chore: Add basic auth tests (#70)

Author: Callisto13

go.mod

@@ -3,12 +3,9 @@ module github.com/warehouse-13/hammertime
 go 1.18
 
 require (
-	github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
-	github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0
-	github.com/nu7hatch/gouuid v0.0.0-20131221200532-179d4d0c4d8d
 	github.com/onsi/ginkgo/v2 v2.4.0
 	github.com/urfave/cli/v2 v2.10.2
-	github.com/warehouse-13/safety v0.0.0-20221207164058-27f5985eb045
+	github.com/warehouse-13/safety v0.0.0-20230120170710-60c7451457c5
 	github.com/weaveworks-liquidmetal/flintlock/api v0.0.0-20221117153111-bd29de31356f
 	github.com/weaveworks-liquidmetal/flintlock/client v0.0.0-20220722132608-982d429ba641
 	google.golang.org/grpc v1.51.0
@@ -23,7 +20,10 @@ require (
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/google/go-cmp v0.5.8 // indirect
+	github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 // indirect
+	github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect
+	github.com/nu7hatch/gouuid v0.0.0-20131221200532-179d4d0c4d8d // indirect
 	github.com/prometheus/client_golang v1.13.1 // indirect
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.37.0 // indirect

go.sum

@@ -245,8 +245,8 @@ github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5Cc
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/urfave/cli/v2 v2.10.2 h1:x3p8awjp/2arX+Nl/G2040AZpOCHS/eMJJ1/a+mye4Y=
 github.com/urfave/cli/v2 v2.10.2/go.mod h1:f8iq5LtQ/bLxafbdBSLPPNsgaW0l/2fYYEHhAyPlwvo=
-github.com/warehouse-13/safety v0.0.0-20221207164058-27f5985eb045 h1:X5PZayrpXPpuhq6vOBCXUbIsdxv56L471p32RBqWDUc=
-github.com/warehouse-13/safety v0.0.0-20221207164058-27f5985eb045/go.mod h1:hTlI1j1CXNEYrNoGbw7bAPj1/maOkuvGgoi63donJ5I=
+github.com/warehouse-13/safety v0.0.0-20230120170710-60c7451457c5 h1:1uTkby9abQ0d0RJIYrKxZsfDZoWdWEb/KoaCnDqImtI=
+github.com/warehouse-13/safety v0.0.0-20230120170710-60c7451457c5/go.mod h1:hTlI1j1CXNEYrNoGbw7bAPj1/maOkuvGgoi63donJ5I=
 github.com/weaveworks-liquidmetal/flintlock/api v0.0.0-20221117153111-bd29de31356f h1:xHtKo4eiR1pRZUrXxlGF3KDuoa6xYjBGuPP47M9eVWM=
 github.com/weaveworks-liquidmetal/flintlock/api v0.0.0-20221117153111-bd29de31356f/go.mod h1:JPML9O56MoPKGX97jfj++BtuFFS84jm4T+jWQBjO5Uc=
 github.com/weaveworks-liquidmetal/flintlock/client v0.0.0-20220722132608-982d429ba641 h1:c5GlWX7UuBOQwx3Xfw4Jnd3VCHvChpkWaSVJhEbQcdo=

pkg/client/client.go

@@ -17,7 +17,7 @@ import (
 // Client is a wrapper around a v1alpha1.MicroVMClient.
 type Client struct {
 	v1alpha1.MicroVMClient
-	conn *grpc.ClientConn
+	Conn *grpc.ClientConn
 }
 
 //counterfeiter:generate -o fakeclient/ . FlintlockClient
@@ -31,7 +31,7 @@ type FlintlockClient interface {
 
 // New returns a new flintlock Client.
 func New(address, basicAuthToken string) (FlintlockClient, error) {
-	conn, err := dialler.New(address, basicAuthToken)
+	conn, err := dialler.New(address, basicAuthToken, nil)
 	if err != nil {
 		return nil, err
 	}
@@ -40,7 +40,7 @@ func New(address, basicAuthToken string) (FlintlockClient, error) {
 }
 
 func (c *Client) Close() error {
-	return c.conn.Close()
+	return c.Conn.Close()
 }
 
 // Create creates a new Microvm with the MicroVMClient.

