def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('secret.random')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('secret.random'), random)
md5 = engine.lookup('secret.random.md5')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('secret.random.sha1')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('secret.random.sha256')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = b'hello world'
print('original: {}'.format(original))
text = ensure_string(engine.lookup('rsa_public.pair1'))
print('rsa_public.pair1: {}'.format(text))
self.assertTrue(text.startswith('ssh-rsa '))
text = b(text)
key = serialization.load_ssh_public_key(
data=text,
backend=default_backend())
encrypted = key.encrypt(
original,
padding.OAEP(
mgf=padding.MGF1(algorithm=hashes.SHA1()),
algorithm=hashes.SHA1(),
label=None
)
)
encrypted = base64.b64encode(encrypted)
print('encrypted: {}'.format(encrypted))
privateKey = engine.lookup('rsa_private.pair1')
print('rsa_private.pair1: {}'.format(privateKey))
self.assertTrue(ensure_string(privateKey).startswith(
'-----BEGIN RSA PRIVATE KEY-----'))
privateKey = serialization.load_pem_private_key(
b(privateKey),
password=None,
backend=default_backend())
decrypted = privateKey.decrypt(
base64.b64decode(encrypted),
padding.OAEP(
mgf=padding.MGF1(algorithm=hashes.SHA1()),
algorithm=hashes.SHA1(),
label=None
)
)
print('decrypted: {}'.format(decrypted))
self.assertEqual(decrypted, original)
token = engine.lookup('https://discovery.etcd.io/new')
self.assertEqual(token.startswith(
'https://discovery.etcd.io/'), True)
self.assertEqual(len(token), 58)
self.assertEqual(len(engine.secrets), 13)
with self.assertRaises(LookupError):
localKey = engine.lookup('rsa_private.local')
localKey = engine.lookup('rsa_public.local')
if len(localKey) > 0:
path = engine.get_shared_key_files()[0]
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
plogging.info("Successful lookup of local public key")
def test_parameters(self):
engine = PlumberyEngine()
parameters = engine.get_parameters()
self.assertTrue('parameter.locationId' not in parameters)
self.assertTrue('parameter.domainName' not in parameters)
self.assertTrue('parameter.networkName' not in parameters)
with self.assertRaises(KeyError):
engine.get_parameter('locationId')
with self.assertRaises(KeyError):
engine.get_parameter('domainName')
with self.assertRaises(KeyError):
engine.get_parameter('perfectlyUnknownParameter')
with self.assertRaises(KeyError):
engine.lookup('parameter.locationId')
with self.assertRaises(ValueError):
engine.set_fittings(myBadPlan1)
engine.set_fittings(myPlan)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'],
'EU6')
self.assertEqual(parameters['parameter.domainName'],
'myDC')
self.assertEqual(parameters['parameter.networkName'],
'myVLAN')
self.assertEqual(engine.get_parameter('locationId'),
'EU6')
self.assertEqual(engine.get_parameter('parameter.locationId'),
'EU6')
with self.assertRaises(KeyError):
engine.get_parameter('perfectlyUnknownParameter')
engine = PlumberyEngine()
engine.set_parameters(myParameters)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'],
'EU8')
self.assertEqual(parameters['parameter.domainName'],
'aDifferentDomain')
self.assertEqual(parameters['parameter.networkName'],
'aDifferentNetwork')
engine.set_fittings(myPlan)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'],
'EU8')
self.assertEqual(parameters['parameter.domainName'],
'aDifferentDomain')
self.assertEqual(parameters['parameter.networkName'],
'aDifferentNetwork')
self.assertEqual(engine.safeMode, False)
self.assertEqual(len(engine.information), 2)
self.assertEqual(len(engine.links), 1)
domain = engine.get_default('domain')
self.assertEqual(domain['ipv4'], 'auto')
cloudConfig = engine.get_default('cloud-config', {})
self.assertEqual(len(cloudConfig.keys()), 5)
parameter = engine.get_parameter('locationId')
self.assertEqual(parameter, 'EU8')
parameter = engine.get_parameter('domainName')
self.assertEqual(parameter, 'aDifferentDomain')
parameter = engine.get_parameter('networkName')
self.assertEqual(parameter, 'aDifferentNetwork')
self.assertEqual(len(engine.facilities), 1)
facility = engine.facilities[0]
self.assertEqual(facility.settings['locationId'], 'EU8')
