PyPI - qontract-reconcile - Versions diffs - 0.10.1rc1201__py3-none-any.whl → 0.10.2.dev1__py3-none-any.whl - Mend

qontract-reconcile 0.10.1rc1201py3-none-any.whl → 0.10.2.dev1py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (140) hide show

qontract_reconcile-0.10.2.dev1.dist-info/METADATA +500 -0
{qontract_reconcile-0.10.1rc1201.dist-info → qontract_reconcile-0.10.2.dev1.dist-info}/RECORD +14 -132
{qontract_reconcile-0.10.1rc1201.dist-info → qontract_reconcile-0.10.2.dev1.dist-info}/WHEEL +1 -2
{qontract_reconcile-0.10.1rc1201.dist-info → qontract_reconcile-0.10.2.dev1.dist-info}/entry_points.txt +1 -0
reconcile/aws_account_manager/README.md +5 -0
reconcile/change_owners/README.md +34 -0
reconcile/external_resources/manager.py +12 -1
reconcile/external_resources/model.py +11 -0
reconcile/glitchtip/README.md +150 -0
reconcile/gql_definitions/introspection.json +51176 -0
reconcile/run_integration.py +293 -0
reconcile/utils/binary.py +2 -2
reconcile/utils/mr/README.md +198 -0
reconcile/utils/oc_map.py +2 -2
tools/qontract_cli.py +0 -0
qontract_reconcile-0.10.1rc1201.dist-info/METADATA +0 -64
qontract_reconcile-0.10.1rc1201.dist-info/top_level.txt +0 -3
reconcile/test/__init__.py +0 -0
reconcile/test/conftest.py +0 -157
reconcile/test/fixtures.py +0 -24
reconcile/test/saas_auto_promotions_manager/__init__.py +0 -0
reconcile/test/saas_auto_promotions_manager/conftest.py +0 -170
reconcile/test/saas_auto_promotions_manager/merge_request_manager/__init__.py +0 -0
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/__init__.py +0 -0
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/conftest.py +0 -115
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/data_keys.py +0 -19
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_desired_state.py +0 -66
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_merge_request_manager.py +0 -86
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_mr_parser.py +0 -352
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_reconciler.py +0 -494
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/__init__.py +0 -0
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/conftest.py +0 -25
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_multiple_namespaces.py +0 -37
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_single_namespace.py +0 -81
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_single_target.py +0 -61
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_json_path_selector.py +0 -74
reconcile/test/saas_auto_promotions_manager/test_integration_test.py +0 -52
reconcile/test/saas_auto_promotions_manager/utils/__init__.py +0 -0
reconcile/test/test_acs_notifiers.py +0 -393
reconcile/test/test_acs_policies.py +0 -497
reconcile/test/test_acs_rbac.py +0 -865
reconcile/test/test_aggregated_list.py +0 -237
reconcile/test/test_amtool.py +0 -37
reconcile/test/test_aws_ami_cleanup.py +0 -230
reconcile/test/test_aws_ami_share.py +0 -68
reconcile/test/test_aws_cloudwatch_log_retention.py +0 -434
reconcile/test/test_aws_iam_keys.py +0 -70
reconcile/test/test_aws_iam_password_reset.py +0 -35
reconcile/test/test_aws_support_cases_sos.py +0 -23
reconcile/test/test_checkpoint.py +0 -178
reconcile/test/test_cli.py +0 -41
reconcile/test/test_closedbox_endpoint_monitoring.py +0 -207
reconcile/test/test_dashdotdb_dora.py +0 -245
reconcile/test/test_database_access_manager.py +0 -660
reconcile/test/test_deadmanssnitch.py +0 -290
reconcile/test/test_gabi_authorized_users.py +0 -72
reconcile/test/test_gcr_mirror.py +0 -14
reconcile/test/test_github_org.py +0 -156
reconcile/test/test_github_repo_invites.py +0 -119
reconcile/test/test_gitlab_housekeeping.py +0 -333
reconcile/test/test_gitlab_labeler.py +0 -126
