diff options
Diffstat (limited to 'spec/unit/scan_access_control_spec.rb')
-rw-r--r-- | spec/unit/scan_access_control_spec.rb | 182 |
1 files changed, 182 insertions, 0 deletions
diff --git a/spec/unit/scan_access_control_spec.rb b/spec/unit/scan_access_control_spec.rb new file mode 100644 index 0000000000..00e2e2669a --- /dev/null +++ b/spec/unit/scan_access_control_spec.rb @@ -0,0 +1,182 @@ +# Author:: Daniel DeLeo (<dan@opscode.com>) +# Copyright:: Copyright (c) 2012 Opscode, inc. +# License:: Apache License, Version 2.0 +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +require File.expand_path("../../spec_helper", __FILE__) +require 'chef/scan_access_control' + +describe Chef::ScanAccessControl do + + before do + @new_resource = Chef::Resource::File.new("/tmp/foo/bar/baz/qux") + @current_resource = Chef::Resource::File.new(@new_resource.path) + @scanner = Chef::ScanAccessControl.new(@new_resource, @current_resource) + end + + describe "when the fs entity does not exist" do + + before do + @new_resource.tap do |f| + f.owner("root") + f.group("root") + f.mode('0755') + end + @scanner.set_all! + end + + it "does not set any fields on the current resource" do + @current_resource.owner.should be_nil + @current_resource.group.should be_nil + @current_resource.mode.should be_nil + end + + end + + describe "when the fs entity exists" do + + before do + @stat = mock("File::Stat for #{@new_resource.path}", :uid => 0, :gid => 0, :mode => 00100644) + File.should_receive(:stat).with(@new_resource.path).and_return(@stat) + File.should_receive(:exist?).with(@new_resource.path).and_return(true) + end + + describe "when new_resource does not specify mode, user or group" do + # these tests are necessary for minitest-chef-handler to use as an API, see CHEF-3235 + before do + @scanner.set_all! + end + + it "sets the mode of the current resource to the current mode as a String" do + @current_resource.mode.should == "644" + end + + context "on unix", :unix_only do + it "sets the group of the current resource to the current group as a String" do + @current_resource.group.should == Etc.getgrgid(0).name + end + + it "sets the owner of the current resource to the current owner as a String" do + @current_resource.user.should == "root" + end + end + + context "on windows", :windows_only do + it "sets the group of the current resource to the current group as a String" do + @current_resource.group.should == 0 + end + + it "sets the owner of the current resource to the current owner as a String" do + @current_resource.user.should == 0 + end + end + end + + describe "when new_resource specifies the mode with a string" do + before do + @new_resource.mode("0755") + @scanner.set_all! + end + + it "sets the mode of the current resource to the file's current mode as a string" do + @current_resource.mode.should == "644" + end + end + + describe "when new_resource specified the mode with an integer" do + before do + @new_resource.mode(00755) + @scanner.set_all! + end + + it "sets the mode of the current resource to the current mode as an integer" do + @current_resource.mode.should == 00644 + end + + end + + describe "when new_resource specifies the user with a UID" do + + before do + @new_resource.user(0) + @scanner.set_all! + end + + it "sets the owner of current_resource to the UID of the current owner" do + @current_resource.user.should == 0 + end + end + + describe "when new_resource specifies the user with a username" do + + before do + @new_resource.user("root") + end + + it "sets the owner of current_resource to the username of the current owner" do + @root_passwd = mock("Struct::Passwd for uid 0", :name => "root") + Etc.should_receive(:getpwuid).with(0).and_return(@root_passwd) + @scanner.set_all! + + @current_resource.user.should == "root" + end + + describe "and there is no passwd entry for the user" do + it "sets the owner of the current_resource to the UID" do + Etc.should_receive(:getpwuid).with(0).and_raise(ArgumentError) + @scanner.set_all! + @current_resource.user.should == 0 + end + end + end + + describe "when new_resource specifies the group with a GID" do + + before do + @new_resource.group(0) + @scanner.set_all! + end + + it "sets the group of the current_resource to the gid of the current owner" do + @current_resource.group.should == 0 + end + + end + + describe "when new_resource specifies the group with a group name" do + before do + @new_resource.group("wheel") + end + + it "sets the group of the current resource to the group name" do + @group_entry = mock("Struct::Group for wheel", :name => "wheel") + Etc.should_receive(:getgrgid).with(0).and_return(@group_entry) + @scanner.set_all! + + @current_resource.group.should == "wheel" + end + + describe "and there is no group entry for the group" do + it "sets the current_resource's group to the GID" do + Etc.should_receive(:getgrgid).with(0).and_raise(ArgumentError) + @scanner.set_all! + @current_resource.group.should == 0 + end + end + + end + end +end + |