Merge branch 'master' into sqlserver

artursouza · web-flow · commit 4d0fc05f6605 · 2021-08-19T17:24:47.000-07:00
diff --git a/secretstores/local/file/filestore.go b/secretstores/local/file/filestore.go
@@ -11,24 +11,27 @@ import (
 	"fmt"
 	"io/ioutil"
 	"os"
+	"reflect"
 	"strconv"
 	"strings"
 
 	"github.com/dapr/components-contrib/secretstores"
+	"github.com/dapr/kit/config"
 	"github.com/dapr/kit/logger"
 )
 
 type localSecretStoreMetaData struct {
-	SecretsFile     string `json:"secretsFile"`
-	NestedSeparator string `json:"nestedSeparator"`
+	SecretsFile     string `mapstructure:"secretsFile"`
+	NestedSeparator string `mapstructure:"nestedSeparator"`
+	MultiValued     bool   `mapstructure:"multiValued"`
 }
 
 type localSecretStore struct {
 	secretsFile     string
 	nestedSeparator string
 	currenContext   []string
 	currentPath     string
-	secrets         map[string]string
+	secrets         map[string]interface{}
 	readLocalFileFn func(secretsFile string) (map[string]interface{}, error)
 	logger          logger.Logger
 }
@@ -57,14 +60,28 @@ func (j *localSecretStore) Init(metadata secretstores.Metadata) error {
 		j.readLocalFileFn = j.readLocalFile
 	}
 
-	j.secrets = map[string]string{}
-
 	jsonConfig, err := j.readLocalFileFn(meta.SecretsFile)
 	if err != nil {
 		return err
 	}
 
-	j.visitJSONObject(jsonConfig)
+	if meta.MultiValued {
+		allSecrets := map[string]interface{}{}
+		for k, v := range jsonConfig {
+			switch v := v.(type) {
+			case string:
+				allSecrets[k] = v
+			case map[string]interface{}:
+				j.secrets = make(map[string]interface{})
+				j.visitJSONObject(v)
+				allSecrets[k] = j.secrets
+			}
+		}
+		j.secrets = allSecrets
+	} else {
+		j.secrets = map[string]interface{}{}
+		j.visitJSONObject(jsonConfig)
+	}
 
 	return nil
 }
@@ -76,10 +93,25 @@ func (j *localSecretStore) GetSecret(req secretstores.GetSecretRequest) (secrets
 		return secretstores.GetSecretResponse{}, fmt.Errorf("secret %s not found", req.Name)
 	}
 
+	var data map[string]string
+	switch v := secretValue.(type) {
+	case string:
+		data = map[string]string{
+			req.Name: v,
+		}
+	case map[string]interface{}:
+		data = make(map[string]string, len(v))
+		for key, value := range v {
+			data[key] = fmt.Sprint(value)
+		}
+	case map[string]string:
+		data = v
+	default:
+		return secretstores.GetSecretResponse{}, fmt.Errorf("unexpected type %q for secret value", reflect.TypeOf(v))
+	}
+
 	return secretstores.GetSecretResponse{
-		Data: map[string]string{
-			req.Name: secretValue,
-		},
+		Data: data,
 	}, nil
 }
 
@@ -88,7 +120,22 @@ func (j *localSecretStore) BulkGetSecret(req secretstores.BulkGetSecretRequest)
 	r := map[string]map[string]string{}
 
 	for k, v := range j.secrets {
-		r[k] = map[string]string{k: v}
+		switch v := v.(type) {
+		case string:
+			r[k] = map[string]string{
+				k: v,
+			}
+		case map[string]interface{}:
+			data := make(map[string]string, len(v))
+			for key, value := range v {
+				data[key] = fmt.Sprint(value)
+			}
+			r[k] = data
+		case map[string]string:
+			r[k] = v
+		default:
+			return secretstores.BulkGetSecretResponse{}, fmt.Errorf("unexpected type %q for secret value", reflect.TypeOf(v))
+		}
 	}
 
 	return secretstores.BulkGetSecretResponse{
@@ -169,16 +216,12 @@ func (j *localSecretStore) combine(values []string) string {
 }
 
 func (j *localSecretStore) getLocalSecretStoreMetadata(spec secretstores.Metadata) (*localSecretStoreMetaData, error) {
-	b, err := json.Marshal(spec.Properties)
-	if err != nil {
-		return nil, err
-	}
-
 	var meta localSecretStoreMetaData
-	err = json.Unmarshal(b, &meta)
+	err := config.Decode(spec.Properties, &meta)
 	if err != nil {
 		return nil, err
 	}
+
 	if meta.SecretsFile == "" {
 		return nil, fmt.Errorf("missing local secrets file in metadata")
 	}
diff --git a/secretstores/local/file/filestore_test.go b/secretstores/local/file/filestore_test.go
@@ -5,12 +5,14 @@
 package file
 
 import (
+	"encoding/json"
 	"fmt"
 	"testing"
 