reconcile/test/test_gitlab_members.py +0 -219
reconcile/test/test_gitlab_permissions.py +0 -164
reconcile/test/test_instrumented_wrappers.py +0 -18
reconcile/test/test_integrations_manager.py +0 -1252
reconcile/test/test_jenkins_worker_fleets.py +0 -57
reconcile/test/test_jira_permissions_validator.py +0 -519
reconcile/test/test_jump_host.py +0 -114
reconcile/test/test_ldap_users.py +0 -125
reconcile/test/test_make.py +0 -28
reconcile/test/test_ocm_additional_routers.py +0 -133
reconcile/test/test_ocm_clusters.py +0 -798
reconcile/test/test_ocm_clusters_manifest_updates.py +0 -87
reconcile/test/test_ocm_machine_pools.py +0 -1103
reconcile/test/test_ocm_update_recommended_version.py +0 -145
reconcile/test/test_ocm_upgrade_scheduler_org_updater.py +0 -125
reconcile/test/test_openshift_base.py +0 -1269
reconcile/test/test_openshift_cluster_bots.py +0 -240
reconcile/test/test_openshift_namespace_labels.py +0 -344
reconcile/test/test_openshift_namespaces.py +0 -256
reconcile/test/test_openshift_resource.py +0 -443
reconcile/test/test_openshift_resources_base.py +0 -478
reconcile/test/test_openshift_saas_deploy.py +0 -188
reconcile/test/test_openshift_saas_deploy_change_tester.py +0 -308
reconcile/test/test_openshift_saas_deploy_trigger_cleaner.py +0 -65
reconcile/test/test_openshift_serviceaccount_tokens.py +0 -282
reconcile/test/test_openshift_tekton_resources.py +0 -265
reconcile/test/test_openshift_upgrade_watcher.py +0 -223
reconcile/test/test_prometheus_rules_tester.py +0 -151
reconcile/test/test_quay_membership.py +0 -86
reconcile/test/test_quay_mirror.py +0 -172
reconcile/test/test_quay_mirror_org.py +0 -82
reconcile/test/test_quay_repos.py +0 -59
reconcile/test/test_queries.py +0 -53
reconcile/test/test_repo_owners.py +0 -47
reconcile/test/test_requests_sender.py +0 -139
reconcile/test/test_saasherder.py +0 -1611
reconcile/test/test_saasherder_allowed_secret_paths.py +0 -125
reconcile/test/test_secret_reader.py +0 -153
reconcile/test/test_slack_base.py +0 -183
reconcile/test/test_slack_usergroups.py +0 -785
reconcile/test/test_sql_query.py +0 -316
reconcile/test/test_status_board.py +0 -258
reconcile/test/test_terraform_aws_route53.py +0 -29
reconcile/test/test_terraform_cloudflare_dns.py +0 -117
reconcile/test/test_terraform_cloudflare_resources.py +0 -408
reconcile/test/test_terraform_cloudflare_users.py +0 -747
reconcile/test/test_terraform_repo.py +0 -440
reconcile/test/test_terraform_resources.py +0 -519
reconcile/test/test_terraform_tgw_attachments.py +0 -1295
reconcile/test/test_terraform_users.py +0 -152
reconcile/test/test_terraform_vpc_peerings.py +0 -576
reconcile/test/test_terraform_vpc_peerings_build_desired_state.py +0 -1434
reconcile/test/test_three_way_diff_strategy.py +0 -131
reconcile/test/test_utils_jinja2.py +0 -130
reconcile/test/test_vault_replication.py +0 -534
reconcile/test/test_vault_utils.py +0 -47
reconcile/test/test_version_bump.py +0 -18
reconcile/test/test_vpc_peerings_validator.py +0 -194
reconcile/test/test_wrong_region.py +0 -78
release/__init__.py +0 -0
release/test_version.py +0 -50
release/version.py +0 -104
tools/cli_commands/test/__init__.py +0 -0
tools/cli_commands/test/conftest.py +0 -332
tools/cli_commands/test/test_aws_cost_report.py +0 -258
tools/cli_commands/test/test_cost_management_api.py +0 -326
tools/cli_commands/test/test_gpg_encrypt.py +0 -235
tools/cli_commands/test/test_openshift_cost_optimization_report.py +0 -255
tools/cli_commands/test/test_openshift_cost_report.py +0 -295
tools/cli_commands/test/test_util.py +0 -70
tools/test/__init__.py +0 -0
tools/test/conftest.py +0 -77
tools/test/test_app_interface_metrics_exporter.py +0 -48
tools/test/test_erv2.py +0 -80
tools/test/test_get_container_images.py +0 -230
tools/test/test_qontract_cli.py +0 -197
