@ibm-cloud/cd-tools 1.1.2 → 1.2.0

package/cmd/utils/requests.js

@@ -320,6 +320,7 @@ async function getGritGroup(privToken, region, groupName) {
             throw Error('Get GRIT group failed');
     }
 }
+
 async function getGritGroupProject(privToken, region, groupId, projectName) {
     const url = `https://${region}.git.cloud.ibm.com/api/v4/groups/${groupId}/projects`
     const options = {
@@ -342,6 +343,48 @@ async function getGritGroupProject(privToken, region, groupId, projectName) {
     }
 }
 
+async function getIamAuthPolicies(bearer, accountId) {
+    const apiBaseUrl = 'https://iam.cloud.ibm.com/v1';
+    const options = {
+        url: apiBaseUrl + '/policies',
+        method: 'GET',
+        headers: {
+            'Authorization': `Bearer ${bearer}`,
+            'Content-Type': 'application/json',
+        },
+        params: { account_id: accountId, type: 'authorization' },
+        validateStatus: () => true
+    };
+    const response = await axios(options);
+    switch (response.status) {
+        case 200:
+            return response.data;
+        default:
+            throw Error('Get auth policies failed');
+    }
+}
+
+async function deleteToolchain(bearer, toolchainId, region) {
+    const apiBaseUrl = `https://api.${region}.devops.cloud.ibm.com/toolchain/v2`;
+    const options = {
+        method: 'DELETE',
+        url: `${apiBaseUrl}/toolchains/${toolchainId}`,
+        headers: {
+            'Accept': 'application/json',
+            'Authorization': `Bearer ${bearer}`,
+            'Content-Type': 'application/json',
+        },
+        validateStatus: () => true
+    };
+    const response = await axios(options);
+    switch (response.status) {
+        case 200:
+            return toolchainId;
+        default:
+            throw Error(response.statusText);
+    }
+}
+
 export {
     getBearerToken,
     getAccountId,
@@ -355,5 +398,7 @@ export {
     getGitOAuth,
     getGritUserProject,
     getGritGroup,
-    getGritGroupProject
+    getGritGroupProject,
+    getIamAuthPolicies,
+    deleteToolchain
 }

package/cmd/utils/terraform.js

@@ -17,7 +17,7 @@ import { jsonToTf } from 'json-to-tf';
 
 import { validateToolchainId, validateGritUrl } from './validate.js';
 import { logger } from './logger.js';
-import { promptUserInput, replaceUrlRegion } from './utils.js';
+import { getRandChars, promptUserInput, replaceUrlRegion } from './utils.js';
 
 // promisify
 const readFilePromise = promisify(fs.readFile);
@@ -34,15 +34,9 @@ async function execPromise(command, options) {
     }
 }
 
-function setTerraformerEnv(apiKey, tcId, includeS2S) {
-    process.env['IC_API_KEY'] = apiKey;
-    process.env['IBM_CD_TOOLCHAIN_TARGET'] = tcId;
-    if (includeS2S) process.env['IBM_CD_TOOLCHAIN_INCLUDE_S2S'] = 1;
-}
-
-function setTerraformEnv(verbosity) {
+function setTerraformEnv(apiKey, verbosity) {
     if (verbosity >= 2) process.env['TF_LOG'] = 'DEBUG';
-    process.env['TF_VAR_ibmcloud_api_key'] = process.env.IC_API_KEY;
+    process.env['TF_VAR_ibmcloud_api_key'] = apiKey;
 }
 
 async function initProviderFile(targetRegion, dir) {
@@ -54,13 +48,7 @@ async function initProviderFile(targetRegion, dir) {
 
     const newProviderTfStr = JSON.stringify(newProviderTf)
 
-    return writeFilePromise(`${dir}/provider.tf`, jsonToTf(newProviderTfStr), () => { });
-}
-
-async function runTerraformerImport(srcRegion, tempDir, isCompact, verbosity) {
-    const stdout = await execPromise(`terraformer import ibm --resources=ibm_cd_toolchain --region=${srcRegion} -S ${isCompact ? '--compact' : ''} ${verbosity >= 2 ? '--verbose' : ''}`, { cwd: tempDir });
-    if (verbosity >= 2) logger.print(stdout);
-    return stdout;
+    return writeFilePromise(`${dir}/provider.tf`, jsonToTf(newProviderTfStr));
 }
 
 async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag, targetToolchainName, targetRgId, disableTriggers, isCompact, outputDir, tempDir, moreTfResources, gritMapping, skipUserConfirmation }) {
@@ -71,7 +59,7 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
 
