refactor(notation): update options struct to be private

JasonTheDeveloper · JasonTheDeveloper · commit 53c737b0de66 · 2024-03-14T10:25:28.000+11:00
Signed-off-by: Jason &lt;jagoodse@microsoft.com&gt;
diff --git a/internal/oci/notation/notation.go b/internal/oci/notation/notation.go
@@ -48,13 +48,13 @@ const DefaultTrustPolicyKey = "trustpolicy.json"
 
 // options is a struct that holds options for verifier.
 type options struct {
-	RootCertificate []byte
-	ROpt            []remote.Option
-	TrustPolicy     *trustpolicy.Document
-	Auth            authn.Authenticator
-	Keychain        authn.Keychain
-	Insecure        bool
-	Logger          logr.Logger
+	rootCertificate []byte
+	rOpt            []remote.Option
+	trustPolicy     *trustpolicy.Document
+	auth            authn.Authenticator
+	keychain        authn.Keychain
+	insecure        bool
+	logger          logr.Logger
 }
 
 // Options is a function that configures the options applied to a Verifier.
@@ -63,14 +63,14 @@ type Options func(opts *options)
 // WithInsecureRegistry sets notation to verify against insecure registry.
 func WithInsecureRegistry(insecure bool) Options {
 	return func(opts *options) {
-		opts.Insecure = insecure
+		opts.insecure = insecure
 	}
 }
 
 // WithTrustStore sets the trust store configuration.
 func WithTrustStore(trustStore *trustpolicy.Document) Options {
 	return func(opts *options) {
-		opts.TrustPolicy = trustStore
+		opts.trustPolicy = trustStore
 	}
 }
 
@@ -81,39 +81,39 @@ func WithTrustStore(trustStore *trustpolicy.Document) Options {
 // in the notation options.
 func WithRootCertificate(data []byte) Options {
 	return func(opts *options) {
-		opts.RootCertificate = data
+		opts.rootCertificate = data
 	}
 }
 
 // WithRemoteOptions is a functional option for overriding the default
 // remote options used by the verifier
 func WithRemoteOptions(opts ...remote.Option) Options {
 	return func(o *options) {
-		o.ROpt = opts
+		o.rOpt = opts
 	}
 }
 
 // WithAuth is a functional option for overriding the default
 // remote options used by the verifier
 func WithAuth(auth authn.Authenticator) Options {
 	return func(o *options) {
-		o.Auth = auth
+		o.auth = auth
 	}
 }
 
 // WithKeychain is a functional option for overriding the default
 // remote options used by the verifier
 func WithKeychain(key authn.Keychain) Options {
 	return func(o *options) {
-		o.Keychain = key
+		o.keychain = key
 	}
 }
 
 // WithLogger is a function that returns an Options function to set the logger for the options.
 // The logger is used for logging purposes within the options.
 func WithLogger(logger logr.Logger) Options {
 	return func(o *options) {
-		o.Logger = logger
+		o.logger = logger
 	}
 }
 
@@ -155,10 +155,10 @@ func NewNotationVerifier(opts ...Options) (*NotationVerifier, error) {
 	}
 
 	store := &trustStore{
-		cert: o.RootCertificate,
+		cert: o.rootCertificate,
 	}
 
-	trustpolicy := cleanTrustPolicy(o.TrustPolicy, o.Logger)
+	trustpolicy := cleanTrustPolicy(o.trustPolicy, o.logger)
 	if trustpolicy == nil {
 		return nil, fmt.Errorf("trust policy cannot be empty")
 	}
@@ -169,12 +169,12 @@ func NewNotationVerifier(opts ...Options) (*NotationVerifier, error) {
 	}
 
 	return &NotationVerifier{
-		auth:     o.Auth,
-		keychain: o.Keychain,
+		auth:     o.auth,
+		keychain: o.keychain,
 		verifier: &verifier,
-		opts:     o.ROpt,
-		insecure: o.Insecure,
-		logger:   o.Logger,
+		opts:     o.rOpt,
+		insecure: o.insecure,
+		logger:   o.logger,
 	}, nil
 }
 
