442 lines
9.8 KiB
Go
442 lines
9.8 KiB
Go
package output
|
|
|
|
import (
|
|
"fmt"
|
|
"reflect"
|
|
"testing"
|
|
|
|
"github.com/cloudskiff/driftctl/pkg/alerter"
|
|
"github.com/cloudskiff/driftctl/pkg/analyser"
|
|
"github.com/cloudskiff/driftctl/pkg/output"
|
|
"github.com/cloudskiff/driftctl/pkg/remote"
|
|
"github.com/cloudskiff/driftctl/pkg/remote/aws"
|
|
"github.com/cloudskiff/driftctl/pkg/remote/github"
|
|
"github.com/cloudskiff/driftctl/pkg/resource"
|
|
testresource "github.com/cloudskiff/driftctl/test/resource"
|
|
"github.com/r3labs/diff/v2"
|
|
)
|
|
|
|
func fakeAnalysis() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.AddUnmanaged(
|
|
&testresource.FakeResource{
|
|
Id: "unmanaged-id-1",
|
|
Type: "aws_unmanaged_resource",
|
|
},
|
|
&testresource.FakeResource{
|
|
Id: "unmanaged-id-2",
|
|
Type: "aws_unmanaged_resource",
|
|
},
|
|
)
|
|
a.AddDeleted(
|
|
&testresource.FakeResource{
|
|
Id: "deleted-id-1",
|
|
Type: "aws_deleted_resource",
|
|
}, &testresource.FakeResource{
|
|
Id: "deleted-id-2",
|
|
Type: "aws_deleted_resource",
|
|
},
|
|
)
|
|
a.AddManaged(
|
|
&testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
},
|
|
&testresource.FakeResource{
|
|
Id: "no-diff-id-1",
|
|
Type: "aws_no_diff_resource",
|
|
},
|
|
)
|
|
a.AddDifference(analyser.Difference{Res: &testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
}, Changelog: []analyser.Change{
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
Path: []string{"updated", "field"},
|
|
From: "foobar",
|
|
To: "barfoo",
|
|
},
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.CREATE,
|
|
Path: []string{"new", "field"},
|
|
From: nil,
|
|
To: "newValue",
|
|
},
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.DELETE,
|
|
Path: []string{"a"},
|
|
From: "oldValue",
|
|
To: nil,
|
|
},
|
|
},
|
|
}})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithAlerts() *analyser.Analysis {
|
|
a := fakeAnalysis()
|
|
a.SetAlerts(alerter.Alerts{
|
|
"": []alerter.Alert{
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_vpc", "aws_vpc"),
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_sqs", "aws_sqs"),
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_sns", "aws_sns"),
|
|
},
|
|
})
|
|
return a
|
|
}
|
|
|
|
func fakeAnalysisNoDrift() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
for i := 0; i < 5; i++ {
|
|
a.AddManaged(&testresource.FakeResource{
|
|
Id: "managed-id-" + fmt.Sprintf("%d", i),
|
|
Type: "aws_managed_resource",
|
|
})
|
|
}
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithJsonFields() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.AddManaged(
|
|
&testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
},
|
|
)
|
|
a.AddManaged(
|
|
&testresource.FakeResource{
|
|
Id: "diff-id-2",
|
|
Type: "aws_diff_resource",
|
|
},
|
|
)
|
|
a.AddDifference(analyser.Difference{Res: &testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
}, Changelog: []analyser.Change{
|
|
{
|
|
JsonString: true,
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
Path: []string{"Json"},
|
|
From: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Removed\":\"Added\",\"Changed\":[\"oldValue1\", \"oldValue2\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}",
|
|
To: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Changed\":\"newValue\",\"NewField\":[\"foobar\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}",
|
|
},
|
|
},
|
|
}})
|
|
a.AddDifference(analyser.Difference{Res: &testresource.FakeResource{
|
|
Id: "diff-id-2",
|