     // Get toolchain resource
     const toolchainLocation = isCompact ? 'resources.tf' : 'cd_toolchain.tf'
-    const resources = await readFilePromise(`${tempDir}/generated/ibm/ibm_cd_toolchain/${toolchainLocation}`, 'utf8');
+    const resources = await readFilePromise(`${tempDir}/generated/${toolchainLocation}`, 'utf8');
     const resourcesObj = await tfToJson('output.tf', resources);
     const newTcId = Object.keys(resourcesObj['resource']['ibm_cd_toolchain'])[0];
 
@@ -84,7 +72,7 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
     promises.push(writeOutputPromise);
 
     // Copy over cd_*.tf
-    let files = await readDirPromise(`${tempDir}/generated/ibm/ibm_cd_toolchain`);
+    let files = await readDirPromise(`${tempDir}/generated`);
 
     if (isCompact) {
         files = files.filter((f) => f === 'resources.tf');
@@ -108,17 +96,6 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
     const newConvertedTf = {};
 
     if (hasGHE) {
-        const getRandChars = (size) => {
-            const charSet = 'abcdefghijklmnopqrstuvwxyz0123456789';
-            let res = '';
-
-            for (let i = 0; i < size; i++) {
-                const pos = randomInt(charSet.length);
-                res += charSet[pos];
-            }
-            return res;
-        };
-
         moreTfResources['github_integrated'].forEach(t => {
             const gitUrl = t['parameters']['repo_url'];
             const tfName = `converted--githubconsolidated_${getRandChars(4)}`;
@@ -146,7 +123,7 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
     }
 
     for (const fileName of files) {
-        const tfFile = await readFilePromise(`${tempDir}/generated/ibm/ibm_cd_toolchain/${fileName}`, 'utf8');
+        const tfFile = await readFilePromise(`${tempDir}/generated/${fileName}`, 'utf8');
         const tfFileObj = await tfToJson(fileName, tfFile);
 
         const newTfFileObj = { 'resource': {} }
@@ -203,7 +180,6 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
                             newTfFileObj['resource']['ibm_cd_toolchain_tool_hostedgit'][k]['initialization'][0]['repo_url'] = newUrl;
                             attemptAddUsedGritUrl(newUrl);
                             gritMapping[thisUrl] = newUrl;
-                            logger.print('\n');
                         }
                     }
                     catch (e) {
@@ -325,6 +301,10 @@ async function setupTerraformFiles({ token, srcRegion, targetRegion, targetTag,
     return Promise.all(promises);
 }
 
+async function runTerraformPlanGenerate(dir, fileName) {
+    return await execPromise(`terraform plan -generate-config-out=${fileName}`, { cwd: dir });
+}
+
 async function runTerraformInit(dir) {
     return await execPromise('terraform init', { cwd: dir });
 }
@@ -428,12 +408,11 @@ function replaceDependsOn(str) {
 }
 
 export {
-    setTerraformerEnv,
     setTerraformEnv,
     initProviderFile,
-    runTerraformerImport,
     setupTerraformFiles,
     runTerraformInit,
+    runTerraformPlanGenerate,
     getNumResourcesPlanned,
     runTerraformApply,
     getNewToolchainId,

package/cmd/utils/utils.js

@@ -8,6 +8,8 @@
  */
 
 import * as readline from 'node:readline/promises';
+import { randomInt } from 'node:crypto';
+
 import { logger } from './logger.js';
 import { VAULT_REGEX } from '../../config.js';
 
@@ -67,7 +69,7 @@ export async function promptUserInput(question, initialInput, validationFn) {
             break;
         } catch (e) {
             // loop
-            logger.print('Validation failed...', e.message, '\n');
+            logger.warn(`Validation failed... ${e.message}`, '', true);
 
             rl.prompt(true);
             rl.write(initialInput);
@@ -127,3 +129,25 @@ export function decomposeCrn(crn) {
 export function isSecretReference(value) {
     return !!(VAULT_REGEX.find(r => r.test(value)));
 };
+
+export function getRandChars(size) {
+    const charSet = 'abcdefghijklmnopqrstuvwxyz0123456789';
+    let res = '';
+
+    for (let i = 0; i < size; i++) {
+        const pos = randomInt(charSet.length);
+        res += charSet[pos];
+    }
+    return res;
+};
+
+export function normalizeName(str) {
+    const specialChars = `-<>()*#{}[]|@_ .%'",&`;
+    let newStr = str;
+
+    for (const char of specialChars) {
+        newStr = newStr.replaceAll(char, '_');
+    }
+
+    return newStr.toLowerCase();
+};

package/cmd/utils/validate.js

@@ -9,7 +9,7 @@
 
 import { execSync } from 'child_process';
 import { logger, LOG_STAGES } from './logger.js'
-import { RESERVED_GRIT_PROJECT_NAMES, RESERVED_GRIT_GROUP_NAMES, RESERVED_GRIT_SUBGROUP_NAME, TERRAFORM_REQUIRED_VERSION, TERRAFORMER_REQUIRED_VERSION, UPDATEABLE_SECRET_PROPERTIES_BY_TOOL_TYPE } from '../../config.js';
+import { RESERVED_GRIT_PROJECT_NAMES, RESERVED_GRIT_GROUP_NAMES, RESERVED_GRIT_SUBGROUP_NAME, TERRAFORM_REQUIRED_VERSION, SECRET_KEYS_MAP } from '../../config.js';
 import { getToolchainsByName, getToolchainTools, getPipelineData, getAppConfigHealthcheck, getSecretsHealthcheck, getGitOAuth, getGritUserProject, getGritGroup, getGritGroupProject } from './requests.js';
 import { promptUserConfirmation, promptUserInput } from './utils.js';
 
@@ -40,17 +40,6 @@ function validatePrereqsVersions() {
         throw Error(`Terraform does not meet minimum version requirement: ${TERRAFORM_REQUIRED_VERSION}`);
     }
     logger.info(`\x1b[32m✔\x1b[0m Terraform Version: ${version}`, LOG_STAGES.setup);
-
-    try {
-        stdout = execSync('terraformer version').toString();
-    } catch {
-        throw Error('Terraformer is not installed or not in PATH');
-    }
-    version = stdout.match(/\d+(\.\d+)+/)[0];
-    if (!compareVersions(version, TERRAFORMER_REQUIRED_VERSION)) {
-        throw Error(`Terraformer does not meet minimum version requirement: ${TERRAFORMER_REQUIRED_VERSION}`);
-    }
-    logger.info(`\x1b[32m✔\x1b[0m Terraformer Version: ${version}`, LOG_STAGES.setup);
 }
 
 function validateToolchainId(tcId) {
@@ -234,7 +223,7 @@ async function validateTools(token, tcId, region, skipPrompt) {
                 });
             }
             else {
-                const secretsToCheck = UPDATEABLE_SECRET_PROPERTIES_BY_TOOL_TYPE[tool.tool_type_id] || [];    // Check for secrets in the rest of the tools
+                const secretsToCheck = (SECRET_KEYS_MAP[tool.tool_type_id] || []).map((entry) => entry.key);    // Check for secrets in the rest of the tools
                 Object.entries(tool.parameters).forEach(([key, value]) => {
                     if (secretPattern.test(value) && secretsToCheck.includes(key)) secrets.push(key);
                 });
@@ -366,7 +355,7 @@ async function validateOAuth(token, tools, targetRegion, skipPrompt) {
                     if (isGHE) {
                         oauthLinks.push({ type: 'githubconsolidated (GHE)', link: authorizeUrl?.message });
                     } else {
-                        oauthLinks.push({ type: tool.tool_type_id, link: authorizeUrl?.message });
+                        oauthLinks.push({ type: tool.tool_type_id, link: authorizeUrl?.message ?? 'Could not get OAuth link' });
                     }
                 }
             }
@@ -381,11 +370,16 @@ async function validateOAuth(token, tools, targetRegion, skipPrompt) {
         logger.warn('Warning! The following git tool integration(s) are not authorized in the target region: \n', LOG_STAGES.setup, true);
         logger.table(failedTools);
 
+        let hasFailedLink = false;
+
         logger.print('Authorize using the following links: \n');
         oauthLinks.forEach((o) => {
+            if (o.link === 'Could not get OAuth link') hasFailedLink = true;
             logger.print(`${o.type}: \x1b[36m${o.link}\x1b[0m\n`);
         });
 
