mirror of
https://github.com/status-im/consul.git
synced 2025-01-25 05:00:32 +00:00
f507f62f3c
- Add endpoints related to peering: read, list, generate token, initiate peering
- Update node/service/check table indexing to account for peers
- Foundational changes for pushing service updates to a peer
- Plumb peer name through Health.ServiceNodes path
see: ENT-1765, ENT-1280, ENT-1283, ENT-1283, ENT-1756, ENT-1739, ENT-1750, ENT-1679,
ENT-1709, ENT-1704, ENT-1690, ENT-1689, ENT-1702, ENT-1701, ENT-1683, ENT-1663,
ENT-1650, ENT-1678, ENT-1628, ENT-1658, ENT-1640, ENT-1637, ENT-1597, ENT-1634,
ENT-1613, ENT-1616, ENT-1617, ENT-1591, ENT-1588, ENT-1596, ENT-1572, ENT-1555
Co-authored-by: R.B. Boyer <rb@hashicorp.com>
Co-authored-by: freddygv <freddy@hashicorp.com>
Co-authored-by: Chris S. Kim <ckim@hashicorp.com>
Co-authored-by: Evan Culver <eculver@hashicorp.com>
Co-authored-by: Nitya Dhanushkodi <nitya@hashicorp.com>
108 lines
2.3 KiB
Go
108 lines
2.3 KiB
Go
package peering
|
|
|
|
import (
|
|
"errors"
|
|
"testing"
|
|
|
|
"github.com/hashicorp/consul/agent/structs"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestValidatePeeringToken(t *testing.T) {
|
|
type testCase struct {
|
|
name string
|
|
token *structs.PeeringToken
|
|
wantErr error
|
|
}
|
|
|
|
tt := []testCase{
|
|
{
|
|
name: "empty",
|
|
token: &structs.PeeringToken{},
|
|
wantErr: errPeeringTokenEmptyCA,
|
|
},
|
|
{
|
|
name: "empty CA",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{},
|
|
},
|
|
wantErr: errPeeringTokenEmptyCA,
|
|
},
|
|
{
|
|
name: "invalid CA",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{"notavalidcert"},
|
|
},
|
|
wantErr: errors.New("peering token invalid CA: no PEM-encoded data found"),
|
|
},
|
|
{
|
|
name: "invalid CA cert",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{invalidCA},
|
|
},
|
|
wantErr: errors.New("peering token invalid CA: x509: malformed certificate"),
|
|
},
|
|
{
|
|
name: "invalid address port",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{validCA},
|
|
ServerAddresses: []string{"1.2.3.4"},
|
|
},
|
|
wantErr: &errPeeringInvalidServerAddress{
|
|
"1.2.3.4",
|
|
},
|
|
},
|
|
{
|
|
name: "invalid address IP",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{validCA},
|
|
ServerAddresses: []string{"foo.bar.baz"},
|
|
},
|
|
wantErr: &errPeeringInvalidServerAddress{
|
|
"foo.bar.baz",
|
|
},
|
|
},
|
|
{
|
|
name: "invalid server name",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{validCA},
|
|
ServerAddresses: []string{"1.2.3.4:80"},
|
|
},
|
|
wantErr: errPeeringTokenEmptyServerName,
|
|
},
|
|
{
|
|
name: "invalid peer ID",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{validCA},
|
|
ServerAddresses: []string{validAddress},
|
|
ServerName: validServerName,
|
|
},
|
|
wantErr: errPeeringTokenEmptyPeerID,
|
|
},
|
|
{
|
|
name: "valid token",
|
|
token: &structs.PeeringToken{
|
|
CA: []string{validCA},
|
|
ServerAddresses: []string{validAddress},
|
|
ServerName: validServerName,
|
|
PeerID: validPeerID,
|
|
},
|
|
},
|
|
}
|
|
|
|
for _, tc := range tt {
|
|
t.Run(tc.name, func(t *testing.T) {
|
|
err := validatePeeringToken(tc.token)
|
|
if tc.wantErr != nil {
|
|
if err == nil {
|
|
t.Error("expected error but got nil")
|
|
return
|
|
}
|
|
require.Contains(t, err.Error(), tc.wantErr.Error())
|
|
return
|
|
}
|
|
require.NoError(t, err)
|
|
})
|
|
}
|
|
}
|