mirror of
https://github.com/fleetdm/fleet
synced 2026-04-21 13:37:30 +00:00
92bc1c650e
<!-- Add the related story/sub-task/bug number, like Resolves #123, or remove if NA --> **Related issue:** Resolves #38536 - Moved PostJSONWithTimeout to platform/http - Created platform/errors package with only types needed by ctxerr. This way, ctxerr did not need to import fleethttp. - Made activity bounded context use PostJSONWithTimeout directly - Removed some activity types from legacy code that were no longer needed # Checklist for submitter - [ ] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - Changes file `38536-new-activity-bc` already present, and this is just cleanup from that work. ## Testing - [x] Added/updated automated tests - [x] QA'd all new/changed functionality manually <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit ## Release Notes * **Refactor** * Reorganized error handling utilities for improved clarity and decoupling. * Consolidated HTTP utilities to centralize JSON posting functionality with timeout support. * Simplified activity service initialization by removing unused internal parameters. * Cleaned up test utilities and removed webhook-related test scaffolding. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
396 lines
11 KiB
Go
396 lines
11 KiB
Go
package service
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"log/slog"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/fleetdm/fleet/v4/server/activity"
|
|
"github.com/fleetdm/fleet/v4/server/activity/api"
|
|
"github.com/fleetdm/fleet/v4/server/activity/internal/types"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
// newActivityMockDatastore captures calls to NewActivity for assertions.
|
|
type newActivityMockDatastore struct {
|
|
mockDatastore
|
|
newActivityCalled bool
|
|
lastUser *api.User
|
|
lastActivity api.ActivityDetails
|
|
lastDetails []byte
|
|
lastCreatedAt time.Time
|
|
lastCtx context.Context
|
|
newActivityErr error
|
|
}
|
|
|
|
func (m *newActivityMockDatastore) NewActivity(ctx context.Context, user *api.User, act api.ActivityDetails, details []byte, createdAt time.Time) error {
|
|
m.newActivityCalled = true
|
|
m.lastUser = user
|
|
m.lastActivity = act
|
|
m.lastDetails = details
|
|
m.lastCreatedAt = createdAt
|
|
m.lastCtx = ctx
|
|
return m.newActivityErr
|
|
}
|
|
|
|
// newActivityMockProviders extends mockDataProviders with call tracking for ActivateNextUpcomingActivity.
|
|
type newActivityMockProviders struct {
|
|
mockDataProviders
|
|
activateCalled bool
|
|
lastHostID uint
|
|
lastCmdUUID string
|
|
activateErr error
|
|
}
|
|
|
|
func (m *newActivityMockProviders) ActivateNextUpcomingActivity(ctx context.Context, hostID uint, cmdUUID string) error {
|
|
m.activateCalled = true
|
|
m.lastHostID = hostID
|
|
m.lastCmdUUID = cmdUUID
|
|
return m.activateErr
|
|
}
|
|
|
|
// Test activity types
|
|
|
|
type simpleActivity struct {
|
|
Name string `json:"name"`
|
|
}
|
|
|
|
func (a simpleActivity) ActivityName() string { return "simple_test" }
|
|
|
|
type aliasedActivity struct {
|
|
TeamID uint `json:"team_id" renameto:"fleet_id"`
|
|
}
|
|
|
|
func (a aliasedActivity) ActivityName() string { return "aliased_test" }
|
|
|
|
type activatorActivity struct {
|
|
simpleActivity
|
|
hostID uint
|
|
cmdUUID string
|
|
}
|
|
|
|
func (a activatorActivity) MustActivateNextUpcomingActivity() bool { return true }
|
|
func (a activatorActivity) ActivateNextUpcomingActivityArgs() (uint, string) {
|
|
return a.hostID, a.cmdUUID
|
|
}
|
|
|
|
func newTestService(ds types.Datastore, providers activity.DataProviders) *Service {
|
|
