constellation/cli/internal/cmd/apply_test.go

/*
Copyright (c) Edgeless Systems GmbH

SPDX-License-Identifier: AGPL-3.0-only
*/

package cmd

import (
	"context"
	"fmt"
	"strings"
	"testing"
	"time"

	"github.com/edgelesssys/constellation/v2/cli/internal/helm"
	"github.com/edgelesssys/constellation/v2/cli/internal/state"
	"github.com/edgelesssys/constellation/v2/internal/file"
	"github.com/edgelesssys/constellation/v2/internal/logger"
	"github.com/spf13/afero"
	"github.com/spf13/pflag"
	"github.com/stretchr/testify/assert"
	"github.com/stretchr/testify/require"
)

// defaultStateFile returns a valid default state for testing.
func defaultStateFile() *state.State {
	return &state.State{
		Version: "v1",
		Infrastructure: state.Infrastructure{
			UID:               "123",
			Name:              "test-cluster",
			ClusterEndpoint:   "192.0.2.1",
			InClusterEndpoint: "192.0.2.1",
			InitSecret:        []byte{0x41},
			APIServerCertSANs: []string{
				"127.0.0.1",
				"www.example.com",
			},
			IPCidrNode: "0.0.0.0/24",
			Azure: &state.Azure{
				ResourceGroup:            "test-rg",
				SubscriptionID:           "test-sub",
				NetworkSecurityGroupName: "test-nsg",
				LoadBalancerName:         "test-lb",
				UserAssignedIdentity:     "test-uami",
				AttestationURL:           "test-maaUrl",
			},
			GCP: &state.GCP{
				ProjectID: "test-project",
				IPCidrPod: "0.0.0.0/24",
			},
		},
		ClusterValues: state.ClusterValues{
			ClusterID:       "deadbeef",
			OwnerID:         "deadbeef",
			MeasurementSalt: []byte{0x41},
		},
	}
}

func defaultAzureStateFile() *state.State {
	s := defaultStateFile()
	s.Infrastructure.GCP = nil
	return s
}

func defaultGCPStateFile() *state.State {
	s := defaultStateFile()
	s.Infrastructure.Azure = nil
	return s
}

func TestParseApplyFlags(t *testing.T) {
	require := require.New(t)
	defaultFlags := func() *pflag.FlagSet {
		flags := NewApplyCmd().Flags()
		// Register persistent flags
		flags.String("workspace", "", "")
		flags.String("tf-log", "NONE", "")
		flags.Bool("force", false, "")
		flags.Bool("debug", false, "")
		return flags
	}

	testCases := map[string]struct {
		flags     *pflag.FlagSet
		wantFlags applyFlags
		wantErr   bool
	}{
		"default flags": {
			flags: defaultFlags(),
			wantFlags: applyFlags{
				helmWaitMode:   helm.WaitModeAtomic,
				upgradeTimeout: 5 * time.Minute,
			},
		},
		"skip phases": {
			flags: func() *pflag.FlagSet {
				flags := defaultFlags()
				require.NoError(flags.Set("skip-phases", fmt.Sprintf("%s,%s", skipHelmPhase, skipK8sPhase)))
				return flags
			}(),
			wantFlags: applyFlags{
				skipPhases:     skipPhases{skipHelmPhase: struct{}{}, skipK8sPhase: struct{}{}},
				helmWaitMode:   helm.WaitModeAtomic,
				upgradeTimeout: 5 * time.Minute,
			},
		},
		"skip helm wait": {
			flags: func() *pflag.FlagSet {
				flags := defaultFlags()
				require.NoError(flags.Set("skip-helm-wait", "true"))
				return flags
			}(),
			wantFlags: applyFlags{
				helmWaitMode:   helm.WaitModeNone,
				upgradeTimeout: 5 * time.Minute,
			},
		},
	}

	for name, tc := range testCases {
		t.Run(name, func(t *testing.T) {
			assert := assert.New(t)
			var flags applyFlags

			err := flags.parse(tc.flags)
			if tc.wantErr {
				assert.Error(err)
				return
			}
			assert.NoError(err)
			assert.Equal(tc.wantFlags, flags)
		})
	}
}

