tests/Set-CsKeyVaultEntry.Tests.ps1
|
[Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSAvoidUsingConvertToSecureStringWithPlainText", "")] param() . "$PSScriptRoot\..\..\CredentialStore\src\Test-CsEntryName.ps1" . "$PSScriptRoot\..\src\Set-CsKeyVaultEntry.ps1" Describe Set-CsKeyVaultEntry { Mock -CommandName Set-AzureKeyVaultSecret Context "Adding a new Credential without description" { $cred = New-Object PSCredential("user", $("pass" | ConvertTo-SecureString -AsPlainText -Force)) Set-CsKeyVaultEntry -VaultName vault1 -Name name1 -Credential $cred It "should add the entry to the vault" { Assert-MockCalled Set-AzureKeyVaultSecret -ParameterFilter { $decoded = (New-Object PSCredential("user", $SecretValue)).GetNetworkCredential().Password $VaultName -eq 'vault1' -And $Name -eq 'name1' -And $decoded -eq 'pass' -And $ContentType -eq "CredentialStore" -And $Tag['Username'] -eq 'user' } } } Context "Adding a new Credential with description" { $cred = New-Object PSCredential("user", $("pass" | ConvertTo-SecureString -AsPlainText -Force)) Set-CsKeyVaultEntry -VaultName vault1 -Name name1 -Credential $cred -Description desc It "should add the entry to the vault" { Assert-MockCalled Set-AzureKeyVaultSecret -ParameterFilter { $decoded = (New-Object PSCredential("user", $SecretValue)).GetNetworkCredential().Password $VaultName -eq 'vault1' -And $Name -eq 'name1' -And $decoded -eq 'pass' -And $ContentType -eq "CredentialStore" -And $Tag['Username'] -eq 'user' -And $Tag['Description'] -eq 'desc' } } } Context "Pipeline support" { $cred = New-Object PSCredential("user", $("pass" | ConvertTo-SecureString -AsPlainText -Force)) $entries = @( [PSCustomObject]@{ Name="name1"; Credential = $cred; Description = "desc1"}, [PSCustomObject]@{ Name="name2"; Credential = $cred; Description = "desc2"}, [PSCustomObject]@{ Name="name3"; Credential = $cred; Description = "desc3"} ) $entries | Set-CsKeyVaultEntry -VaultName vault1 It "should set the entries" { Assert-MockCalled Set-AzureKeyVaultSecret -ParameterFilter { $decoded = (New-Object PSCredential("user", $SecretValue)).GetNetworkCredential().Password $VaultName -eq 'vault1' -And $Name -eq 'name1' -And $decoded -eq 'pass' -And $ContentType -eq "CredentialStore" -And $Tag['Username'] -eq 'user' -And $Tag['Description'] -eq 'desc1' } Assert-MockCalled Set-AzureKeyVaultSecret -ParameterFilter { $decoded = (New-Object PSCredential("user", $SecretValue)).GetNetworkCredential().Password $VaultName -eq 'vault1' -And $Name -eq 'name2' -And $decoded -eq 'pass' -And $ContentType -eq "CredentialStore" -And $Tag['Username'] -eq 'user' -And $Tag['Description'] -eq 'desc2' } Assert-MockCalled Set-AzureKeyVaultSecret -ParameterFilter { $decoded = (New-Object PSCredential("user", $SecretValue)).GetNetworkCredential().Password $VaultName -eq 'vault1' -And $Name -eq 'name3' -And $decoded -eq 'pass' -And $ContentType -eq "CredentialStore" -And $Tag['Username'] -eq 'user' -And $Tag['Description'] -eq 'desc3' } } } } |