Commit 8b5caa71 authored by Kushal Pandya's avatar Kushal Pandya

Merge branch '238578-hook-up-profile-validation' into 'master'

DAST Site validation - Hook up Profile Validation - Frontend

See merge request gitlab-org/gitlab!41225
parents 7bed0e4c 1a9d8318
...@@ -17,6 +17,9 @@ import glFeatureFlagsMixin from '~/vue_shared/mixins/gl_feature_flags_mixin'; ...@@ -17,6 +17,9 @@ import glFeatureFlagsMixin from '~/vue_shared/mixins/gl_feature_flags_mixin';
import DastSiteValidation from './dast_site_validation.vue'; import DastSiteValidation from './dast_site_validation.vue';
import dastSiteProfileCreateMutation from '../graphql/dast_site_profile_create.mutation.graphql'; import dastSiteProfileCreateMutation from '../graphql/dast_site_profile_create.mutation.graphql';
import dastSiteProfileUpdateMutation from '../graphql/dast_site_profile_update.mutation.graphql'; import dastSiteProfileUpdateMutation from '../graphql/dast_site_profile_update.mutation.graphql';
import dastSiteTokenCreateMutation from '../graphql/dast_site_token_create.mutation.graphql';
import dastSiteValidationQuery from '../graphql/dast_site_validation.query.graphql';
import { DAST_SITE_VALIDATION_STATUS } from '../constants';
const initField = value => ({ const initField = value => ({
value, value,
...@@ -67,10 +70,15 @@ export default { ...@@ -67,10 +70,15 @@ export default {
form, form,
initialFormValues: extractFormValues(form), initialFormValues: extractFormValues(form),
isFetchingValidationStatus: false, isFetchingValidationStatus: false,
isValidatingSite: false,
loading: false, loading: false,
showAlert: false, showAlert: false,
tokenId: null,
token: null,
isSiteValid, isSiteValid,
validateSite: isSiteValid, validateSite: isSiteValid,
errorMessage: '',
errors: [],
}; };
}, },
computed: { computed: {
...@@ -93,6 +101,14 @@ export default { ...@@ -93,6 +101,14 @@ export default {
okTitle: __('Discard'), okTitle: __('Discard'),
cancelTitle: __('Cancel'), cancelTitle: __('Cancel'),
}, },
siteValidation: {
validationStatusFetchError: s__(
'DastProfiles|Could not retrieve site validation status. Please refresh the page, or try again later.',
),
createTokenError: s__(
'DastProfiles|Could not create site validation token. Please refresh the page, or try again later.',
),
},
}; };
}, },
formTouched() { formTouched() {
...@@ -108,30 +124,35 @@ export default { ...@@ -108,30 +124,35 @@ export default {
return (this.validateSite && !this.isSiteValid) || this.formHasErrors || this.someFieldEmpty; return (this.validateSite && !this.isSiteValid) || this.formHasErrors || this.someFieldEmpty;
}, },
showValidationSection() { showValidationSection() {
return this.validateSite && !this.isSiteValid && !this.isFetchingValidationStatus; return this.validateSite && !this.isSiteValid && !this.isValidatingSite;
}, },
}, },
watch: { watch: {
async validateSite(validate) { async validateSite(validate) {
this.tokenId = null;
this.token = null;
if (!validate) { if (!validate) {
this.isSiteValid = false; this.isSiteValid = false;
} else { } else {
// TODO: In the next iteration, this should be changed to: try {
// * Trigger a GraphQL query to retrieve the site's validation status this.isValidatingSite = true;
// * If the site is not validated, this should also trigger the dastSiteTokenCreate GraphQL await this.fetchValidationStatus();
// mutation to create the validation token and pass it down to the validation component.