func TestBackupHelmCharts(t *testing.T) {
	testCases := map[string]struct {
		helmApplier      helm.Applier
		backupClient     *stubKubernetesUpgrader
		includesUpgrades bool
		wantErr          bool
	}{
		"success, no upgrades": {
			helmApplier:  &stubRunner{},
			backupClient: &stubKubernetesUpgrader{},
		},
		"success with upgrades": {
			helmApplier:      &stubRunner{},
			backupClient:     &stubKubernetesUpgrader{},
			includesUpgrades: true,
		},
		"saving charts fails": {
			helmApplier: &stubRunner{
				saveChartsErr: assert.AnError,
			},
			backupClient: &stubKubernetesUpgrader{},
			wantErr:      true,
		},
		"backup CRDs fails": {
			helmApplier: &stubRunner{},
			backupClient: &stubKubernetesUpgrader{
				backupCRDsErr: assert.AnError,
			},
			includesUpgrades: true,
			wantErr:          true,
		},
		"backup CRs fails": {
			helmApplier: &stubRunner{},
			backupClient: &stubKubernetesUpgrader{
				backupCRsErr: assert.AnError,
			},
			includesUpgrades: true,
			wantErr:          true,
		},
	}

	for name, tc := range testCases {
		t.Run(name, func(t *testing.T) {
			assert := assert.New(t)

			a := applyCmd{
				fileHandler: file.NewHandler(afero.NewMemMapFs()),
				log:         logger.NewTest(t),
			}

			err := a.backupHelmCharts(context.Background(), tc.backupClient, tc.helmApplier, tc.includesUpgrades, "")
			if tc.wantErr {
				assert.Error(err)
				return
			}
			assert.NoError(err)
			if tc.includesUpgrades {
				assert.True(tc.backupClient.backupCRDsCalled)
				assert.True(tc.backupClient.backupCRsCalled)
			}
		})
	}
}

func TestSkipPhases(t *testing.T) {
	require := require.New(t)
	cmd := NewApplyCmd()
	// register persistent flags manually
	cmd.Flags().String("workspace", "", "")
	cmd.Flags().Bool("force", true, "")
	cmd.Flags().String("tf-log", "NONE", "")
	cmd.Flags().Bool("debug", false, "")

	require.NoError(cmd.Flags().Set("skip-phases", strings.Join(allPhases(), ",")))
	wantPhases := skipPhases{}
	wantPhases.add(skipInfrastructurePhase, skipInitPhase, skipAttestationConfigPhase, skipCertSANsPhase, skipHelmPhase, skipK8sPhase, skipImagePhase)

	var flags applyFlags
	err := flags.parse(cmd.Flags())
	require.NoError(err)
	assert.Equal(t, wantPhases, flags.skipPhases)
}
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`/*`
			`Copyright (c) Edgeless Systems GmbH`

			`SPDX-License-Identifier: AGPL-3.0-only`
			`*/`

			`package cmd`

			`import (`
			`"context"`
			`"fmt"`
cli: fix apply flag issues (#2526) * Fix flag order * Fix missing phases in flag parsing --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-30 04:30:35 -04:00			`"strings"`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`"testing"`
cli: add `constellation apply` command to replace `init` and `upgrade apply` (#2484) * Add apply command * Mark init and upgrade apply as deprecated * Use apply command in CI * Add skippable phases for attestation config and cert SANs --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-26 09:59:13 -04:00			`"time"`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00
			`"github.com/edgelesssys/constellation/v2/cli/internal/helm"`
cli: state file validation (#2523) * re-use `ReadFromFile` in `CreateOrRead` Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip]: add constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip] error formatting Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * wip Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * formatted error messages Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * state file validation Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * linter fixes Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * allow overriding the constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * dont validate on read Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * add pre-create constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip] Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * finish pre-init validation test Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * finish post-init validation Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * use state file validation in CLI Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * fix apply tests Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * Update internal/validation/errors.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * use transformator for tests * tidy * use empty check directly Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * conditional validation per CSP Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * tidy Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * fix rebase Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * add default case Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * validate state-file as last input Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> --------- Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> 2023-11-03 10:47:03 -04:00			`"github.com/edgelesssys/constellation/v2/cli/internal/state"`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`"github.com/edgelesssys/constellation/v2/internal/file"`
			`"github.com/edgelesssys/constellation/v2/internal/logger"`
			`"github.com/spf13/afero"`
			`"github.com/spf13/pflag"`
			`"github.com/stretchr/testify/assert"`
			`"github.com/stretchr/testify/require"`
			`)`

