test/check_task_visibility.sh - plugins/task - Git at Google

 #!/usr/bin/env bash
 #
 # Copyright (C) 2022 The Android Open Source Project
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 # http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.

 # Usage:
 # 1. All-Projects.git - must have 'Push' rights on refs/meta/config for test user
 # 2. All-Projects.git - must have 'viewTaskPaths' capability for test user
 # 3. All-Projects.git - must have 'accessDatabase' capability for test user
 # 4. All-Users.git - must have 'push' rights on refs/users/* for test user
 # 5. All-Users.git - must have 'push' rights on refs/users/${shardeduserid} for Registered Users
 # 6. All-Users.git - must have 'read' rights on refs/users/${shardeduserid} for Registered Users
 # 7. All-Users.git - must have 'create' rights on refs/users/${shardeduserid} for Registered Users
 # 8. All-Users.git - must deny 'read' rights on refs/* for Anonymous Users
 # 9. GERRIT_GIT_DIR environment variable must have the path to gerrit
 #    site's git directory (as group ref updates are done directly to git).

 readlink -f / &> /dev/null || readlink() { greadlink "$@" ; } # for MacOS
 MYDIR=$(dirname -- "$(readlink -f -- "$0")")
 MYPROG=$(basename -- "$0")

 source "$MYDIR/lib/lib_helper.sh"
 source "$MYDIR/lib/lib_md.sh"

 # Visibility tests cases are described using a markdown file.
 # Each file has a list of config files specified by file
 # markers. The initial state of task configs is created using
 # them. Only one of the config file has an inline diff. Gerrit
 # change is created by applying that diff to the specified file
 # marker and the expected json is asserted by using that change
 # as an input to the '--task-preview' switch.

 # The syntax for inline diff is similar to  diff --unified=MAX_INT.
 # All lines start with a leading space and if a specific line is
 # part of diff, we use diff indicators (+/-) instead of a leading
 # space.

 # Example input for all diff functions:
 #
 #  [root "Root Preview SECRET external"]
 #      applicable = is:open
 #      pass = True
 # -    subtask = Subtask APPLICABLE
 # +    subtasks-external = SECRET external
 #
 # +[external "SECRET external"]
 # +    user = {secret_user}
 # +    file = secret.config


 # Returns if a config has inline diff or not.
 diff_indicators_present() { # file_content
     echo "$1" | grep -q "^-\|^+"
 }

 # file_content_with_diff_indicators > file_content_with_diff_applied
 # out:
 #[root "Root Preview SECRET external"]
 #    applicable = is:open
 #    pass = True
 #    subtask = Subtask APPLICABLE
 diff_apply() {
     sed -e '/^-/d' -e 's/^.//'
 }

 # file_content_with_diff_indicators > file_content_with_diff_reverted
 # out:
 #[root "Root Preview SECRET external"]
 #    applicable = is:open
 #    pass = True
 #    subtasks-external = SECRET external
 #
 #[external "SECRET external"]
 #    user = {secret_user}
 #    file = secret.config
 diff_revert() {
     sed -e '/^+/d' -e 's/^.//'
 }

 config_ensure() { # config_file_path
     q git config --list -f "$1" || err "Invalid config file: $1"
 }

 get_remote() { # project > remote_url
     echo "ssh://$SERVER:$PORT/$(basename -- "$1")"
 }

 # Gets json from the preview doc and creates
 # expected json in workspace to assert later.
 create_expected_json() {
     local json=$(md_marker_content "$TEST_DOC" "json:")

     echo "$json" | remove_suites "non-secret" | \
       testdoc_2_pjson | ensure json_pp > "$EXPECTED_SECRET"
     echo "$json" | remove_suites "secret" | \
       testdoc_2_pjson | ensure json_pp > "$EXPECTED_NON_SECRET"
 }

 test_preview() { # preview_change_number
     query --task--all --task--preview "$1,1" "change:1" \
       | change_plugins 1 > "$ACTUAL_SECRET"
     query -l "$NON_SECRET_USER" --task--all --task--preview "$1,1" "change:1" \
       | change_plugins 1 > "$ACTUAL_NON_SECRET"

     ROOTS=$(jq -r '.plugins[].roots | .[].name' < "$EXPECTED_SECRET")
     results_suite "Visibility Secret Test" "$EXPECTED_SECRET" "$( < "$ACTUAL_SECRET" )"

     ROOTS=$(jq -r '.plugins[].roots | .[].name' < "$EXPECTED_NON_SECRET")
     results_suite "Visibility Non-Secret Test" "$EXPECTED_NON_SECRET" "$( < "$ACTUAL_NON_SECRET" )"
 }

 init_configs() {
     for marker in $(md_file_markers "$TEST_DOC") ; do
         local project="$OUT/$(md_file_marker_project "$marker")"
         local ref="$(md_file_marker_ref "$marker")"
         local file="$(md_file_marker_file "$marker")"
         local content="$(md_marker_content "$TEST_DOC" "$marker")"
         local tip_content

         q_setup setup_repo "$project" "$(get_remote "$project")" "$ref"
         mkdir -p "$(dirname -- "$project/$file")"

         if diff_indicators_present "$content" ; then
             CHANGE_FILE_MARKER=$marker
             CHANGE_CONTENT=$(echo "$content" | diff_apply)
             tip_content=$(echo "$content" | diff_revert)
         else
             tip_content=$content
         fi

         echo "$tip_content" > "$project/$file"
         config_ensure "$project/$file"
         if [[ "$ref" == refs/groups/* ]] ; then
             # As support for pushing a change to group refs [1] is not yet in any release,
             # push the update behind gerrit's back, directly into git.
             # [1] https://gerrit-review.googlesource.com/c/gerrit/+/390614
             q_setup update_repo "$project" "$GERRIT_GIT_DIR/All-Users.git" "$ref"
         else
             q_setup update_repo "$project" "$(get_remote "$project")" "$ref"
         fi
     done
 }

 test_change() {
     local project="$OUT/$(md_file_marker_project "$CHANGE_FILE_MARKER")"
     local ref="$(md_file_marker_ref "$CHANGE_FILE_MARKER")"
     local file="$(md_file_marker_file "$CHANGE_FILE_MARKER")"
     q_setup setup_repo "$project" "$(get_remote "$project")" "$ref"

     echo "$CHANGE_CONTENT"  > "$project/$file"
     config_ensure "$project/$file"
     local cnum=$(create_repo_change "$project" "$(get_remote "$project")" "$ref")

     create_expected_json
     test_preview "$cnum"
 }

 usage() { # [error_message]
     cat <<-EOF
 Usage:
     "$MYPROG" --server <gerrit_host> --non-secret-user <non-secret user>

     --help|-h                     help text
     --server|-s                   gerrit host
     --root-config-project         project containing the root task config
     --root-config-branch          branch containing the root task config
     --non-secret-user             user who doesn't have permission
                                   to view other user refs.
     --non-secret-group            non-secret group name
     --secret-group                secret group name
 EOF

     [ -n "$1" ] && { echo "Error: $1" ; exit 1 ; }
     exit 0
 }

 while (( "$#" )) ; do
     case "$1" in
         --help|-h)                usage ;;
         --server|-s)              shift ; SERVER=$1 ;;
         --root-config-project)    shift ; ROOT_CONFIG_PRJ=$1 ;;
         --root-config-branch)     shift ; ROOT_CONFIG_BRANCH=$1 ;;
         --non-secret-user)        shift ; NON_SECRET_USER=$1 ;;
         --non-secret-group)       shift ; NON_SECRET_GROUP_NAME=$1 ;;
         --secret-group)           shift ; SECRET_GROUP_NAME=$1 ;;
         *)                        usage "invalid argument $1" ;;
     esac
     shift
 done

 [ -z "$SERVER" ] && usage "You must specify --server"
 [ -z "$NON_SECRET_USER" ] && usage "You must specify --non-secret-user"
 [ -z "$NON_SECRET_GROUP_NAME" ] && usage "You must specify --non-secret-group"
 [ -z "$SECRET_GROUP_NAME" ] && usage "You must specify --secret-group"
 [ -z "$GERRIT_GIT_DIR" ] && usage "GERRIT_GIT_DIR environment variable not set"
 [ -z "$ROOT_CONFIG_PRJ" ] && ROOT_CONFIG_PRJ=All-Projects
 [ -z "$ROOT_CONFIG_BRANCH" ] && ROOT_CONFIG_BRANCH=refs/meta/config

