verify const just to be sure

ndyakov · ndyakov · commit 049bcc208970 · 2025-04-11T00:39:29.000+03:00
diff --git a/identity/providers_test.go b/identity/providers_test.go
@@ -0,0 +1,52 @@
+package identity
+
+import (
+	"testing"
+)
+
+func TestConstants(t *testing.T) {
+	tests := []struct {
+		name     string
+		got      string
+		expected string
+	}{
+		{
+			name:     "SystemAssignedIdentity",
+			got:      SystemAssignedIdentity,
+			expected: "SystemAssigned",
+		},
+		{
+			name:     "UserAssignedIdentity",
+			got:      UserAssignedIdentity,
+			expected: "UserAssigned",
+		},
+		{
+			name:     "ClientSecretCredentialType",
+			got:      ClientSecretCredentialType,
+			expected: "ClientSecret",
+		},
+		{
+			name:     "ClientCertificateCredentialType",
+			got:      ClientCertificateCredentialType,
+			expected: "ClientCertificate",
+		},
+		{
+			name:     "RedisScopeDefault",
+			got:      RedisScopeDefault,
+			expected: "https://redis.azure.com/.default",
+		},
+		{
+			name:     "RedisResource",
+			got:      RedisResource,
+			expected: "https://redis.azure.com",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if tt.got != tt.expected {
+				t.Errorf("%s = %v, want %v", tt.name, tt.got, tt.expected)
+			}
+		})
+	}
+}
diff --git a/providers_test.go b/providers_test.go
@@ -598,3 +598,112 @@ func TestCredentialsProviderSubscribe(t *testing.T) {
 		}
 	})
 }
+
+func TestCredentialsProviderOptions(t *testing.T) {
+	t.Run("default token manager factory", func(t *testing.T) {
+		options := CredentialsProviderOptions{}
+		factory := options.getTokenManagerFactory()
+		assert.NotNil(t, factory)
+	})
+
+	t.Run("custom token manager factory", func(t *testing.T) {
+		m := &mockTokenManager{}
+		customFactory := func(shared.IdentityProvider, manager.TokenManagerOptions) (manager.TokenManager, error) {
+			return m, nil
+		}
+		options := CredentialsProviderOptions{
+			tokenManagerFactory: customFactory,
+		}
+		tm, err := options.getTokenManagerFactory()(nil, manager.TokenManagerOptions{})
+		assert.NotNil(t, tm)
+		assert.NoError(t, err)
+		assert.Equal(t, m, tm)
+	})
+}
+
+func TestCredentialsProviderErrorScenarios(t *testing.T) {
+	t.Run("token manager start error", func(t *testing.T) {
+		// Create a test provider with invalid options
+		options := ConfidentialCredentialsProviderOptions{
+			CredentialsProviderOptions: CredentialsProviderOptions{
+				ClientID: "test-client-id",
+				TokenManagerOptions: manager.TokenManagerOptions{
+					ExpirationRefreshRatio: 0.7,
+				},
+			},
+			ConfidentialIdentityProviderOptions: identity.ConfidentialIdentityProviderOptions{
+				ClientID:        "test-client-id",
+				CredentialsType: "invalid-type", // Invalid credentials type
+				ClientSecret:    "test-secret",
+				Scopes:          []string{identity.RedisScopeDefault},
+				Authority:       identity.AuthorityConfiguration{},
+			},
+		}
+
+		provider, err := NewConfidentialCredentialsProvider(options)
+		assert.Error(t, err)
+		assert.Nil(t, provider)
+	})
+
+	t.Run("token manager get token error", func(t *testing.T) {
+		// Create a test provider with invalid options
+		options := ConfidentialCredentialsProviderOptions{
+			CredentialsProviderOptions: CredentialsProviderOptions{
+				ClientID: "test-client-id",
+				TokenManagerOptions: manager.TokenManagerOptions{
+					ExpirationRefreshRatio: 0.7,
+				},
+			},
+			ConfidentialIdentityProviderOptions: identity.ConfidentialIdentityProviderOptions{
+				ClientID:        "test-client-id",
+				CredentialsType: identity.ClientSecretCredentialType,
+				ClientSecret:    "", // Empty client secret
+				Scopes:          []string{identity.RedisScopeDefault},
+				Authority:       identity.AuthorityConfiguration{},
+			},
+		}
+
+		provider, err := NewConfidentialCredentialsProvider(options)
+		assert.Error(t, err)
+		assert.Nil(t, provider)
+	})
+
+	t.Run("concurrent error handling", func(t *testing.T) {
+		// Create a test provider with invalid options
+		options := ManagedIdentityCredentialsProviderOptions{
+			CredentialsProviderOptions: CredentialsProviderOptions{
+				ClientID: "test-client-id",
+				TokenManagerOptions: manager.TokenManagerOptions{
+					ExpirationRefreshRatio: 0.7,
+				},
+			},
+			ManagedIdentityProviderOptions: identity.ManagedIdentityProviderOptions{
+				ManagedIdentityType: "invalid-type", // Invalid managed identity type
+				Scopes:              []string{identity.RedisScopeDefault},
+			},
+		}
+
+		provider, err := NewManagedIdentityCredentialsProvider(options)
+		assert.Error(t, err)
+		assert.Nil(t, provider)
+	})
+
+	t.Run("concurrent token updates", func(t *testing.T) {
+		// Create a test provider with invalid options
+		options := DefaultAzureCredentialsProviderOptions{
+			CredentialsProviderOptions: CredentialsProviderOptions{
+				ClientID: "test-client-id",
+				TokenManagerOptions: manager.TokenManagerOptions{
+					ExpirationRefreshRatio: 0.7,
+				},
+			},
+			DefaultAzureIdentityProviderOptions: identity.DefaultAzureIdentityProviderOptions{
+				Scopes: []string{}, // Empty scopes
+			},
+		}
+
+		provider, err := NewDefaultAzureCredentialsProvider(options)
+		assert.Error(t, err)
+		assert.Nil(t, provider)
+	})
+}
