FilesExpand file tree

 master

/

token_revoke_test.go

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

102 lines (85 loc) · 2.12 KB

 master

/

token_revoke_test.go

Top

File metadata and controls

• Code
• Blame

102 lines (85 loc) · 2.12 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

package command

import (

"testing"

"github.com/hashicorp/vault/http"

"github.com/hashicorp/vault/meta"

"github.com/hashicorp/vault/vault"

"github.com/mitchellh/cli"

)

func TestTokenRevokeAccessor(t *testing.T) {

core, _, token := vault.TestCoreUnsealed(t)

ln, addr := http.TestServer(t, core)

defer ln.Close()

ui := new(cli.MockUi)

c := &TokenRevokeCommand{

Meta: meta.Meta{

ClientToken: token,

Ui: ui,

},

}

args := []string{

"-address", addr,

}

// Run it once for client

c.Run(args)

// Create a token

client, err := c.Client()

if err != nil {

t.Fatalf("err: %s", err)

}

resp, err := client.Auth().Token().Create(nil)

if err != nil {

t.Fatalf("err: %s", err)

}

// Treat the argument as accessor

args = append(args, "-accessor")

if code := c.Run(args); code == 0 {

t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())

}

// Verify it worked with proper accessor

args1 := append(args, resp.Auth.Accessor)

if code := c.Run(args1); code != 0 {

t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())

}

// Fail if mode is set to 'orphan' when accessor is set

args2 := append(args, "-mode=\"orphan\"")

if code := c.Run(args2); code == 0 {

t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())

}

// Fail if mode is set to 'path' when accessor is set

args3 := append(args, "-mode=\"path\"")

if code := c.Run(args3); code == 0 {

t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())

}

}

func TestTokenRevoke(t *testing.T) {

core, _, token := vault.TestCoreUnsealed(t)

ln, addr := http.TestServer(t, core)

defer ln.Close()

ui := new(cli.MockUi)

c := &TokenRevokeCommand{

Meta: meta.Meta{

ClientToken: token,

Ui: ui,

},

}

args := []string{

"-address", addr,

}

// Run it once for client

c.Run(args)

// Create a token

client, err := c.Client()

if err != nil {

t.Fatalf("err: %s", err)

}

resp, err := client.Auth().Token().Create(nil)

if err != nil {

t.Fatalf("err: %s", err)

}

// Verify it worked

args = append(args, resp.Auth.ClientToken)

if code := c.Run(args); code != 0 {

t.Fatalf("bad: %d\n\n%s", code, ui.ErrorWriter.String())

}

}