CredentialStore.AzureKeyVault

1.1.7

tests/Get-CsKeyVaultEntry.Tests.ps1

                                [Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSAvoidUsingConvertToSecureStringWithPlainText", "")]

param()

. "$PSScriptRoot\..\..\CredentialStore\src\Test-CsEntryName.ps1"

. "$PSScriptRoot\..\src\Get-CsKeyVaultEntry.ps1"

Describe Get-CsKeyVaultEntry {

    Mock -CommandName Get-AzureKeyVaultSecret

    $allEntries = @(

        @{Name = 'name1'; ContentType = 'CredentialStore'},

        @{Name = 'name2'; ContentType = 'CredentialStore'},

        @{Name = 'name3'; ContentType = 'CredentialStore'},

        @{Name = 'other'; ContentType = 'CredentialStore'}

    )

    Mock -CommandName Get-AzureKeyVaultSecret -ParameterFilter {

        $VaultName -eq 'vault1'

    } -MockWith {

        if ($Name) {

            return @{

                Name        = $name

                Attributes  = @{ Tags = @{ Username = "user$name"; Description = "desc$name" }}

                SecretValue = $("pass$name" | ConvertTo-SecureString -AsPlainText -Force)

            }

        }

        return $allEntries

    }

    Context "Get an from azure entry by name" {

        It "should be able to the get entry by exact name" {

            $result = Get-CsKeyVaultEntry -VaultName vault1 -Name name1

            $result.Name | Should Be 'name1'

            $result.Description | Should Be 'descname1'

            $result.Credential.Username | Should Be 'username1'

            $result.Credential.GetNetworkCredential().Password | Should Be 'passname1'

        }

        It "should be able to the get entry by wildcard" {

            $result = Get-CsKeyVaultEntry -VaultName vault1 -Name name*

            $result.Length | Should Be 3

            $result[0].Name | Should Be 'name1'

            $result[1].Name | Should Be 'name2'

            $result[2].Name | Should Be 'name3'

        }

        It "should be able to the get entry by array" {

            $result = Get-CsKeyVaultEntry -VaultName vault1 -Name name1, name2

            $result.Length | Should Be 2

            $result[0].Name | Should Be 'name1'

            $result[1].Name | Should Be 'name2'

        }

    }

    Context "Only get CredentialStore entries from the vault" {

        It "should discard entries not belonging to the CredentialStore" {

            $allEntries[0].ContentType = 'other'

            $result = Get-CsKeyVaultEntry -VaultName vault1

            $result.Length | Should Be 3

            $result[0].Name | Should Be 'name2'

            $result[1].Name | Should Be 'name3'

            $result[2].Name | Should Be 'other'

        }

    }

}