8294d6ee49
- Created `qa-test-output-after-fix.txt` and `qa-test-output.txt` to log results of certificate page authentication tests. - Added `build.sh` for deterministic backend builds in CI, utilizing `go list` for efficiency. - Introduced `codeql_scan.sh` for CodeQL database creation and analysis for Go and JavaScript/TypeScript. - Implemented `dockerfile_check.sh` to validate Dockerfiles for base image and package manager mismatches. - Added `sourcery_precommit_wrapper.sh` to facilitate Sourcery CLI usage in pre-commit hooks.
142 lines
4.3 KiB
Go
142 lines
4.3 KiB
Go
package config
|
|
|
|
import (
|
|
"os"
|
|
"path/filepath"
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestLoad(t *testing.T) {
|
|
// Save original env vars
|
|
originalEnv := os.Getenv("CPM_ENV")
|
|
defer os.Setenv("CPM_ENV", originalEnv)
|
|
|
|
// Set test env vars
|
|
os.Setenv("CPM_ENV", "test")
|
|
tempDir := t.TempDir()
|
|
os.Setenv("CPM_DB_PATH", filepath.Join(tempDir, "test.db"))
|
|
os.Setenv("CPM_CADDY_CONFIG_DIR", filepath.Join(tempDir, "caddy"))
|
|
os.Setenv("CPM_IMPORT_DIR", filepath.Join(tempDir, "imports"))
|
|
|
|
cfg, err := Load()
|
|
require.NoError(t, err)
|
|
|
|
assert.Equal(t, "test", cfg.Environment)
|
|
assert.Equal(t, filepath.Join(tempDir, "test.db"), cfg.DatabasePath)
|
|
assert.DirExists(t, filepath.Dir(cfg.DatabasePath))
|
|
assert.DirExists(t, cfg.CaddyConfigDir)
|
|
assert.DirExists(t, cfg.ImportDir)
|
|
}
|
|
|
|
func TestLoad_Defaults(t *testing.T) {
|
|
// Clear env vars to test defaults
|
|
os.Unsetenv("CPM_ENV")
|
|
os.Unsetenv("CPM_HTTP_PORT")
|
|
// We need to set paths to a temp dir to avoid creating real dirs in test
|
|
tempDir := t.TempDir()
|
|
os.Setenv("CPM_DB_PATH", filepath.Join(tempDir, "default.db"))
|
|
os.Setenv("CPM_CADDY_CONFIG_DIR", filepath.Join(tempDir, "caddy_default"))
|
|
os.Setenv("CPM_IMPORT_DIR", filepath.Join(tempDir, "imports_default"))
|
|
|
|
cfg, err := Load()
|
|
require.NoError(t, err)
|
|
|
|
assert.Equal(t, "development", cfg.Environment)
|
|
assert.Equal(t, "8080", cfg.HTTPPort)
|
|
}
|
|
|
|
func TestLoad_CharonPrefersOverCPM(t *testing.T) {
|
|
// Ensure CHARON_ variables take precedence over CPM_ fallback
|
|
tempDir := t.TempDir()
|
|
charonDB := filepath.Join(tempDir, "charon.db")
|
|
cpmDB := filepath.Join(tempDir, "cpm.db")
|
|
os.Setenv("CHARON_DB_PATH", charonDB)
|
|
os.Setenv("CPM_DB_PATH", cpmDB)
|
|
|
|
cfg, err := Load()
|
|
require.NoError(t, err)
|
|
assert.Equal(t, charonDB, cfg.DatabasePath)
|
|
}
|
|
|
|
func TestLoad_Error(t *testing.T) {
|
|
tempDir := t.TempDir()
|
|
filePath := filepath.Join(tempDir, "file")
|
|
f, err := os.Create(filePath)
|
|
require.NoError(t, err)
|
|
