adding more test cases for ELB

sourabh · sourabh · commit fe96cd53851f · 2021-06-07T16:24:51.000+05:30
diff --git a/terratest/aws/elb/TestWithExistingCollectorIAMNewSNSResources.json b/terratest/aws/elb/TestWithExistingCollectorIAMNewSNSResources.json
@@ -0,0 +1,51 @@
+{
+  "aws_serverlessapplicationrepository_cloudformation_stack": [
+    {
+      "auto_enable_access_logs": {
+        "name": "Auto-Enable-Access-Logs-Elb",
+        "application_id": "arn:aws:serverlessrepo:us-east-1:956882708938:applications/sumologic-s3-logging-auto-enable",
+        "capabilities": [
+          "CAPABILITY_IAM",
+          "CAPABILITY_RESOURCE_POLICY"
+        ],
+        "parameters": {
+          "AutoEnableLogging": "ALB",
+          "BucketName": "cf-templates-1qpf3unpuo1hw-{Region}",
+          "BucketPrefix": "elasticloadbalancing"
+        },
+        "semantic_version": "1.0.2"
+      }
+    }
+  ],
+  "aws_iam_role": {},
+  "aws_s3_bucket": {},
+  "aws_sns_subscription": {
+    "delivery_policy": "{\"healthyRetryPolicy\":{\"minDelayTarget\":10,\"maxDelayTarget\":300,\"numRetries\":40,\"numMaxDelayRetries\":5,\"numNoDelayRetries\":0,\"numMinDelayRetries\":3,\"backoffFunction\":\"exponential\"},\"sicklyRetryPolicy\":null,\"throttlePolicy\":null,\"guaranteed\":false}",
+    "endpoint_auto_confirms": true,
+    "topic_arn": "arn:aws:sns:{Region}:{AccountId}:SumoLogic-Terraform-Elb-Module-{AccountId}"
+  },
+  "aws_sns_topic": [
+    {
+      "sns_topic": {
+        "name": "SumoLogic-Terraform-Elb-Module-{AccountId}",
+        "policy": "{\"Version\":\"2008-10-17\",\"Statement\":[{\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"s3.amazonaws.com\"},\"Action\":\"sns:Publish\",\"Resource\":\"arn:aws:sns:{Region}:{AccountId}:SumoLogic-Terraform-Elb-Module-{AccountId}\",\"Condition\":{\"StringEquals\":{\"aws:SourceAccount\":\"{AccountId}\"},\"ArnLike\":{\"aws:SourceArn\":\"arn:aws:s3:::cf-templates-1qpf3unpuo1hw-{Region}\"}}}]}"
+      }
+    }
+  ],
+  "aws_s3_bucket_notification": {},
+  "sumologic_collector": {},
+  "sumologic_source": {
+    "category": "Labs/test/elb",
+    "content_type": "AwsElbBucket",
+    "description": "This source is created.",
+    "path": [
+      {
+        "bucket_name": "{BucketName}",
+        "path_expression": "{PathExpression}"
+      }
+    ],
+    "paused": false,
+    "scan_interval": 60000,
+    "name": "My ELB Source Exixting IAM"
+  }
+}
diff --git a/terratest/aws/elb/TestWithExistingResourcesValues.json b/terratest/aws/elb/TestWithExistingResourcesValues.json
@@ -0,0 +1,44 @@
+{
+  "aws_serverlessapplicationrepository_cloudformation_stack": [
+    {
+      "auto_enable_access_logs": {
+        "name": "Auto-Enable-Access-Logs-Elb",
+        "application_id": "arn:aws:serverlessrepo:us-east-1:956882708938:applications/sumologic-s3-logging-auto-enable",
+        "capabilities": [
+          "CAPABILITY_IAM",
+          "CAPABILITY_RESOURCE_POLICY"
+        ],
+        "parameters": {
+          "AutoEnableLogging": "ALB",
+          "BucketName": "cf-templates-1qpf3unpuo1hw-{Region}",
+          "BucketPrefix": "elasticloadbalancing"
+        },
+        "semantic_version": "1.0.2"
+      }
+    }
+  ],
+  "aws_iam_role": {},
+  "aws_s3_bucket": {},
+  "aws_sns_subscription": {
+    "delivery_policy": "{\"healthyRetryPolicy\":{\"minDelayTarget\":10,\"maxDelayTarget\":300,\"numRetries\":40,\"numMaxDelayRetries\":5,\"numNoDelayRetries\":0,\"numMinDelayRetries\":3,\"backoffFunction\":\"exponential\"},\"sicklyRetryPolicy\":null,\"throttlePolicy\":null,\"guaranteed\":false}",
+    "endpoint_auto_confirms": true,
+    "topic_arn": "arn:aws:sns:{Region}:{AccountId}:dynamodb"
+  },
+  "aws_sns_topic": {},
+  "aws_s3_bucket_notification": {},
