blob: 3be4f742a245334e5d42f87025e12b011c35e99d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
# frozen_string_literal: true
require 'spec_helper'
RSpec.describe Ci::SecureFileUploader do
subject { ci_secure_file.file }
let(:project) { create(:project) }
let(:ci_secure_file) { create(:ci_secure_file) }
let(:sample_file) { fixture_file('ci_secure_files/upload-keystore.jks') }
before do
stub_ci_secure_file_object_storage
end
describe '#key' do
it 'creates a digest with a secret key and the project id' do
expect(OpenSSL::HMAC)
.to receive(:digest)
.with('SHA256', Gitlab::Application.secrets.db_key_base, ci_secure_file.project_id.to_s)
.and_return('digest')
expect(subject.key).to eq('digest')
end
end
describe '.checksum' do
it 'returns a SHA256 checksum for the unencrypted file' do
expect(subject.checksum).to eq(Digest::SHA256.hexdigest(sample_file))
end
end
describe 'encryption' do
it 'encrypts the stored file' do
expect(Base64.encode64(subject.file.read)).not_to eq(Base64.encode64(sample_file))
end
it 'decrypts the file when reading' do
expect(Base64.encode64(subject.read)).to eq(Base64.encode64(sample_file))
end
end
describe '.direct_upload_enabled?' do
it 'returns false' do
expect(described_class.direct_upload_enabled?).to eq(false)
end
end
describe '.background_upload_enabled?' do
it 'returns false' do
expect(described_class.background_upload_enabled?).to eq(false)
end
end
describe '.default_store' do
context 'when object storage is enabled' do
it 'returns REMOTE' do
expect(described_class.default_store).to eq(ObjectStorage::Store::REMOTE)
end
end
context 'when object storage is disabled' do
before do
stub_ci_secure_file_object_storage(enabled: false)
end
it 'returns LOCAL' do
expect(described_class.default_store).to eq(ObjectStorage::Store::LOCAL)
end
end
end
end
|
