nee2c
/
salt
spogulis no https://github.com/nee2c/salt.git


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246
							# -*- coding: utf-8 -*-
'''
integration tests for shadow linux
'''

# Import Python libs
from __future__ import absolute_import, unicode_literals, print_function
import random
import string
import os

import pytest

# Import Salt Testing libs
from tests.support.case import ModuleCase
from tests.support.unit import skipIf
from tests.support.helpers import flaky

# Import Salt libs
import salt.utils.files
import salt.utils.platform
import salt.modules.shadow
from salt.ext.six.moves import range


@pytest.mark.skip_if_not_root
@skipIf(not salt.utils.platform.is_linux(), 'These tests can only be run on linux')
@pytest.mark.windows_whitelisted
class ShadowModuleTest(ModuleCase):
    '''
    Validate the linux shadow system module
    '''

    def setUp(self):
        '''
        Get current settings
        '''
        self._password = self.run_function('shadow.gen_password', ['Password1234'])
        if 'ERROR' in self._password:
            self.fail('Failed to generate password: {0}'.format(self._password))
        super(ShadowModuleTest, self).setUp()
        os_grain = self.run_function('grains.item', ['kernel'])
        if os_grain['kernel'] not in 'Linux':
            self.skipTest(
                'Test not applicable to \'{kernel}\' kernel'.format(
                    **os_grain
                )
            )
        self._test_user = self.__random_string()
        self._no_user = self.__random_string()
        self._password = salt.modules.shadow.gen_password('Password1234')

    def __random_string(self, size=6):
        '''
        Generates a random username
        '''
        return 'tu-' + ''.join(
            random.choice(string.ascii_lowercase + string.digits)
            for x in range(size)
        )

    @pytest.mark.destructive_test
    def test_info(self):
        '''
        Test shadow.info
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        ret = self.run_function('shadow.info', [self._test_user])
        self.assertEqual(ret['name'], self._test_user)

        # User does not exist
        ret = self.run_function('shadow.info', [self._no_user])
        self.assertEqual(ret['name'], '')

    @pytest.mark.destructive_test
    def test_del_password(self):
        '''
        Test shadow.del_password
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.del_password', [self._test_user]))
        self.assertEqual(
            self.run_function('shadow.info', [self._test_user])['passwd'], '')

        # User does not exist
        self.assertFalse(self.run_function('shadow.del_password', [self._no_user]))

    @pytest.mark.destructive_test
    def test_set_password(self):
        '''
        Test shadow.set_password
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_password', [self._test_user, self._password]))

        # User does not exist
        self.assertFalse(self.run_function('shadow.set_password', [self._no_user, self._password]))

    @pytest.mark.destructive_test
    def test_set_inactdays(self):
        '''
        Test shadow.set_inactdays
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_inactdays', [self._test_user, 12]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_inactdays', [self._no_user, 12]))

    @pytest.mark.destructive_test
    def test_set_maxdays(self):
        '''
        Test shadow.set_maxdays
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_maxdays', [self._test_user, 12]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_maxdays', [self._no_user, 12]))

    @pytest.mark.destructive_test
    def test_set_mindays(self):
        '''
        Test shadow.set_mindays
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_mindays', [self._test_user, 12]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_mindays', [self._no_user, 12]))

    @flaky
    @pytest.mark.destructive_test
    def test_lock_password(self):
        '''
        Test shadow.lock_password
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])
        self.run_function('shadow.set_password', [self._test_user, self._password])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.lock_password', [self._test_user]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.lock_password', [self._no_user]))

    @pytest.mark.destructive_test
    def test_unlock_password(self):
        '''
        Test shadow.lock_password
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])
        self.run_function('shadow.set_password', [self._test_user, self._password])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.unlock_password', [self._test_user]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.unlock_password', [self._no_user]))

    @pytest.mark.destructive_test
    def test_set_warndays(self):
        '''
        Test shadow.set_warndays
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_warndays', [self._test_user, 12]))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_warndays', [self._no_user, 12]))

    @pytest.mark.destructive_test
    def test_set_date(self):
        '''
        Test shadow.set_date
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_date', [self._test_user, '2016-08-19']))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_date', [self._no_user, '2016-08-19']))

    @pytest.mark.destructive_test
    def test_set_expire(self):
        '''
        Test shadow.set_exipre
        '''
        self.addCleanup(self.run_function, 'user.delete', [self._test_user])
        self.run_function('user.add', [self._test_user])

        # Correct Functionality
        self.assertTrue(self.run_function('shadow.set_expire', [self._test_user, '2016-08-25']))

        # User does not exist (set_inactdays return None is user does not exist)
        self.assertFalse(self.run_function('shadow.set_expire', [self._no_user, '2016-08-25']))

    @pytest.mark.destructive_test
    def test_set_del_root_password(self):
        '''
        Test set/del password for root
        '''
        # saving shadow file
        if not os.access("/etc/shadow", os.R_OK | os.W_OK):
            self.skipTest('Could not save initial state of /etc/shadow')

        def restore_shadow_file(contents):
            # restore shadow file
            with salt.utils.files.fopen('/etc/shadow', 'w') as wfh:
                wfh.write(contents)

        with salt.utils.files.fopen('/etc/shadow', 'r') as rfh:
            contents = rfh.read()
        self.addCleanup(restore_shadow_file, contents)

        # set root password
        self.assertTrue(self.run_function('shadow.set_password', ['root', self._password]))
        self.assertEqual(self.run_function('shadow.info', ['root'])['passwd'], self._password)
        # delete root password
        self.assertTrue(self.run_function('shadow.del_password', ['root']))
        self.assertEqual(self.run_function('shadow.info', ['root'])['passwd'], '')