mirror of
https://github.com/edgelesssys/constellation.git
synced 2025-01-01 02:46:16 -05:00
bd63aa3c6b
sed -i '1i/*\nCopyright (c) Edgeless Systems GmbH\n\nSPDX-License-Identifier: AGPL-3.0-only\n*/\n' `grep -rL --include='*.go' 'DO NOT EDIT'` gofumpt -w .
119 lines
4.7 KiB
Go
119 lines
4.7 KiB
Go
/*
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
*/
|
|
|
|
package azure
|
|
|
|
import (
|
|
"testing"
|
|
|
|
armcomputev2 "github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute/v2"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestFirewallPermissions(t *testing.T) {
|
|
assert := assert.New(t)
|
|
require := require.New(t)
|
|
scaleSet := ScaleSet{
|
|
Name: "name",
|
|
NamePrefix: "constellation-",
|
|
Location: "UK South",
|
|
InstanceType: "Standard_DC4as_v5",
|
|
Count: 3,
|
|
Username: "constellation",
|
|
SubnetID: "subnet-id",
|
|
NetworkSecurityGroup: "network-security-group",
|
|
Password: "password",
|
|
Image: "image",
|
|
UserAssignedIdentity: "user-identity",
|
|
ConfidentialVM: true,
|
|
}
|
|
|
|
scaleSetAzure := scaleSet.Azure()
|
|
|
|
require.NotNil(scaleSetAzure.Name)
|
|
assert.Equal(scaleSet.Name, *scaleSetAzure.Name)
|
|
require.NotNil(scaleSetAzure.Location)
|
|
assert.Equal(scaleSet.Location, *scaleSetAzure.Location)
|
|
|
|
require.NotNil(scaleSetAzure.SKU)
|
|
require.NotNil(scaleSetAzure.SKU.Name)
|
|
assert.Equal(scaleSet.InstanceType, *scaleSetAzure.SKU.Name)
|
|
|
|
require.NotNil(scaleSetAzure.SKU.Capacity)
|
|
assert.Equal(scaleSet.Count, *scaleSetAzure.SKU.Capacity)
|
|
|
|
require.NotNil(scaleSetAzure.Properties)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.ComputerNamePrefix)
|
|
assert.Equal(scaleSet.NamePrefix, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.ComputerNamePrefix)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminUsername)
|
|
assert.Equal(scaleSet.Username, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminUsername)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminPassword)
|
|
assert.Equal(scaleSet.Password, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminPassword)
|
|
|
|
// Verify image
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference.ID)
|
|
assert.Equal(scaleSet.Image, *scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference.ID)
|
|
|
|
// Verify network
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile)
|
|
require.Len(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations, 1)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations[0])
|
|
|
|
networkConfig := scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations[0]
|
|
|
|
require.NotNil(networkConfig.Name)
|
|
assert.Equal(scaleSet.Name, *networkConfig.Name)
|
|
|
|
require.NotNil(networkConfig.Properties)
|
|
require.Len(networkConfig.Properties.IPConfigurations, 1)
|
|
require.NotNil(networkConfig.Properties.IPConfigurations[0])
|
|
|
|
ipConfig := networkConfig.Properties.IPConfigurations[0]
|
|
|
|
require.NotNil(ipConfig.Name)
|
|
assert.Equal(scaleSet.Name, *ipConfig.Name)
|
|
|
|
require.NotNil(ipConfig.Properties)
|
|
require.NotNil(ipConfig.Properties.Subnet)
|
|
|
|
require.NotNil(ipConfig.Properties.Subnet.ID)
|
|
assert.Equal(scaleSet.SubnetID, *ipConfig.Properties.Subnet.ID)
|
|
|
|
require.NotNil(networkConfig.Properties.NetworkSecurityGroup)
|
|
assert.Equal(scaleSet.NetworkSecurityGroup, *networkConfig.Properties.NetworkSecurityGroup.ID)
|
|
|
|
// Verify vTPM
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.SecurityType)
|
|
assert.Equal(armcomputev2.SecurityTypesConfidentialVM, *scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.SecurityType)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings)
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings.VTpmEnabled)
|
|
assert.True(*scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings.VTpmEnabled)
|
|
|
|
// Verify UserAssignedIdentity
|
|
require.NotNil(scaleSetAzure.Identity)
|
|
require.NotNil(scaleSetAzure.Identity.Type)
|
|
assert.Equal(armcomputev2.ResourceIdentityTypeUserAssigned, *scaleSetAzure.Identity.Type)
|
|
require.Len(scaleSetAzure.Identity.UserAssignedIdentities, 1)
|
|
assert.Contains(scaleSetAzure.Identity.UserAssignedIdentities, scaleSet.UserAssignedIdentity)
|
|
}
|
|
|
|
func TestGeneratePassword(t *testing.T) {
|
|
assert := assert.New(t)
|
|
require := require.New(t)
|
|
|
|
pw, err := GeneratePassword()
|
|
require.NoError(err)
|
|
assert.Len(pw, 20)
|
|
}
|