|
Type: "aws_diff_resource",
|
|
}, Changelog: []analyser.Change{
|
|
{
|
|
JsonString: true,
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
Path: []string{"Json"},
|
|
From: "{\"foo\":\"bar\"}",
|
|
To: "{\"bar\":\"foo\"}",
|
|
},
|
|
},
|
|
}})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithoutAttrs() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.AddDeleted(
|
|
&testresource.FakeResourceStringer{
|
|
Id: "dfjkgnbsgj",
|
|
Attrs: &resource.Attributes{},
|
|
},
|
|
)
|
|
a.AddManaged(
|
|
&testresource.FakeResourceStringer{
|
|
Id: "usqyfsdbgjsdgjkdfg",
|
|
Attrs: &resource.Attributes{},
|
|
},
|
|
)
|
|
a.AddUnmanaged(
|
|
&testresource.FakeResourceStringer{
|
|
Id: "duysgkfdjfdgfhd",
|
|
Attrs: &resource.Attributes{},
|
|
},
|
|
)
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithStringerResources() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
fakeResourceStringerSchema := &resource.Schema{HumanReadableAttributesFunc: func(res *resource.AbstractResource) map[string]string {
|
|
return map[string]string{
|
|
"Name": (*res.Attrs)["name"].(string),
|
|
}
|
|
}}
|
|
a.AddDeleted(
|
|
&resource.AbstractResource{
|
|
Id: "dfjkgnbsgj",
|
|
Type: "FakeResourceStringer",
|
|
Sch: fakeResourceStringerSchema,
|
|
Attrs: &resource.Attributes{
|
|
"name": "deleted resource",
|
|
},
|
|
},
|
|
)
|
|
a.AddManaged(
|
|
&resource.AbstractResource{
|
|
Id: "usqyfsdbgjsdgjkdfg",
|
|
Type: "FakeResourceStringer",
|
|
Sch: fakeResourceStringerSchema,
|
|
Attrs: &resource.Attributes{
|
|
"name": "managed resource",
|
|
},
|
|
},
|
|
)
|
|
a.AddUnmanaged(
|
|
&resource.AbstractResource{
|
|
Id: "duysgkfdjfdgfhd",
|
|
Type: "FakeResourceStringer",
|
|
Sch: fakeResourceStringerSchema,
|
|
Attrs: &resource.Attributes{
|
|
"name": "unmanaged resource",
|
|
},
|
|
},
|
|
)
|
|
a.AddDifference(analyser.Difference{Res: &resource.AbstractResource{
|
|
Id: "gdsfhgkbn",
|
|
Type: "FakeResourceStringer",
|
|
Sch: fakeResourceStringerSchema,
|
|
Attrs: &resource.Attributes{
|
|
"name": "resource with diff",
|
|
},
|
|
}, Changelog: []analyser.Change{
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
Path: []string{"Name"},
|
|
From: "",
|
|
To: "resource with diff",
|
|
},
|
|
},
|
|
}})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithComputedFields() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.AddManaged(
|
|
&testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
},
|
|
)
|
|
a.AddDifference(analyser.Difference{Res: &testresource.FakeResource{
|
|
Id: "diff-id-1",
|
|
Type: "aws_diff_resource",
|
|
}, Changelog: []analyser.Change{
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
Path: []string{"updated", "field"},
|
|
From: "foobar",
|
|
To: "barfoo",
|
|
},
|
|
Computed: true,
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.CREATE,
|
|
Path: []string{"new", "field"},
|
|
From: nil,
|
|
To: "newValue",
|
|
},
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.DELETE,
|
|
Path: []string{"a"},
|
|
From: "oldValue",
|
|
To: nil,
|
|
},
|
|
Computed: true,
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
From: "foo",
|
|
To: "oof",
|
|
Path: []string{
|
|
"struct",
|
|
"0",
|
|
"array",
|
|
"0",
|
|
},
|
|
},
|
|
Computed: true,
|
|
},
|
|
{
|
|
Change: diff.Change{
|
|
Type: diff.UPDATE,
|
|
From: "one",
|
|
To: "two",
|
|
Path: []string{
|
|
"struct",
|
|
"0",
|
|
"string",
|
|
},
|
|
},
|
|
Computed: true,
|
|
},
|
|
}})
|
|
a.SetAlerts(alerter.Alerts{
|
|
"": []alerter.Alert{
|
|
analyser.NewComputedDiffAlert(),
