Fixing secrets retrieval bug (#2861)

Author: mathewc

src/WebJobs.Script.WebHost/Controllers/KeysController.cs

@@ -23,14 +23,12 @@ public class KeysController : ApiController
         private const string MasterKeyName = "_master";
 
         private static readonly Lazy<Dictionary<string, string>> EmptyKeys = new Lazy<Dictionary<string, string>>(() => new Dictionary<string, string>());
-        private readonly WebScriptHostManager _scriptHostManager;
         private readonly ISecretManager _secretManager;
         private readonly TraceWriter _traceWriter;
         private readonly ILogger _logger;
 
-        public KeysController(WebScriptHostManager scriptHostManager, ISecretManager secretManager, TraceWriter traceWriter, ILoggerFactory loggerFactory)
+        public KeysController(ISecretManager secretManager, TraceWriter traceWriter, ILoggerFactory loggerFactory)
         {
-            _scriptHostManager = scriptHostManager;
             _secretManager = secretManager;
             _traceWriter = traceWriter.WithDefaults($"{ScriptConstants.TraceSourceSecretManagement}.Api");
             _logger = loggerFactory?.CreateLogger(ScriptConstants.LogCategoryKeysController);
@@ -40,8 +38,8 @@ public KeysController(WebScriptHostManager scriptHostManager, ISecretManager sec
         [Route("admin/functions/{name}/keys")]
         public async Task<IHttpActionResult> Get(string name)
         {
-            IDictionary<string, string> functionKeys = await GetFunctionKeys(name);
-            return GetKeysResult(functionKeys);
+            var keys = await GetFunctionKeys(name);
+            return GetKeysResult(keys);
         }
 
         [HttpGet]
@@ -50,7 +48,7 @@ public async Task<IHttpActionResult> Get()
         {
             string hostKeyScope = GetHostKeyScopeForRequest();
 
-            Dictionary<string, string> keys = await GetHostSecretsByScope(hostKeyScope);
+            var keys = await GetHostSecretsByScope(hostKeyScope);
             return GetKeysResult(keys);
         }
 
@@ -59,7 +57,7 @@ public async Task<IHttpActionResult> Get()
         public async Task<IHttpActionResult> Get(string functionName, string name)
         {
             IDictionary<string, string> functionKeys = await GetFunctionKeys(functionName);
-            if (functionKeys.TryGetValue(name, out string keyValue))
+            if (functionKeys != null && functionKeys.TryGetValue(name, out string keyValue))
             {
                 var keyResponse = ApiModelUtility.CreateApiModel(new { name = name, value = keyValue }, Request);
                 return Ok(keyResponse);
@@ -88,11 +86,6 @@ public async Task<IHttpActionResult> GetHostKey(string name)
 
         private async Task<IDictionary<string, string>> GetFunctionKeys(string functionName)
         {
-            if (!_scriptHostManager.Instance.IsFunction(functionName))
-            {
-                throw new HttpResponseException(HttpStatusCode.NotFound);
-            }
-
             return await _secretManager.GetFunctionSecretsAsync(functionName);
         }
 
@@ -134,6 +127,11 @@ private string GetHostKeyScopeForRequest()
 
         private IHttpActionResult GetKeysResult(IDictionary<string, string> keys)
         {
+            if (keys == null)
+            {
+                return NotFound();
+            }
+
             keys = keys ?? EmptyKeys.Value;
             var keysContent = new
             {
@@ -157,11 +155,6 @@ private async Task<IHttpActionResult> PutKeyAsync(string keyName, Key key, strin
 
         private async Task<IHttpActionResult> AddOrUpdateSecretAsync(string keyName, string value, string keyScope, ScriptSecretsType secretsType)
         {
-            if (secretsType == ScriptSecretsType.Function && keyScope != null && !_scriptHostManager.Instance.IsFunction(keyScope))
-            {
-                return NotFound();
-            }
-
             KeyOperationResult operationResult;
             if (secretsType == ScriptSecretsType.Host && string.Equals(keyName, MasterKeyName, StringComparison.OrdinalIgnoreCase))
             {
@@ -231,10 +224,9 @@ private async Task<IHttpActionResult> DeleteFunctionSecretAsync(string keyName,
                 return BadRequest("Invalid key name.");
             }
 
