[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com> Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com> Co-authored-by: Thomas Avery <tavery@bitwarden.com> Co-authored-by: Colton Hurst <colton@coltonhurst.com>
2025-06-30 07:36:14 -05:00 · 2023-01-13 15:02:53 +01:00
parent 09e524c9a2
commit 1f0fc43278
188 changed files with 21346 additions and 329 deletions
--- a/test/Api.Test/Controllers/ProjectsControllerTests.cs
+++ b/test/Api.Test/Controllers/ProjectsControllerTests.cs
@ -0,0 +1,42 @@
+using Bit.Api.Controllers;
+using Bit.Core.Entities;
+using Bit.Core.SecretManagerFeatures.Projects.Interfaces;
+using Bit.Core.Test.AutoFixture.ProjectsFixture;
+using Bit.Test.Common.AutoFixture;
+using Bit.Test.Common.AutoFixture.Attributes;
+using NSubstitute;
+using Xunit;
+
+namespace Bit.Api.Test.Controllers;
+
+[ControllerCustomize(typeof(ProjectsController))]
+[SutProviderCustomize]
+[ProjectCustomize]
+[JsonDocumentCustomize]
+public class ProjectsControllerTests
+{
+    [Theory]
+    [BitAutoData]
+    public async void BulkDeleteProjects_Success(SutProvider<ProjectsController> sutProvider, List<Project> data)
+    {
+        var ids = data.Select(project => project.Id).ToList();
+        var mockResult = new List<Tuple<Project, string>>();
+        foreach (var project in data)
+        {
+            mockResult.Add(new Tuple<Project, string>(project, ""));
+        }
+        sutProvider.GetDependency<IDeleteProjectCommand>().DeleteProjects(ids).ReturnsForAnyArgs(mockResult);
+
+        var results = await sutProvider.Sut.BulkDeleteProjectsAsync(ids);
+        await sutProvider.GetDependency<IDeleteProjectCommand>().Received(1)
+                     .DeleteProjects(Arg.Is(ids));
+        Assert.Equal(data.Count, results.Data.Count());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void BulkDeleteProjects_NoGuids_ThrowsArgumentNullException(SutProvider<ProjectsController> sutProvider)
+    {
+        await Assert.ThrowsAsync<ArgumentNullException>(() => sutProvider.Sut.BulkDeleteProjectsAsync(new List<Guid>()));
+    }
+}
--- a/test/Api.Test/Controllers/SecretsControllerTests.cs
+++ b/test/Api.Test/Controllers/SecretsControllerTests.cs
@ -0,0 +1,114 @@
+using Bit.Api.Controllers;
+using Bit.Api.SecretManagerFeatures.Models.Request;
+using Bit.Core.Entities;
+using Bit.Core.Exceptions;
+using Bit.Core.Repositories;
+using Bit.Core.SecretManagerFeatures.Secrets.Interfaces;
+using Bit.Core.Test.AutoFixture.SecretsFixture;
+using Bit.Test.Common.AutoFixture;
+using Bit.Test.Common.AutoFixture.Attributes;
+using Bit.Test.Common.Helpers;
+using NSubstitute;
+using Xunit;
+
+namespace Bit.Api.Test.Controllers;
+
+[ControllerCustomize(typeof(SecretsController))]
+[SutProviderCustomize]
+[JsonDocumentCustomize]
+[SecretCustomize]
+public class SecretsControllerTests
+{
+    [Theory]
+    [BitAutoData]
+    public async void GetSecretsByOrganization_ReturnsEmptyList(SutProvider<SecretsController> sutProvider, Guid id)
+    {
+        var result = await sutProvider.Sut.GetSecretsByOrganizationAsync(id);
+
+        await sutProvider.GetDependency<ISecretRepository>().Received(1)
+                     .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(id)));
+
+        Assert.Empty(result.Secrets);
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void GetSecret_NotFound(SutProvider<SecretsController> sutProvider)
+    {
+        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetSecretAsync(Guid.NewGuid()));
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void GetSecret_Success(SutProvider<SecretsController> sutProvider, Secret resultSecret)
+    {
+        sutProvider.GetDependency<ISecretRepository>().GetByIdAsync(default).ReturnsForAnyArgs(resultSecret);
+
+        var result = await sutProvider.Sut.GetSecretAsync(resultSecret.Id);
+
+        await sutProvider.GetDependency<ISecretRepository>().Received(1)
+                     .GetByIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(resultSecret.Id)));
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void GetSecretsByOrganization_Success(SutProvider<SecretsController> sutProvider, Secret resultSecret)
+    {
+        sutProvider.GetDependency<ISecretRepository>().GetManyByOrganizationIdAsync(default).ReturnsForAnyArgs(new List<Secret>() { resultSecret });
+
+        var result = await sutProvider.Sut.GetSecretsByOrganizationAsync(resultSecret.OrganizationId);
+
+        await sutProvider.GetDependency<ISecretRepository>().Received(1)
+                     .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(resultSecret.OrganizationId)));
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void CreateSecret_Success(SutProvider<SecretsController> sutProvider, SecretCreateRequestModel data, Guid organizationId)
+    {
+        var resultSecret = data.ToSecret(organizationId);
+
+        sutProvider.GetDependency<ICreateSecretCommand>().CreateAsync(default).ReturnsForAnyArgs(resultSecret);
+
+        var result = await sutProvider.Sut.CreateSecretAsync(organizationId, data);
+        await sutProvider.GetDependency<ICreateSecretCommand>().Received(1)
+                     .CreateAsync(Arg.Any<Secret>());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void UpdateSecret_Success(SutProvider<SecretsController> sutProvider, SecretUpdateRequestModel data, Guid secretId)
+    {
+        var resultSecret = data.ToSecret(secretId);
+        sutProvider.GetDependency<IUpdateSecretCommand>().UpdateAsync(default).ReturnsForAnyArgs(resultSecret);
+
+        var result = await sutProvider.Sut.UpdateSecretAsync(secretId, data);
+        await sutProvider.GetDependency<IUpdateSecretCommand>().Received(1)
+                     .UpdateAsync(Arg.Any<Secret>());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void BulkDeleteSecret_Success(SutProvider<SecretsController> sutProvider, List<Secret> data)
+    {
+        var ids = data.Select(secret => secret.Id).ToList();
+        var mockResult = new List<Tuple<Secret, string>>();
+        foreach (var secret in data)
+        {
+            mockResult.Add(new Tuple<Secret, string>(secret, ""));
+        }
+        sutProvider.GetDependency<IDeleteSecretCommand>().DeleteSecrets(ids).ReturnsForAnyArgs(mockResult);
+
+        var results = await sutProvider.Sut.BulkDeleteAsync(ids);
+        await sutProvider.GetDependency<IDeleteSecretCommand>().Received(1)
+                     .DeleteSecrets(Arg.Is(ids));
+        Assert.Equal(data.Count, results.Data.Count());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void BulkDeleteSecret_NoGuids_ThrowsArgumentNullException(SutProvider<SecretsController> sutProvider)
+    {
+        await Assert.ThrowsAsync<ArgumentNullException>(() => sutProvider.Sut.BulkDeleteAsync(new List<Guid>()));
+    }
+}
--- a/test/Api.Test/Controllers/ServiceAccountsControllerTests.cs
+++ b/test/Api.Test/Controllers/ServiceAccountsControllerTests.cs
@ -0,0 +1,82 @@
+using Bit.Api.Controllers;
+using Bit.Api.SecretManagerFeatures.Models.Request;
+using Bit.Core.Entities;
+using Bit.Core.Repositories;
+using Bit.Core.SecretManagerFeatures.AccessTokens.Interfaces;
+using Bit.Core.SecretManagerFeatures.ServiceAccounts.Interfaces;
+using Bit.Test.Common.AutoFixture;
+using Bit.Test.Common.AutoFixture.Attributes;
+using Bit.Test.Common.Helpers;
+using NSubstitute;
+using Xunit;
+
+namespace Bit.Api.Test.Controllers;
+
+[ControllerCustomize(typeof(ServiceAccountsController))]
+[SutProviderCustomize]
+[JsonDocumentCustomize]
+public class ServiceAccountsControllerTests
+{
+    [Theory]
+    [BitAutoData]
+    public async void GetServiceAccountsByOrganization_ReturnsEmptyList(SutProvider<ServiceAccountsController> sutProvider, Guid id)
+    {
+        var result = await sutProvider.Sut.GetServiceAccountsByOrganizationAsync(id);
+
+        await sutProvider.GetDependency<IServiceAccountRepository>().Received(1)
+                     .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(id)));
+
+        Assert.Empty(result.Data);
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void GetServiceAccountsByOrganization_Success(SutProvider<ServiceAccountsController> sutProvider, ServiceAccount resultServiceAccount)
+    {
+        sutProvider.GetDependency<IServiceAccountRepository>().GetManyByOrganizationIdAsync(default).ReturnsForAnyArgs(new List<ServiceAccount>() { resultServiceAccount });
+
+        var result = await sutProvider.Sut.GetServiceAccountsByOrganizationAsync(resultServiceAccount.OrganizationId);
+
+        await sutProvider.GetDependency<IServiceAccountRepository>().Received(1)
+                     .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(resultServiceAccount.OrganizationId)));
+    }
+
+
+    [Theory]
+    [BitAutoData]
+    public async void CreateServiceAccount_Success(SutProvider<ServiceAccountsController> sutProvider, ServiceAccountCreateRequestModel data, Guid organizationId)
+    {
+        var resultServiceAccount = data.ToServiceAccount(organizationId);
+
+        sutProvider.GetDependency<ICreateServiceAccountCommand>().CreateAsync(default).ReturnsForAnyArgs(resultServiceAccount);
+
+        var result = await sutProvider.Sut.CreateServiceAccountAsync(organizationId, data);
+        await sutProvider.GetDependency<ICreateServiceAccountCommand>().Received(1)
+                     .CreateAsync(Arg.Any<ServiceAccount>());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void UpdateServiceAccount_Success(SutProvider<ServiceAccountsController> sutProvider, ServiceAccountUpdateRequestModel data, Guid serviceAccountId)
+    {
+        var resultServiceAccount = data.ToServiceAccount(serviceAccountId);
+        sutProvider.GetDependency<IUpdateServiceAccountCommand>().UpdateAsync(default).ReturnsForAnyArgs(resultServiceAccount);
+
+        var result = await sutProvider.Sut.UpdateServiceAccountAsync(serviceAccountId, data);
+        await sutProvider.GetDependency<IUpdateServiceAccountCommand>().Received(1)
+                     .UpdateAsync(Arg.Any<ServiceAccount>());
+    }
+
+    [Theory]
+    [BitAutoData]
+    public async void CreateAccessToken_Success(SutProvider<ServiceAccountsController> sutProvider, AccessTokenCreateRequestModel data, Guid serviceAccountId)
+    {
+        var resultAccessToken = data.ToApiKey(serviceAccountId);
+
+        sutProvider.GetDependency<ICreateAccessTokenCommand>().CreateAsync(default).ReturnsForAnyArgs(resultAccessToken);
+
+        var result = await sutProvider.Sut.CreateAccessTokenAsync(serviceAccountId, data);
+        await sutProvider.GetDependency<ICreateAccessTokenCommand>().Received(1)
+            .CreateAsync(Arg.Any<ApiKey>());
+    }
+}