self.assertEqual(facility.settings['regionId'], 'dd-eu')
blueprint = facility.blueprints[0]['myBlueprint']
self.assertEqual(blueprint['domain']['name'], 'aDifferentDomain')
self.assertEqual(blueprint['ethernet']['name'], 'aDifferentNetwork')
def test_environment(self):
engine = PlumberyEngine()
self.assertTrue(len(engine.lookup('environment.PATH')) > 0)
with self.assertRaises(KeyError):
engine.lookup('environment.PERFECTLY_UNKNOWN_FROM_HERE')
def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('secret.random')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('secret.random'), random)
md5 = engine.lookup('secret.random.md5')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('secret.random.sha1')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('secret.random.sha256')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = b'hello world'
if HAS_CRYPTO:
text = engine.lookup('pair1.rsa_public')
self.assertTrue(ensure_string(text).startswith('ssh-rsa '))
key = RSA.importKey(text)
cipher = PKCS1_OAEP.new(key)
encrypted = cipher.encrypt(original)
privateKey = engine.lookup('pair1.rsa_private')
self.assertTrue(
ensure_string(privateKey).startswith(
'-----BEGIN RSA PRIVATE KEY-----'))
key = RSA.importKey(engine.lookup('pair1.rsa_private'))
cipher = PKCS1_OAEP.new(key)
decrypted = cipher.decrypt(encrypted)
self.assertEqual(decrypted, original)
token = engine.lookup('https://discovery.etcd.io/new')
self.assertEqual(token.startswith('https://discovery.etcd.io/'),
True)
self.assertEqual(len(token), 58)
self.assertEqual(len(engine.secrets), 13)
with self.assertRaises(LookupError):
localKey = engine.lookup('local.rsa_private')
localKey = engine.lookup('rsa_public.local')
try:
path = '~/.ssh/id_rsa.pub'
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
plogging.info("Successful lookup of local public key")
except IOError:
pass
class TestPlumberyEngine(unittest.TestCase):
def test_set(self):
settings = {
'safeMode': False,
'polishers': [
{'ansible': {}},
{'spit': {}},
]
}
self.engine = PlumberyEngine()
self.engine.set_shared_secret('fake_secret')
self.assertEqual(self.engine.get_shared_secret(), 'fake_secret')
random = self.engine.get_secret('random')
self.assertEqual(len(random), 9)
self.assertEqual(self.engine.get_secret('random'), random)
self.engine.set_user_name('fake_name')
self.assertEqual(self.engine.get_user_name(), 'fake_name')
self.engine.set_user_password('fake_password')
self.assertEqual(self.engine.get_user_password(), 'fake_password')
self.engine.set(settings)
self.assertEqual(self.engine.safeMode, False)
try:
self.engine.from_text(myPlan)
cloudConfig = self.engine.get_cloud_config()
self.assertEqual(len(cloudConfig.keys()), 3)
self.engine.add_facility(myFacility)
self.assertEqual(len(self.engine.facilities), 2)
except socket.gaierror:
pass
except InvalidCredsError:
pass
def test_lifecycle(self):
self.engine = PlumberyEngine()
self.engine.set_shared_secret('fake_secret')
self.assertEqual(self.engine.get_shared_secret(), 'fake_secret')
self.engine.set_user_name('fake_name')
self.assertEqual(self.engine.get_user_name(), 'fake_name')
self.engine.set_user_password('fake_password')
self.assertEqual(self.engine.get_user_password(), 'fake_password')
try:
self.engine.do('build')
self.engine.build_all_blueprints()
self.engine.build_blueprint('myBlueprint')
self.engine.do('start')
self.engine.start_all_blueprints()
self.engine.start_blueprint('myBlueprint')
self.engine.do('polish')
self.engine.polish_all_blueprints()
self.engine.polish_blueprint('myBlueprint')
self.engine.do('stop')
self.engine.stop_all_blueprints()
self.engine.stop_blueprint('myBlueprint')
self.engine.wipe_all_blueprints()
self.engine.wipe_blueprint('myBlueprint')
self.engine.do('destroy')
self.engine.destroy_all_blueprints()
self.engine.destroy_blueprint('myBlueprint')
except socket.gaierror:
pass
except InvalidCredsError:
pass
def test_lookup(self):
self.engine = PlumberyEngine()
self.assertEqual(self.engine.lookup('plumbery.version'), __version__)
self.engine.secrets = {}
random = self.engine.lookup('random.secret')
self.assertEqual(len(random), 9)
self.assertEqual(self.engine.lookup('random.secret'), random)
