mirror of https://github.com/docker/cli.git
65 lines
2.6 KiB
Go
65 lines
2.6 KiB
Go
|
package trust
|
||
|
|
||
|
import (
|
||
|
"fmt"
|
||
|
"testing"
|
||
|
|
||
|
"github.com/docker/cli/e2e/internal/fixtures"
|
||
|
"github.com/gotestyourself/gotestyourself/fs"
|
||
|
"github.com/gotestyourself/gotestyourself/icmd"
|
||
|
"github.com/stretchr/testify/assert"
|
||
|
)
|
||
|
|
||
|
const (
|
||
|
revokeImage = "registry:5000/revoke:v1"
|
||
|
revokeRepo = "registry:5000/revokerepo"
|
||
|
)
|
||
|
|
||
|
func TestRevokeImage(t *testing.T) {
|
||
|
dir := fixtures.SetupConfigFile(t)
|
||
|
defer dir.Remove()
|
||
|
setupTrustedImagesForRevoke(t, dir)
|
||
|
result := icmd.RunCmd(
|
||
|
icmd.Command("docker", "trust", "revoke", revokeImage),
|
||
|
fixtures.WithPassphrase("root_password", "repo_password"),
|
||
|
fixtures.WithNotary, fixtures.WithConfig(dir.Path()))
|
||
|
result.Assert(t, icmd.Success)
|
||
|
assert.Contains(t, result.Stdout(), "Successfully deleted signature for registry:5000/revoke:v1")
|
||
|
}
|
||
|
|
||
|
func TestRevokeRepo(t *testing.T) {
|
||
|
dir := fixtures.SetupConfigFile(t)
|
||
|
defer dir.Remove()
|
||
|
setupTrustedImagesForRevokeRepo(t, dir)
|
||
|
result := icmd.RunCmd(
|
||
|
icmd.Command("docker", "trust", "revoke", revokeRepo, "-y"),
|
||
|
fixtures.WithPassphrase("root_password", "repo_password"),
|
||
|
fixtures.WithNotary, fixtures.WithConfig(dir.Path()))
|
||
|
result.Assert(t, icmd.Success)
|
||
|
assert.Contains(t, result.Stdout(), "Successfully deleted signature for registry:5000/revoke")
|
||
|
}
|
||
|
|
||
|
func setupTrustedImagesForRevoke(t *testing.T, dir fs.Dir) {
|
||
|
icmd.RunCmd(icmd.Command("docker", "pull", fixtures.AlpineImage)).Assert(t, icmd.Success)
|
||
|
icmd.RunCommand("docker", "tag", fixtures.AlpineImage, revokeImage).Assert(t, icmd.Success)
|
||
|
icmd.RunCmd(
|
||
|
icmd.Command("docker", "-D", "trust", "sign", revokeImage),
|
||
|
fixtures.WithPassphrase("root_password", "repo_password"),
|
||
|
fixtures.WithConfig(dir.Path()), fixtures.WithNotary).Assert(t, icmd.Success)
|
||
|
}
|
||
|
|
||
|
func setupTrustedImagesForRevokeRepo(t *testing.T, dir fs.Dir) {
|
||
|
icmd.RunCmd(icmd.Command("docker", "pull", fixtures.AlpineImage)).Assert(t, icmd.Success)
|
||
|
icmd.RunCommand("docker", "tag", fixtures.AlpineImage, fmt.Sprintf("%s:v1", revokeRepo)).Assert(t, icmd.Success)
|
||
|
icmd.RunCmd(
|
||
|
icmd.Command("docker", "-D", "trust", "sign", fmt.Sprintf("%s:v1", revokeRepo)),
|
||
|
fixtures.WithPassphrase("root_password", "repo_password"),
|
||
|
fixtures.WithConfig(dir.Path()), fixtures.WithNotary).Assert(t, icmd.Success)
|
||
|
icmd.RunCmd(icmd.Command("docker", "pull", fixtures.BusyboxImage)).Assert(t, icmd.Success)
|
||
|
icmd.RunCommand("docker", "tag", fixtures.BusyboxImage, fmt.Sprintf("%s:v2", revokeRepo)).Assert(t, icmd.Success)
|
||
|
icmd.RunCmd(
|
||
|
icmd.Command("docker", "-D", "trust", "sign", fmt.Sprintf("%s:v2", revokeRepo)),
|
||
|
fixtures.WithPassphrase("root_password", "repo_password"),
|
||
|
fixtures.WithConfig(dir.Path()), fixtures.WithNotary).Assert(t, icmd.Success)
|
||
|
}
|