mirror of
https://github.com/coollabsio/coolify.git
synced 2026-06-14 03:19:51 +00:00
Andras Bacsai
1802522c60
Escape SQL LIKE wildcard characters in environment variable searches and hide production or preview sections when the filtered results are empty.
252 lines
7.7 KiB
PHP
252 lines
7.7 KiB
PHP
<?php
|
|
|
|
use App\Livewire\Project\Shared\EnvironmentVariable\All;
|
|
use App\Models\Application;
|
|
use App\Models\Environment;
|
|
use App\Models\EnvironmentVariable;
|
|
use App\Models\InstanceSettings;
|
|
use App\Models\Project;
|
|
use App\Models\Service;
|
|
use App\Models\Team;
|
|
use App\Models\User;
|
|
use Illuminate\Foundation\Testing\RefreshDatabase;
|
|
use Livewire\Livewire;
|
|
|
|
uses(RefreshDatabase::class);
|
|
|
|
beforeEach(function () {
|
|
InstanceSettings::forceCreate(['id' => 0]);
|
|
|
|
$this->user = User::factory()->create();
|
|
$this->team = Team::factory()->create();
|
|
$this->team->members()->attach($this->user, ['role' => 'owner']);
|
|
$this->project = Project::factory()->create([
|
|
'team_id' => $this->team->id,
|
|
]);
|
|
$this->environment = Environment::factory()->create([
|
|
'project_id' => $this->project->id,
|
|
]);
|
|
|
|
$this->actingAs($this->user);
|
|
});
|
|
|
|
it('filters production environment variables by key case-insensitively', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'API_KEY',
|
|
'value' => 'secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'DATABASE_URL',
|
|
'value' => 'postgres://example',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
$component = Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'api');
|
|
|
|
expect($component->instance()->environmentVariables->pluck('key')->all())
|
|
->toBe(['API_KEY']);
|
|
});
|
|
|
|
it('treats production environment variable search wildcards literally', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'API_KEY',
|
|
'value' => 'secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'APIXKEY',
|
|
'value' => 'other-secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'PERCENT%KEY',
|
|
'value' => 'percent-secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
$component = Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'api_key');
|
|
|
|
expect($component->instance()->environmentVariables->pluck('key')->all())
|
|
->toBe(['API_KEY']);
|
|
|
|
$component->set('search', '%KEY');
|
|
|
|
expect($component->instance()->environmentVariables->pluck('key')->all())
|
|
->toBe(['PERCENT%KEY']);
|
|
});
|
|
|
|
it('filters preview environment variables by key case-insensitively', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'PREVIEW_TOKEN',
|
|
'value' => 'preview-secret',
|
|
'is_preview' => true,
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'OTHER_PREVIEW_VALUE',
|
|
'value' => 'preview-other',
|
|
'is_preview' => true,
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
$component = Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'token');
|
|
|
|
expect($component->instance()->environmentVariablesPreview->pluck('key')->all())
|
|
->toBe(['PREVIEW_TOKEN']);
|
|
});
|
|
|
|
it('filters hardcoded Docker Compose environment variables by key case-insensitively', function () {
|
|
$service = Service::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
'docker_compose_raw' => <<<'YAML'
|
|
services:
|
|
app:
|
|
image: nginx
|
|
environment:
|
|
API_TOKEN: hardcoded-secret
|
|
DATABASE_URL: postgres://example
|
|
YAML,
|
|
]);
|
|
|
|
$component = Livewire::test(All::class, ['resource' => $service])
|
|
->set('search', 'api');
|
|
|
|
expect($component->instance()->hardcodedEnvironmentVariables->pluck('key')->all())
|
|
->toBe(['API_TOKEN']);
|
|
});
|
|
|
|
it('does not show the empty production message when search only matches hardcoded variables', function () {
|
|
$service = Service::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
'docker_compose_raw' => <<<'YAML'
|
|
services:
|
|
app:
|
|
image: nginx
|
|
environment:
|
|
API_TOKEN: hardcoded-secret
|
|
DATABASE_URL: postgres://example
|
|
YAML,
|
|
]);
|
|
|
|
Livewire::test(All::class, ['resource' => $service])
|
|
->set('search', 'api')
|
|
->assertSee('Production Environment Variables')
|
|
->assertSee('API_TOKEN')
|
|
->assertDontSee('No environment variables found.');
|
|
});
|
|
|
|
it('keeps developer view unfiltered after searching', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'API_KEY',
|
|
'value' => 'secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'DATABASE_URL',
|
|
'value' => 'postgres://example',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
$component = Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'api')
|
|
->call('switch')
|
|
->assertSet('view', 'dev');
|
|
|
|
expect($component->get('variables'))
|
|
->toContain('API_KEY=secret')
|
|
->toContain('DATABASE_URL=postgres://example');
|
|
});
|
|
|
|
it('does not delete non-matching variables when saving developer view after searching', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'API_KEY',
|
|
'value' => 'secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'DATABASE_URL',
|
|
'value' => 'postgres://example',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'api')
|
|
->call('switch')
|
|
->call('submit');
|
|
|
|
expect($application->environment_variables()->pluck('key')->all())
|
|
->toContain('API_KEY')
|
|
->toContain('DATABASE_URL');
|
|
});
|
|
|
|
it('hides the preview section when search filters out all preview variables', function () {
|
|
$application = Application::factory()->create([
|
|
'environment_id' => $this->environment->id,
|
|
]);
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'API_KEY',
|
|
'value' => 'secret',
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
$application->environment_variables_preview()->where('key', 'API_KEY')->delete();
|
|
|
|
EnvironmentVariable::create([
|
|
'key' => 'PREVIEW_TOKEN',
|
|
'value' => 'preview-secret',
|
|
'is_preview' => true,
|
|
'resourceable_type' => Application::class,
|
|
'resourceable_id' => $application->id,
|
|
]);
|
|
|
|
Livewire::test(All::class, ['resource' => $application])
|
|
->set('search', 'api')
|
|
->assertSee('Production Environment Variables')
|
|
->assertSee('API_KEY')
|
|
->assertDontSee('Preview Deployments Environment Variables')
|
|
->assertDontSee('PREVIEW_TOKEN');
|
|
});
|