root
/
grafana
mirror of https://github.com/grafana/grafana.git
1
0
Fork 0
Code Issues Actions 266 Packages Projects Releases Wiki Activity
grafana/pkg/api/datasources_test.go

565 lines
18 KiB
Go
Raw Normal View History

fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
package api
import (
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
"context"
fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
"encoding/json"
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
"fmt"
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
"io"
"net/http"
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
"strings"
fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
"testing"
Move datasource scopes and actions to access control package (#46334) * create scope provider * move datasource actions and scopes to datasource package + add provider * change usages to use datasource scopes and update data source name resolver to use provider * move folder permissions to dashboard package and update usages
2022-03-10 00:57:50 +08:00
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require"
Chore: Moves common and response into separate packages (#30298) * Chore: moves common and response into separate packages * Chore: moves common and response into separate packages * Update pkg/api/utils/common.go Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com> * Chore: changes after PR comments * Chore: move wrap to routing package * Chore: move functions in common to response package * Chore: move functions in common to response package * Chore: formats imports Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com>
2021-01-15 21:43:20 +08:00
"github.com/grafana/grafana/pkg/api/response"
"github.com/grafana/grafana/pkg/api/routing"
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
"github.com/grafana/grafana/pkg/components/simplejson"
Chore: Remove mockstore and use dbtest instead (#61629) * remove mockstore and use dbtest instead * fix wire * remove unused expected fields * fix more tests in alerting * fix api tests
2023-01-18 23:01:25 +08:00
"github.com/grafana/grafana/pkg/infra/db/dbtest"
Move datasource scopes and actions to access control package (#46334) * create scope provider * move datasource actions and scopes to datasource package + add provider * change usages to use datasource scopes and update data source name resolver to use provider * move folder permissions to dashboard package and update usages
2022-03-10 00:57:50 +08:00
ac "github.com/grafana/grafana/pkg/services/accesscontrol"
Access Control: Clear user's permission cache after resource creation (#59101) * refresh user's permission cache after resource creation * clear the cache instead of reloading the permissions * don't error if can't clear cache * fix tests * fix tests again
2022-11-24 22:38:55 +08:00
"github.com/grafana/grafana/pkg/services/accesscontrol/acimpl"
"github.com/grafana/grafana/pkg/services/accesscontrol/actest"
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
contextmodel "github.com/grafana/grafana/pkg/services/contexthandler/model"
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
"github.com/grafana/grafana/pkg/services/datasources"
Chore: clean up access control for data sources (#73010) * move DS guardian interfaces to OSS, move allow guardian to OSS * update codeowner file
2023-08-21 21:26:49 +08:00
"github.com/grafana/grafana/pkg/services/datasources/guardian"
Team LBAC: Refactor to use only the teamHeader json part (#76756) * refactor: to check for feature toggle and for checking for jsonData field * fix tests * whitelisting of X-Prom-Label-Policy Header
2023-10-18 23:09:22 +08:00
"github.com/grafana/grafana/pkg/services/featuremgmt"
Plugins: Move store and plugin dto to pluginsintegration (#74655) move store and plugin dto
2023-09-11 19:59:24 +08:00
"github.com/grafana/grafana/pkg/services/pluginsintegration/pluginstore"
SQLStore: customise the limit of retrieved datasources per organisation (#29358) * SQLStore: customise the limit of retrieved datasources per organisation * update all suggestions regarding nil or 0 as default * Apply suggestions from code review Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> * correct default.ini description + adding unittest * Apply suggestions from code review Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com> * modify unittest name Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com>
2020-12-28 19:24:42 +08:00
"github.com/grafana/grafana/pkg/setting"
Chore: Return correct error for name taken and validation error on add/update datasource (#70465)
2023-07-17 22:27:19 +08:00
"github.com/grafana/grafana/pkg/web"
Chore: Fix goimports grouping in pkg/api (#62419) * fix goimports * fix goimports order
2023-01-30 16:18:26 +08:00
"github.com/grafana/grafana/pkg/web/webtest"
fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
)
const (
Add an option to hide certain users in the UI (#28942) * Add an option to hide certain users in the UI * revert changes for admin users routes * fix sqlstore function name * Improve slice management Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> * Hidden users: convert slice to map * filter with user logins instead of IDs * put HiddenUsers in Cfg struct * hide hidden users from dashboards/folders permissions list * Update conf/defaults.ini Co-authored-by: Torkel Ödegaard <torkel@grafana.com> * fix params order * fix tests * fix dashboard/folder update with hidden user * add team tests * add dashboard and folder permissions tests * fixes after merge * fix tests * API: add test for org users endpoints * update hidden users management for dashboard / folder permissions * improve dashboard / folder permissions tests * fixes after merge * Guardian: add hidden acl tests * API: add team members tests * fix team sql syntax for postgres * api tests update * fix linter error * fix tests errors after merge Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> Co-authored-by: Torkel Ödegaard <torkel@grafana.com> Co-authored-by: Leonard Gram <leo@xlson.com>
2020-11-24 19:10:32 +08:00
testOrgID int64 = 1
testUserID int64 = 1
testUserLogin string = "testUser"
fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
)
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
func TestDataSourcesProxy_userLoggedIn(t *testing.T) {
Chore: Remove mockstore and use dbtest instead (#61629) * remove mockstore and use dbtest instead * fix wire * remove unused expected fields * fix more tests in alerting * fix api tests
2023-01-18 23:01:25 +08:00
mockSQLStore := dbtest.NewFakeDB()
Remove Macaron ParamsInt64 function from code base (#43810) * draft commit * change all calls * Compilation errors
2022-01-15 00:55:57 +08:00
loggedInUserScenario(t, "When calling GET on", "/api/datasources/", "/api/datasources/", func(sc *scenarioContext) {
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
// Stubs the database query
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
ds := []*datasources.DataSource{
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
{Name: "mmm"},
{Name: "ZZZ"},
{Name: "BBB"},
{Name: "aaa"},
}
Return a 404 when deleting a datasource through the API if it doesn't exist and add a test for it to confirm #12313
2018-06-23 10:15:36 +08:00