 RESULT=0
 PORT=29418
 HTTP_PORT=8080
 OUT=$MYDIR/../target/preview
 EXPECTED_SECRET="$OUT/expected-secret"
 EXPECTED_NON_SECRET="$OUT/expected-non-secret"
 ACTUAL_SECRET="$OUT/actual-secret"
 ACTUAL_NON_SECRET="$OUT/actual-non-secret"
 TEST_DOC_DIR="$MYDIR/../src/main/resources/Documentation/test/task-preview/"

 declare -A USERS
 declare -A USER_REFS
 USERS["{secret_user}"]="$USER"
 USER_REFS["{secret_user_ref}"]="$(get_user_ref "$USER")"
 USERS["{non_secret_user}"]="$NON_SECRET_USER"
 USER_REFS["{non_secret_user_ref}"]="$(get_user_ref "$NON_SECRET_USER")"

 declare -A GROUP_EXPANDED_BY_PLACEHOLDER
 GROUP_EXPANDED_BY_PLACEHOLDER["{secret_group_name}"]="$SECRET_GROUP_NAME"
 GROUP_EXPANDED_BY_PLACEHOLDER["{sharded_secret_group_uuid}"]="$(get_sharded_group_uuid "$SECRET_GROUP_NAME")"
 GROUP_EXPANDED_BY_PLACEHOLDER["{non_secret_group_name}"]="$NON_SECRET_GROUP_NAME"
 GROUP_EXPANDED_BY_PLACEHOLDER["{sharded_non_secret_group_uuid}"]="$(get_sharded_group_uuid "$NON_SECRET_GROUP_NAME")"

 mkdir -p "$OUT"
 trap 'rm -rf "$OUT"' EXIT

 TESTS=(
 "new_root_with_original_with_external_secret_ref.md"
 "non-secret_ref_with_external_secret_ref.md"
 "root_with_external_non-secret_ref_with_external_secret_ref.md"
 "root_with_external_secret_ref.md"
 "non_root_with_subtask_from_root_task.md"
 "subtask_using_user_syntax/root_with_subtask_secret_ref.md"
 "subtask_using_user_syntax/root_with_subtask_non-secret_ref_with_subtask_secret_ref.md"
 "subtask_using_group_syntax/root_with_subtask_secret_ref.md"
 "subtask_using_group_syntax/root_with_subtask_non-secret_ref_with_subtask_secret_ref.md"
 )

 for test in "${TESTS[@]}" ; do
     TEST_DOC="$(replace_user_refs < "$TEST_DOC_DIR/$test" | replace_users | replace_groups | \
         replace_root_configs)"
     init_configs
     test_change
 done

 exit $RESULT
	#!/usr/bin/env bash
	#
	# Copyright (C) 2022 The Android Open Source Project
	#
	# Licensed under the Apache License, Version 2.0 (the "License");
	# you may not use this file except in compliance with the License.
	# You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS,
	# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	# See the License for the specific language governing permissions and
	# limitations under the License.

	# Usage:
	# 1. All-Projects.git - must have 'Push' rights on refs/meta/config for test user
	# 2. All-Projects.git - must have 'viewTaskPaths' capability for test user
	# 3. All-Projects.git - must have 'accessDatabase' capability for test user
	# 4. All-Users.git - must have 'push' rights on refs/users/* for test user
	# 5. All-Users.git - must have 'push' rights on refs/users/${shardeduserid} for Registered Users
	# 6. All-Users.git - must have 'read' rights on refs/users/${shardeduserid} for Registered Users
	# 7. All-Users.git - must have 'create' rights on refs/users/${shardeduserid} for Registered Users
	# 8. All-Users.git - must deny 'read' rights on refs/* for Anonymous Users
	# 9. GERRIT_GIT_DIR environment variable must have the path to gerrit
	# site's git directory (as group ref updates are done directly to git).

	readlink -f / &> /dev/null \|\| readlink() { greadlink "$@" ; } # for MacOS
	MYDIR=$(dirname -- "$(readlink -f -- "$0")")
	MYPROG=$(basename -- "$0")

	source "$MYDIR/lib/lib_helper.sh"
	source "$MYDIR/lib/lib_md.sh"

	# Visibility tests cases are described using a markdown file.
	# Each file has a list of config files specified by file
	# markers. The initial state of task configs is created using
	# them. Only one of the config file has an inline diff. Gerrit
	# change is created by applying that diff to the specified file
	# marker and the expected json is asserted by using that change
	# as an input to the '--task-preview' switch.

	# The syntax for inline diff is similar to diff --unified=MAX_INT.
	# All lines start with a leading space and if a specific line is
	# part of diff, we use diff indicators (+/-) instead of a leading
	# space.