// See https://gitlab.com/gitlab-org/gitlab/-/issues/238578 if (!this.isSiteValid) {
this.isFetchingValidationStatus = true; await this.createValidationToken();
await new Promise(resolve => { }
setTimeout(resolve, 1000); } catch (exception) {
}); this.captureException(exception);
this.isFetchingValidationStatus = false; } finally {
this.isValidatingSite = false;
}
} }
}, },
}, },
created() { async created() {
if (this.isEdit) { if (this.isEdit) {
this.validateTargetUrl(); this.validateTargetUrl();
await this.fetchValidationStatus();
} }
}, },
methods: { methods: {
...@@ -146,9 +167,64 @@ export default { ...@@ -146,9 +167,64 @@ export default {
this.form.targetUrl.state = true; this.form.targetUrl.state = true;
this.form.targetUrl.feedback = null; this.form.targetUrl.feedback = null;
}, },
async fetchValidationStatus() {
this.isFetchingValidationStatus = true;
try {
const {
data: {
project: {
dastSiteValidation: { status },
},
},
} = await this.$apollo.query({
query: dastSiteValidationQuery,
variables: {
fullPath: this.fullPath,
targetUrl: this.form.targetUrl.value,
},
});
this.isSiteValid = status === DAST_SITE_VALIDATION_STATUS.VALID;
} catch (exception) {
this.showErrors({
message: this.i18n.siteValidation.validationStatusFetchError,
});
this.validateSite = false;
throw new Error(exception);
} finally {
this.isFetchingValidationStatus = false;
}
},
async createValidationToken() {
const errorMessage = this.i18n.siteValidation.createTokenError;
try {
const {
data: {
dastSiteTokenCreate: { id, token, errors = [] },
},
} = await this.$apollo.mutate({
mutation: dastSiteTokenCreateMutation,
variables: { projectFullPath: this.fullPath, targetUrl: this.form.targetUrl.value },
});
if (errors.length) {
this.showErrors({ message: errorMessage, errors });
} else {
this.tokenId = id;
this.token = token;
}
} catch (exception) {
this.showErrors({ message: errorMessage });
this.validateSite = false;
throw new Error(exception);
}
},
onSubmit() { onSubmit() {
this.loading = true; this.loading = true;
this.hideErrors(); this.hideErrors();
const { errorMessage } = this.i18n;
const variables = { const variables = {
fullPath: this.fullPath, fullPath: this.fullPath,
...@@ -168,16 +244,16 @@ export default { ...@@ -168,16 +244,16 @@ export default {
}, },
}) => { }) => {
if (errors.length > 0) { if (errors.length > 0) {
this.showErrors(errors); this.showErrors({ message: errorMessage, errors });
this.loading = false; this.loading = false;
} else { } else {
redirectTo(this.profilesLibraryPath); redirectTo(this.profilesLibraryPath);
} }
}, },
) )
.catch(e => { .catch(exception => {
Sentry.captureException(e); this.showErrors({ message: errorMessage });
this.showErrors(); this.captureException(exception);
this.loading = false; this.loading = false;
}); });
}, },
...@@ -191,11 +267,16 @@ export default { ...@@ -191,11 +267,16 @@ export default {
discard() { discard() {
redirectTo(this.profilesLibraryPath); redirectTo(this.profilesLibraryPath);
}, },
showErrors(errors = []) { captureException(exception) {
Sentry.captureException(exception);
},
showErrors({ message, errors = [] }) {
this.errorMessage = message;
this.errors = errors; this.errors = errors;
this.showAlert = true; this.showAlert = true;
}, },
hideErrors() { hideErrors() {
this.errorMessage = '';
this.errors = []; this.errors = [];
this.showAlert = false; this.showAlert = false;
}, },
...@@ -210,8 +291,14 @@ export default { ...@@ -210,8 +291,14 @@ export default {
{{ i18n.title }} {{ i18n.title }}
</h2> </h2>
<gl-alert v-if="showAlert" variant="danger" class="gl-mb-5" @dismiss="hideErrors"> <gl-alert
{{ i18n.errorMessage }} v-if="showAlert"
variant="danger"
class="gl-mb-5"
data-testid="dast-site-profile-form-alert"
@dismiss="hideErrors"
>
{{ errorMessage }}
<ul v-if="errors.length" class="gl-mt-3 gl-mb-0"> <ul v-if="errors.length" class="gl-mt-3 gl-mb-0">