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
// handler func being tested
PluginManager: Make Plugins, Renderer and DataSources non-global (#31866) * PluginManager: Make Plugins and DataSources non-global Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix integration tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Replace outdated command Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * DashboardService: Ensure it gets constructed with necessary parameters Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix build Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * DashboardService: Ensure it gets constructed with necessary parameters Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove dead code Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove FocusConvey Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove dead code Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Undo interface changes Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Backend: Move tsdbifaces.RequestHandler to plugins.DataRequestHandler Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Rename to DataSourceCount Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Consolidate dashboard interfaces into one Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix dashboard integration tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
2021-03-17 23:06:10 +08:00
hs := &HTTPServer{
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
Cfg: setting.NewCfg(),
Plugins: Move store and plugin dto to pluginsintegration (#74655) move store and plugin dto
2023-09-11 19:59:24 +08:00
pluginStore: &pluginstore.FakePluginStore{},
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
DataSourcesService: &dataSourcesServiceMock{
expectedDatasources: ds,
},
Chore: clean up access control for data sources (#73010) * move DS guardian interfaces to OSS, move allow guardian to OSS * update codeowner file
2023-08-21 21:26:49 +08:00
dsGuardian: guardian.ProvideGuardian(),
PluginManager: Make Plugins, Renderer and DataSources non-global (#31866) * PluginManager: Make Plugins and DataSources non-global Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix integration tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Replace outdated command Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * DashboardService: Ensure it gets constructed with necessary parameters Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix build Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * DashboardService: Ensure it gets constructed with necessary parameters Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove dead code Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove FocusConvey Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Remove dead code Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Undo interface changes Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Backend: Move tsdbifaces.RequestHandler to plugins.DataRequestHandler Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Rename to DataSourceCount Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Consolidate dashboard interfaces into one Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix dashboard integration tests Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
2021-03-17 23:06:10 +08:00
}
SQLStore: customise the limit of retrieved datasources per organisation (#29358) * SQLStore: customise the limit of retrieved datasources per organisation * update all suggestions regarding nil or 0 as default * Apply suggestions from code review Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> * correct default.ini description + adding unittest * Apply suggestions from code review Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com> * modify unittest name Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com>
2020-12-28 19:24:42 +08:00
sc.handlerFunc = hs.GetDataSources
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc.fakeReq("GET", "/api/datasources").exec()
Chore: use any rather than interface{} (#74066)
2023-08-30 23:46:47 +08:00
respJSON := []map[string]any{}
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
err := json.NewDecoder(sc.resp.Body).Decode(&respJSON)
require.NoError(t, err)
assert.Equal(t, "aaa", respJSON[0]["name"])
assert.Equal(t, "BBB", respJSON[1]["name"])
assert.Equal(t, "mmm", respJSON[2]["name"])
assert.Equal(t, "ZZZ", respJSON[3]["name"])
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}, mockSQLStore)
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
loggedInUserScenario(t, "Should be able to save a data source when calling DELETE on non-existing",
Remove Macaron ParamsInt64 function from code base (#43810) * draft commit * change all calls * Compilation errors
2022-01-15 00:55:57 +08:00
"/api/datasources/name/12345", "/api/datasources/name/:name", func(sc *scenarioContext) {
Live: stream resubmit on ds change, fix old ds settings in RunStream (#34130)
2021-05-19 02:39:56 +08:00
// handler func being tested
hs := &HTTPServer{
Plugins: Refactor Plugin Management (#40477) * add core plugin flow * add instrumentation * move func * remove cruft * support external backend plugins * refactor + clean up * remove comments * refactor loader * simplify core plugin path arg * cleanup loggers * move signature validator to plugins package * fix sig packaging * cleanup plugin model * remove unnecessary plugin field * add start+stop for pm * fix failures * add decommissioned state * export fields just to get things flowing * fix comments * set static routes * make image loading idempotent * merge with backend plugin manager * re-use funcs * reorder imports + remove unnecessary interface * add some TODOs + remove unused func * remove unused instrumentation func * simplify client usage * remove import alias * re-use backendplugin.Plugin interface * re order funcs * improve var name * fix log statements * refactor data model * add logic for dupe check during loading * cleanup state setting * refactor loader * cleanup manager interface * add rendering flow * refactor loading + init * add renderer support * fix renderer plugin * reformat imports * track errors * fix plugin signature inheritance * name param in interface * update func comment * fix func arg name * introduce class concept * remove func * fix external plugin check * apply changes from pm-experiment * fix core plugins * fix imports * rename interface * comment API interface * add support for testdata plugin * enable alerting + use correct core plugin contracts * slim manager API * fix param name * fix filter * support static routes * fix rendering * tidy rendering * get tests compiling * fix install+uninstall * start finder test * add finder test coverage * start loader tests * add test for core plugins * load core + bundled test * add test for nested plugin loading * add test files * clean interface + fix registering some core plugins * refactoring * reformat and create sub packages * simplify core plugin init * fix ctx cancel scenario * migrate initializer * remove Init() funcs * add test starter * new logger * flesh out initializer tests * refactoring * remove unused svc * refactor rendering flow * fixup loader tests * add enabled helper func * fix logger