Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

refactor: resolve eslint warnings (max-depth, complexity) - src/lib/mutate-processor.ts #1543

Merged
merged 23 commits into from
Dec 12, 2024
Merged

refactor: resolve eslint warnings (max-depth, complexity) - src/lib/mutate-processor.ts #1543

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
23 commits
Select commit Hold shift + click to select a range
8adc942
wip: initial
btlghrants Dec 9, 2024
b70802e
wip: saving progress
btlghrants Dec 9, 2024
7990184
wip: saving progress
btlghrants Dec 9, 2024
874ed31
wip: saving progress
btlghrants Dec 9, 2024
b56baa6
wip: saving progress
btlghrants Dec 9, 2024
bd8a5ee
wip: saving progress
btlghrants Dec 10, 2024
86a5ce3
wip: saving progress
btlghrants Dec 10, 2024
6ce7954
wip: saving progress
btlghrants Dec 10, 2024
5292136
wip: saving progress
btlghrants Dec 10, 2024
a07179d
wip: saving progress
btlghrants Dec 10, 2024
ab1f19c
wip: saving progress
btlghrants Dec 10, 2024
d047c76
wip: saving progress
btlghrants Dec 10, 2024
f4802f5
test: gettin' coverage
btlghrants Dec 10, 2024
4a409ac
test: gettin' coverage
btlghrants Dec 10, 2024
2a83965
test: gettin' coverage
btlghrants Dec 10, 2024
1e16c2d
test: gettin' coverage
btlghrants Dec 10, 2024
fcd0d5d
Merge branch 'main' into 1532_complexity_mutate_processor
btlghrants Dec 11, 2024
7b6fb13
test: gettin' coverage
btlghrants Dec 11, 2024
0e1ad8c
test: gettin' coverage
btlghrants Dec 12, 2024
f9c1c0e
test: gettin' e2es working
btlghrants Dec 12, 2024
7488426
test: gettin' e2es working
btlghrants Dec 12, 2024
fb0c982
Merge branch 'main' into 1532_complexity_mutate_processor
btlghrants Dec 12, 2024
c99dfbc
Merge branch 'main' into 1532_complexity_mutate_processor
btlghrants Dec 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
294 changes: 294 additions & 0 deletions src/lib/mutate-processor.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,294 @@
// SPDX-License-Identifier: Apache-2.0
// SPDX-FileCopyrightText: 2023-Present The Pepr Authors

import { beforeEach, describe, expect, it, jest } from "@jest/globals";
import { clone } from "ramda";
import { ModuleConfig } from "./module";
import { PeprMutateRequest } from "./mutate-request";
import * as sut from "./mutate-processor";
import { AdmissionRequest, Binding, MutateAction } from "./types";
import { Event, Operation } from "./enums";
import { convertFromBase64Map, convertToBase64Map } from "./utils";
import { GenericClass, KubernetesObject } from "kubernetes-fluent-client";
import { MutateResponse } from "./k8s";
import { Errors } from "./errors";

jest.mock("./utils");
const mockConvertFromBase64Map = jest.mocked(convertFromBase64Map);
const mockConvertToBase64Map = jest.mocked(convertToBase64Map);

const defaultModuleConfig: ModuleConfig = {
uuid: "test-uuid",
alwaysIgnore: {},
};

const defaultAdmissionRequest: AdmissionRequest = {
uid: "uid",
kind: {
kind: "kind",
group: "group",
version: "version",
},
resource: {
group: "group",
version: "version",
resource: "resource",
},
name: "",
object: {
metadata: {
name: "create-me",
},
},
operation: Operation.CREATE,
userInfo: {},
};

const defaultPeprMutateRequest = (admissionRequest = defaultAdmissionRequest) =>
new PeprMutateRequest(admissionRequest);

beforeEach(() => {
jest.resetAllMocks();
});

describe("updateStatus", () => {
describe("when given non-delete request", () => {
it("adds status annotation to to-be-admitted resource", () => {
const name = "capa";
const status = "test-status";
const annote = `${defaultModuleConfig.uuid}.pepr.dev/${name}`;

const result = sut.updateStatus(defaultModuleConfig, name, defaultPeprMutateRequest(), status);