<li v-for="error in errors" :key="error" v-text="error"></li> <li v-for="error in errors" :key="error" v-text="error"></li>
</ul> </ul>
...@@ -232,7 +319,7 @@ export default { ...@@ -232,7 +319,7 @@ export default {
data-testid="target-url-input-group" data-testid="target-url-input-group"
:invalid-feedback="form.targetUrl.feedback" :invalid-feedback="form.targetUrl.feedback"
:description=" :description="
validateSite validateSite && !isValidatingSite
? s__('DastProfiles|Validation must be turned off to change the target URL') ? s__('DastProfiles|Validation must be turned off to change the target URL')
: null : null
" "
...@@ -267,13 +354,15 @@ export default { ...@@ -267,13 +354,15 @@ export default {
v-model="validateSite" v-model="validateSite"
data-testid="dast-site-validation-toggle" data-testid="dast-site-validation-toggle"
:disabled="!form.targetUrl.state" :disabled="!form.targetUrl.state"
:is-loading="isFetchingValidationStatus" :is-loading="isFetchingValidationStatus || isValidatingSite"
/> />
</gl-form-group> </gl-form-group>
<gl-collapse :visible="showValidationSection"> <gl-collapse :visible="showValidationSection">
<dast-site-validation <dast-site-validation
token="asd" :full-path="fullPath"
:token-id="tokenId"
:token="token"
:target-url="form.targetUrl.value" :target-url="form.targetUrl.value"
@success="isSiteValid = true" @success="isSiteValid = true"
/> />
......
<script> <script>
import * as Sentry from '@sentry/browser';
import { import {
GlAlert, GlAlert,
GlButton, GlButton,
...@@ -12,7 +13,13 @@ import { ...@@ -12,7 +13,13 @@ import {
GlLoadingIcon, GlLoadingIcon,
} from '@gitlab/ui'; } from '@gitlab/ui';
import download from '~/lib/utils/downloader'; import download from '~/lib/utils/downloader';
import { DAST_SITE_VALIDATION_METHOD_TEXT_FILE, DAST_SITE_VALIDATION_METHODS } from '../constants'; import {
DAST_SITE_VALIDATION_METHOD_TEXT_FILE,
DAST_SITE_VALIDATION_METHODS,
DAST_SITE_VALIDATION_STATUS,
} from '../constants';
import dastSiteValidationCreateMutation from '../graphql/dast_site_validation_create.mutation.graphql';
import dastSiteValidationQuery from '../graphql/dast_site_validation.query.graphql';
export default { export default {
name: 'DastSiteValidation', name: 'DastSiteValidation',
...@@ -28,18 +35,59 @@ export default { ...@@ -28,18 +35,59 @@ export default {
GlInputGroupText, GlInputGroupText,
GlLoadingIcon, GlLoadingIcon,
}, },
apollo: {
dastSiteValidation: {
query: dastSiteValidationQuery,
variables() {
return {
fullPath: this.fullPath,
targetUrl: this.targetUrl,
};
},
manual: true,
result({
data: {
project: {
dastSiteValidation: { status },
},
},
}) {
if (status === DAST_SITE_VALIDATION_STATUS.VALID) {
this.onSuccess();
}
},
skip() {
return !(this.isCreatingValidation || this.isValidating);
},
pollInterval: 1000,
error(e) {
this.onError(e);
},
},
},
props: { props: {
fullPath: {
type: String,
required: true,
},
targetUrl: { targetUrl: {
type: String, type: String,
required: true, required: true,
}, },
tokenId: {
type: String,
required: false,
default: null,
},
token: { token: {
type: String, type: String,
required: true, required: false,
default: null,
}, },
}, },
data() { data() {
return { return {
isCreatingValidation: false,
isValidating: false, isValidating: false,
hasValidationError: false, hasValidationError: false,
validationMethod: DAST_SITE_VALIDATION_METHOD_TEXT_FILE, validationMethod: DAST_SITE_VALIDATION_METHOD_TEXT_FILE,
...@@ -66,20 +114,45 @@ export default { ...@@ -66,20 +114,45 @@ export default {
download({ fileName: this.textFileName, fileData: btoa(this.token) }); download({ fileName: this.textFileName, fileData: btoa(this.token) });
}, },
async validate() { async validate() {
// TODO: Trigger the dastSiteValidationCreate GraphQL mutation.