tools/test/test_saas_promotion_state.py +0 -187
tools/test/test_sd_app_sre_alert_report.py +0 -74
tools/test/test_sre_checkpoints.py +0 -79

reconcile/test/test_vault_replication.py DELETED Viewed

@@ -1,534 +0,0 @@
-from typing import cast
-import pytest
-import reconcile.vault_replication as integ
-from reconcile.gql_definitions.fragments.vault_secret import VaultSecret
-from reconcile.gql_definitions.jenkins_configs.jenkins_configs import (
-    AppV1,
-    JenkinsConfigsQueryData,
-    JenkinsConfigV1_JenkinsConfigV1,
-    JenkinsInstanceV1,
-    ResourceV1,
-)
-from reconcile.gql_definitions.vault_instances.vault_instances import (
-    VaultReplicationConfigV1_VaultInstanceAuthV1,
-    VaultReplicationConfigV1_VaultInstanceAuthV1_VaultInstanceAuthApproleV1,
-)
-from reconcile.gql_definitions.vault_policies import vault_policies
-from reconcile.test.fixtures import Fixtures
-from reconcile.utils.vault import (
-    SecretAccessForbidden,
-    SecretNotFound,
-    SecretVersionNotFound,
-    VaultClient,
-    _VaultClient,
-)
-fxt = Fixtures("vault_replication")
-@pytest.fixture
-def jenkins_config_query_data() -> JenkinsConfigsQueryData:
-    return JenkinsConfigsQueryData(
-        jenkins_configs=[
-            JenkinsConfigV1_JenkinsConfigV1(
-                path="path/to/config",
-                name="jenkins-secrets-config",
-                app=AppV1(
-                    name="my-app",
-                ),
-                instance=JenkinsInstanceV1(
-                    name="jenkins-instance",
-                    serverUrl="https://test.net",
-                    token=VaultSecret(
-                        path="secret_path",
-                        field="secret_field",
-                        version=None,
-                        format=None,
-                    ),
-                    deleteMethod=None,
-                ),
-                type="secrets",
-                config=None,
-                config_path=ResourceV1(
-                    content="name: 'test_data_name'\n    secret-path: 'this/is/a/path'"
-                ),
-            ),
-        ]
-    )
-@pytest.fixture
-def vault_instance_data_invalid_auth() -> VaultReplicationConfigV1_VaultInstanceAuthV1:
-    return VaultReplicationConfigV1_VaultInstanceAuthV1(
-        provider="test",
-        secretEngine="kv_v1",
-    )
-@pytest.fixture(autouse=True)
-def reset_singletons():
-    VaultClient._instance = None
-@pytest.fixture
-def policy_query_data() -> vault_policies.VaultPoliciesQueryData:
-    return vault_policies.VaultPoliciesQueryData(
-        policy=[
-            vault_policies.VaultPolicyV1(
-                name="test-policy",
-                instance=vault_policies.VaultInstanceV1(name="vault-instance"),
-                rules='path "this/is/a/path/*" {\n  capabilities = ["create", "read", "update"]\n}\n',
-            )
-        ]
-    )
-def test_policy_contais_path():
-    policy_paths = ["path1", "path2"]
-    path = "path1"
-    assert integ._policy_contains_path(path, policy_paths) is True
-def test_policy_contais_path_false():
-    policy_paths = ["path2", "path3"]
-    path = "path1"
-    assert integ._policy_contains_path(path, policy_paths) is False
-def test_check_invalid_paths_ko():
-    path_list = ["path1", "path3"]
-    policy_paths = ["path1", "path2"]
-    with pytest.raises(integ.VaultInvalidPaths):
-        integ.check_invalid_paths(path_list, policy_paths)
-def test_check_invalid_paths_ok():
-    path_list = ["path1", "path2"]
-    policy_paths = ["path1", "path2"]
-    integ.check_invalid_paths(path_list, policy_paths)
-def test_list_invalid_paths():
-    path_list = ["path1", "path3"]
-    policy_paths = ["path1", "path2"]