name * fix data fetchers * fix case where plugin dir doesn't exist * improve coverage + move dupe checking to loader * remove noisy debug logs * register core plugins automagically * add support for renderer in catalog * make private func + fix req validation * use interface * re-add check for renderer in catalog * tidy up from moving to auto reg core plugins * core plugin registrar * guards * copy over core plugins for test infra * all tests green * renames * propagate new interfaces * kill old manager * get compiling * tidy up * update naming * refactor manager test + cleanup * add more cases to finder test * migrate validator to field * more coverage * refactor dupe checking * add test for plugin class * add coverage for initializer * split out rendering * move * fixup tests * fix uss test * fix frontend settings * fix grafanads test * add check when checking sig errors * fix enabled map * fixup * allow manual setup of CM * rename to cloud-monitoring * remove TODO * add installer interface for testing * loader interface returns * tests passing * refactor + add more coverage * support 'stackdriver' * fix frontend settings loading * improve naming based on package name * small tidy * refactor test * fix renderer start * make cloud-monitoring plugin ID clearer * add plugin update test * add integration tests * don't break all if sig can't be calculated * add root URL check test * add more signature verification tests * update DTO name * update enabled plugins comment * update comments * fix linter * revert fe naming change * fix errors endpoint * reset error code field name * re-order test to help verify * assert -> require * pm check * add missing entry + re-order * re-check * dump icon log * verify manager contents first * reformat * apply PR feedback * apply style changes * fix one vs all loading err * improve log output * only start when no signature error * move log * rework plugin update check * fix test * fix multi loading from cfg.PluginSettings * improve log output #2 * add error abstraction to capture errors without registering a plugin * add debug log * add unsigned warning * e2e test attempt * fix logger * set home path * prevent panic * alternate * ugh.. fix home path * return renderer even if not started * make renderer plugin managed * add fallback renderer icon, update renderer badge + prevent changes when renderer is installed * fix icon loading * rollback renderer changes * use correct field * remove unneccessary block * remove newline * remove unused func * fix bundled plugins base + module fields * remove unused field since refactor * add authorizer abstraction * loader only returns plugins expected to run * fix multi log output
2021-11-01 17:53:33 +08:00
Cfg: setting.NewCfg(),
Plugins: Move store and plugin dto to pluginsintegration (#74655) move store and plugin dto
2023-09-11 19:59:24 +08:00
pluginStore: &pluginstore.FakePluginStore{},
Live: stream resubmit on ds change, fix old ds settings in RunStream (#34130)
2021-05-19 02:39:56 +08:00
}
sc.handlerFunc = hs.DeleteDataSourceByName
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc.fakeReqWithParams("DELETE", sc.url, map[string]string{}).exec()
assert.Equal(t, 404, sc.resp.Code)
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}, mockSQLStore)
fix(api): case insensitive sort for datasources The data source list is case sensitive when sorted. This changes the sort to be case insensitive. The test only tests the handler, not the routing or database query.
2017-02-08 05:15:52 +08:00
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
// Adding data sources with invalid URLs should lead to an error.
func TestAddDataSource_InvalidURL(t *testing.T) {
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc := setupScenarioContext(t, "/api/datasources")
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
hs := &HTTPServer{
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
DataSourcesService: &dataSourcesServiceMock{},
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
Cfg: setting.NewCfg(),
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Post(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Name: "Test",
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: "invalid:url",
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Access: "direct",
Type: "test",
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
return hs.AddDataSource(c)
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
}))
sc.fakeReqWithParams("POST", sc.url, map[string]string{}).exec()
assert.Equal(t, 400, sc.resp.Code)
}
// Adding data sources with URLs not specifying protocol should work.
func TestAddDataSource_URLWithoutProtocol(t *testing.T) {
const name = "Test"
const url = "localhost:5432"
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
hs := &HTTPServer{
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
DataSourcesService: &dataSourcesServiceMock{
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
expectedDatasource: &datasources.DataSource{},
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
},
Access Control: Clear user's permission cache after resource creation (#59101) * refresh user's permission cache after resource creation * clear the cache instead of reloading the permissions * don't error if can't clear cache * fix tests * fix tests again
2022-11-24 22:38:55 +08:00
Cfg: setting.NewCfg(),
AccessControl: acimpl.ProvideAccessControl(setting.NewCfg()),
accesscontrolService: actest.FakeService{},
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc := setupScenarioContext(t, "/api/datasources")
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Post(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Name: name,
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: url,
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Access: "direct",
Type: "test",
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
return hs.AddDataSource(c)
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
}))
sc.fakeReqWithParams("POST", sc.url, map[string]string{}).exec()
assert.Equal(t, 200, sc.resp.Code)
}
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
// Using a custom header whose name matches the name specified for auth proxy header should fail
func TestAddDataSource_InvalidJSONData(t *testing.T) {
hs := &HTTPServer{
DataSourcesService: &dataSourcesServiceMock{},
Cfg: setting.NewCfg(),
}
sc := setupScenarioContext(t, "/api/datasources")
hs.Cfg = setting.NewCfg()
hs.Cfg.AuthProxyEnabled = true
hs.Cfg.AuthProxyHeaderName = "X-AUTH-PROXY-HEADER"
jsonData := simplejson.New()
jsonData.Set("httpHeaderName1", hs.Cfg.AuthProxyHeaderName)
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Post(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Name: "Test",
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: "localhost:5432",
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
Access: "direct",
Type: "test",
JsonData: jsonData,
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
return hs.AddDataSource(c)
}))
sc.fakeReqWithParams("POST", sc.url, map[string]string{}).exec()
assert.Equal(t, 400, sc.resp.Code)
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
// Updating data sources with invalid URLs should lead to an error.