expect(result.HasAnnotation(annote)).toBe(true);
expect(result.Raw.metadata?.annotations?.[annote]).toBe(status);
});
});

describe("when given delete request", () => {
it("does not add status annotation to to-be-admitted resource", () => {
const testAdmissionRequest = {
...clone(defaultAdmissionRequest),
operation: Operation.DELETE,
oldObject: {},
};
const name = "capa";
const annote = `${defaultModuleConfig.uuid}.pepr.dev/${name}`;

const result = sut.updateStatus(
defaultModuleConfig,
name,
defaultPeprMutateRequest(testAdmissionRequest),
"test-status",
);

expect(result.HasAnnotation(annote)).toBe(false);
});
});
});

describe("logMutateErrorMessage", () => {
it.each([
// error msg, result string
["oof", "oof"],
["", "An error occurred with the mutate action."],
["[object Object]", "An error occurred with the mutate action."],
])("given error '%s', returns '%s'", (err, res) => {
const result = sut.logMutateErrorMessage(new Error(err));
expect(result).toBe(res);
});
});

describe("decodeData", () => {
const skips = ["convert", "From", "Base64", "Map"];

beforeEach(() => {
mockConvertFromBase64Map.mockImplementation(() => skips);
});

it("returns skips if required & given a Secret", () => {
const testAdmissionRequest = {
...defaultAdmissionRequest,
kind: {
kind: "Secret",
version: "v1",
group: "",
},
};
const testPeprMutateRequest = defaultPeprMutateRequest(testAdmissionRequest);

const { skipped, wrapped } = sut.decodeData(testPeprMutateRequest);

expect(mockConvertFromBase64Map.mock.calls.length).toBe(1);
expect(mockConvertFromBase64Map.mock.calls[0].at(0)).toBe(testPeprMutateRequest.Raw);
expect(skipped).toBe(skips);
expect(wrapped).toBe(testPeprMutateRequest);
});

it("returns no skips when given a non-Secret", () => {
const testAdmissionRequest = {
...defaultAdmissionRequest,
kind: {
kind: "NotASecret",
version: "v1",
group: "",
},
};
const testPeprMutateRequest = defaultPeprMutateRequest(testAdmissionRequest);

const { skipped, wrapped } = sut.decodeData(testPeprMutateRequest);

expect(mockConvertFromBase64Map.mock.calls.length).toBe(0);
expect(skipped).toEqual([]);
expect(wrapped).toBe(testPeprMutateRequest);
});
});

describe("reencodeData", () => {
it("returns unchanged content when given non-secret", () => {
const skipped = ["convert", "To", "Base64", "Map"];
const testAdmissionRequest = {
...defaultAdmissionRequest,
kind: {
kind: "NotASecret",
version: "v1",
group: "",
},
};
const testPeprMutateRequest = defaultPeprMutateRequest(testAdmissionRequest);

const transformed = sut.reencodeData(testPeprMutateRequest, skipped);

expect(mockConvertToBase64Map.mock.calls.length).toBe(0);
expect(transformed).toEqual(testAdmissionRequest.object);
});

it("returns modified content when given a secret and skips", () => {
const skipped = ["convert", "To", "Base64", "Map"];
const testAdmissionRequest = {
...defaultAdmissionRequest,
kind: {
kind: "Secret",
version: "v1",
group: "",
},
};
const testPeprMutateRequest = defaultPeprMutateRequest(testAdmissionRequest);

const transformed = sut.reencodeData(testPeprMutateRequest, skipped);

expect(mockConvertToBase64Map.mock.calls.length).toBe(1);
expect(mockConvertToBase64Map.mock.calls[0].at(0)).toEqual(testPeprMutateRequest.Raw);
expect(mockConvertToBase64Map.mock.calls[0].at(1)).toBe(skipped);
expect(transformed).toEqual(testPeprMutateRequest.Raw);
});
});

const defaultBinding: Binding = {
event: Event.CREATE,
model: {} as GenericClass,
kind: {
kind: "kind",
group: "group",
version: "version",
},
filters: {
annotations: {},
deletionTimestamp: false,
labels: {},
name: "",
namespaces: [],
regexName: "",
regexNamespaces: [],
},
mutateCallback: jest.fn() as jest.Mocked<MutateAction<GenericClass, KubernetesObject>>,
};

