add configs

Author: mcasimir

README.md

@@ -39,6 +39,8 @@ In order to start the environments you will need:
 
 ### Usage
 
+#### With docker-compose
+
 Each setup has its own folder and `docker-compose.yaml` file.
 
 A `docker-compose.yaml` file defines a set of services that will be started as docker containers and how that will happen: from which image, what command, environment variables and files to mount from host, how will be exposed to the network.
@@ -57,6 +59,33 @@ docker-compose -f sharded/docker-compose.yaml up
 
 Please also refer to the official documentation ([Getting Started](https://docs.docker.com/compose/gettingstarted/), [Cli Reference](https://docs.docker.com/compose/reference/), [YAML Reference](https://docs.docker.com/compose/compose-file/)) and the many other resources online for details on how to use `docker-compose`.
 
+#### Programmatically
+
+``` js
+const createTestEnvironments = require('@mongodb-js/devtools-docker-test-envs');
+
+const {
+  community: communityTestEnv
+} = createTestEnvironments();
+
+before(async() => {
+  await Promise.all([
+    communityTestEnv.start()
+  ]
+});
+
+it('can connect', () => {
+  const { connectionString } = communityTestEnv.getConnectionOptions('community');
+  await MongoClient.connect(connectionString);
+});
+
+after(async() => {
+  await Promise.all([
+    communityTestEnv.stop()
+  ]
+});
+```
+
 #### How to connect to the environments
 
 Informations on how to connect are available for each setup.

docker/community/index.js renamed to docker/community/config.js

@@ -2,7 +2,7 @@ const path = require('path');
 
 module.exports = {
   dockerCompose: {
-    projectName: 'community',
+    projectName: path.basename(__dirname),
     yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
   },
   waitOn: [

docker/enterprise/config.js

@@ -0,0 +1,16 @@
+const path = require('path');
+
+module.exports = {
+  dockerCompose: {
+    projectName: path.basename(__dirname),
+    yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
+  },
+  waitOn: [
+    'tcp:27021'
+  ],
+  connections: {
+    enterprise: {
+      connectionString: 'mongodb://localhost:27021/test'
+    }
+  }
+};

docker/kerberos/README.md

@@ -5,7 +5,7 @@
 Make sure you have this line in your `/etc/hosts`:
 
 ``` conf
-127.0.0.1 mongodb-kerberos-1.example.com mongodb-kerberos-2.example.com mongodb-kerberos-3.examplewrong.com
+127.0.0.1 mongodb-kerberos-1.example.com mongodb-kerberos-2.example.com mongodb-kerberos-3.examplecrossrealm.com
 ```
 
 Make sure you have this in `/etc/krb5.conf` (note the `domain_realm` section to configure cross-realm):
@@ -23,7 +23,7 @@ Make sure you have this in `/etc/krb5.conf` (note the `domain_realm` section to
         }
 