func TestUpdateDataSource_InvalidURL(t *testing.T) {
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
hs := &HTTPServer{
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
DataSourcesService: &dataSourcesServiceMock{},
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
Cfg: setting.NewCfg(),
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc := setupScenarioContext(t, "/api/datasources/1234")
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Put(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Name: "Test",
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: "invalid:url",
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Access: "direct",
Type: "test",
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
return hs.AddDataSource(c)
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
}))
sc.fakeReqWithParams("PUT", sc.url, map[string]string{}).exec()
assert.Equal(t, 400, sc.resp.Code)
}
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
// Using a custom header whose name matches the name specified for auth proxy header should fail
func TestUpdateDataSource_InvalidJSONData(t *testing.T) {
hs := &HTTPServer{
DataSourcesService: &dataSourcesServiceMock{},
Cfg: setting.NewCfg(),
}
sc := setupScenarioContext(t, "/api/datasources/1234")
hs.Cfg.AuthProxyEnabled = true
hs.Cfg.AuthProxyHeaderName = "X-AUTH-PROXY-HEADER"
jsonData := simplejson.New()
jsonData.Set("httpHeaderName1", hs.Cfg.AuthProxyHeaderName)
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Put(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Name: "Test",
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: "localhost:5432",
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
Access: "direct",
Type: "test",
JsonData: jsonData,
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
return hs.AddDataSource(c)
}))
sc.fakeReqWithParams("PUT", sc.url, map[string]string{}).exec()
Team LBAC: Add `teamHeaders` for datasource proxy requests (#76339) * Add teamHeaders for datasource proxy requests * adds validation for the teamHeaders * added tests for applying teamHeaders * remove previous implementation * validation for header values being set to authproxy * removed unnecessary checks * newline * Add middleware for injecting headers on the data source backend * renamed feature toggle * Get user teams from context * Fix feature toggle name * added test for validation of the auth headers and fixed evaluation to cover headers * renaming of teamHeaders to teamHTTPHeaders * use of header set for non-existing header and add for existing headers * moves types into datasources * fixed unchecked errors * Refactor * Add tests for data model * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-10-17 18:23:54 +08:00
assert.Equal(t, 400, sc.resp.Code)
}
// Using a team HTTP header whose name matches the name specified for auth proxy header should fail
func TestUpdateDataSourceTeamHTTPHeaders_InvalidJSONData(t *testing.T) {
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
tenantID := "1234"
testcases := []struct {
desc string
data datasources.TeamHTTPHeaders
want int
}{
{
desc: "We should only allow for headers being X-Prom-Label-Policy",
data: datasources.TeamHTTPHeaders{tenantID: []datasources.TeamHTTPHeader{
{
Header: "Authorization",
Value: "foo!=bar",
},
Team LBAC: Add `teamHeaders` for datasource proxy requests (#76339) * Add teamHeaders for datasource proxy requests * adds validation for the teamHeaders * added tests for applying teamHeaders * remove previous implementation * validation for header values being set to authproxy * removed unnecessary checks * newline * Add middleware for injecting headers on the data source backend * renamed feature toggle * Get user teams from context * Fix feature toggle name * added test for validation of the auth headers and fixed evaluation to cover headers * renaming of teamHeaders to teamHTTPHeaders * use of header set for non-existing header and add for existing headers * moves types into datasources * fixed unchecked errors * Refactor * Add tests for data model * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-10-17 18:23:54 +08:00
},
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
},
want: 400,
},
{
desc: "Allowed header but no team id",
data: datasources.TeamHTTPHeaders{"": []datasources.TeamHTTPHeader{
{
Header: "X-Prom-Label-Policy",
Value: "foo=bar",
},
},
},
want: 400,
},
{
desc: "Allowed team id and header name with invalid header values ",
data: datasources.TeamHTTPHeaders{tenantID: []datasources.TeamHTTPHeader{
{
Header: "X-Prom-Label-Policy",
Value: "Bad value",
},
},
},
want: 400,
},
// Complete valid case, with team id, header name and header value
{
desc: "Allowed header and header values ",
data: datasources.TeamHTTPHeaders{tenantID: []datasources.TeamHTTPHeader{
{
Header: "X-Prom-Label-Policy",
Value: `1234:{ name!="value",foo!~"bar" }`,
},
},
},
want: 200,
Team LBAC: Add `teamHeaders` for datasource proxy requests (#76339) * Add teamHeaders for datasource proxy requests * adds validation for the teamHeaders * added tests for applying teamHeaders * remove previous implementation * validation for header values being set to authproxy * removed unnecessary checks * newline * Add middleware for injecting headers on the data source backend * renamed feature toggle * Get user teams from context * Fix feature toggle name * added test for validation of the auth headers and fixed evaluation to cover headers * renaming of teamHeaders to teamHTTPHeaders * use of header set for non-existing header and add for existing headers * moves types into datasources * fixed unchecked errors * Refactor * Add tests for data model * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-10-17 18:23:54 +08:00
},
}
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
for _, tc := range testcases {
t.Run(tc.desc, func(t *testing.T) {
hs := &HTTPServer{
DataSourcesService: &dataSourcesServiceMock{
expectedDatasource: &datasources.DataSource{},
},
Cfg: setting.NewCfg(),