+        if (hasFailedLink) logger.print(`Please manually verify failed authorization(s): https://cloud.ibm.com/devops/git?env_id=ibm:yp:${targetRegion}\n`);
+
         if (!skipPrompt) await promptUserConfirmation('Caution: The above git tool integration(s) will not be properly configured post migration. Do you want to proceed?', 'yes', 'Toolchain migration cancelled.');
     }
 }

package/config.js

@@ -51,8 +51,6 @@ const TARGET_REGIONS = [
 
 const TERRAFORM_REQUIRED_VERSION = '1.13.3';
 
-const TERRAFORMER_REQUIRED_VERSION = '0.8.30';
-
 // see https://docs.gitlab.com/user/reserved_names/
 const RESERVED_GRIT_PROJECT_NAMES = [
 	'\\-',
@@ -122,66 +120,98 @@ const RESERVED_GRIT_GROUP_NAMES = [
 
 const RESERVED_GRIT_SUBGROUP_NAME = '\\-';
 
-const UPDATEABLE_SECRET_PROPERTIES_BY_TOOL_TYPE = {
+/* 
+Format:
+	Maps tool_type_id to a list of the following ...
+	{ 
+		key: str, // tool parameter key
+		tfKey?: str, // terraform-equivalent key
+		prereq?: { key: string, values: [string] }, // proceed only if tool parameter "prereq.key" is one of "values"
+		required?: bool // is this key required for terraform?
+	}
+	... which represents a secret/sensitive value
+*/
+const SECRET_KEYS_MAP = {
 	"artifactory": [
-		"token"
+		{ key: "token", tfKey: "token" }
 	],
 	"cloudobjectstorage": [
-		"cos_api_key",
-		"hmac_access_key_id",
-		"hmac_secret_access_key"
+		{ key: "cos_api_key", tfKey: "cos_api_key", prereq: { key: "auth_type", values: ["apikey"] } },
+		{ key: "hmac_access_key_id", tfKey: "hmac_access_key_id", prereq: { key: "auth_type", values: ["hmac"] } },
+		{ key: "hmac_secret_access_key", tfKey: "hmac_secret_access_key", prereq: { key: "auth_type", values: ["hmac"] } },
 	],
 	"github_integrated": [
-		"api_token"
+		{ key: "api_token" } // no terraform equivalent
 	],
 	"githubconsolidated": [
-		"api_token"
+		{ key: "api_token", tfKey: "api_token", prereq: { key: "auth_type", values: ["pat"] } },
 	],
 	"gitlab": [
-		"api_token"
+		{ key: "api_token", tfKey: "api_token", prereq: { key: "auth_type", values: ["pat"] } },
 	],
 	"hashicorpvault": [
-		"token",
-		"role_id",
-		"secret_id",
-		"password"
+		{ key: "token", tfKey: "token", prereq: { key: "authentication_method", values: ["github", "token"] } },
+		{ key: "role_id", tfKey: "role_id", prereq: { key: "authentication_method", values: ["approle"] } },
+		{ key: "secret_id", tfKey: "secret_id", prereq: { key: "authentication_method", values: ["approle"] } },
+		{ key: "password", tfKey: "password", prereq: { key: "authentication_method", values: ["userpass"] } },
 	],
 	"hostedgit": [
-		"api_token"
+		{ key: "api_token", tfKey: "api_token", prereq: { key: "auth_type", values: ["pat"] } },
 	],
 	"jenkins": [
-		"api_token"
+		{ key: "api_token", tfKey: "api_token" },
 	],
 	"jira": [
-		"password",
-		"api_token"
+		{ key: "password", tfKey: "api_token" },
 	],
 	"nexus": [
-		"token"
+		{ key: "token", tfKey: "token" },
 	],
 	"pagerduty": [
-		"service_key"
+		{ key: "service_key", tfKey: "service_key", required: true },
 	],
 	"private_worker": [
-		"workerQueueCredentials",
-		"worker_queue_credentials"
+		{ key: "workerQueueCredentials", tfKey: "worker_queue_credentials", required: true },
 	],
 	"saucelabs": [
-		"key",
-		"access_key"
+		{ key: "key", tfKey: "access_key", required: true },
 	],
 	"security_compliance": [
-		"scc_api_key"
+		{ key: "scc_api_key", tfKey: "scc_api_key", prereq: { key: "use_profile_attachment", values: ["enabled"] } },
 	],
 	"slack": [
-		"api_token",
-		"webhook"
+		{ key: "api_token", tfKey: "webhook", required: true },
 	],
 	"sonarqube": [
-		"user_password"
+		{ key: "user_password", tfKey: "user_password" },
 	]
 };
 
