Fixes integration tests

steve-perkins-bc · steve-perkins-bc · commit 7603d594601f · 2019-06-24T16:23:45.000-04:00
diff --git a/src/main/java/com/bettercloud/vault/SslConfig.java b/src/main/java/com/bettercloud/vault/SslConfig.java
@@ -571,7 +571,7 @@ private SSLContext buildSslContextFromPem() throws VaultException {
                 // Convert the client private key into a PrivateKey
                 final String strippedKey = clientKeyPemUTF8.replace("-----BEGIN PRIVATE KEY-----", "")
                                                      .replace("-----END PRIVATE KEY-----", "");
-                final byte[] keyBytes = Base64.getDecoder().decode(strippedKey);
+                final byte[] keyBytes = Base64.getMimeDecoder().decode(strippedKey);
                 final PKCS8EncodedKeySpec pkcs8EncodedKeySpec = new PKCS8EncodedKeySpec(keyBytes);
                 final KeyFactory factory = KeyFactory.getInstance("RSA");
                 final PrivateKey privateKey = factory.generatePrivate(pkcs8EncodedKeySpec);
diff --git a/src/test-integration/java/com/bettercloud/vault/api/MountsTests.java b/src/test-integration/java/com/bettercloud/vault/api/MountsTests.java
@@ -35,7 +35,7 @@ public class MountsTests {
     @BeforeClass
     public static void setupClass() throws IOException, InterruptedException {
         container.initAndUnsealVault();
-        container.setupBackendMounts();
+        container.setupBackendPki();
     }
 
     @Test
@@ -45,9 +45,9 @@ public void testList() throws VaultException {
         final MountResponse response = vault.mounts().list();
         final Map<String, Mount> mounts = response.getMounts();
 
-        assertTrue(mounts.containsKey("pki/custom-path-1/"));
-        assertTrue(mounts.containsKey("pki/custom-path-2/"));
-        assertTrue(mounts.containsKey("pki/custom-path-3/"));
+        assertTrue(mounts.containsKey("pki-custom-path-1/"));
+        assertTrue(mounts.containsKey("pki-custom-path-2/"));
+        assertTrue(mounts.containsKey("pki-custom-path-3/"));
     }
 
     @Test
@@ -59,15 +59,15 @@ public void testEnable() throws VaultException {
                 .maxLeaseTtl(TimeToLive.of(12, TimeUnit.HOURS))
                 .description("description for pki engine");
 
-        final MountResponse response = vault.mounts().enable("pki/itest-path-1", MountType.PKI, payload);
+        final MountResponse response = vault.mounts().enable("pki-itest-path-1", MountType.PKI, payload);
 
         assertEquals(204, response.getRestResponse().getStatus());
     }
 
     @Test
     public void testEnableExceptionAlreadyExist() throws VaultException {
         expectedEx.expect(VaultException.class);
-        expectedEx.expectMessage("existing mount at");
+        expectedEx.expectMessage("path is already in use");
 
         final Vault vault = container.getRootVault();
 
@@ -76,7 +76,7 @@ public void testEnableExceptionAlreadyExist() throws VaultException {
                 .maxLeaseTtl(TimeToLive.of(168, TimeUnit.HOURS))
                 .description("description for pki engine");
 
-        vault.mounts().enable("pki/custom-path-1", MountType.PKI, payload);
+        vault.mounts().enable("pki-custom-path-1", MountType.PKI, payload);
     }
 
     @Test
@@ -91,7 +91,7 @@ public void testEnableExceptionNullType() throws VaultException {
                 .maxLeaseTtl(TimeToLive.of(30, TimeUnit.MINUTES))
                 .description("description for pki engine");
 
-        vault.mounts().enable("pki/itest-path-2", null, payload);
+        vault.mounts().enable("pki-itest-path-2", null, payload);
     }
 
     @Test
@@ -103,7 +103,7 @@ public void testEnableExceptionNullTimeUnit() throws VaultException {
         final MountPayload payload = new MountPayload()
                 .defaultLeaseTtl(TimeToLive.of(7, null));
 
