mirror of
https://github.com/hashicorp/vault.git
synced 2026-06-27 10:00:32 -04:00
0c6c13dd38
* license: update headers to IBM Corp. * `make proto` * update offset because source file changed Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
123 lines
4 KiB
JavaScript
123 lines
4 KiB
JavaScript
/**
|
|
* Copyright IBM Corp. 2016, 2025
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import { waitFor } from '@ember/test-helpers';
|
|
import { module, test } from 'qunit';
|
|
import { setupApplicationTest } from 'ember-qunit';
|
|
import { setRunOptions } from 'ember-a11y-testing/test-support';
|
|
import { setupMirage } from 'ember-cli-mirage/test-support';
|
|
import { click } from '@ember/test-helpers';
|
|
import { GENERAL } from 'vault/tests/helpers/general-selectors';
|
|
import initPage from 'vault/tests/pages/init';
|
|
|
|
const CLOUD_SEAL_RESPONSE = {
|
|
keys: [],
|
|
keys_base64: [],
|
|
recovery_keys: [
|
|
'1659986a8d56b998b175b6e259998f3c064c061d256c2a331681b8d122fedf0db4',
|
|
'4d34c58f56e4f077e3b74f9e8db2850fc251ac3f16e952441301eedc462addeb84',
|
|
'3b3cbdf4b2f5ac1e809ff1bb72fd9778e460856561728a871a9370345bd52e97f4',
|
|
'aa99b46e2ed5d837ee9824b7894b24987be2f32c81ab9ff5ce9e07d2012eaf4158',
|
|
'c2bf6d71d8db8ae09b26177ed393ecb274740fe9ab51884eaa00ac113a74c08ba7',
|
|
],
|
|
recovery_keys_base64: [
|
|
'FlmYao1WuZixdbbiWZmPPAZMBh0lbCozFoG40SL+3w20',
|
|
'TTTFj1bk8Hfjt0+ejbKFD8JRrD8W6VJEEwHu3EYq3euE',
|
|
'Ozy99LL1rB6An/G7cv2XeORghWVhcoqHGpNwNFvVLpf0',
|
|
'qpm0bi7V2DfumCS3iUskmHvi8yyBq5/1zp4H0gEur0FY',
|
|
'wr9tcdjbiuCbJhd+05PssnR0D+mrUYhOqgCsETp0wIun',
|
|
],
|
|
root_token: '48dF3Drr1jl4ayM0jcHrN4NC',
|
|
};
|
|
const SEAL_RESPONSE = {
|
|
keys: [
|
|
'1659986a8d56b998b175b6e259998f3c064c061d256c2a331681b8d122fedf0db4',
|
|
'4d34c58f56e4f077e3b74f9e8db2850fc251ac3f16e952441301eedc462addeb84',
|
|
'3b3cbdf4b2f5ac1e809ff1bb72fd9778e460856561728a871a9370345bd52e97f4',
|
|
],
|
|
keys_base64: [
|
|
'FlmYao1WuZixdbbiWZmPPAZMBh0lbCozFoG40SL+3w20',
|
|
'TTTFj1bk8Hfjt0+ejbKFD8JRrD8W6VJEEwHu3EYq3euE',
|
|
'Ozy99LL1rB6An/G7cv2XeORghWVhcoqHGpNwNFvVLpf0',
|
|
],
|
|
root_token: '48dF3Drr1jl4ayM0jcHrN4NC',
|
|
};
|
|
|
|
const CLOUD_SEAL_STATUS_RESPONSE = {
|
|
type: 'awskms',
|
|
sealed: true,
|
|
initialized: false,
|
|
};
|
|
const SEAL_STATUS_RESPONSE = {
|
|
type: 'shamir',
|
|
sealed: true,
|
|
initialized: false,
|
|
};
|
|
|
|
const assertRequest = (req, assert, isCloud) => {
|
|
const json = JSON.parse(req.requestBody);
|
|
for (const key of ['recovery_shares', 'recovery_threshold']) {
|
|
assert[isCloud ? 'ok' : 'notOk'](
|
|
json[key],
|
|
`requestBody ${isCloud ? 'includes' : 'does not include'} cloud seal specific attribute: ${key}`
|
|
);
|
|
}
|
|
for (const key of ['secret_shares', 'secret_threshold']) {
|
|
assert[isCloud ? 'notOk' : 'ok'](
|
|
json[key],
|
|
`requestBody ${isCloud ? 'does not include' : 'includes'} shamir specific attribute: ${key}`
|
|
);
|
|
}
|
|
};
|
|
|
|
module('Acceptance | init', function (hooks) {
|
|
setupApplicationTest(hooks);
|
|
setupMirage(hooks);
|
|
|
|
test('cloud seal init', async function (assert) {
|
|
// continue button is disabled, violating color-contrast
|
|
setRunOptions({
|
|
rules: {
|
|
'color-contrast': { enabled: false },
|
|
},
|
|
});
|
|
assert.expect(6);
|
|
this.server.put('/sys/init', (schema, req) => {
|
|
assertRequest(req, assert, true);
|
|
return CLOUD_SEAL_RESPONSE;
|
|
});
|
|
this.server.get('/sys/seal-status', () => {
|
|
return CLOUD_SEAL_STATUS_RESPONSE;
|
|
});
|
|
|
|
await initPage.init(5, 3);
|
|
await click(GENERAL.submitButton);
|
|
await waitFor(GENERAL.button('Continue to Authenticate'));
|
|
assert.strictEqual(
|
|
initPage.keys.length,
|
|
CLOUD_SEAL_RESPONSE.recovery_keys.length,
|
|
'shows all of the recovery keys'
|
|
);
|
|
assert.dom(GENERAL.button('Continue to Authenticate')).exists('links to authenticate');
|
|
});
|
|
|
|
test('shamir seal init', async function (assert) {
|
|
assert.expect(6);
|
|
|
|
this.server.put('/sys/init', (schema, req) => {
|
|
assertRequest(req, assert, false);
|
|
return SEAL_RESPONSE;
|
|
});
|
|
this.server.get('/sys/seal-status', () => {
|
|
return SEAL_STATUS_RESPONSE;
|
|
});
|
|
|
|
await initPage.init(3, 2);
|
|
await click(GENERAL.submitButton);
|
|
await waitFor(GENERAL.button('Continue to Unseal'));
|
|
assert.strictEqual(initPage.keys.length, SEAL_RESPONSE.keys.length, 'shows all of the recovery keys');
|
|
assert.dom(GENERAL.button('Continue to Unseal')).exists('links to unseal');
|
|
});
|
|
});
|