+// maps tool parameter tool_type_id to terraform resource type
+const SUPPORTED_TOOLS_MAP = {
+	"appconfig": "ibm_cd_toolchain_tool_appconfig",
+	"artifactory": "ibm_cd_toolchain_tool_artifactory",
+	"bitbucketgit": "ibm_cd_toolchain_tool_bitbucketgit",
+	"private_worker": "ibm_cd_toolchain_tool_privateworker",
+	"draservicebroker": "ibm_cd_toolchain_tool_devopsinsights",
+	"eventnotifications": "ibm_cd_toolchain_tool_eventnotifications",
+	"hostedgit": "ibm_cd_toolchain_tool_hostedgit",
+	"githubconsolidated": "ibm_cd_toolchain_tool_githubconsolidated",
+	"gitlab": "ibm_cd_toolchain_tool_gitlab",
+	"hashicorpvault": "ibm_cd_toolchain_tool_hashicorpvault",
+	"jenkins": "ibm_cd_toolchain_tool_jenkins",
+	"jira": "ibm_cd_toolchain_tool_jira",
+	"keyprotect": "ibm_cd_toolchain_tool_keyprotect",
+	"nexus": "ibm_cd_toolchain_tool_nexus",
+	"customtool": "ibm_cd_toolchain_tool_custom",
+	"saucelabs": "ibm_cd_toolchain_tool_saucelabs",
+	"secretsmanager": "ibm_cd_toolchain_tool_secretsmanager",
+	"security_compliance": "ibm_cd_toolchain_tool_securitycompliance",
+	"slack": "ibm_cd_toolchain_tool_slack",
+	"sonarqube": "ibm_cd_toolchain_tool_sonarqube",
+	"pipeline": "ibm_cd_toolchain_tool_pipeline"
+};
+
 const VAULT_REGEX = [
 	new RegExp('[\\{]{1}(?<reference>\\b(?<provider>vault)\\b[:]{2}(?<integration>[ a-zA-Z0-9_-]*)[.]{0,1}(?<secret>.*))[\\}]{1}', 'iu'),
 	new RegExp('^(?<reference>crn:v1:(?:bluemix|staging):public:(?<type>secrets-manager):(?<region>[a-zA-Z0-9-]*)\\b:a\/(?<account_id>[0-9a-fA-F]*)\\b:(?<instance_id>[0-9a-fA-F]{8}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{12})\\b:secret:(?<secret_id>[0-9a-fA-F]{8}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{4}\\b-[0-9a-fA-F]{12}))$', 'iu'),
@@ -190,14 +220,14 @@ const VAULT_REGEX = [
 
 export {
 	COPY_TOOLCHAIN_DESC,
-	UPDATEABLE_SECRET_PROPERTIES_BY_TOOL_TYPE,
 	MIGRATION_DOC_URL,
 	SOURCE_REGIONS,
 	TARGET_REGIONS,
 	TERRAFORM_REQUIRED_VERSION,
-	TERRAFORMER_REQUIRED_VERSION,
 	RESERVED_GRIT_PROJECT_NAMES,
 	RESERVED_GRIT_GROUP_NAMES,
 	RESERVED_GRIT_SUBGROUP_NAME,
+	SECRET_KEYS_MAP,
+	SUPPORTED_TOOLS_MAP,
 	VAULT_REGEX
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ibm-cloud/cd-tools",
-  "version": "1.1.2",
+  "version": "1.2.0",
   "description": "Tools and utilities for the IBM Cloud Continuous Delivery service and resources",
   "repository": {
     "type": "git",
@@ -14,6 +14,9 @@
   },
   "author": "IBM Corp.",
   "license": "Apache-2.0",
+  "scripts": {
+    "test": "mocha --require \"test/setup.js\" \"test/copy-toolchain/*.test.js\""
+  },
   "dependencies": {
     "@cdktf/hcl2json": "^0.21.0",
     "axios": "^1.12.2",
@@ -27,5 +30,11 @@
   "bin": {
     "cd-tools": "index.js"
   },
-  "type": "module"
+  "type": "module",
+  "devDependencies": {
+    "chai": "^6.2.0",
+    "mocha": "^11.7.4",
+    "nconf": "^0.13.0",
+    "node-pty": "^1.0.0"
+  }
 }

