sap-jenkins-library/pkg/whitesource/utilsMock.go

//go:build !release
// +build !release

package whitesource

import (
	"net/http"
	"os"

	"github.com/SAP/jenkins-library/pkg/mock"
	"github.com/SAP/jenkins-library/pkg/piperutils"
	"github.com/pkg/errors"
)

func newTestScan(config *ScanOptions) *Scan {
	return &Scan{
		AggregateProjectName: config.ProjectName,
		ProductVersion:       config.ProductVersion,
	}
}

// NpmInstall records in which directory "npm install" has been invoked and for which package.json files.
type NpmInstall struct {
	CurrentDir  string
	PackageJSON []string
}

// DownloadedFile records what URL has been downloaded to which file.
type DownloadedFile struct {
	SourceURL string
	FilePath  string
}

// ScanUtilsMock is an implementation of the Utils interface that can be used during tests.
type ScanUtilsMock struct {
	*mock.FilesMock
	*mock.ExecMockRunner
	NpmInstalledModules []NpmInstall
	DownloadedFiles     []DownloadedFile
	DownloadError       map[string]error
	RemoveAllDirs       []string
	RemoveAllError      map[string]error
}

// RemoveAll mimics os.RemoveAll().
func (m *ScanUtilsMock) RemoveAll(dir string) error {
	// Can be removed once implemented in mock.FilesMock.
	m.RemoveAllDirs = append(m.RemoveAllDirs, dir)
	if m.RemoveAllError[dir] != nil {
		return m.RemoveAllError[dir]
	}
	return nil
}

// FindPackageJSONFiles mimics npm.FindPackageJSONFiles() based on the FilesMock setup.
func (m *ScanUtilsMock) FindPackageJSONFiles(options *ScanOptions) ([]string, error) {
	unfilteredMatches, _ := m.Glob("**/package.json")
	return piperutils.ExcludeFiles(unfilteredMatches, options.BuildDescriptorExcludeList)
}

// InstallAllNPMDependencies mimics npm.InstallAllNPMDependencies() and records the "npm install".
func (m *ScanUtilsMock) InstallAllNPMDependencies(_ *ScanOptions, packageJSONs []string) error {
	m.NpmInstalledModules = append(m.NpmInstalledModules, NpmInstall{
		CurrentDir:  m.CurrentDir,
		PackageJSON: packageJSONs,
	})
	return nil
}

// DownloadFile mimics http.Downloader and records the downloaded file.
func (m *ScanUtilsMock) DownloadFile(url, filename string, _ http.Header, _ []*http.Cookie) error {
	if url == "errorCopyFile" {
		return errors.New("unable to copy content from url to file")
	}
	if url == "error404NotFound" {
		return errors.New("returned with response 404 Not Found")
	}
	if url == "error403Forbidden" {
		return errors.New("returned with response 403 Forbidden")
	}
	if m.DownloadError[url] != nil {
		return m.DownloadError[url]
	}
	m.DownloadedFiles = append(m.DownloadedFiles, DownloadedFile{SourceURL: url, FilePath: filename})
	return nil
}

// FileOpen mimics os.FileOpen() based on FilesMock OpenFile().
func (m *ScanUtilsMock) FileOpen(name string, flag int, perm os.FileMode) (File, error) {
	return m.OpenFile(name, flag, perm)
}

// NewScanUtilsMock returns an initialized ScanUtilsMock instance.
func NewScanUtilsMock() *ScanUtilsMock {
	return &ScanUtilsMock{
		FilesMock:      &mock.FilesMock{},
		ExecMockRunner: &mock.ExecMockRunner{},
	}
}
feat(whitesourceExecuteScan): GitHub issue creation + SARIF (#3535) * Add GH issue creation + SARIF * Code cleanup * Fix fmt, add debug * Code enhancements * Fix * Added debug info * Rework UA log scan * Fix code * read UA version * Fix nil reference * Extraction * Credentials * Issue creation * Error handling * Fix issue creation * query escape * Query escape 2 * Revert * Test avoid update * HTTP client * Add support for custom TLS certs * Fix code * Fix code 2 * Fix code 3 * Disable cert check * Fix auth * Remove implicit trust * Skip verification * Fix * Fix client * Fix HTTP auth * Fix trusted certs * Trim version * Code * Add token * Added token handling to client * Fix token * Cleanup * Fix token * Token rework * Fix code * Kick out oauth client * Kick out oauth client * Transport wrapping * Token * Simplification * Refactor * Variation * Check * Fix * Debug * Switch client * Variation * Debug * Switch to cert check * Add debug * Parse self * Cleanup * Update resources/metadata/whitesourceExecuteScan.yaml * Add debug * Expose subjects * Patch * Debug * Debug2 * Debug3 * Fix logging response body * Cleanup * Cleanup * Fix request body logging * Cleanup import * Fix import cycle * Cleanup * Fix fmt * Fix NopCloser reference * Regenerate * Reintroduce * Fix test * Fix tests * Correction * Fix error * Code fix * Fix tests * Add tests * Fix code climate issues * Code climate * Code climate again * Code climate again * Fix fmt * Fix fmt 2 Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com> 2022-02-23 09:30:19 +01:00			`//go:build !release`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`// +build !release`

