feat(crypto): use passwap for machine and app secrets (#7657)

* feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com>
2025-08-11 19:07:30 +00:00 · 2024-04-05 12:35:49 +03:00
parent 5931fb8f28
commit 2089992d75
135 changed files with 2407 additions and 1779 deletions
--- a/internal/crypto/crypto_test.go
+++ b/internal/crypto/crypto_test.go
@@ -60,7 +60,7 @@ func (a *alg) Algorithm() string {
 func TestCrypt(t *testing.T) {
 	type args struct {
 		value []byte
-		c     Crypto
+		c     EncryptionAlgorithm
 	}
 	tests := []struct {
 		name    string
@@ -74,18 +74,6 @@ func TestCrypt(t *testing.T) {
 			&CryptoValue{CryptoType: TypeEncryption, Algorithm: "enc", KeyID: "keyID", Crypted: []byte("test")},
 			false,
 		},
-		{
-			"hash",
-			args{[]byte("test"), &mockHashCrypto{}},
-			&CryptoValue{CryptoType: TypeHash, Algorithm: "hash", Crypted: []byte("test")},
-			false,
-		},
-		{
-			"wrong type",
-			args{[]byte("test"), &alg{}},
-			nil,
-			true,
-		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
@@ -208,66 +196,3 @@ func TestDecryptString(t *testing.T) {
 		})
 	}
 }
-
-func TestHash(t *testing.T) {
-	type args struct {
-		value []byte
-		c     HashAlgorithm
-	}
-	tests := []struct {
-		name    string
-		args    args
-		want    *CryptoValue
-		wantErr bool
-	}{
-		{
-			"ok",
-			args{[]byte("test"), &mockHashCrypto{}},
-			&CryptoValue{CryptoType: TypeHash, Algorithm: "hash", Crypted: []byte("test")},
-			false,
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			got, err := Hash(tt.args.value, tt.args.c)
-			if (err != nil) != tt.wantErr {
-				t.Errorf("Hash() error = %v, wantErr %v", err, tt.wantErr)
-				return
-			}
-			if !reflect.DeepEqual(got, tt.want) {
-				t.Errorf("Hash() = %v, want %v", got, tt.want)
-			}
-		})
-	}
-}
-
-func TestCompareHash(t *testing.T) {
-	type args struct {
-		value    *CryptoValue
-		comparer []byte
-		c        HashAlgorithm
-	}
-	tests := []struct {
-		name    string
-		args    args
-		wantErr bool
-	}{
-		{
-			"ok",
-			args{&CryptoValue{CryptoType: TypeHash, Algorithm: "hash", Crypted: []byte("test")}, []byte("test"), &mockHashCrypto{}},
-			false,
-		},
-		{
-			"wrong",
-			args{&CryptoValue{CryptoType: TypeHash, Algorithm: "hash", Crypted: []byte("test")}, []byte("test2"), &mockHashCrypto{}},
-			true,
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			if err := CompareHash(tt.args.value, tt.args.comparer, tt.args.c); (err != nil) != tt.wantErr {
-				t.Errorf("CompareHash() error = %v, wantErr %v", err, tt.wantErr)
-			}
-		})
-	}
-}