dumplingmiku/ubicloud
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
pykello/image-issue
ubicloud/spec/routes/api/project/private_location_spec.rb
Furkan Sahin 7d97b5cf68 Private Location management experience with UI 
We are adding a new tab under Project Details for listing private
locations. We keep it behind a feature flag. The create view simply gets
the AWS region, ubicloud region name, access and secret keys. We list
the locations and give chance to customer to be able to update the name.
2025-03-23 16:28:05 +01:00

193 lines
6.4 KiB
Ruby
Raw Permalink Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# frozen_string_literal: true
require_relative "../spec_helper"
RSpec.describe Clover, "private-location" do
let(:user) { create_account }
let(:project) { project_with_default_policy(user) }
let(:project_wo_permissions) { project_with_default_policy(user, default_policy: nil) }
let(:private_location) do
loc = Location.create(
name: "us-east-1",
display_name: "aws-us-east-1",
ui_name: "aws-us-east-1",
visible: true,
provider: "aws",
project_id: project.id
)
LocationCredential.create(
access_key: "access-key-id",
secret_key: "secret-access-key"
) { _1.id = loc.id }
loc
end
describe "unauthenticated" do
it "cannot perform authenticated operations" do
[
[:get, "/project/#{project.ubid}/private-location"],
[:post, "/project/#{project.ubid}/private-location", {name: "region-1"}],
[:delete, "/project/#{project.ubid}/private-location/#{private_location.ubid}"]
].each do |method, path, body|
send(method, path, body)
expect(last_response).to have_api_error(401, "Please login to continue")
end
end
it "cannot create without login" do
post "/project/#{project.ubid}/private-location", {
name: "region-1",
private_location_name: "us-east-1",
aws_access_key: "access-key-id",
aws_secret_key: "secret-access-key"
}.to_json
expect(last_response).to have_api_error(401, "Please login to continue")
end
end
{
"with login api" => false,
"with personal access token" => true
}.each do |desc, use_pat|
describe "authenticated #{desc}" do
before do
login_api(user.email, use_pat:)
end
describe "list" do
it "success" do
private_location
get "/project/#{project.ubid}/private-location"
expect(last_response.status).to eq(200)
parsed_body = JSON.parse(last_response.body)
expect(parsed_body["count"]).to eq(1)
end
it "invalid order column" do
private_location
get "/project/#{project.ubid}/private-location?order_column=ui_name"
expect(last_response).to have_api_error(400, "Validation failed for following fields: order_column")
end
it "invalid id" do
private_location
get "/project/#{project.ubid}/private-location?start_after=invalid_id"
expect(last_response).to have_api_error(400, "Validation failed for following fields: start_after")
end
end
describe "create" do
it "success" do
post "/project/#{project.ubid}/private-location", {
name: "hello",
provider_location_name: "us-east-1",
access_key: "access-key-id",
secret_key: "secret-access-key"
}.to_json
expect(last_response.status).to eq(200)
expect(JSON.parse(last_response.body)["ui_name"]).to eq("hello")
expect(JSON.parse(last_response.body)["name"]).to eq("us-east-1")
end
end
describe "delete" do
it "success" do
reg = private_location
delete "/project/#{project.ubid}/private-location/#{reg.ui_name}"
expect(last_response.status).to eq(204)
expect(Location.where(project_id: project.id).count).to eq(0)
expect(LocationCredential.where(id: reg.id).count).to eq(0)
end
it "success with non-existing region" do
delete "/project/#{project.ubid}/private-location/non-existing-region"
expect(last_response.status).to eq(204)
end
it "can not delete aws region when it has resources" do
reg = private_location
expect(Config).to receive(:postgres_service_project_id).and_return(project.id).at_least(:once)
Prog::Postgres::PostgresResourceNexus.assemble(
project_id: project.id,
name: "dummy-postgres",
location_id: reg.id,
target_vm_size: "standard-2",
target_storage_size_gib: 64
)
delete "/project/#{project.ubid}/private-location/#{reg.ui_name}"
expect(last_response).to have_api_error(409, "Private location '#{reg.ui_name}' has some resources, first, delete them.")
end
it "not authorized" do
project_with_default_policy(user)
p = create_account("test@test.com").create_project_with_default_policy("project-1")
delete "/project/#{p.ubid}/private-location/#{private_location.ui_name}"
expect(last_response).to have_api_error(403, "Sorry, you don't have permission to continue with this request.")
end
end
describe "show" do
it "success" do
get "/project/#{project.ubid}/private-location/#{private_location.ui_name}"
expect(last_response.status).to eq(200)
expect(JSON.parse(last_response.body)["ui_name"]).to eq(private_location.ui_name)
end
if use_pat
it "failure with unauthorized personal access token" do
private_location
AccessControlEntry.dataset.destroy
AccessControlEntry.create_with_id(project_id: project.id, subject_id: @pat.id, action_id: ActionType::NAME_MAP["Location:edit"])
get "/project/#{project.ubid}/private-location/#{private_location.ui_name}"
expect(last_response).to have_api_error(403, "Sorry, you don't have permission to continue with this request.")
end
end
it "not found" do
private_location
get "/project/#{project.ubid}/private-location/non-existing-region"
expect(last_response).to have_api_error(404, "Sorry, we couldnt find the resource youre looking for.")
end
it "not authorized" do
private_location
u = create_account("test@test.com")
p = u.create_project_with_default_policy("project-1")
get "/project/#{p.ubid}/private-location/#{private_location.ui_name}"
expect(last_response).to have_api_error(403, "Sorry, you don't have permission to continue with this request.")
end
end
describe "update" do
it "success" do
post "/project/#{project.ubid}/private-location/#{private_location.ui_name}", {
name: "hello"
}.to_json
expect(last_response.status).to eq(200)
expect(JSON.parse(last_response.body)["ui_name"]).to eq("hello")
end
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink