2020-01-07 15:13:57 -08:00
|
|
|
package variables
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"encoding/json"
|
|
|
|
|
"testing"
|
|
|
|
|
|
2020-10-07 11:12:31 -07:00
|
|
|
kyverno "github.com/kyverno/kyverno/pkg/api/kyverno/v1"
|
|
|
|
|
"github.com/kyverno/kyverno/pkg/engine/context"
|
2021-07-28 19:54:50 +03:00
|
|
|
"github.com/stretchr/testify/assert"
|
2020-03-17 16:25:34 -07:00
|
|
|
"sigs.k8s.io/controller-runtime/pkg/log"
|
2020-01-07 15:13:57 -08:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// STRINGS
|
|
|
|
|
func Test_Eval_Equal_Const_String_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "name",
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: "name",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_String_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "name",
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: "name1",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_String_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "name",
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: "name1",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_String_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "name",
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: "name",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-06 09:19:23 +05:30
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_string_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1.1",
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: "2",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_string_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_string_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: 0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1.1",
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: "2",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_string_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "0",
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2.0",
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: "1.1",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1",
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_string_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "0",
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2.0",
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: "1.1",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-30 16:11:52 -04:00
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_string_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_string_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_string_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_string_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_string_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_string_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_string_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
//Bool
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_Bool_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: true,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: true,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_Bool_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: true,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: false,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_Bool_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: true,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: false,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_Bool_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: true,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: true,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// int
|
|
|
|
|
func Test_Eval_Equal_Const_int_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: 2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_int_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: 2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-06 09:19:23 +05:30
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_int_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_int_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: "2",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_int_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_int_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: 0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: "2",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_int_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_int_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 0,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 2,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: "1",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_int_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_int_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 0,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 2,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: "1",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-30 16:11:52 -04:00
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: 3600,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: 3600,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: 7200,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600,
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: 7200,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: 3600,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600,
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: 7200,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "2h",
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: 7200,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: 7200,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 3600,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600,
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600,
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200,
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: 3600,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// int64
|
|
|
|
|
func Test_Eval_Equal_Const_int64_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(1),
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: int64(1),
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(1),
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: int64(2),
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_int64_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(1),
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: int64(2),
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(1),
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: int64(1),
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-30 16:11:52 -04:00
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(7200),
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: int64(7200),
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int64_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: int64(7200),
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(7200),
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: int64(3600),
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: int64(7200),
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(7200),
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(7200),
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: int64(3600),
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(3600),
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_int64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: int64(7200),
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: int64(3600),
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
//float64
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_float64_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: 1.5,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: 1.6,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_float64_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: 1.6,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NoEqual_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: 1.5,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-06 09:19:23 +05:30
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_float64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.0,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_float64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: 0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThanOrEquals_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.95,
|
|
|
|
|
Operator: kyverno.GreaterThanOrEquals,
|
|
|
|
|
Value: "2",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_float64_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.0,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_float64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.5,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: "0",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_GreaterThan_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.95,
|
|
|
|
|
Operator: kyverno.GreaterThan,
|
|
|
|
|
Value: "2.5",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_float64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.0,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_float64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 0.5,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: 1,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThanOrEquals_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 2.0,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: "1.95",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_float64_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 1.0,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1.0,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_float64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 0.5,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: "1.5",
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_LessThan_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 2.5,
|
|
|
|
|
Operator: kyverno.LessThan,
|
|
|
|
|
Value: 1.95,
|
|
|
|
|
}
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-06 09:19:23 +05:30
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-30 16:11:52 -04:00
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_float64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_float64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThanOrEquals_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThanOrEquals,
|
|
|
|
|
Value: 7200.0,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_float64_Equal_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: 7200.0,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_float64_Greater_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationGreaterThan_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationGreaterThan,
|
|
|
|
|
Value: 7200.0,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_float64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200.0,
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_float64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationLessThanOrEquals,
|
|
|
|
|
Value: "2h",
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThanOrEquals_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200.0,
|
|
|
|
|
Operator: kyverno.LessThanOrEquals,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_float64_Equal_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 3600.0,
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: "1h",
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_float64_Less_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "1h",
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: 7200.0,
|
|
|
|
|
}
|
|
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_DurationLessThan_Const_float64_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: 7200.0,
|
|
|
|
|
Operator: kyverno.DurationLessThan,
|
|
|
|
|
Value: 3600.0,
|
|
|
|
|
}
|
|
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
|
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
//object/map[string]interface
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_object_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
|
|
|
|
|
obj1Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
obj2Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_object_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
obj2Raw := []byte(`{ "dir": { "file1": "b" } }`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NotEqual_Const_object_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
obj2Raw := []byte(`{ "dir": { "file1": "b" } }`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NotEqual_Const_object_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
obj2Raw := []byte(`{ "dir": { "file1": "a" } }`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// list/ []interface{}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_list_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
obj2Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Const_list_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
obj2Raw := []byte(`[ { "name": "b", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NotEqual_Const_list_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
obj2Raw := []byte(`[ { "name": "b", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_NotEqual_Const_list_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
var err error
|
2020-01-07 15:13:57 -08:00
|
|
|
obj1Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
obj2Raw := []byte(`[ { "name": "a", "file": "a" }, { "name": "b", "file": "b" } ]`)
|
|
|
|
|
var obj1, obj2 interface{}
|
2020-01-24 09:37:12 -08:00
|
|
|
err = json.Unmarshal(obj1Raw, &obj1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
|
|
|
|
err = json.Unmarshal(obj2Raw, &obj2)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
// no variables
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: obj1,
|
|
|
|
|
Operator: kyverno.NotEqual,
|
|
|
|
|
Value: obj2,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Variables
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Var_Pass(t *testing.T) {
|
|
|
|
|
resourceRaw := []byte(`
|
|
|
|
|
{
|
|
|
|
|
"metadata": {
|
|
|
|
|
"name": "temp",
|
|
|
|
|
"namespace": "n1"
|
|
|
|
|
},
|
|
|
|
|
"spec": {
|
|
|
|
|
"namespace": "n1",
|
|
|
|
|
"name": "temp1"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
`)
|
|
|
|
|
|
|
|
|
|
// context
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
err := ctx.AddResource(resourceRaw)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "{{request.object.metadata.name}}",
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: "temp",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
conditionJSON, err := json.Marshal(condition)
|
|
|
|
|
assert.Nil(t, err)
|
|
|
|
|
|
|
|
|
|
var conditionMap interface{}
|
|
|
|
|
err = json.Unmarshal(conditionJSON, &conditionMap)
|
|
|
|
|
assert.Nil(t, err)
|
|
|
|
|
|
|
|
|
|
conditionWithResolvedVars, err := SubstituteAllInPreconditions(log.Log, ctx, conditionMap)
|
|
|
|
|
conditionJSON, err = json.Marshal(conditionWithResolvedVars)
|
|
|
|
|
assert.Nil(t, err)
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(conditionJSON, &condition)
|
|
|
|
|
assert.Nil(t, err)
|
|
|
|
|
assert.True(t, Evaluate(log.Log, ctx, condition))
|
2020-01-07 15:13:57 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Test_Eval_Equal_Var_Fail(t *testing.T) {
|
|
|
|
|
resourceRaw := []byte(`
|
|
|
|
|
{
|
|
|
|
|
"metadata": {
|
|
|
|
|
"name": "temp",
|
|
|
|
|
"namespace": "n1"
|
|
|
|
|
},
|
|
|
|
|
"spec": {
|
|
|
|
|
"namespace": "n1",
|
|
|
|
|
"name": "temp1"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
`)
|
|
|
|
|
|
|
|
|
|
// context
|
|
|
|
|
ctx := context.NewContext()
|
2020-01-24 09:37:12 -08:00
|
|
|
err := ctx.AddResource(resourceRaw)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: "{{request.object.metadata.name}}",
|
|
|
|
|
Operator: kyverno.Equal,
|
|
|
|
|
Value: "temp1",
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2020-01-07 15:13:57 -08:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-02-26 18:53:54 +00:00
|
|
|
|
|
|
|
|
// subset test
|
|
|
|
|
|
|
|
|
|
// test passes if ALL values in "key" are in "value" ("key" is a subset of "value")
|
|
|
|
|
func Test_Eval_In_String_Set_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
key := [2]string{"1.1.1.1", "2.2.2.2"}
|
|
|
|
|
keyInterface := make([]interface{}, len(key), len(key))
|
|
|
|
|
for i := range key {
|
|
|
|
|
keyInterface[i] = key[i]
|
|
|
|
|
}
|
|
|
|
|
value := [3]string{"1.1.1.1", "2.2.2.2", "3.3.3.3"}
|
|
|
|
|
valueInterface := make([]interface{}, len(value), len(value))
|
|
|
|
|
for i := range value {
|
|
|
|
|
valueInterface[i] = value[i]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: keyInterface,
|
|
|
|
|
Operator: kyverno.In,
|
|
|
|
|
Value: valueInterface,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-26 18:53:54 +00:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// test passes if NOT ALL values in "key" are in "value" ("key" is not a subset of "value")
|
|
|
|
|
func Test_Eval_In_String_Set_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
|
|
|
|
key := [2]string{"1.1.1.1", "4.4.4.4"}
|
|
|
|
|
keyInterface := make([]interface{}, len(key), len(key))
|
|
|
|
|
for i := range key {
|
|
|
|
|
keyInterface[i] = key[i]
|
|
|
|
|
}
|
|
|
|
|
value := [3]string{"1.1.1.1", "2.2.2.2", "3.3.3.3"}
|
|
|
|
|
valueInterface := make([]interface{}, len(value), len(value))
|
|
|
|
|
for i := range value {
|
|
|
|
|
valueInterface[i] = value[i]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: keyInterface,
|
|
|
|
|
Operator: kyverno.In,
|
|
|
|
|
Value: valueInterface,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-26 18:53:54 +00:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-16 15:00:42 -04:00
|
|
|
// test passes if ONE of the values in "key" is NOT in "value" ("key" is not a subset of "value")
|
2021-02-26 18:53:54 +00:00
|
|
|
func Test_Eval_NotIn_String_Set_Pass(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2021-03-16 15:00:42 -04:00
|
|
|
key := [3]string{"1.1.1.1", "4.4.4.4", "5.5.5.5"}
|
2021-02-26 18:53:54 +00:00
|
|
|
keyInterface := make([]interface{}, len(key), len(key))
|
|
|
|
|
for i := range key {
|
|
|
|
|
keyInterface[i] = key[i]
|
|
|
|
|
}
|
|
|
|
|
value := [3]string{"1.1.1.1", "2.2.2.2", "3.3.3.3"}
|
|
|
|
|
valueInterface := make([]interface{}, len(value), len(value))
|
|
|
|
|
for i := range value {
|
|
|
|
|
valueInterface[i] = value[i]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: keyInterface,
|
|
|
|
|
Operator: kyverno.NotIn,
|
|
|
|
|
Value: valueInterface,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if !Evaluate(log.Log, ctx, condition) {
|
2021-02-26 18:53:54 +00:00
|
|
|
t.Error("expected to pass")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// test passes if ALL of the values in "key" are in "value" ("key" is a subset of "value")
|
|
|
|
|
func Test_Eval_NotIn_String_Set_Fail(t *testing.T) {
|
|
|
|
|
ctx := context.NewContext()
|
2021-03-16 15:00:42 -04:00
|
|
|
key := [2]string{"1.1.1.1", "2.2.2.2"}
|
2021-02-26 18:53:54 +00:00
|
|
|
keyInterface := make([]interface{}, len(key), len(key))
|
|
|
|
|
for i := range key {
|
|
|
|
|
keyInterface[i] = key[i]
|
|
|
|
|
}
|
|
|
|
|
value := [3]string{"1.1.1.1", "2.2.2.2", "3.3.3.3"}
|
|
|
|
|
valueInterface := make([]interface{}, len(value), len(value))
|
|
|
|
|
for i := range value {
|
|
|
|
|
valueInterface[i] = value[i]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
condition := kyverno.Condition{
|
|
|
|
|
Key: keyInterface,
|
|
|
|
|
Operator: kyverno.NotIn,
|
|
|
|
|
Value: valueInterface,
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-28 19:54:50 +03:00
|
|
|
if Evaluate(log.Log, ctx, condition) {
|
2021-02-26 18:53:54 +00:00
|
|
|
t.Error("expected to fail")
|
|
|
|
|
}
|
|
|
|
|
}
|
