samples/system-test/buckets.test.js

// Copyright 2019 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

'use strict';

const {Storage} = require('@google-cloud/storage');
const {assert} = require('chai');
const {after, it} = require('mocha');
const cp = require('child_process');
const uuid = require('uuid');

const execSync = cmd => cp.execSync(cmd, {encoding: 'utf-8'});

const storage = new Storage();
const samplesTestBucketPrefix = `nodejs-storage-samples-${uuid.v4()}`;
const bucketName = `${samplesTestBucketPrefix}-a`;
const bucketNameDualRegion = `${samplesTestBucketPrefix}-b`;
const bucketNameDualRegionTurbo = `${samplesTestBucketPrefix}-c`;
const bucketNameWithClassAndLocation = `${samplesTestBucketPrefix}-d`;
const bucketNameAutoclass = `${samplesTestBucketPrefix}-e`;
const defaultKmsKeyName = process.env.GOOGLE_CLOUD_KMS_KEY_ASIA;
const bucket = storage.bucket(bucketName);
const bucketWithClassAndLocation = storage.bucket(
  bucketNameWithClassAndLocation
);
const dualRegionBucket = storage.bucket(bucketNameDualRegion);
const dualRegionBucketTurbo = storage.bucket(bucketNameDualRegionTurbo);

const PUBLIC_ACCESS_PREVENTION_INHERITED = 'inherited';
const PUBLIC_ACCESS_PREVENTION_ENFORCED = 'enforced';

const DUAL_REGION = {
  LOCATION: 'US',
  REGIONS: ['US-EAST1', 'US-WEST1'],
};
const RPO_ASYNC_TURBO = 'ASYNC_TURBO';
const RPO_DEFAULT = 'DEFAULT';

async function deleteAllBucketsAsync() {
  const [buckets] = await storage.getBuckets({prefix: samplesTestBucketPrefix});

  for (const bucket of buckets) {
    await bucket.deleteFiles({force: true});
    await bucket.delete({ignoreNotFound: true});
  }
}

after(deleteAllBucketsAsync);

it('should create a bucket', async () => {
  const output = execSync(`node createNewBucket.js ${bucketName}`);
  assert.match(output, new RegExp(`Bucket ${bucketName} created`));
  const [exists] = await bucket.exists();
  assert.strictEqual(exists, true);
});

it('should list buckets', () => {
  const output = execSync('node listBuckets.js');
  assert.match(output, /Buckets:/);
  assert.match(output, new RegExp(bucketName));
});

it('should get bucket metadata', async () => {
  const output = execSync(`node bucketMetadata.js ${bucketName}`);
  assert.include(output, bucketName);
});

it('should disable autoclass', async () => {
  await storage.createBucket(bucketNameAutoclass, {
    autoclass: {
      enabled: true,
    },
  });
  const output = execSync(
    `node setAutoclass.js ${bucketNameAutoclass} ${false}`
  );
  assert.include(output, 'Autoclass');
});

it('should get autoclass', async () => {
  const output = execSync(`node getAutoclass.js ${bucketNameAutoclass}`);
  assert.include(output, 'Autoclass enabled is set to false');
});

it('should set a buckets default KMS key', async () => {
  const output = execSync(
    `node enableDefaultKMSKey.js ${bucketName} ${defaultKmsKeyName}`
  );
  assert.include(
    output,
    `Default KMS key for ${bucketName} was set to ${defaultKmsKeyName}`
  );
  const metadata = await bucket.getMetadata();
  assert.strictEqual(
    metadata[0].encryption.defaultKmsKeyName,
    defaultKmsKeyName
  );
});

it('should remove a buckets default KMS key', async () => {
  const output = execSync(`node removeDefaultKMSKey.js ${bucketName}`);
  assert.include(output, `Default KMS key was removed from ${bucketName}`);
  const [metadata] = await bucket.getMetadata();
  assert.ok(!metadata.encryption);
});

it("should enable a bucket's uniform bucket-level access", async () => {
  const output = execSync(
    `node enableUniformBucketLevelAccess.js ${bucketName}`
  );
  assert.match(
    output,
    new RegExp(`Uniform bucket-level access was enabled for ${bucketName}`)
  );

  const metadata = await bucket.getMetadata();
  assert.strictEqual(
    metadata[0].iamConfiguration.uniformBucketLevelAccess.enabled,
    true
  );
});

it("should get a bucket's uniform bucket-level access metadata", async () => {
  const output = execSync(`node getUniformBucketLevelAccess.js ${bucketName}`);

  assert.match(
    output,
    new RegExp(`Uniform bucket-level access is enabled for ${bucketName}`)
  );

  const [metadata] = await bucket.getMetadata();
  assert.ok(metadata.iamConfiguration.uniformBucketLevelAccess.enabled);
  assert.strictEqual(
    metadata.iamConfiguration.uniformBucketLevelAccess.lockedTime !== null,
    true
  );
});

