forked from TrueCloudLab/lego
b2aab0377c
* dns/route53: Allow specifying hosted zone ID This commit adds support for specifying hosted zone ID via the environment variable AWS_HOSTED_ZONE_ID. If this is not specified, the previous discovery process is used. This is useful in environments where multiple hosted zones for the same domain name are present in an account. * dns/route53: Fix up getHostedZoneID method params Now that getHostedZoneID is a method on the DNSProvider struct, there is no reason for it to take the Route53 client as a parameter - we can simply use the reference stored in the struct.
105 lines
2.8 KiB
Go
105 lines
2.8 KiB
Go
package route53
|
|
|
|
import (
|
|
"net/http/httptest"
|
|
"os"
|
|
"testing"
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
"github.com/aws/aws-sdk-go/aws/credentials"
|
|
"github.com/aws/aws-sdk-go/aws/session"
|
|
"github.com/aws/aws-sdk-go/service/route53"
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
var (
|
|
route53Secret string
|
|
route53Key string
|
|
route53Region string
|
|
route53Zone string
|
|
)
|
|
|
|
func init() {
|
|
route53Key = os.Getenv("AWS_ACCESS_KEY_ID")
|
|
route53Secret = os.Getenv("AWS_SECRET_ACCESS_KEY")
|
|
route53Region = os.Getenv("AWS_REGION")
|
|
route53Zone = os.Getenv("AWS_HOSTED_ZONE_ID")
|
|
}
|
|
|
|
func restoreRoute53Env() {
|
|
os.Setenv("AWS_ACCESS_KEY_ID", route53Key)
|
|
os.Setenv("AWS_SECRET_ACCESS_KEY", route53Secret)
|
|
os.Setenv("AWS_REGION", route53Region)
|
|
os.Setenv("AWS_HOSTED_ZONE_ID", route53Zone)
|
|
}
|
|
|
|
func makeRoute53Provider(ts *httptest.Server) *DNSProvider {
|
|
config := &aws.Config{
|
|
Credentials: credentials.NewStaticCredentials("abc", "123", " "),
|
|
Endpoint: aws.String(ts.URL),
|
|
Region: aws.String("mock-region"),
|
|
MaxRetries: aws.Int(1),
|
|
}
|
|
|
|
client := route53.New(session.New(config))
|
|
return &DNSProvider{client: client}
|
|
}
|
|
|
|
func TestCredentialsFromEnv(t *testing.T) {
|
|
os.Setenv("AWS_ACCESS_KEY_ID", "123")
|
|
os.Setenv("AWS_SECRET_ACCESS_KEY", "123")
|
|
os.Setenv("AWS_REGION", "us-east-1")
|
|
|
|
config := &aws.Config{
|
|
CredentialsChainVerboseErrors: aws.Bool(true),
|
|
}
|
|
|
|
sess := session.New(config)
|
|
_, err := sess.Config.Credentials.Get()
|
|
assert.NoError(t, err, "Expected credentials to be set from environment")
|
|
|
|
restoreRoute53Env()
|
|
}
|
|
|
|
func TestRegionFromEnv(t *testing.T) {
|
|
os.Setenv("AWS_REGION", "us-east-1")
|
|
|
|
sess := session.New(aws.NewConfig())
|
|
assert.Equal(t, "us-east-1", *sess.Config.Region, "Expected Region to be set from environment")
|
|
|
|
restoreRoute53Env()
|
|
}
|
|
|
|
func TestHostedZoneIDFromEnv(t *testing.T) {
|
|
const testZoneID = "testzoneid"
|
|
|
|
defer restoreRoute53Env()
|
|
os.Setenv("AWS_HOSTED_ZONE_ID", testZoneID)
|
|
|
|
provider, err := NewDNSProvider()
|
|
assert.NoError(t, err, "Expected no error constructing DNSProvider")
|
|
|
|
fqdn, err := provider.getHostedZoneID("whatever")
|
|
assert.NoError(t, err, "Expected FQDN to be resolved to environment variable value")
|
|
|
|
assert.Equal(t, testZoneID, fqdn)
|
|
}
|
|
|
|
func TestRoute53Present(t *testing.T) {
|
|
mockResponses := MockResponseMap{
|
|
"/2013-04-01/hostedzonesbyname": MockResponse{StatusCode: 200, Body: ListHostedZonesByNameResponse},
|
|
"/2013-04-01/hostedzone/ABCDEFG/rrset/": MockResponse{StatusCode: 200, Body: ChangeResourceRecordSetsResponse},
|
|
"/2013-04-01/change/123456": MockResponse{StatusCode: 200, Body: GetChangeResponse},
|
|
}
|
|
|
|
ts := newMockServer(t, mockResponses)
|
|
defer ts.Close()
|
|
|
|
provider := makeRoute53Provider(ts)
|
|
|
|
domain := "example.com"
|
|
keyAuth := "123456d=="
|
|
|
|
err := provider.Present(domain, "", keyAuth)
|
|
assert.NoError(t, err, "Expected Present to return no error")
|
|
}
|