|
|
},
|
|
})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithAWSEnumerationError() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.SetAlerts(alerter.Alerts{
|
|
"": []alerter.Alert{
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_vpc", "aws_vpc"),
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_sqs", "aws_sqs"),
|
|
remote.NewEnumerationAccessDeniedAlert(aws.RemoteAWSTerraform, "aws_sns", "aws_sns"),
|
|
},
|
|
})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisWithGithubEnumerationError() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.SetAlerts(alerter.Alerts{
|
|
"": []alerter.Alert{
|
|
remote.NewEnumerationAccessDeniedAlert(github.RemoteGithubTerraform, "github_team", "github_team"),
|
|
remote.NewEnumerationAccessDeniedAlert(github.RemoteGithubTerraform, "github_team_membership", "github_team"),
|
|
},
|
|
})
|
|
return &a
|
|
}
|
|
|
|
func fakeAnalysisForJSONPlan() *analyser.Analysis {
|
|
a := analyser.Analysis{}
|
|
a.AddUnmanaged(
|
|
&resource.AbstractResource{
|
|
Id: "unmanaged-id-1",
|
|
Type: "aws_unmanaged_resource",
|
|
Attrs: &resource.Attributes{
|
|
"name": "First unmanaged resource",
|
|
},
|
|
},
|
|
&resource.AbstractResource{
|
|
Id: "unmanaged-id-2",
|
|
Type: "aws_unmanaged_resource",
|
|
Attrs: &resource.Attributes{
|
|
"name": "Second unmanaged resource",
|
|
},
|
|
},
|
|
)
|
|
a.AddManaged(
|
|
&resource.AbstractResource{
|
|
Id: "managed-id-1",
|
|
Type: "aws_managed_resource",
|
|
Attrs: &resource.Attributes{
|
|
"name": "First managed resource",
|
|
},
|
|
},
|
|
&resource.AbstractResource{
|
|
Id: "managed-id-2",
|
|
Type: "aws_managed_resource",
|
|
Attrs: &resource.Attributes{
|
|
"name": "Second managed resource",
|
|
},
|
|
},
|
|
)
|
|
return &a
|
|
}
|
|
|
|
func TestGetPrinter(t *testing.T) {
|
|
tests := []struct {
|
|
name string
|
|
path string
|
|
key string
|
|
quiet bool
|
|
want output.Printer
|
|
}{
|
|
{
|
|
name: "json file output",
|
|
path: "/path/to/file",
|
|
key: JSONOutputType,
|
|
want: output.NewConsolePrinter(),
|
|
},
|
|
{
|
|
name: "json file output quiet",
|
|
path: "/path/to/file",
|
|
key: JSONOutputType,
|
|
quiet: true,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
{
|
|
name: "json stdout output",
|
|
path: "stdout",
|
|
key: JSONOutputType,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
{
|
|
name: "json /dev/stdout output",
|
|
path: "/dev/stdout",
|
|
key: JSONOutputType,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
{
|
|
name: "console stdout output",
|
|
path: "stdout",
|
|
key: ConsoleOutputType,
|
|
want: output.NewConsolePrinter(),
|
|
},
|
|
{
|
|
name: "quiet console stdout output",
|
|
path: "stdout",
|
|
quiet: true,
|
|
key: ConsoleOutputType,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
{
|
|
name: "jsonplan file output",
|
|
path: "/path/to/file",
|
|
key: PlanOutputType,
|
|
want: output.NewConsolePrinter(),
|
|
},
|
|
{
|
|
name: "jsonplan stdout output",
|
|
path: "stdout",
|
|
key: PlanOutputType,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
{
|
|
name: "jsonplan /dev/stdout output",
|
|
path: "/dev/stdout",
|
|
key: PlanOutputType,
|
|
want: &output.VoidPrinter{},
|
|
},
|
|
}
|
|
for _, tt := range tests {
|
|
t.Run(tt.name, func(t *testing.T) {
|
|
if got := GetPrinter(OutputConfig{
|
|
Key: tt.key,
|
|
Options: map[string]string{
|
|
"path": tt.path,
|
|
},
|
|
}, tt.quiet); !reflect.DeepEqual(got, tt.want) {
|
|
t.Errorf("GetPrinter() = %v, want %v", got, tt.want)
|
|
}
|
|
})
|
|
}
|
|
}
|