blob: f443ba0549232fcef0196c4553e43d5537bd92a8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
# frozen_string_literal: true
require 'benchmark'
module QA
module Vendor
module OnePassword
class CLI
include Singleton
def initialize
@email = QA::Runtime::Env.one_p_email
@password = QA::Runtime::Env.one_p_password
@secret = QA::Runtime::Env.one_p_secret
@github_uuid = QA::Runtime::Env.one_p_github_uuid
@address = 'gitlab.1password.com'
end
def new_otp(old_otp = "")
# Fetches a new OTP that is not equal to the old OTP
new_otp = ""
time = Benchmark.realtime do
# An otp is valid for 30 seconds so 64 attempts with 0.5 interval are enough to ensure a new OTP is obtained
Support::Retrier.retry_until(max_attempts: 64, sleep_interval: 0.5) do
new_otp = current_otp
new_otp != old_otp
end
end
QA::Runtime::Logger.info("Fetched new OTP in: #{time} seconds")
new_otp
end
def current_otp
result = nil
time = Benchmark.realtime do
result = `op item get #{@github_uuid} --otp --session #{session_token}`.chop
end
QA::Runtime::Logger.info("Fetched current OTP in: #{time} seconds")
result
end
private
# OP session tokens are valid for 30 minutes. We are caching the session token here and this is fine currently
# as we just have one test that is not expected to go over 30 minutes.
# But note that if we add more tests that use this class, we might need to add a mechanism to invalidate
# the cache after 30 minutes or if the session_token is rejected by op CLI.
def session_token
@session_token ||= `echo '#{@password}' | op account add --address #{@address} --email #{@email} --secret-key #{@secret} --signin --raw` # rubocop:disable Layout/LineLength
end
end
end
end
end
|