-    assert integ.list_invalid_paths(path_list, policy_paths) == ["path3"]
-@pytest.fixture
-def vault_client_test() -> _VaultClient:
-    return cast(_VaultClient, None)
-def test_get_jenkins_secret_list_w_content(
-    jenkins_config_query_data: JenkinsConfigsQueryData,
-    vault_client_test: _VaultClient,
-):
-    assert integ.get_jenkins_secret_list(
-        vault_client_test, "jenkins-instance", jenkins_config_query_data
-    ) == [
-        "this/is/a/path",
-    ]
-@pytest.fixture
-def vault_instance_data() -> (
-    VaultReplicationConfigV1_VaultInstanceAuthV1_VaultInstanceAuthApproleV1
-):
-    return VaultReplicationConfigV1_VaultInstanceAuthV1_VaultInstanceAuthApproleV1(
-        provider="approle",
-        secretEngine="kv_v1",
-        roleID=VaultSecret(
-            path="secret/path/role_id",
-            field="role_id",
-            version=None,
-            format=None,
-        ),
-        secretID=VaultSecret(
-            path="secret/path/secret_id",
-            field="secret_id",
-            version=None,
-            format=None,
-        ),
-    )
-def test_get_vault_credentials_invalid_auth_method(
-    vault_instance_data_invalid_auth: VaultReplicationConfigV1_VaultInstanceAuthV1,
-    mocker,
-):
-    mock_vault_client = mocker.patch(
-        "reconcile.utils.vault._VaultClient", autospec=True
-    )
-    mock_vault_client.return_value.read.side_effect = ["a", "b"]
-    with pytest.raises(integ.VaultInvalidAuthMethod):
-        integ.get_vault_credentials(
-            vault_instance_data_invalid_auth, "http://vault.com"
-        )
-def test_get_vault_credentials_app_role(
-    vault_instance_data: VaultReplicationConfigV1_VaultInstanceAuthV1_VaultInstanceAuthApproleV1,
-    mocker,
-):
-    mock_vault_client = mocker.patch(
-        "reconcile.utils.vault._VaultClient", autospec=True
-    )
-    mock_vault_client.return_value.read.side_effect = ["a", "b"]
-    assert integ.get_vault_credentials(
-        vault_instance_data, "https://vault-instance.com"
-    ) == {
-        "role_id": "a",
-        "secret_id": "b",
-        "server": "https://vault-instance.com",
-    }
-def test_get_policy_paths(policy_query_data: vault_policies.VaultPoliciesQueryData):
-    assert integ.get_policy_paths(
-        "test-policy", "vault-instance", policy_query_data
-    ) == ["this/is/a/path/*"]
-@pytest.mark.parametrize(
-    "path, vault_list, return_value",
-    [
-        (
-            "app-sre/test/path/{template}-1",
-            [
-                "app-sre/test/path/test-1",
-                "app-sre/test/path/test-2",
-                "app-sre/example/path/test-1",
-            ],
-            ["app-sre/test/path/test-1"],
-        ),
-        (
-            "app-sre/test/path/{template}",
-            [
-                "app-sre/test/path/test-1",
-                "app-sre/test/path/test-2",
-                "app-sre/example/path/test-1",
-            ],
-            ["app-sre/test/path/test-1", "app-sre/test/path/test-2"],
-        ),
-        (
-            "app-sre/{template}/path/{template}",
-            [
-                "app-sre/test/path/test-1",
-                "app-sre/test/path/test-2",
-                "app-sre/example/path/test-1",
-                "app-sre/example/path2/test-1",
-            ],
-            [
-                "app-sre/test/path/test-1",
-                "app-sre/test/path/test-2",
-                "app-sre/example/path/test-1",
-            ],
-        ),
-        (
-            "app-sre/{template}/path/{template}-1",
-            ["app-sre/test/path/test-1", "app-sre/test/path/test-2"],
-            ["app-sre/test/path/test-1"],
-        ),
-        (
-            "app-sre/{template}/path/test-1",
