feat: adding secrets compare feature

Author: Soft-Serve

cmd/gitops/main.go

@@ -8,6 +8,7 @@ import (
 	"github.com/mxcd/gitops-cli/internal/k8s"
 	"github.com/mxcd/gitops-cli/internal/kubernetes"
 	"github.com/mxcd/gitops-cli/internal/patch"
+	"github.com/mxcd/gitops-cli/internal/secret"
 	"github.com/mxcd/gitops-cli/internal/state"
 	"github.com/mxcd/gitops-cli/internal/templating"
 	"github.com/mxcd/gitops-cli/internal/util"
@@ -140,6 +141,15 @@ func main() {
 							return templating.TestTemplating(c)
 						},
 					},
+					{
+						Name:    "compare",
+						Aliases: []string{"c"},
+						Usage:   "Compare two secrets",
+						Action: func(c *cli.Context) error {
+							initApplication(c)
+							return secret.CompareCommand(c)
+						},
+					},
 				},
 			},
 			{

internal/plan/plan.go

@@ -45,7 +45,7 @@ func (p *Plan) Print(showUnchanged bool) {
 		if !showUnchanged && item.Diff.Equal {
 			continue
 		}
-		item.Diff.Print()
+		item.Diff.Print(false)
 		if i < len(p.Items)-1 {
 			println("---")
 		}

internal/secret/compare.go

@@ -0,0 +1,31 @@
+package secret
+
+import (
+	"errors"
+
+	"github.com/urfave/cli/v2"
+)
+
+func CompareCommand(c *cli.Context) error {
+	if c.Args().Len() != 2 {
+		return errors.New("usage: gitops secrets compare <secret-path-1> <secret-path-2>")
+	}
+
+	firstPath := c.Args().Get(0)
+	secondPath := c.Args().Get(1)
+
+	firstSecret, err := FromPath(firstPath)
+	if err != nil {
+		return err
+	}
+
+	secondSecret, err := FromPath(secondPath)
+	if err != nil {
+		return err
+	}
+
+	diff := CompareSecrets(firstSecret, secondSecret)
+	diff.Print(c.Bool("show-unchanged"))
+
+	return nil
+}

internal/secret/diff.go

@@ -175,6 +175,14 @@ func CompareSecrets(oldSecret *Secret, newSecret *Secret) *SecretDiff {
 				NewValue:  value,
 				Sensitive: true,
 			})
+		} else if value == oldSecret.Data[key] {
+			diffEntries = append(diffEntries, SecretDiffEntry{
+				Type:      SecretDiffTypeUnchanged,
+				Key:       fmt.Sprintf("data.%s", key),
+				OldValue:  value,
+				NewValue:  value,
+				Sensitive: true,
+			})
 		}
 	}
 
@@ -198,7 +206,15 @@ func CompareSecrets(oldSecret *Secret, newSecret *Secret) *SecretDiff {
 		Entries:   diffEntries,
 	}
 
-	if len(diffEntries) > 0 {
+	hasChanges := false
+	for _, entry := range diffEntries {
+		if entry.Type != SecretDiffTypeUnchanged {
+			hasChanges = true
+			break
+		}
+	}
+
+	if hasChanges {
 		diff.Type = SecretDiffTypeChanged
 		diff.Equal = false
 	} else {
@@ -209,14 +225,17 @@ func CompareSecrets(oldSecret *Secret, newSecret *Secret) *SecretDiff {
 	return &diff
 }
 
-func (d *SecretDiff) Print() {
+func (d *SecretDiff) Print(showUnchanged bool) {
 	combinedSecretName := d.Name
 	if d.Namespace != "" {
 		combinedSecretName = fmt.Sprintf("%s/%s", d.Namespace, d.Name)
 	}
 
 	printDetailedChanges := func() {
 		for _, entry := range d.Entries {
+			if entry.Type == SecretDiffTypeUnchanged && !showUnchanged {
+				continue
+			}
 			safeOldValue := entry.OldValue
 			safeNewValue := entry.NewValue
 			if entry.Sensitive && !util.GetCliContext().Bool("cleartext") {
@@ -230,6 +249,8 @@ func (d *SecretDiff) Print() {
 				println(color.Ize(color.Red, fmt.Sprintf("  - %s: %s", entry.Key, safeOldValue)))
 			case SecretDiffTypeChanged:
 				println(color.Ize(color.Yellow, fmt.Sprintf("  ~ %s: %s => %s", entry.Key, safeOldValue, safeNewValue)))
+			case SecretDiffTypeUnchanged:
+				println(color.Ize(color.Gray, fmt.Sprintf("  = %s: %s", entry.Key, safeNewValue)))
 			}
 		}
 	}

internal/secret/secret_test.go

@@ -61,7 +61,7 @@ func TestSecretComparisonTarget(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 1, len(diff.Entries), "Diff should have 1 entry")
@@ -88,7 +88,7 @@ func TestSecretComparisonType(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 1, len(diff.Entries), "Diff should have 1 entry")
@@ -115,7 +115,7 @@ func TestSecretComparisonChangedName(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 1, len(diff.Entries), "Diff should have 1 entry")
@@ -143,7 +143,7 @@ func TestSecretComparisonChangedNamespace(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 1, len(diff.Entries), "Diff should have 1 entry")
@@ -174,7 +174,7 @@ func TestSecretComparisonAddData(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entry")
@@ -209,7 +209,7 @@ func TestSecretComparisonRemoveData(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entry")
@@ -247,14 +247,18 @@ func TestSecretComparisonChangeData1(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
-	assert.Equal(t, 1, len(diff.Entries), "Diff should have 1 entry")
+	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entries")
 
 	entry1 := diff.GetEntry("data.key1")
 	assert.NotNil(t, entry1, "Diff should have an entry for data.key1")
 	assert.Equal(t, SecretDiffTypeChanged, entry1.Type, "DiffEntry type should be changed")
+
+	entry2 := diff.GetEntry("data.key2")
+	assert.NotNil(t, entry2, "Diff should have an entry for data.key2")
+	assert.Equal(t, SecretDiffTypeUnchanged, entry2.Type, "DiffEntry type should be unchanged")
 }
 
 func TestSecretComparisonChangeData2(t *testing.T) {
@@ -281,7 +285,7 @@ func TestSecretComparisonChangeData2(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entry")
@@ -319,7 +323,7 @@ func TestSecretComparisonChangeData3(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, b)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeChanged, diff.Type, "Diff type should be changed")
 	assert.Equal(t, 3, len(diff.Entries), "Diff should have 3 entry")
@@ -350,7 +354,7 @@ func TestSecretComparisonRemoveSecret(t *testing.T) {
 	}
 
 	diff := CompareSecrets(a, nil)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeRemoved, diff.Type, "Diff type should be removed")
 	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entry")
@@ -377,7 +381,7 @@ func TestSecretComparisonAddSecret(t *testing.T) {
 	}
 
 	diff := CompareSecrets(nil, a)
-	diff.Print()
+	diff.Print(false)
 	assert.Equal(t, false, diff.Equal, "Secrets should not be equal")
 	assert.Equal(t, SecretDiffTypeAdded, diff.Type, "Diff type should be added")
 	assert.Equal(t, 2, len(diff.Entries), "Diff should have 2 entry")