enterprise_code_security_and_analysis_test.go

// Copyright 2022 The go-github AUTHORS. All rights reserved.
//
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file.

package github

import (
	"context"
	"encoding/json"
	"fmt"
	"net/http"
	"testing"

	"github.com/google/go-cmp/cmp"
)

func TestEnterpriseService_GetCodeSecurityAndAnalysis(t *testing.T) {
	client, mux, _, teardown := setup()
	defer teardown()

	mux.HandleFunc("/enterprises/e/code_security_and_analysis", func(w http.ResponseWriter, r *http.Request) {
		testMethod(t, r, "GET")

		fmt.Fprint(w, `
		{
		  "advanced_security_enabled_for_new_repositories": true,
		  "secret_scanning_enabled_for_new_repositories": true,
		  "secret_scanning_push_protection_enabled_for_new_repositories": true,
		  "secret_scanning_push_protection_custom_link": "https://github.com/test-org/test-repo/blob/main/README.md",
		  "secret_scanning_validity_checks_enabled": true
		}`)
	})

	ctx := context.Background()

	const methodName = "GetCodeSecurityAndAnalysis"

	settings, _, err := client.Enterprise.GetCodeSecurityAndAnalysis(ctx, "e")
	if err != nil {
		t.Errorf("Enterprise.%v returned error: %v", methodName, err)
	}
	want := &EnterpriseSecurityAnalysisSettings{
		AdvancedSecurityEnabledForNewRepositories:             Bool(true),
		SecretScanningEnabledForNewRepositories:               Bool(true),
		SecretScanningPushProtectionEnabledForNewRepositories: Bool(true),
		SecretScanningPushProtectionCustomLink:                String("https://github.com/test-org/test-repo/blob/main/README.md"),
		SecretScanningValidityChecksEnabled:                   Bool(true),
	}

	if !cmp.Equal(settings, want) {
		t.Errorf("Enterprise.%v return \ngot: %+v,\nwant:%+v", methodName, settings, want)
	}

	testBadOptions(t, methodName, func() (err error) {
		_, _, err = client.Enterprise.GetCodeSecurityAndAnalysis(ctx, "o")
		return err
	})

	testNewRequestAndDoFailure(t, methodName, client, func() (*Response, error) {
		got, resp, err := client.Enterprise.GetCodeSecurityAndAnalysis(ctx, "e")
		if got != nil {
			t.Errorf("testNewRequestAndDoFailure %v = %#v, want nil", methodName, got)
		}
		return resp, err
	})
}

func TestEnterpriseService_UpdateCodeSecurityAndAnalysis(t *testing.T) {
	client, mux, _, teardown := setup()
	defer teardown()

	input := &EnterpriseSecurityAnalysisSettings{
		AdvancedSecurityEnabledForNewRepositories:             Bool(true),
		SecretScanningEnabledForNewRepositories:               Bool(true),
		SecretScanningPushProtectionEnabledForNewRepositories: Bool(true),
		SecretScanningPushProtectionCustomLink:                String("https://github.com/test-org/test-repo/blob/main/README.md"),
		SecretScanningValidityChecksEnabled:                   Bool(true),
	}

	mux.HandleFunc("/enterprises/e/code_security_and_analysis", func(w http.ResponseWriter, r *http.Request) {
		v := new(EnterpriseSecurityAnalysisSettings)
		assertNilError(t, json.NewDecoder(r.Body).Decode(v))

		testMethod(t, r, "PATCH")
		if !cmp.Equal(v, input) {
			t.Errorf("Request body = %+v, want %+v", v, input)
		}
	})

	ctx := context.Background()

	const methodName = "UpdateCodeSecurityAndAnalysis"

	_, err := client.Enterprise.UpdateCodeSecurityAndAnalysis(ctx, "e", input)
	if err != nil {
		t.Errorf("Enterprise.%v returned error: %v", methodName, err)
	}

	testBadOptions(t, methodName, func() (err error) {
		_, err = client.Enterprise.UpdateCodeSecurityAndAnalysis(ctx, "o", input)
		return err
	})

	testNewRequestAndDoFailure(t, methodName, client, func() (*Response, error) {
		return client.Enterprise.UpdateCodeSecurityAndAnalysis(ctx, "e", input)
	})
}

func TestEnterpriseService_EnableAdvancedSecurity(t *testing.T) {
	client, mux, _, teardown := setup()
	defer teardown()

	mux.HandleFunc("/enterprises/e/advanced_security/enable_all", func(w http.ResponseWriter, r *http.Request) {
		testMethod(t, r, "POST")
	})

	ctx := context.Background()

	const methodName = "EnableDisableSecurityFeature"

	_, err := client.Enterprise.EnableDisableSecurityFeature(ctx, "e", "advanced_security", "enable_all")
	if err != nil {
		t.Errorf("Enterprise.%v returned error: %v", methodName, err)
	}

	testBadOptions(t, methodName, func() (err error) {
		_, err = client.Enterprise.EnableDisableSecurityFeature(ctx, "o", "advanced_security", "enable_all")
		return err
	})

	testNewRequestAndDoFailure(t, methodName, client, func() (*Response, error) {
		return client.Enterprise.EnableDisableSecurityFeature(ctx, "e", "advanced_security", "enable_all")
	})
}