saltstack/salt
1
0
Fork 0
mirror of https://github.com/saltstack/salt.git synced 2025-04-17 10:10:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

migrate test_keystone to pytest

Browse source
This commit is contained in:
Frode Gundersen 2023-02-08 22:50:08 +00:00 committed by Pedro Algarvio
parent f86299810e
commit 687c4a9442
2 changed files with 958 additions and 1090 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

958
tests/pytests/unit/modules/test_keystone.py Normal file
View file

@ -0,0 +1,958 @@
"""
:codeauthor: Jayesh Kariya <jayeshk@saltstack.com>
Test cases for salt.modules.keystone
"""
import pytest
import salt.modules.config as config
import salt.modules.keystone as keystone
from tests.support.mock import MagicMock, call, patch
class MockEC2:
"""
Mock of EC2 class
"""
def __init__(self):
self.access = ""
self.secret = ""
self.tenant_id = ""
self.user_id = ""
self.connection_args = ""
self.profile = ""
@staticmethod
def create(userid, tenantid):
"""
Mock of create method
"""
cr_ec2 = MockEC2()
cr_ec2.tenant_id = tenantid
cr_ec2.user_id = userid
return cr_ec2
def delete(self, userid, accesskey):
"""
Mock of delete method
"""
self.access = accesskey
self.user_id = userid
return True
@staticmethod
def get(user_id, access, profile, **connection_args):
"""
Mock of get method
"""
cr_ec2 = MockEC2()
cr_ec2.profile = profile
cr_ec2.access = access
cr_ec2.user_id = user_id
cr_ec2.connection_args = connection_args
return cr_ec2
@staticmethod
def list(user_id):
"""
Mock of list method
"""
cr_ec2 = MockEC2()
cr_ec2.user_id = user_id
return [cr_ec2]
class MockEndpoints:
"""
Mock of Endpoints class
"""
def __init__(self):
self.id = "007"
self.region = "RegionOne"
self.adminurl = "adminurl"
self.internalurl = "internalurl"
self.publicurl = "publicurl"
self.service_id = "117"
@staticmethod
def list():
"""
Mock of list method
"""
return [MockEndpoints()]
@staticmethod
def create(region, service_id, publicurl, adminurl, internalurl):
"""
Mock of create method
"""
return (region, service_id, publicurl, adminurl, internalurl)
@staticmethod
def delete(id):
"""
Mock of delete method
"""
return id
class MockServices:
"""
Mock of Services class
"""
flag = None
def __init__(self):
self.id = "117"
self.name = "iptables"
self.description = "description"
self.type = "type"
@staticmethod
def create(name, service_type, description):
"""
Mock of create method
"""
service = MockServices()
service.id = "005"
service.name = name
service.description = description
service.type = service_type
return service
def get(self, service_id):
"""
Mock of get method
"""
service = MockServices()
if self.flag == 1:
service.id = "asd"
return [service]
elif self.flag == 2:
service.id = service_id
return service
return [service]
def list(self):
"""
Mock of list method
"""
service = MockServices()
if self.flag == 1:
service.id = "asd"
return [service]
return [service]
@staticmethod
def delete(service_id):
"""
Mock of delete method
"""
return service_id
class MockRoles:
"""
Mock of Roles class
"""
flag = None
def __init__(self):
self.id = "113"
self.name = "nova"
self.user_id = "446"
self.tenant_id = "a1a1"
@staticmethod
def create(name):
"""
Mock of create method
"""
return name
def get(self, role_id):
"""
Mock of get method
"""
role = MockRoles()
if self.flag == 1:
role.id = None
return role
role.id = role_id
return role
@staticmethod
def list():
"""
Mock of list method
"""
return [MockRoles()]
@staticmethod
def delete(role):
"""
Mock of delete method
"""
return role
@staticmethod
def add_user_role(user_id, role_id, tenant_id):
"""
Mock of add_user_role method
"""
return (user_id, role_id, tenant_id)
@staticmethod
def remove_user_role(user_id, role_id, tenant_id):
"""