// See https://gitlab.com/gitlab-org/gitlab/-/issues/238578
this.hasValidationError = false; this.hasValidationError = false;
this.isCreatingValidation = true;
this.isValidating = true; this.isValidating = true;
try { try {
await new Promise(resolve => { const {
setTimeout(resolve, 1000); data: {
dastSiteValidationCreate: { status, errors },
},
} = await this.$apollo.mutate({
mutation: dastSiteValidationCreateMutation,
variables: {
projectFullPath: this.fullPath,
dastSiteTokenId: this.tokenId,
strategy: this.validationMethod,
},
}); });
if (errors?.length) {
this.onError();
} else if (status === DAST_SITE_VALIDATION_STATUS.VALID) {
this.onSuccess();
} else {
this.isCreatingValidation = false;
}
} catch (exception) {
this.onError(exception);
}
},
onSuccess() {
this.isCreatingValidation = false;
this.isValidating = false; this.isValidating = false;
this.$emit('success'); this.$emit('success');
} catch (_) { },
this.hasValidationError = true; onError(exception = null) {
this.isValidating = false; if (exception !== null) {
Sentry.captureException(exception);
} }
this.isCreatingValidation = false;
this.isValidating = false;
this.hasValidationError = true;
}, },
}, },
validationMethodOptions: Object.values(DAST_SITE_VALIDATION_METHODS), validationMethodOptions: Object.values(DAST_SITE_VALIDATION_METHODS),
......
import { s__ } from '~/locale'; import { s__ } from '~/locale';
export const DAST_SITE_VALIDATION_METHOD_TEXT_FILE = 'DAST_SITE_VALIDATION_METHOD_TEXT_FILE'; export const DAST_SITE_VALIDATION_METHOD_TEXT_FILE = 'TEXT_FILE';
export const DAST_SITE_VALIDATION_METHODS = { export const DAST_SITE_VALIDATION_METHODS = {
DAST_SITE_VALIDATION_METHOD_TEXT_FILE: { [DAST_SITE_VALIDATION_METHOD_TEXT_FILE]: {
value: DAST_SITE_VALIDATION_METHOD_TEXT_FILE, value: DAST_SITE_VALIDATION_METHOD_TEXT_FILE,
text: s__('DastProfiles|Text file validation'), text: s__('DastProfiles|Text file validation'),
i18n: { i18n: {
...@@ -10,3 +10,8 @@ export const DAST_SITE_VALIDATION_METHODS = { ...@@ -10,3 +10,8 @@ export const DAST_SITE_VALIDATION_METHODS = {
}, },
}, },
}; };
export const DAST_SITE_VALIDATION_STATUS = {
VALID: 'PASSED_VALIDATION',
INVALID: 'FAILED_VALIDATION',
};
mutation dastSiteTokenCreate($projectFullPath: ID!, $targetUrl: String!) {
dastSiteTokenCreate(input: { projectFullPath: $projectFullPath, targetUrl: $targetUrl }) {
token
errors
}
}
query project($fullPath: ID!, $targetUrl: String!) {
project(fullPath: $fullPath) {
dastSiteValidation(targetUrl: $targetUrl) {
status
}
}
}
mutation dastSiteValidationCreate(
$projectFullPath: ID!
$dastSiteTokenId: DastSiteTokenID!