+  "sumologic_collector": {},
+  "sumologic_source": {
+    "category": "Labs/test/elb",
+    "content_type": "AwsElbBucket",
+    "description": "This source is created.",
+    "path": [
+      {
+        "bucket_name": "{BucketName}",
+        "path_expression": "{PathExpression}"
+      }
+    ],
+    "paused": false,
+    "scan_interval": 60000,
+    "name": "My ELB Source Existing Resources"
+  }
+}
diff --git a/terratest/aws/elb/elb_test.go b/terratest/aws/elb/elb_test.go
@@ -3,6 +3,7 @@ package elb
 import (
 	"fmt"
 	"net/http"
+	"os"
 	"testing"
 	"time"
 
@@ -12,6 +13,9 @@ import (
 	test_structure "github.com/gruntwork-io/terratest/modules/test-structure"
 )
 
+var IAM_ROLE = os.Getenv("IAM_ROLE")
+var COLLECTOR_ID = os.Getenv("COLLECTOR_ID")
+
 func SetUpTest(t *testing.T, vars map[string]interface{}, awsregion string) (*terraform.Options, *terraform.ResourceCount) {
 	envVars := map[string]string{
 		"AWS_DEFAULT_REGION":    awsregion,
@@ -25,6 +29,12 @@ func SetUpTest(t *testing.T, vars map[string]interface{}, awsregion string) (*te
 	return terraformOptions, resourceCount
 }
 
+func UpdateTerraform(t *testing.T, vars map[string]interface{}, options *terraform.Options) *terraform.ResourceCount {
+	options.Vars = vars
+	out := terraform.Apply(t, options)
+	return terraform.GetResourceCount(t, out)
+}
+
 func TestWithDefaultValues(t *testing.T) {
 	t.Parallel()
 	aws_region := "us-east-2"
@@ -63,6 +73,184 @@ func TestWithDefaultValues(t *testing.T) {
 
 	// Assert if the logs are sent to Sumo Logic.
 	outputs := common.FetchAllOutputs(t, options)
+	assertResource.CheckLogsForPastSixtyMinutes("_sourceid="+outputs["sumologic_source"].(map[string]interface{})["id"].(string), 5, 2*time.Minute)
 	assertResource.ValidateLoadBalancerAccessLogs(lb_id, outputs["aws_s3_bucket"].(map[string]interface{})["s3_bucket"].(map[string]interface{})["bucket"].(string))
+}
+
+func TestWithExistingResourcesValues(t *testing.T) {
+	t.Parallel()
+	BUCKET_NAME := os.Getenv("BUCKET_NAME_US_WEST_1")
+	PATH_EXPRESSION := os.Getenv("PATH_EXPRESSION_US_WEST_1")
+	SNS_TOPIC := os.Getenv("TOPIC_ARN_US_WEST_1")
+
+	aws_region := "us-west-1"
+	assertResource := common.GetAssertResource(t, map[string]string{"AWS_DEFAULT_REGION": aws_region})
+	lb_id, dns := assertResource.CreateELB("TestWithDefaultValuesLB", "TestWithDefaultValuesTG")
+	replacementMap := map[string]interface{}{
+		"AccountId":      aws.GetAccountId(t),
+		"Region":         aws_region,
+		"SumoAccountId":  common.SumoAccountId,
+		"Deployment":     common.SumologicEnvironment,
+		"OrgId":          common.SumologicOrganizationId,
+		"BucketName":     BUCKET_NAME,
+		"PathExpression": PATH_EXPRESSION,
+	}
+	vars := map[string]interface{}{
+		"create_collector":          false,
+		"sumologic_organization_id": common.SumologicOrganizationId,
+		"auto_enable_access_logs":   "Existing",
+		"source_details": map[string]interface{}{
+			"source_name":     "My ELB Source Existing Resources",
+			"source_category": "Labs/test/elb",
+			"description":     "This source is created.",
+			"bucket_details": map[string]interface{}{
+				"create_bucket":        false,
+				"bucket_name":          BUCKET_NAME,
+				"path_expression":      PATH_EXPRESSION,
+				"force_destroy_bucket": true,
+			},
+			"paused":               false,
+			"scan_interval":        60000,
+			"cutoff_relative_time": "-1d",
+			"fields": map[string]string{
+				"TestCollector": "MyValue",
+			},
+			"sumo_account_id": "926226587429",
+			"collector_id":    COLLECTOR_ID,
+			"iam_role_arn":    IAM_ROLE,
+			"sns_topic_arn":   SNS_TOPIC,
+		},
+	}
+
+	options, count := SetUpTest(t, vars, aws_region)
+
+	// Assert count of Expected resources.
