Add unit tests for SBOM ingestion and transformation
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
- Implement `SbomIngestServiceCollectionExtensionsTests` to verify the SBOM ingestion pipeline exports snapshots correctly. - Create `SbomIngestTransformerTests` to ensure the transformation produces expected nodes and edges, including deduplication of license nodes and normalization of timestamps. - Add `SbomSnapshotExporterTests` to test the export functionality for manifest, adjacency, nodes, and edges. - Introduce `VexOverlayTransformerTests` to validate the transformation of VEX nodes and edges. - Set up project file for the test project with necessary dependencies and configurations. - Include JSON fixture files for testing purposes.
This commit is contained in:
master
@@ -1,17 +1,63 @@
|
||||
# Placeholder configuration for the LDAP identity provider plug-in.
|
||||
# Replace values with your directory settings before enabling the plug-in.
|
||||
# Example configuration for the LDAP identity provider plug-in.
|
||||
# Adjust values to match your directory deployment before enabling the plugin.
|
||||
|
||||
connection:
|
||||
host: "ldap.example.com"
|
||||
host: "ldaps://ldap.example.internal"
|
||||
port: 636
|
||||
useTls: true
|
||||
bindDn: "cn=service,dc=example,dc=com"
|
||||
bindPassword: "CHANGE_ME"
|
||||
useStartTls: false
|
||||
validateCertificates: true
|
||||
clientCertificate:
|
||||
pfxPath: "file:/etc/stellaops/certs/ldap-client.pfx"
|
||||
passwordSecret: "file:/etc/stellaops/secrets/ldap-client-pfx.txt"
|
||||
sendChain: true
|
||||
trustStore:
|
||||
mode: system # system | bundle
|
||||
bundlePath: "file:/etc/stellaops/trust/ldap-root.pem"
|
||||
searchBase: "ou=people,dc=example,dc=internal"
|
||||
usernameAttribute: "uid"
|
||||
userDnFormat: "uid={username},ou=people,dc=example,dc=internal"
|
||||
bindDn: "cn=stellaops-bind,ou=service,dc=example,dc=internal"
|
||||
bindPasswordSecret: "file:/etc/stellaops/secrets/ldap-bind.txt"
|
||||
|
||||
security:
|
||||
requireTls: true
|
||||
allowInsecureWithEnvToggle: false # set STELLAOPS_LDAP_ALLOW_INSECURE=true to permit TLS downgrade
|
||||
allowedCipherSuites:
|
||||
- "TLS_AES_256_GCM_SHA384"
|
||||
- "TLS_AES_128_GCM_SHA256"
|
||||
referralChasing: false
|
||||
|
||||
lockout:
|
||||
useAuthorityPolicies: true
|
||||
directoryLockoutAttribute: "pwdAccountLockedTime"
|
||||
|
||||
claims:
|
||||
groupAttribute: "memberOf"
|
||||
groupToRoleMap:
|
||||
"cn=stellaops-admins,ou=groups,dc=example,dc=internal": "operators"
|
||||
"cn=stellaops-read,ou=groups,dc=example,dc=internal": "auditors"
|
||||
regexMappings:
|
||||
- pattern: "^cn=stellaops-(?P<role>[a-z-]+),ou=groups,dc=example,dc=internal$"
|
||||
roleFormat: "{role}"
|
||||
extraAttributes:
|
||||
displayName: "displayName"
|
||||
email: "mail"
|
||||
|
||||
queries:
|
||||
userFilter: "(uid={username})"
|
||||
groupFilter: "(member={distinguishedName})"
|
||||
groupAttribute: "cn"
|
||||
userFilter: "(&(objectClass=person)(uid={username}))"
|
||||
attributes:
|
||||
- "displayName"
|
||||
- "mail"
|
||||
- "memberOf"
|
||||
|
||||
capabilities:
|
||||
supportsPassword: true
|
||||
supportsMfa: false
|
||||
clientProvisioning:
|
||||
enabled: false
|
||||
containerDn: "ou=service,dc=example,dc=internal"
|
||||
secretAttribute: "userPassword"
|
||||
auditMirror:
|
||||
enabled: true
|
||||
collectionName: "ldap_client_provisioning"
|
||||
|
||||
health:
|
||||
probeIntervalSeconds: 60
|
||||
timeoutSeconds: 5
|
||||
|
||||
Reference in New Issue
Block a user