moto/tests/test_iot/test_iot_ca_certificates.py

import boto3
import pytest

from botocore.exceptions import ClientError
from moto import mock_iot


@mock_iot
def test_register_ca_certificate_simple():
    client = boto3.client("iot", region_name="us-east-1")

    resp = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
    )

    assert "certificateArn" in resp
    assert "certificateId" in resp


@mock_iot
def test_describe_ca_certificate_unknown():
    client = boto3.client("iot", region_name="us-east-2")

    with pytest.raises(ClientError) as exc:
        client.describe_ca_certificate(certificateId="a" * 70)
    err = exc.value.response["Error"]
    assert err["Code"] == "ResourceNotFoundException"


@mock_iot
def test_describe_ca_certificate_simple():
    client = boto3.client("iot", region_name="us-east-1")

    resp = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
    )

    describe = client.describe_ca_certificate(certificateId=resp["certificateId"])

    assert "certificateDescription" in describe
    description = describe["certificateDescription"]
    assert description["certificateArn"] == resp["certificateArn"]
    assert description["certificateId"] == resp["certificateId"]
    assert description["status"] == "INACTIVE"
    assert description["certificatePem"] == "ca_certificate"


@mock_iot
def test_describe_ca_certificate_advanced():
    client = boto3.client("iot", region_name="us-east-1")

    resp = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
        setAsActive=True,
        registrationConfig={
            "templateBody": "template_b0dy",
            "roleArn": "aws:iot:arn:role/asdfqwerwe",
        },
    )

    describe = client.describe_ca_certificate(certificateId=resp["certificateId"])

    description = describe["certificateDescription"]
    assert description["certificateArn"] == resp["certificateArn"]
    assert description["certificateId"] == resp["certificateId"]
    assert description["status"] == "ACTIVE"
    assert description["certificatePem"] == "ca_certificate"

    config = describe["registrationConfig"]
    assert config["templateBody"] == "template_b0dy"
    assert config["roleArn"] == "aws:iot:arn:role/asdfqwerwe"


@mock_iot
def test_list_certificates_by_ca():
    client = boto3.client("iot", region_name="us-east-1")

    # create ca
    ca_cert = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
    )
    ca_cert_id = ca_cert["certificateId"]

    # list certificates should be empty at first
    certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)
    assert certs["certificates"] == []

    # create one certificate
    cert1 = client.register_certificate(
        certificatePem="pem" * 20, caCertificatePem="ca_certificate", setAsActive=False
    )

    # list certificates should return this
    certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)
    assert len(certs["certificates"]) == 1
    assert certs["certificates"][0]["certificateId"] == cert1["certificateId"]

    # create another certificate, without ca
    client.register_certificate(
        certificatePem="pam" * 20,
        caCertificatePem="unknown_ca_certificate",
        setAsActive=False,
    )

    # list certificate should still only return the first certificate
    certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)
    assert len(certs["certificates"]) == 1


@mock_iot
def test_delete_ca_certificate():
    client = boto3.client("iot", region_name="us-east-1")

    cert_id = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
    )["certificateId"]

    client.delete_ca_certificate(certificateId=cert_id)

    with pytest.raises(ClientError) as exc:
        client.describe_ca_certificate(certificateId=cert_id)
    err = exc.value.response["Error"]
    assert err["Code"] == "ResourceNotFoundException"


@mock_iot
def test_update_ca_certificate__status():
    client = boto3.client("iot", region_name="us-east-1")
    cert_id = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
        registrationConfig={"templateBody": "tb", "roleArn": "my:old_and_busted:arn"},
    )["certificateId"]

    client.update_ca_certificate(certificateId=cert_id, newStatus="DISABLE")
    cert = client.describe_ca_certificate(certificateId=cert_id)
    cert_desc = cert["certificateDescription"]
    assert cert_desc["status"] == "DISABLE"
    assert cert["registrationConfig"] == {
        "roleArn": "my:old_and_busted:arn",
        "templateBody": "tb",
    }


@mock_iot
def test_update_ca_certificate__config():
    client = boto3.client("iot", region_name="us-east-1")
    cert_id = client.register_ca_certificate(
        caCertificate="ca_certificate",
        verificationCertificate="verification_certificate",
    )["certificateId"]

    client.update_ca_certificate(
        certificateId=cert_id,
        registrationConfig={"templateBody": "tb", "roleArn": "my:new_and_fancy:arn"},
    )
    cert = client.describe_ca_certificate(certificateId=cert_id)
    cert_desc = cert["certificateDescription"]
    assert cert_desc["status"] == "INACTIVE"
    assert cert["registrationConfig"] == {
        "roleArn": "my:new_and_fancy:arn",
        "templateBody": "tb",
    }


@mock_iot
def test_get_registration_code():
    client = boto3.client("iot", region_name="us-west-1")

    resp = client.get_registration_code()
    assert "registrationCode" in resp
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00			`import boto3`
			`import pytest`

			`from botocore.exceptions import ClientError`
			`from moto import mock_iot`


			`@mock_iot`
			`def test_register_ca_certificate_simple():`
			`client = boto3.client("iot", region_name="us-east-1")`