 [domain_realm]
-        .examplewrong.com = EXAMPLE2.COM
+        .examplecrossrealm.com = EXAMPLE2.COM
 ```
 
 Start the docker environment:
@@ -58,7 +58,7 @@ All servers are configured with the same set of users.
 
 `mongodb-kerberos-1.example.com` is configured with the default `gssapiServiceName` (`mongodb`), while `mongodb-kerberos-2.example.com` is configured with `gssapiServiceName=alternate`. These two servers are in the Kerberos Realm `EXAMPLE.COM`.
 
-The server `mongodb-kerberos-3.examplewrong.com` has the default `gssapiServiceName` (`mongodb`) but is located in a different Kerberos Realm `EXAMPLE2.COM`.
+The server `mongodb-kerberos-3.examplecrossrealm.com` has the default `gssapiServiceName` (`mongodb`) but is located in a different Kerberos Realm `EXAMPLE2.COM`.
 
 ##### Available users
 

docker/kerberos/config.js

@@ -0,0 +1,62 @@
+const path = require('path');
+const execa = require('execa');
+
+const {default: ConnectionString} = require('mongodb-connection-string-url');
+
+const principal = 'mongodb.user';
+const defaultConnectionString = new ConnectionString('mongodb://mongodb-kerberos-1.example.com:29017');
+defaultConnectionString.username = principal;
+defaultConnectionString.searchParams.set('authMechanism', 'GSSAPI');
+
+const alternateConnectionString = new ConnectionString('mongodb://mongodb-kerberos-2.example.com:29018');
+alternateConnectionString.username = principal;
+alternateConnectionString.searchParams.set('authMechanism', 'GSSAPI');
+alternateConnectionString.searchParams.set('authMechanismProperties', 'SERVICE_NAME:alternate');
+
+const crossRealmConnectionString = new ConnectionString('mongodb://mongodb-kerberos-3.examplecrossrealm.com:29019');
+crossRealmConnectionString.username = principal;
+crossRealmConnectionString.searchParams.set('authMechanism', 'GSSAPI');
+
+module.exports = {
+  dockerCompose: {
+    projectName: path.basename(__dirname),
+    yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
+  },
+  waitOn: [
+    'tcp:29017',
+    'tcp:29018',
+    'tcp:29019'
+  ],
+  hosts: [
+    'mongodb-kerberos-1.example.com',
+    'mongodb-kerberos-2.example.com',
+    'mongodb-kerberos-3.examplecrossrealm.com'
+  ],
+  setup: async() => {
+    try { // hemdal
+      await execa('kinit',
+        ['--password-file=STDIN', principal], {input: 'password'});
+    } catch (e) { // mit
+      await execa(
+        'kinit', [principal], {input: 'password'});
+    }
+  },
+  teardown: async() => {
+    try {
+      await execa('kdestroy', ['-p', principal]);
+    } catch (e) {
+      //
+    }
+  },
+  connections: {
+    default: {
+      connectionString: defaultConnectionString.href
+    },
+    alternate: {
+      connectionString: alternateConnectionString.href
+    },
+    crossRealm: {
+      connectionString: crossRealmConnectionString.href
+    }
+  }
+};

docker/kerberos/docker-compose.yaml

@@ -106,7 +106,7 @@ services:
       MONGO_INITDB_ROOT_PASSWORD: root
       MONGO_INITDB_DATABASE: admin
       KRB5_KTNAME: "/etc/krb5-keytabs/mongodb.keytab"
-    hostname: mongodb-kerberos-3.examplewrong.com
+    hostname: mongodb-kerberos-3.examplecrossrealm.com
     depends_on:
       - kdc-kadmin2
     ports:

docker/kerberos/kdc/kadmin-example2/add_principals.sh

@@ -18,7 +18,7 @@ if [[ "x${TRUST_PRINCIPAL}" != "x" && "x${TRUST_REALM}" != "x" ]]; then
   echo ""
 fi
 
-kadmin.local -q "delete_principal -force mongodb/mongodb-kerberos-3.examplewrong.com@$REALM"
-kadmin.local -q "addprinc -randkey mongodb/mongodb-kerberos-3.examplewrong.com@$REALM"
+kadmin.local -q "delete_principal -force mongodb/mongodb-kerberos-3.examplecrossrealm.com@$REALM"
+kadmin.local -q "addprinc -randkey mongodb/mongodb-kerberos-3.examplecrossrealm.com@$REALM"
 
-kadmin.local -q "ktadd -k /mongodb.keytab mongodb/mongodb-kerberos-3.examplewrong.com@$REALM"
+kadmin.local -q "ktadd -k /mongodb.keytab mongodb/mongodb-kerberos-3.examplecrossrealm.com@$REALM"

docker/ldap/config.js

@@ -0,0 +1,24 @@
+const path = require('path');
+
+const {default: ConnectionString} = require('mongodb-connection-string-url');
+
+const connectionString = new ConnectionString('mongodb://localhost:30017');
+connectionString.username = 'writer';
+connectionString.password = 'Password1!';
+connectionString.searchParams.set('authMechanism', 'PLAIN');
+
+module.exports = {
+  dockerCompose: {
+    projectName: path.basename(__dirname),
+    yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
+  },
+  waitOn: [
+    'tcp:30017'
+  ],
+  connections: {
+    default: {
+      connectionString: connectionString.href
+    }
+  }
+};
+

docker/replica-set/config.js

@@ -0,0 +1,31 @@
+const path = require('path');
+
+module.exports = {
+  dockerCompose: {
+    projectName: path.basename(__dirname),
+    yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
+  },
+  waitOn: [
+    'tcp:28001',
+    'tcp:28002',
+    'tcp:28003',
+    'tcp:28004'
+  ],
+  hosts: [
+    'mongodb-rs-1',
+    'mongodb-rs-2',
+    'mongodb-rs-3'
+  ],
+  connections: {
+    default: {
+      connectionString: 'mongodb://root:password123@mongodb-rs-1:28001,mongodb-rs-2:28002,mongodb-rs-3:28003/db1?authSource=admin&replicaSet=replicaset'
+    },
+    anaylticsNode: {
+      connectionString: 'mongodb://root:password123@mongodb-rs-1:28001,mongodb-rs-2:28002,mongodb-rs-3:28003/db1?authSource=admin&replicaSet=replicaset&readPreference=secondary&readPreferenceTags=nodeType:ANALYTICS'
+    },
+    privateNode: {
+      connectionString: 'mongodb://root:password123@localhost:28004/db1?authSource=admin'
+    }
+  }
+};
+

docker/scram/config.js

@@ -0,0 +1,50 @@
+const path = require('path');
+
+function buildConnectionString(auth, authenticationMechanism, authenticationDatabase) {
+  const uri = `mongodb://${auth}@localhost:28006/db1?authSource=${authenticationDatabase}`;
+  if (authenticationMechanism) {
+    return `${uri}&${authenticationMechanism}`;
+  }
+
+  return uri;
+}
+
+module.exports = {
+  dockerCompose: {
+    projectName: path.basename(__dirname),
+    yamlPath: path.resolve(__dirname, 'docker-compose.yaml')
+  },
+  waitOn: [
+    'tcp:28006'
+  ],
+  connections: {
+    readWriteAnyDatabase: {
+      connectionString: buildConnectionString('user1:password', 'admin')
+    },
+    readWriteAnyDatabaseScramSha1: {
+      connectionString: buildConnectionString('user1:password', 'admin', 'SCRAM-SHA-1')
+    },
+    readWriteAnyDatabaseScramSha256: {
+      connectionString: buildConnectionString('user1:password', 'admin', 'SCRAM-SHA-256')
+    },
+    onlyScramSha1: {
+      connectionString: buildConnectionString('scramSha1:password', 'admin', 'SCRAM-SHA-1')
+    },
+    onlyScramSha256: {
+      connectionString: buildConnectionString('scramSha256:password', 'admin', 'SCRAM-SHA-256')
+    },
+    encodedPassword: {
+      connectionString: buildConnectionString('randomPassword:C;Ib86n5b8{AnExew[TU%XZy,)E6G!dk', 'admin')
+    },
+    privilegesOnNonExistingDatabases: {
+      connectionString: buildConnectionString('user2:password', 'admin')
+    },
+    privilegesOnNonExistingCollections: {
+      connectionString: buildConnectionString('customRole:password', 'admin')
+    },
+    alternateAuthDb: {
+      connectionString: buildConnectionString('authDb:password', 'authDb')
+    }
+  }
+};
+