[keyvault] fix test recording sanitizers (#22911)

Author: gracewilcox

sdk/security/keyvault/azadmin/assets.json

@@ -2,5 +2,5 @@
   "AssetsRepo": "Azure/azure-sdk-assets",
   "AssetsRepoPrefixPath": "go",
   "TagPrefix": "go/security/keyvault/azadmin",
-  "Tag": "go/security/keyvault/azadmin_71b7c99818"
+  "Tag": "go/security/keyvault/azadmin_634a3b12f7"
 }

sdk/security/keyvault/azadmin/go.mod

@@ -5,7 +5,7 @@ go 1.18
 require (
 	github.com/Azure/azure-sdk-for-go/sdk/azcore v1.11.1
 	github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.5.2
-	github.com/Azure/azure-sdk-for-go/sdk/internal v1.7.0
+	github.com/Azure/azure-sdk-for-go/sdk/internal v1.8.0
 	github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys v1.1.0
 	github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal v1.0.1
 	github.com/google/uuid v1.6.0
@@ -20,9 +20,9 @@ require (
 	github.com/kylelemons/godebug v1.1.0 // indirect
 	github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
-	golang.org/x/crypto v0.23.0 // indirect
-	golang.org/x/net v0.25.0 // indirect
-	golang.org/x/sys v0.20.0 // indirect
-	golang.org/x/text v0.15.0 // indirect
+	golang.org/x/crypto v0.24.0 // indirect
+	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/sys v0.21.0 // indirect
+	golang.org/x/text v0.16.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )

sdk/security/keyvault/azadmin/go.sum

@@ -2,8 +2,8 @@ github.com/Azure/azure-sdk-for-go/sdk/azcore v1.11.1 h1:E+OJmp2tPvt1W+amx48v1eqb
 github.com/Azure/azure-sdk-for-go/sdk/azcore v1.11.1/go.mod h1:a6xsAQUZg+VsS3TJ05SRp524Hs4pZ/AeFSr5ENf0Yjo=
 github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.5.2 h1:FDif4R1+UUR+00q6wquyX90K7A8dN+R5E8GEadoP7sU=
 github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.5.2/go.mod h1:aiYBYui4BJ/BJCAIKs92XiPyQfTaBWqvHujDwKb6CBU=
-github.com/Azure/azure-sdk-for-go/sdk/internal v1.7.0 h1:rTfKOCZGy5ViVrlA74ZPE99a+SgoEE2K/yg3RyW9dFA=
-github.com/Azure/azure-sdk-for-go/sdk/internal v1.7.0/go.mod h1:4OG6tQ9EOP/MT0NMjDlRzWoVFxfu9rN9B2X+tlSVktg=
+github.com/Azure/azure-sdk-for-go/sdk/internal v1.8.0 h1:jBQA3cKT4L2rWMpgE7Yt3Hwh2aUj8KXjIGLxjHeYNNo=
+github.com/Azure/azure-sdk-for-go/sdk/internal v1.8.0/go.mod h1:4OG6tQ9EOP/MT0NMjDlRzWoVFxfu9rN9B2X+tlSVktg=
 github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys v1.1.0 h1:DRiANoJTiW6obBQe3SqZizkuV1PEgfiiGivmVocDy64=
 github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys v1.1.0/go.mod h1:qLIye2hwb/ZouqhpSD9Zn3SJipvpEnz1Ywl3VUk9Y0s=
 github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal v1.0.1 h1:9fXQS/0TtQmKXp8SureKouF+idbQvp7cPUxykiohnBs=
@@ -29,15 +29,15 @@ github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZN
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
-golang.org/x/crypto v0.23.0 h1:dIJU/v2J8Mdglj/8rJ6UUOM3Zc9zLZxVZwwxMooUSAI=
-golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
-golang.org/x/net v0.25.0 h1:d/OCCoBEUq33pjydKrGQhw7IlUPI2Oylr+8qLx49kac=
-golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
+golang.org/x/crypto v0.24.0 h1:mnl8DM0o513X8fdIkmyFE/5hTYxbwYOjDS/+rK6qpRI=
+golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
+golang.org/x/net v0.26.0 h1:soB7SVo0PWrY4vPW/+ay0jKDNScG2X9wFeYlXIvJsOQ=
+golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y=
-golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk=
-golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/text v0.16.0 h1:a94ExnEXNtEwYLGJSIUxnWoxoRz/ZcCsV63ROupILh4=
+golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=