			`resp = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`)`

Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert "certificateArn" in resp`
			`assert "certificateId" in resp`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_describe_ca_certificate_unknown():`
			`client = boto3.client("iot", region_name="us-east-2")`

			`with pytest.raises(ClientError) as exc:`
			`client.describe_ca_certificate(certificateId="a" * 70)`
			`err = exc.value.response["Error"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert err["Code"] == "ResourceNotFoundException"`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_describe_ca_certificate_simple():`
			`client = boto3.client("iot", region_name="us-east-1")`

			`resp = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`)`

			`describe = client.describe_ca_certificate(certificateId=resp["certificateId"])`

Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert "certificateDescription" in describe`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00			`description = describe["certificateDescription"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert description["certificateArn"] == resp["certificateArn"]`
			`assert description["certificateId"] == resp["certificateId"]`
			`assert description["status"] == "INACTIVE"`
			`assert description["certificatePem"] == "ca_certificate"`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_describe_ca_certificate_advanced():`
			`client = boto3.client("iot", region_name="us-east-1")`

			`resp = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`setAsActive=True,`
			`registrationConfig={`
			`"templateBody": "template_b0dy",`
			`"roleArn": "aws:iot:arn:role/asdfqwerwe",`
			`},`
			`)`

			`describe = client.describe_ca_certificate(certificateId=resp["certificateId"])`

			`description = describe["certificateDescription"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert description["certificateArn"] == resp["certificateArn"]`
			`assert description["certificateId"] == resp["certificateId"]`
			`assert description["status"] == "ACTIVE"`
			`assert description["certificatePem"] == "ca_certificate"`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00
			`config = describe["registrationConfig"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert config["templateBody"] == "template_b0dy"`
			`assert config["roleArn"] == "aws:iot:arn:role/asdfqwerwe"`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_list_certificates_by_ca():`
			`client = boto3.client("iot", region_name="us-east-1")`

			`# create ca`
			`ca_cert = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`)`
			`ca_cert_id = ca_cert["certificateId"]`

			`# list certificates should be empty at first`
			`certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert certs["certificates"] == []`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00
			`# create one certificate`
			`cert1 = client.register_certificate(`
			`certificatePem="pem" * 20, caCertificatePem="ca_certificate", setAsActive=False`
			`)`

			`# list certificates should return this`
			`certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert len(certs["certificates"]) == 1`
			`assert certs["certificates"][0]["certificateId"] == cert1["certificateId"]`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00
			`# create another certificate, without ca`
			`client.register_certificate(`
			`certificatePem="pam" * 20,`
			`caCertificatePem="unknown_ca_certificate",`
			`setAsActive=False,`
			`)`

			`# list certificate should still only return the first certificate`
			`certs = client.list_certificates_by_ca(caCertificateId=ca_cert_id)`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert len(certs["certificates"]) == 1`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_delete_ca_certificate():`
			`client = boto3.client("iot", region_name="us-east-1")`

			`cert_id = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`)["certificateId"]`

			`client.delete_ca_certificate(certificateId=cert_id)`

			`with pytest.raises(ClientError) as exc:`
			`client.describe_ca_certificate(certificateId=cert_id)`
			`err = exc.value.response["Error"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert err["Code"] == "ResourceNotFoundException"`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_update_ca_certificate__status():`
			`client = boto3.client("iot", region_name="us-east-1")`
			`cert_id = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`registrationConfig={"templateBody": "tb", "roleArn": "my:old_and_busted:arn"},`
			`)["certificateId"]`

			`client.update_ca_certificate(certificateId=cert_id, newStatus="DISABLE")`
			`cert = client.describe_ca_certificate(certificateId=cert_id)`
			`cert_desc = cert["certificateDescription"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert cert_desc["status"] == "DISABLE"`
			`assert cert["registrationConfig"] == {`
			`"roleArn": "my:old_and_busted:arn",`
			`"templateBody": "tb",`
			`}`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_update_ca_certificate__config():`
			`client = boto3.client("iot", region_name="us-east-1")`
			`cert_id = client.register_ca_certificate(`
			`caCertificate="ca_certificate",`
			`verificationCertificate="verification_certificate",`
			`)["certificateId"]`

			`client.update_ca_certificate(`
			`certificateId=cert_id,`
			`registrationConfig={"templateBody": "tb", "roleArn": "my:new_and_fancy:arn"},`
			`)`
			`cert = client.describe_ca_certificate(certificateId=cert_id)`
			`cert_desc = cert["certificateDescription"]`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert cert_desc["status"] == "INACTIVE"`
			`assert cert["registrationConfig"] == {`
			`"roleArn": "my:new_and_fancy:arn",`
			`"templateBody": "tb",`
			`}`
IOT improvements (#4848) 2022-02-10 09:02:40 +00:00

			`@mock_iot`
			`def test_get_registration_code():`
			`client = boto3.client("iot", region_name="us-west-1")`

			`resp = client.get_registration_code()`
Techdebt: Replace sure with regular assertions in IOT (#6577) 2023-07-31 21:50:24 +00:00			`assert "registrationCode" in resp`