md5 = self.engine.lookup('random.md5.secret')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = self.engine.lookup('random.sha1.secret')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = self.engine.lookup('random.sha256.secret')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = self.engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(self.engine.lookup('id1.uuid'), id1)
id2 = self.engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
self.engine.lookup('application.secret')
self.engine.lookup('database.secret')
self.engine.lookup('master.secret')
self.engine.lookup('slave.secret')
original = 'hello world'
text = self.engine.lookup('pair1.rsa_public')
self.assertEqual(text.startswith('ssh-rsa '), True)
key = RSA.importKey(text)
encrypted = key.publickey().encrypt(original, 32)
privateKey = self.engine.lookup('pair1.rsa_private')
self.assertEqual(privateKey.startswith(
'-----BEGIN RSA PRIVATE KEY-----'), True)
key = RSA.importKey(self.engine.lookup('pair1.rsa_private'))
decrypted = key.decrypt(ast.literal_eval(str(encrypted)))
self.assertEqual(decrypted, original)
self.assertEqual(len(self.engine.secrets), 12)
with self.assertRaises(LookupError):
localKey = self.engine.lookup('local.rsa_private')
localKey = self.engine.lookup('local.rsa_public')
try:
path = '~/.ssh/id_rsa.pub'
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
logging.info("Successful lookup of local public key")
except IOError:
pass
def test_secrets(self):
engine = PlumberyEngine()
engine.secrets = {'hello': 'world'}
engine.save_secrets(plan='test_engine.yaml')
self.assertEqual(os.path.isfile('.test_engine.secrets'), True)
engine.secrets = {}
engine.load_secrets(plan='test_engine.yaml')
self.assertEqual(engine.secrets['hello'], 'world')
engine.forget_secrets(plan='test_engine.yaml')
self.assertEqual(os.path.isfile('.test_engine.secrets'), False)
def test_defaults(self):
engine = PlumberyEngine()
engine.from_text(defaultsPlan)
self.assertEqual(engine.get_default('locationId'), 'EU6')
self.assertEqual(engine.get_default('regionId'), 'dd-eu')
self.assertEqual(engine.get_default('ipv4'), 'auto')
def test_parser(self):
args = parse_args(['fittings.yaml', 'build', 'web'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'build')
self.assertEqual(args.blueprints, ['web'])
self.assertEqual(args.facilities, None)
args = parse_args(['fittings.yaml', 'build', 'web', '-d'])
self.assertEqual(
logging.getLogger().getEffectiveLevel(), logging.DEBUG)
args = parse_args(['fittings.yaml', 'build', 'web', '-q'])
self.assertEqual(
logging.getLogger().getEffectiveLevel(), logging.WARNING)
args = parse_args(['fittings.yaml', 'start', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'start')
self.assertEqual(args.blueprints, None)
self.assertEqual(args.facilities, ['NA12'])
args = parse_args([
'fittings.yaml', 'rub', 'web', 'sql', '@NA9', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'rub')
self.assertEqual(args.blueprints, ['web', 'sql'])
self.assertEqual(args.facilities, ['NA9', 'NA12'])
args = parse_args([
'fittings.yaml', 'rub', 'web', '@NA9', 'sql', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'rub')
self.assertEqual(args.blueprints, ['web', 'sql'])
self.assertEqual(args.facilities, ['NA9', 'NA12'])
args = parse_args(['fittings.yaml', 'polish'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'polish')
self.assertEqual(args.blueprints, None)
self.assertEqual(args.facilities, None)
def test_main(self):
engine = PlumberyEngine()
engine.from_text(myPlan)
engine.set_user_name('fake_name')
engine.set_user_password('fake_password')
with self.assertRaises(SystemExit):
main(['bad args'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml', 'xyz123', 'web'], engine)
with self.assertRaises(SystemExit):
main(['-v'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml', 'build', 'web', '-v'], engine)
def test_parameters(self):
engine = PlumberyEngine()
parameters = engine.get_parameters()
self.assertTrue('parameter.locationId' not in parameters)
self.assertTrue('parameter.domainName' not in parameters)
self.assertTrue('parameter.networkName' not in parameters)
with self.assertRaises(KeyError):
engine.get_parameter('locationId')
with self.assertRaises(KeyError):
engine.get_parameter('domainName')
