Updated secrets baseline

Author: allmightyspiff

.secrets.baseline

@@ -3,7 +3,7 @@
     "files": "plugin/i18n/v1Resources/|plugin/i18n/v2Resources/|(.*test.*)|(vendor)|(go.sum)|bin/|^.secrets.baseline$",
     "lines": null
   },
-  "generated_at": "2024-07-22T22:42:28Z",
+  "generated_at": "2024-09-04T21:46:16Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"
@@ -270,23 +270,23 @@
         "hashed_secret": "df4bb9b1035a1847159d5c655c1d11a00508a609",
         "is_secret": false,
         "is_verified": false,
-        "line_number": 93,
+        "line_number": 89,
         "type": "Secret Keyword",
         "verified_result": null
       },
       {
-        "hashed_secret": "53aa77492eb716085c45d2c5873f9e47abd66bf2",
+        "hashed_secret": "09d3c49efe52ba11e94d7bdd18d2801a7830f583",
         "is_secret": false,
         "is_verified": false,
-        "line_number": 95,
+        "line_number": 91,
         "type": "Secret Keyword",
         "verified_result": null
       },
       {
         "hashed_secret": "18a6fefdd2d6204456b0733cc47be1397f284fa4",
         "is_secret": false,
         "is_verified": false,
-        "line_number": 98,
+        "line_number": 94,
         "type": "Secret Keyword",
         "verified_result": null
       }

go.mod

@@ -34,6 +34,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0 // indirect
 	github.com/rivo/uniseg v0.4.7 // indirect
 	github.com/rogpeppe/go-internal v1.9.0 // indirect
+	github.com/sethvargo/go-password v0.3.1 // indirect
 	github.com/softlayer/xmlrpc v0.0.0-20200409220501-5f089df7cb7e // indirect
 	golang.org/x/crypto v0.24.0 // indirect
 	golang.org/x/mod v0.18.0 // indirect

go.sum

@@ -66,6 +66,8 @@ github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/f
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sclevine/spec v1.4.0 h1:z/Q9idDcay5m5irkZ28M7PtQM4aOISzOpj4bUPkDee8=
 github.com/sclevine/spec v1.4.0/go.mod h1:LvpgJaFyvQzRvc1kaDs0bulYwzC70PbiYjC4QnFHkOM=
+github.com/sethvargo/go-password v0.3.1 h1:WqrLTjo7X6AcVYfC6R7GtSyuUQR9hGyAj/f1PYQZCJU=
+github.com/sethvargo/go-password v0.3.1/go.mod h1:rXofC1zT54N7R8K/h1WDUdkf9BOx5OptoxrMBcrXzvs=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
 github.com/smartystreets/goconvey v1.6.7 h1:I6tZjLXD2Q1kjvNbIzB1wvQBsXmKXiVrhpRE8ZjP5jY=

plugin/commands/user/create.go

@@ -1,15 +1,11 @@
 package user
 
 import (
-	crand "crypto/rand"
-	"encoding/binary"
 	"encoding/json"
 	"fmt"
-	"log"
-	"math/rand"
 	"reflect"
-	"strings"
 
+	gopass "github.com/sethvargo/go-password/password"
 	"github.ibm.com/SoftLayer/softlayer-cli/plugin/metadata"
 
 	"github.com/IBM-Cloud/ibm-cloud-cli-sdk/bluemix/terminal"
@@ -92,7 +88,7 @@ func (cmd *CreateCommand) Run(args []string) error {
 
 	password := cmd.Password
 	if password == "generate" {
-		password = string(GeneratePassword(23, 4))
+		password = gopass.MustGenerate(18, 4, 4, false, false)
 	}
 
 	vpnPassword := cmd.VpnPassword
@@ -139,54 +135,9 @@ func printUser(user datatypes.User_Customer, password string, ui terminal.UI) {
 	table.Print()
 }
 