-            if ((secretsType == ScriptSecretsType.Function && !_scriptHostManager.Instance.IsFunction(keyScope)) ||
-                !await _secretManager.DeleteSecretAsync(keyName, keyScope, secretsType))
+            if (!await _secretManager.DeleteSecretAsync(keyName, keyScope, secretsType))
             {
-                // Either the function or the key were not found
+                // the key was not found
                 return NotFound();
             }
 

src/WebJobs.Script.WebHost/Security/SecretManager.cs

@@ -73,6 +73,7 @@ public async virtual Task<HostSecretsInfo> GetHostSecretsAsync()
 
                 if (hostSecrets == null)
                 {
+                    // host secrets do not yet exist so generate them
                     _traceWriter.Verbose(Resources.TraceHostSecretGeneration);
                     _logger?.LogDebug(Resources.TraceHostSecretGeneration);
                     hostSecrets = GenerateHostSecrets();
@@ -132,6 +133,7 @@ public async virtual Task<IDictionary<string, string>> GetFunctionSecretsAsync(s
                 FunctionSecrets secrets = await LoadFunctionSecretsAsync(functionName);
                 if (secrets == null)
                 {
+                    // no secrets exist for this function so generate them
                     string message = string.Format(Resources.TraceFunctionSecretGeneration, functionName);
                     _traceWriter.Verbose(message, traceProperties);
 

test/WebJobs.Script.Tests/Controllers/Admin/KeysControllerTests.cs

@@ -26,55 +26,48 @@ public class KeysControllerTests : IDisposable
     {
         private readonly ScriptSettingsManager _settingsManager;
         private readonly TempDirectory _secretsDirectory = new TempDirectory();
-        private Mock<ScriptHost> _hostMock;
-        private Mock<WebScriptHostManager> _managerMock;
         private Collection<FunctionDescriptor> _testFunctions;
-        private Dictionary<string, Collection<string>> _testFunctionErrors;
         private KeysController _testController;
         private Mock<ISecretManager> _secretsManagerMock;
 
         public KeysControllerTests()
         {
             _settingsManager = ScriptSettingsManager.Instance;
             _testFunctions = new Collection<FunctionDescriptor>();
-            _testFunctionErrors = new Dictionary<string, Collection<string>>();
 
             var config = new ScriptHostConfiguration();
             config.TraceWriter = new TestTraceWriter(TraceLevel.Info);
             var environment = new NullScriptHostEnvironment();
             var eventManager = new Mock<IScriptEventManager>();
-            _hostMock = new Mock<ScriptHost>(MockBehavior.Strict, new object[] { environment, eventManager.Object, config, null, null });
-            _hostMock.Setup(p => p.Functions).Returns(_testFunctions);
-            _hostMock.Setup(p => p.FunctionErrors).Returns(_testFunctionErrors);
 
             WebHostSettings settings = new WebHostSettings();
             settings.SecretsPath = _secretsDirectory.Path;
             _secretsManagerMock = new Mock<ISecretManager>(MockBehavior.Strict);
-            _managerMock = new Mock<WebScriptHostManager>(MockBehavior.Strict, new object[] { config, new TestSecretManagerFactory(_secretsManagerMock.Object), eventManager.Object, _settingsManager, settings });
-            _managerMock.SetupGet(p => p.Instance).Returns(_hostMock.Object);
 
             var traceWriter = new TestTraceWriter(TraceLevel.Verbose);
 