const defaultBindable: sut.Bindable = {
req: defaultAdmissionRequest,
config: defaultModuleConfig,
name: "test-name",
namespaces: [],
binding: defaultBinding,
actMeta: {},
};

const defaultMutateResponse: MutateResponse = {
uid: "default-uid",
allowed: true,
};

describe("processRequest", () => {
it("adds a status annotation on success", async () => {
const testPeprMutateRequest = defaultPeprMutateRequest();
const testMutateResponse = clone(defaultMutateResponse);
const annote = `${defaultModuleConfig.uuid}.pepr.dev/${defaultBindable.name}`;

const result = await sut.processRequest(defaultBindable, testPeprMutateRequest, testMutateResponse);

expect(result).toEqual({ wrapped: testPeprMutateRequest, response: testMutateResponse });
expect(result.wrapped.Raw.metadata?.annotations).toBeDefined();
expect(result.wrapped.Raw.metadata!.annotations![annote]).toBe("succeeded");

expect(result.response.warnings).toBeUndefined();
expect(result.response.result).toBeUndefined();
expect(result.response.auditAnnotations).toBeUndefined();
});

it("adds a status annotation, warning, and result on failure when Errors.reject", async () => {
const mutateCallback = (jest.fn() as jest.Mocked<MutateAction<GenericClass, KubernetesObject>>).mockImplementation(
() => {
throw "oof";
},
);
const testBinding = { ...clone(defaultBinding), mutateCallback };
const testBindable = { ...clone(defaultBindable), binding: testBinding };
testBindable.config.onError = Errors.reject;
const testPeprMutateRequest = defaultPeprMutateRequest();
const testMutateResponse = clone(defaultMutateResponse);
const annote = `${defaultModuleConfig.uuid}.pepr.dev/${defaultBindable.name}`;

const result = await sut.processRequest(testBindable, testPeprMutateRequest, testMutateResponse);

expect(result).toEqual({ wrapped: testPeprMutateRequest, response: testMutateResponse });
expect(result.wrapped.Raw.metadata?.annotations).toBeDefined();
expect(result.wrapped.Raw.metadata!.annotations![annote]).toBe("warning");

expect(result.response.warnings).toHaveLength(1);
expect(result.response.warnings![0]).toBe("Action failed: An error occurred with the mutate action.");
expect(result.response.result).toBe("Pepr module configured to reject on error");
expect(result.response.auditAnnotations).toBeUndefined();
});

it("adds a status annotation, warning, and auditAnnotation on failure when Errors.audit", async () => {
const mutateCallback = (jest.fn() as jest.Mocked<MutateAction<GenericClass, KubernetesObject>>).mockImplementation(
() => {
throw "oof";
},
);
const testBinding = { ...clone(defaultBinding), mutateCallback };
const testBindable = { ...clone(defaultBindable), binding: testBinding };
testBindable.config.onError = Errors.audit;
const testPeprMutateRequest = defaultPeprMutateRequest();
const testMutateResponse = clone(defaultMutateResponse);
const annote = `${defaultModuleConfig.uuid}.pepr.dev/${defaultBindable.name}`;

const result = await sut.processRequest(testBindable, testPeprMutateRequest, testMutateResponse);

expect(result).toEqual({ wrapped: testPeprMutateRequest, response: testMutateResponse });
expect(result.wrapped.Raw.metadata?.annotations).toBeDefined();
expect(result.wrapped.Raw.metadata!.annotations![annote]).toBe("warning");

expect(result.response.warnings).toHaveLength(1);
expect(result.response.warnings![0]).toBe("Action failed: An error occurred with the mutate action.");
expect(result.response.result).toBeUndefined();
expect(result.response.auditAnnotations).toBeDefined();

const auditAnnotes = Object.entries(result.response.auditAnnotations!);
expect(auditAnnotes).toHaveLength(1);

const [key, val] = auditAnnotes[0];
expect(Date.now() - parseInt(key)).toBeLessThan(5);
expect(val).toBe("Action failed: An error occurred with the mutate action.");
});
});
Loading
Loading