c92454d239
This crontab is useful to run keystone-manage fernet_rotate command in a scheduled way. It doesn't take care of the distribution of keys when deploying Keystone on multinode environment but it's still useful to use it on single-node keystone deployments or when we have an external system to distribute the keys after running this command. Change-Id: I125e81d8cd130fadb8271f1b7bcdcf9794c79f47
106 lines
3.1 KiB
Ruby
106 lines
3.1 KiB
Ruby
require 'spec_helper'
|
|
|
|
describe 'keystone::cron::fernet_rotate' do
|
|
|
|
let :facts do
|
|
OSDefaults.get_facts({ :osfamily => 'Debian' })
|
|
end
|
|
|
|
let :params do
|
|
{ :ensure => 'present',
|
|
:minute => 1,
|
|
:hour => 0,
|
|
:monthday => '*',
|
|
:month => '*',
|
|
:weekday => '*',
|
|
:maxdelay => 0,
|
|
}
|
|
end
|
|
|
|
describe 'with default parameters' do
|
|
it 'configures a cron' do
|
|
is_expected.to contain_cron('keystone-manage fernet_rotate').with(
|
|
:ensure => params[:ensure],
|
|
:command => "keystone-manage fernet_rotate",
|
|
:environment => 'PATH=/bin:/usr/bin:/usr/sbin SHELL=/bin/sh',
|
|
:user => 'keystone',
|
|
:minute => params[:minute],
|
|
:hour => params[:hour],
|
|
:monthday => params[:monthday],
|
|
:month => params[:month],
|
|
:weekday => params[:weekday],
|
|
:require => 'Anchor[keystone::service::end]',
|
|
)
|
|
end
|
|
end
|
|
|
|
describe 'when specifying a maxdelay param' do
|
|
before :each do
|
|
params.merge!(
|
|
:maxdelay => 600
|
|
)
|
|
end
|
|
|
|
it 'configures a cron with delay' do
|
|
is_expected.to contain_cron('keystone-manage fernet_rotate').with(
|
|
:ensure => params[:ensure],
|
|
:command => "sleep `expr ${RANDOM} \\% #{params[:maxdelay]}`; keystone-manage fernet_rotate",
|
|
:environment => 'PATH=/bin:/usr/bin:/usr/sbin SHELL=/bin/sh',
|
|
:user => 'keystone',
|
|
:minute => params[:minute],
|
|
:hour => params[:hour],
|
|
:monthday => params[:monthday],
|
|
:month => params[:month],
|
|
:weekday => params[:weekday],
|
|
:require => 'Anchor[keystone::service::end]',
|
|
)
|
|
end
|
|
end
|
|
|
|
describe 'when specifying a user param' do
|
|
let :params do
|
|
{
|
|
:user => 'keystonecustom'
|
|
}
|
|
end
|
|
|
|
it 'configures a cron with delay' do
|
|
is_expected.to contain_cron('keystone-manage fernet_rotate').with(
|
|
:ensure => 'present',
|
|
:command => 'keystone-manage fernet_rotate',
|
|
:environment => 'PATH=/bin:/usr/bin:/usr/sbin SHELL=/bin/sh',
|
|
:user => 'keystonecustom',
|
|
:minute => 1,
|
|
:hour => 0,
|
|
:monthday => '*',
|
|
:month => '*',
|
|
:weekday => '*',
|
|
:require => 'Anchor[keystone::service::end]',
|
|
)
|
|
end
|
|
end
|
|
|
|
describe 'when disabling cron job' do
|
|
before :each do
|
|
params.merge!(
|
|
:ensure => 'absent'
|
|
)
|
|
end
|
|
|
|
it 'configures a cron with delay' do
|
|
is_expected.to contain_cron('keystone-manage fernet_rotate').with(
|
|
:ensure => params[:ensure],
|
|
:command => "keystone-manage fernet_rotate",
|
|
:environment => 'PATH=/bin:/usr/bin:/usr/sbin SHELL=/bin/sh',
|
|
:user => 'keystone',
|
|
:minute => params[:minute],
|
|
:hour => params[:hour],
|
|
:monthday => params[:monthday],
|
|
:month => params[:month],
|
|
:weekday => params[:weekday],
|
|
:require => 'Anchor[keystone::service::end]',
|
|
)
|
|
end
|
|
end
|
|
end
|