||
|
|
@ -8,5 +8,5 @@ import (
|
|||
// Validate validates Jenkins CR Spec section
|
||||
func (r *ReconcileUserConfiguration) Validate(jenkins *v1alpha1.Jenkins) (bool, error) {
|
||||
seedJobs := seedjobs.New(r.jenkinsClient, r.k8sClient, r.logger)
|
||||
return seedJobs.ValidateSeedJobs(jenkins)
|
||||
return seedJobs.ValidateSeedJobs(*jenkins)
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in New Issue