-        vault.mounts().enable("pki/itest-path-3", MountType.PKI, payload);
+        vault.mounts().enable("pki-itest-path-3", MountType.PKI, payload);
     }
 
     @Test
@@ -116,14 +116,14 @@ public void testEnableExceptionInvalidTimeUnit() throws VaultException {
         final MountPayload payload = new MountPayload()
                 .defaultLeaseTtl(TimeToLive.of(7, TimeUnit.DAYS));
 
-        vault.mounts().enable("pki/itest-path-4", MountType.PKI, payload);
+        vault.mounts().enable("pki-itest-path-4", MountType.PKI, payload);
     }
 
     @Test
     public void testDisable() throws VaultException {
         final Vault vault = container.getRootVault();
 
-        final MountResponse response = vault.mounts().disable("pki/custom-path-3");
+        final MountResponse response = vault.mounts().disable("pki-custom-path-3");
 
         assertEquals(204, response.getRestResponse().getStatus());
     }
@@ -136,9 +136,9 @@ public void testRead() throws VaultException {
                 .defaultLeaseTtl(TimeToLive.of(360, TimeUnit.MINUTES))
                 .maxLeaseTtl(TimeToLive.of(360, TimeUnit.MINUTES));
 
-        vault.mounts().enable("pki/predefined-path-1", MountType.PKI, payload);
+        vault.mounts().enable("pki-predefined-path-1", MountType.PKI, payload);
 
-        final MountResponse response = vault.mounts().read("pki/predefined-path-1");
+        final MountResponse response = vault.mounts().read("pki-predefined-path-1");
         final Mount mount = response.getMount();
         final MountConfig config = mount.getConfig();
 
@@ -155,7 +155,7 @@ public void testReadExceptionNotFound() throws VaultException {
 
         final Vault vault = container.getRootVault();
 
-        vault.mounts().read("pki/non-existing-path");
+        vault.mounts().read("pki-non-existing-path");
     }
 
     @Test
@@ -166,17 +166,17 @@ public void testTune() throws VaultException {
                 .defaultLeaseTtl(TimeToLive.of(6, TimeUnit.HOURS))
                 .maxLeaseTtl(TimeToLive.of(6, TimeUnit.HOURS));
 
-        vault.mounts().enable("pki/predefined-path-2", MountType.PKI, enablePayload);
+        vault.mounts().enable("pki-predefined-path-2", MountType.PKI, enablePayload);
 
         final MountPayload tunePayload = new MountPayload()
                 .defaultLeaseTtl(TimeToLive.of(12, TimeUnit.HOURS))
                 .maxLeaseTtl(TimeToLive.of(12, TimeUnit.HOURS));
 
-        final MountResponse tuneResponse = vault.mounts().tune("pki/predefined-path-2", tunePayload);
+        final MountResponse tuneResponse = vault.mounts().tune("pki-predefined-path-2", tunePayload);
 
         assertEquals(204, tuneResponse.getRestResponse().getStatus());
 
-        final MountResponse response = vault.mounts().read("pki/predefined-path-2");
+        final MountResponse response = vault.mounts().read("pki-predefined-path-2");
         final Mount mount = response.getMount();
         final MountConfig config = mount.getConfig();
 
@@ -195,6 +195,6 @@ public void testTuneExceptionNotFound() throws VaultException {
                 .defaultLeaseTtl(TimeToLive.of(24, TimeUnit.HOURS))
                 .maxLeaseTtl(TimeToLive.of(24, TimeUnit.HOURS));
 
-        vault.mounts().tune("pki/non-existing-path", tunePayload);
+        vault.mounts().tune("pki-non-existing-path", tunePayload);
     }
 }
diff --git a/src/test-integration/java/com/bettercloud/vault/util/SSLUtils.java b/src/test-integration/java/com/bettercloud/vault/util/SSLUtils.java
@@ -179,7 +179,7 @@ private static X509Certificate generateCert(final KeyPair keyPair, final String
      */
     private static void writeCertToPem(final X509Certificate certificate, final String filename)
             throws CertificateEncodingException, FileNotFoundException {
-        final Base64.Encoder encoder = Base64.getEncoder();
+        final Base64.Encoder encoder = Base64.getMimeEncoder();
 
