diff options
| author | Bryan McLellan <btm@loftninjas.org> | 2017-10-27 11:16:14 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2017-10-27 11:16:14 -0400 |
| commit | 4d5945f1916d883fd02d64a4ef4be073369343ef (patch) | |
| tree | 96b5f94693f1016d1b324da6f529160f84172c28 | |
| parent | 92060547a7a8d9f3c7e1f51909e4f7094b0314c4 (diff) | |
| parent | fa6e4e89b586bb8eaee767d5602b13cb75f6c073 (diff) | |
| download | chef-4d5945f1916d883fd02d64a4ef4be073369343ef.tar.gz | |
Merge pull request #6425 from MsysTechnologiesllc/harry/add_missing_functional_tests
[MSYS-492]Add missing functional tests for users
| -rw-r--r-- | spec/functional/win32/security_spec.rb | 40 |
1 files changed, 33 insertions, 7 deletions
diff --git a/spec/functional/win32/security_spec.rb b/spec/functional/win32/security_spec.rb index 40ae99bfa4..f3faf24c52 100644 --- a/spec/functional/win32/security_spec.rb +++ b/spec/functional/win32/security_spec.rb @@ -17,6 +17,8 @@ # require "spec_helper" +require "mixlib/shellout" +require "chef/mixin/user_context" if Chef::Platform.windows? require "chef/win32/security" end @@ -26,13 +28,37 @@ describe "Chef::Win32::Security", :windows_only do expect(Chef::ReservedNames::Win32::Security.has_admin_privileges?).to eq(true) end - # We've done some investigation adding a negative test and it turned - # out to be a lot of work since mixlib-shellout doesn't have user - # support for windows. - # - # TODO - Add negative tests once mixlib-shellout has user support - it "has_admin_privileges? returns false when running as non-admin" do - skip "requires user support in mixlib-shellout" + describe "running as non admin user" do + include Chef::Mixin::UserContext + let(:user) { "security_user" } + let(:password) { "Security@123" } + + let(:domain) do + whoami = Mixlib::ShellOut.new("whoami") + whoami.run_command + whoami.error! + whoami.stdout.split("\\")[0] + end + before do + allow_any_instance_of(Chef::Mixin::UserContext).to receive(:node).and_return({ "platform_family" => "windows" }) + allow(Chef::Platform).to receive(:windows_server_2003?).and_return(false) + allow(Chef::ReservedNames::Win32::Security).to receive(:OpenProcessToken).and_return(true) + add_user = Mixlib::ShellOut.new("net user #{user} #{password} /ADD") + add_user.run_command + add_user.error! + end + + after do + delete_user = Mixlib::ShellOut.new("net user #{user} /delete") + delete_user.run_command + delete_user.error! + end + it "has_admin_privileges? returns false" do + has_admin_privileges = with_user_context(user, password, domain) do + Chef::ReservedNames::Win32::Security.has_admin_privileges? + end + expect(has_admin_privileges).to eq(false) + end end describe "get_file_security" do |