package/test/README.md

@@ -0,0 +1,40 @@
+# Test
+
+All automated tests live in this directory.
+Before running tests, ensure that you have completed the setup steps in the main [README.md](../README.md), including installing all prerequisites and dependencies.
+
+## Getting Started
+1. **Clone the repository**
+   ```bash
+   git clone https://github.com/IBM/continuous-delivery-tools.git
+   cd continuous-delivery-tools
+   ```
+2. **Install dependencies**
+    ```bash
+    npm install
+    ```
+3. **Test configuration**
+
+    Before running tests, create a local configuration file:
+    ```bash
+    cp test/config/local.template.json test/config/local.json
+    ```
+    Then open `test/config/local.json` and replace all placeholder values with your local or test environment settings.
+4. **Running the tests**
+    
+    To execute the test suite:
+    ```bash
+    npm run test
+    ```
+
+### Test Configuration
+You can customize the behavior of the tests by defining configuration properties in the `test/config/local.json` file.
+
+| Property           | Type      | Default      | Description                                                                                                                  |
+| ------------------ | --------- | ------------ | ---------------------------------------------------------------------------------------------------------------------------- |
+| `TEST_DEBUG_MODE`  | `boolean` | `false`      | When set to `true`, files generated by test cases in `TEST_TEMP_DIR` and log files generated in `TEST_LOG_DIR` are preserved |
+| `TEST_TEMP_DIR`    | `string`  | `test/.tmp`  | The directory to store temporary files generated by test cases                                                               |
+| `TEST_LOG_DIR`     | `string`  | `test/.logs` | The directory to store test run log files                                                                                    |
+| `IBMCLOUD_API_KEY` | `string`  | `null`       | The IBM Cloud API Key used to run the tests                                                                                  |
+| `LOG_DUMP`         | `boolean` | `false`      | When set to `true`, individual test case's process's log file generation is enabled                                          |
+| `DISABLE_SPINNER`  | `boolean` | `true`       | When set to `true`, visual spinner is disabled across all test cases' processes                                              |

package/test/config/local.template.json

@@ -0,0 +1,8 @@
+{
+    "TEST_DEBUG_MODE": false,
+    "TEST_TEMP_DIR": "test/.tmp",
+    "TEST_LOG_DIR": "test/.logs",
+    "IBMCLOUD_API_KEY": "<YOUR IBMCLOUD API KEY>",
+    "LOG_DUMP": true,
+    "DISABLE_SPINNER": true
+}

package/test/copy-toolchain/import.test.js

@@ -0,0 +1,11 @@
+/**
+ * Licensed Materials - Property of IBM
+ * (c) Copyright IBM Corporation 2025. All Rights Reserved.
+ *
+ * Note to U.S. Government Users Restricted Rights:
+ * Use, duplication or disclosure restricted by GSA ADP Schedule
+ * Contract with IBM Corp.
+ */
+
+describe('copy-toolchain: Test import-terraform output', function () {
+});

package/test/copy-toolchain/terraform.test.js

@@ -0,0 +1,11 @@
+/**
+ * Licensed Materials - Property of IBM
+ * (c) Copyright IBM Corporation 2025. All Rights Reserved.
+ *
+ * Note to U.S. Government Users Restricted Rights:
+ * Use, duplication or disclosure restricted by GSA ADP Schedule
+ * Contract with IBM Corp.
+ */
+
+describe('copy-toolchain: Test Terraform output', function () {
+});