sdk/security/keyvault/azadmin/rbac/client_test.go

@@ -20,9 +20,6 @@ import (
 )
 
 func TestRoleDefinition(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startAccessControlTest(t)
 
 	var name, roleName string
@@ -139,9 +136,6 @@ func TestDeleteRoleDefinition_FailureInvalidRole(t *testing.T) {
 }
 
 func TestRoleAssignment(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startAccessControlTest(t)
 
 	var name, principalID, roleDefinitionID string
@@ -167,9 +161,14 @@ func TestRoleAssignment(t *testing.T) {
 	require.NoError(t, err)
 	require.Equal(t, name, *createdAssignment.Name)
 	require.Equal(t, scope, *createdAssignment.Properties.Scope)
-	require.Equal(t, principalID, *createdAssignment.Properties.PrincipalID)
 	require.Equal(t, roleDefinitionID, *createdAssignment.Properties.RoleDefinitionID)
 
+	if recording.GetRecordMode() == recording.PlaybackMode {
+		require.Equal(t, "00000000-0000-0000-0000-000000000000", *createdAssignment.Properties.PrincipalID)
+	} else {
+		require.Equal(t, principalID, *createdAssignment.Properties.PrincipalID)
+	}
+
 	// test if able to get role assignment
 	gotAssignment, err := client.GetRoleAssignment(context.Background(), scope, name, nil)
 	require.NoError(t, err)

sdk/security/keyvault/azadmin/rbac/utils_test.go

@@ -66,6 +66,16 @@ func run(m *testing.M) int {
 
 	hsmURL = getEnvVar("AZURE_MANAGEDHSM_URL", fakeHsmURL)
 
+	if recording.GetRecordMode() != recording.LiveMode {
+		err := recording.RemoveRegisteredSanitizers([]string{
+			"AZSDK3493", // name in body
+			"AZSDK3430", // ID in body
+		}, nil)
+		if err != nil {
+			panic(err)
+		}
+	}
+
 	return m.Run()
 }
 

sdk/security/keyvault/azadmin/settings/client_test.go

@@ -20,17 +20,15 @@ import (
 )
 
 func TestGetSetting(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startSettingsTest(t)
+
 	settingName := "AllowKeyManagementOperationsThroughARM"
 
 	res, err := client.GetSetting(context.Background(), settingName, nil)
 	require.NoError(t, err)
 	require.NotNil(t, res)
-	require.Equal(t, *res.Name, settingName)
-	require.Equal(t, *res.Type, settings.SettingTypeBoolean)
+	require.Equal(t, settingName, *res.Name)
+	require.Equal(t, settings.SettingTypeBoolean, *res.Type)
 	require.NotNil(t, res.Value)
 	testSerde(t, &res)
 }
@@ -71,10 +69,8 @@ func TestGetSettings(t *testing.T) {
 }
 
 func TestUpdateSetting(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startSettingsTest(t)
+
 	settingName := "AllowKeyManagementOperationsThroughARM"
 	var updatedBool string
 

sdk/security/keyvault/azadmin/settings/utils_test.go

@@ -9,7 +9,6 @@ package settings_test
 import (
 	"context"
 	"encoding/json"
-	"fmt"
 	"os"
 	"regexp"
 	"testing"
@@ -54,9 +53,9 @@ func run(m *testing.M) int {
 	if recording.GetRecordMode() == recording.PlaybackMode {
 		credential = &FakeCredential{}
 	} else {
-		tenantID := lookupEnvVar("AZADMIN_TENANT_ID")
-		clientID := lookupEnvVar("AZADMIN_CLIENT_ID")
-		secret := lookupEnvVar("AZADMIN_CLIENT_SECRET")
+		tenantID := getEnvVar("AZADMIN_TENANT_ID", "")
+		clientID := getEnvVar("AZADMIN_CLIENT_ID", "")
+		secret := getEnvVar("AZADMIN_CLIENT_SECRET", "")
 		var err error
 		credential, err = azidentity.NewClientSecretCredential(tenantID, clientID, secret, nil)
 		if err != nil {
@@ -66,6 +65,15 @@ func run(m *testing.M) int {
 
 	hsmURL = getEnvVar("AZURE_MANAGEDHSM_URL", fakeHsmURL)
 
+	if recording.GetRecordMode() != recording.LiveMode {
+		err := recording.RemoveRegisteredSanitizers([]string{
+			"AZSDK3493", // name in body
+		}, nil)
+		if err != nil {
+			panic(err)
+		}
+	}
+
 	return m.Run()
 }
 
