123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246 |
- # -*- coding: utf-8 -*-
- '''
- integration tests for shadow linux
- '''
- # Import Python libs
- from __future__ import absolute_import, unicode_literals, print_function
- import random
- import string
- import os
- import pytest
- # Import Salt Testing libs
- from tests.support.case import ModuleCase
- from tests.support.unit import skipIf
- from tests.support.helpers import flaky
- # Import Salt libs
- import salt.utils.files
- import salt.utils.platform
- import salt.modules.shadow
- from salt.ext.six.moves import range
- @pytest.mark.skip_if_not_root
- @skipIf(not salt.utils.platform.is_linux(), 'These tests can only be run on linux')
- @pytest.mark.windows_whitelisted
- class ShadowModuleTest(ModuleCase):
- '''
- Validate the linux shadow system module
- '''
- def setUp(self):
- '''
- Get current settings
- '''
- self._password = self.run_function('shadow.gen_password', ['Password1234'])
- if 'ERROR' in self._password:
- self.fail('Failed to generate password: {0}'.format(self._password))
- super(ShadowModuleTest, self).setUp()
- os_grain = self.run_function('grains.item', ['kernel'])
- if os_grain['kernel'] not in 'Linux':
- self.skipTest(
- 'Test not applicable to \'{kernel}\' kernel'.format(
- **os_grain
- )
- )
- self._test_user = self.__random_string()
- self._no_user = self.__random_string()
- self._password = salt.modules.shadow.gen_password('Password1234')
- def __random_string(self, size=6):
- '''
- Generates a random username
- '''
- return 'tu-' + ''.join(
- random.choice(string.ascii_lowercase + string.digits)
- for x in range(size)
- )
- @pytest.mark.destructive_test
- def test_info(self):
- '''
- Test shadow.info
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- ret = self.run_function('shadow.info', [self._test_user])
- self.assertEqual(ret['name'], self._test_user)
- # User does not exist
- ret = self.run_function('shadow.info', [self._no_user])
- self.assertEqual(ret['name'], '')
- @pytest.mark.destructive_test
- def test_del_password(self):
- '''
- Test shadow.del_password
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.del_password', [self._test_user]))
- self.assertEqual(
- self.run_function('shadow.info', [self._test_user])['passwd'], '')
- # User does not exist
- self.assertFalse(self.run_function('shadow.del_password', [self._no_user]))
- @pytest.mark.destructive_test
- def test_set_password(self):
- '''
- Test shadow.set_password
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_password', [self._test_user, self._password]))
- # User does not exist
- self.assertFalse(self.run_function('shadow.set_password', [self._no_user, self._password]))
- @pytest.mark.destructive_test
- def test_set_inactdays(self):
- '''
- Test shadow.set_inactdays
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_inactdays', [self._test_user, 12]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_inactdays', [self._no_user, 12]))
- @pytest.mark.destructive_test
- def test_set_maxdays(self):
- '''
- Test shadow.set_maxdays
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_maxdays', [self._test_user, 12]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_maxdays', [self._no_user, 12]))
- @pytest.mark.destructive_test
- def test_set_mindays(self):
- '''
- Test shadow.set_mindays
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_mindays', [self._test_user, 12]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_mindays', [self._no_user, 12]))
- @flaky
- @pytest.mark.destructive_test
- def test_lock_password(self):
- '''
- Test shadow.lock_password
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- self.run_function('shadow.set_password', [self._test_user, self._password])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.lock_password', [self._test_user]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.lock_password', [self._no_user]))
- @pytest.mark.destructive_test
- def test_unlock_password(self):
- '''
- Test shadow.lock_password
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- self.run_function('shadow.set_password', [self._test_user, self._password])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.unlock_password', [self._test_user]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.unlock_password', [self._no_user]))
- @pytest.mark.destructive_test
- def test_set_warndays(self):
- '''
- Test shadow.set_warndays
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_warndays', [self._test_user, 12]))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_warndays', [self._no_user, 12]))
- @pytest.mark.destructive_test
- def test_set_date(self):
- '''
- Test shadow.set_date
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_date', [self._test_user, '2016-08-19']))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_date', [self._no_user, '2016-08-19']))
- @pytest.mark.destructive_test
- def test_set_expire(self):
- '''
- Test shadow.set_exipre
- '''
- self.addCleanup(self.run_function, 'user.delete', [self._test_user])
- self.run_function('user.add', [self._test_user])
- # Correct Functionality
- self.assertTrue(self.run_function('shadow.set_expire', [self._test_user, '2016-08-25']))
- # User does not exist (set_inactdays return None is user does not exist)
- self.assertFalse(self.run_function('shadow.set_expire', [self._no_user, '2016-08-25']))
- @pytest.mark.destructive_test
- def test_set_del_root_password(self):
- '''
- Test set/del password for root
- '''
- # saving shadow file
- if not os.access("/etc/shadow", os.R_OK | os.W_OK):
- self.skipTest('Could not save initial state of /etc/shadow')
- def restore_shadow_file(contents):
- # restore shadow file
- with salt.utils.files.fopen('/etc/shadow', 'w') as wfh:
- wfh.write(contents)
- with salt.utils.files.fopen('/etc/shadow', 'r') as rfh:
- contents = rfh.read()
- self.addCleanup(restore_shadow_file, contents)
- # set root password
- self.assertTrue(self.run_function('shadow.set_password', ['root', self._password]))
- self.assertEqual(self.run_function('shadow.info', ['root'])['passwd'], self._password)
- # delete root password
- self.assertTrue(self.run_function('shadow.del_password', ['root']))
- self.assertEqual(self.run_function('shadow.info', ['root'])['passwd'], '')
|