return NewService(&mockAuthorizer{}, ds, providers, slog.New(slog.DiscardHandler))
|
|
}
|
|
|
|
func TestNewActivityStoresWithWebhookContextKey(t *testing.T) {
|
|
t.Parallel()
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
},
|
|
}
|
|
svc := newTestService(ds, providers)
|
|
|
|
user := &api.User{ID: 1, Name: "test", Email: "test@example.com"}
|
|
err := svc.NewActivity(t.Context(), user, simpleActivity{Name: "hello"})
|
|
require.NoError(t, err)
|
|
|
|
// Verify store was called
|
|
require.True(t, ds.newActivityCalled)
|
|
|
|
// Verify webhook context key was set
|
|
processed, ok := ds.lastCtx.Value(types.ActivityWebhookContextKey).(bool)
|
|
require.True(t, ok, "webhook context key should be set")
|
|
assert.True(t, processed)
|
|
|
|
// Verify user was passed through
|
|
require.NotNil(t, ds.lastUser)
|
|
assert.Equal(t, uint(1), ds.lastUser.ID)
|
|
assert.Equal(t, "test", ds.lastUser.Name)
|
|
assert.Equal(t, "test@example.com", ds.lastUser.Email)
|
|
|
|
// Verify details were marshaled
|
|
var details map[string]string
|
|
require.NoError(t, json.Unmarshal(ds.lastDetails, &details))
|
|
assert.Equal(t, "hello", details["name"])
|
|
|
|
// Verify timestamp is reasonable
|
|
assert.WithinDuration(t, time.Now(), ds.lastCreatedAt, 2*time.Second)
|
|
}
|
|
|
|
func TestNewActivityDuplicatesAliasedJSONKeys(t *testing.T) {
|
|
t.Parallel()
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
},
|
|
}
|
|
svc := newTestService(ds, providers)
|
|
|
|
err := svc.NewActivity(t.Context(), nil, aliasedActivity{TeamID: 42})
|
|
require.NoError(t, err)
|
|
|
|
require.True(t, ds.newActivityCalled)
|
|
|
|
// Details should contain both team_id and fleet_id
|
|
var details map[string]any
|
|
require.NoError(t, json.Unmarshal(ds.lastDetails, &details))
|
|
assert.Equal(t, float64(42), details["team_id"])
|
|
assert.Equal(t, float64(42), details["fleet_id"])
|
|
}
|
|
|
|
func TestNewActivityCallsActivator(t *testing.T) {
|
|
t.Parallel()
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
},
|
|
}
|
|
svc := newTestService(ds, providers)
|
|
|
|
act := activatorActivity{
|
|
simpleActivity: simpleActivity{Name: "install"},
|
|
hostID: 99,
|
|
cmdUUID: "cmd-abc",
|
|
}
|
|
err := svc.NewActivity(t.Context(), nil, act)
|
|
require.NoError(t, err)
|
|
|
|
// Verify activator was called with correct args
|
|
require.True(t, providers.activateCalled)
|
|
assert.Equal(t, uint(99), providers.lastHostID)
|
|
assert.Equal(t, "cmd-abc", providers.lastCmdUUID)
|
|
|
|
// Verify store was also called
|
|
require.True(t, ds.newActivityCalled)
|
|
}
|
|
|
|
func TestNewActivityActivatorErrorPreventsStore(t *testing.T) {
|
|
t.Parallel()
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
},
|
|
activateErr: assert.AnError,
|
|
}
|
|
svc := newTestService(ds, providers)
|
|
|
|
act := activatorActivity{
|
|
simpleActivity: simpleActivity{Name: "install"},
|
|
hostID: 99,
|
|
cmdUUID: "cmd-abc",
|
|
}
|
|
err := svc.NewActivity(t.Context(), nil, act)
|
|
require.Error(t, err)
|
|
|
|
// Activator was called but store should NOT have been called
|
|
require.True(t, providers.activateCalled)
|
|
assert.False(t, ds.newActivityCalled)
|
|
}
|
|
|
|
func TestNewActivityNilUser(t *testing.T) {
|
|
t.Parallel()
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
},
|
|
}
|
|
svc := newTestService(ds, providers)
|
|
|
|
err := svc.NewActivity(t.Context(), nil, simpleActivity{Name: "system"})
|
|
require.NoError(t, err)
|
|
|
|
require.True(t, ds.newActivityCalled)
|
|
assert.Nil(t, ds.lastUser)
|
|
}
|
|
|
|
// newTestServiceWithWebhook creates a service configured for webhook delivery tests.
|
|
func newTestServiceWithWebhook(ds types.Datastore, providers activity.DataProviders) *Service {
|
|
return NewService(&mockAuthorizer{}, ds, providers, slog.New(slog.DiscardHandler))
|
|
}
|
|
|
|
func TestNewActivityWebhook(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
webhookChannel := make(chan struct{}, 1)
|
|
var webhookBody webhookPayload
|
|
fail429 := false
|
|
|
|
startMockServer := func(t *testing.T) string {
|
|
srv := httptest.NewServer(
|
|
http.HandlerFunc(
|
|
func(w http.ResponseWriter, r *http.Request) {
|
|
webhookBody = webhookPayload{}
|
|
if r.Method != "POST" {
|
|
w.WriteHeader(http.StatusMethodNotAllowed)
|
|
return
|
|
}
|
|
switch r.URL.Path {
|
|
case "/ok":
|
|
err := json.NewDecoder(r.Body).Decode(&webhookBody)
|
|
if err != nil {
|
|
t.Log(err)
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
}
|
|
case "/error":
|
|
webhookBody.Type = "error"
|
|
w.WriteHeader(http.StatusTeapot)
|
|
case "/429":
|
|
fail429 = !fail429
|
|
if fail429 {
|
|
w.WriteHeader(http.StatusTooManyRequests)
|
|
return
|
|
}
|
|
err := json.NewDecoder(r.Body).Decode(&webhookBody)
|
|
if err != nil {
|
|
t.Log(err)
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
}
|
|
default:
|
|
w.WriteHeader(http.StatusNotFound)
|
|
return
|
|
}
|
|
webhookChannel <- struct{}{}
|
|
},
|
|
),
|
|
)
|
|
t.Cleanup(srv.Close)
|
|
return srv.URL
|
|
}
|
|
|
|
mockURL := startMockServer(t)
|
|
testURL := mockURL
|
|
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
webhookConfig: &activity.ActivitiesWebhookSettings{
|
|
Enable: true,
|
|
DestinationURL: testURL,
|
|
},
|
|
},
|
|
}
|
|
|
|
svc := newTestServiceWithWebhook(ds, providers)
|
|
|
|
tests := []struct {
|
|
name string
|
|
user *api.User
|
|
url string
|
|
doError bool
|
|
}{
|
|
{
|
|
name: "nil user",
|
|
url: mockURL + "/ok",
|
|
user: nil,
|
|
},
|
|
{
|
|
name: "real user",
|
|
url: mockURL + "/ok",
|
|
user: &api.User{
|
|
ID: 1,
|
|
Name: "testUser",
|
|
Email: "testUser@example.com",
|
|
},
|
|
},
|
|
{
|
|
name: "error",
|
|
url: mockURL + "/error",
|
|
doError: true,
|
|
},
|
|
{
|
|
name: "429",
|
|
url: mockURL + "/429",
|
|
user: &api.User{
|
|
ID: 2,
|
|
Name: "testUserRetry",
|
|
Email: "testUserRetry@example.com",
|
|
},
|
|
},
|
|
}
|
|
|
|
for _, tt := range tests {
|
|
t.Run(tt.name, func(t *testing.T) {
|
|
ds.newActivityCalled = false
|
|
providers.webhookConfig.DestinationURL = tt.url
|
|
startTime := time.Now()
|
|
act := simpleActivity{Name: tt.name}
|
|
err := svc.NewActivity(t.Context(), tt.user, act)
|
|
require.NoError(t, err)
|
|
select {
|
|
case <-time.After(3 * time.Second):
|
|
t.Error("timeout waiting for webhook")
|
|
case <-webhookChannel:
|
|
if tt.doError {
|
|
assert.Equal(t, "error", webhookBody.Type)
|
|
} else {
|
|
endTime := time.Now()
|
|
assert.False(
|
|
t, webhookBody.Timestamp.Before(startTime), "timestamp %s is before start time %s",
|
|
webhookBody.Timestamp.String(), startTime.String(),
|
|
)
|
|
assert.False(t, webhookBody.Timestamp.After(endTime))
|
|
if tt.user == nil {
|
|
assert.Nil(t, webhookBody.ActorFullName)
|
|
assert.Nil(t, webhookBody.ActorID)
|
|
assert.Nil(t, webhookBody.ActorEmail)
|
|
} else {
|
|
require.NotNil(t, webhookBody.ActorFullName)
|
|
assert.Equal(t, tt.user.Name, *webhookBody.ActorFullName)
|
|
require.NotNil(t, webhookBody.ActorID)
|
|
assert.Equal(t, tt.user.ID, *webhookBody.ActorID)
|
|
require.NotNil(t, webhookBody.ActorEmail)
|
|
assert.Equal(t, tt.user.Email, *webhookBody.ActorEmail)
|
|
}
|
|
assert.Equal(t, act.ActivityName(), webhookBody.Type)
|
|
var details map[string]string
|
|
require.NoError(t, json.Unmarshal(*webhookBody.Details, &details))
|
|
assert.Len(t, details, 1)
|
|
assert.Equal(t, tt.name, details["name"])
|
|
}
|
|
}
|
|
require.True(t, ds.newActivityCalled)
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestNewActivityWebhookDisabled(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
srv := httptest.NewServer(
|
|
http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
t.Error("webhook server should not be called when webhook is disabled")
|
|
}),
|
|
)
|
|
t.Cleanup(srv.Close)
|
|
|
|
ds := &newActivityMockDatastore{}
|
|
providers := &newActivityMockProviders{
|
|
mockDataProviders: mockDataProviders{
|
|
mockUserProvider: &mockUserProvider{},
|
|
mockHostProvider: &mockHostProvider{},
|
|
webhookConfig: &activity.ActivitiesWebhookSettings{
|
|
Enable: false,
|
|
DestinationURL: srv.URL,
|
|
},
|
|
},
|
|
}
|
|
|
|
svc := newTestServiceWithWebhook(ds, providers)
|
|
err := svc.NewActivity(t.Context(), &api.User{ID: 1}, simpleActivity{Name: "no webhook"})
|
|
require.NoError(t, err)
|
|
require.True(t, ds.newActivityCalled)
|
|
}
|