Move shared code and tests for that code

Chris Gilmer · Chris Gilmer · commit 696ae8607b42 · 2020-07-10T12:11:35.000-07:00
diff --git a/cmd/common.go b/cmd/common.go
@@ -0,0 +1,158 @@
+package main
+
+import (
+	"fmt"
+	"log"
+	"os"
+
+	"github.com/99designs/aws-vault/prompt"
+	"github.com/99designs/aws-vault/vault"
+	"github.com/99designs/keyring"
+	"github.com/aws/aws-sdk-go/aws/endpoints"
+	"github.com/pkg/browser"
+	"github.com/skip2/go-qrcode"
+	"gopkg.in/ini.v1"
+)
+
+func promptMFAtoken(messagePrefix string, logger *log.Logger) string {
+	var token string
+	for attempts := maxMFATokenPromptAttempts; token == "" && attempts > 0; attempts-- {
+		t, err := prompt.TerminalPrompt(fmt.Sprintf("%sMFA token (%d attempts remaining): ", messagePrefix, attempts))
+		if err != nil {
+			logger.Println(err)
+			continue
+		}
+		err = validate.Var(t, "numeric,len=6")
+		if err != nil {
+			logger.Println("MFA token must be 6 digits. Please try again.")
+			continue
+		}
+		token = t
+	}
+	return token
+}
+
+func getMFATokenPair(logger *log.Logger) MFATokenPair {
+	var mfaTokenPair MFATokenPair
+	for attempts := maxMFATokenPromptAttempts; attempts > 0; attempts-- {
+		logger.Printf("Two unique MFA tokens needed to activate MFA device (%d attempts remaining)\n", attempts)
+		authToken1 := promptMFAtoken("First ", logger)
+		authToken2 := promptMFAtoken("Second ", logger)
+
+		mfaTokenPair = MFATokenPair{
+			Token1: authToken1,
+			Token2: authToken2,
+		}
+		err := validate.Struct(mfaTokenPair)
+		if err != nil {
+			logger.Println(err)
+		} else {
+			break
+		}
+	}
+	return mfaTokenPair
+}
+
+// UpdateAWSProfile updates or creates a single AWS profile to the AWS config file
+func UpdateAWSProfile(iniFile *ini.File, profile *vault.ProfileSection, sourceProfile *string, output string, logger *log.Logger) error {
+	logger.Printf("Adding the profile %q to the AWS config file", profile.Name)
+
+	sectionName := fmt.Sprintf("profile %s", profile.Name)
+
+	// Get or create section before updating
+	var err error
+	var section *ini.Section
+	section = iniFile.Section(sectionName)
+	if section == nil {
+		section, err = iniFile.NewSection(sectionName)
+		if err != nil {
+			return fmt.Errorf("error creating section %q: %w", profile.Name, err)
+		}
+	}
+
+	// Add the source profile when provided
+	if sourceProfile != nil {
+		_, err = section.NewKey("source_profile", *sourceProfile)
+		if err != nil {
+			return fmt.Errorf("unable to add source profile: %w", err)
+		}
+	}
+
+	if err = section.ReflectFrom(&profile); err != nil {
+		return fmt.Errorf("error mapping profile to ini file: %w", err)
+	}
+	_, err = section.NewKey("output", output)
+	if err != nil {
+		return fmt.Errorf("unable to add output key: %w", err)
+	}
+	return nil
+}
+
+func getKeyring(keychainName string) (*keyring.Keyring, error) {
+	ring, err := keyring.Open(keyring.Config{
+		ServiceName: "aws-vault",
+		AllowedBackends: []keyring.BackendType{
+			keyring.KeychainBackend,
+			keyring.FileBackend,
+		},
+		KeychainName:             keychainName,
+		KeychainTrustApplication: true,
+	})
+	if err != nil {
+		return nil, fmt.Errorf("error opening keyring: %w", err)
+	}
+
+	return &ring, nil
+}
+
+func deleteSession(profile string, keyring *keyring.Keyring, logger *log.Logger) error {
+	credsKeyring := vault.CredentialKeyring{Keyring: *keyring}
+	sessions := credsKeyring.Sessions()
+
+	if n, _ := sessions.Delete(profile); n > 0 {
+		logger.Printf("Deleted %d existing sessions.\n", n)
+	}
+
+	return nil
+}
+
+func generateQrCode(payload string, tempFile *os.File) error {
+	// Creates QR Code
+	q, err := qrcode.New(payload, qrcode.Medium)
+	if err != nil {
+		return fmt.Errorf("unable to create qr code: %w", err)
+	}
+
+	// Generates a QR PNG 256 x 256, returns []byte
+	qr, err := q.PNG(256)
+	if err != nil {
+		return fmt.Errorf("unable to generate PNG: %w", err)
+	}
+
+	// Write the QR PNG to the Temp File
+	if _, err := tempFile.Write(qr); err != nil {
+		_ = tempFile.Close()
+		return err
+	}
+	return nil
+}
+
+func openQrCode(tempFile *os.File) error {
+	err := browser.OpenFile(tempFile.Name())
+	if err != nil {
+		return fmt.Errorf("unable to open QR Code PNG: %w", err)
+	}
+
+	if err := tempFile.Close(); err != nil {
+		return fmt.Errorf("unable to close QR Code: %w", err)
+	}
+	return nil
+}
+
+func getPartition(region string) (string, error) {
+	partition, ok := endpoints.PartitionForRegion(endpoints.DefaultPartitions(), region)
+	if !ok {
+		return "", fmt.Errorf("Error finding partition for region: %s", region)
+	}
+	return partition.ID(), nil
+}
diff --git a/cmd/common_test.go b/cmd/common_test.go
@@ -0,0 +1,45 @@
+package main
+
+import (
+	"io/ioutil"
+	"os"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func newConfigFile(t *testing.T, b []byte) string {
+	f, err := ioutil.TempFile("", "aws-config")
+	if err != nil {
+		t.Fatal(err)
+	}
+	if err := ioutil.WriteFile(f.Name(), b, 0600); err != nil {
+		t.Fatal(err)
+	}
+	return f.Name()
+}
+
+func TestGenerateQrCode(t *testing.T) {
+	tempFile, err := ioutil.TempFile("", "temp-qr.*.png")
+	assert.NoError(t, err)
+	defer func() {
+		errRemove := os.Remove(tempFile.Name())
+		assert.NoError(t, errRemove)
+	}()
+
+	err = generateQrCode("otpauth://totp/super@top?secret=secret", tempFile)
+	assert.NoError(t, err)
+}
+
+func TestGetPartition(t *testing.T) {
+	commPartition, err := getPartition("us-west-2")
+	assert.Equal(t, commPartition, "aws")
+	assert.NoError(t, err)
+
+	govPartition, err := getPartition("us-gov-west-1")
+	assert.Equal(t, govPartition, "aws-us-gov")
+	assert.NoError(t, err)
+
+	_, err = getPartition("aws-under-the-sea")
+	assert.Error(t, err)
+}
diff --git a/cmd/setup.go b/cmd/setup.go
@@ -17,8 +17,6 @@ import (
 	"github.com/aws/aws-sdk-go/aws/session"
 	"github.com/aws/aws-sdk-go/service/iam"
 	"github.com/aws/aws-sdk-go/service/sts"
-	"github.com/pkg/browser"
-	"github.com/skip2/go-qrcode"
 	"github.com/spf13/cobra"
 	"github.com/spf13/pflag"
 	"github.com/spf13/viper"
@@ -300,45 +298,6 @@ func (sc *SetupConfig) CreateVirtualMFADevice() error {
 	return nil
 }
 
