src/tests/multihost/basic/test_files.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78

"""Files test provider cases

:requirement: IDM-SSSD-REQ :: SSSD is default for local resolution
:casecomponent: sssd
:subsystemteam: sst_idm_sssd
:upstream: yes
:status: approved
"""
import pytest


def have_files_provider(multihost):
    cmd = multihost.master[0].run_command('man sssd-files | grep files', raiseonerr=False)
    return cmd.returncode == 0


def get_sss_entry(multihost, db, ent_name):
    cmd = multihost.master[0].run_command('getent %s -s sss %s' % (db, ent_name), raiseonerr=False)
    return cmd.returncode, cmd.stdout_text


def get_sss_user(multihost, username):
    return get_sss_entry(multihost, 'passwd', username)


@pytest.mark.usefixtures('enable_files_domain', 'files_domain_users_class')
class TestImplicitFilesProvider(object):
    """
    Test the files provider. This test runs the implicit files provider
    together with another domain to stick close to what users use in Fedora
    """
    @pytest.mark.converted('test_files.py', 'test_files__getent_does_not_handle_root')
    def test_files_does_not_handle_root(self, multihost):
        """
        :title: files: files provider does not handle root
        :id: 5aa5165d-379f-4fc6-b4ed-b32b66406d4f
        """
        if not have_files_provider(multihost):
            pytest.skip("Files Provider support isn't available, skipping")
        exit_status, _ = get_sss_user(multihost, 'root')
        assert exit_status == 2

    @pytest.mark.converted('test_files.py', 'test_files__simple_getent')
    def test_files_sanity(self, multihost):
        """
        :title: files: Test that the files provider can resolve a user
        :id: 242cd094-b04d-4857-981a-8624573dde84
        """
        if not have_files_provider(multihost):
            pytest.skip("Files Provider support isn't available, skipping")
        exit_status, _ = get_sss_user(multihost, 'lcl1')
        assert exit_status == 0

    @pytest.mark.converted('test_files.py', 'test_files__enumeration')
    def test_files_enumeration(self, multihost):
        """
        :title: files: Verify files provider do not enumerate
        :id: e6d922bf-3af2-4cea-8570-6dd9233da624
        :description: Since nss_files enumerates and libc would
         concatenate the results, the files provider of SSSD should
         not enumerate
        """
        if not have_files_provider(multihost):
            pytest.skip("Files Provider support isn't available, skipping")
        cmd = multihost.master[0].run_command('getent passwd -s sss')
        assert len(cmd.stdout_text) == 0

    @pytest.mark.converted('test_files.py', 'test_files__user_modify')
    def test_updated_homedir(self, multihost):
        """
        :title: files: Test that homedir is updated
        :id: a9a0a911-1818-40d1-b897-0397ef107fd4
        """
        if not have_files_provider(multihost):
            pytest.skip("Files Provider support isn't available, skipping")
        exit_status, output = get_sss_user(multihost, 'no_home_user')
        assert exit_status == 0
        assert ":/tmp:" in output