-            ["app-sre/test/path/test-1", "app-sre/test/path/test-2"],
-            ["app-sre/test/path/test-1"],
-        ),
-        (
-            "app-sre/test/pa{th}/test-1",
-            ["app-sre/test/path/test-1", "app-sre/test/path/test-2"],
-            ["app-sre/test/path/test-1"],
-        ),
-    ],
-)
-def test_get_secrets_from_templated_path(path, vault_list, return_value):
-    assert integ.get_secrets_from_templated_path(path, vault_list) == return_value
-def test_get_jenkins_secret_list_templating(mocker):
-    mock_vault_client = mocker.patch(
-        "reconcile.utils.vault._VaultClient", autospec=True
-    )
-    mock_vault_client.list_all.side_effect = [
-        ["path/test-1/secret", "path/test-2/secret"]
-    ]
-    test = fxt.get_anymarkup("jenkins_configs/jenkins_config_insta_path.yaml")
-    assert integ.get_jenkins_secret_list(
-        mock_vault_client, "jenkins-instance", JenkinsConfigsQueryData(**test)
-    ) == ["path/test-1/secret", "path/test-2/secret"]
-def test_get_policy_paths_real_data():
-    test = fxt.get_anymarkup("vault_policies/vault_policies_query_data.yaml")
-    assert integ.get_policy_paths(
-        "vault-test-policy",
-        "vault-instance",
-        vault_policies.VaultPoliciesQueryData(**test),
-    ) == ["path/test-1/*", "path/test-2/*"]
-@pytest.mark.parametrize(
-    "dry_run, secret_version, path", [[False, 1, "path"], [True, 1, "path"]]
-)
-def test_write_dummy_version(dry_run, secret_version, path, mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    integ.write_dummy_versions(
-        dry_run=dry_run,
-        dest_vault=vault_client,
-        secret_version=secret_version,
-        path=path,
-    )
-    if not dry_run:
-        vault_client.write.assert_called_once_with(
-            {"path": path, "data": {"dummy": "data"}}, False, True
-        )
-    else:
-        vault_client.write.assert_not_called()
-@pytest.mark.parametrize(
-    "dry_run, current_dest_version, current_source_version, path",
-    [[False, 1, 2, "path"], [True, 1, 2, "path"]],
-)
-def test_deep_copy_versions(
-    dry_run, current_dest_version, current_source_version, path, mocker
-):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.return_value = [{"test": "data"}, 2]
-    integ.deep_copy_versions(
-        dry_run=dry_run,
-        source_vault=vault_client,
-        dest_vault=vault_client,
-        current_dest_version=current_dest_version,
-        current_source_version=current_source_version,
-        path=path,
-    )
-    secret_dict = {"path": path, "version": 2}
-    if dry_run:
-        vault_client.read_all_with_version.assert_called_once_with(secret_dict)
-        vault_client.write.assert_not_called()
-    else:
-        write_dict = {"path": path, "data": {"test": "data"}}
-        vault_client.read_all_with_version.assert_called_once_with(secret_dict)
-        vault_client.write.assert_called_once_with(write_dict, False, True)
-@pytest.mark.parametrize(
-    "dry_run, current_dest_version, current_source_version, path",
-    [[False, 1, 2, "path"], [True, 1, 2, "path"]],
-)
-def test_deep_copy_versions_exception(
-    dry_run, current_dest_version, current_source_version, path, mocker
-):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    write_dummy_versions = mocker.patch(
-        "reconcile.vault_replication.write_dummy_versions", autospec=True
-    )
-    vault_client.read_all_with_version.side_effect = SecretVersionNotFound()
-    integ.deep_copy_versions(
-        dry_run=dry_run,
-        source_vault=vault_client,
-        dest_vault=vault_client,
-        current_dest_version=current_dest_version,
-        current_source_version=current_source_version,
-        path=path,
-    )