-func promptMFAtoken(messagePrefix string, logger *log.Logger) string {
-	var token string
-	for attempts := maxMFATokenPromptAttempts; token == "" && attempts > 0; attempts-- {
-		t, err := prompt.TerminalPrompt(fmt.Sprintf("%sMFA token (%d attempts remaining): ", messagePrefix, attempts))
-		if err != nil {
-			logger.Println(err)
-			continue
-		}
-		err = validate.Var(t, "numeric,len=6")
-		if err != nil {
-			logger.Println("MFA token must be 6 digits. Please try again.")
-			continue
-		}
-		token = t
-	}
-	return token
-}
-
-func getMFATokenPair(logger *log.Logger) MFATokenPair {
-	var mfaTokenPair MFATokenPair
-	for attempts := maxMFATokenPromptAttempts; attempts > 0; attempts-- {
-		logger.Printf("Two unique MFA tokens needed to activate MFA device (%d attempts remaining)\n", attempts)
-		authToken1 := promptMFAtoken("First ", logger)
-		authToken2 := promptMFAtoken("Second ", logger)
-
-		mfaTokenPair = MFATokenPair{
-			Token1: authToken1,
-			Token2: authToken2,
-		}
-		err := validate.Struct(mfaTokenPair)
-		if err != nil {
-			logger.Println(err)
-		} else {
-			break
-		}
-	}
-	return mfaTokenPair
-}
-
 // EnableVirtualMFADevice enables the user's MFA device
 func (sc *SetupConfig) EnableVirtualMFADevice() error {
 	sc.Logger.Println("Enabling the virtual MFA device")
@@ -536,75 +495,6 @@ func (sc *SetupConfig) RemoveVaultSession() error {
 	return nil
 }
 
