diff options
author | Thom May <thom@chef.io> | 2016-09-14 10:40:27 +0100 |
---|---|---|
committer | Thom May <thom@chef.io> | 2016-09-14 10:40:27 +0100 |
commit | 88550632a4205375287c34a9dd220ed3859fa02c (patch) | |
tree | 7aacd792b8e1a851c11304116be23b64f3a64dc7 | |
parent | db57131ad383076391b9df32d5e9989cfb312d58 (diff) | |
download | chef-tm/raw_key.tar.gz |
Allow raw_key to override the configured signing_keytm/raw_key
Fixes: #5175
Signed-off-by: Thom May <thom@may.lt>
-rw-r--r-- | lib/chef/server_api.rb | 2 | ||||
-rw-r--r-- | spec/unit/server_api_spec.rb | 50 |
2 files changed, 51 insertions, 1 deletions
diff --git a/lib/chef/server_api.rb b/lib/chef/server_api.rb index cad8586ac8..d233d25232 100644 --- a/lib/chef/server_api.rb +++ b/lib/chef/server_api.rb @@ -30,7 +30,7 @@ class Chef def initialize(url = Chef::Config[:chef_server_url], options = {}) options[:client_name] ||= Chef::Config[:node_name] - options[:signing_key_filename] ||= Chef::Config[:client_key] + options[:signing_key_filename] ||= Chef::Config[:client_key] unless options[:raw_key] options[:signing_key_filename] = nil if chef_zero_uri?(url) options[:inflate_json_class] = false super(url, options) diff --git a/spec/unit/server_api_spec.rb b/spec/unit/server_api_spec.rb new file mode 100644 index 0000000000..05d2a28ed4 --- /dev/null +++ b/spec/unit/server_api_spec.rb @@ -0,0 +1,50 @@ +require "spec_helper" + +SIGNING_KEY_DOT_PEM = "-----BEGIN RSA PRIVATE KEY----- +MIIEpAIBAAKCAQEA49TA0y81ps0zxkOpmf5V4/c4IeR5yVyQFpX3JpxO4TquwnRh +8VSUhrw8kkTLmB3cS39Db+3HadvhoqCEbqPE6915kXSuk/cWIcNozujLK7tkuPEy +YVsyTioQAddSdfe+8EhQVf3oHxaKmUd6waXrWqYCnhxgOjxocenREYNhZ/OETIei +PbOku47vB4nJK/0GhKBytL2XnsRgfKgDxf42BqAi1jglIdeq8lAWZNF9TbNBU21A +O1iuT7Pm6LyQujhggPznR5FJhXKRUARXBJZawxpGV4dGtdcahwXNE4601aXPra+x +PcRd2puCNoEDBzgVuTSsLYeKBDMSfs173W1QYwIDAQABAoIBAGF05q7vqOGbMaSD +2Q7YbuE/JTHKTBZIlBI1QC2x+0P5GDxyEFttNMOVzcs7xmNhkpRw8eX1LrInrpMk +WsIBKAFFEfWYlf0RWtRChJjNl+szE9jQxB5FJnWtJH/FHa78tR6PsF24aQyzVcJP +g0FGujBihwgfV0JSCNOBkz8MliQihjQA2i8PGGmo4R4RVzGfxYKTIq9vvRq/+QEa +Q4lpVLoBqnENpnY/9PTl6JMMjW2b0spbLjOPVwDaIzXJ0dChjNXo15K5SHI5mALJ +I5gN7ODGb8PKUf4619ez194FXq+eob5YJdilTFKensIUvt3YhP1ilGMM+Chi5Vi/ +/RCTw3ECgYEA9jTw4wv9pCswZ9wbzTaBj9yZS3YXspGg26y6Ohq3ZmvHz4jlT6uR +xK+DDcUiK4072gci8S4Np0fIVS7q6ivqcOdzXPrTF5/j+MufS32UrBbUTPiM1yoO +ECcy+1szl/KoLEV09bghPbvC58PFSXV71evkaTETYnA/F6RK12lEepcCgYEA7OSy +bsMrGDVU/MKJtwqyGP9ubA53BorM4Pp9VVVSCrGGVhb9G/XNsjO5wJC8J30QAo4A +s59ZzCpyNRy046AB8jwRQuSwEQbejSdeNgQGXhZ7aIVUtuDeFFdaIz/zjVgxsfj4 +DPOuzieMmJ2MLR4F71ocboxNoDI7xruPSE8dDhUCgYA3vx732cQxgtHwAkeNPJUz +dLiE/JU7CnxIoSB9fYUfPLI+THnXgzp7NV5QJN2qzMzLfigsQcg3oyo6F2h7Yzwv +GkjlualIRRzCPaCw4Btkp7qkPvbs1QngIHALt8fD1N69P3DPHkTwjG4COjKWgnJq +qoHKS6Fe/ZlbigikI6KsuwKBgQCTlSLoyGRHr6oj0hqz01EDK9ciMJzMkZp0Kvn8 +OKxlBxYW+jlzut4MQBdgNYtS2qInxUoAnaz2+hauqhSzntK3k955GznpUatCqx0R +b857vWviwPX2/P6+E3GPdl8IVsKXCvGWOBZWTuNTjQtwbDzsUepWoMgXnlQJSn5I +YSlLxQKBgQD16Gw9kajpKlzsPa6XoQeGmZALT6aKWJQlrKtUQIrsIWM0Z6eFtX12 +2jjHZ0awuCQ4ldqwl8IfRogWMBkHOXjTPVK0YKWWlxMpD/5+bGPARa5fir8O1Zpo +Y6S6MeZ69Rp89ma4ttMZ+kwi1+XyHqC/dlcVRW42Zl5Dc7BALRlJjQ== +-----END RSA PRIVATE KEY-----" + +describe Chef::ServerAPI do + let(:url) { "http://chef.example.com:4000" } + let(:key_path) { "/tmp/foo" } + + describe "#initialize" do + it "uses the configured key file" do + allow(IO).to receive(:read).with(key_path).and_return(SIGNING_KEY_DOT_PEM) + Chef::Config[:client_key] = key_path + + api = described_class.new(url) + expect(api.options[:signing_key_filename]).to eql(key_path) + end + + it "allows a user to set a raw_key" do + api = described_class.new(url, raw_key: SIGNING_KEY_DOT_PEM) + expect(api.options[:signing_key_filename]).to be_nil + expect(api.options[:raw_key]).to eql(SIGNING_KEY_DOT_PEM) + end + end +end |