Google Git
Sign in
apache / nifi-minifi-cpp / HEAD / . / extensions / azure / tests / FetchAzureBlobStorageTests.cpp
blob: cd57961cbf7265e5096537842f05e9399cb5b610 [file] [log] [blame]
/**
*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include "AzureBlobStorageTestsFixture.h"
#include "processors/FetchAzureBlobStorage.h"
namespace {
using FetchAzureBlobStorageTestsFixture = AzureBlobStorageTestsFixture<minifi::azure::processors::FetchAzureBlobStorage>;
TEST_CASE_METHOD(FetchAzureBlobStorageTestsFixture, "Test credentials settings", "[azureStorageCredentials]") {
plan_->setDynamicProperty(update_attribute_processor_, "test.container", CONTAINER_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Container Name", "${test.container}");
plan_->setDynamicProperty(update_attribute_processor_, "test.blob", BLOB_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Blob", "${test.blob}");
SECTION("No credentials are set") {
REQUIRE_THROWS_AS(test_controller_.runSession(plan_, true), minifi::Exception);
}
SECTION("No account key or SAS is set") {
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", STORAGE_ACCOUNT_NAME);
REQUIRE_THROWS_AS(test_controller_.runSession(plan_, true), minifi::Exception);
}
SECTION("Credentials set in Azure Storage Credentials Service") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";AccountKey=" + STORAGE_ACCOUNT_KEY);
}
SECTION("Overriding credentials set in Azure Storage Credentials Service with connection string") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_storage_cred_service, "Connection String", CONNECTION_STRING);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == CONNECTION_STRING);
}
SECTION("Account name and key set in properties") {
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";AccountKey=" + STORAGE_ACCOUNT_KEY);
}
SECTION("Account name and SAS token set in properties") {
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.sas_token", SAS_TOKEN);
plan_->setProperty(azure_blob_storage_processor_, "SAS Token", "${test.sas_token}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";SharedAccessSignature=" + SAS_TOKEN);
}
SECTION("Account name and SAS token with question mark set in properties") {
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.sas_token", "?" + SAS_TOKEN);
plan_->setProperty(azure_blob_storage_processor_, "SAS Token", "${test.sas_token}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";SharedAccessSignature=" + SAS_TOKEN);
}
SECTION("Endpoint suffix overriden") {
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
plan_->setDynamicProperty(update_attribute_processor_, "test.endpoint_suffix", ENDPOINT_SUFFIX);
plan_->setProperty(azure_blob_storage_processor_, "Common Storage Account Endpoint Suffix", "${test.endpoint_suffix}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";AccountKey=" + STORAGE_ACCOUNT_KEY + ";EndpointSuffix=" + ENDPOINT_SUFFIX);
}
SECTION("Use connection string") {
plan_->setDynamicProperty(update_attribute_processor_, "test.connection_string", CONNECTION_STRING);
plan_->setProperty(azure_blob_storage_processor_, "Connection String", "${test.connection_string}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == CONNECTION_STRING);
}
SECTION("Overriding credentials with connection string") {
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
plan_->setDynamicProperty(update_attribute_processor_, "test.connection_string", CONNECTION_STRING);
plan_->setProperty(azure_blob_storage_processor_, "Connection String", "${test.connection_string}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == CONNECTION_STRING);
}
SECTION("Connection string is empty after substituting it from expression language") {
plan_->setDynamicProperty(update_attribute_processor_, "test.connection_string", "");
plan_->setProperty(azure_blob_storage_processor_, "Connection String", "${test.connection_string}");
test_controller_.runSession(plan_, true);
auto failed_flowfiles = getFailedFlowFileContents();
REQUIRE(failed_flowfiles.size() == 1);
REQUIRE(failed_flowfiles[0] == TEST_DATA);
}
SECTION("Account name and Azure default identity sources are used in properties") {
minifi::azure::CredentialConfigurationStrategyOption expected_configuration_strategy_option{};
std::string credential_configuration_strategy_string;
std::string managed_identity_client_id;
SECTION("Managed Identity") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::ManagedIdentity;
credential_configuration_strategy_string = "Managed Identity";
managed_identity_client_id = "test-managed-identity-client-id";
