more tests

Author: mkleene

sdk/src/main/java/io/opentdf/platform/sdk/Planner.java

@@ -28,13 +28,15 @@ public class Planner {
     private static final String BASE_KEY = "base_key";
     private final Config.TDFConfig tdfConfig;
     private final SDK.Services services;
+    private final BiFunction<SDK.Services, Config.TDFConfig, Autoconfigure.Granter> granterFactory;
 
 
     private static final Logger logger = LoggerFactory.getLogger(Planner.class);
 
     public Planner(Config.TDFConfig config, SDK.Services services, BiFunction<SDK.Services, Config.TDFConfig, Autoconfigure.Granter> granterFactory) {
         this.tdfConfig = Objects.requireNonNull(config);
         this.services = Objects.requireNonNull(services);
+        this.granterFactory = granterFactory;
     }
 
     private static String getUUID() {
@@ -60,8 +62,8 @@ Map<String, List<Config.KASInfo>> getSplits(Config.TDFConfig tdfConfig) {
         return resolveKeys(splitPlan);
     }
 
-    private static List<Autoconfigure.KeySplitStep> getAutoconfigurePlan(SDK.Services services, Config.TDFConfig tdfConfig) {
-        Autoconfigure.Granter granter = Autoconfigure.createGranter(services, tdfConfig);
+    private List<Autoconfigure.KeySplitStep> getAutoconfigurePlan(SDK.Services services, Config.TDFConfig tdfConfig) {
+        Autoconfigure.Granter granter = granterFactory.apply(services, tdfConfig);
         return granter.getSplits(defaultKases(tdfConfig), Planner::getUUID, () -> Planner.fetchBaseKey(services.wellknown()));
     }
 

sdk/src/test/java/io/opentdf/platform/sdk/AutoconfigureTest.java

@@ -6,7 +6,6 @@
 import static org.junit.jupiter.api.Assertions.assertEquals;
 import static org.junit.jupiter.api.Assertions.assertNotNull;
 import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.isA;
 import static org.mockito.Mockito.mock;
 import static org.mockito.Mockito.never;
 import static org.mockito.Mockito.verify;
@@ -35,10 +34,8 @@
 import io.opentdf.platform.sdk.Autoconfigure.KeySplitStep;
 import io.opentdf.platform.sdk.Autoconfigure.Granter;
 
-import org.assertj.core.api.AtomicIntegerArrayAssert;
 import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.Test;
-import org.junit.platform.commons.JUnitException;
 import org.mockito.Mockito;
 
 import java.util.ArrayList;
@@ -49,6 +46,7 @@
 import java.util.Optional;
 import java.util.Set;
 import java.util.concurrent.atomic.AtomicInteger;
+import java.util.function.BiFunction;
 import java.util.function.Supplier;
 import java.util.stream.Collectors;
 import java.util.regex.Matcher;
@@ -1071,9 +1069,6 @@ void createsGranterFromService() {
                 new AttributeValueFQN("https://other.com/attr/specified/value/specked"),
                 new AttributeValueFQN("https://virtru.com/attr/Releasable%20To/value/GBR")
         );
-//        GetAttributeValuesByFqnsRequest request = GetAttributeValuesByFqnsRequest.newBuilder()
-//                .addAllFqns(policy.stream().map(AttributeValueFQN::toString).collect(Collectors.toList()))
-//                .build();
 
         when(services.kas()).thenReturn(kas);
         when(services.attributes()).thenReturn(attributesServiceClient);
@@ -1115,4 +1110,47 @@ public void cancel() {
         // If you want to check the service call, verify it:
         verify(services).attributes();
     }
+
+    @Test
+    void getSplits_usesAutoconfigurePlan_whenAutoconfigureTrue() {
+        var tdfConfig = new Config.TDFConfig();
+        tdfConfig.autoconfigure = true;
+        tdfConfig.kasInfoList = new ArrayList<>();
+        tdfConfig.splitPlan = null;
+
+        var kas = Mockito.mock(SDK.KAS.class);
+        Mockito.when(kas.getKeyCache()).thenReturn(new KASKeyCache());
+        Config.KASInfo kasInfo = new Config.KASInfo() {{
+            URL = "https://kas.example.com";
+            Algorithm = "ec:secp256r1";
+            KID = "kid";
+        }};
+        Mockito.when(kas.getPublicKey(any())).thenReturn(kasInfo);
+
+        var services = new FakeServicesBuilder().setKas(kas).build();
+
+        // Mock granterFactory to return a granter with a known split plan
+        var expectedSplit = new Autoconfigure.KeySplitStep("https://kas.example.com", "", "kid");
+        var granter = Mockito.mock(Autoconfigure.Granter.class);
+        Mockito.when(granter.getSplits(
+                        Mockito.anyList(),
+                        Mockito.any(),
+                        Mockito.any()))
+                .thenReturn(List.of(expectedSplit));
+
+        BiFunction<SDK.Services, Config.TDFConfig, Granter> granterFactory =
+                (s, c) -> granter;
+
+        var planner = new Planner(tdfConfig, services, granterFactory);
+
+        // Act
+        var splits = planner.getSplits(tdfConfig);
+
+        // Assert
+        assertThat(splits).containsKey("");
+        assertThat(splits.get("")).hasSize(1);
+        assertThat(splits.get("").get(0).URL).isEqualTo("https://kas.example.com");
+        assertThat(splits.get("").get(0).KID).isEqualTo("kid");
+        assertThat(splits.get("").get(0).Algorithm).isEqualTo("ec:secp256r1");
+    }
 }

