sap-jenkins-library/test/groovy/WriteTemporaryCredentialsTest.groovy

import org.junit.Before
import org.junit.Rule
import org.junit.Test
import org.junit.rules.ExpectedException
import org.junit.rules.RuleChain
import util.BasePiperTest
import util.JenkinsCredentialsRule
import util.JenkinsFileExistsRule
import util.JenkinsReadFileRule
import util.JenkinsReadYamlRule
import util.JenkinsShellCallRule
import util.JenkinsStepRule
import util.JenkinsWriteFileRule
import util.Rules
import static org.junit.Assert.assertThat
import static org.hamcrest.Matchers.*
import static org.junit.Assert.assertTrue
import static org.junit.Assert.assertFalse

class WriteTemporaryCredentialsTest extends BasePiperTest {
    private JenkinsStepRule stepRule = new JenkinsStepRule(this)
    private ExpectedException thrown = ExpectedException.none()
    private JenkinsCredentialsRule credentialsRule = new JenkinsCredentialsRule(this)
    private JenkinsWriteFileRule writeFileRule = new JenkinsWriteFileRule(this)
    private JenkinsFileExistsRule fileExistsRule = new JenkinsFileExistsRule(this, [])
    private JenkinsReadFileRule readFileRule = new JenkinsReadFileRule(this, null)
    private JenkinsReadYamlRule readYamlRule = new JenkinsReadYamlRule(this)
    private JenkinsShellCallRule shellRule = new JenkinsShellCallRule(this)

    def bodyExecuted

    @Rule
    public RuleChain ruleChain = Rules
        .getCommonRules(this)
        .around(thrown)
        .around(readYamlRule)
        .around(credentialsRule)
        .around(stepRule)
        .around(writeFileRule)
        .around(fileExistsRule)
        .around(readFileRule)
        .around(shellRule)

    @Before
    void init() {
        bodyExecuted = false

        helper.registerAllowedMethod("deleteDir", [], null)

        credentialsRule.reset()
            .withCredentials('erp-credentials', 'test_user', '********')
            .withCredentials('testCred2', 'test_other', '**')
    }

    @Test
    void noCredentials() {
        nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[
            credentialsDirectory: './',
        ]]]
        stepRule.step.writeTemporaryCredentials(
            script: nullScript,
            stageName: "myStage",
        ){
            bodyExecuted = true
        }
        assertTrue(bodyExecuted)
        assertThat(writeFileRule.files.keySet(), hasSize(0))
        assertThat(shellRule.shell, hasSize(0))
    }

    @Test
    void credentialsNoList() {
        def credential = "id"

        nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[
            credentials: credential
        ]]]

        thrown.expect(hudson.AbortException)
        thrown.expectMessage('[writeTemporaryCredentials] The execution failed, since credentials is not a list. Please provide credentials as a list of maps.')

        stepRule.step.writeTemporaryCredentials(
            script: nullScript,
            stageName: "myStage",
        ){
            bodyExecuted = true
        }
        assertFalse(bodyExecuted)
    }

    @Test
    void noCredentialsDirectory() {
        def credential = [alias: 'ERP', credentialId: 'erp-credentials']

        nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[
            credentials: [credential]
        ]]]

        thrown.expect(hudson.AbortException)
        thrown.expectMessage("[writeTemporaryCredentials] The execution failed, since no credentialsDirectory is defined. Please provide the path for the credentials file.")

        stepRule.step.writeTemporaryCredentials(
            script: nullScript,
            stageName: "myStage",
        ){
            bodyExecuted = true
        }
        assertFalse(bodyExecuted)
    }

    @Test
    void credentialsFileWrittenAndRemoved() {
        def credential = [alias: 'ERP', credentialId: 'erp-credentials']
        fileExistsRule.registerExistingFile('systems.yml')

        nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[
            credentials: [credential],
            credentialsDirectory: './',
        ]]]

        stepRule.step.writeTemporaryCredentials(
            script: nullScript,
            stageName: "myStage",
        ){
            bodyExecuted = true
        }

        assertTrue(bodyExecuted)
        assertThat(writeFileRule.files['credentials.json'], containsString('"alias":"ERP","username":"test_user","password":"********"'))
        assertThat(shellRule.shell, hasItem('rm -f credentials.json'))
    }
}
Add groovy wrapper for TemporaryCredentialsUtils (#1906) This change adds the groovy step writeTemporaryCredentials, in order to avoid resolving configuration parameters within the piperPipelineStageIntegration in the future. For the integration tests functionality provided by the SAP Cloud SDK Pipeline it needs be possible to configure a credential id pointing to Jenkins credentials, which are then temporarily written to a file to be available during the execution of the integration tests. With the previous implementation solely in the TemporaryCredentialsUtils class, it would be required to resolve the credentialId from the configuratuion within the piperPipelineStageIntegration, once we fully migrate the Cloud SDK integration tests stage. 2020-08-10 17:54:03 +02:00			`import org.junit.Before`
			`import org.junit.Rule`
			`import org.junit.Test`
			`import org.junit.rules.ExpectedException`
			`import org.junit.rules.RuleChain`
			`import util.BasePiperTest`
			`import util.JenkinsCredentialsRule`
			`import util.JenkinsFileExistsRule`
			`import util.JenkinsReadFileRule`
			`import util.JenkinsReadYamlRule`
			`import util.JenkinsShellCallRule`
			`import util.JenkinsStepRule`
			`import util.JenkinsWriteFileRule`
			`import util.Rules`
			`import static org.junit.Assert.assertThat`
			`import static org.hamcrest.Matchers.*`
			`import static org.junit.Assert.assertTrue`
			`import static org.junit.Assert.assertFalse`