Mock of remove_user_role method
"""
return (user_id, role_id, tenant_id)
@staticmethod
def roles_for_user(user, tenant):
"""
Mock of roles_for_user method
"""
role = MockRoles()
role.user_id = user
role.tenant_id = tenant
return [role]
class MockTenants:
"""
Mock of Tenants class
"""
flag = None
def __init__(self):
self.id = "446"
self.name = "nova"
self.description = "description"
self.enabled = "True"
@staticmethod
def create(name, description, enabled):
"""
Mock of create method
"""
tenant = MockTenants()
tenant.name = name
tenant.description = description
tenant.enabled = enabled
return tenant
def get(self, tenant_id):
"""
Mock of get method
"""
tenant = MockTenants()
if self.flag == 1:
tenant.id = None
return tenant
tenant.id = tenant_id
return tenant
@staticmethod
def list():
"""
Mock of list method
"""
return [MockTenants()]
@staticmethod
def delete(tenant_id):
"""
Mock of delete method
"""
return tenant_id
class MockServiceCatalog:
"""
Mock of ServiceCatalog class
"""
def __init__(self):
self.id = "446"
self.expires = "No"
self.user_id = "admin"
self.tenant_id = "ae04"
def get_token(self):
"""
Mock of get_token method
"""
return {
"id": self.id,
"expires": self.expires,
"user_id": self.user_id,
"tenant_id": self.tenant_id,
}
class MockUsers:
"""
Mock of Users class
"""
flag = None
def __init__(self):
self.id = "446"
self.name = "nova"
self.email = "salt@saltstack.com"
self.enabled = "True"
self.tenant_id = "a1a1"
self.password = "salt"
def create(self, name, password, email, tenant_id, enabled):
"""
Mock of create method
"""
user = MockUsers()
user.name = name
user.password = password
user.email = email
user.enabled = enabled
self.tenant_id = tenant_id
return user
def get(self, user_id):
"""
Mock of get method
"""
user = MockUsers()
if self.flag == 1:
user.id = None
return user
user.id = user_id
return user
@staticmethod
def list():
"""
Mock of list method
"""
return [MockUsers()]
@staticmethod
def delete(user_id):
"""
Mock of delete method
"""
return user_id
@staticmethod
def update(user, name, email, enabled):
"""
Mock of update method
"""
return (user, name, email, enabled)
@staticmethod
def update_password(user, password):
"""
Mock of update_password method
"""
return (user, password)
class Unauthorized(Exception):
"""
The base exception class for all exceptions.
"""
def __init__(self, message="Test"):
super().__init__(message)
self.msg = message
class AuthorizationFailure(Exception):
"""
Additional exception class to Unauthorized.
"""
def __init__(self, message="Test"):
super().__init__(message)
self.msg = message
class MockExceptions:
"""
Mock of exceptions class
"""
def __init__(self):
self.Unauthorized = Unauthorized
self.AuthorizationFailure = AuthorizationFailure
class MockKeystoneClient:
"""
Mock of keystoneclient module
"""
def __init__(self):
self.exceptions = MockExceptions()
class MockClient:
"""
Mock of Client class
"""
flag = None
def __init__(self, profile=None, **conn_args):
self.ec2 = MockEC2()
self.endpoints = MockEndpoints()
self.services = MockServices()
self.roles = MockRoles()
self.tenants = MockTenants()
self.service_catalog = MockServiceCatalog()
self.users = MockUsers()
def Client(self, **kwargs):
"""
Mock of Client method
"""
if self.flag == 1:
raise Unauthorized
return True
@pytest.fixture
def configure_loader_modules():
return {
keystone: {
"auth": MockClient,
"client": MockClient(),
"keystoneclient": MockKeystoneClient(),
"__salt__": {"config.get": config.get},
"__opts__": {},
},
config: {"__opts__": {}},
}
def test_ec2_credentials_create():
"""
Test if it create EC2-compatible credentials for user per tenant
"""
assert keystone.ec2_credentials_create() == {"Error": "Could not resolve User ID"}
assert keystone.ec2_credentials_create(user_id="salt") == {