sdk/src/test/java/io/opentdf/platform/sdk/PlannerTest.java

@@ -3,6 +3,7 @@
 import com.google.protobuf.Struct;
 import com.google.protobuf.Value;
 import io.opentdf.platform.policy.Algorithm;
+import io.opentdf.platform.policy.PublicKey;
 import io.opentdf.platform.wellknownconfiguration.GetWellKnownConfigurationResponse;
 import io.opentdf.platform.wellknownconfiguration.WellKnownServiceClientInterface;
 import org.assertj.core.api.Assertions;
@@ -132,29 +133,42 @@ void testFillingInKeysWithAutoConfigure() {
         var tdfConfig = new Config.TDFConfig();
         tdfConfig.autoconfigure = true;
         tdfConfig.wrappingKeyType = KeyType.RSA2048Key;
-        var planner = new Planner(new Config.TDFConfig(), new FakeServicesBuilder().setKas(kas).build(), (ignore1, ignored2) ->  { throw new IllegalArgumentException("no granter needed"); });
+        tdfConfig.kasInfoList = List.of(
+                new Config.KASInfo() {{
+                    URL = "https://kas4.example.com";
+                    KID = "kid4";
+                    Algorithm = "ec:secp384r1";
+                    PublicKey = "pem4";
+                }}
+        );
+        var planner = new Planner(tdfConfig, new FakeServicesBuilder().setKas(kas).build(), (ignore1, ignored2) ->  { throw new IllegalArgumentException("no granter needed"); });
         var plan = List.of(
                 new Autoconfigure.KeySplitStep("https://kas1.example.com", "split1", null),
+                new Autoconfigure.KeySplitStep("https://kas4.example.com", "split1", "kid4"),
                 new Autoconfigure.KeySplitStep("https://kas2.example.com", "split2", "kid2"),
                 new Autoconfigure.KeySplitStep("https://kas3.example.com", "split2", "kid3")
         );
         Map<String, List<Config.KASInfo>> filledInPlan = planner.resolveKeys(plan);
         assertThat(filledInPlan.keySet().stream().collect(Collectors.toList())).asList().containsExactlyInAnyOrder("split1", "split2");
-        assertThat(filledInPlan.get("split1")).asList().hasSize(1);
-        var split1KasInfo = filledInPlan.get("split1").get(0);
-        assertThat(split1KasInfo.URL).isEqualTo("https://kas1.example.com");
-        assertThat(split1KasInfo.KID).isEqualTo("kid1");
-        assertThat(split1KasInfo.Algorithm).isEqualTo("rsa:2048");
-        assertThat(split1KasInfo.PublicKey).isEqualTo("pem1");
+        assertThat(filledInPlan.get("split1")).asList().hasSize(2);
+        var kasInfo1 = filledInPlan.get("split1").stream().filter(k -> "kid1".equals(k.KID)).findFirst().get();
+        assertThat(kasInfo1.URL).isEqualTo("https://kas1.example.com");
+        assertThat(kasInfo1.Algorithm).isEqualTo("rsa:2048");
+        assertThat(kasInfo1.PublicKey).isEqualTo("pem1");
+        var kasInfo4 = filledInPlan.get("split1").stream().filter(k -> "kid4".equals(k.KID)).findFirst().get();
+        assertThat(kasInfo4.URL).isEqualTo("https://kas4.example.com");
+        assertThat(kasInfo4.Algorithm).isEqualTo("ec:secp384r1");
+        assertThat(kasInfo4.PublicKey).isEqualTo("pem4");
+
         assertThat(filledInPlan.get("split2")).asList().hasSize(2);
-        var split2KasInfo = filledInPlan.get("split2").stream().filter(kasInfo -> "kid2".equals(kasInfo.KID)).findFirst().get();
-        assertThat(split2KasInfo.URL).isEqualTo("https://kas2.example.com");
-        assertThat(split2KasInfo.Algorithm).isEqualTo("ec:secp256r1");
-        assertThat(split2KasInfo.PublicKey).isEqualTo("pem2");
-        var split3KasInfo = filledInPlan.get("split2").stream().filter(kasInfo -> "kid3".equals(kasInfo.KID)).findFirst().get();
-        assertThat(split3KasInfo.URL).isEqualTo("https://kas3.example.com");
-        assertThat(split3KasInfo.Algorithm).isEqualTo("rsa:4096");
-        assertThat(split3KasInfo.PublicKey).isEqualTo("pem3");
+        var kasInfo2 = filledInPlan.get("split2").stream().filter(kasInfo -> "kid2".equals(kasInfo.KID)).findFirst().get();
+        assertThat(kasInfo2.URL).isEqualTo("https://kas2.example.com");
+        assertThat(kasInfo2.Algorithm).isEqualTo("ec:secp256r1");
+        assertThat(kasInfo2.PublicKey).isEqualTo("pem2");
+        var kasInfo3 = filledInPlan.get("split2").stream().filter(kasInfo -> "kid3".equals(kasInfo.KID)).findFirst().get();
+        assertThat(kasInfo3.URL).isEqualTo("https://kas3.example.com");
+        assertThat(kasInfo3.Algorithm).isEqualTo("rsa:4096");
+        assertThat(kasInfo3.PublicKey).isEqualTo("pem3");
     }
 
     @Test