cli: state file validation (#2523) * re-use `ReadFromFile` in `CreateOrRead` Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip]: add constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip] error formatting Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * wip Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * formatted error messages Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * state file validation Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * linter fixes Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * allow overriding the constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * dont validate on read Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * add pre-create constraints Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * [wip] Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * finish pre-init validation test Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * finish post-init validation Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * use state file validation in CLI Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * fix apply tests Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * Update internal/validation/errors.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * use transformator for tests * tidy * use empty check directly Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update cli/internal/state/state.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * conditional validation per CSP Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * tidy Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * fix rebase Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * add default case Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * validate state-file as last input Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> --------- Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> 2023-11-03 10:47:03 -04:00			`// defaultStateFile returns a valid default state for testing.`
			`func defaultStateFile() *state.State {`
			`return &state.State{`
			`Version: "v1",`
			`Infrastructure: state.Infrastructure{`
			`UID: "123",`
			`Name: "test-cluster",`
			`ClusterEndpoint: "192.0.2.1",`
			`InClusterEndpoint: "192.0.2.1",`
			`InitSecret: []byte{0x41},`
			`APIServerCertSANs: []string{`
			`"127.0.0.1",`
			`"www.example.com",`
			`},`
			`IPCidrNode: "0.0.0.0/24",`
			`Azure: &state.Azure{`
			`ResourceGroup: "test-rg",`
			`SubscriptionID: "test-sub",`
			`NetworkSecurityGroupName: "test-nsg",`
			`LoadBalancerName: "test-lb",`
			`UserAssignedIdentity: "test-uami",`
			`AttestationURL: "test-maaUrl",`
			`},`
			`GCP: &state.GCP{`
			`ProjectID: "test-project",`
			`IPCidrPod: "0.0.0.0/24",`
			`},`
			`},`
			`ClusterValues: state.ClusterValues{`
			`ClusterID: "deadbeef",`
			`OwnerID: "deadbeef",`
			`MeasurementSalt: []byte{0x41},`
			`},`
			`}`
			`}`

			`func defaultAzureStateFile() *state.State {`
			`s := defaultStateFile()`
			`s.Infrastructure.GCP = nil`
			`return s`
			`}`

			`func defaultGCPStateFile() *state.State {`
			`s := defaultStateFile()`
			`s.Infrastructure.Azure = nil`
			`return s`
			`}`

cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`func TestParseApplyFlags(t *testing.T) {`
			`require := require.New(t)`
			`defaultFlags := func() *pflag.FlagSet {`
cli: add `constellation apply` command to replace `init` and `upgrade apply` (#2484) * Add apply command * Mark init and upgrade apply as deprecated * Use apply command in CI * Add skippable phases for attestation config and cert SANs --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-26 09:59:13 -04:00			`flags := NewApplyCmd().Flags()`
			`// Register persistent flags`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`flags.String("workspace", "", "")`
			`flags.String("tf-log", "NONE", "")`
			`flags.Bool("force", false, "")`
			`flags.Bool("debug", false, "")`
			`return flags`
			`}`

			`testCases := map[string]struct {`
			`flags *pflag.FlagSet`
			`wantFlags applyFlags`
			`wantErr bool`
			`}{`
			`"default flags": {`
			`flags: defaultFlags(),`
			`wantFlags: applyFlags{`
cli: add `constellation apply` command to replace `init` and `upgrade apply` (#2484) * Add apply command * Mark init and upgrade apply as deprecated * Use apply command in CI * Add skippable phases for attestation config and cert SANs --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-26 09:59:13 -04:00			`helmWaitMode: helm.WaitModeAtomic,`
			`upgradeTimeout: 5 * time.Minute,`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`},`
			`},`
			`"skip phases": {`
			`flags: func() *pflag.FlagSet {`
			`flags := defaultFlags()`
			`require.NoError(flags.Set("skip-phases", fmt.Sprintf("%s,%s", skipHelmPhase, skipK8sPhase)))`
			`return flags`
			`}(),`
			`wantFlags: applyFlags{`
cli: add `constellation apply` command to replace `init` and `upgrade apply` (#2484) * Add apply command * Mark init and upgrade apply as deprecated * Use apply command in CI * Add skippable phases for attestation config and cert SANs --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-26 09:59:13 -04:00			`skipPhases: skipPhases{skipHelmPhase: struct{}{}, skipK8sPhase: struct{}{}},`
			`helmWaitMode: helm.WaitModeAtomic,`
			`upgradeTimeout: 5 * time.Minute,`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`},`
			`},`
			`"skip helm wait": {`
			`flags: func() *pflag.FlagSet {`
			`flags := defaultFlags()`
			`require.NoError(flags.Set("skip-helm-wait", "true"))`
			`return flags`
			`}(),`
			`wantFlags: applyFlags{`
cli: add `constellation apply` command to replace `init` and `upgrade apply` (#2484) * Add apply command * Mark init and upgrade apply as deprecated * Use apply command in CI * Add skippable phases for attestation config and cert SANs --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-26 09:59:13 -04:00			`helmWaitMode: helm.WaitModeNone,`
			`upgradeTimeout: 5 * time.Minute,`
cli: common backend for `init` and `upgrade apply` commands (#2449) * Use common 'apply' backend for init and upgrades * Move unit tests to new apply backend * Only perform Terraform migrations if state exists in cwd (#2457) * Rework skipPhases logic --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> 2023-10-24 09:39:18 -04:00			`},`
			`},`
			`}`

