Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create initial set of "test setup scripts" to configure local Fides environment with basic data #1291

Closed
NevilleS opened this issue Oct 9, 2022 · 0 comments · Fixed by #1363
Closed

Create initial set of "test setup scripts" to configure local Fides environment with basic data #1291

NevilleS opened this issue Oct 9, 2022 · 0 comments · Fixed by #1363
Assignees
@seanpreston @TheAndrewJackson
Labels
Test Automation Improvements

Comments

@NevilleS
Copy link
Contributor

NevilleS commented Oct 9, 2022
edited by mfbrown
Loading

Description

Create a default set of “test setup scripts” that configure a Fides instance with enough data to exercise all core features, including:

  • custom Fides resources: taxonomies, systems, datasets, policies
  • Admin UI users
  • DSR connectors: database, SaaS, manual
  • DSR policies (privacy request rules)
  • privacy requests (in all statuses)
  • storage & email configs
  • etc.

Note that this will also need a clean, standard way to inject secrets for connectors, user passwords, 3rd party test systems, etc.

We've built several versions of these kinds of scripts, but have never invested enough time & energy to making them maintainable. One of the main reasons is that we've not built automated tests that rely on the scripts enough to force them to keep working and stay up to date. For some examples, see:

These scripts will be used for at least three purposes over time:

  1. Setting up a local environment with test data for engineers & product managers to test features
  2. Setting up a staging environment with test data for automated CI checks to test features
  3. Setting up a hosted environment with test data for giving product & sales demos

Because of this, it's important to make these scripts as portable as possible; ideally, these are relatively vanilla Python scripts that just leverage Fides CLI & API commands without calling source code functions at all.

Acceptance Criteria

Test Setup Scripts Framework

  • MUST save setup scripts in a directory structure that is easy to intuit and maintain, e.g. scripts/setup/systems.py, scripts/setup/postgres_connector.py, or similar
  • MUST have a nox -s setup_test (or similar name!) that runs all "basic" scripts to fully configure the local Fides database
  • MUST NOT rely on pytest features or functionality; these scripts are intended to be reused in the future for E2E runners (e.g. Cypress) and deployed environments without pytest
  • MUST inject secrets using ENV variables for reusability (NOTE: within nox, these ENV vars could be auto-populated by Vault)

Basic Test Setup Scripts

To get our local environment populated with enough "basic" data to test our core features, we MUST have scripts that:

  1. configure a "Fides API client" with OAuth token to test protected APIs
  2. configure Users to test the Admin UI
  3. configure Systems to test the data map
  4. configure Datasets to test the data map
  5. configure custom Data Categories, Data Uses, and Data Subjects to test the data map
  6. configure an S3 Storage location to test privacy requests
  7. configure a Mailgun email to test privacy requests
  8. configure identity verification for the privacy center to test privacy requests
  9. configure DSR access & erasure policies to test privacy requests
  10. configure a Postgres connector (and dataset) to test privacy requests (using existing integration test scripts for Postgres)
  11. configure a Mongodb connector (and dataset) to test privacy requests (using existing integration test scripts for Mongodb)
  12. configure a Mailchimp connector (and dataset) to test privacy requests (using existing integration test scripts for Mailchimp)
  13. configure a Stripe connector (and dataset) to test privacy requests (using existing integration test scripts for Stripe)
  14. configure privacy requests in various statuses

Manual Testing

Once all basic setup scripts have run, a tester should be able to:

  1. Login to the Admin UI as a User and view existing Users in User Management UI
  2. View existing Systems, Datasets, and custom Taxonomy resources in their respective screens
  3. View existing Privacy Requests and Connectors in their respective screens
  4. Submit and execute a new privacy request via the Privacy Center & Admin UI
This was referenced Oct 9, 2022
Closed
Closed
Closed
@seanpreston seanpreston mentioned this issue Oct 11, 2022
Merged
21 tasks
seanpreston added a commit that referenced this issue Oct 14, 2022
@seanpreston @TheAndrewJackson @ThomasLaPiana
[#1291] Util methods for Fides configuration scripts (#1363)
598bc70 
* exclude secrets file

* initial setup utils for demo scripts

* add keys for access and erasure policies

* method to create a policy

* method to create privacy request

* method to verify subject identity

* allow user to specify custom scopes on the oauth client

* consolidate database connector creation code, add mongodb

* tweak method names for consistency, add example script

* fix relative imports, remove fidesops references in favour of fides

* update last remaining ref

* Stripe connector setup script (#1391)

* Add login check to `user.py`

* Update oauth client details

* Update `.gitignore`

* Add stripe connector script

* Update nox lints

* Run isort on scripts

* PR feedback

* Update S3 secrets import

* Fix a few small errors

* Fix issue with create s3 storage config

* Fix issue with create s3 storage config

* Add `create_rule` and `create_rule_target`

* Fix broken test and update other related files

* add x86_64 to docker platforms

* add nox command to run scripts

* Run isort

* Move `configure_s3_storage` call higher up.

This was moved higher up because the `create_rule` function assumes the storage config has already created.

* standardise s3 creation name

* add basic guide for config script usage

* pass posargs into run_script cmd

* add secrets management through env vars falling back to secrets.py

* remove pdf and raise exception

* run isort

* rename script, fix startup issues and add a faster secrets check

* add the utility scripts docs to mkdocs.yaml so its visible

* add breadcrumbs about where the secrets file migh be located

* update error message

* update a user message

Co-authored-by: Andrew Jackson <[email protected]>
Co-authored-by: Thomas <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@seanpreston seanpreston

@TheAndrewJackson TheAndrewJackson

Labels
Test Automation Improvements
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[#1291] Util methods for Fides configuration scripts ethyca/fides
3 participants
@seanpreston @NevilleS @TheAndrewJackson