diff --git a/internal/oci/notation/notation_test.go b/internal/oci/notation/notation_test.go
@@ -42,8 +42,8 @@ func TestOptions(t *testing.T) {
 			name: "signature option",
 			opts: []Options{WithRootCertificate([]byte("foo"))},
 			want: &options{
-				RootCertificate: []byte("foo"),
-				ROpt:            nil,
+				rootCertificate: []byte("foo"),
+				rOpt:            nil,
 			},
 		},
 		{
@@ -53,9 +53,9 @@ func TestOptions(t *testing.T) {
 				WithKeychain(authn.DefaultKeychain),
 			},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            []remote.Option{remote.WithAuthFromKeychain(authn.DefaultKeychain)},
-				Keychain:        authn.DefaultKeychain,
+				rootCertificate: nil,
+				rOpt:            []remote.Option{remote.WithAuthFromKeychain(authn.DefaultKeychain)},
+				keychain:        authn.DefaultKeychain,
 			},
 		},
 		{
@@ -69,13 +69,13 @@ func TestOptions(t *testing.T) {
 				WithKeychain(authn.DefaultKeychain),
 			},
 			want: &options{
-				RootCertificate: nil,
-				ROpt: []remote.Option{
+				rootCertificate: nil,
+				rOpt: []remote.Option{
 					remote.WithAuth(&authn.Basic{Username: "foo", Password: "bar"}),
 					remote.WithAuthFromKeychain(authn.DefaultKeychain),
 				},
-				Auth:     &authn.Basic{Username: "foo", Password: "bar"},
-				Keychain: authn.DefaultKeychain,
+				auth:     &authn.Basic{Username: "foo", Password: "bar"},
+				keychain: authn.DefaultKeychain,
 			},
 		},
 		{
@@ -90,62 +90,62 @@ func TestOptions(t *testing.T) {
 				WithKeychain(authn.DefaultKeychain),
 			},
 			want: &options{
-				RootCertificate: nil,
-				ROpt: []remote.Option{
+				rootCertificate: nil,
+				rOpt: []remote.Option{
 					remote.WithAuth(&authn.Basic{Username: "foo", Password: "bar"}),
 					remote.WithAuthFromKeychain(authn.DefaultKeychain),
 					remote.WithTransport(http.DefaultTransport),
 				},
-				Auth:     &authn.Basic{Username: "foo", Password: "bar"},
-				Keychain: authn.DefaultKeychain,
+				auth:     &authn.Basic{Username: "foo", Password: "bar"},
+				keychain: authn.DefaultKeychain,
 			},
 		},
 		{
 			name: "truststore, empty document",
 			opts: []Options{WithTrustStore(&trustpolicy.Document{})},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            nil,
-				TrustPolicy:     &trustpolicy.Document{},
+				rootCertificate: nil,
+				rOpt:            nil,
+				trustPolicy:     &trustpolicy.Document{},
 			},
 		},
 		{
 			name: "truststore, dummy document",
 			opts: []Options{WithTrustStore(dummyPolicyDocument())},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            nil,
-				TrustPolicy:     dummyPolicyDocument(),
+				rootCertificate: nil,
+				rOpt:            nil,
+				trustPolicy:     dummyPolicyDocument(),
 			},
 		},
 		{
 			name: "insecure, false",
 			opts: []Options{WithInsecureRegistry(false)},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            nil,
-				TrustPolicy:     nil,
-				Insecure:        false,
+				rootCertificate: nil,
+				rOpt:            nil,
+				trustPolicy:     nil,
+				insecure:        false,
 			},
 		},
 		{
 			name: "insecure, true",
 			opts: []Options{WithInsecureRegistry(true)},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            nil,
-				TrustPolicy:     nil,
-				Insecure:        true,
+				rootCertificate: nil,
+				rOpt:            nil,
+				trustPolicy:     nil,
+				insecure:        true,
 			},
 		},
 		{
 			name: "insecure, default",
 			opts: []Options{},
 			want: &options{
-				RootCertificate: nil,
-				ROpt:            nil,
-				TrustPolicy:     nil,
-				Insecure:        false,
+				rootCertificate: nil,
+				rOpt:            nil,
+				trustPolicy:     nil,
+				insecure:        false,
 			},
 		},
 	}
@@ -157,24 +157,24 @@ func TestOptions(t *testing.T) {
 			for _, opt := range tc.opts {
 				opt(&o)
 			}
-			if !reflect.DeepEqual(o.RootCertificate, tc.want.RootCertificate) {
-				t.Errorf("got %#v, want %#v", &o.RootCertificate, tc.want.RootCertificate)
+			if !reflect.DeepEqual(o.rootCertificate, tc.want.rootCertificate) {
+				t.Errorf("got %#v, want %#v", &o.rootCertificate, tc.want.rootCertificate)
 			}
 
-			if !reflect.DeepEqual(o.TrustPolicy, tc.want.TrustPolicy) {
-				t.Errorf("got %#v, want %#v", &o.TrustPolicy, tc.want.TrustPolicy)
+			if !reflect.DeepEqual(o.trustPolicy, tc.want.trustPolicy) {
+				t.Errorf("got %#v, want %#v", &o.trustPolicy, tc.want.trustPolicy)
 			}
 
-			if tc.want.ROpt != nil {
-				if len(o.ROpt) != len(tc.want.ROpt) {
-					t.Errorf("got %d remote options, want %d", len(o.ROpt), len(tc.want.ROpt))
+			if tc.want.rOpt != nil {
+				if len(o.rOpt) != len(tc.want.rOpt) {
+					t.Errorf("got %d remote options, want %d", len(o.rOpt), len(tc.want.rOpt))
 				}
 				return
 			}
 
-			if tc.want.ROpt == nil {
-				if len(o.ROpt) != 0 {
-					t.Errorf("got %d remote options, want %d", len(o.ROpt), 0)
+			if tc.want.rOpt == nil {
+				if len(o.rOpt) != 0 {
+					t.Errorf("got %d remote options, want %d", len(o.rOpt), 0)
 				}
 			}
 		})

Original file line number	Diff line number	Diff line change
`@@ -48,13 +48,13 @@ const DefaultTrustPolicyKey = "trustpolicy.json"`
`48`	`48`
`49`	`49`	`// options is a struct that holds options for verifier.`
`50`	`50`	`type options struct {`
`51`		`- RootCertificate []byte`
`52`		`- ROpt []remote.Option`
`53`		`- TrustPolicy *trustpolicy.Document`
`54`		`- Auth authn.Authenticator`
`55`		`- Keychain authn.Keychain`
`56`		`- Insecure bool`
`57`		`- Logger logr.Logger`
	`51`	`+ rootCertificate []byte`
	`52`	`+ rOpt []remote.Option`
	`53`	`+ trustPolicy *trustpolicy.Document`
	`54`	`+ auth authn.Authenticator`
	`55`	`+ keychain authn.Keychain`
	`56`	`+ insecure bool`
	`57`	`+ logger logr.Logger`
`58`	`58`	`}`
`59`	`59`
`60`	`60`	`// Options is a function that configures the options applied to a Verifier.`
`@@ -63,14 +63,14 @@ type Options func(opts *options)`
`63`	`63`	`// WithInsecureRegistry sets notation to verify against insecure registry.`
`64`	`64`	`func WithInsecureRegistry(insecure bool) Options {`
`65`	`65`	`return func(opts *options) {`
`66`		`- opts.Insecure = insecure`
	`66`	`+ opts.insecure = insecure`
`67`	`67`	`}`
`68`	`68`	`}`
`69`	`69`
`70`	`70`	`// WithTrustStore sets the trust store configuration.`
`71`	`71`	`func WithTrustStore(trustStore *trustpolicy.Document) Options {`
`72`	`72`	`return func(opts *options) {`
`73`		`- opts.TrustPolicy = trustStore`
	`73`	`+ opts.trustPolicy = trustStore`
`74`	`74`	`}`
`75`	`75`	`}`
`76`	`76`
`@@ -81,39 +81,39 @@ func WithTrustStore(trustStore *trustpolicy.Document) Options {`
`81`	`81`	`// in the notation options.`
`82`	`82`	`func WithRootCertificate(data []byte) Options {`
`83`	`83`	`return func(opts *options) {`