			`package whitesource`

			`import (`
			`"net/http"`
			`"os"`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00
			`"github.com/SAP/jenkins-library/pkg/mock"`
			`"github.com/SAP/jenkins-library/pkg/piperutils"`
Adds retry mechanism for whitesource in case the download of the unified agent or JRE fails (#2961) 2021-07-13 20:36:36 +02:00			`"github.com/pkg/errors"`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`)`

			`func newTestScan(config ScanOptions) Scan {`
			`return &Scan{`
			`AggregateProjectName: config.ProjectName,`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00			`ProductVersion: config.ProductVersion,`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`
			`}`

			`// NpmInstall records in which directory "npm install" has been invoked and for which package.json files.`
			`type NpmInstall struct {`
whitesourcExecuteScan-go: Additional fixes (#2315) * Make sure the UA scan is known to the scan object. Fixes downloading reports later on. * Move polling into pkg/whitesource, add test for e2e scan * Remove conditions from stash config resource * Don't use version stored in CPE. This will prevent the versioningModel from being applied. 2020-11-10 09:09:51 +01:00			`CurrentDir string`
			`PackageJSON []string`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`

			`// DownloadedFile records what URL has been downloaded to which file.`
			`type DownloadedFile struct {`
whitesourcExecuteScan-go: Additional fixes (#2315) * Make sure the UA scan is known to the scan object. Fixes downloading reports later on. * Move polling into pkg/whitesource, add test for e2e scan * Remove conditions from stash config resource * Don't use version stored in CPE. This will prevent the versioningModel from being applied. 2020-11-10 09:09:51 +01:00			`SourceURL string`
			`FilePath string`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`

			`// ScanUtilsMock is an implementation of the Utils interface that can be used during tests.`
			`type ScanUtilsMock struct {`
			`*mock.FilesMock`
			`*mock.ExecMockRunner`
			`NpmInstalledModules []NpmInstall`
			`DownloadedFiles []DownloadedFile`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00			`DownloadError map[string]error`
			`RemoveAllDirs []string`
			`RemoveAllError map[string]error`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`

			`// RemoveAll mimics os.RemoveAll().`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00			`func (m *ScanUtilsMock) RemoveAll(dir string) error {`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`// Can be removed once implemented in mock.FilesMock.`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00			`m.RemoveAllDirs = append(m.RemoveAllDirs, dir)`
			`if m.RemoveAllError[dir] != nil {`
			`return m.RemoveAllError[dir]`
			`}`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`return nil`
			`}`

			`// FindPackageJSONFiles mimics npm.FindPackageJSONFiles() based on the FilesMock setup.`
WhiteSource: Force update of project when "checkPolicies" failed (#2401) * Force update of WS project * Refactor file filtering to avoid duplicated code 2020-11-26 11:45:53 +01:00			`func (m ScanUtilsMock) FindPackageJSONFiles(options ScanOptions) ([]string, error) {`
			`unfilteredMatches, _ := m.Glob("**/package.json")`
			`return piperutils.ExcludeFiles(unfilteredMatches, options.BuildDescriptorExcludeList)`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`

			`// InstallAllNPMDependencies mimics npm.InstallAllNPMDependencies() and records the "npm install".`
			`func (m ScanUtilsMock) InstallAllNPMDependencies(_ ScanOptions, packageJSONs []string) error {`
			`m.NpmInstalledModules = append(m.NpmInstalledModules, NpmInstall{`
whitesourcExecuteScan-go: Additional fixes (#2315) * Make sure the UA scan is known to the scan object. Fixes downloading reports later on. * Move polling into pkg/whitesource, add test for e2e scan * Remove conditions from stash config resource * Don't use version stored in CPE. This will prevent the versioningModel from being applied. 2020-11-10 09:09:51 +01:00			`CurrentDir: m.CurrentDir,`
			`PackageJSON: packageJSONs,`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`})`
			`return nil`
			`}`