	# Example input for all diff functions:
	#
	# [root "Root Preview SECRET external"]
	# applicable = is:open
	# pass = True
	# - subtask = Subtask APPLICABLE
	# + subtasks-external = SECRET external
	#
	# +[external "SECRET external"]
	# + user = {secret_user}
	# + file = secret.config


	# Returns if a config has inline diff or not.
	diff_indicators_present() { # file_content
	echo "$1" \| grep -q "^-\\|^+"
	}

	# file_content_with_diff_indicators > file_content_with_diff_applied
	# out:
	#[root "Root Preview SECRET external"]
	# applicable = is:open
	# pass = True
	# subtask = Subtask APPLICABLE
	diff_apply() {
	sed -e '/^-/d' -e 's/^.//'
	}

	# file_content_with_diff_indicators > file_content_with_diff_reverted
	# out:
	#[root "Root Preview SECRET external"]
	# applicable = is:open
	# pass = True
	# subtasks-external = SECRET external
	#
	#[external "SECRET external"]
	# user = {secret_user}
	# file = secret.config
	diff_revert() {
	sed -e '/^+/d' -e 's/^.//'
	}

	config_ensure() { # config_file_path
	q git config --list -f "$1" \|\| err "Invalid config file: $1"
	}

	get_remote() { # project > remote_url
	echo "ssh://$SERVER:$PORT/$(basename -- "$1")"
	}

	# Gets json from the preview doc and creates
	# expected json in workspace to assert later.
	create_expected_json() {
	local json=$(md_marker_content "$TEST_DOC" "json:")

	echo "$json" \| remove_suites "non-secret" \| \
	testdoc_2_pjson \| ensure json_pp > "$EXPECTED_SECRET"
	echo "$json" \| remove_suites "secret" \| \
	testdoc_2_pjson \| ensure json_pp > "$EXPECTED_NON_SECRET"
	}

	test_preview() { # preview_change_number
	query --task--all --task--preview "$1,1" "change:1" \
	\| change_plugins 1 > "$ACTUAL_SECRET"
	query -l "$NON_SECRET_USER" --task--all --task--preview "$1,1" "change:1" \
	\| change_plugins 1 > "$ACTUAL_NON_SECRET"

	ROOTS=$(jq -r '.plugins[].roots \| .[].name' < "$EXPECTED_SECRET")
	results_suite "Visibility Secret Test" "$EXPECTED_SECRET" "$( < "$ACTUAL_SECRET" )"

	ROOTS=$(jq -r '.plugins[].roots \| .[].name' < "$EXPECTED_NON_SECRET")
	results_suite "Visibility Non-Secret Test" "$EXPECTED_NON_SECRET" "$( < "$ACTUAL_NON_SECRET" )"
	}

	init_configs() {
	for marker in $(md_file_markers "$TEST_DOC") ; do
	local project="$OUT/$(md_file_marker_project "$marker")"
	local ref="$(md_file_marker_ref "$marker")"
	local file="$(md_file_marker_file "$marker")"
	local content="$(md_marker_content "$TEST_DOC" "$marker")"
	local tip_content

	q_setup setup_repo "$project" "$(get_remote "$project")" "$ref"
	mkdir -p "$(dirname -- "$project/$file")"

	if diff_indicators_present "$content" ; then
	CHANGE_FILE_MARKER=$marker
	CHANGE_CONTENT=$(echo "$content" \| diff_apply)
	tip_content=$(echo "$content" \| diff_revert)
	else
	tip_content=$content
	fi

	echo "$tip_content" > "$project/$file"
	config_ensure "$project/$file"
	if [[ "$ref" == refs/groups/* ]] ; then
	# As support for pushing a change to group refs [1] is not yet in any release,
	# push the update behind gerrit's back, directly into git.
	# [1] https://gerrit-review.googlesource.com/c/gerrit/+/390614
	q_setup update_repo "$project" "$GERRIT_GIT_DIR/All-Users.git" "$ref"
	else
	q_setup update_repo "$project" "$(get_remote "$project")" "$ref"
	fi
	done
	}

	test_change() {
	local project="$OUT/$(md_file_marker_project "$CHANGE_FILE_MARKER")"
	local ref="$(md_file_marker_ref "$CHANGE_FILE_MARKER")"
	local file="$(md_file_marker_file "$CHANGE_FILE_MARKER")"
	q_setup setup_repo "$project" "$(get_remote "$project")" "$ref"

	echo "$CHANGE_CONTENT" > "$project/$file"
	config_ensure "$project/$file"
	local cnum=$(create_repo_change "$project" "$(get_remote "$project")" "$ref")

	create_expected_json
	test_preview "$cnum"
	}

	usage() { # [error_message]
	cat <<-EOF
	Usage:
	"$MYPROG" --server <gerrit_host> --non-secret-user <non-secret user>