package/test/copy-toolchain/validation.test.js

@@ -0,0 +1,126 @@
+/**
+ * Licensed Materials - Property of IBM
+ * (c) Copyright IBM Corporation 2025. All Rights Reserved.
+ *
+ * Note to U.S. Government Users Restricted Rights:
+ * Use, duplication or disclosure restricted by GSA ADP Schedule
+ * Contract with IBM Corp.
+ */
+
+import path from 'node:path';
+import nconf from 'nconf';
+
+import * as chai from 'chai';
+chai.config.truncateThreshold = 0;
+
+import mocks from '../data/mocks.js';
+import { testSuiteCleanup, expectExecError, expectPtyOutputToMatch } from '../utils/testUtils.js';
+import { TEST_TOOLCHAINS } from '../data/test-toolchains.js';
+import { TARGET_REGIONS } from '../../config.js';
+
+nconf.env('__');
+nconf.file('local', 'test/config/local.json');
+
+const CLI_PATH = path.resolve('index.js');
+const COMMAND = 'copy-toolchain';
+
+const toolchainsToDelete = new Map();
+
+after(async () => await testSuiteCleanup(toolchainsToDelete));
+
+describe('copy-toolchain: Test user input handling', function () {
+    this.timeout('60s');
+    this.command = 'copy-toolchain';
+
+    const validCrn = TEST_TOOLCHAINS['empty'].crn;
+
+    const invalidArgsCases = [
+        {
+            name: 'Toolchain CRN not specified',
+            cmd: [CLI_PATH, COMMAND],
+            expected: /required option '-c, --toolchain-crn <crn>' not specified/,
+        },
+        {
+            name: 'Region is not specified',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn],
+            expected: /required option '-r, --region <region>' not specified/,
+        },
+        {
+            name: 'API Key is not specified',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0]],
+            expected: /Environment variable 'IBMCLOUD_API_KEY' is required but not set/,
+            options: { env: { ...process.env, IBMCLOUD_API_KEY: '' } }
+        },
+        {
+            name: 'Invalid API Key provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0]],
+            expected: /There was a problem getting a bearer token using IBMCLOUD_API_KEY/,
+            options: { env: { ...process.env, IBMCLOUD_API_KEY: 'not-a-valid-apikey' } }
+        },
+        {
+            name: 'Invalid region is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', mocks.invalidRegion],
+            expected: new RegExp(`option '-r, --region <region>' argument '${mocks.invalidRegion}' is invalid`)
+        },
+        {
+            name: 'Invalid CRN is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', mocks.invalidCrn, '-r', TARGET_REGIONS[0]],
+            expected: /Provided toolchain CRN is invalid/,
+        },
+        {
+            name: 'Invalid Toolchain tag is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0], '-t', mocks.invalidTag],
+            expected: /Provided tag is invalid/,
+        },
+        {
+            name: 'Invalid Toolchain name is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0], '-n', mocks.invalidTcName],
+            expected: /Provided toolchain name is invalid/,
+        },
+        {
+            name: 'Invalid Resource Group name is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0], '-g', mocks.invalidRgName],
+            expected: /The resource group with provided ID or name was not found or is not accessible/,
+        },
+        {
+            name: 'Invalid Resource Group ID is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', validCrn, '-r', TARGET_REGIONS[0], '-g', mocks.invalidRgId],
+            expected: /The resource group with provided ID or name was not found or is not accessible/,
+        },
+    ];
+
+    for (const { name, cmd, expected, options } of invalidArgsCases) {
+        it(`Invalid args: ${name}`, async () => {
+            await expectExecError(cmd, expected, options);
+        });
+    }
+
+    const invalidUserInputCases = [
+        {
+            name: 'Invalid Toolchain tag is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', TEST_TOOLCHAINS['empty'].crn, '-r', TARGET_REGIONS[0]],
+            expected: /Provided tag is invalid/,
+            options: {
+                questionAnswerMap: { '(Recommended) Add a tag to the cloned toolchain (Ctrl-C to abort):' : mocks.invalidTag },
+                exitCondition: 'Validation failed',
+                timeout: 5000
+            }
+        },
+        {
+            name: 'Invalid Toolchain name is provided',
+            cmd: [CLI_PATH, COMMAND, '-c', TEST_TOOLCHAINS['empty'].crn, '-r', TEST_TOOLCHAINS['empty'].region],
+            expected: /Provided toolchain name is invalid/,
+            options: {
+                questionAnswerMap: { [`(Recommended) Edit the cloned toolchain's name [default: ${TEST_TOOLCHAINS['empty'].name}] (Ctrl-C to abort):`] : mocks.invalidTcName },
+                exitCondition: 'Validation failed',
+                timeout: 5000
+            }
+        },
+    ];
+
+    for (const { name, cmd, expected, options } of invalidUserInputCases) {
+        it(`Invalid user input in prompts: ${name}`, async () => {
+            await expectPtyOutputToMatch(cmd, expected, options);
+        });
+    }
+});