"Error": "Could not resolve Tenant ID"
}
assert keystone.ec2_credentials_create(user_id="salt", tenant_id="72278") == {
"access": "",
"tenant_id": "72278",
"secret": "",
"user_id": "salt",
}
def test_ec2_credentials_delete():
"""
Test if it delete EC2-compatible credentials
"""
assert keystone.ec2_credentials_delete() == {"Error": "Could not resolve User ID"}
assert (
keystone.ec2_credentials_delete(user_id="salt", access_key="72278")
== 'ec2 key "72278" deleted under user id "salt"'
)
def test_ec2_credentials_get():
"""
Test if it return ec2_credentials for a user
(keystone ec2-credentials-get)
"""
assert keystone.ec2_credentials_get() == {"Error": "Unable to resolve user id"}
assert keystone.ec2_credentials_get(user_id="salt") == {
"Error": "Access key is required"
}
assert keystone.ec2_credentials_get(
user_id="salt", access="72278", profile="openstack1"
) == {
"salt": {
"access": "72278",
"secret": "",
"tenant": "",
"user_id": "salt",
}
}
def test_ec2_credentials_list():
"""
Test if it return a list of ec2_credentials
for a specific user (keystone ec2-credentials-list)
"""
assert keystone.ec2_credentials_list() == {"Error": "Unable to resolve user id"}
assert keystone.ec2_credentials_list(user_id="salt", profile="openstack1") == {
"salt": {"access": "", "secret": "", "tenant_id": "", "user_id": "salt"}
}
def test_endpoint_get():
"""
Test if it return a specific endpoint (keystone endpoint-get)
"""
assert keystone.endpoint_get("nova", "RegionOne", profile="openstack") == {
"Error": "Could not find the specified service"
}
ret = {"Error": "Could not find endpoint for the specified service"}
MockServices.flag = 1
assert keystone.endpoint_get("iptables", "RegionOne", profile="openstack") == ret
MockServices.flag = 0
assert keystone.endpoint_get("iptables", "RegionOne", profile="openstack") == {
"adminurl": "adminurl",
"id": "007",
"internalurl": "internalurl",
"publicurl": "publicurl",
"region": "RegionOne",
"service_id": "117",
}
def test_endpoint_list():
"""
Test if it return a list of available endpoints
(keystone endpoints-list)
"""
assert keystone.endpoint_list(profile="openstack1") == {
"007": {
"adminurl": "adminurl",
"id": "007",
"internalurl": "internalurl",
"publicurl": "publicurl",
"region": "RegionOne",
"service_id": "117",
}
}
def test_endpoint_create():
"""
Test if it create an endpoint for an Openstack service
"""
assert keystone.endpoint_create("nova") == {
"Error": "Could not find the specified service"
}
MockServices.flag = 2
assert keystone.endpoint_create(
"iptables",
"http://public/url",
"http://internal/url",
"http://adminurl/url",
"RegionOne",
) == {
"adminurl": "adminurl",
"id": "007",
"internalurl": "internalurl",
"publicurl": "publicurl",
"region": "RegionOne",
"service_id": "117",
}
def test_endpoint_delete():
"""
Test if it delete an endpoint for an Openstack service
"""
ret = {"Error": "Could not find any endpoints for the service"}
assert keystone.endpoint_delete("nova", "RegionOne") == ret
with patch.object(
keystone, "endpoint_get", MagicMock(side_effect=[{"id": "117"}, None])
):
assert keystone.endpoint_delete("iptables", "RegionOne")
def test_role_create():
"""
Test if it create named role
"""
assert keystone.role_create("nova") == {"Error": 'Role "nova" already exists'}
assert keystone.role_create("iptables") == {"Error": "Unable to resolve role id"}
def test_role_delete():
"""
Test if it delete a role (keystone role-delete)
"""
assert keystone.role_delete() == {"Error": "Unable to resolve role id"}
assert keystone.role_delete("iptables") == "Role ID iptables deleted"
def test_role_get():
"""
Test if it return a specific roles (keystone role-get)
"""
assert keystone.role_get() == {"Error": "Unable to resolve role id"}
