mirror of
https://github.com/Syngnat/GoNavi.git
synced 2026-06-08 15:39:51 +08:00
f16e2f15c2
- 诊断 SSE 支持空心跳事件,避免无输出时解码失败 - Arthas Tunnel 增加会话过期清理、配置漂移校验和取消兜底 - Provider 合约清理 Base URL 查询参数和片段,避免探测泄露敏感信息 - JVM 变更请求强制校验原因并规范化写入审计字段
227 lines
6.2 KiB
Go
227 lines
6.2 KiB
Go
package jvm
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"strings"
|
|
"testing"
|
|
|
|
"GoNavi-Wails/internal/connection"
|
|
)
|
|
|
|
type fakeGuardProvider struct {
|
|
before ValueSnapshot
|
|
beforeErr error
|
|
preview ChangePreview
|
|
previewErr error
|
|
apply ApplyResult
|
|
applyErr error
|
|
}
|
|
|
|
func (f fakeGuardProvider) Mode() string { return ModeJMX }
|
|
func (f fakeGuardProvider) TestConnection(context.Context, connection.ConnectionConfig) error {
|
|
return nil
|
|
}
|
|
func (f fakeGuardProvider) ProbeCapabilities(context.Context, connection.ConnectionConfig) ([]Capability, error) {
|
|
return nil, nil
|
|
}
|
|
func (f fakeGuardProvider) ListResources(context.Context, connection.ConnectionConfig, string) ([]ResourceSummary, error) {
|
|
return nil, nil
|
|
}
|
|
func (f fakeGuardProvider) GetValue(context.Context, connection.ConnectionConfig, string) (ValueSnapshot, error) {
|
|
return f.before, f.beforeErr
|
|
}
|
|
func (f fakeGuardProvider) PreviewChange(context.Context, connection.ConnectionConfig, ChangeRequest) (ChangePreview, error) {
|
|
return f.preview, f.previewErr
|
|
}
|
|
func (f fakeGuardProvider) ApplyChange(context.Context, connection.ConnectionConfig, ChangeRequest) (ApplyResult, error) {
|
|
return f.apply, f.applyErr
|
|
}
|
|
|
|
func TestPreviewChangeBlocksReadOnlyConnection(t *testing.T) {
|
|
readOnly := true
|
|
|
|
preview, err := BuildChangePreview(context.Background(), fakeGuardProvider{}, connection.ConnectionConfig{
|
|
Type: "jvm",
|
|
ID: "conn-readonly",
|
|
Host: "orders.internal",
|
|
JVM: connection.JVMConfig{
|
|
ReadOnly: &readOnly,
|
|
PreferredMode: ModeJMX,
|
|
AllowedModes: []string{ModeJMX},
|
|
},
|
|
}, ChangeRequest{
|
|
ProviderMode: ModeJMX,
|
|
ResourceID: "/cache/orders",
|
|
Action: "put",
|
|
Reason: "fix cache",
|
|
Payload: map[string]any{
|
|
"status": "ready",
|
|
},
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("BuildChangePreview returned error: %v", err)
|
|
}
|
|
if preview.Allowed {
|
|
t.Fatalf("expected preview to be blocked, got %#v", preview)
|
|
}
|
|
if preview.BlockingReason == "" || !strings.Contains(preview.BlockingReason, "只读") {
|
|
t.Fatalf("expected readonly blocking reason, got %#v", preview)
|
|
}
|
|
if preview.Before.ResourceID != "/cache/orders" {
|
|
t.Fatalf("expected before snapshot resource id to be preserved, got %#v", preview.Before)
|
|
}
|
|
if preview.After.ResourceID != "/cache/orders" {
|
|
t.Fatalf("expected after snapshot resource id to be preserved, got %#v", preview.After)
|
|
}
|
|
}
|
|
|
|
func TestPreviewChangeRejectsMissingReason(t *testing.T) {
|
|
readOnly := false
|
|
|
|
_, err := BuildChangePreview(context.Background(), fakeGuardProvider{}, connection.ConnectionConfig{
|
|
Type: "jvm",
|
|
ID: "conn-writable",
|
|
Host: "orders.internal",
|
|
JVM: connection.JVMConfig{
|
|
ReadOnly: &readOnly,
|
|
PreferredMode: ModeJMX,
|
|
AllowedModes: []string{ModeJMX},
|
|
},
|
|
}, ChangeRequest{
|
|
ProviderMode: ModeJMX,
|
|
ResourceID: "/cache/orders",
|
|
Action: "put",
|
|
Reason: " ",
|
|
Payload: map[string]any{
|
|
"status": "ready",
|
|
},
|
|
})
|
|
if err == nil || !strings.Contains(err.Error(), "reason is required") {
|
|
t.Fatalf("expected missing reason to be rejected, got %v", err)