}
SECTION("Default Credential") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::DefaultCredential;
credential_configuration_strategy_string = "Default Credential";
}
SECTION("Workload Identity") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::WorkloadIdentity;
credential_configuration_strategy_string = "Workload Identity";
}
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Credential Configuration Strategy", credential_configuration_strategy_string);
plan_->setProperty(azure_blob_storage_processor_, "Managed Identity Client ID", managed_identity_client_id);
test_controller_.runSession(plan_, true);
CHECK(getFailedFlowFileContents().empty());
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
CHECK(passed_params.credentials.buildConnectionString().empty());
CHECK(passed_params.credentials.getStorageAccountName() == STORAGE_ACCOUNT_NAME);
CHECK(passed_params.credentials.getEndpointSuffix() == "core.windows.net");
CHECK(passed_params.credentials.getCredentialConfigurationStrategy() == expected_configuration_strategy_option);
CHECK(passed_params.credentials.getManagedIdentityClientId() == managed_identity_client_id);
CHECK(passed_params.container_name == CONTAINER_NAME);
}
SECTION("Account name and Azure default identity sources are used from Azure Storage Credentials Service") {
minifi::azure::CredentialConfigurationStrategyOption expected_configuration_strategy_option{};
std::string credential_configuration_strategy_string;
std::string managed_identity_client_id;
SECTION("Managed Identity") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::ManagedIdentity;
credential_configuration_strategy_string = "Managed Identity";
managed_identity_client_id = "test-managed-identity-client-id";
}
SECTION("Default Credential") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::DefaultCredential;
credential_configuration_strategy_string = "Default Credential";
}
SECTION("Workload Identity") {
expected_configuration_strategy_option = minifi::azure::CredentialConfigurationStrategyOption::WorkloadIdentity;
credential_configuration_strategy_string = "Workload Identity";
}
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Credential Configuration Strategy", credential_configuration_strategy_string);
plan_->setProperty(azure_storage_cred_service, "Common Storage Account Endpoint Suffix", "core.chinacloudapi.cn");
plan_->setProperty(azure_storage_cred_service, "Managed Identity Client ID", managed_identity_client_id);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
test_controller_.runSession(plan_, true);
CHECK(getFailedFlowFileContents().empty());
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
CHECK(passed_params.credentials.buildConnectionString().empty());
CHECK(passed_params.credentials.getStorageAccountName() == STORAGE_ACCOUNT_NAME);
CHECK(passed_params.credentials.getEndpointSuffix() == "core.chinacloudapi.cn");
CHECK(passed_params.credentials.getCredentialConfigurationStrategy() == expected_configuration_strategy_option);
CHECK(passed_params.credentials.getManagedIdentityClientId() == managed_identity_client_id);
CHECK(passed_params.container_name == CONTAINER_NAME);
}
SECTION("Azure Storage Credentials Service overrides properties") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
plan_->setDynamicProperty(update_attribute_processor_, "test.connection_string", CONNECTION_STRING);
plan_->setProperty(azure_blob_storage_processor_, "Connection String", "${test.connection_string}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString() == "AccountName=" + STORAGE_ACCOUNT_NAME + ";AccountKey=" + STORAGE_ACCOUNT_KEY);
}
SECTION("Azure Storage Credentials Service is set with invalid parameters") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString().empty());
auto failed_flowfiles = getFailedFlowFileContents();
REQUIRE(failed_flowfiles.size() == 1);
REQUIRE(failed_flowfiles[0] == TEST_DATA);
}
SECTION("Azure Storage Credentials Service name is invalid") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "invalid_name");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", "${test.account_name}");
plan_->setDynamicProperty(update_attribute_processor_, "test.account_key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", "${test.account_key}");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString().empty());
auto failed_flowfiles = getFailedFlowFileContents();
REQUIRE(failed_flowfiles.size() == 1);
REQUIRE(failed_flowfiles[0] == TEST_DATA);
}