assert keystone.role_get(name="nova") == {"nova": {"id": "113", "name": "nova"}}
def test_role_list():
"""
Test if it return a list of available roles (keystone role-list)
"""
assert keystone.role_list() == {
"nova": {
"id": "113",
"name": "nova",
"tenant_id": "a1a1",
"user_id": "446",
}
}
def test_service_create():
"""
Test if it add service to Keystone service catalog
"""
MockServices.flag = 2
assert keystone.service_create("nova", "compute", "OpenStack Service") == {
"iptables": {
"description": "description",
"id": "005",
"name": "iptables",
"type": "type",
}
}
def test_service_delete():
"""
Test if it delete a service from Keystone service catalog
"""
assert (
keystone.service_delete("iptables") == 'Keystone service ID "iptables" deleted'
)
def test_service_get():
"""
Test if it return a list of available services (keystone services-list)
"""
MockServices.flag = 0
assert keystone.service_get() == {"Error": "Unable to resolve service id"}
MockServices.flag = 2
assert keystone.service_get(service_id="c965") == {
"iptables": {
"description": "description",
"id": "c965",
"name": "iptables",
"type": "type",
}
}
def test_service_list():
"""
Test if it return a list of available services (keystone services-list)
"""
MockServices.flag = 0
assert keystone.service_list(profile="openstack1") == {
"iptables": {
"description": "description",
"id": "117",
"name": "iptables",
"type": "type",
}
}
def test_tenant_create():
"""
Test if it create a keystone tenant
"""
assert keystone.tenant_create("nova") == {
"nova": {
"description": "description",
"id": "446",
"name": "nova",
"enabled": "True",
}
}
def test_tenant_delete():
"""
Test if it delete a tenant (keystone tenant-delete)
"""
assert keystone.tenant_delete() == {"Error": "Unable to resolve tenant id"}
assert keystone.tenant_delete("nova") == "Tenant ID nova deleted"
def test_tenant_get():
"""
Test if it return a specific tenants (keystone tenant-get)
"""
assert keystone.tenant_get() == {"Error": "Unable to resolve tenant id"}
assert keystone.tenant_get(tenant_id="446") == {
"nova": {
"description": "description",
"id": "446",
"name": "nova",
"enabled": "True",
}
}
def test_tenant_list():
"""
Test if it return a list of available tenants (keystone tenants-list)
"""
assert keystone.tenant_list() == {
"nova": {
"description": "description",
"id": "446",
"name": "nova",
"enabled": "True",
}
}
def test_tenant_update():
"""
Test if it update a tenant's information (keystone tenant-update)
"""
assert keystone.tenant_update() == {"Error": "Unable to resolve tenant id"}
def test_token_get():
"""
Test if it return the configured tokens (keystone token-get)
"""
assert keystone.token_get() == {
"expires": "No",
"id": "446",
"tenant_id": "ae04",
"user_id": "admin",
}
def test_user_list():
"""
Test if it return a list of available users (keystone user-list)
"""
assert keystone.user_list() == {
"nova": {
"name": "nova",
"tenant_id": "a1a1",
"enabled": "True",
"id": "446",
"password": "salt",
"email": "salt@saltstack.com",
}
}
def test_user_get():
"""
Test if it return a specific users (keystone user-get)
"""
assert keystone.user_get() == {"Error": "Unable to resolve user id"}
assert keystone.user_get(user_id="446") == {
"nova": {
"name": "nova",
"tenant_id": "a1a1",
"enabled": "True",
"id": "446",
"password": "salt",
"email": "salt@saltstack.com",
}
}
def test_user_create():
"""
Test if it create a user (keystone user-create)
"""
assert keystone.user_create(
name="nova",
password="salt",
email="salt@saltstack.com",
tenant_id="a1a1",
) == {
"nova": {
"name": "nova",
"tenant_id": "a1a1",
"enabled": "True",
"id": "446",
"password": "salt",
"email": "salt@saltstack.com",
}
}
def test_user_delete():
"""