-    secret_dict = {"path": path, "version": 2}
-    if dry_run:
-        vault_client.read_all_with_version.assert_called_once_with(secret_dict)
-        write_dummy_versions.assert_called()
-        vault_client.write.assert_not_called()
-    else:
-        vault_client.read_all_with_version.assert_called_once_with(secret_dict)
-        write_dummy_versions.assert_called()
-def test_copy_vault_secret_forbidden_access(mocker):
-    dry_run = True
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = SecretAccessForbidden()
-    with pytest.raises(SecretAccessForbidden):
-        integ.copy_vault_secret(
-            dry_run=dry_run,
-            source_vault=vault_client,
-            dest_vault=vault_client,
-            path="path",
-        )
-def test_copy_vault_secret_not_found_v2(mocker):
-    dry_run = True
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = [["secret", 2], SecretNotFound()]
-    deep_copy_versions = mocker.patch(
-        "reconcile.vault_replication.deep_copy_versions", autospec=True
-    )
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    vault_client.read_all_with_version.assert_called()
-    deep_copy_versions.assert_called()
-@pytest.mark.parametrize("dry_run, path", [[False, "path"], [True, "path"]])
-def test_copy_vault_secret_not_found_v1(dry_run, path, mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = [
-        ["secret", None],
-        SecretNotFound(),
-        ["secret", None],
-    ]
-    deep_copy_versions = mocker.patch(
-        "reconcile.vault_replication.deep_copy_versions", autospec=True
-    )
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    if not dry_run:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_called_once_with(
-            {"path": path, "data": "secret"}, False, True
-        )
-        deep_copy_versions.assert_not_called()
-    else:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_not_called()
-        deep_copy_versions.assert_not_called()
-def test_copy_vault_secret_found_v2(mocker):
-    dry_run = True
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = [["secret", 2], ["secret", 1]]
-    deep_copy_versions = mocker.patch(
-        "reconcile.vault_replication.deep_copy_versions", autospec=True
-    )
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    vault_client.read_all_with_version.assert_called()
-    deep_copy_versions.assert_called_once_with(
-        dry_run, vault_client, vault_client, 1, 2, "path"
-    )
-def test_copy_vault_secret_found_same_version_v2(mocker):
-    dry_run = True
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = [["secret", 2], ["secret", 2]]
-    deep_copy_versions = mocker.patch(
-        "reconcile.vault_replication.deep_copy_versions", autospec=True
-    )
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    vault_client.read_all_with_version.assert_called()
-    deep_copy_versions.assert_not_called()
-@pytest.mark.parametrize(
-    "dry_run, path, return_values",
-    [
-        [False, "path", [["secret2", None], ["secret", None], ["secret", None]]],
-        [True, "path", [["secret2", None], ["secret", None], ["secret", None]]],
-    ],
-)
-def test_copy_vault_secret_found_v1(dry_run, path, return_values, mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = return_values
-    deep_copy_versions = mocker.patch(
-        "reconcile.vault_replication.deep_copy_versions", autospec=True
-    )
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    if not dry_run:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_called_once_with(
-            {"path": path, "data": "secret"}, False, True
-        )
-        deep_copy_versions.assert_not_called()
-    else:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_not_called()