-func getKeyring(keychainName string) (*keyring.Keyring, error) {
-	ring, err := keyring.Open(keyring.Config{
-		ServiceName: "aws-vault",
-		AllowedBackends: []keyring.BackendType{
-			keyring.KeychainBackend,
-			keyring.FileBackend,
-		},
-		KeychainName:             keychainName,
-		KeychainTrustApplication: true,
-	})
-	if err != nil {
-		return nil, fmt.Errorf("error opening keyring: %w", err)
-	}
-
-	return &ring, nil
-}
-
-func deleteSession(profile string, keyring *keyring.Keyring, logger *log.Logger) error {
-	credsKeyring := vault.CredentialKeyring{Keyring: *keyring}
-	sessions := credsKeyring.Sessions()
-
-	if n, _ := sessions.Delete(profile); n > 0 {
-		logger.Printf("Deleted %d existing sessions.\n", n)
-	}
-
-	return nil
-}
-
-func generateQrCode(payload string, tempFile *os.File) error {
-	// Creates QR Code
-	q, err := qrcode.New(payload, qrcode.Medium)
-	if err != nil {
-		return fmt.Errorf("unable to create qr code: %w", err)
-	}
-
-	// Generates a QR PNG 256 x 256, returns []byte
-	qr, err := q.PNG(256)
-	if err != nil {
-		return fmt.Errorf("unable to generate PNG: %w", err)
-	}
-
-	// Write the QR PNG to the Temp File
-	if _, err := tempFile.Write(qr); err != nil {
-		_ = tempFile.Close()
-		return err
-	}
-	return nil
-}
-
-func openQrCode(tempFile *os.File) error {
-	err := browser.OpenFile(tempFile.Name())
-	if err != nil {
-		return fmt.Errorf("unable to open QR Code PNG: %w", err)
-	}
-
-	if err := tempFile.Close(); err != nil {
-		return fmt.Errorf("unable to close QR Code: %w", err)
-	}
-	return nil
-}
-
-func getPartition(region string) (string, error) {
-	partition, ok := endpoints.PartitionForRegion(endpoints.DefaultPartitions(), region)
-	if !ok {
-		return "", fmt.Errorf("Error finding partition for region: %s", region)
-	}
-	return partition.ID(), nil
-}
-
 func setupUserFunction(cmd *cobra.Command, args []string) error {
 	defer func() {
 		if r := recover(); r != nil {
diff --git a/cmd/setup_test.go b/cmd/setup_test.go
@@ -1,7 +1,6 @@
 package main
 
 import (
-	"io/ioutil"
 	"log"
 	"os"
 	"testing"
@@ -10,17 +9,6 @@ import (
 	"github.com/stretchr/testify/assert"
 )
 
-func newConfigFile(t *testing.T, b []byte) string {
-	f, err := ioutil.TempFile("", "aws-config")
-	if err != nil {
-		t.Fatal(err)
-	}
-	if err := ioutil.WriteFile(f.Name(), b, 0600); err != nil {
-		t.Fatal(err)
-	}
-	return f.Name()
-}
-
 func TestUpdateAWSConfigFile(t *testing.T) {
 
 	// Test logger
@@ -85,28 +73,3 @@ output=json
 	assert.Equal(t, testSection.Region, "us-west-2")
 	// assert.Equal(t, testBaseSection.Output, "json")
 }
-
-func TestGenerateQrCode(t *testing.T) {
-	tempFile, err := ioutil.TempFile("", "temp-qr.*.png")
-	assert.NoError(t, err)
-	defer func() {
-		errRemove := os.Remove(tempFile.Name())
-		assert.NoError(t, errRemove)
-	}()
-
-	err = generateQrCode("otpauth://totp/super@top?secret=secret", tempFile)
-	assert.NoError(t, err)
-}
-
-func TestGetPartition(t *testing.T) {
-	commPartition, err := getPartition("us-west-2")
-	assert.Equal(t, commPartition, "aws")
-	assert.NoError(t, err)
-
-	govPartition, err := getPartition("us-gov-west-1")
-	assert.Equal(t, govPartition, "aws-us-gov")
-	assert.NoError(t, err)
-
-	_, err = getPartition("aws-under-the-sea")
-	assert.Error(t, err)
-}