it("should disable a bucket's uniform bucket-level access", async () => {
  const output = execSync(
    `node disableUniformBucketLevelAccess.js ${bucketName}`
  );
  assert.match(
    output,
    new RegExp(`Uniform bucket-level access was disabled for ${bucketName}`)
  );

  const metadata = await bucket.getMetadata();
  assert.strictEqual(
    metadata[0].iamConfiguration.uniformBucketLevelAccess.enabled,
    false
  );
});

it('should configure a bucket cors', async () => {
  execSync(
    `node configureBucketCors.js ${bucketName} 3600 POST http://example.appspot.com content-type`
  );
  await bucket.getMetadata();
  assert.deepStrictEqual(bucket.metadata.cors[0], {
    origin: ['http://example.appspot.com'],
    method: ['POST'],
    responseHeader: ['content-type'],
    maxAgeSeconds: 3600,
  });
});

it('should remove a bucket cors configuration', async () => {
  const output = execSync(`node removeBucketCors.js ${bucketName}`);
  assert.include(
    output,
    `Removed CORS configuration from bucket ${bucketName}`
  );
  await bucket.getMetadata();
  assert.ok(!bucket.metadata.cors);
});

it('should set public access prevention to enforced', async () => {
  const output = execSync(
    `node setPublicAccessPreventionEnforced.js ${bucketName}`
  );
  assert.match(
    output,
    new RegExp(`Public access prevention is set to enforced for ${bucketName}.`)
  );

  const metadata = await bucket.getMetadata();
  assert.strictEqual(
    metadata[0].iamConfiguration.publicAccessPrevention,
    PUBLIC_ACCESS_PREVENTION_ENFORCED
  );
});

it("should get a bucket's public access prevention metadata", async () => {
  await storage.bucket(bucketName).setMetadata({
    iamConfiguration: {
      publicAccessPrevention: PUBLIC_ACCESS_PREVENTION_ENFORCED,
    },
  });

  const output = execSync(`node getPublicAccessPrevention.js ${bucketName}`);

  assert.match(
    output,
    new RegExp(`Public access prevention is enforced for ${bucketName}.`)
  );

  const [metadata] = await bucket.getMetadata();
  assert.ok(metadata.iamConfiguration.publicAccessPrevention);
});

it('should set public access prevention to inherited', async () => {
  const output = execSync(
    `node setPublicAccessPreventionInherited.js ${bucketName}`
  );
  assert.match(
    output,
    new RegExp(`Public access prevention is 'inherited' for ${bucketName}.`)
  );

  const metadata = await bucket.getMetadata();
  assert.strictEqual(
    metadata[0].iamConfiguration.publicAccessPrevention,
    PUBLIC_ACCESS_PREVENTION_INHERITED
  );
});

it('should create a dual-region bucket', async () => {
  const output = execSync(
    `node createBucketWithDualRegion.js ${bucketNameDualRegion} ${DUAL_REGION.LOCATION} ${DUAL_REGION.REGIONS[0]} ${DUAL_REGION.REGIONS[1]}`
  );

  // Ensure the sample outputs the desired result
  assert.include(output, bucketNameDualRegion);
  assert.include(output, DUAL_REGION.LOCATION);
  assert.include(output, DUAL_REGION.REGIONS[0]);
  assert.include(output, DUAL_REGION.REGIONS[1]);
  assert.include(output, 'dual-region');

  // Make API request for further verification
  const [exists] = await dualRegionBucket.exists();
  assert.strictEqual(exists, true);

  const [metadata] = await dualRegionBucket.getMetadata();

  assert.strictEqual(metadata.location, DUAL_REGION.LOCATION);

  assert(metadata.customPlacementConfig);
  assert(Array.isArray(metadata.customPlacementConfig.dataLocations));

  const dataLocations = metadata.customPlacementConfig.dataLocations;

  assert(dataLocations.includes(DUAL_REGION.REGIONS[0]));
  assert(dataLocations.includes(DUAL_REGION.REGIONS[1]));

  assert.strictEqual(metadata.locationType, 'dual-region');
});

it('should create a dual-region bucket with turbo replication enabled', async () => {
  const output = execSync(
    `node createBucketWithTurboReplication.js ${bucketNameDualRegionTurbo}`
  );
  assert.match(
    output,
    new RegExp(
      `${bucketNameDualRegionTurbo} created with the recovery point objective \\(RPO\\) set to ASYNC_TURBO in NAM4.`
    )
  );
  const [exists] = await dualRegionBucketTurbo.exists();
  assert.strictEqual(exists, true);
});

it("should get a bucket's RPO metadata", async () => {
  await storage.bucket(bucketNameDualRegionTurbo).setMetadata({
    rpo: RPO_ASYNC_TURBO,
  });

