yindo/posthog
1
0
Fork 0
mirror of https://github.com/BillyOutlast/posthog.git synced 2026-02-04 03:01:23 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
posthog/infra-scripts/clitools/test_toolbox.py

489 lines
18 KiB
Python
Raw Permalink Blame History

#!/usr/bin/env python3
import json
import time
import subprocess
import unittest
from unittest.mock import MagicMock, patch
from toolbox.kubernetes import get_available_contexts, get_current_context, select_context, switch_context
from toolbox.pod import claim_pod, get_toolbox_pod
from toolbox.user import get_current_user, parse_arn, sanitize_label
class TestToolbox(unittest.TestCase):
def test_sanitize_label(self):
"""Test label sanitization function."""
# Test basic email sanitization
self.assertEqual(sanitize_label("user@example.com"), "user_at_example.com")
# Test with special characters
self.assertEqual(sanitize_label("user.name@example.com"), "user.name_at_example.com")
# Test with underscores
self.assertEqual(sanitize_label("user_name@example.com"), "user_name_at_example.com")
# Test with leading/trailing underscores
self.assertEqual(sanitize_label("_user@example.com_"), "user_at_example.com")
def test_sanitize_label_truncation(self):
long_arn = (
"arn:aws:sts::169684386827:assumed-role/custom-role-name/" + "averyveryveryveryverylongemail@posthog.com"
)
sanitized = sanitize_label(long_arn)
self.assertTrue(sanitized.startswith("arn_aws_sts__169684386827_assu"))
self.assertIn("longemail_at_posthog.com", sanitized)
self.assertLessEqual(len(sanitized), 63)
def test_parse_arn_valid(self):
"""Test parsing valid AWS STS ARN."""
arn = "arn:aws:sts::169684386827:assumed-role/AWSReservedSSO_developers_0847e649a00cc5e7/michael.k@posthog.com"
expected = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
self.assertEqual(parse_arn(arn), expected)
def test_parse_arn_different_role(self):
"""Test parsing ARN with different role."""
arn = "arn:aws:sts::169684386827:assumed-role/AWSReservedSSO_admins_0847e649a00cc5e7/michael.k@posthog.com"
expected = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "admins", "assumed-role": "true"}
self.assertEqual(parse_arn(arn), expected)
def test_parse_arn_unexpected_format(self):
"""Test parsing ARN with unexpected role format."""
arn = "arn:aws:sts::169684386827:assumed-role/custom-role-name/michael.k@posthog.com"
expected = {"toolbox-claimed": "arn_aws_sts__169684386827_assum_e-name_michael.k_at_posthog.com"}
self.assertEqual(parse_arn(arn), expected)
@patch("subprocess.run")
def test_get_current_user(self, mock_run):
"""Test getting current user from kubectl auth."""
# Mock kubectl auth whoami response
mock_response = MagicMock()
mock_response.stdout = json.dumps(
{
"status": {
"userInfo": {
"username": "sso-developers",
"extra": {
"arn": [
"arn:aws:sts::169684386827:assumed-role/AWSReservedSSO_developers_0847e649a00cc5e7/michael.k@posthog.com"
],
"sessionName": ["michael.k@posthog.com"],
},
}
}
}
)
mock_run.return_value = mock_response
user_labels = get_current_user()
expected = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
self.assertEqual(user_labels, expected)
mock_run.assert_called_once_with(
["kubectl", "auth", "whoami", "-o", "json"], capture_output=True, text=True, check=True
)
@patch("subprocess.run")
def test_get_toolbox_pod(self, mock_run):
"""Test getting available toolbox pod."""
# Mock kubectl get pods response
mock_response = MagicMock()
mock_response.stdout = json.dumps(
{
"items": [
{
"metadata": {
"name": "toolbox-pod-1",
"labels": {
"app.kubernetes.io/name": "posthog-toolbox-django",
"pod-template-hash": "749c5d8db",
"posthog.com/image": "posthog",
"posthog.com/team": "infra",
"role": "toolbox",
},
"deletionTimestamp": None,
},
"status": {"phase": "Running"},
}
]
}
)
mock_run.return_value = mock_response
pod_name, is_claimed = get_toolbox_pod("michael.k_at_posthog.com")
self.assertEqual(pod_name, "toolbox-pod-1")
self.assertFalse(is_claimed)
mock_run.assert_called_once_with(
[
"kubectl",
"get",
"pods",
"-n",
"posthog",
"-l",
"app.kubernetes.io/name=posthog-toolbox-django",
"-o",
"json",
],
capture_output=True,
text=True,
check=True,
)
@patch("subprocess.run")
def test_claim_pod(self, mock_run):
"""Test claiming a pod."""
# Mock kubectl get pod response
mock_get_response = MagicMock()
mock_get_response.stdout = json.dumps({"app.kubernetes.io/name": "posthog-toolbox-django"})
# Mock kubectl label and annotate responses
mock_label_response = MagicMock()
mock_annotate_response = MagicMock()
# Set up the side effect to handle all kubectl calls
mock_run.side_effect = [
mock_get_response, # get pod labels
mock_annotate_response, # add annotation
mock_label_response, # add new labels
mock_label_response, # wait for pod
]
user_labels = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
claim_pod("toolbox-pod-1", user_labels, 1234567890)
# Verify kubectl commands were called correctly
self.assertEqual(mock_run.call_count, 4)
# Get all calls made to kubectl
calls = mock_run.call_args_list
# Verify the first call to get pod labels
self.assertEqual(
calls[0][0][0],
["kubectl", "get", "pod", "-n", "posthog", "toolbox-pod-1", "-o", "jsonpath={.metadata.labels}"],
)
# Verify the annotation call
self.assertEqual(
calls[1][0][0],
[
"kubectl",
"annotate",
"pod",
"-n",
"posthog",
"toolbox-pod-1",
"karpenter.sh/do-not-disrupt=true",
"--overwrite=true",
],
)
# Verify the label call
self.assertEqual(
calls[2][0][0],
[
"kubectl",
"label",
"pod",
"-n",
"posthog",
"toolbox-pod-1",
"toolbox-claimed=michael.k_at_posthog.com",
"role-name=developers",
"assumed-role=true",
"terminate-after=1234567890",
],
)
# Verify the wait call
self.assertEqual(
calls[3][0][0],
["kubectl", "wait", "--for=condition=Ready", "--timeout=5m", "-n", "posthog", "pod", "toolbox-pod-1"],
)
@patch("subprocess.run")
def test_claim_pod_custom_duration(self, mock_run):
"""Test claiming a pod with custom duration."""
# Mock kubectl get pod response
mock_get_response = MagicMock()
mock_get_response.stdout = json.dumps({"app.kubernetes.io/name": "posthog-toolbox-django"})
# Mock kubectl label and annotate responses
mock_label_response = MagicMock()
mock_annotate_response = MagicMock()
# Set up the side effect to handle all kubectl calls
mock_run.side_effect = [
mock_get_response, # get pod labels
mock_annotate_response, # add annotation
mock_label_response, # add new labels
mock_label_response, # wait for pod
]
# Calculate timestamp 4 hours from now
future_timestamp = int(time.time()) + (4 * 60 * 60)
user_labels = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
claim_pod("toolbox-pod-1", user_labels, future_timestamp)
# Verify kubectl commands were called correctly
self.assertEqual(mock_run.call_count, 4)
# Get all calls made to kubectl
calls = mock_run.call_args_list
# Verify the label call includes the future timestamp
self.assertEqual(
calls[2][0][0],
[
"kubectl",
"label",
"pod",
"-n",
"posthog",
"toolbox-pod-1",
"toolbox-claimed=michael.k_at_posthog.com",
"role-name=developers",
"assumed-role=true",
f"terminate-after={future_timestamp}",
],
)
@patch("subprocess.run")
def test_update_claim(self, mock_run):
"""Test updating an existing pod claim."""
