From 1924a73dc378bc7a8c63aa931e6ac2eba301d2b1 Mon Sep 17 00:00:00 2001
From: jakedoublev <jake.vanvorhis@virtru.com>
Date: Fri, 23 Aug 2024 10:00:26 -0700
Subject: [PATCH] feat(ci): attr e2e tests with mixed casing

---
 tests/encrypt-decrypt.bats | 61 ++++++++++++++++++++++++++++----------
 1 file changed, 45 insertions(+), 16 deletions(-)

diff --git a/tests/encrypt-decrypt.bats b/tests/encrypt-decrypt.bats
index 1c6e2e77..efaef79f 100755
--- a/tests/encrypt-decrypt.bats
+++ b/tests/encrypt-decrypt.bats
@@ -2,34 +2,63 @@
 
 # Tests for encrypt decrypt
 
-setup() {
+setup_file() {
   export CREDSFILE=creds.json
   echo -n '{"clientId":"opentdf","clientSecret":"secret"}' > $CREDSFILE
   export WITH_CREDS="--with-client-creds-file $CREDSFILE"
+  export DEBUG_LEVEL="--log-level debug"
   export HOST=http://localhost:8080
 
-  export INFILE=go.mod
-  export OUTFILE=go.mod.tdf
-  export RESULTFILE=result.mod
+  export INFILE_GO_MOD=go.mod
+  export OUTFILE_GO_MOD=go.mod.tdf
+  export RESULTFILE_GO_MOD=result.mod
+
+  export SECRET_TEXT="my special secret"
+  export OUT_TXT=secret.txt
+  export OUTFILE_TXT=secret.txt.tdf
+
+  NS_ID=$(./otdfctl --host $HOST $WITH_CREDS $DEBUG_LEVEL policy attributes namespaces create -n "testing-enc-dec.io" --json | jq -r '.id')
+  ATTR_ID=$(./otdfctl --host $HOST $WITH_CREDS $DEBUG_LEVEL policy attributes create --namespace "$NS_ID" -n attr1 -r ALL_OF --json | jq -r '.id')
+  VAL_ID=$(./otdfctl --host $HOST $WITH_CREDS $DEBUG_LEVEL policy attributes values create --attribute-id "$ATTR_ID" -v value1 --json | jq -r '.id')
+  # entitles opentdf client id for client credentials CLI user
+  SCS='[{"condition_groups":[{"conditions":[{"operator":1,"subject_external_values":["opentdf"],"subject_external_selector_value":".clientId"}],"boolean_operator":2}]}]'
+  SM=$(./otdfctl --host $HOST $WITH_CREDS $DEBUG_LEVEL policy subject-mappings create --action-standard DECRYPT -a "$VAL_ID" --subject-condition-set-new "$SCS")
+  export FQN="https://testing-enc-dec.io/attr/attr1/value/value1"
+  export MIXED_CASE_FQN="https://Testing-Enc-Dec.io/attr/Attr1/value/VALUE1"
 }
 
 teardown() {
-    rm -f $OUTFILE $RESULTFILE $CREDSFILE
+    rm -f $OUTFILE_GO_MOD $RESULTFILE_GO_MOD $OUTFILE_TXT
+}
+
+@test "roundtrip TDF3, no attributes, file" {
+  ./otdfctl encrypt -o $OUTFILE_GO_MOD --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS --tdf-type tdf3 $INFILE_GO_MOD
+  ./otdfctl decrypt -o $RESULTFILE_GO_MOD --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS --tdf-type tdf3 $OUTFILE_GO_MOD
+  diff $INFILE_GO_MOD $RESULTFILE_GO_MOD
 }
 
-@test "roundtrip TDF3" {
-  ./otdfctl encrypt -o $OUTFILE --host $HOST --tls-no-verify --log-level debug $WITH_CREDS --tdf-type tdf3 $INFILE
-  ./otdfctl decrypt -o $RESULTFILE --host $HOST --tls-no-verify --log-level debug $WITH_CREDS --tdf-type tdf3 $OUTFILE
-  diff $INFILE $RESULTFILE
+@test "roundtrip TDF3, one attribute, stdin" {
+  echo $SECRET_TEXT | ./otdfctl encrypt -o $OUT_TXT --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS -a $FQN
+  ./otdfctl decrypt --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS $OUTFILE_TXT | grep "$SECRET_TEXT"
 }
 
-@test "roundtrip NANO" {
-  ./otdfctl encrypt -o $OUTFILE --host $HOST --tls-no-verify --log-level debug $WITH_CREDS --tdf-type nano $INFILE
-  ./otdfctl decrypt -o $RESULTFILE --host $HOST --tls-no-verify --log-level debug $WITH_CREDS --tdf-type nano $OUTFILE
-  diff $INFILE $RESULTFILE
+@test "roundtrip TDF3, one attribute, mixed case FQN, stdin" {
+  echo $SECRET_TEXT | ./otdfctl encrypt -o $OUT_TXT --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS -a $MIXED_CASE_FQN
+  ./otdfctl decrypt --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS $OUTFILE_TXT | grep "$SECRET_TEXT"
 }
 
-# Future Tests
+@test "roundtrip NANO, no attributes, file" {
+  ./otdfctl encrypt -o $OUTFILE_GO_MOD --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS --tdf-type nano $INFILE_GO_MOD
+  ./otdfctl decrypt -o $RESULTFILE_GO_MOD --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS --tdf-type nano $OUTFILE_GO_MOD
+  diff $INFILE_GO_MOD $RESULTFILE_GO_MOD
+}
+
+@test "roundtrip NANO, one attribute, stdin" {
+  echo $SECRET_TEXT | ./otdfctl encrypt --tdf-type nano -o $OUT_TXT --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS -a $FQN
+  ./otdfctl decrypt --tdf-type nano --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS $OUTFILE_TXT | grep "$SECRET_TEXT"
+}
 
-# Encrypt and decrypt with attributes:
-# Create an attribute and a subject mapping for the specific clientId then roundtrip trip w it
+@test "roundtrip NANO, one attribute, mixed case FQN, stdin" {
+  echo $SECRET_TEXT | ./otdfctl encrypt --tdf-type nano -o $OUT_TXT --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS -a $MIXED_CASE_FQN
+  ./otdfctl decrypt --tdf-type nano --host $HOST --tls-no-verify $DEBUG_LEVEL $WITH_CREDS $OUTFILE_TXT | grep "$SECRET_TEXT"
+}