openstack/puppet-keystone
Code Issues Proposed changes
Files
b07724affb05d661812ee73f76f10a9db100b561
puppet-keystone/spec/classes/keystone_policy_spec.rb
Takashi Kajinami 90b0277466 Allow purging policy files 
This change introduces the new purge_config parameter to the policy
class so that any policy rules not managed by puppet manifests can be
cleared.

Co-Authored-By: Martin Schuppert <mschuppert@redhat.com>
Depends-On: https://review.opendev.org/802305
Change-Id: Ic228fce771c936d8f9837c1e5f4d4403c7b24a9e
2021-09-04 22:10:41 +09:00

86 lines
2.5 KiB
Ruby
Raw Blame History

require 'spec_helper'
describe 'keystone::policy' do
shared_examples 'keystone::policy' do
context 'setup policy with parameters' do
let :params do
{
:enforce_scope => false,
:enforce_new_defaults => false,
:policy_path => '/etc/keystone/policy.yaml',
:policy_dirs => '/etc/keystone/policy.d',
:policies => {
'context_is_admin' => {
'key' => 'context_is_admin',
'value' => 'foo:bar'
}
}
}
end
it 'set up the policies' do
is_expected.to contain_openstacklib__policy('/etc/keystone/policy.yaml').with(
:policies => {
'context_is_admin' => {
'key' => 'context_is_admin',
'value' => 'foo:bar'
}
},
:policy_path => '/etc/keystone/policy.yaml',
:file_user => 'root',
:file_group => 'keystone',
:file_format => 'yaml',
:purge_config => false,
)
is_expected.to contain_oslo__policy('keystone_config').with(
:enforce_scope => false,
:enforce_new_defaults => false,
:policy_file => '/etc/keystone/policy.yaml',
:policy_dirs => '/etc/keystone/policy.d',
)
end
end
context 'with empty policies and purge_config enabled' do
let :params do
{
:enforce_scope => false,
:enforce_new_defaults => false,
:policy_path => '/etc/keystone/policy.yaml',
:policies => {},
:purge_config => true,
}
end
it 'set up the policies' do
is_expected.to contain_openstacklib__policy('/etc/keystone/policy.yaml').with(
:policies => {},
:policy_path => '/etc/keystone/policy.yaml',
:file_user => 'root',
:file_group => 'keystone',
:file_format => 'yaml',
:purge_config => true,
)
is_expected.to contain_oslo__policy('keystone_config').with(
:enforce_scope => false,
:enforce_new_defaults => false,
:policy_file => '/etc/keystone/policy.yaml',
)
end
end
end
on_supported_os({
:supported_os => OSDefaults.get_supported_os
}).each do |os,facts|
context "on #{os}" do
let (:facts) do
facts.merge!(OSDefaults.get_facts())
end
it_behaves_like 'keystone::policy'
end
end
end
View Git Blame Copy Permalink