with self.assertRaises(KeyError):
engine.get_parameter('perfectlyUnknownParameter')
with self.assertRaises(KeyError):
engine.lookup('parameter.locationId')
with self.assertRaises(ValueError):
engine.set_fittings(myBadPlan1)
engine.set_fittings(myPlan)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'], 'EU6')
self.assertEqual(parameters['parameter.domainName'], 'myDC')
self.assertEqual(parameters['parameter.networkName'], 'myVLAN')
self.assertEqual(engine.get_parameter('locationId'), 'EU6')
self.assertEqual(engine.get_parameter('parameter.locationId'), 'EU6')
with self.assertRaises(KeyError):
engine.get_parameter('perfectlyUnknownParameter')
engine = PlumberyEngine()
engine.set_parameters(myParameters)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'], 'EU8')
self.assertEqual(parameters['parameter.domainName'],
'aDifferentDomain')
self.assertEqual(parameters['parameter.networkName'],
'aDifferentNetwork')
engine.set_fittings(myPlan)
parameters = engine.get_parameters()
self.assertEqual(parameters['parameter.locationId'], 'EU8')
self.assertEqual(parameters['parameter.domainName'],
'aDifferentDomain')
self.assertEqual(parameters['parameter.networkName'],
'aDifferentNetwork')
self.assertEqual(engine.safeMode, False)
self.assertEqual(len(engine.information), 2)
self.assertEqual(len(engine.links), 1)
domain = engine.get_default('domain')
self.assertEqual(domain['ipv4'], 'auto')
cloudConfig = engine.get_default('cloud-config', {})
self.assertEqual(len(cloudConfig.keys()), 5)
parameter = engine.get_parameter('locationId')
self.assertEqual(parameter, 'EU8')
parameter = engine.get_parameter('domainName')
self.assertEqual(parameter, 'aDifferentDomain')
parameter = engine.get_parameter('networkName')
self.assertEqual(parameter, 'aDifferentNetwork')
self.assertEqual(len(engine.facilities), 1)
facility = engine.facilities[0]
self.assertEqual(facility.settings['locationId'], 'EU8')
self.assertEqual(facility.settings['regionId'], 'dd-eu')
blueprint = facility.blueprints[0]['myBlueprint']
self.assertEqual(blueprint['domain']['name'], 'aDifferentDomain')
self.assertEqual(blueprint['ethernet']['name'], 'aDifferentNetwork')
def test_environment(self):
engine = PlumberyEngine()
self.assertTrue(len(engine.lookup('environment.PATH')) > 0)
with self.assertRaises(KeyError):
engine.lookup('environment.PERFECTLY_UNKNOWN_FROM_HERE')
def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('random.secret')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('random.secret'), random)
md5 = engine.lookup('random.md5.secret')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('random.sha1.secret')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('random.sha256.secret')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = 'hello world'
text = engine.lookup('pair1.rsa_public')
self.assertEqual(text.startswith('ssh-rsa '), True)
key = RSA.importKey(text)
encrypted = key.publickey().encrypt(original, 32)
privateKey = engine.lookup('pair1.rsa_private')
self.assertEqual(
privateKey.startswith('-----BEGIN RSA PRIVATE KEY-----'), True)
key = RSA.importKey(engine.lookup('pair1.rsa_private'))
decrypted = key.decrypt(ast.literal_eval(str(encrypted)))
self.assertEqual(decrypted, original)
self.assertEqual(len(engine.secrets), 12)
with self.assertRaises(LookupError):
localKey = engine.lookup('local.rsa_private')
localKey = engine.lookup('local.rsa_public')
try:
path = '~/.ssh/id_rsa.pub'
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
logging.info("Successful lookup of local public key")
except IOError:
pass
def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('secret.random')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('secret.random'), random)
md5 = engine.lookup('secret.random.md5')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('secret.random.sha1')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('secret.random.sha256')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = b'hello world'
print('original: {}'.format(original))
text = ensure_string(engine.lookup('rsa_public.pair1'))
print('rsa_public.pair1: {}'.format(text))
self.assertTrue(text.startswith('ssh-rsa '))
text = b(text)
key = serialization.load_ssh_public_key(data=text,
backend=default_backend())
encrypted = key.encrypt(
original,
padding.OAEP(mgf=padding.MGF1(algorithm=hashes.SHA1()),
algorithm=hashes.SHA1(),
label=None))
encrypted = base64.b64encode(encrypted)
print('encrypted: {}'.format(encrypted))
privateKey = engine.lookup('rsa_private.pair1')
print('rsa_private.pair1: {}'.format(privateKey))
self.assertTrue(
ensure_string(privateKey).startswith(
'-----BEGIN RSA PRIVATE KEY-----'))
privateKey = serialization.load_pem_private_key(
b(privateKey), password=None, backend=default_backend())
decrypted = privateKey.decrypt(
base64.b64decode(encrypted),
padding.OAEP(mgf=padding.MGF1(algorithm=hashes.SHA1()),
algorithm=hashes.SHA1(),
label=None))
print('decrypted: {}'.format(decrypted))
self.assertEqual(decrypted, original)
token = engine.lookup('https://discovery.etcd.io/new')
self.assertEqual(token.startswith('https://discovery.etcd.io/'), True)
self.assertEqual(len(token), 58)
self.assertEqual(len(engine.secrets), 13)
with self.assertRaises(LookupError):
localKey = engine.lookup('rsa_private.local')
localKey = engine.lookup('rsa_public.local')
if len(localKey) > 0:
path = engine.get_shared_key_files()[0]
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
plogging.info("Successful lookup of local public key")
def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('secret.random')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('secret.random'), random)
md5 = engine.lookup('secret.random.md5')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('secret.random.sha1')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('secret.random.sha256')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = b'hello world'
if HAS_CRYPTO:
text = engine.lookup('pair1.rsa_public')
self.assertTrue(ensure_string(text).startswith('ssh-rsa '))
key = RSA.importKey(text)
cipher = PKCS1_OAEP.new(key)
encrypted = cipher.encrypt(original)
privateKey = engine.lookup('pair1.rsa_private')
self.assertTrue(ensure_string(privateKey).startswith(
'-----BEGIN RSA PRIVATE KEY-----'))
key = RSA.importKey(engine.lookup('pair1.rsa_private'))
cipher = PKCS1_OAEP.new(key)
decrypted = cipher.decrypt(encrypted)
self.assertEqual(decrypted, original)
token = engine.lookup('https://discovery.etcd.io/new')
self.assertEqual(token.startswith(
'https://discovery.etcd.io/'), True)
self.assertEqual(len(token), 58)
self.assertEqual(len(engine.secrets), 13)
with self.assertRaises(LookupError):
localKey = engine.lookup('local.rsa_private')
localKey = engine.lookup('rsa_public.local')
try:
path = '~/.ssh/id_rsa.pub'
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
plogging.info("Successful lookup of local public key")
except IOError:
pass
class TestPlumberyEngine(unittest.TestCase):
def test_set(self):
settings = {
'safeMode': False,
'polishers': [
{'ansible': {}},
{'spit': {}},
]
}
self.engine = PlumberyEngine()
self.engine.set_shared_secret('fake_secret')
self.assertEqual(self.engine.get_shared_secret(), 'fake_secret')
random = self.engine.get_random_secret()
self.assertEqual(len(random), 9)
self.assertEqual(self.engine.get_random_secret(), random)
self.engine.set_user_name('fake_name')
self.assertEqual(self.engine.get_user_name(), 'fake_name')
self.engine.set_user_password('fake_password')
self.assertEqual(self.engine.get_user_password(), 'fake_password')
self.engine.set(settings)
self.assertEqual(self.engine.safeMode, False)
try:
self.engine.from_text(myPlan)
self.engine.add_facility(myFacility)
self.assertEqual(len(self.engine.facilities), 2)
except socket.gaierror:
pass
except InvalidCredsError:
pass
def test_lifecycle(self):
self.engine = PlumberyEngine()
self.engine.set_shared_secret('fake_secret')
self.assertEqual(self.engine.get_shared_secret(), 'fake_secret')
self.engine.set_user_name('fake_name')
self.assertEqual(self.engine.get_user_name(), 'fake_name')
self.engine.set_user_password('fake_password')
self.assertEqual(self.engine.get_user_password(), 'fake_password')
try:
self.engine.do('build')
self.engine.build_all_blueprints()
self.engine.build_blueprint('myBlueprint')
self.engine.do('start')
self.engine.start_all_blueprints()
self.engine.start_blueprint('myBlueprint')
self.engine.do('polish')
self.engine.polish_all_blueprints()