Test if it delete a user (keystone user-delete)
"""
assert keystone.user_delete() == {"Error": "Unable to resolve user id"}
assert keystone.user_delete("nova") == "User ID nova deleted"
def test_user_update():
"""
Test if it update a user's information (keystone user-update)
"""
assert keystone.user_update() == {"Error": "Unable to resolve user id"}
assert keystone.user_update("nova") == "Info updated for user ID nova"
def test_user_verify_password():
"""
Test if it verify a user's password
"""
mock = MagicMock(return_value="http://127.0.0.1:35357/v2.0")
with patch.dict(keystone.__salt__, {"config.option": mock}):
assert keystone.user_verify_password() == {
"Error": "Unable to resolve user name"
}
assert keystone.user_verify_password(user_id="446", name="nova")
MockClient.flag = 1
assert not keystone.user_verify_password(user_id="446", name="nova")
def test_user_password_update():
"""
Test if it update a user's password (keystone user-password-update)
"""
assert keystone.user_password_update() == {"Error": "Unable to resolve user id"}
assert keystone.user_password_update("nova") == "Password updated for user ID nova"
def test_user_role_add():
"""
Test if it add role for user in tenant (keystone user-role-add)
"""
assert (
keystone.user_role_add(user="nova", tenant="nova", role="nova")
== '"nova" role added for user "nova" for "nova" tenant/project'
)
MockRoles.flag = 1
assert keystone.user_role_add(user="nova", tenant="nova", role="nova") == {
"Error": "Unable to resolve role id"
}
MockTenants.flag = 1
assert keystone.user_role_add(user="nova", tenant="nova") == {
"Error": "Unable to resolve tenant/project id"
}
MockUsers.flag = 1
assert keystone.user_role_add(user="nova") == {"Error": "Unable to resolve user id"}
def test_user_role_remove():
"""
Test if it add role for user in tenant (keystone user-role-add)
"""
MockUsers.flag = 1
assert keystone.user_role_remove(user="nova") == {
"Error": "Unable to resolve user id"
}
MockUsers.flag = 0
MockTenants.flag = 1
assert keystone.user_role_remove(user="nova", tenant="nova") == {
"Error": "Unable to resolve tenant/project id"
}
MockTenants.flag = 0
MockRoles.flag = 1
assert keystone.user_role_remove(user="nova", tenant="nova", role="nova") == {
"Error": "Unable to resolve role id"
}
ret = '"nova" role removed for user "nova" under "nova" tenant'
MockRoles.flag = 0
assert keystone.user_role_remove(user="nova", tenant="nova", role="nova") == ret
def test_user_role_list():
"""
Test if it return a list of available user_roles
(keystone user-roles-list)
"""
assert keystone.user_role_list(user="nova") == {
"Error": "Unable to resolve user or tenant/project id"
}
assert keystone.user_role_list(user_name="nova", tenant_name="nova") == {
"nova": {
"id": "113",
"name": "nova",
"tenant_id": "446",
"user_id": "446",
}
}
def test_api_version_verify_ssl():
"""
test api_version when using verify_ssl
"""
test_verify = [True, False, None]
conn_args = {
"keystone.user": "admin",
"connection_password": "password",
"connection_tenant": "admin",
"connection_tenant_id": "id",
"connection_auth_url": "https://127.0.0.1/v2.0/",
"connection_verify_ssl": True,
}
http_ret = {"dict": {"version": {"id": "id_test"}}}
for verify in test_verify:
mock_http = MagicMock(return_value=http_ret)
patch_http = patch("salt.utils.http.query", mock_http)
conn_args["connection_verify_ssl"] = verify
if verify is None:
conn_args.pop("connection_verify_ssl")
verify = True
with patch_http:
ret = keystone.api_version(**conn_args)
assert mock_http.call_args_list == [
call(
"https://127.0.0.1/v2.0/",
decode=True,
decode_type="json",
verify_ssl=verify,
)
]

1090
tests/unit/modules/test_keystone.py
View file

File diff suppressed because it is too large Load diff