puppet-swift/spec/classes/swift_keystone_auth_spec.rb

require 'spec_helper'

describe 'swift::keystone::auth' do

  describe 'with default class parameters' do

    it { should contain_keystone_user('swift').with(
      :ensure   => 'present',
      :password => 'swift_password'
    ) }

    it { should contain_keystone_user_role('swift@services').with(
      :ensure  => 'present',
      :roles   => 'admin',
      :require => 'Keystone_user[swift]'
    )}

    it { should contain_keystone_service('swift').with(
      :ensure      => 'present',
      :type        => 'object-store',
      :description => 'Openstack Object-Store Service'
    ) }

    it { should contain_keystone_endpoint('RegionOne/swift').with(
      :ensure       => 'present',
      :public_url   => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s",
      :admin_url    => "http://127.0.0.1:8080/",
      :internal_url => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s"
    ) }

    it { should contain_keystone_service('swift_s3').with(
      :ensure      => 'present',
      :type        => 's3',
      :description => 'Openstack S3 Service'
    ) }

    it { should contain_keystone_endpoint('RegionOne/swift_s3').with(
      :ensure       => 'present',
      :public_url   => 'http://127.0.0.1:8080',
      :admin_url    => 'http://127.0.0.1:8080',
      :internal_url => 'http://127.0.0.1:8080'
    ) }

    ['admin', 'SwiftOperator'].each do |role_name|
      it { should contain_keystone_role(role_name).with_ensure('present') }
    end
  end

  describe 'overriding public_port public_protocol, admin_protocol and internal_protocol' do

    let :params do
      {
        :port              => '443',
        :public_protocol   => 'https',
        :admin_protocol    => 'https',
        :internal_protocol => 'https',
      }
    end

    it { should contain_keystone_endpoint('RegionOne/swift').with(
      :ensure       => 'present',
      :public_url   => "https://127.0.0.1:443/v1/AUTH_%(tenant_id)s",
      :admin_url    => "https://127.0.0.1:443/",
      :internal_url => "https://127.0.0.1:443/v1/AUTH_%(tenant_id)s"
    ) }

    it { should contain_keystone_endpoint('RegionOne/swift_s3').with(
      :ensure       => 'present',
      :public_url   => 'https://127.0.0.1:443',
      :admin_url    => 'https://127.0.0.1:443',
      :internal_url => 'https://127.0.0.1:443'
    ) }
  end

  describe 'when overriding public_port, public address, admin_address and internal_address' do

    let :params do
      {
        :public_port      => '80',
        :public_address   => '10.10.10.10',
        :admin_address    => '10.10.10.2',
        :internal_address => '127.0.0.1'
      }
    end

    it { should contain_keystone_endpoint('RegionOne/swift').with(
      :ensure       => 'present',
      :public_url   => "http://10.10.10.10:80/v1/AUTH_%(tenant_id)s",
      :admin_url    => "http://10.10.10.2:8080/",
      :internal_url => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s"
    ) }

    it { should contain_keystone_endpoint('RegionOne/swift_s3').with(
      :ensure       => 'present',
      :public_url   => 'http://10.10.10.10:80',
      :admin_url    => 'http://10.10.10.2:8080',
      :internal_url => 'http://127.0.0.1:8080'
    ) }


  end


  describe 'when overriding password' do

    let :params do
      {
        :password => 'foo'
      }
    end

    it { should contain_keystone_user('swift').with(
      :ensure   => 'present',
      :password => 'foo'
    ) }

  end

  describe 'when overriding auth name' do

    let :params do
      {
        :auth_name => 'swifty'
      }
    end

    it { should contain_keystone_user('swifty') }

    it { should contain_keystone_user_role('swifty@services') }

    it { should contain_keystone_service('swifty') }

    it { should contain_keystone_endpoint('RegionOne/swifty') }

    it { should contain_keystone_service('swifty_s3') }

    it { should contain_keystone_endpoint('RegionOne/swifty_s3') }

  end

  describe 'when overriding operator_roles' do

    let :params do
      {
        :operator_roles => 'foo',
      }
    end

    it { should contain_keystone_role('foo').with(
      :ensure       => 'present'
    ) }

  end
end
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`require 'spec_helper'`