SECTION("Both SAS Token and Storage Account Key cannot be set in credentials service") {
auto azure_storage_cred_service = plan_->addController("AzureStorageCredentialsService", "AzureStorageCredentialsService");
plan_->setProperty(azure_storage_cred_service, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_storage_cred_service, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_storage_cred_service, "SAS Token", SAS_TOKEN);
plan_->setProperty(azure_blob_storage_processor_, "Azure Storage Credentials Service", "AzureStorageCredentialsService");
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString().empty());
auto failed_flowfiles = getFailedFlowFileContents();
REQUIRE(failed_flowfiles.size() == 1);
REQUIRE(failed_flowfiles[0] == TEST_DATA);
}
SECTION("Both SAS Token and Storage Account Key cannot be set in properties") {
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Name", STORAGE_ACCOUNT_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Storage Account Key", STORAGE_ACCOUNT_KEY);
plan_->setProperty(azure_blob_storage_processor_, "SAS Token", SAS_TOKEN);
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
REQUIRE(passed_params.credentials.buildConnectionString().empty());
auto failed_flowfiles = getFailedFlowFileContents();
REQUIRE(failed_flowfiles.size() == 1);
REQUIRE(failed_flowfiles[0] == TEST_DATA);
}
}
TEST_CASE_METHOD(FetchAzureBlobStorageTestsFixture, "Test Azure blob fetch failure in case Blob is not set and filename is empty", "[azureBlobStorageFetch]") {
plan_->setDynamicProperty(update_attribute_processor_, "test.container", CONTAINER_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Container Name", "${test.container}");
plan_->setDynamicProperty(update_attribute_processor_, "filename", "");
setDefaultCredentials();
test_controller_.runSession(plan_, true);
REQUIRE(LogTestController::getInstance().contains("Blob is not set and default 'filename' attribute could not be found!"));
}
TEST_CASE_METHOD(FetchAzureBlobStorageTestsFixture, "Fetch full blob succeeds", "[azureBlobStorageFetch]") {
plan_->setDynamicProperty(update_attribute_processor_, "test.container", CONTAINER_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Container Name", "${test.container}");
plan_->setDynamicProperty(update_attribute_processor_, "test.blob", BLOB_NAME);
plan_->setProperty(azure_blob_storage_processor_, "Blob", "${test.blob}");
setDefaultCredentials();
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
CHECK(passed_params.container_name == CONTAINER_NAME);
CHECK(passed_params.blob_name == BLOB_NAME);
CHECK(passed_params.range_start == std::nullopt);
CHECK(passed_params.range_length == std::nullopt);
CHECK(getFailedFlowFileContents().empty());
auto success_contents = getSuccessfulFlowFileContents();
REQUIRE(success_contents.size() == 1);
REQUIRE(success_contents[0] == mock_blob_storage_ptr_->FETCHED_DATA);
}
TEST_CASE_METHOD(FetchAzureBlobStorageTestsFixture, "Fetch a range of the blob succeeds", "[azureBlobStorageFetch]") {
plan_->setDynamicProperty(update_attribute_processor_, "test.container", CONTAINER_NAME);
plan_->setProperty(azure_blob_storage_processor_, minifi::azure::processors::FetchAzureBlobStorage::ContainerName, "${test.container}");
plan_->setProperty(azure_blob_storage_processor_, minifi::azure::processors::FetchAzureBlobStorage::RangeStart, "5");
plan_->setProperty(azure_blob_storage_processor_, minifi::azure::processors::FetchAzureBlobStorage::RangeLength, "10");
setDefaultCredentials();
test_controller_.runSession(plan_, true);
auto passed_params = mock_blob_storage_ptr_->getPassedFetchParams();
CHECK(passed_params.container_name == CONTAINER_NAME);
CHECK(passed_params.blob_name == GET_FILE_NAME);
CHECK(*passed_params.range_start == 5);
CHECK(*passed_params.range_length == 10);
CHECK(getFailedFlowFileContents().empty());
auto success_contents = getSuccessfulFlowFileContents();
REQUIRE(success_contents.size() == 1);
REQUIRE(success_contents[0] == mock_blob_storage_ptr_->FETCHED_DATA.substr(5, 10));
}
TEST_CASE_METHOD(FetchAzureBlobStorageTestsFixture, "Fetch full file fails", "[azureBlobStorageFetch]") {
plan_->setProperty(azure_blob_storage_processor_, minifi::azure::processors::FetchAzureBlobStorage::ContainerName, CONTAINER_NAME);
setDefaultCredentials();
mock_blob_storage_ptr_->setFetchFailure(true);
test_controller_.runSession(plan_, true);
REQUIRE(getSuccessfulFlowFileContents().empty());
auto failed_contents = getFailedFlowFileContents();
REQUIRE(failed_contents.size() == 1);
REQUIRE(failed_contents[0] == TEST_DATA);
}
} // namespace