-// random source leveraging crypto/rand to provide
-// true non-determinstic
-type cryptoSource struct{}
-
-func (s cryptoSource) Seed(seed int64) {}
-
-func (s cryptoSource) Int63() int64 {
-	return int64(s.Uint64() & ^uint64(1<<63))
-}
-
-func (s cryptoSource) Uint64() (v uint64) {
-	err := binary.Read(crand.Reader, binary.BigEndian, &v)
-	if err != nil {
-		log.Fatal(err)
-	}
-	return v
-}
-
-// GeneratePassword will create a random password
-// Returns a 23 character random string
-// 0  only number
-// 1  lower and upper
-// 2   upper
-// 3   special
-// 4  all
-func GeneratePassword(size int, kind int) []byte {
-	ikind, kinds, result := kind, [][]int{{10, 48}, {26, 97}, {26, 65}, {10, 38}}, make([]byte, size)
-	isAll := kind > 3 || kind < 0
-
-	// #nosec G404: Use "crypto/rand" as the seed, which should resolve the pseudo "math/rand"
-	rnd := rand.New(&cryptoSource{})
-	generate := true
-	for generate {
-		result = make([]byte, size)
-		for i := 0; i < size; i++ {
-			if isAll { // random ikind
-				ikind = rnd.Intn(4)
-			}
-			scope, base := kinds[ikind][0], kinds[ikind][1]
-			result[i] = uint8(base + rnd.Intn(scope))
-		}
-		generate = !IsValidPassword(string(result))
-	}
-	return result
-}
-
+// Values of B get copied into A
+// A <--- B
 func StructAssignment(A, B interface{}) { //a =b
-
 	av := reflect.ValueOf(A).Elem()
 	at := av.Type()
 
@@ -202,34 +153,3 @@ func StructAssignment(A, B interface{}) { //a =b
 		}
 	}
 }
-
-func IsValidPassword(output string) bool {
-	output = strings.TrimSpace(output)
-	var uppercase, lowercase, number, simbol, lenght bool
-	//Verify lenght is 23
-	if len(output) == 23 {
-		lenght = true
-	}
-	for _, char := range output {
-		//Verify exist uppercase
-		if int(char) >= 65 && int(char) <= 90 {
-			uppercase = true
-		}
-		//Verify exist lowercase
-		if int(char) >= 97 && int(char) <= 122 {
-			lowercase = true
-		}
-		//Verify exist number
-		if int(char) >= 48 && int(char) <= 57 {
-			number = true
-		}
-		//Verify exist simbol
-		if int(char) >= 33 && int(char) <= 47 {
-			simbol = true
-		}
-	}
-	if uppercase && lowercase && number && simbol && lenght {
-		return true
-	}
-	return false
-}