			`describe 'swift::keystone::auth' do`

			`describe 'with default class parameters' do`

			`it { should contain_keystone_user('swift').with(`
			`:ensure => 'present',`
			`:password => 'swift_password'`
			`) }`

			`it { should contain_keystone_user_role('swift@services').with(`
			`:ensure => 'present',`
			`:roles => 'admin',`
			`:require => 'Keystone_user[swift]'`
			`)}`

			`it { should contain_keystone_service('swift').with(`
			`:ensure => 'present',`
			`:type => 'object-store',`
			`:description => 'Openstack Object-Store Service'`
			`) }`

Fixed tests 2012-11-15 11:46:05 +00:00			`it { should contain_keystone_endpoint('RegionOne/swift').with(`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`:ensure => 'present',`
			`:public_url => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s",`
Add address params to the swift::keystone::auth Fix bug 1170194 This patch contains: * add param admin_address and internal_address * fix tab misusing Change-Id: Id3865240a3d5d289c557fd8cc51d6f1d77057ed8 2013-04-18 12:12:51 +08:00			`:admin_url => "http://127.0.0.1:8080/",`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`:internal_url => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s"`
			`) }`

			`it { should contain_keystone_service('swift_s3').with(`
			`:ensure => 'present',`
			`:type => 's3',`
			`:description => 'Openstack S3 Service'`
			`) }`

Fixed tests 2012-11-15 11:46:05 +00:00			`it { should contain_keystone_endpoint('RegionOne/swift_s3').with(`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`:ensure => 'present',`
			`:public_url => 'http://127.0.0.1:8080',`
			`:admin_url => 'http://127.0.0.1:8080',`
			`:internal_url => 'http://127.0.0.1:8080'`
			`) }`
Create swift operator keystone roles Defining operator_roles in swift-proxy.conf requires that these roles exist in keystone. Because Keystone API access is not available on Swift proxy hosts in most cases, operator_roles keystone roles have been added to swift::keystone::auth class. Added basic docs for swift::keystone::auth Change-Id: Ib8454f8ae1316d2589ff228ec1424c6cff69c6b5 Closes-Bug: #1261662 2013-12-17 15:27:16 +04:00
			`['admin', 'SwiftOperator'].each do \|role_name\|`
			`it { should contain_keystone_role(role_name).with_ensure('present') }`
			`end`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`end`

Allow configuration of admin and internal protocols for keystone endpoint The public address is already configurable (http or https). This change introduces the possibility of also configuring admin and internal endpoint protocols as well. They are defaulted to http and therefore the change is non-breaking and backwards compatible. There was also no existing spec tests for overriding the public protocol, this is fixed in this commit. Change-Id: I1baafa444636729c4b73d2cca0753f6348fbd2a0 2014-01-17 15:35:50 -05:00			`describe 'overriding public_port public_protocol, admin_protocol and internal_protocol' do`

			`let :params do`
			`{`
			`:port => '443',`
			`:public_protocol => 'https',`
			`:admin_protocol => 'https',`
			`:internal_protocol => 'https',`
			`}`
			`end`

			`it { should contain_keystone_endpoint('RegionOne/swift').with(`
			`:ensure => 'present',`
			`:public_url => "https://127.0.0.1:443/v1/AUTH_%(tenant_id)s",`
			`:admin_url => "https://127.0.0.1:443/",`
			`:internal_url => "https://127.0.0.1:443/v1/AUTH_%(tenant_id)s"`
			`) }`

			`it { should contain_keystone_endpoint('RegionOne/swift_s3').with(`
			`:ensure => 'present',`
			`:public_url => 'https://127.0.0.1:443',`
			`:admin_url => 'https://127.0.0.1:443',`
			`:internal_url => 'https://127.0.0.1:443'`
			`) }`
			`end`