`84`		`- opts.RootCertificate = data`
	`84`	`+ opts.rootCertificate = data`
`85`	`85`	`}`
`86`	`86`	`}`
`87`	`87`
`88`	`88`	`// WithRemoteOptions is a functional option for overriding the default`
`89`	`89`	`// remote options used by the verifier`
`90`	`90`	`func WithRemoteOptions(opts ...remote.Option) Options {`
`91`	`91`	`return func(o *options) {`
`92`		`- o.ROpt = opts`
	`92`	`+ o.rOpt = opts`
`93`	`93`	`}`
`94`	`94`	`}`
`95`	`95`
`96`	`96`	`// WithAuth is a functional option for overriding the default`
`97`	`97`	`// remote options used by the verifier`
`98`	`98`	`func WithAuth(auth authn.Authenticator) Options {`
`99`	`99`	`return func(o *options) {`
`100`		`- o.Auth = auth`
	`100`	`+ o.auth = auth`
`101`	`101`	`}`
`102`	`102`	`}`
`103`	`103`
`104`	`104`	`// WithKeychain is a functional option for overriding the default`
`105`	`105`	`// remote options used by the verifier`
`106`	`106`	`func WithKeychain(key authn.Keychain) Options {`
`107`	`107`	`return func(o *options) {`
`108`		`- o.Keychain = key`
	`108`	`+ o.keychain = key`
`109`	`109`	`}`
`110`	`110`	`}`
`111`	`111`
`112`	`112`	`// WithLogger is a function that returns an Options function to set the logger for the options.`
`113`	`113`	`// The logger is used for logging purposes within the options.`
`114`	`114`	`func WithLogger(logger logr.Logger) Options {`
`115`	`115`	`return func(o *options) {`
`116`		`- o.Logger = logger`
	`116`	`+ o.logger = logger`
`117`	`117`	`}`
`118`	`118`	`}`
`119`	`119`
`@@ -155,10 +155,10 @@ func NewNotationVerifier(opts ...Options) (*NotationVerifier, error) {`
`155`	`155`	`}`
`156`	`156`
`157`	`157`	`store := &trustStore{`
`158`		`- cert: o.RootCertificate,`
	`158`	`+ cert: o.rootCertificate,`
`159`	`159`	`}`
`160`	`160`
`161`		`- trustpolicy := cleanTrustPolicy(o.TrustPolicy, o.Logger)`
	`161`	`+ trustpolicy := cleanTrustPolicy(o.trustPolicy, o.logger)`
`162`	`162`	`if trustpolicy == nil {`
`163`	`163`	`return nil, fmt.Errorf("trust policy cannot be empty")`
`164`	`164`	`}`
`@@ -169,12 +169,12 @@ func NewNotationVerifier(opts ...Options) (*NotationVerifier, error) {`
`169`	`169`	`}`
`170`	`170`
`171`	`171`	`return &NotationVerifier{`
`172`		`- auth: o.Auth,`
`173`		`- keychain: o.Keychain,`
	`172`	`+ auth: o.auth,`
	`173`	`+ keychain: o.keychain,`
`174`	`174`	`verifier: &verifier,`
`175`		`- opts: o.ROpt,`
`176`		`- insecure: o.Insecure,`
`177`		`- logger: o.Logger,`
	`175`	`+ opts: o.rOpt,`
	`176`	`+ insecure: o.insecure,`
	`177`	`+ logger: o.logger,`
`178`	`178`	`}, nil`
`179`	`179`	`}`
`180`	`180`