yage 0.5.0

A simple tool to manage encrypted secrets in YAML files with age encryption
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

mod common;

use assert_fs::fixture::PathChild;
use common::*;
use predicates::str::{contains, is_empty};
// use pretty_assertions::{assert_eq, assert_ne};

const YAML_CONTENT: &str = "foo: bar";

#[test]
fn env_key_file_from_args() {
    let tmp = temp_dir();
    let (key_path, pub_path) = create_key(&tmp);
    let yaml_path = tmp.child("file.yaml");
    write(&yaml_path, YAML_CONTENT);
    let encrypted_path = tmp.child("file.enc.yaml");
    yage!("encrypt", "-R", &pub_path, &yaml_path, "-o", &encrypted_path);
    yage!("env", "--key-file", &key_path, &encrypted_path, "env")
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
    // again with short option
    yage!("env", "-K", &key_path, &encrypted_path, "env")
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
}

#[test]
fn env_key_from_args() {
    let tmp = temp_dir();
    let (key_path, pub_path) = create_key(&tmp);
    let yaml_path = tmp.child("file.yaml");
    write(&yaml_path, YAML_CONTENT);
    let encrypted_path = tmp.child("file.enc.yaml");
    yage!("encrypt", "-R", &pub_path, &yaml_path, "-o", &encrypted_path);
    yage!("env", "--key", read(&key_path).trim(), &encrypted_path, "env")
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
    // again with short option
    yage!("env", "-k", read(&key_path).trim(), &encrypted_path, "env")
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
}

#[test]
fn env_key_from_env() {
    let tmp = temp_dir();
    let (key_path, pub_path) = create_key(&tmp);
    let yaml_path = tmp.child("file.yaml");
    write(&yaml_path, YAML_CONTENT);
    let encrypted_path = tmp.child("file.enc.yaml");
    yage!("encrypt", "-R", &pub_path, &yaml_path, "-o", &encrypted_path);
    yage_cmd!("env", &encrypted_path, "env")
        .env("YAGE_KEY", read(&key_path).trim())
        .assert()
        .success()
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
}

#[test]
fn env_key_file_from_env() {
    let tmp = temp_dir();
    let (key_path, pub_path) = create_key(&tmp);
    let yaml_path = tmp.child("file.yaml");
    write(&yaml_path, YAML_CONTENT);
    let encrypted_path = tmp.child("file.enc.yaml");
    yage!("encrypt", "-R", &pub_path, &yaml_path, "-o", &encrypted_path);
    yage_cmd!("env", &encrypted_path, "env")
        .env("YAGE_KEY_FILE", &key_path)
        .assert()
        .success()
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
}

#[test]
fn env_key_from_stdin() {
    let tmp = temp_dir();
    let (key_path, pub_path) = create_key(&tmp);
    let yaml_path = tmp.child("file.yaml");
    write(&yaml_path, YAML_CONTENT);
    let encrypted_path = tmp.child("file.enc.yaml");
    yage!("encrypt", "-R", &pub_path, &yaml_path, "-o", &encrypted_path);
    yage_cmd!("env", "-K", "-", &encrypted_path, "env")
        .write_stdin(read(&key_path))
        .assert()
        .success()
        .stdout(contains("foo=bar"))
        .stderr(is_empty());
}

#[test]
fn env_empty() {
    yage_cmd!("env")
        .assert()
        .failure()
        .stdout(is_empty())
        .stderr(contains("error: the following required arguments were not provided"));
}

#[test]
fn env_no_command() {
    yage_cmd!("env", "foo.yaml")
        .assert()
        .failure()
        .stdout(is_empty())
        .stderr(contains("error: the following required arguments were not provided"));
}