3c49f51c8f
In https://review.openstack.org/#/c/444622/7 the sshd_options and banner/motd are mutually exclusive. This patch, and the next patchset of that review, resolves the conflict. Related-Bug: 1668543 Change-Id: I1d09530d69e42c0c36311789166554a889e46556
193 lines
5.6 KiB
Ruby
193 lines
5.6 KiB
Ruby
# Copyright 2017 Red Hat, Inc.
|
|
# All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
#
|
|
# Unit tests for tripleo::profile::base::sshd
|
|
#
|
|
|
|
require 'spec_helper'
|
|
|
|
describe 'tripleo::profile::base::sshd' do
|
|
|
|
shared_examples_for 'tripleo::profile::base::sshd' do
|
|
|
|
context 'it should do nothing' do
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {}
|
|
})
|
|
is_expected.to_not contain_file('/etc/issue')
|
|
is_expected.to_not contain_file('/etc/issue.net')
|
|
is_expected.to_not contain_file('/etc/motd')
|
|
end
|
|
end
|
|
|
|
context 'it should do nothing with empty strings' do
|
|
let(:params) {{ :bannertext => '', :motd => '' }}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {}
|
|
})
|
|
is_expected.to_not contain_file('/etc/issue')
|
|
is_expected.to_not contain_file('/etc/issue.net')
|
|
is_expected.to_not contain_file('/etc/motd')
|
|
end
|
|
end
|
|
|
|
context 'with issue and issue.net configured' do
|
|
let(:params) {{ :bannertext => 'foo' }}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {
|
|
'Banner' => '/etc/issue.net'
|
|
}
|
|
})
|
|
is_expected.to contain_file('/etc/issue').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to contain_file('/etc/issue.net').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to_not contain_file('/etc/motd')
|
|
end
|
|
end
|
|
|
|
context 'with motd configured' do
|
|
let(:params) {{ :motd => 'foo' }}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {
|
|
'PrintMotd' => 'yes'
|
|
}
|
|
})
|
|
is_expected.to contain_file('/etc/motd').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to_not contain_file('/etc/issue')
|
|
is_expected.to_not contain_file('/etc/issue.net')
|
|
end
|
|
end
|
|
|
|
context 'with options configured' do
|
|
let(:params) {{ :options => {'X11Forwarding' => 'no'} }}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {
|
|
'X11Forwarding' => 'no'
|
|
}
|
|
})
|
|
is_expected.to_not contain_file('/etc/motd')
|
|
is_expected.to_not contain_file('/etc/issue')
|
|
is_expected.to_not contain_file('/etc/issue.net')
|
|
end
|
|
end
|
|
|
|
context 'with motd and issue configured' do
|
|
let(:params) {{
|
|
:bannertext => 'foo',
|
|
:motd => 'foo'
|
|
}}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {
|
|
'Banner' => '/etc/issue.net',
|
|
'PrintMotd' => 'yes'
|
|
}
|
|
})
|
|
is_expected.to contain_file('/etc/motd').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to contain_file('/etc/issue').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to contain_file('/etc/issue.net').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
end
|
|
end
|
|
|
|
context 'with motd and issue and options configured' do
|
|
let(:params) {{
|
|
:bannertext => 'foo',
|
|
:motd => 'foo',
|
|
:options => {
|
|
'PrintMotd' => 'no', # this should be overridden
|
|
'X11Forwarding' => 'no'
|
|
}
|
|
}}
|
|
it do
|
|
is_expected.to contain_class('ssh::server').with({
|
|
'storeconfigs_enabled' => false,
|
|
'options' => {
|
|
'Banner' => '/etc/issue.net',
|
|
'PrintMotd' => 'yes',
|
|
'X11Forwarding' => 'no'
|
|
}
|
|
})
|
|
is_expected.to contain_file('/etc/motd').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to contain_file('/etc/issue').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
is_expected.to contain_file('/etc/issue.net').with({
|
|
'content' => 'foo',
|
|
'owner' => 'root',
|
|
'group' => 'root',
|
|
'mode' => '0644',
|
|
})
|
|
end
|
|
end
|
|
end
|
|
|
|
on_supported_os.each do |os, facts|
|
|
context "on #{os}" do
|
|
let (:facts) {
|
|
facts
|
|
}
|
|
it_behaves_like 'tripleo::profile::base::sshd'
|
|
end
|
|
end
|
|
end
|