salt/tests/integration/daemons/test_masterapi.py

# -*- coding: utf-8 -*-

# Import Python libs
from __future__ import absolute_import
import os
import shutil
import stat

# Import Salt Testing libs
from tests.support.case import ShellCase
from tests.support.paths import TMP, INTEGRATION_TEST_DIR

# Import 3rd-party libs

# Import Salt libs
import salt.utils.files


# all read, only owner write
autosign_file_permissions = stat.S_IRUSR | stat.S_IRGRP | stat.S_IROTH | stat.S_IWUSR
autosign_file_path = os.path.join(TMP, 'rootdir', 'autosign_file')


class AutosignGrainsTest(ShellCase):
    '''
    Test autosigning minions based on grain values.
    '''

    def setUp(self):
        shutil.copyfile(
            os.path.join(INTEGRATION_TEST_DIR, 'files', 'autosign_grains', 'autosign_file'),
            autosign_file_path
        )
        os.chmod(autosign_file_path, autosign_file_permissions)

        self.run_key('-d minion -y')
        self.run_call('test.ping -l quiet')  # get minon to try to authenticate itself again

        if 'minion' in self.run_key('-l acc'):
            self.skipTest('Could not deauthorize minion')
        if 'minion' not in self.run_key('-l un'):
            self.skipTest('minion did not try to reauthenticate itself')

        self.autosign_grains_dir = os.path.join(self.master_opts['autosign_grains_dir'])
        if not os.path.isdir(self.autosign_grains_dir):
            os.makedirs(self.autosign_grains_dir)

    def tearDown(self):
        shutil.copyfile(
            os.path.join(INTEGRATION_TEST_DIR, 'files', 'autosign_file'),
            autosign_file_path
        )
        os.chmod(autosign_file_path, autosign_file_permissions)
        
        self.run_call('test.ping -l quiet')  # get minon to authenticate itself again

        if os.path.isdir(self.autosign_grains_dir):
            shutil.rmtree(self.autosign_grains_dir)

    def test_autosign_grains_accept(self):
        grain_file_path = os.path.join(self.autosign_grains_dir, 'test_grain')
        with salt.utils.files.fopen(grain_file_path, 'w') as f:
            f.write('#invalid_value\ncheese')
        os.chmod(grain_file_path, autosign_file_permissions)

        self.run_call('test.ping -l quiet')  # get minon to try to authenticate itself again
        self.assertIn('minion', self.run_key('-l acc'))

    def test_autosign_grains_fail(self):
        grain_file_path = os.path.join(self.autosign_grains_dir, 'test_grain')
        with salt.utils.files.fopen(grain_file_path, 'w') as f:
            f.write('#cheese\ninvalid_value')
        os.chmod(grain_file_path, autosign_file_permissions)

        self.run_call('test.ping -l quiet')  # get minon to try to authenticate itself again
        self.assertNotIn('minion', self.run_key('-l acc'))
        self.assertIn('minion', self.run_key('-l un'))
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00			`# -- coding: utf-8 --`

			`# Import Python libs`
			`from __future__ import absolute_import`
			`import os`
			`import shutil`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`import stat`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
			`# Import Salt Testing libs`
			`from tests.support.case import ShellCase`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`from tests.support.paths import TMP, INTEGRATION_TEST_DIR`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
			`# Import 3rd-party libs`

			`# Import Salt libs`
			`import salt.utils.files`


Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`# all read, only owner write`
			`autosign_file_permissions = stat.S_IRUSR \| stat.S_IRGRP \| stat.S_IROTH \| stat.S_IWUSR`
			`autosign_file_path = os.path.join(TMP, 'rootdir', 'autosign_file')`


Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00			`class AutosignGrainsTest(ShellCase):`
			`'''`
			`Test autosigning minions based on grain values.`
			`'''`

Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`def setUp(self):`
			`shutil.copyfile(`
			`os.path.join(INTEGRATION_TEST_DIR, 'files', 'autosign_grains', 'autosign_file'),`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`autosign_file_path`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`)`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`os.chmod(autosign_file_path, autosign_file_permissions)`

Added -y option to salt-key calls 2017-10-18 19:29:17 +00:00			`self.run_key('-d minion -y')`
Run test.ping quiet 2017-10-19 00:14:36 +00:00			`self.run_call('test.ping -l quiet') # get minon to try to authenticate itself again`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`if 'minion' in self.run_key('-l acc'):`
			`self.skipTest('Could not deauthorize minion')`
			`if 'minion' not in self.run_key('-l un'):`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`self.skipTest('minion did not try to reauthenticate itself')`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`self.autosign_grains_dir = os.path.join(self.master_opts['autosign_grains_dir'])`
			`if not os.path.isdir(self.autosign_grains_dir):`
			`os.makedirs(self.autosign_grains_dir)`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`def tearDown(self):`
			`shutil.copyfile(`
			`os.path.join(INTEGRATION_TEST_DIR, 'files', 'autosign_file'),`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`autosign_file_path`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`)`
Fix test autosign_file permissions 2017-10-19 00:09:27 +00:00			`os.chmod(autosign_file_path, autosign_file_permissions)`
More quiet test.pings 2017-10-19 00:22:34 +00:00
			`self.run_call('test.ping -l quiet') # get minon to authenticate itself again`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`if os.path.isdir(self.autosign_grains_dir):`
			`shutil.rmtree(self.autosign_grains_dir)`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`def test_autosign_grains_accept(self):`
Fix autosign_grains file permissions in test 2017-10-19 00:19:16 +00:00			`grain_file_path = os.path.join(self.autosign_grains_dir, 'test_grain')`
			`with salt.utils.files.fopen(grain_file_path, 'w') as f:`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`f.write('#invalid_value\ncheese')`
Fix autosign_grains file permissions in test 2017-10-19 00:19:16 +00:00			`os.chmod(grain_file_path, autosign_file_permissions)`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
More quiet test.pings 2017-10-19 00:22:34 +00:00			`self.run_call('test.ping -l quiet') # get minon to try to authenticate itself again`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`self.assertIn('minion', self.run_key('-l acc'))`

			`def test_autosign_grains_fail(self):`
Fix autosign_grains file permissions in test 2017-10-19 00:19:16 +00:00			`grain_file_path = os.path.join(self.autosign_grains_dir, 'test_grain')`
			`with salt.utils.files.fopen(grain_file_path, 'w') as f:`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00			`f.write('#cheese\ninvalid_value')`
Fix autosign_grains file permissions in test 2017-10-19 00:19:16 +00:00			`os.chmod(grain_file_path, autosign_file_permissions)`
Moved autosign grains integration tests to its own file 2017-10-18 18:58:36 +00:00
More quiet test.pings 2017-10-19 00:22:34 +00:00			`self.run_call('test.ping -l quiet') # get minon to try to authenticate itself again`
Changed integration tests to use autosign_file to authenticate minions 2017-10-18 22:03:06 +00:00			`self.assertNotIn('minion', self.run_key('-l acc'))`
			`self.assertIn('minion', self.run_key('-l un'))`