faucet-source-elasticsearch 1.0.1

Elasticsearch source connector for the faucet-stream ecosystem
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110

//! Integration tests for the shared `AuthProvider` injection path on
//! [`ElasticsearchSource`].

use std::sync::Arc;

use faucet_core::{AuthProvider, AuthReference, AuthSpec, Credential, FaucetError, Source};
use faucet_source_elasticsearch::{ElasticsearchSource, ElasticsearchSourceConfig};
use serde_json::json;
use wiremock::matchers::{header, method, path};
use wiremock::{Mock, MockServer, ResponseTemplate};

/// A fixed-credential provider that always returns the same [`Credential`].
#[derive(Debug)]
struct FixedBearer(&'static str);

#[async_trait::async_trait]
impl AuthProvider for FixedBearer {
    async fn credential(&self) -> Result<Credential, FaucetError> {
        Ok(Credential::Bearer(self.0.to_string()))
    }
    fn provider_name(&self) -> &'static str {
        "fixed-bearer"
    }
}

// ── Helpers ──────────────────────────────────────────────────────────────────

/// Build a one-page Elasticsearch scroll response that returns the given docs
/// and a terminal empty-hits scroll page.
fn scroll_response(docs: serde_json::Value, scroll_id: &str) -> serde_json::Value {
    json!({
        "_scroll_id": scroll_id,
        "hits": {
            "total": { "value": 1 },
            "hits": docs
        }
    })
}

fn empty_scroll_response() -> serde_json::Value {
    json!({
        "_scroll_id": "done",
        "hits": {
            "total": { "value": 0 },
            "hits": []
        }
    })
}

// ── Tests ────────────────────────────────────────────────────────────────────

#[tokio::test]
async fn injected_provider_supplies_bearer_token() {
    let server = MockServer::start().await;

    // Initial search — must carry the injected bearer token.
    Mock::given(method("POST"))
        .and(path("/my_index/_search"))
        .and(header("authorization", "Bearer INJECTED"))
        .respond_with(
            ResponseTemplate::new(200)
                .set_body_json(scroll_response(json!([{"_source": {"id": 1}}]), "scroll1")),
        )
        .mount(&server)
        .await;

    // Scroll continuation — also needs the token.
    Mock::given(method("POST"))
        .and(path("/_search/scroll"))
        .and(header("authorization", "Bearer INJECTED"))
        .respond_with(ResponseTemplate::new(200).set_body_json(empty_scroll_response()))
        .mount(&server)
        .await;

    // Scroll cleanup DELETE.
    Mock::given(method("DELETE"))
        .and(path("/_search/scroll"))
        .respond_with(ResponseTemplate::new(200).set_body_json(json!({"succeeded": true})))
        .mount(&server)
        .await;

    let provider: faucet_core::SharedAuthProvider = Arc::new(FixedBearer("INJECTED"));
    let source = ElasticsearchSource::new(
        ElasticsearchSourceConfig::new(server.uri(), "my_index").with_batch_size(10),
    )
    .unwrap()
    .with_auth_provider(provider);

    let records = source.fetch_all().await.unwrap();
    assert_eq!(records.len(), 1);
    assert_eq!(records[0]["id"], 1);
}

#[tokio::test]
async fn unresolved_auth_reference_errors() {
    let server = MockServer::start().await;

    let mut config = ElasticsearchSourceConfig::new(server.uri(), "my_index");
    // A reference with no provider supplied must error at request time.
    config.auth = AuthSpec::Reference(AuthReference {
        name: "missing-provider".into(),
    });
    let source = ElasticsearchSource::new(config).unwrap();

    let err = source.fetch_all().await.unwrap_err();
    assert!(
        matches!(err, FaucetError::Auth(_)),
        "expected Auth error, got {err:?}"
    );
}