forked from cloud-custodian/cloud-custodian
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtest_s3crypt.py
103 lines (87 loc) · 3.08 KB
/
test_s3crypt.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
# Copyright The Cloud Custodian Authors.
# SPDX-License-Identifier: Apache-2.0
import io
import json
import os
import tempfile
from urllib.parse import quote_plus
from unittest import mock
from unittest import TestCase
from c7n.resources import s3
from c7n.ufuncs import s3crypt
from .common import BaseTest
class TestS3Crypt(TestCase):
def setUp(self):
self.old_dir = os.getcwd()
os.chdir(tempfile.gettempdir())
self.config_data = {"test": "data", "large": False}
with open("config.json", "w") as conf:
json.dump(self.config_data, conf)
def tearDown(self):
os.remove("config.json")
os.chdir(self.old_dir)
def test_init(self):
s3crypt.init()
self.assertEqual(s3crypt.config, self.config_data)
# Run a second time to ensure it is idempotent
s3crypt.init()
self.assertEqual(s3crypt.config, self.config_data)
class TestS3CryptEvent(BaseTest):
@mock.patch("sys.stdout", new_callable=io.StringIO)
def test_s3_event_simple(self, mock_stdout):
self.patch(s3, "S3_AUGMENT_TABLE", [])
session_factory = self.replay_flight_data("test_s3_encrypt")
client = session_factory().client("s3")
self.patch(s3crypt, "s3", client)
event = {
"Records": [
{
"s3": {
"bucket": {"name": "test-bucket"},
"object": {"key": quote_plus("test-key"), "size": 42},
}
}
]
}
s3crypt.process_event(event, {})
@mock.patch("sys.stdout", new_callable=io.StringIO)
def test_s3_event_unsafe_key(self, mock_stdout):
self.patch(s3, "S3_AUGMENT_TABLE", [])
session_factory = self.replay_flight_data("test_s3_encrypt")
client = session_factory().client("s3")
self.patch(s3crypt, "s3", client)
event = {
"Records": [
{
"s3": {
"bucket": {"name": "test-bucket"},
"object": {
"key": quote_plus(
"/test000/!-_.*'()/&@:,$=+%2b?;/ /whatever"
),
"size": 42,
},
}
}
]
}
s3crypt.process_event(event, {})
@mock.patch("sys.stdout", new_callable=io.StringIO)
def test_s3_event_version(self, mock_stdout):
self.patch(s3, "S3_AUGMENT_TABLE", [])
session_factory = self.replay_flight_data("test_s3_encrypt")
client = session_factory().client("s3")
self.patch(s3crypt, "s3", client)
event = {
"Records": [
{
"s3": {
"bucket": {"name": "test-bucket"},
"object": {
"key": quote_plus("test-key"), "size": 42, "versionId": "99"
},
}
}
]
}
s3crypt.process_event(event, {})