pkg/command/app_test.go

@@ -0,0 +1,125 @@
+package command_test
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"net"
+	"testing"
+
+	. "github.com/onsi/gomega"
+	"github.com/warehouse-13/safety"
+	"github.com/weaveworks-liquidmetal/flintlock/api/services/microvm/v1alpha1"
+	"google.golang.org/grpc"
+
+	"github.com/warehouse-13/hammertime/pkg/client"
+	"github.com/warehouse-13/hammertime/pkg/command"
+	"github.com/warehouse-13/hammertime/pkg/config"
+	"github.com/warehouse-13/hammertime/pkg/dialler"
+	"github.com/warehouse-13/hammertime/pkg/utils"
+)
+
+func Test_CRUD_noBasicAuth_noTLS(t *testing.T) {
+	g := NewWithT(t)
+
+	fakeserver := safety.New()
+	dialer := fakeserver.StartBuf("")
+
+	t.Cleanup(func() {
+		fakeserver.Stop()
+	})
+
+	cfg := &config.Config{
+		ClientConfig: config.ClientConfig{
+			ClientBuilderFunc: cl(dialer),
+		},
+	}
+
+	buf := &bytes.Buffer{}
+	w := utils.NewWriter(buf)
+
+	g.Expect(command.CreateFn(w, cfg)).To(Succeed())
+
+	out := &v1alpha1.CreateMicroVMResponse{}
+	g.Expect(json.Unmarshal(buf.Bytes(), out)).To(Succeed())
+
+	cfg.UUID = *out.Microvm.Spec.Uid
+
+	g.Expect(command.GetFn(w, cfg)).To(Succeed())
+	g.Expect(command.ListFn(w, cfg)).To(Succeed())
+	g.Expect(command.DeleteFn(w, cfg)).To(Succeed())
+}
+
+func Test_CRUD_basicAuth_noTLS(t *testing.T) {
+	g := NewWithT(t)
+
+	basicAuthToken := "secret"
+
+	fakeserver := safety.New()
+	dialer := fakeserver.StartBuf(basicAuthToken)
+
+	t.Cleanup(func() {
+		fakeserver.Stop()
+	})
+
+	cfg := &config.Config{
+		ClientConfig: config.ClientConfig{
+			ClientBuilderFunc: cl(dialer),
+		},
+		Token: basicAuthToken,
+	}
+
+	buf := &bytes.Buffer{}
+	w := utils.NewWriter(buf)
+
+	g.Expect(command.CreateFn(w, cfg)).To(Succeed())
+
+	out := &v1alpha1.CreateMicroVMResponse{}
+	g.Expect(json.Unmarshal(buf.Bytes(), out)).To(Succeed())
+
+	cfg.UUID = *out.Microvm.Spec.Uid
+
+	g.Expect(command.GetFn(w, cfg)).To(Succeed())
+	g.Expect(command.ListFn(w, cfg)).To(Succeed())
+	g.Expect(command.DeleteFn(w, cfg)).To(Succeed())
+}
+
+func Test_basicAuth_failsWithNoClientToken(t *testing.T) {
+	g := NewWithT(t)
+
+	basicAuthToken := "secret"
+
+	fakeserver := safety.New()
+	dialer := fakeserver.StartBuf(basicAuthToken)
+
+	t.Cleanup(func() {
+		fakeserver.Stop()
+	})
+
+	cfg := &config.Config{
+		ClientConfig: config.ClientConfig{
+			ClientBuilderFunc: cl(dialer),
+		},
+		Token: "",
+	}
+
+	buf := &bytes.Buffer{}
+	w := utils.NewWriter(buf)
+
+	g.Expect(command.CreateFn(w, cfg)).To(MatchError(ContainSubstring("unauthenticated")))
+}
+
+func cl(dialer func(context.Context, string) (net.Conn, error)) func(string, string) (client.FlintlockClient, error) {
+	return func(string, token string) (client.FlintlockClient, error) {
+		opt := []grpc.DialOption{grpc.WithContextDialer(dialer)}
+		conn, err := dialler.New("bufnet", token, opt)
+		if err != nil {
+			return nil, err
+		}
+
+		return &client.Client{
+			MicroVMClient: v1alpha1.NewMicroVMClient(conn),
+			Conn:          conn,
+		}, nil
+	}
+}

pkg/dialler/dialler.go

@@ -7,10 +7,13 @@ import (
 
 // New process the dial config and returns a grpc.ClientConn. The caller is
 // responsible for closing the connection.
-func New(address, basicAuthToken string) (*grpc.ClientConn, error) {
-	dialOpts := []grpc.DialOption{
+func New(address, basicAuthToken string, opts []grpc.DialOption) (*grpc.ClientConn, error) {
+	// TODO this needs to be tidied up when adding TLS #47
+	dialOpts := opts
+
+	dialOpts = append(dialOpts,
 		grpc.WithTransportCredentials(insecure.NewCredentials()),
-	}
+	)
 
 	if basicAuthToken != "" {
 		dialOpts = append(dialOpts, grpc.WithPerRPCCredentials(