Commit 446eb73c authored by Philip Cunningham's avatar Philip Cunningham

Add support for meta tag DAST site validation

- Extends model enum
- Extends GraphQL enum
- Add dast_meta_tag_validation feature flag
- Add customer feature flag validation to model

Changelog: added
MR: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/67553
EE: true
parent a6183690
...@@ -14864,6 +14864,7 @@ Status of a container repository. ...@@ -14864,6 +14864,7 @@ Status of a container repository.
| Value | Description | | Value | Description |
| ----- | ----------- | | ----- | ----------- |
| <a id="dastsitevalidationstrategyenumheader"></a>`HEADER` | Header validation. | | <a id="dastsitevalidationstrategyenumheader"></a>`HEADER` | Header validation. |
| <a id="dastsitevalidationstrategyenummeta_tag"></a>`META_TAG` | Meta tag validation. |
| <a id="dastsitevalidationstrategyenumtext_file"></a>`TEXT_FILE` | Text file validation. | | <a id="dastsitevalidationstrategyenumtext_file"></a>`TEXT_FILE` | Text file validation. |
### `DastTargetTypeEnum` ### `DastTargetTypeEnum`
......
...@@ -4,5 +4,6 @@ module Types ...@@ -4,5 +4,6 @@ module Types
class DastSiteValidationStrategyEnum < BaseEnum class DastSiteValidationStrategyEnum < BaseEnum
value 'TEXT_FILE', description: 'Text file validation.', value: 'text_file' value 'TEXT_FILE', description: 'Text file validation.', value: 'text_file'
value 'HEADER', description: 'Header validation.', value: 'header' value 'HEADER', description: 'Header validation.', value: 'header'
value 'META_TAG', description: 'Meta tag validation.', value: 'meta_tag'
end end
end end
...@@ -9,6 +9,8 @@ class DastSiteValidation < ApplicationRecord ...@@ -9,6 +9,8 @@ class DastSiteValidation < ApplicationRecord
validates :dast_site_token_id, presence: true validates :dast_site_token_id, presence: true
validates :validation_strategy, presence: true validates :validation_strategy, presence: true
validate :meta_tag_validation_must_happen_on_runner, if: :meta_tag?
scope :by_project_id, -> (project_id) do scope :by_project_id, -> (project_id) do
joins(:dast_site_token).where(dast_site_tokens: { project_id: project_id }) joins(:dast_site_token).where(dast_site_tokens: { project_id: project_id })
end end
...@@ -23,7 +25,7 @@ class DastSiteValidation < ApplicationRecord ...@@ -23,7 +25,7 @@ class DastSiteValidation < ApplicationRecord
before_create :set_normalized_url_base before_create :set_normalized_url_base
enum validation_strategy: { text_file: 0, header: 1 } enum validation_strategy: { text_file: 0, header: 1, meta_tag: 2 }
delegate :project, :dast_site, to: :dast_site_token, allow_nil: true delegate :project, :dast_site, to: :dast_site_token, allow_nil: true
...@@ -79,4 +81,11 @@ class DastSiteValidation < ApplicationRecord ...@@ -79,4 +81,11 @@ class DastSiteValidation < ApplicationRecord
def set_normalized_url_base def set_normalized_url_base
self.url_base = self.class.get_normalized_url_base(dast_site_token.url) self.url_base = self.class.get_normalized_url_base(dast_site_token.url)
end end
def meta_tag_validation_must_happen_on_runner
return if ::Feature.enabled?(:dast_runner_site_validation, project, default_enabled: :yaml) &&
::Feature.enabled?(:dast_meta_tag_validation, project, default_enabled: :yaml)
errors.add(:base, 'Meta tag validation is not enabled')
end
end end
...@@ -15,6 +15,33 @@ RSpec.describe DastSiteValidation, type: :model do ...@@ -15,6 +15,33 @@ RSpec.describe DastSiteValidation, type: :model do
describe 'validations' do describe 'validations' do
it { is_expected.to be_valid } it { is_expected.to be_valid }
it { is_expected.to validate_presence_of(:dast_site_token_id) } it { is_expected.to validate_presence_of(:dast_site_token_id) }
context 'when strategy is meta_tag' do
shared_examples 'meta tag validation is disabled' do
subject { build(:dast_site_validation, validation_strategy: :meta_tag) }
it 'is not valid', :aggregate_failures do
expect(subject).not_to be_valid
expect(subject.errors.full_messages).to include('Meta tag validation is not enabled')
end
end
context 'when dast_meta_tag_validation is disabled' do
before do
stub_feature_flags(dast_meta_tag_validation: false)
end
it_behaves_like 'meta tag validation is disabled'
end
context 'when dast_runner_site_validation is disabled' do
before do
stub_feature_flags(dast_runner_site_validation: false)
end
it_behaves_like 'meta tag validation is disabled'
end
end
end end
describe 'before_create' do describe 'before_create' do
...@@ -75,7 +102,7 @@ RSpec.describe DastSiteValidation, type: :model do ...@@ -75,7 +102,7 @@ RSpec.describe DastSiteValidation, type: :model do
describe 'enums' do describe 'enums' do
let(:validation_strategies) do let(:validation_strategies) do
{ text_file: 0, header: 1 } { text_file: 0, header: 1, meta_tag: 2 }
end end
it { is_expected.to define_enum_for(:validation_strategy).with_values(validation_strategies) } it { is_expected.to define_enum_for(:validation_strategy).with_values(validation_strategies) }
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment