mirror of
https://dev.azure.com/schwarzit/schwarzit.stackit-public/_git/audit-go
synced 2026-02-08 09:07:26 +00:00
101 lines
5 KiB
Go
101 lines
5 KiB
Go
package api
|
|
|
|
import (
|
|
"context"
|
|
"dev.azure.com/schwarzit/schwarzit.stackit-core-platform/audit-go.git/audit/utils"
|
|
auditV1 "dev.azure.com/schwarzit/schwarzit.stackit-core-platform/audit-go.git/gen/go/audit/v1"
|
|
"github.com/bufbuild/protovalidate-go"
|
|
"github.com/google/uuid"
|
|
"github.com/stretchr/testify/assert"
|
|
"go.opentelemetry.io/otel"
|
|
"testing"
|
|
)
|
|
|
|
func Test_LogEvent(t *testing.T) {
|
|
|
|
api, _ := NewMockAuditApi()
|
|
sequenceNumberGenerator := utils.NewDefaultSequenceNumberGenerator()
|
|
tracer := otel.Tracer("test-tracer")
|
|
|
|
t.Run("new format", func(t *testing.T) {
|
|
eventBuilder := NewAuditEventBuilder(api, sequenceNumberGenerator, tracer, "demo-service", uuid.NewString(), "eu01")
|
|
|
|
cloudEvent, _, _, err := eventBuilder.
|
|
WithRequiredApiRequest(ApiRequest{
|
|
Body: nil,
|
|
Header: map[string][]string{"user-agent": {"custom"}, "authorization": {"Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjFlOGJlZjc1LWRmY2QtNGE3My1hMzkxLTU0YTdhZjU3YTdkNiIsInR5cCI6IkpXVCJ9.eyJhdWQiOlsic3RhY2tpdC1wb3J0YWwtbG9naW4tZGV2LWNsaWVudC1pZCJdLCJjbGllbnRfaWQiOiJzdGFja2l0LXBvcnRhbC1sb2dpbi1kZXYtY2xpZW50LWlkIiwiZW1haWwiOiJDaHJpc3RpYW4uU2NoYWlibGVAbm92YXRlYy1nbWJoLmRlIiwiZW1haWxfdmVyaWZpZWQiOnRydWUsImV4cCI6MTcyMjU5MDM2NywiaWF0IjoxNzIyNTg2NzY3LCJpc3MiOiJodHRwczovL2FjY291bnRzLmRldi5zdGFja2l0LmNsb3VkIiwianRpIjoiZDczYTY3YWMtZDFlYy00YjU1LTk5ZDQtZTk1MzI3NWYwMjJhIiwibmJmIjoxNzIyNTg2NzY3LCJzY29wZSI6Im9wZW5pZCBlbWFpbCIsInN1YiI6ImNkOTRmMDFhLWRmMmUtNDQ1Ni05MDJlLTQ4ZjVlNTdmMGI2MyJ9.ajhjYbC5l5g7un9NSheoAwBT83YcZM91rH4DJxPTDsB78HzIVrmaKTPrK3AI_E1THlD2Z3_ot9nFr_eX7XcwWp_ZBlataKmakdXlAmeb4xSMGNYefIfzV_3w9ZZAZ66yoeTrtn8dUx5ezquenCYpctB1NcccmK4U09V0kNcq9dFcfF3Sg9YilF3orUCR0ql1d9RnOs3EiFZuUpdBEkyoVsAdSh2P-PRbNViR_FgCcAJem97TsN5CQc9RlvKYe4sYKgqQoqa2GDVi9Niiw3fe1V8SCnROYcpkOzBBWdvuzFMBUjln3uOogYVOz93xkmImV6jidgyQ70fLt-eDUmZZfg"}},
|
|
Host: "localhost",
|
|
Method: "GET",
|
|
Scheme: "https",
|
|
Proto: "HTTP/1.1",
|
|
URL: RequestUrl{
|
|
Path: "/",
|
|
RawQuery: nil,
|
|
},
|
|
}).
|
|
WithRequiredObjectId(uuid.NewString()).
|
|
WithRequiredObjectType(SingularTypeProject).
|
|
WithRequiredOperation("stackit.demo-service.v1.project.update").
|
|
WithRequiredRequestClientIp("0.0.0.0").
|
|
Build(context.Background(), eventBuilder.NextSequenceNumber())
|
|
|
|
assert.NoError(t, err)
|
|
assert.NoError(t, LogEvent(cloudEvent))
|
|
})
|
|
|
|
t.Run("legacy format", func(t *testing.T) {
|
|
object_id := uuid.NewString()
|
|
entry, err := NewAuditLogEntryBuilder().
