tests/testthat/test02_keys.R
In cloudyr/AzureKeyVault: Key and Secret Management in 'Azure'
context("Key client interface")
tenant <- Sys.getenv("AZ_TEST_TENANT_ID")
app <- Sys.getenv("AZ_TEST_APP_ID")
password <- Sys.getenv("AZ_TEST_PASSWORD")
vaultname <- Sys.getenv("AZ_TEST_KEYVAULT")
if(tenant == "" || app == "" || password == "" || vaultname == "")
skip("Key tests skipped: vault credentials not set")
vault <- key_vault(vaultname, tenant=tenant, app=app, password=password)
try({
vault$keys$delete("rsakey", confirm=FALSE)
vault$keys$delete("eckey", confirm=FALSE)
vault$keys$delete("extkey", confirm=FALSE)
}, silent=TRUE)
test_that("Key interface works",
{
rsakey <- vault$keys$create("rsakey")
expect_true(inherits(rsakey, "stored_key"))
rsaval <- vault$keys$get("rsakey")
expect_true(inherits(rsaval, "stored_key") && is.character(rsaval$key$n))
rsakey2 <- vault$keys$create("rsakey", expiry_date="2099-01-01")
expect_true(inherits(rsakey2, "stored_key") && rsakey2$key$kty == "RSA")
rsalist <- rsakey2$list_versions()
expect_true(is.data.frame(rsalist) && nrow(rsalist) == 2)
rsakey2$set_version(rsalist$version[2])
expect_true(rsakey2$version == rsalist$version[2])
eckey <- vault$keys$create("eckey", type="EC")
expect_true(inherits(eckey, "stored_key") && eckey$key$kty == "EC")
expect_error(vault$keys$create("eckey2", type="EC", key_ops=c("sign", "verify", "encrypt", "decrypt")))
extkey <- openssl::rsa_keygen()
extkeyval <- jsonlite::fromJSON(jose::write_jwk(extkey))
impkey <- vault$keys$import("extkey", extkey)
expect_true(inherits(impkey, "stored_key") && impkey$key$kty == extkeyval$kty && impkey$key$n == extkeyval$n)
pemfile <- tempfile(fileext=".pem")
openssl::write_pem(extkey, pemfile)
impkey2 <- vault$keys$import("extkey", pemfile)
expect_true(inherits(impkey2, "stored_key") && impkey2$key$kty == extkeyval$kty && impkey2$key$n == extkeyval$n)
lst <- vault$keys$list()
expect_true(is.character(lst) && length(lst) == 3)
backup <- vault$keys$backup("rsakey")
expect_type(backup, "character")
})
test_that("Key operations work",
{
rsakey <- vault$keys$get("rsakey")
plaintext <- paste(sample(letters, 50, replace=TRUE), collapse=" ")
ciphertext <- rsakey$encrypt(plaintext)
decrypted_text <- rsakey$decrypt(ciphertext, as_raw=FALSE)
expect_equal(plaintext, decrypted_text)
wraptext <- rsakey$wrap(plaintext)
unwrap_text <- rsakey$unwrap(wraptext, as_raw=FALSE)
expect_equal(plaintext, unwrap_text)
dig <- openssl::sha2(charToRaw(plaintext))
sig <- rsakey$sign(dig)
expect_true(rsakey$verify(sig, dig))
})
vault$keys$delete("rsakey", confirm=FALSE)
vault$keys$delete("eckey", confirm=FALSE)
vault$keys$delete("extkey", confirm=FALSE)
cloudyr/AzureKeyVault documentation built on Sept. 19, 2021, 8:49 a.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
context("Key client interface")
tenant <- Sys.getenv("AZ_TEST_TENANT_ID")
app <- Sys.getenv("AZ_TEST_APP_ID")
password <- Sys.getenv("AZ_TEST_PASSWORD")
vaultname <- Sys.getenv("AZ_TEST_KEYVAULT")
if(tenant == "" || app == "" || password == "" || vaultname == "")
skip("Key tests skipped: vault credentials not set")
vault <- key_vault(vaultname, tenant=tenant, app=app, password=password)
try({
vault$keys$delete("rsakey", confirm=FALSE)
vault$keys$delete("eckey", confirm=FALSE)
vault$keys$delete("extkey", confirm=FALSE)
}, silent=TRUE)
test_that("Key interface works",
{
rsakey <- vault$keys$create("rsakey")
expect_true(inherits(rsakey, "stored_key"))
rsaval <- vault$keys$get("rsakey")
expect_true(inherits(rsaval, "stored_key") && is.character(rsaval$key$n))
rsakey2 <- vault$keys$create("rsakey", expiry_date="2099-01-01")
expect_true(inherits(rsakey2, "stored_key") && rsakey2$key$kty == "RSA")
rsalist <- rsakey2$list_versions()
expect_true(is.data.frame(rsalist) && nrow(rsalist) == 2)
rsakey2$set_version(rsalist$version[2])
expect_true(rsakey2$version == rsalist$version[2])
eckey <- vault$keys$create("eckey", type="EC")
expect_true(inherits(eckey, "stored_key") && eckey$key$kty == "EC")
expect_error(vault$keys$create("eckey2", type="EC", key_ops=c("sign", "verify", "encrypt", "decrypt")))
extkey <- openssl::rsa_keygen()
extkeyval <- jsonlite::fromJSON(jose::write_jwk(extkey))
impkey <- vault$keys$import("extkey", extkey)
expect_true(inherits(impkey, "stored_key") && impkey$key$kty == extkeyval$kty && impkey$key$n == extkeyval$n)
pemfile <- tempfile(fileext=".pem")
openssl::write_pem(extkey, pemfile)
impkey2 <- vault$keys$import("extkey", pemfile)
expect_true(inherits(impkey2, "stored_key") && impkey2$key$kty == extkeyval$kty && impkey2$key$n == extkeyval$n)
lst <- vault$keys$list()
expect_true(is.character(lst) && length(lst) == 3)
backup <- vault$keys$backup("rsakey")
expect_type(backup, "character")
})
test_that("Key operations work",
{
rsakey <- vault$keys$get("rsakey")
plaintext <- paste(sample(letters, 50, replace=TRUE), collapse=" ")
ciphertext <- rsakey$encrypt(plaintext)
decrypted_text <- rsakey$decrypt(ciphertext, as_raw=FALSE)
expect_equal(plaintext, decrypted_text)
wraptext <- rsakey$wrap(plaintext)
unwrap_text <- rsakey$unwrap(wraptext, as_raw=FALSE)
expect_equal(plaintext, unwrap_text)
dig <- openssl::sha2(charToRaw(plaintext))
sig <- rsakey$sign(dig)
expect_true(rsakey$verify(sig, dig))
})
vault$keys$delete("rsakey", confirm=FALSE)
vault$keys$delete("eckey", confirm=FALSE)
vault$keys$delete("extkey", confirm=FALSE)
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.