-@pytest.mark.parametrize(
-    "dry_run, path, return_values",
-    [
-        [False, "path", [["secret", None], ["secret", None], ["secret", None]]],
-        [True, "path", [["secret", None], ["secret", None], ["secret", None]]],
-    ],
-)
-def test_copy_vault_secret_found_v1_same_value(dry_run, path, return_values, mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.read_all_with_version.side_effect = return_values
-    integ.copy_vault_secret(
-        dry_run=dry_run, source_vault=vault_client, dest_vault=vault_client, path="path"
-    )
-    if not dry_run:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_not_called()
-    else:
-        vault_client.read_all_with_version.assert_called()
-        vault_client.write.assert_not_called()
-def test_get_policy_secret_list(mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    vault_client.list_all.side_effect = [
-        ["policy/path/1/secret1", "policy/path/1/secret2"],
-        ["policy/path/2/secret1", "policy/path/2/secret2"],
-    ]
-    assert set(
-        integ.get_policy_secret_list(
-            vault_client,
-            ["policy/path/1/*", "policy/path/2/*", "policy/p-a_th/3/secret1_1-1"],
-        )
-    ) == {
-        "policy/path/1/secret1",
-        "policy/path/1/secret2",
-        "policy/path/2/secret1",
-        "policy/path/2/secret2",
-        "policy/p-a_th/3/secret1_1-1",
-    }
-@pytest.mark.parametrize(
-    "paths",
-    [
-        ["policy/path*"],
-        ["policy/p*th"],
-        ["policy/+/p*th"],
-    ],
-)
-def test_get_policy_secret_list_failure(paths, mocker):
-    vault_client = mocker.patch("reconcile.utils.vault._VaultClient", autospec=True)
-    with pytest.raises(integ.VaultInvalidPaths):
-        integ.get_policy_secret_list(vault_client, paths)

reconcile/test/test_vault_utils.py DELETED Viewed

@@ -1,47 +0,0 @@
-import importlib
-import os
-import time
-from unittest.mock import (
-    MagicMock,
-    patch,
-)
-import pytest
-from reconcile.utils import vault
-class SleepCalled(Exception):
-    pass
-class testVaultClient(vault._VaultClient):  # pylint: disable=W0223
-    def __init__(self):  # pylint: disable=W0231
-        pass
-class TestVaultUtils:
-    @staticmethod
-    def test_vault_auto_refresh_env():
-        os.environ["VAULT_AUTO_REFRESH_INTERVAL"] = "1"
-        importlib.reload(vault)
-        assert vault.VAULT_AUTO_REFRESH_INTERVAL == 1
-    @staticmethod
-    def test_vault_auto_refresh_no_env():
-        del os.environ["VAULT_AUTO_REFRESH_INTERVAL"]
-        assert os.getenv("VAULT_AUTO_REFRESH_INTERVAL") is None
-        importlib.reload(vault)
-        assert vault.VAULT_AUTO_REFRESH_INTERVAL == 600
-    @staticmethod
-    @patch.object(time, "sleep")
-    def test_sleep_is_called(sleep):
-        sleep.side_effect = SleepCalled
-        testVaultClient._refresh_client_auth = MagicMock()
-        client = testVaultClient()
-        with pytest.raises(SleepCalled):
-            client._auto_refresh_client_auth()

reconcile/test/test_version_bump.py DELETED Viewed

@@ -1,18 +0,0 @@
-import os
-import packaging.version as pep440
-import pkg_resources
-import pytest
-import requests
-@pytest.mark.skipif(
-    os.getuid() != 0,
-    reason="This test is only for CI environments",
-)
-def test_version_bump():
-    current_version = pkg_resources.get_distribution("qontract-reconcile").version
-    pypi_version = requests.get(
-        "https://pypi.org/pypi/qontract-reconcile/json", timeout=60
-    ).json()["info"]["version"]
-    assert pep440.Version(current_version) > pep440.Version(pypi_version)

qontract-reconcile 0.10.1rc1201__py3-none-any.whl → 0.10.2.dev1__py3-none-any.whl

qontract-reconcile 0.10.1rc1201py3-none-any.whl → 0.10.2.dev1py3-none-any.whl