+	test_structure.RunTestStage(t, "AssertCount", func() {
+		common.AssertResourceCounts(t, count, 4, 0, 0)
+	})
+
+	// Assert if the outputs are actually created in AWS and Sumo Logic.
+	// This also checks if your expectation are matched with the outputs, so provide an JSON with expected outputs.
+	expectedOutputs := common.ReadJsonFile("TestWithExistingResourcesValues.json", replacementMap)
+	test_structure.RunTestStage(t, "AssertOutputs", func() {
+		common.AssertOutputs(t, options, expectedOutputs)
+	})
+
+	// Before checking logs, create a load balancer, check if access logs has been enabled and then hit it to generate logs
+	http.Get(fmt.Sprintf("http://%s", *dns))
+
+	// Assert if the logs are sent to Sumo Logic.
+	outputs := common.FetchAllOutputs(t, options)
+	assertResource.ValidateLoadBalancerAccessLogs(lb_id, BUCKET_NAME)
+	assertResource.CheckLogsForPastSixtyMinutes("_sourceid="+outputs["sumologic_source"].(map[string]interface{})["id"].(string), 5, 2*time.Minute)
+}
+
+func TestWithExistingCollectorIAMNewSNSResources(t *testing.T) {
+	t.Parallel()
+	BUCKET_NAME := os.Getenv("BUCKET_NAME_AP_SOUTH_1")
+	PATH_EXPRESSION := os.Getenv("PATH_EXPRESSION_AP_SOUTH_1")
+
+	aws_region := "ap-south-1"
+	assertResource := common.GetAssertResource(t, map[string]string{"AWS_DEFAULT_REGION": aws_region})
+	lb_id, dns := assertResource.CreateELB("TestWithDefaultValuesLB", "TestWithDefaultValuesTG")
+	replacementMap := map[string]interface{}{
+		"AccountId":      aws.GetAccountId(t),
+		"Region":         aws_region,
+		"SumoAccountId":  common.SumoAccountId,
+		"Deployment":     common.SumologicEnvironment,
+		"OrgId":          common.SumologicOrganizationId,
+		"BucketName":     BUCKET_NAME,
+		"PathExpression": PATH_EXPRESSION,
+	}
+	vars := map[string]interface{}{
+		"create_collector":          false,
+		"sumologic_organization_id": common.SumologicOrganizationId,
+		"auto_enable_access_logs":   "Existing",
+		"source_details": map[string]interface{}{
+			"source_name":     "My ELB Source Exixting IAM",
+			"source_category": "Labs/test/elb",
+			"description":     "This source is created.",
+			"bucket_details": map[string]interface{}{
+				"create_bucket":        false,
+				"bucket_name":          BUCKET_NAME,
+				"path_expression":      PATH_EXPRESSION,
+				"force_destroy_bucket": true,
+			},
+			"paused":               false,
+			"scan_interval":        60000,
+			"cutoff_relative_time": "-1d",
+			"fields": map[string]string{
+				"TestCollector": "MyValue",
+			},
+			"sumo_account_id": "926226587429",
+			"collector_id":    COLLECTOR_ID,
+			"iam_role_arn":    IAM_ROLE,
+			"sns_topic_arn":   "",
+		},
+	}
+
+	options, count := SetUpTest(t, vars, aws_region)
+
+	// Assert count of Expected resources.
