package provider import ( "context" "fmt" "os" "path/filepath" "reflect" "regexp" "strings" "testing" "github.com/docker/docker/api/types" "github.com/docker/docker/api/types/container" "github.com/docker/go-units" "github.com/hashicorp/terraform-plugin-sdk/v2/diag" "github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource" "github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/v2/terraform" ) func TestAccDockerRegistryImageResource_mapping(t *testing.T) { assert := func(condition bool, msg string) { if !condition { t.Errorf("assertion failed: wrong build parameter %s", msg) } } dummyProvider := New("dev")() dummyResource := dummyProvider.ResourcesMap["docker_registry_image"] dummyResource.CreateContext = func(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics { build := d.Get("build").([]interface{})[0].(map[string]interface{}) options := createImageBuildOptions(build) assert(options.SuppressOutput == true, "SuppressOutput") assert(options.RemoteContext == "fooRemoteContext", "RemoteContext") assert(options.NoCache == true, "NoCache") assert(options.Remove == true, "Remove") assert(options.ForceRemove == true, "ForceRemove") assert(options.PullParent == true, "PullParent") assert(options.Isolation == container.Isolation("hyperv"), "Isolation") assert(options.CPUSetCPUs == "fooCpuSetCpus", "CPUSetCPUs") assert(options.CPUSetMems == "fooCpuSetMems", "CPUSetMems") assert(options.CPUShares == int64(4), "CPUShares") assert(options.CPUQuota == int64(5), "CPUQuota") assert(options.CPUPeriod == int64(6), "CPUPeriod") assert(options.Memory == int64(1), "Memory") assert(options.MemorySwap == int64(2), "MemorySwap") assert(options.CgroupParent == "fooCgroupParent", "CgroupParent") assert(options.NetworkMode == "fooNetworkMode", "NetworkMode") assert(options.ShmSize == int64(3), "ShmSize") assert(options.Dockerfile == "fooDockerfile", "Dockerfile") assert(len(options.Ulimits) == 1, "Ulimits") assert(reflect.DeepEqual(*options.Ulimits[0], units.Ulimit{ Name: "foo", Hard: int64(1), Soft: int64(2), }), "Ulimits") assert(len(options.BuildArgs) == 1, "BuildArgs") assert(*options.BuildArgs["HTTP_PROXY"] == "http://10.20.30.2:1234", "BuildArgs") assert(len(options.AuthConfigs) == 1, "AuthConfigs") assert(reflect.DeepEqual(options.AuthConfigs["foo.host"], types.AuthConfig{ Username: "fooUserName", Password: "fooPassword", Auth: "fooAuth", Email: "fooEmail", ServerAddress: "fooServerAddress", IdentityToken: "fooIdentityToken", RegistryToken: "fooRegistryToken", }), "AuthConfigs") assert(reflect.DeepEqual(options.Labels, map[string]string{"foo": "bar"}), "Labels") assert(options.Squash == true, "Squash") assert(reflect.DeepEqual(options.CacheFrom, []string{"fooCacheFrom", "barCacheFrom"}), "CacheFrom") assert(reflect.DeepEqual(options.SecurityOpt, []string{"fooSecurityOpt", "barSecurityOpt"}), "SecurityOpt") assert(reflect.DeepEqual(options.ExtraHosts, []string{"fooExtraHost", "barExtraHost"}), "ExtraHosts") assert(options.Target == "fooTarget", "Target") assert(options.SessionID == "fooSessionId", "SessionID") assert(options.Platform == "fooPlatform", "Platform") assert(options.Version == types.BuilderVersion("1"), "Version") assert(options.BuildID == "fooBuildId", "BuildID") // output d.SetId("foo") d.Set("sha256_digest", "bar") return nil } dummyResource.UpdateContext = func(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics { return nil } dummyResource.DeleteContext = func(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics { return nil } dummyResource.ReadContext = func(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics { d.Set("sha256_digest", "bar") return nil } resource.Test(t, resource.TestCase{ PreCheck: func() { testAccPreCheck(t) }, ProviderFactories: map[string]func() (*schema.Provider, error){ "docker": func() (*schema.Provider, error) { return dummyProvider, nil }, }, Steps: []resource.TestStep{ { Config: testBuildDockerRegistryImageMappingConfig, Check: resource.ComposeTestCheckFunc( resource.TestCheckResourceAttrSet("docker_registry_image.foo", "sha256_digest"), ), }, }, }) } func TestAccDockerRegistryImageResource_build(t *testing.T) { pushOptions := createPushImageOptions("127.0.0.1:15000/tftest-dockerregistryimage:1.0") wd, _ := os.Getwd() context := strings.ReplaceAll((filepath.Join(wd, "..", "..", "scripts", "testing", "docker_registry_image_context")), "\\", "\\\\") resource.Test(t, resource.TestCase{ PreCheck: func() { testAccPreCheck(t) }, ProviderFactories: providerFactories, CheckDestroy: testDockerRegistryImageNotInRegistry(pushOptions), Steps: []resource.TestStep{ { Config: fmt.Sprintf(testBuildDockerRegistryImageNoKeepConfig, pushOptions.Registry, pushOptions.Name, context), Check: resource.ComposeTestCheckFunc( resource.TestCheckResourceAttrSet("docker_registry_image.foo", "sha256_digest"), ), }, }, }) } func TestAccDockerRegistryImageResource_buildAndKeep(t *testing.T) { t.Skip("mavogel: need to check") pushOptions := createPushImageOptions("127.0.0.1:15000/tftest-dockerregistryimage:1.0") wd, _ := os.Getwd() context := strings.ReplaceAll(filepath.Join(wd, "..", "..", "scripts", "testing", "docker_registry_image_context"), "\\", "\\\\") resource.Test(t, resource.TestCase{ PreCheck: func() { testAccPreCheck(t) }, ProviderFactories: providerFactories, CheckDestroy: testDockerRegistryImageInRegistry(pushOptions, true), Steps: []resource.TestStep{ { Config: fmt.Sprintf(testBuildDockerRegistryImageKeepConfig, pushOptions.Registry, pushOptions.Name, context), Check: resource.ComposeTestCheckFunc( resource.TestCheckResourceAttrSet("docker_registry_image.foo", "sha256_digest"), ), }, }, }) } func TestAccDockerRegistryImageResource_pushMissingImage(t *testing.T) { resource.Test(t, resource.TestCase{ PreCheck: func() { testAccPreCheck(t) }, ProviderFactories: providerFactories, Steps: []resource.TestStep{ { Config: testDockerRegistryImagePushMissingConfig, ExpectError: regexp.MustCompile("An image does not exist locally"), }, }, }) } func testDockerRegistryImageNotInRegistry(pushOpts internalPushImageOptions) resource.TestCheckFunc { return func(s *terraform.State) error { providerConfig := testAccProvider.Meta().(*ProviderConfig) username, password := getDockerRegistryImageRegistryUserNameAndPassword(pushOpts, providerConfig) digest, _ := getImageDigestWithFallback(pushOpts, username, password) if digest != "" { return fmt.Errorf("image found") } return nil } } // TODO mavogel //nolint:unused func testDockerRegistryImageInRegistry(pushOpts internalPushImageOptions, cleanup bool) resource.TestCheckFunc { return func(s *terraform.State) error { providerConfig := testAccProvider.Meta().(*ProviderConfig) username, password := getDockerRegistryImageRegistryUserNameAndPassword(pushOpts, providerConfig) digest, err := getImageDigestWithFallback(pushOpts, username, password) if err != nil || len(digest) < 1 { return fmt.Errorf("image not found") } if cleanup { err := deleteDockerRegistryImage(pushOpts, digest, username, password, false) if err != nil { return fmt.Errorf("Unable to remove test image. %s", err) } } return nil } } const testBuildDockerRegistryImageMappingConfig = ` resource "docker_registry_image" "foo" { name = "localhost:15000/foo:1.0" build { suppress_output = true remote_context = "fooRemoteContext" no_cache = true remove = true force_remove = true pull_parent = true isolation = "hyperv" cpu_set_cpus = "fooCpuSetCpus" cpu_set_mems = "fooCpuSetMems" cpu_shares = 4 cpu_quota = 5 cpu_period = 6 memory = 1 memory_swap = 2 cgroup_parent = "fooCgroupParent" network_mode = "fooNetworkMode" shm_size = 3 dockerfile = "fooDockerfile" ulimit { name = "foo" hard = 1 soft = 2 } auth_config { host_name = "foo.host" user_name = "fooUserName" password = "fooPassword" auth = "fooAuth" email = "fooEmail" server_address = "fooServerAddress" identity_token = "fooIdentityToken" registry_token = "fooRegistryToken" } build_args = { "HTTP_PROXY" = "http://10.20.30.2:1234" } context = "context" labels = { foo = "bar" } squash = true cache_from = ["fooCacheFrom", "barCacheFrom"] security_opt = ["fooSecurityOpt", "barSecurityOpt"] extra_hosts = ["fooExtraHost", "barExtraHost"] target = "fooTarget" session_id = "fooSessionId" platform = "fooPlatform" version = "1" build_id = "fooBuildId" } } ` const testBuildDockerRegistryImageNoKeepConfig = ` provider "docker" { alias = "private" registry_auth { address = "%s" } } resource "docker_registry_image" "foo" { provider = "docker.private" name = "%s" build { context = "%s" remove = true force_remove = true no_cache = true } } ` const testBuildDockerRegistryImageKeepConfig = ` provider "docker" { alias = "private" registry_auth { address = "%s" } } resource "docker_registry_image" "foo" { provider = "docker.private" name = "%s" keep_remotely = true build { context = "%s" remove = true force_remove = true no_cache = true } } ` const testDockerRegistryImagePushMissingConfig = ` provider "docker" { alias = "private" registry_auth { address = "127.0.0.1:15000" } } resource "docker_registry_image" "foo" { provider = "docker.private" name = "127.0.0.1:15000/nonexistent:1.0" } `