openstack/puppet-keystone
Code Issues Proposed changes
b8b8dfeb78
puppet-keystone/spec/defines/keystone_resource_service_user_spec.rb
Takashi Kajinami ea2fce5d4c Implement resource to configure parameters to use service token 
Recently we have service_token feature implemented in some OpenStack
services, like nova or cinder, to avoid problems in cross-compnent
interfaction caused by token expiration.

This patch introduces new class to configure required options
to use that feature.

Change-Id: I8ff7de2f59d7963130860f4a71596420e58ccb54
2019-06-24 09:26:31 +09:00

98 lines
4.9 KiB
Ruby
Raw Blame History

require 'spec_helper'
describe 'keystone::resource::service_user' do
let (:title) { 'keystone_config' }
let :params do
{ :username => 'keystone',
:password => 'secret',
:auth_url => 'http://127.0.0.1:5000',
:project_name => 'services' }
end
shared_examples 'shared examples' do
context 'with only required parameters' do
it 'configures keystone service_user' do
is_expected.to contain_keystone_config('service_user/username').with_value('keystone')
is_expected.to contain_keystone_config('service_user/password').with_value('secret').with_secret(true)
is_expected.to contain_keystone_config('service_user/auth_url').with_value( params[:auth_url] )
is_expected.to contain_keystone_config('service_user/project_name').with_value( params[:project_name] )
is_expected.to contain_keystone_config('service_user/project_domain_name').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/user_domain_name').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/send_service_user_token').with_value(false)
is_expected.to contain_keystone_config('service_user/insecure').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/auth_type').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/auth_version').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/cafile').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/certfile').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/keyfile').with_value('<SERVICE DEFAULT>')
is_expected.to contain_keystone_config('service_user/region_name').with_value('<SERVICE DEFAULT>')
end
end
context 'set all keystone service_user parameters' do
before do
params.merge! ({
:username => 'username',
:password => 'hardpassword',
:auth_url => 'http://127.1.1.127:5000/',
:project_name => 'NoProject',
:user_domain_name => 'MyDomain',
:project_domain_name => 'OurDomain',
:send_service_user_token => true,
:insecure => true,
:auth_type => 'password',
:auth_version => '3',
:cafile => 'cafile.pem',
:certfile => 'certfile.crt',
:keyfile => 'somekey.key',
:region_name => 'MyRegion',
})
end
it 'override keystone service_user parameters' do
is_expected.to contain_keystone_config('service_user/username').with_value(params[:username])
is_expected.to contain_keystone_config('service_user/password').with_value(params[:password]).with_secret(true)
is_expected.to contain_keystone_config('service_user/auth_url').with_value( params[:auth_url] )
is_expected.to contain_keystone_config('service_user/project_name').with_value( params[:project_name] )
is_expected.to contain_keystone_config('service_user/user_domain_name').with_value(params[:user_domain_name])
is_expected.to contain_keystone_config('service_user/project_domain_name').with_value(params[:project_domain_name])
is_expected.to contain_keystone_config('service_user/send_service_user_token').with_value(params[:send_service_user_token])
is_expected.to contain_keystone_config('service_user/insecure').with_value(params[:insecure])
is_expected.to contain_keystone_config('service_user/auth_version').with_value(params[:auth_version])
is_expected.to contain_keystone_config('service_user/cafile').with_value(params[:cafile])
is_expected.to contain_keystone_config('service_user/certfile').with_value(params[:certfile])
is_expected.to contain_keystone_config('service_user/keyfile').with_value(params[:keyfile])
is_expected.to contain_keystone_config('service_user/region_name').with_value(params[:region_name])
end
end
context 'without password required parameter' do
let :params do
params.delete(:password)
end
it { expect { is_expected.to raise_error(Puppet::Error) } }
end
context 'without specify project' do
let :params do
params.delete(:project_name)
end
it { expect { is_expected.to raise_error(Puppet::Error) } }
end
end
on_supported_os({
:supported_os => OSDefaults.get_supported_os
}).each do |os,facts|
context "on #{os}" do
let (:facts) do
facts.merge!(OSDefaults.get_facts())
end
include_examples 'shared examples'
end
end
end
View Git Blame Copy Permalink