-            _testController = new KeysController(_managerMock.Object, _secretsManagerMock.Object, traceWriter, null);
-
-            // setup some test functions
-            string errorFunction = "ErrorFunction";
-            var errors = new Collection<string>();
-            errors.Add("A really really bad error!");
-            _testFunctionErrors.Add(errorFunction, errors);
+            _testController = new KeysController(_secretsManagerMock.Object, traceWriter, null);
 
             var keys = new Dictionary<string, string>
             {
                 { "key1", "secret1" }
             };
-            _secretsManagerMock.Setup(p => p.GetFunctionSecretsAsync(errorFunction, false)).ReturnsAsync(keys);
+            _secretsManagerMock.Setup(p => p.GetFunctionSecretsAsync("TestFunction1", false)).ReturnsAsync(keys);
+
+            keys = new Dictionary<string, string>
+            {
+                { "key1", "secret1" }
+            };
+            _secretsManagerMock.Setup(p => p.GetFunctionSecretsAsync("TestFunction2", false)).ReturnsAsync(keys);
+
+            _secretsManagerMock.Setup(p => p.GetFunctionSecretsAsync("DNE", false)).ReturnsAsync((IDictionary<string, string>)null);
         }
 
         [Fact]
-        public async Task GetKeys_FunctionInError_ReturnsKeys()
+        public async Task GetKeys_ReturnsKeys()
         {
             _testController.Request = new HttpRequestMessage(HttpMethod.Get, "https://local/admin/functions/keys");
-            var result = (OkNegotiatedContentResult<ApiModel>)(await _testController.Get("ErrorFunction"));
+            var result = (OkNegotiatedContentResult<ApiModel>)(await _testController.Get("TestFunction1"));
 
             var content = (JObject)result.Content;
             var keys = content["keys"];
@@ -83,28 +76,36 @@ public async Task GetKeys_FunctionInError_ReturnsKeys()
         }
 
         [Fact]
-        public async Task PutKey_FunctionInError_Succeeds()
+        public async Task GetKeys_NoSecrets_ReturnsNotFound()
+        {
+            var result = await _testController.Get("DNE");
+
+            Assert.True(result is NotFoundResult);
+        }
+
+        [Fact]
+        public async Task PutKey_Succeeds()
         {
             _testController.Request = new HttpRequestMessage(HttpMethod.Get, "https://local/admin/functions/keys/key2");
 
             var key = new Key("key2", "secret2");
             var keyOperationResult = new KeyOperationResult(key.Value, OperationResult.Updated);
-            _secretsManagerMock.Setup(p => p.AddOrUpdateFunctionSecretAsync(key.Name, key.Value, "ErrorFunction", ScriptSecretsType.Function)).ReturnsAsync(keyOperationResult);
+            _secretsManagerMock.Setup(p => p.AddOrUpdateFunctionSecretAsync(key.Name, key.Value, "TestFunction1", ScriptSecretsType.Function)).ReturnsAsync(keyOperationResult);
 
-            var result = (OkNegotiatedContentResult<ApiModel>)(await _testController.Put("ErrorFunction", key.Name, key));
+            var result = (OkNegotiatedContentResult<ApiModel>)(await _testController.Put("TestFunction1", key.Name, key));
             var content = (JObject)result.Content;
             Assert.Equal("key2", content["name"]);
             Assert.Equal("secret2", content["value"]);
         }
 
         [Fact]
-        public async Task DeleteKey_FunctionInError_Succeeds()
+        public async Task DeleteKey_Succeeds()
         {
             _testController.Request = new HttpRequestMessage(HttpMethod.Get, "https://local/admin/functions/keys/key2");
 
-            _secretsManagerMock.Setup(p => p.DeleteSecretAsync("key2", "ErrorFunction", ScriptSecretsType.Function)).ReturnsAsync(true);
+            _secretsManagerMock.Setup(p => p.DeleteSecretAsync("key2", "TestFunction1", ScriptSecretsType.Function)).ReturnsAsync(true);
 
-            var result = (StatusCodeResult)(await _testController.Delete("ErrorFunction", "key2"));
+            var result = (StatusCodeResult)(await _testController.Delete("TestFunction1", "key2"));
             Assert.Equal(HttpStatusCode.NoContent, result.StatusCode);
         }