def test_vault_mount_path(env_setup, mount_setup): g = gestalt.Gestalt() g.add_config_file("./tests/testvault/testmount.json") g.configure_provider("vault", Vault(role=None, jwt=None)) g.build_config() secret = g.get_string("test_mount.test_mount") assert secret == "test_mount_password"
def test_set_vault_key(env_setup, nested_setup): g = gestalt.Gestalt() g.configure_provider("vault", Vault(role=None, jwt=None)) g.set_string(key="test", value="ref+vault://secret/data/testnested#.slack.token") g.build_config() secret = g.get_string("test") assert secret == "random-token"
def test_vault_interpolation(secret_setup): g = gestalt.Gestalt() g.add_config_file("./tests/testvault/testcorrect.json") vault = Vault(role=None, jwt=None) g.configure_provider("vault", vault) g.build_config() secret = g.get_string("test_secret.test_secret") assert secret == "test_secret_password"
def test_nest_key_for_vault(env_setup, nested_setup): g = gestalt.Gestalt() g.add_config_file("./tests/testvault/testnested.json") g.configure_provider("vault", Vault(role=None, jwt=None)) g.build_config() secret_db = g.get_string("remoteAPI.database.test_secret") secret_slack = g.get_string("remoteAPI.slack.token") assert secret_db == "test_secret_password" assert secret_slack == "random-token"
def test_vault_incorrect_path(env_setup, mount_setup): g = gestalt.Gestalt() g.add_config_file("./tests/testvault/testincorrectmount.json") g.configure_provider("vault", Vault(role=None, jwt=None)) with pytest.raises(RuntimeError): g.build_config()
def test_vault_setup(env_setup): vault = Vault(role=None, jwt=None) assert vault.vault_client.is_authenticated() is True