plugin/commands/user/create_test.go

@@ -40,57 +40,54 @@ var _ = Describe("Create", func() {
 		}
 		fakeUserManager.CreateUserReturns(testUser, nil)
 	})
-	Describe("user create", func() {
-		Context("user create with not enough parameters", func() {
-			It("return error", func() {
+	Describe("User Create Command", func() {
+		Context("Invalid Paramter Checks", func() {
+			It("Needs one argument", func() {
 				err := testhelpers.RunCobraCommand(cliCommand.Command)
 				Expect(err).To(HaveOccurred())
-				Expect(strings.Contains(err.Error(), "Incorrect Usage: This command requires one argument")).To(BeTrue())
+				Expect(err.Error()).To(ContainSubstring("Incorrect Usage: This command requires one argument"))
 			})
 		})
-
-		Context("create user with fail confirmation", func() {
-			It("return error", func() {
+		Context("Input Checks", func() {
+			It("Not Y/N", func() {
 				fakeUI.Inputs("123456")
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord")
 				Expect(err).To(HaveOccurred())
 				Expect(fakeUI.Outputs()).To(ContainSubstring("You are about to create the following user: createdUser@email.com. Do you wish to continue?"))
 				Expect(err.Error()).To(ContainSubstring("input must be 'y', 'n', 'yes' or 'no'"))
 			})
-		})
-
-		Context("create user with No confirmation", func() {
-			It("return error", func() {
+			It("No confirmation", func() {
 				fakeUI.Inputs("No")
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord")
 				Expect(err).NotTo(HaveOccurred())
 				Expect(fakeUI.Outputs()).To(ContainSubstring("You are about to create the following user: createdUser@email.com. Do you wish to continue?"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Aborted."))
 			})
 		})
-
-		Context("User Create error", func() {
-			It("return error", func() {
+		Context("Error Handling", func() {
+			It("API Error", func() {
 				fakeUserManager.CreateUserReturns(datatypes.User_Customer{}, errors.New("Internal server error"))
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord", "-f")
 				Expect(err).To(HaveOccurred())
 				Expect(err.Error()).To(ContainSubstring("Failed to add user."))
 			})
+			It("Bad Template", func() {
+				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord", "-f", "--template", ``)
+				Expect(err).To(HaveOccurred())
+				Expect(err.Error()).To(ContainSubstring("Unable to unmarshal template json: unexpected end of JSON input"))
+			})
 		})
 
-		Context("Basic User Create usage", func() {
-			It("Create a user", func() {
+		Context("Happy Path Tests", func() {
+			It("Create a user --force", func() {
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord", "-f")
 				Expect(err).NotTo(HaveOccurred())
 				Expect(fakeUI.Outputs()).To(ContainSubstring("name       value"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Username   createdUser"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Email      createdUser@email.com"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Password   MyPassWord"))
 			})
-		})
-
-		Context("User Create", func() {
-			It("Create a user", func() {
+			It("Create a user with confirmation", func() {
 				fakeUI.Inputs("Y")
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord")
 				Expect(err).NotTo(HaveOccurred())
@@ -100,10 +97,7 @@ var _ = Describe("Create", func() {
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Email      createdUser@email.com"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Password   MyPassWord"))
 			})
-		})
-
-		Context("User Create from user", func() {
-			It("Create a user", func() {
+			It("Create a user from another user", func() {
 				fakeUI.Inputs("Y")
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--from-user", "456", "--password", "MyPassWord", "-f")
 				Expect(err).NotTo(HaveOccurred())
@@ -112,18 +106,7 @@ var _ = Describe("Create", func() {
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Email      createdUser@email.com"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Password   MyPassWord"))
 			})
-		})
-
-		Context("User Create from wrong template", func() {
-			It("Create a user", func() {
-				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "MyPassWord", "-f", "--template", ``)
-				Expect(err).To(HaveOccurred())
-				Expect(err.Error()).To(ContainSubstring("Unable to unmarshal template json: unexpected end of JSON input"))
-			})
-		})
-
-		Context("User Create from template", func() {
-			It("Create a user", func() {
+			It("Create a user from a template", func() {
 				testUser := datatypes.User_Customer{
 					Id:        sl.Int(6666),
 					Username:  sl.String("createdUser"),
@@ -138,12 +121,8 @@ var _ = Describe("Create", func() {
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Username   createdUser"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Email      createdUser@email.com"))
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Password   MyPassWord"))
-
 			})
-		})
-
-		Context("User Create with generated password", func() {
-			It("Create a user", func() {
+			It("Create a user with a generated password", func() {
 				err := testhelpers.RunCobraCommand(cliCommand.Command, "createdUser@email.com", "--email", "createdUser@email.com", "--password", "generate", "-f")
 				Expect(err).NotTo(HaveOccurred())
 				Expect(fakeUI.Outputs()).To(ContainSubstring("name       value"))
@@ -152,64 +131,36 @@ var _ = Describe("Create", func() {
 				Expect(fakeUI.Outputs()).To(ContainSubstring("Password"))
 			})
 		})
-
 	})
 
-	Describe("structAssignment", func() {
-
-		A1 := "11"
-		A2 := "12"
-		B1 := "21"
-		B2 := "22"
-		var S1, S2 datatypes.User_Customer
-		Context("structAssignment", func() {
-			BeforeEach(func() {
-				S1 = datatypes.User_Customer{Address1: &A1, Address2: &A2}
-				S2 = datatypes.User_Customer{Address1: &B1, Address2: nil}
-			})
-
-			It("return succ", func() {
-				user.StructAssignment(&S1, &S2)
-				Expect(*S1.Address1).To(Equal("21"))
-				Expect(*S1.Address2).To(Equal("12"))
-			})
-		})
-		Context("structAssignment", func() {
-			BeforeEach(func() {
-				S1 = datatypes.User_Customer{Address1: &A1, Address2: &A2}
-				S2 = datatypes.User_Customer{Address1: &B1, Address2: &B2}
-			})
-
-			It("return succ", func() {
-				user.StructAssignment(&S1, &S2)
-				Expect(*S1.Address1).To(Equal("21"))
-				Expect(*S1.Address2).To(Equal("22"))
-			})
-		})
-		Context("structAssignment", func() {
-			BeforeEach(func() {
-				S1 = datatypes.User_Customer{Address1: nil, Address2: &A2}
-				S2 = datatypes.User_Customer{Address1: &B1, Address2: &B2}
-			})
-
-			It("return succ", func() {
-				user.StructAssignment(&S1, &S2)
-				Expect(*S1.Address1).To(Equal("21"))
-				Expect(*S1.Address2).To(Equal("22"))
-			})
-		})
-
-		Context("structAssignment", func() {
-			BeforeEach(func() {
-				S1 = datatypes.User_Customer{Address1: &A1, Address2: &A2}
-				S2 = datatypes.User_Customer{Address1: nil, Address2: &B2}
-			})
-
-			It("return succ", func() {
-				user.StructAssignment(&S1, &S2)
-				Expect(*S1.Address1).To(Equal("11"))
-				Expect(*S1.Address2).To(Equal("22"))
-			})
-		})
-	})
+	// dataValues are a set of 4 strings we set Default and UserValues to
+	// expected is a set of 2 strings that we check were set properly
+	DescribeTable("StructAssignment Tests",
+		func(dataValues []string, expected []string) {
+			Expect(len(dataValues)).To(Equal(4))
+			Expect(len(expected)).To(Equal(2))
+			Default := datatypes.User_Customer{Address1: &dataValues[0], Address2: &dataValues[1]}
+			UserValues := datatypes.User_Customer{Address1: &dataValues[2], Address2: &dataValues[3]}
+			// Can't set nil in the dataValues value because its a string, so we just do this
+			if dataValues[0] == "nil" {
+				Default.Address1 = nil
+			}
+			if dataValues[1] == "nil" {
+				Default.Address2 = nil
+			}
+			if dataValues[2] == "nil" {
+				UserValues.Address1 = nil
+			}
+			if dataValues[3] == "nil" {
+				UserValues.Address2 = nil
+			}
+			user.StructAssignment(&Default, &UserValues)
+			Expect(*Default.Address1).To(Equal(expected[0]))
+			Expect(*Default.Address2).To(Equal(expected[1]))
+		},
+		Entry("Test1", []string{"Def1", "Def2", "UserInput1", "nil"}, []string{"UserInput1", "Def2"}),
+		Entry("Test2", []string{"Def1", "Def2", "nil", "UserInput2"}, []string{"Def1", "UserInput2"}),
+		Entry("Test3", []string{"Def1", "nil", "UserInput1", "UserInput2"}, []string{"UserInput1", "UserInput2"}),
+		Entry("Test4", []string{"nil", "Def2", "UserInput1", "UserInput2"}, []string{"UserInput1", "UserInput2"}),
+	)
 })