Features: featuremgmt.WithFeatures(featuremgmt.FlagTeamHttpHeaders),
accesscontrolService: actest.FakeService{},
Team LBAC: Add permission check for Update datasource (#77709) * add permission check for updating the LBAC Rules * permission scoped for id in the updating datasource * fixed test to cover for permissions * fix proper check for permissions and empty teamHTTPHeader requests * check for jsondata * check nil for jsondata inside the getEncodedString
2023-11-08 22:37:32 +08:00
AccessControl: actest.FakeAccessControl{
ExpectedEvaluate: true,
ExpectedErr: nil,
},
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
}
sc := setupScenarioContext(t, fmt.Sprintf("/api/datasources/%s", tenantID))
hs.Cfg.AuthProxyEnabled = true
jsonData := simplejson.New()
jsonData.Set("teamHttpHeaders", tc.data)
sc.m.Put(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Name: "Test",
URL: "localhost:5432",
Access: "direct",
Type: "test",
JsonData: jsonData,
})
Team LBAC: Add permission check for Update datasource (#77709) * add permission check for updating the LBAC Rules * permission scoped for id in the updating datasource * fixed test to cover for permissions * fix proper check for permissions and empty teamHTTPHeader requests * check for jsondata * check nil for jsondata inside the getEncodedString
2023-11-08 22:37:32 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{
{Action: datasources.ActionPermissionsWrite, Scope: datasources.ScopeAll},
})
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
return hs.AddDataSource(c)
}))
sc.fakeReqWithParams("PUT", sc.url, map[string]string{}).exec()
assert.Equal(t, tc.want, sc.resp.Code)
Team LBAC: Add `teamHeaders` for datasource proxy requests (#76339) * Add teamHeaders for datasource proxy requests * adds validation for the teamHeaders * added tests for applying teamHeaders * remove previous implementation * validation for header values being set to authproxy * removed unnecessary checks * newline * Add middleware for injecting headers on the data source backend * renamed feature toggle * Get user teams from context * Fix feature toggle name * added test for validation of the auth headers and fixed evaluation to cover headers * renaming of teamHeaders to teamHTTPHeaders * use of header set for non-existing header and add for existing headers * moves types into datasources * fixed unchecked errors * Refactor * Add tests for data model * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> * Update pkg/api/datasources.go Co-authored-by: Victor Cinaglia <victor@grafana.com> --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-10-17 18:23:54 +08:00
})
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
}
resolve merge conflicts (#55503)
2022-09-21 01:31:08 +08:00
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
// Updating data sources with URLs not specifying protocol should work.
func TestUpdateDataSource_URLWithoutProtocol(t *testing.T) {
const name = "Test"
const url = "localhost:5432"
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
hs := &HTTPServer{
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
DataSourcesService: &dataSourcesServiceMock{
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
expectedDatasource: &datasources.DataSource{},
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
},
Access Control: Clear user's permission cache after resource creation (#59101) * refresh user's permission cache after resource creation * clear the cache instead of reloading the permissions * don't error if can't clear cache * fix tests * fix tests again
2022-11-24 22:38:55 +08:00
Cfg: setting.NewCfg(),
AccessControl: acimpl.ProvideAccessControl(setting.NewCfg()),
accesscontrolService: actest.FakeService{},
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
}
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Convert API tests to standard Go lib (#29009) * Chore: Convert tests to standard Go lib Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Will Browne <wbrowne@users.noreply.github.com>
2020-11-13 16:52:38 +08:00
sc := setupScenarioContext(t, "/api/datasources/1234")
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
Chore: Move ReqContext to contexthandler service (#62102) * Chore: Move ReqContext to contexthandler service * Rename package to contextmodel * Generate ngalert files * Remove unused imports
2023-01-27 15:50:36 +08:00
sc.m.Put(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
c.Req.Body = mockRequestBody(datasources.AddDataSourceCommand{
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Name: name,
Chore: Rename Id to ID in alerting models (#62777) * Chore: Rename Id to ID in alerting models * Add xorm tags for datasource * Add xorm tag for uid
2023-02-03 00:22:43 +08:00
URL: url,
Chore: Refactor api handlers to use web.Bind (#42199) * Chore: Refactor api handlers to use web.Bind * fix comments * fix comment * trying to fix most of the tests and force routing.Wrap type check * fix library panels tests * fix frontend logging tests * allow passing nil as a response to skip writing * return nil instead of the response * rewrite login handler function types * remove handlerFuncCtx * make linter happy * remove old bindings from the libraryelements * restore comments
2021-11-29 17:18:01 +08:00
Access: "direct",
Type: "test",
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
})
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
c.SignedInUser = authedUserWithPermissions(1, 1, []ac.Permission{})
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
return hs.AddDataSource(c)
Data sources: Don't fail if URL doesn't specify protocol (#24497)
2020-05-12 19:04:18 +08:00
}))
sc.fakeReqWithParams("PUT", sc.url, map[string]string{}).exec()
assert.Equal(t, 200, sc.resp.Code)
}
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
Chore: Return correct error for name taken and validation error on add/update datasource (#70465)
2023-07-17 22:27:19 +08:00
// Updating data source name where data source with same name exists.
func TestUpdateDataSourceByID_DataSourceNameExists(t *testing.T) {
hs := &HTTPServer{
DataSourcesService: &dataSourcesServiceMock{
expectedDatasource: &datasources.DataSource{},
mockUpdateDataSource: func(ctx context.Context, cmd *datasources.UpdateDataSourceCommand) (*datasources.DataSource, error) {
return nil, datasources.ErrDataSourceNameExists
},
},
Cfg: setting.NewCfg(),
AccessControl: acimpl.ProvideAccessControl(setting.NewCfg()),
accesscontrolService: actest.FakeService{},
Live: newTestLive(t, nil),
}
sc := setupScenarioContext(t, "/api/datasources/1")
sc.m.Put(sc.url, routing.Wrap(func(c *contextmodel.ReqContext) response.Response {
c.Req = web.SetURLParams(c.Req, map[string]string{":id": "1"})
c.Req.Body = mockRequestBody(datasources.UpdateDataSourceCommand{
Access: "direct",
Type: "test",
Name: "test",
})
return hs.UpdateDataSourceByID(c)
}))
sc.fakeReqWithParams("PUT", sc.url, map[string]string{}).exec()
require.Equal(t, http.StatusConflict, sc.resp.Code)
}
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
func TestAPI_datasources_AccessControl(t *testing.T) {
type testCase struct {
desc string
urls []string
method string
body string
permission []ac.Permission
expectedCode int
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
}
Remove bus from datasource api (#44987) * Remove bus from datasource api * Add DatasourcePermissionService and use it in api * Fix wire and rename * Fix import in wire * Fix bug * Rename Service to OSS service * Roll back fix
2022-02-09 21:01:32 +08:00
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
tests := []testCase{
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should be able to update datasource with correct permission",
urls: []string{"api/datasources/1", "/api/datasources/uid/1"},
method: http.MethodPut,
body: `{"name": "test", "url": "http://localhost:5432", "type": "postgresql", "access": "Proxy"}`,
permission: []ac.Permission{
{Action: datasources.ActionWrite, Scope: datasources.ScopeProvider.GetResourceScope("1")},
{Action: datasources.ActionWrite, Scope: datasources.ScopeProvider.GetResourceScopeUID("1")},
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
expectedCode: http.StatusOK,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should not be able to update datasource without correct permission",
urls: []string{"api/datasources/1", "/api/datasources/uid/1"},
method: http.MethodPut,
permission: []ac.Permission{},
expectedCode: http.StatusForbidden,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
Datasource API: #32556 resolve readonly datasources can be modified (#44186) * Check if datasource is read-only when making an update * Standardize api returning a 404 if datasource is not found while making an update Co-authored-by: Marcus Efraimsson <marcus.efraimsson@gmail.com>, Jesse Weaver<pianohacker@gmail.com>
2022-01-22 07:22:43 +08:00
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should be able to fetch datasource with correct permission",
urls: []string{"api/datasources/1", "/api/datasources/uid/1", "/api/datasources/name/test"},
method: http.MethodGet,
permission: []ac.Permission{
{Action: datasources.ActionRead, Scope: datasources.ScopeProvider.GetResourceScope("1")},
{Action: datasources.ActionRead, Scope: datasources.ScopeProvider.GetResourceScopeUID("1")},
{Action: datasources.ActionRead, Scope: datasources.ScopeProvider.GetResourceScopeName("test")},
Datasource API: #32556 resolve readonly datasources can be modified (#44186) * Check if datasource is read-only when making an update * Standardize api returning a 404 if datasource is not found while making an update Co-authored-by: Marcus Efraimsson <marcus.efraimsson@gmail.com>, Jesse Weaver<pianohacker@gmail.com>
2022-01-22 07:22:43 +08:00
},
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
expectedCode: http.StatusOK,
Datasource API: #32556 resolve readonly datasources can be modified (#44186) * Check if datasource is read-only when making an update * Standardize api returning a 404 if datasource is not found while making an update Co-authored-by: Marcus Efraimsson <marcus.efraimsson@gmail.com>, Jesse Weaver<pianohacker@gmail.com>
2022-01-22 07:22:43 +08:00
},
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should not be able to fetch datasource without correct permission",
urls: []string{"api/datasources/1", "/api/datasources/uid/1"},
method: http.MethodGet,
permission: []ac.Permission{},
expectedCode: http.StatusForbidden,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should be able to create datasource with correct permission",
urls: []string{"/api/datasources"},
method: http.MethodPost,
body: `{"name": "test", "url": "http://localhost:5432", "type": "postgresql", "access": "Proxy"}`,
permission: []ac.Permission{{Action: datasources.ActionCreate}},
expectedCode: http.StatusOK,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should not be able to create datasource without correct permission",
urls: []string{"/api/datasources"},
method: http.MethodPost,
permission: []ac.Permission{},
expectedCode: http.StatusForbidden,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should be able to delete datasource with correct permission",
urls: []string{"/api/datasources/1", "/api/datasources/uid/1"},
method: http.MethodDelete,
permission: []ac.Permission{
{Action: datasources.ActionDelete, Scope: datasources.ScopeProvider.GetResourceScope("1")},
{Action: datasources.ActionDelete, Scope: datasources.ScopeProvider.GetResourceScopeUID("1")},