Add address params to the swift::keystone::auth Fix bug 1170194 This patch contains: * add param admin_address and internal_address * fix tab misusing Change-Id: Id3865240a3d5d289c557fd8cc51d6f1d77057ed8 2013-04-18 12:12:51 +08:00			`describe 'when overriding public_port, public address, admin_address and internal_address' do`
Allow to have a different internal port and public port 2012-12-20 11:58:10 +01:00
			`let :params do`
			`{`
Add address params to the swift::keystone::auth Fix bug 1170194 This patch contains: * add param admin_address and internal_address * fix tab misusing Change-Id: Id3865240a3d5d289c557fd8cc51d6f1d77057ed8 2013-04-18 12:12:51 +08:00			`:public_port => '80',`
			`:public_address => '10.10.10.10',`
			`:admin_address => '10.10.10.2',`
			`:internal_address => '127.0.0.1'`
Allow to have a different internal port and public port 2012-12-20 11:58:10 +01:00			`}`
			`end`

			`it { should contain_keystone_endpoint('RegionOne/swift').with(`
			`:ensure => 'present',`
Allow to have a different internal address and public address Change-Id: Id87323393a3bfd0ac3c9bc80fa2f46775e102eea 2013-01-21 10:30:18 +01:00			`:public_url => "http://10.10.10.10:80/v1/AUTH_%(tenant_id)s",`
Add address params to the swift::keystone::auth Fix bug 1170194 This patch contains: * add param admin_address and internal_address * fix tab misusing Change-Id: Id3865240a3d5d289c557fd8cc51d6f1d77057ed8 2013-04-18 12:12:51 +08:00			`:admin_url => "http://10.10.10.2:8080/",`
Allow to have a different internal port and public port 2012-12-20 11:58:10 +01:00			`:internal_url => "http://127.0.0.1:8080/v1/AUTH_%(tenant_id)s"`
			`) }`

			`it { should contain_keystone_endpoint('RegionOne/swift_s3').with(`
			`:ensure => 'present',`
Allow to have a different internal address and public address Change-Id: Id87323393a3bfd0ac3c9bc80fa2f46775e102eea 2013-01-21 10:30:18 +01:00			`:public_url => 'http://10.10.10.10:80',`
Add address params to the swift::keystone::auth Fix bug 1170194 This patch contains: * add param admin_address and internal_address * fix tab misusing Change-Id: Id3865240a3d5d289c557fd8cc51d6f1d77057ed8 2013-04-18 12:12:51 +08:00			`:admin_url => 'http://10.10.10.2:8080',`
Allow to have a different internal port and public port 2012-12-20 11:58:10 +01:00			`:internal_url => 'http://127.0.0.1:8080'`
			`) }`


			`end`


Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`describe 'when overriding password' do`

			`let :params do`
			`{`
			`:password => 'foo'`
			`}`
			`end`

			`it { should contain_keystone_user('swift').with(`
			`:ensure => 'present',`
			`:password => 'foo'`
Remove traling / from keystone admin_url endpoint Change-Id: I567c3dbb4f4e498365074fd64a5f70395c6f7cd7 2013-02-22 16:47:26 +01:00			`) }`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00
			`end`

			`describe 'when overriding auth name' do`

			`let :params do`
			`{`
			`:auth_name => 'swifty'`
			`}`
			`end`

			`it { should contain_keystone_user('swifty') }`

			`it { should contain_keystone_user_role('swifty@services') }`

			`it { should contain_keystone_service('swifty') }`

Fixed tests 2012-11-15 11:46:05 +00:00			`it { should contain_keystone_endpoint('RegionOne/swifty') }`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00
			`it { should contain_keystone_service('swifty_s3') }`

Fixed tests 2012-11-15 11:46:05 +00:00			`it { should contain_keystone_endpoint('RegionOne/swifty_s3') }`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00
			`end`

Create swift operator keystone roles Defining operator_roles in swift-proxy.conf requires that these roles exist in keystone. Because Keystone API access is not available on Swift proxy hosts in most cases, operator_roles keystone roles have been added to swift::keystone::auth class. Added basic docs for swift::keystone::auth Change-Id: Ib8454f8ae1316d2589ff228ec1424c6cff69c6b5 Closes-Bug: #1261662 2013-12-17 15:27:16 +04:00			`describe 'when overriding operator_roles' do`

			`let :params do`
			`{`
			`:operator_roles => 'foo',`
			`}`
			`end`

			`it { should contain_keystone_role('foo').with(`
			`:ensure => 'present'`
			`) }`

			`end`
Add tests for swift::keystone::auth Adds rspec-puppet tests for the swift::keystone::auth class. 2012-05-29 13:06:21 -07:00			`end`