+	test_structure.RunTestStage(t, "AssertCount", func() {
+		common.AssertResourceCounts(t, count, 5, 0, 0)
+	})
+
+	// Assert if the outputs are actually created in AWS and Sumo Logic.
+	// This also checks if your expectation are matched with the outputs, so provide an JSON with expected outputs.
+	expectedOutputs := common.ReadJsonFile("TestWithExistingCollectorIAMNewSNSResources.json", replacementMap)
+	test_structure.RunTestStage(t, "AssertOutputs", func() {
+		common.AssertOutputs(t, options, expectedOutputs)
+	})
+
+	// Before checking logs, create a load balancer, check if access logs has been enabled and then hit it to generate logs
+	http.Get(fmt.Sprintf("http://%s", *dns))
+
+	// Assert if the logs are sent to Sumo Logic.
+	outputs := common.FetchAllOutputs(t, options)
+	assertResource.ValidateLoadBalancerAccessLogs(lb_id, BUCKET_NAME)
 	assertResource.CheckLogsForPastSixtyMinutes("_sourceid="+outputs["sumologic_source"].(map[string]interface{})["id"].(string), 5, 2*time.Minute)
 }
+
+func TestUpdates(t *testing.T) {
+	t.Parallel()
+	aws_region := "us-east-1"
+	vars := map[string]interface{}{
+		"create_collector": true,
+		"collector_details": map[string]interface{}{
+			"collector_name": "Test Updates",
+			"description":    "This collector is created for testing elb terraform module.",
+			"fields": map[string]interface{}{
+				"MyCollector": "TestTerraform",
+			},
+		},
+		"sumologic_organization_id": common.SumologicOrganizationId,
+		"auto_enable_access_logs":   "Existing",
+	}
+
+	options, count := SetUpTest(t, vars, aws_region)
+
+	// Assert count of Expected resources.
+	test_structure.RunTestStage(t, "AssertCount", func() {
+		common.AssertResourceCounts(t, count, 10, 0, 0)
+	})
+
+	vars = map[string]interface{}{
+		"create_collector": true,
+		"collector_details": map[string]interface{}{
+			"collector_name": "Test Updates Again",
+			"description":    "This collector is created for testing elb terraform module.",
+			"fields": map[string]interface{}{
+				"MyCollector": "TestTerraform",
+			},
+		},
+		"sumologic_organization_id": common.SumologicOrganizationId,
+		"auto_enable_access_logs":   "None",
+	}
+
+	count = UpdateTerraform(t, vars, options)
+
+	test_structure.RunTestStage(t, "UpdateFirst", func() {
+		common.AssertResourceCounts(t, count, 0, 2, 1)
+	})
+}
diff --git a/terratest/common/awshelper.go b/terratest/common/awshelper.go
@@ -157,7 +157,7 @@ func (a *ResourcesAssert) ValidateLoadBalancerAccessLogs(lb_id *string, bucketNa
 	if assert.NoError(a.t, error, "Error while fetching load balancer details") {
 		for _, element := range output.Attributes {
 			if strings.Compare("access_logs.s3.enabled", *element.Key) == 0 {
-				assert.Equal(a.t, "true", element.Value, "Access Logs is not enabled")
+				assert.Equal(a.t, aws_sdk.String("true"), element.Value, "Access Logs is not enabled")
 			}
 			if strings.Compare("access_logs.s3.bucket", *element.Key) == 0 {
 				assert.Equal(a.t, &bucketName, element.Value, "Access Logs bucket does not match.")

Original file line number	Diff line number	Diff line change
`@@ -157,7 +157,7 @@ func (a ResourcesAssert) ValidateLoadBalancerAccessLogs(lb_id string, bucketNa`
`157`	`157`	`if assert.NoError(a.t, error, "Error while fetching load balancer details") {`
`158`	`158`	`for _, element := range output.Attributes {`
`159`	`159`	`if strings.Compare("access_logs.s3.enabled", *element.Key) == 0 {`
`160`		`- assert.Equal(a.t, "true", element.Value, "Access Logs is not enabled")`
	`160`	`+ assert.Equal(a.t, aws_sdk.String("true"), element.Value, "Access Logs is not enabled")`
`161`	`161`	`}`
`162`	`162`	`if strings.Compare("access_logs.s3.bucket", *element.Key) == 0 {`
`163`	`163`	`assert.Equal(a.t, &bucketName, element.Value, "Access Logs bucket does not match.")`