         final String certHeader = "-----BEGIN CERTIFICATE-----\n";
         final String certFooter = "\n-----END CERTIFICATE-----";
@@ -199,7 +199,7 @@ private static void writeCertToPem(final X509Certificate certificate, final Stri
      * @throws FileNotFoundException
      */
     private static void writePrivateKeyToPem(final PrivateKey key, final String filename) throws FileNotFoundException {
-        final Base64.Encoder encoder = Base64.getEncoder();
+        final Base64.Encoder encoder = Base64.getMimeEncoder();
 
         final String keyHeader = "-----BEGIN PRIVATE KEY-----\n";
         final String keyFooter = "\n-----END PRIVATE KEY-----";
diff --git a/src/test-integration/java/com/bettercloud/vault/util/VaultContainer.java b/src/test-integration/java/com/bettercloud/vault/util/VaultContainer.java
@@ -105,11 +105,12 @@ public void initAndUnsealVault() throws IOException, InterruptedException {
         // Initialize the Vault server
         final Container.ExecResult initResult = runCommand("vault", "operator", "init", "-ca-cert=" +
                 CONTAINER_CERT_PEMFILE, "-key-shares=1", "-key-threshold=1");
-        final String[] initLines = initResult.getStdout().split(System.lineSeparator());
-        this.unsealKey = initLines[0].replace("Unseal Key 1: ", "");
-        this.rootToken = initLines[2].replace("Initial Root Token: ", "");
+        final String stdout = initResult.getStdout().replaceAll(System.lineSeparator(), "").split("Vault initialized")[0];
+        final String[] tokens = stdout.split("Initial Root Token: ");
+        this.unsealKey = tokens[0].replace("Unseal Key 1: ", "");
+        this.rootToken = tokens[1];
 
-        System.out.println("Root token: " + rootToken.toString());
+        System.out.println("Root token: " + rootToken);
 
         // Unseal the Vault server
         runCommand("vault", "operator", "unseal", "-ca-cert=" + CONTAINER_CERT_PEMFILE, unsealKey);
@@ -173,6 +174,11 @@ public void setupBackendPki() throws IOException, InterruptedException {
 
         runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki", "pki");
         runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=other-pki", "pki");
+
+        runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki-custom-path-1", "pki");
+        runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki-custom-path-2", "pki");
+        runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki-custom-path-3", "pki");
+
         runCommand("vault", "write", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "pki/root/generate/internal",
                 "common_name=myvault.com", "ttl=99h");
     }
@@ -193,26 +199,13 @@ public void setupBackendCert() throws IOException, InterruptedException {
     }
 
     public void setEngineVersions() throws IOException, InterruptedException {
-        //Upgrade default secrets/ Engine to V2, set a new V1 secrets path at "kv-v1/"
+        // Upgrade default secrets/ Engine to V2, set a new V1 secrets path at "kv-v1/"
         runCommand("vault", "kv", "enable-versioning", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "secret/");
+        runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=secret", "-version=2", "kv");
         runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=kv-v1", "-version=1", "kv");
         runCommand("vault", "secrets", "enable", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=kv-v1-Upgrade-Test", "-version=1", "kv");
     }
     
-    /**
-     * Prepares the Vault server for testing of the Mounts backend (i.e. mounts the backend and enable test secret engines).
-     *
-     * @throws IOException
-     * @throws InterruptedException
-     */
-    public void setupBackendMounts() throws IOException, InterruptedException {
-        runCommand("vault", "auth", "-ca-cert=" + CONTAINER_CERT_PEMFILE, rootToken);
-
-        runCommand("vault", "mount", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki/custom-path-1", "pki");
-        runCommand("vault", "mount", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki/custom-path-2", "pki");
-        runCommand("vault", "mount", "-ca-cert=" + CONTAINER_CERT_PEMFILE, "-path=pki/custom-path-3", "pki");
-    }
-
     /**
      * <p>Constructs an instance of the Vault driver, providing maximum flexibility to control all options
      * explicitly.</p>