|
|
}
|
|
}
|
|
|
|
func TestPreviewChangeReturnsProviderPreviewErrorWhenWriteAllowed(t *testing.T) {
|
|
readOnly := false
|
|
|
|
_, err := BuildChangePreview(context.Background(), fakeGuardProvider{
|
|
previewErr: errors.New("preview not implemented"),
|
|
}, connection.ConnectionConfig{
|
|
Type: "jvm",
|
|
ID: "conn-writable",
|
|
Host: "orders.internal",
|
|
JVM: connection.JVMConfig{
|
|
ReadOnly: &readOnly,
|
|
PreferredMode: ModeJMX,
|
|
AllowedModes: []string{ModeJMX},
|
|
},
|
|
}, ChangeRequest{
|
|
ProviderMode: ModeJMX,
|
|
ResourceID: "/cache/orders",
|
|
Action: "put",
|
|
Reason: "fix cache",
|
|
Payload: map[string]any{
|
|
"status": "ready",
|
|
},
|
|
})
|
|
if err == nil || !strings.Contains(err.Error(), "preview not implemented") {
|
|
t.Fatalf("expected provider preview error, got %v", err)
|
|
}
|
|
}
|
|
|
|
func TestPreviewChangeMarksProdWritesAsConfirmationRequired(t *testing.T) {
|
|
readOnly := false
|
|
|
|
preview, err := BuildChangePreview(context.Background(), fakeGuardProvider{
|
|
preview: ChangePreview{
|
|
Allowed: true,
|
|
Summary: "provider preview",
|
|
RiskLevel: "low",
|
|
},
|
|
}, connection.ConnectionConfig{
|
|
Type: "jvm",
|
|
ID: "conn-prod",
|
|
Host: "orders.internal",
|
|
JVM: connection.JVMConfig{
|
|
ReadOnly: &readOnly,
|
|
Environment: EnvPROD,
|
|
PreferredMode: ModeJMX,
|
|
AllowedModes: []string{ModeJMX},
|
|
},
|
|
}, ChangeRequest{
|
|
ProviderMode: ModeJMX,
|
|
ResourceID: "/cache/orders",
|
|
Action: "put",
|
|
Reason: "fix cache",
|
|
Payload: map[string]any{
|
|
"status": "ready",
|
|
},
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("BuildChangePreview returned error: %v", err)
|
|
}
|
|
if !preview.RequiresConfirmation {
|
|
t.Fatalf("expected prod preview to require confirmation, got %#v", preview)
|
|
}
|
|
if preview.RiskLevel != "low" {
|
|
t.Fatalf("expected provider risk level to be preserved, got %#v", preview)
|
|
}
|
|
}
|
|
|
|
func TestPreviewChangeMergesProviderSnapshotsWithoutDroppingDefaults(t *testing.T) {
|
|
readOnly := false
|
|
|
|
preview, err := BuildChangePreview(context.Background(), fakeGuardProvider{
|
|
before: ValueSnapshot{
|
|
ResourceID: "/cache/orders",
|
|
Kind: "entry",
|
|
Format: "json",
|
|
Value: map[string]any{
|
|
"status": "stale",
|
|
},
|
|
},
|
|
preview: ChangePreview{
|
|
Allowed: true,
|
|
Summary: "provider preview",
|
|
RiskLevel: "medium",
|
|
Before: ValueSnapshot{
|
|
Value: map[string]any{
|
|
"status": "provider-before",
|
|
},
|
|
},
|
|
After: ValueSnapshot{
|
|
Value: map[string]any{
|
|
"status": "provider-after",
|
|
},
|
|
},
|
|
},
|
|
}, connection.ConnectionConfig{
|
|
Type: "jvm",
|
|
ID: "conn-writable",
|
|
Host: "orders.internal",
|
|
JVM: connection.JVMConfig{
|
|
ReadOnly: &readOnly,
|
|
PreferredMode: ModeJMX,
|
|
AllowedModes: []string{ModeJMX},
|
|
},
|
|
}, ChangeRequest{
|
|
ProviderMode: ModeJMX,
|
|
ResourceID: "/cache/orders",
|
|
Action: "put",
|
|
Reason: "fix cache",
|
|
Payload: map[string]any{
|
|
"status": "ready",
|
|
},
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("BuildChangePreview returned error: %v", err)
|
|
}
|
|
if preview.Before.ResourceID != "/cache/orders" || preview.Before.Format != "json" {
|
|
t.Fatalf("expected before snapshot defaults to be preserved, got %#v", preview.Before)
|
|
}
|
|
if preview.After.ResourceID != "/cache/orders" || preview.After.Format != "json" {
|
|
t.Fatalf("expected after snapshot defaults to be preserved, got %#v", preview.After)
|
|
}
|
|
}
|