# Mock kubectl get pod response
mock_get_response = MagicMock()
mock_get_response.stdout = json.dumps(
{
"app.kubernetes.io/name": "posthog-toolbox-django",
"toolbox-claimed": "michael.k_at_posthog.com",
"role-name": "developers",
"assumed-role": "true",
"terminate-after": "1234567890",
}
)
# Mock kubectl label and annotate responses
mock_label_response = MagicMock()
mock_annotate_response = MagicMock()
# Set up the side effect to handle all kubectl calls
mock_run.side_effect = [
mock_get_response, # get pod labels
mock_label_response, # remove toolbox-claimed
mock_label_response, # remove role-name
mock_label_response, # remove assumed-role
mock_label_response, # remove terminate-after
mock_annotate_response, # add annotation
mock_label_response, # add new labels
mock_label_response, # wait for pod
]
# Calculate new timestamp 24 hours from now
future_timestamp = int(time.time()) + (24 * 60 * 60)
user_labels = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
claim_pod("toolbox-pod-1", user_labels, future_timestamp)
# Verify kubectl commands were called correctly
self.assertEqual(mock_run.call_count, 8)
# Get all calls made to kubectl
calls = mock_run.call_args_list
# Verify the first call to get pod labels
self.assertEqual(
calls[0][0][0],
["kubectl", "get", "pod", "-n", "posthog", "toolbox-pod-1", "-o", "jsonpath={.metadata.labels}"],
)
# Verify the label removal calls
self.assertEqual(
calls[1][0][0], ["kubectl", "label", "pod", "-n", "posthog", "toolbox-pod-1", "toolbox-claimed-"]
)
self.assertEqual(calls[2][0][0], ["kubectl", "label", "pod", "-n", "posthog", "toolbox-pod-1", "role-name-"])
self.assertEqual(calls[3][0][0], ["kubectl", "label", "pod", "-n", "posthog", "toolbox-pod-1", "assumed-role-"])
self.assertEqual(
calls[4][0][0], ["kubectl", "label", "pod", "-n", "posthog", "toolbox-pod-1", "terminate-after-"]
)
# Verify the annotation call
self.assertEqual(
calls[5][0][0],
[
"kubectl",
"annotate",
"pod",
"-n",
"posthog",
"toolbox-pod-1",
"karpenter.sh/do-not-disrupt=true",
"--overwrite=true",
],
)
# Verify the label call
self.assertEqual(
calls[6][0][0],
[
"kubectl",
"label",
"pod",
"-n",
"posthog",
"toolbox-pod-1",
"toolbox-claimed=michael.k_at_posthog.com",
"role-name=developers",
"assumed-role=true",
f"terminate-after={future_timestamp}",
],
)
# Verify the wait call
self.assertEqual(
calls[7][0][0],
["kubectl", "wait", "--for=condition=Ready", "--timeout=5m", "-n", "posthog", "pod", "toolbox-pod-1"],
)
# New tests for Kubernetes context functions
@patch("subprocess.run")
def test_get_available_contexts(self, mock_run):
"""Test getting available kubernetes contexts."""
mock_response = MagicMock()
mock_response.stdout = "context1\ncontext2\ncontext3"
mock_run.return_value = mock_response
contexts = get_available_contexts()
self.assertEqual(contexts, ["context1", "context2", "context3"])
mock_run.assert_called_once_with(
["kubectl", "config", "get-contexts", "-o", "name"], capture_output=True, text=True, check=True
)
@patch("subprocess.run")
def test_get_available_contexts_empty(self, mock_run):
"""Test getting available kubernetes contexts when none exist."""