			`for name, tc := range testCases {`
			`t.Run(name, func(t *testing.T) {`
			`assert := assert.New(t)`
			`var flags applyFlags`

			`err := flags.parse(tc.flags)`
			`if tc.wantErr {`
			`assert.Error(err)`
			`return`
			`}`
			`assert.NoError(err)`
			`assert.Equal(tc.wantFlags, flags)`
			`})`
			`}`
			`}`

			`func TestBackupHelmCharts(t *testing.T) {`
			`testCases := map[string]struct {`
			`helmApplier helm.Applier`
			`backupClient *stubKubernetesUpgrader`
			`includesUpgrades bool`
			`wantErr bool`
			`}{`
			`"success, no upgrades": {`
			`helmApplier: &stubRunner{},`
			`backupClient: &stubKubernetesUpgrader{},`
			`},`
			`"success with upgrades": {`
			`helmApplier: &stubRunner{},`
			`backupClient: &stubKubernetesUpgrader{},`
			`includesUpgrades: true,`
			`},`
			`"saving charts fails": {`
			`helmApplier: &stubRunner{`
			`saveChartsErr: assert.AnError,`
			`},`
			`backupClient: &stubKubernetesUpgrader{},`
			`wantErr: true,`
			`},`
			`"backup CRDs fails": {`
			`helmApplier: &stubRunner{},`
			`backupClient: &stubKubernetesUpgrader{`
			`backupCRDsErr: assert.AnError,`
			`},`
			`includesUpgrades: true,`
			`wantErr: true,`
			`},`
			`"backup CRs fails": {`
			`helmApplier: &stubRunner{},`
			`backupClient: &stubKubernetesUpgrader{`
			`backupCRsErr: assert.AnError,`
			`},`
			`includesUpgrades: true,`
			`wantErr: true,`
			`},`
			`}`

			`for name, tc := range testCases {`
			`t.Run(name, func(t *testing.T) {`
			`assert := assert.New(t)`

			`a := applyCmd{`
			`fileHandler: file.NewHandler(afero.NewMemMapFs()),`
			`log: logger.NewTest(t),`
			`}`

			`err := a.backupHelmCharts(context.Background(), tc.backupClient, tc.helmApplier, tc.includesUpgrades, "")`
			`if tc.wantErr {`
			`assert.Error(err)`
			`return`
			`}`
			`assert.NoError(err)`
			`if tc.includesUpgrades {`
			`assert.True(tc.backupClient.backupCRDsCalled)`
			`assert.True(tc.backupClient.backupCRsCalled)`
			`}`
			`})`
			`}`
			`}`
cli: fix apply flag issues (#2526) * Fix flag order * Fix missing phases in flag parsing --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> 2023-10-30 04:30:35 -04:00
			`func TestSkipPhases(t *testing.T) {`
			`require := require.New(t)`
			`cmd := NewApplyCmd()`
			`// register persistent flags manually`
			`cmd.Flags().String("workspace", "", "")`
			`cmd.Flags().Bool("force", true, "")`
			`cmd.Flags().String("tf-log", "NONE", "")`
			`cmd.Flags().Bool("debug", false, "")`

			`require.NoError(cmd.Flags().Set("skip-phases", strings.Join(allPhases(), ",")))`
			`wantPhases := skipPhases{}`
			`wantPhases.add(skipInfrastructurePhase, skipInitPhase, skipAttestationConfigPhase, skipCertSANsPhase, skipHelmPhase, skipK8sPhase, skipImagePhase)`

			`var flags applyFlags`
			`err := flags.parse(cmd.Flags())`
			`require.NoError(err)`
			`assert.Equal(t, wantPhases, flags.skipPhases)`
			`}`