			`// DownloadFile mimics http.Downloader and records the downloaded file.`
			`func (m ScanUtilsMock) DownloadFile(url, filename string, _ http.Header, _ []http.Cookie) error {`
Adds retry mechanism for whitesource in case the download of the unified agent or JRE fails (#2961) 2021-07-13 20:36:36 +02:00			`if url == "errorCopyFile" {`
			`return errors.New("unable to copy content from url to file")`
			`}`
Adds retry for whitesource download in case of 404 not found (#3063) Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com> 2021-08-19 14:49:24 +02:00			`if url == "error404NotFound" {`
			`return errors.New("returned with response 404 Not Found")`
			`}`
Whitesource unified agent download resilience (#3230) * Adds retry for whitesource download in case of 404 not found * Adds retry mechanism for 'forbidden errors' which occasional happen when downloading the unified agent Co-authored-by: tiloKo <70266685+tiloKo@users.noreply.github.com> 2021-11-02 15:10:04 +01:00			`if url == "error403Forbidden" {`
			`return errors.New("returned with response 403 Forbidden")`
			`}`
feat(whitesourceExecuteScan): UA for all build tools, e.g. maven & npm (#2501) * feat(whitesource): add config helper this helps to ease & enforce config settings * fix accidential change of class * add todos wrt java download * use existing scanOptions, add option to download jre * update generation * fix generation * allow running UA via go library * correct image, improve logging * add removal of downloaded JVM * update java creation and deletion * refactor and add log output * remove obsolete ToDo * increase test coverage * increase test coverage * adding aliases and tests * make go modules as default * maven: update behavior of projectNaming * add Docker capabilities * correct parameter name * retrieve Docker coordinates * docker coordinates only to provide artifact * add ToDos * add mta capability * add aliases, mvn arguments for settings * clean up groovy part * update defaults * add container for pip * add defaults, add maven specifics, ... * properly download settings * maven: check existence of excluded files * fix reporting * Update CommonStepsTest.groovy * update comment * fix CodeClimate finding * add tests for pip & fix minor issues * fix order of pip build descriptors * update pip container options * fix pip virtualEnv parameter * update report permissions * fix test * update container options * add use fileUtils to load properties file * update parameter description * adding Docker scanning defaults * clean up configHelper * consider also npm tool cache * add todos 2021-02-03 14:52:48 +01:00			`if m.DownloadError[url] != nil {`
			`return m.DownloadError[url]`
			`}`
whitesourcExecuteScan-go: Additional fixes (#2315) * Make sure the UA scan is known to the scan object. Fixes downloading reports later on. * Move polling into pkg/whitesource, add test for e2e scan * Remove conditions from stash config resource * Don't use version stored in CPE. This will prevent the versioningModel from being applied. 2020-11-10 09:09:51 +01:00			`m.DownloadedFiles = append(m.DownloadedFiles, DownloadedFile{SourceURL: url, FilePath: filename})`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`return nil`
			`}`

feat(checkmarx): create GitHub issue with findings (#3543) * feat(checkmarx): create GitHub issue with findings * add github issue reporting 2022-02-17 15:16:55 +01:00			`// FileOpen mimics os.FileOpen() based on FilesMock OpenFile().`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`func (m *ScanUtilsMock) FileOpen(name string, flag int, perm os.FileMode) (File, error) {`
feat(checkmarx): create GitHub issue with findings (#3543) * feat(checkmarx): create GitHub issue with findings * add github issue reporting 2022-02-17 15:16:55 +01:00			`return m.OpenFile(name, flag, perm)`
whitesourceExecuteScan: Re-organize code between step and whitesource package (#2207) 2020-10-20 09:49:26 +02:00			`}`

			`// NewScanUtilsMock returns an initialized ScanUtilsMock instance.`
			`func NewScanUtilsMock() *ScanUtilsMock {`
			`return &ScanUtilsMock{`
			`FilesMock: &mock.FilesMock{},`
			`ExecMockRunner: &mock.ExecMockRunner{},`
			`}`
			`}`