	--help\|-h help text
	--server\|-s gerrit host
	--root-config-project project containing the root task config
	--root-config-branch branch containing the root task config
	--non-secret-user user who doesn't have permission
	to view other user refs.
	--non-secret-group non-secret group name
	--secret-group secret group name
	EOF

	[ -n "$1" ] && { echo "Error: $1" ; exit 1 ; }
	exit 0
	}

	while (( "$#" )) ; do
	case "$1" in
	--help\|-h) usage ;;
	--server\|-s) shift ; SERVER=$1 ;;
	--root-config-project) shift ; ROOT_CONFIG_PRJ=$1 ;;
	--root-config-branch) shift ; ROOT_CONFIG_BRANCH=$1 ;;
	--non-secret-user) shift ; NON_SECRET_USER=$1 ;;
	--non-secret-group) shift ; NON_SECRET_GROUP_NAME=$1 ;;
	--secret-group) shift ; SECRET_GROUP_NAME=$1 ;;
	*) usage "invalid argument $1" ;;
	esac
	shift
	done

	[ -z "$SERVER" ] && usage "You must specify --server"
	[ -z "$NON_SECRET_USER" ] && usage "You must specify --non-secret-user"
	[ -z "$NON_SECRET_GROUP_NAME" ] && usage "You must specify --non-secret-group"
	[ -z "$SECRET_GROUP_NAME" ] && usage "You must specify --secret-group"
	[ -z "$GERRIT_GIT_DIR" ] && usage "GERRIT_GIT_DIR environment variable not set"
	[ -z "$ROOT_CONFIG_PRJ" ] && ROOT_CONFIG_PRJ=All-Projects
	[ -z "$ROOT_CONFIG_BRANCH" ] && ROOT_CONFIG_BRANCH=refs/meta/config

	RESULT=0
	PORT=29418
	HTTP_PORT=8080
	OUT=$MYDIR/../target/preview
	EXPECTED_SECRET="$OUT/expected-secret"
	EXPECTED_NON_SECRET="$OUT/expected-non-secret"
	ACTUAL_SECRET="$OUT/actual-secret"
	ACTUAL_NON_SECRET="$OUT/actual-non-secret"
	TEST_DOC_DIR="$MYDIR/../src/main/resources/Documentation/test/task-preview/"

	declare -A USERS
	declare -A USER_REFS
	USERS["{secret_user}"]="$USER"
	USER_REFS["{secret_user_ref}"]="$(get_user_ref "$USER")"
	USERS["{non_secret_user}"]="$NON_SECRET_USER"
	USER_REFS["{non_secret_user_ref}"]="$(get_user_ref "$NON_SECRET_USER")"

	declare -A GROUP_EXPANDED_BY_PLACEHOLDER
	GROUP_EXPANDED_BY_PLACEHOLDER["{secret_group_name}"]="$SECRET_GROUP_NAME"
	GROUP_EXPANDED_BY_PLACEHOLDER["{sharded_secret_group_uuid}"]="$(get_sharded_group_uuid "$SECRET_GROUP_NAME")"
	GROUP_EXPANDED_BY_PLACEHOLDER["{non_secret_group_name}"]="$NON_SECRET_GROUP_NAME"
	GROUP_EXPANDED_BY_PLACEHOLDER["{sharded_non_secret_group_uuid}"]="$(get_sharded_group_uuid "$NON_SECRET_GROUP_NAME")"

	mkdir -p "$OUT"
	trap 'rm -rf "$OUT"' EXIT

	TESTS=(
	"new_root_with_original_with_external_secret_ref.md"
	"non-secret_ref_with_external_secret_ref.md"
	"root_with_external_non-secret_ref_with_external_secret_ref.md"
	"root_with_external_secret_ref.md"
	"non_root_with_subtask_from_root_task.md"
	"subtask_using_user_syntax/root_with_subtask_secret_ref.md"
	"subtask_using_user_syntax/root_with_subtask_non-secret_ref_with_subtask_secret_ref.md"
	"subtask_using_group_syntax/root_with_subtask_secret_ref.md"
	"subtask_using_group_syntax/root_with_subtask_non-secret_ref_with_subtask_secret_ref.md"
	)

	for test in "${TESTS[@]}" ; do
	TEST_DOC="$(replace_user_refs < "$TEST_DOC_DIR/$test" \| replace_users \| replace_groups \| \
	replace_root_configs)"
	init_configs
	test_change
	done

	exit $RESULT