f.Close()
|
|
|
|
// Case 1: CaddyConfigDir is a file
|
|
os.Setenv("CPM_CADDY_CONFIG_DIR", filePath)
|
|
// Set other paths to valid locations to isolate the error
|
|
os.Setenv("CPM_DB_PATH", filepath.Join(tempDir, "db", "test.db"))
|
|
os.Setenv("CPM_IMPORT_DIR", filepath.Join(tempDir, "imports"))
|
|
|
|
_, err = Load()
|
|
assert.Error(t, err)
|
|
assert.Contains(t, err.Error(), "ensure caddy config directory")
|
|
|
|
// Case 2: ImportDir is a file
|
|
os.Setenv("CPM_CADDY_CONFIG_DIR", filepath.Join(tempDir, "caddy"))
|
|
os.Setenv("CPM_IMPORT_DIR", filePath)
|
|
|
|
_, err = Load()
|
|
assert.Error(t, err)
|
|
assert.Contains(t, err.Error(), "ensure import directory")
|
|
}
|
|
|
|
func TestGetEnvAny(t *testing.T) {
|
|
// Test with no env vars set - should return fallback
|
|
result := getEnvAny("fallback_value", "NONEXISTENT_KEY1", "NONEXISTENT_KEY2")
|
|
assert.Equal(t, "fallback_value", result)
|
|
|
|
// Test with first key set
|
|
os.Setenv("TEST_KEY1", "value1")
|
|
defer os.Unsetenv("TEST_KEY1")
|
|
result = getEnvAny("fallback", "TEST_KEY1", "TEST_KEY2")
|
|
assert.Equal(t, "value1", result)
|
|
|
|
// Test with second key set (first takes precedence)
|
|
os.Setenv("TEST_KEY2", "value2")
|
|
defer os.Unsetenv("TEST_KEY2")
|
|
result = getEnvAny("fallback", "TEST_KEY1", "TEST_KEY2")
|
|
assert.Equal(t, "value1", result)
|
|
|
|
// Test with only second key set
|
|
os.Unsetenv("TEST_KEY1")
|
|
result = getEnvAny("fallback", "TEST_KEY1", "TEST_KEY2")
|
|
assert.Equal(t, "value2", result)
|
|
|
|
// Test with empty string value (should still be considered set)
|
|
os.Setenv("TEST_KEY3", "")
|
|
defer os.Unsetenv("TEST_KEY3")
|
|
result = getEnvAny("fallback", "TEST_KEY3")
|
|
assert.Equal(t, "fallback", result) // Empty strings are treated as not set
|
|
}
|
|
|
|
func TestLoad_SecurityConfig(t *testing.T) {
|
|
tempDir := t.TempDir()
|
|
os.Setenv("CHARON_DB_PATH", filepath.Join(tempDir, "test.db"))
|
|
os.Setenv("CHARON_CADDY_CONFIG_DIR", filepath.Join(tempDir, "caddy"))
|
|
os.Setenv("CHARON_IMPORT_DIR", filepath.Join(tempDir, "imports"))
|
|
|
|
// Test security settings
|
|
os.Setenv("CERBERUS_SECURITY_CROWDSEC_MODE", "live")
|
|
os.Setenv("CERBERUS_SECURITY_WAF_MODE", "enabled")
|
|
os.Setenv("CERBERUS_SECURITY_CERBERUS_ENABLED", "true")
|
|
defer func() {
|
|
os.Unsetenv("CERBERUS_SECURITY_CROWDSEC_MODE")
|
|
os.Unsetenv("CERBERUS_SECURITY_WAF_MODE")
|
|
os.Unsetenv("CERBERUS_SECURITY_CERBERUS_ENABLED")
|
|
}()
|
|
|
|
cfg, err := Load()
|
|
require.NoError(t, err)
|
|
|
|
assert.Equal(t, "live", cfg.Security.CrowdSecMode)
|
|
assert.Equal(t, "enabled", cfg.Security.WAFMode)
|
|
assert.True(t, cfg.Security.CerberusEnabled)
|
|
}
|