  const output = execSync(`node getRPO.js ${bucketNameDualRegionTurbo}`);
  assert.match(
    output,
    new RegExp(`RPO is ASYNC_TURBO for ${bucketNameDualRegionTurbo}.`)
  );

  const metadata = await dualRegionBucketTurbo.getMetadata();
  assert.strictEqual(metadata[0].rpo, RPO_ASYNC_TURBO);
});

it("should set a bucket's RPO to ASYNC_TURBO", async () => {
  const output = execSync(
    `node setRPOAsyncTurbo.js ${bucketNameDualRegionTurbo}`
  );
  assert.match(
    output,
    new RegExp(`Turbo replication enabled for ${bucketNameDualRegionTurbo}.`)
  );

  const metadata = await dualRegionBucketTurbo.getMetadata();
  assert.strictEqual(metadata[0].rpo, RPO_ASYNC_TURBO);
});

it("should set a bucket's RPO to DEFAULT", async () => {
  const output = execSync(`node setRPODefault.js ${bucketNameDualRegionTurbo}`);
  assert.match(
    output,
    new RegExp(`Turbo replication disabled for ${bucketNameDualRegionTurbo}.`)
  );

  const metadata = await dualRegionBucketTurbo.getMetadata();
  assert.strictEqual(metadata[0].rpo, RPO_DEFAULT);
});

it("should add a bucket's website configuration", async () => {
  const output = execSync(
    `node addBucketWebsiteConfiguration.js ${bucketName} http://example.com http://example.com/404.html`
  );

  assert.include(
    output,
    `Static website bucket ${bucketName} is set up to use http://example.com as the index page and http://example.com/404.html as the 404 page`
  );

  const [metadata] = await bucket.getMetadata();
  assert.deepStrictEqual(metadata.website, {
    mainPageSuffix: 'http://example.com',
    notFoundPage: 'http://example.com/404.html',
  });
});

it('should make bucket publicly readable', async () => {
  const output = execSync(`node makeBucketPublic.js ${bucketName}`);
  assert.match(
    output,
    new RegExp(`Bucket ${bucketName} is now publicly readable`)
  );
  const [policy] = await bucket.iam.getPolicy();
  const objectViewerBinding = policy.bindings.filter(binding => {
    return binding.role === 'roles/storage.legacyBucketReader';
  })[0];

  assert(objectViewerBinding.members.includes('allUsers'));
});

it("should enable a bucket's versioning", async () => {
  const output = execSync(`node enableBucketVersioning.js ${bucketName}`);
  assert.include(output, `Versioning is enabled for bucket ${bucketName}`);
  await bucket.getMetadata();
  assert.strictEqual(bucket.metadata.versioning.enabled, true);
});

it("should disable a bucket's versioning", async () => {
  const output = execSync(`node disableBucketVersioning.js ${bucketName}`);
  assert.include(output, `Versioning is disabled for bucket ${bucketName}`);
  await bucket.getMetadata();
  assert.strictEqual(bucket.metadata.versioning.enabled, false);
});

it('should add label to bucket', async () => {
  const output = execSync(
    `node addBucketLabel.js ${bucketName} labelone labelonevalue`
  );
  assert.include(output, `Added label to bucket ${bucketName}`);
  const [labels] = await storage.bucket(bucketName).getLabels();
  assert.isTrue('labelone' in labels);
});

it('should remove label to bucket', async () => {
  const output = execSync(`node removeBucketLabel.js ${bucketName} labelone`);
  assert.include(output, `Removed labels from bucket ${bucketName}`);
  const [labels] = await storage.bucket(bucketName).getLabels();
  assert.isFalse('labelone' in labels);
});

it("should change a bucket's default storage class", async () => {
  const output = execSync(
    `node changeDefaultStorageClass.js ${bucketName} coldline`
  );
  assert.include(output, `${bucketName} has been set to coldline`);
  const [metadata] = await bucket.getMetadata();
  assert.strictEqual(metadata.storageClass, 'COLDLINE');
});

it('should create bucket with storage class and location', async () => {
  const output = execSync(
    `node createBucketWithStorageClassAndLocation.js ${bucketNameWithClassAndLocation} coldline ASIA`
  );
  assert.include(
    output,
    `${bucketNameWithClassAndLocation} created with coldline class in ASIA`
  );
  const [metadata] = await bucketWithClassAndLocation.getMetadata();
  assert.strictEqual(metadata.storageClass, 'COLDLINE');
  assert.strictEqual(metadata.location, 'ASIA');
});

it('should delete a bucket', async () => {
  const output = execSync(`node deleteBucket.js ${bucketName}`);
  assert.match(output, new RegExp(`Bucket ${bucketName} deleted`));
  const [exists] = await bucket.exists();
  assert.strictEqual(exists, false);
});