			`class WriteTemporaryCredentialsTest extends BasePiperTest {`
			`private JenkinsStepRule stepRule = new JenkinsStepRule(this)`
			`private ExpectedException thrown = ExpectedException.none()`
			`private JenkinsCredentialsRule credentialsRule = new JenkinsCredentialsRule(this)`
			`private JenkinsWriteFileRule writeFileRule = new JenkinsWriteFileRule(this)`
			`private JenkinsFileExistsRule fileExistsRule = new JenkinsFileExistsRule(this, [])`
			`private JenkinsReadFileRule readFileRule = new JenkinsReadFileRule(this, null)`
			`private JenkinsReadYamlRule readYamlRule = new JenkinsReadYamlRule(this)`
			`private JenkinsShellCallRule shellRule = new JenkinsShellCallRule(this)`

			`def bodyExecuted`

			`@Rule`
			`public RuleChain ruleChain = Rules`
			`.getCommonRules(this)`
			`.around(thrown)`
			`.around(readYamlRule)`
			`.around(credentialsRule)`
			`.around(stepRule)`
			`.around(writeFileRule)`
			`.around(fileExistsRule)`
			`.around(readFileRule)`
			`.around(shellRule)`

			`@Before`
			`void init() {`
			`bodyExecuted = false`

			`helper.registerAllowedMethod("deleteDir", [], null)`

			`credentialsRule.reset()`
			`.withCredentials('erp-credentials', 'test_user', '********')`
			`.withCredentials('testCred2', 'test_other', '**')`
			`}`

			`@Test`
			`void noCredentials() {`
			`nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[`
			`credentialsDirectory: './',`
			`]]]`
			`stepRule.step.writeTemporaryCredentials(`
			`script: nullScript,`
			`stageName: "myStage",`
			`){`
			`bodyExecuted = true`
			`}`
			`assertTrue(bodyExecuted)`
			`assertThat(writeFileRule.files.keySet(), hasSize(0))`
			`assertThat(shellRule.shell, hasSize(0))`
			`}`

			`@Test`
			`void credentialsNoList() {`
			`def credential = "id"`

			`nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[`
			`credentials: credential`
			`]]]`

			`thrown.expect(hudson.AbortException)`
			`thrown.expectMessage('[writeTemporaryCredentials] The execution failed, since credentials is not a list. Please provide credentials as a list of maps.')`

			`stepRule.step.writeTemporaryCredentials(`
			`script: nullScript,`
			`stageName: "myStage",`
			`){`
			`bodyExecuted = true`
			`}`
			`assertFalse(bodyExecuted)`
			`}`

			`@Test`
			`void noCredentialsDirectory() {`
			`def credential = [alias: 'ERP', credentialId: 'erp-credentials']`

			`nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[`
			`credentials: [credential]`
			`]]]`

			`thrown.expect(hudson.AbortException)`
			`thrown.expectMessage("[writeTemporaryCredentials] The execution failed, since no credentialsDirectory is defined. Please provide the path for the credentials file.")`

			`stepRule.step.writeTemporaryCredentials(`
			`script: nullScript,`
			`stageName: "myStage",`
			`){`
			`bodyExecuted = true`
			`}`
			`assertFalse(bodyExecuted)`
			`}`

			`@Test`
			`void credentialsFileWrittenAndRemoved() {`
			`def credential = [alias: 'ERP', credentialId: 'erp-credentials']`
			`fileExistsRule.registerExistingFile('systems.yml')`

			`nullScript.commonPipelineEnvironment.configuration = [stages: [myStage:[`
			`credentials: [credential],`
			`credentialsDirectory: './',`
			`]]]`

			`stepRule.step.writeTemporaryCredentials(`
			`script: nullScript,`
			`stageName: "myStage",`
			`){`
			`bodyExecuted = true`
			`}`

			`assertTrue(bodyExecuted)`
			`assertThat(writeFileRule.files['credentials.json'], containsString('"alias":"ERP","username":"test_user","password":"********"'))`
			`assertThat(shellRule.shell, hasItem('rm -f credentials.json'))`
			`}`
			`}`