mock_response = MagicMock()
mock_response.stdout = ""
mock_run.return_value = mock_response
contexts = get_available_contexts()
self.assertEqual(contexts, [])
mock_run.assert_called_once()
@patch("subprocess.run")
def test_get_available_contexts_error(self, mock_run):
"""Test error handling when getting available contexts fails."""
mock_run.side_effect = subprocess.CalledProcessError(1, "kubectl", "error")
with self.assertRaises(SystemExit):
get_available_contexts()
mock_run.assert_called_once()
@patch("subprocess.run")
def test_get_current_context(self, mock_run):
"""Test getting current kubernetes context."""
mock_response = MagicMock()
mock_response.stdout = "current-context"
mock_run.return_value = mock_response
context = get_current_context()
self.assertEqual(context, "current-context")
mock_run.assert_called_once_with(
["kubectl", "config", "current-context"], capture_output=True, text=True, check=True
)
@patch("subprocess.run")
def test_get_current_context_error(self, mock_run):
"""Test error handling when getting current context fails."""
mock_run.side_effect = subprocess.CalledProcessError(1, "kubectl", "error")
context = get_current_context()
self.assertIsNone(context)
mock_run.assert_called_once()
@patch("subprocess.run")
def test_switch_context(self, mock_run):
"""Test switching kubernetes context."""
mock_run.return_value = MagicMock()
result = switch_context("new-context")
self.assertTrue(result)
mock_run.assert_called_once_with(["kubectl", "config", "use-context", "new-context"], check=True)
@patch("subprocess.run")
def test_switch_context_error(self, mock_run):
"""Test error handling when switching context fails."""
mock_run.side_effect = subprocess.CalledProcessError(1, "kubectl", "error")
result = switch_context("invalid-context")
self.assertFalse(result)
mock_run.assert_called_once()
@patch("toolbox.kubernetes.get_available_contexts")
@patch("toolbox.kubernetes.get_current_context")
@patch("builtins.input")
def test_select_context(self, mock_input, mock_get_current, mock_get_available):
"""Test selecting kubernetes context."""
# Setup mocks
mock_get_available.return_value = ["context1", "context2", "context3"]
mock_get_current.return_value = "context1"
mock_input.return_value = "" # User just presses Enter to use current context
# Call function
result = select_context()
# Verify result
self.assertEqual(result, "context1")
mock_get_available.assert_called_once()
mock_get_current.assert_called_once()
mock_input.assert_called_once()
@patch("toolbox.kubernetes.get_available_contexts")
@patch("toolbox.kubernetes.get_current_context")
def test_select_context_current_none(self, mock_get_current, mock_get_available):
"""Test select_context exits if current context is None."""
mock_get_available.return_value = ["context1", "context2"]
mock_get_current.return_value = None
with self.assertRaises(SystemExit):
select_context()
@patch("subprocess.run")
def test_claim_pod_wait_timeout(self, mock_run):
"""Test claim_pod exits if pod does not become ready within 5 minutes."""
mock_get_response = MagicMock()
mock_get_response.stdout = json.dumps({"app.kubernetes.io/name": "posthog-toolbox-django"})
mock_annotate_response = MagicMock()
mock_label_response = MagicMock()
call_count = {"n": 0}
def side_effect(*args, **kwargs):
call_count["n"] += 1
if call_count["n"] == 1:
return mock_get_response
elif call_count["n"] == 2:
return mock_annotate_response
elif call_count["n"] == 3:
return mock_label_response
elif call_count["n"] == 4:
raise subprocess.CalledProcessError(1, args[0], "Timed out")
else:
return mock_label_response
mock_run.side_effect = side_effect
user_labels = {"toolbox-claimed": "michael.k_at_posthog.com", "role-name": "developers", "assumed-role": "true"}
with self.assertRaises(SystemExit):
claim_pod("toolbox-pod-1", user_labels, 1234567890)
if __name__ == "__main__":
unittest.main()
Reference in New Issue View Git Blame Copy Permalink