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
expectedCode: http.StatusOK,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
{
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
desc: "should not be able to delete datasource without correct permission",
urls: []string{"/api/datasources/1", "/api/datasources/uid/1"},
method: http.MethodDelete,
permission: []ac.Permission{},
expectedCode: http.StatusForbidden,
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
},
}
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
for _, tt := range tests {
t.Run(tt.desc, func(t *testing.T) {
server := SetupAPITestServer(t, func(hs *HTTPServer) {
hs.Cfg = setting.NewCfg()
hs.DataSourcesService = &dataSourcesServiceMock{expectedDatasource: &datasources.DataSource{}}
hs.accesscontrolService = actest.FakeService{}
hs.Live = newTestLive(t, hs.SQLStore)
})
for _, url := range tt.urls {
var body io.Reader
if tt.body != "" {
body = strings.NewReader(tt.body)
}
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) * Unfurl OrgRole in pkg/api to allow using identity.Requester interface * Unfurl Email in pkg/api to allow using identity.Requester interface * Update UserID in pkg/api to allow using identity.Requester interface * fix authed test * fix datasource tests * guard login * fix preferences anon testing * fix anonymous index rendering * do not error with user id 0
2023-10-09 22:07:28 +08:00
res, err := server.SendJSON(webtest.RequestWithSignedInUser(server.NewRequest(tt.method, url, body), authedUserWithPermissions(1, 1, tt.permission)))
RBAC: Rewrite data source api tests (#61783) RBAC: Rewrite datasource rbac api tests
2023-01-23 17:54:29 +08:00
require.NoError(t, err)
assert.Equal(t, tt.expectedCode, res.StatusCode)
require.NoError(t, res.Body.Close())
AccessControl: add one-dimensional permissions to datasources (#38070) * AccessControl: add one-dimensional permissions to datasources in the backend * AccessControl: add one-dimensional permissions to datasources in the frontend (#38080) Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2021-09-01 21:18:17 +08:00
}
})
}
}
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
Team LBAC: Fix backend validation (#77612) * Team LBAC: Fix backend validation * more tests * use slices.ContainsFunc()
2023-11-03 22:02:57 +08:00
func TestValidateLBACHeader(t *testing.T) {
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
testcases := []struct {
desc string
teamHeaderValue string
want bool
}{
{
Team LBAC: Fix backend validation (#77612) * Team LBAC: Fix backend validation * more tests * use slices.ContainsFunc()
2023-11-03 22:02:57 +08:00
desc: "Should allow valid header",
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
teamHeaderValue: `1234:{ name!="value",foo!~"bar" }`,
want: true,
},
Team LBAC: Fix backend validation (#77612) * Team LBAC: Fix backend validation * more tests * use slices.ContainsFunc()
2023-11-03 22:02:57 +08:00
{
desc: "Should allow valid selector",
teamHeaderValue: `1234:{ name!="value",foo!~"bar/baz.foo" }`,
want: true,
},
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
{
desc: "Should return false for incorrect header value",
teamHeaderValue: `1234:!="value",foo!~"bar" }`,
want: false,
},
}
for _, tc := range testcases {
t.Run(tc.desc, func(t *testing.T) {
Team LBAC: Fix backend validation (#77612) * Team LBAC: Fix backend validation * more tests * use slices.ContainsFunc()
2023-11-03 22:02:57 +08:00
assert.Equal(t, tc.want, validateLBACHeader(tc.teamHeaderValue))
Team LBAC: Add validation/regex of teamheaders (#76905) * add validation of team header values w. regex * apply valid headers * refactor testcases to account for badly formatted json * refactoring to move validation code close to the validation itself * removed tes * Update pkg/api/datasources_test.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * Update pkg/api/datasources.go Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com> * review comments * review during pairing --------- Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
2023-10-27 19:37:37 +08:00
})
}
}
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
type dataSourcesServiceMock struct {
datasources.DataSourceService
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
expectedDatasources []*datasources.DataSource
expectedDatasource *datasources.DataSource
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
expectedError error
Chore: Return correct error for name taken and validation error on add/update datasource (#70465)
2023-07-17 22:27:19 +08:00
mockUpdateDataSource func(ctx context.Context, cmd *datasources.UpdateDataSourceCommand) (*datasources.DataSource, error)
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) GetDataSource(ctx context.Context, query *datasources.GetDataSourceQuery) (*datasources.DataSource, error) {
return m.expectedDatasource, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) GetDataSources(ctx context.Context, query *datasources.GetDataSourcesQuery) ([]*datasources.DataSource, error) {
return m.expectedDatasources, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) GetDataSourcesByType(ctx context.Context, query *datasources.GetDataSourcesByTypeQuery) ([]*datasources.DataSource, error) {
return m.expectedDatasources, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) GetDefaultDataSource(ctx context.Context, query *datasources.GetDefaultDataSourceQuery) (*datasources.DataSource, error) {
return nil, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