$validationStrategy: DastSiteValidationStrategyEnum
) {
dastSiteValidationCreate(
input: {
projectFullPath: $projectFullPath
dastSiteTokenId: $dastSiteTokenId
strategy: $validationStrategy
}
) {
status
errors
}
}
import merge from 'lodash/merge'; import merge from 'lodash/merge';
import VueApollo from 'vue-apollo';
import { within } from '@testing-library/dom'; import { within } from '@testing-library/dom';
import { mount, shallowMount } from '@vue/test-utils'; import { createLocalVue, mount, shallowMount } from '@vue/test-utils';
import { createMockClient } from 'mock-apollo-client';
import { GlLoadingIcon } from '@gitlab/ui'; import { GlLoadingIcon } from '@gitlab/ui';
import waitForPromises from 'jest/helpers/wait_for_promises';
import DastSiteValidation from 'ee/dast_site_profiles_form/components/dast_site_validation.vue'; import DastSiteValidation from 'ee/dast_site_profiles_form/components/dast_site_validation.vue';
import dastSiteValidationCreateMutation from 'ee/dast_site_profiles_form/graphql/dast_site_validation_create.mutation.graphql';
import dastSiteValidationQuery from 'ee/dast_site_profiles_form/graphql/dast_site_validation.query.graphql';
import * as responses from 'ee_jest/dast_site_profiles_form/mock_data/apollo_mock';
import download from '~/lib/utils/downloader'; import download from '~/lib/utils/downloader';
jest.mock('~/lib/utils/downloader'); jest.mock('~/lib/utils/downloader');
// TODO: stop using fake timers once GraphQL mutations are implemented. const localVue = createLocalVue();
// See https://gitlab.com/gitlab-org/gitlab/-/issues/238578 localVue.use(VueApollo);
jest.useFakeTimers();
const fullPath = 'group/project';
const targetUrl = 'https://example.com/'; const targetUrl = 'https://example.com/';
const token = 'validation-token-123'; const token = 'validation-token-123';
const defaultProps = { const defaultProps = {
fullPath,
targetUrl, targetUrl,
token, token,
}; };
const defaultRequestHandlers = {
dastSiteValidation: jest.fn().mockResolvedValue(responses.dastSiteValidation()),
dastSiteValidationCreate: jest.fn().mockResolvedValue(responses.dastSiteValidationCreate()),
};
describe('DastSiteValidation', () => { describe('DastSiteValidation', () => {
let wrapper; let wrapper;
let apolloProvider;
let requestHandlers;
const mockClientFactory = handlers => {
const mockClient = createMockClient();
requestHandlers = {
...defaultRequestHandlers,
...handlers,
};
mockClient.setRequestHandler(dastSiteValidationQuery, requestHandlers.dastSiteValidation);
mockClient.setRequestHandler(
dastSiteValidationCreateMutation,
requestHandlers.dastSiteValidationCreate,
);
return mockClient;
};
const respondWith = handlers => {
apolloProvider.defaultClient = mockClientFactory(handlers);
};
const componentFactory = (mountFn = shallowMount) => options => { const componentFactory = (mountFn = shallowMount) => options => {
apolloProvider = new VueApollo({
defaultClient: mockClientFactory(),
});
wrapper = mountFn( wrapper = mountFn(
DastSiteValidation, DastSiteValidation,
merge( merge(
...@@ -30,6 +71,10 @@ describe('DastSiteValidation', () => { ...@@ -30,6 +71,10 @@ describe('DastSiteValidation', () => {
propsData: defaultProps, propsData: defaultProps,
}, },
options, options,
{
localVue,
apolloProvider,
},
), ),
); );
}; };
...@@ -41,6 +86,10 @@ describe('DastSiteValidation', () => { ...@@ -41,6 +86,10 @@ describe('DastSiteValidation', () => {
wrapper.find('[data-testid="download-dast-text-file-validation-button"]'); wrapper.find('[data-testid="download-dast-text-file-validation-button"]');
const findValidateButton = () => wrapper.find('[data-testid="validate-dast-site-button"]'); const findValidateButton = () => wrapper.find('[data-testid="validate-dast-site-button"]');