@@ -88,26 +96,25 @@ func startSettingsTest(t *testing.T) *settings.Client {
 	return client
 }
 
-func getEnvVar(lookupValue string, fakeValue string) string {
-	envVar := fakeValue
-	if recording.GetRecordMode() != recording.PlaybackMode {
-		envVar = lookupEnvVar(lookupValue)
+func getEnvVar(envVar string, fakeValue string) string {
+	// get value
+	value := fakeValue
+	if recording.GetRecordMode() == recording.LiveMode || recording.GetRecordMode() == recording.RecordingMode {
+		value = os.Getenv(envVar)
+		if value == "" {
+			panic("no value for " + envVar)
+		}
 	}
-	if recording.GetRecordMode() == recording.RecordingMode {
-		err := recording.AddGeneralRegexSanitizer(fakeValue, envVar, nil)
+
+	// sanitize value
+	if fakeValue != "" && recording.GetRecordMode() == recording.RecordingMode {
+		err := recording.AddGeneralRegexSanitizer(fakeValue, value, nil)
 		if err != nil {
 			panic(err)
 		}
 	}
-	return envVar
-}
 
-func lookupEnvVar(s string) string {
-	v := os.Getenv(s)
-	if v == "" {
-		panic(fmt.Sprintf("Could not find env var: '%s'", s))
-	}
-	return v
+	return value
 }
 
 type FakeCredential struct{}

sdk/security/keyvault/azcertificates/assets.json

@@ -2,5 +2,5 @@
   "AssetsRepo": "Azure/azure-sdk-assets",
   "AssetsRepoPrefixPath": "go",
   "TagPrefix": "go/security/keyvault/azcertificates",
-  "Tag": "go/security/keyvault/azcertificates_d675d8f502"
+  "Tag": "go/security/keyvault/azcertificates_0978442583"
 }

sdk/security/keyvault/azcertificates/client_test.go

@@ -138,9 +138,6 @@ func TestBackupRestore(t *testing.T) {
 }
 
 func TestContactsCRUD(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 
 	contacts := azcertificates.Contacts{ContactList: []*azcertificates.Contact{
@@ -160,9 +157,6 @@ func TestContactsCRUD(t *testing.T) {
 }
 
 func TestCRUD(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 
 	certName := getName(t, "")
@@ -225,9 +219,6 @@ func TestCRUD(t *testing.T) {
 }
 
 func TestDeleteRecover(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 	certName := getName(t, "")
 	createParams := azcertificates.CreateCertificateParameters{CertificatePolicy: &selfSignedPolicy}
@@ -322,9 +313,6 @@ func TestID(t *testing.T) {
 }
 
 func TestImportCertificate(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 	certName := getName(t, "")
 	importParams := azcertificates.ImportCertificateParameters{
@@ -411,9 +399,6 @@ func TestIssuerCRUD(t *testing.T) {
 }
 
 func TestListCertificates(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 
 	tag := getName(t, "")
@@ -479,9 +464,6 @@ func TestListCertificates(t *testing.T) {
 }
 
 func TestListCertificateVersions(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 
 	name := getName(t, "")
@@ -617,9 +599,6 @@ func TestOperationCRUD(t *testing.T) {
 }
 
 func TestUpdateCertificatePolicy(t *testing.T) {
-	if recording.GetRecordMode() == recording.PlaybackMode {
-		t.Skip("https://github.com/Azure/azure-sdk-for-go/issues/22869")
-	}
 	client := startTest(t)
 
 	certName := getName(t, "")

sdk/security/keyvault/azcertificates/go.mod

@@ -5,7 +5,7 @@ go 1.18
 require (
 	github.com/Azure/azure-sdk-for-go/sdk/azcore v1.11.1
 	github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.5.2
-	github.com/Azure/azure-sdk-for-go/sdk/internal v1.7.0
+	github.com/Azure/azure-sdk-for-go/sdk/internal v1.8.0
 	github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal v1.0.1
 	github.com/stretchr/testify v1.9.0
 )
@@ -19,9 +19,9 @@ require (
 	github.com/kylelemons/godebug v1.1.0 // indirect
 	github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
-	golang.org/x/crypto v0.22.0 // indirect
-	golang.org/x/net v0.24.0 // indirect
-	golang.org/x/sys v0.19.0 // indirect
-	golang.org/x/text v0.14.0 // indirect
+	golang.org/x/crypto v0.24.0 // indirect
+	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/sys v0.21.0 // indirect
+	golang.org/x/text v0.16.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )