class TestDeleteSecret(object):
data = {
"secret_name":
"{}-ares-opaque-secret-2".format(settings.RESOURCE_PREFIX),
"secret_type":
"Opaque",
"opaque_key":
"opaque_key",
"opaque_value":
str(base64.b64encode("opaque_value".encode('utf-8')), 'utf8'),
"description":
"多组数据"
}
data_list = Secret.data_list
def setup_class(self):
self.secret_tool = Secret()
self.verify_delete_template = Common.generate_jinja_template(
self, './verify_data/secret/delete_response.jinja2')
def 测试删除含有多组数据的保密字典(self):
ret = self.secret_tool.delete_secret(self.data["secret_name"])
assert ret.status_code == 200, "删除{}类型的保密字典失败:{}".format(
self.data["secret_type", ret.text])
assert self.secret_tool.check_exists(
self.secret_tool.get_secret_url(
secret_name=self.data["secret_name"]), 404), "删除失败"
value = self.verify_delete_template.render(self.data)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"删除包含多组数据的保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))
@pytest.mark.parametrize("data", data_list, ids=Secret.casename_list)
def 测试删除保密字典(self, data):
ret = self.secret_tool.delete_secret(data["secret_name"])
assert ret.status_code == 200, "删除{}类型的保密字典失败:{}".format(
data["secret_type", ret.text])
assert self.secret_tool.check_exists(
self.secret_tool.get_secret_url(secret_name=data["secret_name"]),
404), "删除失败"
value = self.verify_delete_template.render(data)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"删除保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))
@pytest.mark.skipif(settings.AUDIT_UNABLED, reason="do not have audit")
def 测试保密字典删除审计(self):
payload = {
"user_name": settings.USERNAME,
"operation_type": "delete",
"resource_type": "secrets",
"resource_name": self.data['secret_name']
}
result = self.secret_tool.search_audit(payload)
payload.update({
"namespace": settings.K8S_NAMESPACE,
"region_name": settings.REGION_NAME
})
values = self.secret_tool.generate_jinja_data(
"./verify_data/audit/audit.jinja2", payload)
assert self.secret_tool.is_sub_dict(values, result.json()), "审计数据不符合预期"
class Testsecret(object):
data_list = {
"secret_name": "{}-ares-tls-secret".format(settings.RESOURCE_PREFIX),
"secret_type": "kubernetes.io/tls",
"tls_crt": str(base64.b64encode("tlscrt".encode('utf-8')), 'utf8'),
"tls_key": str(base64.b64encode("tlskey".encode('utf-8')), 'utf8')
}
def setup_class(self):
self.secret_tool = Secret()
self.verify_template = Common.generate_jinja_template(
self, './verify_data/secret/create_response.jinja2')
self.verify_delete_template = Common.generate_jinja_template(
self, './verify_data/secret/delete_response.jinja2')
@pytest.mark.prepare
def 测试TLS保密字典创建(self):
self.data_list.update({"K8S_NAMESPACE": settings.K8S_NAMESPACE})
# create manager_secret_basic_auth
ret = self.secret_tool.create_secret(
'./test_data/secret/create_secret.jinja2', data=self.data_list)
assert ret.status_code == 201, "创建{}类型保密字典失败:{}".format(
self.data_list['secret_type'], ret.text)
value = self.verify_template.render(self.data_list)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"创建保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))
@pytest.mark.upgrade
def 测试获取保密字典列表(self):
# get maanger_secret list
ret = self.secret_tool.get_secret_list()
assert ret.status_code == 200, "获取保密字典列表失败:{}".format(ret.text)
@pytest.mark.upgrade
def 测试更新TLS保密字典(self):
self.data_list.update({
"K8S_NAMESPACE": settings.K8S_NAMESPACE,
"description": "update secret"
})
# update manager_secret_basic_auth
ret = self.secret_tool.update_secret(
self.data_list['secret_name'],
'./test_data/secret/create_secret.jinja2',
data=self.data_list)
assert ret.status_code == 200, "更新{}类型保密字典失败:{}".format(
self.data_list["secret_type"], ret.text)
value = self.verify_template.render(self.data_list)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"更新保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))
@pytest.mark.upgrade
def 测试获取TLS保密字典详情(self):
ret = self.secret_tool.get_secret_detail(self.data_list["secret_name"])
assert ret.status_code == 200, "获取{}类型的保密字典详情失败{}".format(
self.data_list["secret_type"], ret.text)
assert self.data_list[
"secret_name"] in ret.text and "update secret" in ret.text, "{}类型的保密字典更新失败:{}".format(
ret.text)
value = self.verify_template.render(self.data_list)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"获取保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))
@pytest.mark.delete
def 测试删除TLS保密字典(self):
ret = self.secret_tool.delete_secret(self.data_list["secret_name"])
assert ret.status_code == 200, "删除{}类型的保密字典失败:{}".format(
self.data_list["secret_type", ret.text])
assert self.secret_tool.check_exists(
self.secret_tool.get_secret_url(
secret_name=self.data_list["secret_name"]), 404), "删除失败"
value = self.verify_delete_template.render(self.data_list)
assert self.secret_tool.is_sub_dict(json.loads(value), ret.json()), \
"删除保密字典比对数据失败,返回数据:{},期望数据:{}".format(ret.json(), json.loads(value))