|
|
WithRequiredApiRequest(ApiRequest{
|
|
Body: nil,
|
|
Header: map[string][]string{"user-agent": {"custom"}, "authorization": {"Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjFlOGJlZjc1LWRmY2QtNGE3My1hMzkxLTU0YTdhZjU3YTdkNiIsInR5cCI6IkpXVCJ9.eyJhdWQiOlsic3RhY2tpdC1wb3J0YWwtbG9naW4tZGV2LWNsaWVudC1pZCJdLCJjbGllbnRfaWQiOiJzdGFja2l0LXBvcnRhbC1sb2dpbi1kZXYtY2xpZW50LWlkIiwiZW1haWwiOiJDaHJpc3RpYW4uU2NoYWlibGVAbm92YXRlYy1nbWJoLmRlIiwiZW1haWxfdmVyaWZpZWQiOnRydWUsImV4cCI6MTcyMjU5MDM2NywiaWF0IjoxNzIyNTg2NzY3LCJpc3MiOiJodHRwczovL2FjY291bnRzLmRldi5zdGFja2l0LmNsb3VkIiwianRpIjoiZDczYTY3YWMtZDFlYy00YjU1LTk5ZDQtZTk1MzI3NWYwMjJhIiwibmJmIjoxNzIyNTg2NzY3LCJzY29wZSI6Im9wZW5pZCBlbWFpbCIsInN1YiI6ImNkOTRmMDFhLWRmMmUtNDQ1Ni05MDJlLTQ4ZjVlNTdmMGI2MyJ9.ajhjYbC5l5g7un9NSheoAwBT83YcZM91rH4DJxPTDsB78HzIVrmaKTPrK3AI_E1THlD2Z3_ot9nFr_eX7XcwWp_ZBlataKmakdXlAmeb4xSMGNYefIfzV_3w9ZZAZ66yoeTrtn8dUx5ezquenCYpctB1NcccmK4U09V0kNcq9dFcfF3Sg9YilF3orUCR0ql1d9RnOs3EiFZuUpdBEkyoVsAdSh2P-PRbNViR_FgCcAJem97TsN5CQc9RlvKYe4sYKgqQoqa2GDVi9Niiw3fe1V8SCnROYcpkOzBBWdvuzFMBUjln3uOogYVOz93xkmImV6jidgyQ70fLt-eDUmZZfg"}},
|
|
Host: "localhost",
|
|
Method: "GET",
|
|
Scheme: "https",
|
|
Proto: "HTTP/1.1",
|
|
URL: RequestUrl{
|
|
Path: "/",
|
|
RawQuery: nil,
|
|
},
|
|
}).
|
|
WithRequiredLocation("eu01").
|
|
WithRequiredObjectId(object_id).
|
|
WithRequiredObjectType(SingularTypeProject).
|
|
WithRequiredOperation("stackit.demo-service.v1.project.update").
|
|
WithRequiredRequestClientIp("0.0.0.0").
|
|
WithRequiredServiceName("demo-service").
|
|
WithRequiredWorkerId(uuid.NewString()).
|
|
Build(context.Background(), SequenceNumber(1))
|
|
assert.NoError(t, err)
|
|
|
|
validator, err := protovalidate.New()
|
|
assert.NoError(t, err)
|
|
var protoValidator ProtobufValidator = validator
|
|
|
|
routableIdentifier := RoutableIdentifier{
|
|
Identifier: object_id,
|
|
Type: SingularTypeProject,
|
|
}
|
|
|
|
routableEvent, err := validateAndSerializePartially(&protoValidator, entry, auditV1.Visibility_VISIBILITY_PUBLIC, &routableIdentifier)
|
|
assert.NoError(t, err)
|
|
|
|
legacyBytes, err := convertAndSerializeIntoLegacyFormat(entry, routableEvent)
|
|
assert.NoError(t, err)
|
|
|
|
cloudEvent := CloudEvent{
|
|
SpecVersion: "1.0",
|
|
Source: entry.ProtoPayload.ServiceName,
|
|
Id: entry.InsertId,
|
|
Time: entry.ProtoPayload.RequestMetadata.RequestAttributes.Time.AsTime(),
|
|
DataContentType: ContentTypeCloudEventsJson,
|
|
DataType: DataTypeLegacyAuditEventV1,
|
|
Subject: entry.ProtoPayload.ResourceName,
|
|
Data: legacyBytes,
|
|
TraceParent: nil,
|
|
TraceState: nil,
|
|
}
|
|
|
|
assert.NoError(t, LogEvent(&cloudEvent))
|
|
})
|
|
}
|