func (m *dataSourcesServiceMock) DeleteDataSource(ctx context.Context, cmd *datasources.DeleteDataSourceCommand) error {
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
return m.expectedError
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) AddDataSource(ctx context.Context, cmd *datasources.AddDataSourceCommand) (*datasources.DataSource, error) {
return m.expectedDatasource, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
func (m *dataSourcesServiceMock) UpdateDataSource(ctx context.Context, cmd *datasources.UpdateDataSourceCommand) (*datasources.DataSource, error) {
Chore: Return correct error for name taken and validation error on add/update datasource (#70465)
2023-07-17 22:27:19 +08:00
if m.mockUpdateDataSource != nil {
return m.mockUpdateDataSource(ctx, cmd)
}
Chore: Remove Result field from datasources (#63048) * Remove Result field from AddDataSourceCommand * Remove DatasourcesPermissionFilterQuery Result * Remove GetDataSourceQuery Result * Remove GetDataSourcesByTypeQuery Result * Remove GetDataSourcesQuery Result * Remove GetDefaultDataSourceQuery Result * Remove UpdateDataSourceCommand Result
2023-02-09 22:49:44 +08:00
return m.expectedDatasource, m.expectedError
Datasource: Fixes storing of secureJSONData when creating/updating datasource (#45290) Fixes an issue introduced by #44987 where bus dispatch was replaced by calling sqlstore directly instead of the datasource service. Fixes #45273
2022-02-11 22:52:14 +08:00
}
Secrets: Implement basic unified secret store service (#45804) * wip: Implement kvstore for secrets * wip: Refactor kvstore for secrets * wip: Add format key function to secrets kvstore sql * wip: Add migration for secrets kvstore * Remove unused Key field from secrets kvstore * Remove secret values from debug logs * Integrate unified secrets with datasources * Fix minor issues and tests for kvstore * Create test service helper for secret store * Remove encryption tests from datasources * Move secret operations after datasources * Fix datasource proxy tests * Fix legacy data tests * Add Name to all delete data source commands * Implement decryption cache on sql secret store * Fix minor issue with cache and tests * Use secret type on secret store datasource operations * Add comments to make create and update clear * Rename itemFound variable to isFound * Improve secret deletion and cache management * Add base64 encoding to sql secret store * Move secret retrieval to decrypted values function * Refactor decrypt secure json data functions * Fix expr tests * Fix datasource tests * Fix plugin proxy tests * Fix query tests * Fix metrics api tests * Remove unused fake secrets service from query tests * Add rename function to secret store * Add check for error renaming secret * Remove bus from tests to fix merge conflicts * Add background secrets migration to datasources * Get datasource secure json fields from secrets * Move migration to secret store * Revert "Move migration to secret store" This reverts commit 7c3f872072e9aff601fb9d639127d468c03f97ef. * Add secret service to datasource service on tests * Fix datasource tests * Remove merge conflict on wire * Add ctx to data source http transport on prometheus stats collector * Add ctx to data source http transport on stats collector test
2022-04-26 00:57:45 +08:00
backend/datasources: move datasources models into the datasources service package (#51267) * backend/datasources: move datasources models into the datasources service pkg
2022-06-28 00:23:15 +08:00
func (m *dataSourcesServiceMock) DecryptedValues(ctx context.Context, ds *datasources.DataSource) (map[string]string, error) {
Secrets: Implement basic unified secret store service (#45804) * wip: Implement kvstore for secrets * wip: Refactor kvstore for secrets * wip: Add format key function to secrets kvstore sql * wip: Add migration for secrets kvstore * Remove unused Key field from secrets kvstore * Remove secret values from debug logs * Integrate unified secrets with datasources * Fix minor issues and tests for kvstore * Create test service helper for secret store * Remove encryption tests from datasources * Move secret operations after datasources * Fix datasource proxy tests * Fix legacy data tests * Add Name to all delete data source commands * Implement decryption cache on sql secret store * Fix minor issue with cache and tests * Use secret type on secret store datasource operations * Add comments to make create and update clear * Rename itemFound variable to isFound * Improve secret deletion and cache management * Add base64 encoding to sql secret store * Move secret retrieval to decrypted values function * Refactor decrypt secure json data functions * Fix expr tests * Fix datasource tests * Fix plugin proxy tests * Fix query tests * Fix metrics api tests * Remove unused fake secrets service from query tests * Add rename function to secret store * Add check for error renaming secret * Remove bus from tests to fix merge conflicts * Add background secrets migration to datasources * Get datasource secure json fields from secrets * Move migration to secret store * Revert "Move migration to secret store" This reverts commit 7c3f872072e9aff601fb9d639127d468c03f97ef. * Add secret service to datasource service on tests * Fix datasource tests * Remove merge conflict on wire * Add ctx to data source http transport on prometheus stats collector * Add ctx to data source http transport on stats collector test
2022-04-26 00:57:45 +08:00
decryptedValues := make(map[string]string)
return decryptedValues, m.expectedError
}