 	"github.com/dapr/components-contrib/secretstores"
 	"github.com/dapr/kit/logger"
 	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
 )
 
 const secretValue = "secret"
@@ -25,16 +27,16 @@ func TestInit(t *testing.T) {
 	}
 	t.Run("Init with valid metadata", func(t *testing.T) {
 		m.Properties = map[string]string{
-			"SecretsFile":     "a",
-			"NestedSeparator": "a",
+			"secretsFile":     "a",
+			"nestedSeparator": "a",
 		}
 		err := s.Init(m)
 		assert.Nil(t, err)
 	})
 
 	t.Run("Init with missing metadata", func(t *testing.T) {
 		m.Properties = map[string]string{
-			"Dummy": "a",
+			"dummy": "a",
 		}
 		err := s.Init(m)
 		assert.NotNil(t, err)
@@ -57,8 +59,8 @@ func TestSeparator(t *testing.T) {
 	}
 	t.Run("Init with custom separator", func(t *testing.T) {
 		m.Properties = map[string]string{
-			"SecretsFile":     "a",
-			"NestedSeparator": ".",
+			"secretsFile":     "a",
+			"nestedSeparator": ".",
 		}
 		err := s.Init(m)
 		assert.Nil(t, err)
@@ -74,7 +76,7 @@ func TestSeparator(t *testing.T) {
 
 	t.Run("Init with default separator", func(t *testing.T) {
 		m.Properties = map[string]string{
-			"SecretsFile": "a",
+			"secretsFile": "a",
 		}
 		err := s.Init(m)
 		assert.Nil(t, err)
@@ -92,8 +94,8 @@ func TestSeparator(t *testing.T) {
 func TestGetSecret(t *testing.T) {
 	m := secretstores.Metadata{}
 	m.Properties = map[string]string{
-		"SecretsFile":     "a",
-		"NestedSeparator": "a",
+		"secretsFile":     "a",
+		"nestedSeparator": "a",
 	}
 	s := localSecretStore{
 		logger: logger.NewLogger("test"),
@@ -130,8 +132,8 @@ func TestGetSecret(t *testing.T) {
 func TestBulkGetSecret(t *testing.T) {
 	m := secretstores.Metadata{}
 	m.Properties = map[string]string{
-		"SecretsFile":     "a",
-		"NestedSeparator": "a",
+		"secretsFile":     "a",
+		"nestedSeparator": "a",
 	}
 	s := localSecretStore{
 		logger: logger.NewLogger("test"),
@@ -151,3 +153,60 @@ func TestBulkGetSecret(t *testing.T) {
 		assert.Equal(t, "secret", output.Data["secret"]["secret"])
 	})
 }
+
+func TestMultiValuedSecrets(t *testing.T) {
+	m := secretstores.Metadata{}
+	m.Properties = map[string]string{
+		"secretsFile": "a",
+		"multiValued": "true",
+	}
+	s := localSecretStore{
+		logger: logger.NewLogger("test"),
+		readLocalFileFn: func(secretsFile string) (map[string]interface{}, error) {
+			//nolint:gosec
+			secretsJSON := `
+			{
+				"parent": {
+					"child1": "12345",
+					"child2": {
+						"child3": "67890",
+						"child4": "00000"
+					}
+				}
+			}
+			`
+			var secrets map[string]interface{}
+			err := json.Unmarshal([]byte(secretsJSON), &secrets)
+
+			return secrets, err
+		},
+	}
+	err := s.Init(m)
+	require.NoError(t, err)
+
+	t.Run("successfully retrieve a single multi-valued secret", func(t *testing.T) {
+		req := secretstores.GetSecretRequest{
+			Name: "parent",
+		}
+		resp, err := s.GetSecret(req)
+		require.NoError(t, err)
+		assert.Equal(t, map[string]string{
+			"child1":        "12345",
+			"child2:child3": "67890",
+			"child2:child4": "00000",
+		}, resp.Data)
+	})
+
+	t.Run("successfully retrieve multi-valued secrets", func(t *testing.T) {
+		req := secretstores.BulkGetSecretRequest{}
+		resp, err := s.BulkGetSecret(req)
+		require.NoError(t, err)
+		assert.Equal(t, map[string]map[string]string{
+			"parent": {
+				"child1":        "12345",
+				"child2:child3": "67890",
+				"child2:child4": "00000",
+			},
+		}, resp.Data)
+	})
+}
