IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

ipatests: Test for ipahealthcheck.ipa.files for TomcatFilecheck

Browse Source 
This test checks that healthcheck tools reports correct information
when permissions of Tomcat config file are modified.

Reviewed-By: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Florence Blanc-Renaud <flo@redhat.com>
Reviewed-By: Mohammad Rizwan Yusuf <myusuf@redhat.com>
This commit is contained in:
sumenon 2020-05-14 19:25:39 +05:30 committed by Florence Blanc-Renaud
parent 6a7fa03f91
commit ddd061c0b7
1 changed files with 37 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
ipatests/test_integration/test_ipahealthcheck.py
View File

@ -15,6 +15,7 @@ import pytest
from ipalib import api from ipalib import api
from ipapython.ipaldap import realm_to_serverid from ipapython.ipaldap import realm_to_serverid
from ipatests.pytest_ipa.integration import tasks from ipatests.pytest_ipa.integration import tasks
from ipaplatform.paths import paths
from ipatests.test_integration.base import IntegrationTest from ipatests.test_integration.base import IntegrationTest
HEALTHCHECK_LOG = "/var/log/ipa/healthcheck/healthcheck.log" HEALTHCHECK_LOG = "/var/log/ipa/healthcheck/healthcheck.log"
@ -111,6 +112,12 @@ DEFAULT_PKI_KRA_CERTS = [
"auditSigningCert cert-pki-kra", "auditSigningCert cert-pki-kra",
] ]
TOMCAT_CONFIG_FILES = (
paths.PKI_TOMCAT_PASSWORD_CONF,
paths.PKI_TOMCAT_SERVER_XML,
paths.CA_CS_CFG_PATH,
)
def run_healthcheck(host, source=None, check=None, output_type="json", def run_healthcheck(host, source=None, check=None, output_type="json",
failures_only=False): failures_only=False):
@ -595,6 +602,36 @@ class TestIpaHealthCheck(IntegrationTest):
ruvs.remove(check["kw"]["ruv"]) ruvs.remove(check["kw"]["ruv"])
assert not ruvs assert not ruvs
@pytest.fixture
def change_tomcat_mode(self):
for files in TOMCAT_CONFIG_FILES:
self.master.run_command(["chmod", "600", files])
yield
for files in TOMCAT_CONFIG_FILES:
self.master.run_command(["chmod", "660", files])
def test_ipa_healthcheck_tomcatfilecheck(self, change_tomcat_mode):
"""
This testcase changes the permissions of the tomcat configuration file
on an IPA Master and then checks if healthcheck tools reports the ERROR
"""
returncode, data = run_healthcheck(
self.master, "ipahealthcheck.ipa.files", "TomcatFileCheck"
)
assert returncode == 1
for check in data:
if check["kw"]["type"] == "mode":
assert check["kw"]["expected"] == "0660"
assert check["kw"]["got"] == "0600"
assert check["result"] == "ERROR"
assert check["kw"]["path"] in TOMCAT_CONFIG_FILES
assert (
check["kw"]["msg"]
== "Permissions of %s are too restrictive: "
"0600 and should be 0660"
% check["kw"]["path"]
)
def test_ipa_healthcheck_without_trust_setup(self): def test_ipa_healthcheck_without_trust_setup(self):
""" """
This testcase checks that when trust isn't setup between IPA This testcase checks that when trust isn't setup between IPA