self.engine.polish_blueprint('myBlueprint')
self.engine.do('stop')
self.engine.stop_all_blueprints()
self.engine.stop_blueprint('myBlueprint')
self.engine.wipe_all_blueprints()
self.engine.wipe_blueprint('myBlueprint')
self.engine.do('destroy')
self.engine.destroy_all_blueprints()
self.engine.destroy_blueprint('myBlueprint')
except socket.gaierror:
pass
except InvalidCredsError:
pass
def test_lookup(self):
self.engine = PlumberyEngine()
self.assertEqual(self.engine.lookup('plumbery.version'), __version__)
random = self.engine.lookup('random.secret')
self.assertEqual(len(random), 9)
self.assertEqual(self.engine.lookup('random.secret'), random)
def test_parser(self):
args = parse_args(['fittings.yaml', 'build', 'web'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'build')
self.assertEqual(args.blueprints, ['web'])
self.assertEqual(args.facilities, None)
args = parse_args(['fittings.yaml', 'build', 'web', '-d'])
self.assertEqual(
logging.getLogger().getEffectiveLevel(), logging.DEBUG)
args = parse_args(['fittings.yaml', 'build', 'web', '-q'])
self.assertEqual(
logging.getLogger().getEffectiveLevel(), logging.WARNING)
args = parse_args(['fittings.yaml', 'start', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'start')
self.assertEqual(args.blueprints, None)
self.assertEqual(args.facilities, ['NA12'])
args = parse_args([
'fittings.yaml', 'rub', 'web', 'sql', '@NA9', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'rub')
self.assertEqual(args.blueprints, ['web', 'sql'])
self.assertEqual(args.facilities, ['NA9', 'NA12'])
args = parse_args([
'fittings.yaml', 'rub', 'web', '@NA9', 'sql', '@NA12'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'rub')
self.assertEqual(args.blueprints, ['web', 'sql'])
self.assertEqual(args.facilities, ['NA9', 'NA12'])
args = parse_args(['fittings.yaml', 'polish'])
self.assertEqual(args.fittings, 'fittings.yaml')
self.assertEqual(args.action, 'polish')
self.assertEqual(args.blueprints, None)
self.assertEqual(args.facilities, None)
def test_main(self):
engine = PlumberyEngine()
engine.from_text(myPlan)
engine.set_user_name('fake_name')
engine.set_user_password('fake_password')
with self.assertRaises(SystemExit):
main(['bad args'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml', 'xyz123', 'web'], engine)
with self.assertRaises(SystemExit):
main(['-v'], engine)
with self.assertRaises(SystemExit):
main(['fittings.yaml', 'build', 'web', '-v'], engine)
def test_lookup(self):
engine = PlumberyEngine()
self.assertEqual(engine.lookup('plumbery.version'), __version__)
engine.secrets = {}
random = engine.lookup('random.secret')
self.assertEqual(len(random), 9)
self.assertEqual(engine.lookup('random.secret'), random)
md5 = engine.lookup('random.md5.secret')
self.assertEqual(len(md5), 32)
self.assertNotEqual(md5, random)
sha = engine.lookup('random.sha1.secret')
self.assertEqual(len(sha), 40)
self.assertNotEqual(sha, random)
sha = engine.lookup('random.sha256.secret')
self.assertEqual(len(sha), 64)
self.assertNotEqual(sha, random)
id1 = engine.lookup('id1.uuid')
self.assertEqual(len(id1), 36)
self.assertEqual(engine.lookup('id1.uuid'), id1)
id2 = engine.lookup('id2.uuid')
self.assertEqual(len(id2), 36)
self.assertNotEqual(id1, id2)
engine.lookup('application.secret')
engine.lookup('database.secret')
engine.lookup('master.secret')
engine.lookup('slave.secret')
original = 'hello world'
text = engine.lookup('pair1.rsa_public')
self.assertEqual(text.startswith('ssh-rsa '), True)
key = RSA.importKey(text)
encrypted = key.publickey().encrypt(original, 32)
privateKey = engine.lookup('pair1.rsa_private')
self.assertEqual(privateKey.startswith(
'-----BEGIN RSA PRIVATE KEY-----'), True)
key = RSA.importKey(engine.lookup('pair1.rsa_private'))
decrypted = key.decrypt(ast.literal_eval(str(encrypted)))
self.assertEqual(decrypted, original)
self.assertEqual(len(engine.secrets), 12)
with self.assertRaises(LookupError):
localKey = engine.lookup('local.rsa_private')
localKey = engine.lookup('local.rsa_public')
try:
path = '~/.ssh/id_rsa.pub'
with open(os.path.expanduser(path)) as stream:
text = stream.read()
stream.close()
self.assertEqual(localKey.strip(), text.strip())
logging.info("Successful lookup of local public key")
except IOError:
pass
