photoprism/internal/service/cluster/provisioner/credentials_test.go

package provisioner

import (
	"context"
	"database/sql"
	"testing"
	"time"

	"github.com/stretchr/testify/assert"

	"github.com/photoprism/photoprism/internal/config"
)

// TestGetCredentials_MariaDB exercises the direct mysql driver path using the
// ProvisionDSN. It skips if MariaDB is not reachable or when not explicitly enabled
// via environment (PHOTOPRISM_TEST_DRIVER=mysql).
func TestGetCredentials_MariaDB(t *testing.T) {
	ctx := context.Background()

	// Quick liveness probe for AdminDsn; skip fast if not reachable.
	if db, err := sql.Open("mysql", ProvisionDSN); err != nil {
		t.Skipf("admin DSN not openable: %v", err)
	} else {
		c, cancel := context.WithTimeout(ctx, 3*time.Second)
		defer cancel()
		if err := db.PingContext(c); err != nil {
			_ = db.Close()
			t.Skipf("admin DSN not reachable: %v", err)
		}
		_ = db.Close()
	}

	// Unique-ish ClusterUUID to avoid collisions across runs; format is not strictly validated.
	c := config.NewConfig(config.CliTestContext())
	c.Options().ClusterUUID = time.Now().UTC().Format("20060102-150405.000000000")

	nodeName := "pp-itest-node"

	// 1st call: rotate=true so we receive a password + DSN.
	creds, created, err := GetCredentials(ctx, c, "11111111-1111-4111-8111-111111111111", nodeName, true)
	if err != nil {
		t.Fatalf("GetCredentials(rotate=true) error: %v", err)
	}
	if creds.Name == "" || creds.User == "" {
		t.Fatalf("missing db name/user in creds: %+v", creds)
	}
	if creds.Password == "" || creds.DSN == "" {
		t.Fatalf("expected password and DSN on rotate/create; got: %+v (created=%v)", creds, created)
	}

	// DSN should be usable by the node user (at least ping).
	udb, err := sql.Open("mysql", creds.DSN)
	if err != nil {
		t.Fatalf("open node DSN: %v", err)
	}
	c2, cancel := context.WithTimeout(ctx, 5*time.Second)
	if err := udb.PingContext(c2); err != nil {
		cancel()
		_ = udb.Close()
		t.Fatalf("ping node DSN: %v", err)
	}
	cancel()
	_ = udb.Close()

	// 2nd call: rotate=false should not return a password (idempotent ensure).
	creds2, _, err := GetCredentials(ctx, c, "11111111-1111-4111-8111-111111111111", nodeName, false)
	if err != nil {
		t.Fatalf("GetCredentials(rotate=false) error: %v", err)
	}
	if creds2.Password != "" || creds2.DSN != "" {
		t.Fatalf("expected no password/DSN without rotation; got: %+v", creds2)
	}

	// Cleanup: drop user and database to keep the dev DB tidy.
	adb, err := GetDB(ctx)
	if err != nil {
		t.Fatalf("GetDB: %v", err)
	}
	qdb, err := quoteIdent(creds.Name)
	if err != nil {
		t.Fatalf("quoteIdent: %v", err)
	}
	acc, err := quoteAccount("%", creds.User)
	if err != nil {
		t.Fatalf("quoteAccount: %v", err)
	}
	// Best-effort cleanup; ignore individual errors to avoid masking earlier failures.
	_ = execTimeout(ctx, adb, 10*time.Second, "REVOKE ALL PRIVILEGES, GRANT OPTION FROM "+acc)
	_ = execTimeout(ctx, adb, 10*time.Second, "DROP USER IF EXISTS "+acc)
	_ = execTimeout(ctx, adb, 15*time.Second, "DROP DATABASE IF EXISTS "+qdb)
}

// Verifies that GetCredentials normalizes DatabaseDriver case and rejects
// non-MySQL/MariaDB drivers early without attempting a DB connection.
func TestGetCredentials_DriverNormalization(t *testing.T) {
	orig := DatabaseDriver
	t.Cleanup(func() { DatabaseDriver = orig })

	c := config.NewConfig(config.CliTestContext())
	ctx := context.Background()

	// Postgres in weird case should hit the explicit rejection path.
	DatabaseDriver = "PostGreS"
	_, _, err := GetCredentials(ctx, c, "11111111-1111-4111-8111-111111111111", "pp-node", false)
	assert.Error(t, err)
	assert.Equal(t, "PostGreS", DatabaseDriver)

	// Unknown driver should return the unsupported error including normalized name.
	DatabaseDriver = "TiDB"
	_, _, err = GetCredentials(ctx, c, "11111111-1111-4111-8111-111111111111", "pp-node", false)
	if assert.Error(t, err) {
		assert.Contains(t, err.Error(), "unsupported auto-provisioning database driver: tidb")
	}
	assert.Equal(t, "TiDB", DatabaseDriver)
}