Quarkus Gradle Plugin: tests with encrypted configuration #33173

snazy · 2023-05-06T10:58:44Z

As decribed in #33135, using encrypted configuration values did not work with the Gradle plugin since Quarkus 3.0.0, prior to SmallRye Config 3.3.0 (#33079).

This change just adds tests to validate the behavior.

snazy · 2023-05-06T11:01:08Z

Setting this to draft, because I want to add a test that has a "real" encrypted value and validate it.

radcortez · 2023-05-06T13:10:07Z

I probably need to add a way to completely disable secret handler expressions at the builder level, because this will happen with other handler names found in the configuration, so setting a fake for aes-gcm-nopadding is not going to be enough.

snazy · 2023-05-06T17:36:20Z

setting a fake for aes-gcm-nopadding is not going to be enough.

I suspected that this will be the case.

completely disable secret handler expressions at the builder level,

Hm - yea - that deserves a change in SmallRyeConfigBuilder.

radcortez · 2023-05-17T14:26:29Z

smallrye/smallrye-config#937

snazy · 2023-07-27T10:18:59Z

Updated the PR to only add tests verifying the behavior.

gsmet · 2023-10-05T16:09:44Z

Let's rebase and get another CI run.

gsmet

We can get this in provided CI is happy about it.

gastaldi · 2024-02-08T15:25:07Z

@snazy can you rebase with the latest main before we merge this?

snazy · 2024-02-08T17:05:16Z

@snazy can you rebase with the latest main before we merge this?

@gastaldi done

gastaldi · 2024-02-08T17:35:33Z

Looks like CI doesn't like it, can you verify @snazy ?

snazy · 2024-02-08T17:47:59Z

Oh yea - the crypto-tests now fail with Caused by: java.util.NoSuchElementException: SRCFG00046: Could not find a secret key handler for aes-gcm-nopadding - seems that #38007 is actually a regression, based on the original commit message for this PR :(

As decribed in quarkusio#33135, using encrypted configuration values did not work with the Gradle plugin since Quarkus 3.0.0, prior to SmallRye Config 3.3.0 (quarkusio#33079). This change just adds tests to validate the behavior.

quarkus-bot · 2024-02-08T18:45:44Z

Status for workflow `Quarkus CI`

This is the status report for running Quarkus CI on commit 564299d.

✅ The latest workflow run for the pull request has completed successfully.

It should be safe to merge provided you have a look at the other checks in the summary.

You can consult the Develocity build scans.

gastaldi · 2024-02-08T18:49:27Z

Thanks!

quarkus-bot bot added area/devtools Issues/PR related to maven, gradle, platform and cli tooling/plugins area/gradle Gradle labels May 6, 2023

snazy marked this pull request as draft May 6, 2023 11:00

snazy changed the title ~~Quarkus Gradle Plugin: allow encrypted configuration~~ Quarkus Gradle Plugin: tests with encrypted configuration Jul 27, 2023

snazy force-pushed the gradle-crypto-config branch from b599a7a to 90dd954 Compare July 27, 2023 10:18

snazy marked this pull request as ready for review July 27, 2023 10:19