const findLoadingIcon = () => wrapper.find(GlLoadingIcon); const findLoadingIcon = () => wrapper.find(GlLoadingIcon);
const findErrorMessage = () =>
withinComponent().queryByText(
/validation failed, please make sure that you follow the steps above with the choosen method./i,
);
afterEach(() => { afterEach(() => {
wrapper.destroy(); wrapper.destroy();
...@@ -88,6 +137,10 @@ describe('DastSiteValidation', () => { ...@@ -88,6 +137,10 @@ describe('DastSiteValidation', () => {
describe('validation', () => { describe('validation', () => {
beforeEach(() => { beforeEach(() => {
createComponent(); createComponent();
});
describe('success', () => {
beforeEach(() => {
findValidateButton().vm.$emit('click'); findValidateButton().vm.$emit('click');
}); });
...@@ -97,15 +150,32 @@ describe('DastSiteValidation', () => { ...@@ -97,15 +150,32 @@ describe('DastSiteValidation', () => {
}); });
it('on success, emits success event', async () => { it('on success, emits success event', async () => {
jest.spyOn(wrapper.vm, '$emit'); await waitForPromises();
jest.runAllTimers();
await wrapper.vm.$nextTick(); expect(wrapper.emitted('success')).toHaveLength(1);
});
});
expect(wrapper.vm.$emit).toHaveBeenCalledWith('success'); describe.each`
errorKind | errorResponse
${'top level error'} | ${() => Promise.reject(new Error('GraphQL Network Error'))}
${'errors as data'} | ${() => Promise.resolve(responses.dastSiteValidationCreate(['error#1', 'error#2']))}
`('$errorKind', ({ errorResponse }) => {
beforeEach(() => {
respondWith({
dastSiteValidationCreate: errorResponse,
});
}); });
// TODO: test error handling once GraphQL mutations are implemented. it('on error, shows error state', async () => {
// See https://gitlab.com/gitlab-org/gitlab/-/issues/238578 expect(findErrorMessage()).toBe(null);
it.todo('on error, shows error state');
findValidateButton().vm.$emit('click');
await waitForPromises();
expect(findErrorMessage()).not.toBe(null);
});
});
}); });
}); });
export const dastSiteProfileCreate = (errors = []) => ({
data: { dastSiteProfileCreate: { id: '3083', errors } },
});
export const dastSiteProfileUpdate = (errors = []) => ({
data: { dastSiteProfileUpdate: { id: '3083', errors } },
});
export const dastSiteValidation = (status = 'FAILED_VALIDATION') => ({
data: { project: { dastSiteValidation: { status, id: '1' } } },
});
export const dastSiteValidationCreate = (errors = []) => ({
data: { dastSiteValidationCreate: { status: 'PASSED_VALIDATION', id: '1', errors } },
});
export const dastSiteTokenCreate = ({ id = '1', token = '1', errors = [] }) => ({
data: {
dastSiteTokenCreate: {
id,
token,
errors,
},
},
});
...@@ -7831,6 +7831,9 @@ msgstr "" ...@@ -7831,6 +7831,9 @@ msgstr ""
msgid "DastProfiles|Are you sure you want to delete this profile?" msgid "DastProfiles|Are you sure you want to delete this profile?"
msgstr "" msgstr ""
msgid "DastProfiles|Could not create site validation token. Please refresh the page, or try again later."
msgstr ""
msgid "DastProfiles|Could not create the scanner profile. Please try again." msgid "DastProfiles|Could not create the scanner profile. Please try again."
msgstr "" msgstr ""
...@@ -7855,6 +7858,9 @@ msgstr "" ...@@ -7855,6 +7858,9 @@ msgstr ""
msgid "DastProfiles|Could not fetch site profiles. Please refresh the page, or try again later." msgid "DastProfiles|Could not fetch site profiles. Please refresh the page, or try again later."
msgstr "" msgstr ""
msgid "DastProfiles|Could not retrieve site validation status. Please refresh the page, or try again later."
msgstr ""
msgid "DastProfiles|Could not update the site profile. Please try again." msgid "DastProfiles|Could not update the site profile. Please try again."
msgstr "" msgstr ""
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment