RubyGems - chef - Versions diffs - 12.0.0.alpha.0-x86-mingw32 → 12.0.0.alpha.1-x86-mingw32 - Mend

chef 12.0.0.alpha.0-x86-mingw32 → 12.0.0.alpha.1-x86-mingw32

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (207) hide show

checksums.yaml +4 -4
data/CONTRIBUTING.md +3 -5
data/lib/chef/api_client.rb +1 -1
data/lib/chef/application.rb +16 -8
data/lib/chef/chef_fs/chef_fs_data_store.rb +1 -1
data/lib/chef/chef_fs/command_line.rb +1 -1
data/lib/chef/chef_fs/file_system.rb +1 -1
data/lib/chef/chef_fs/file_system/acl_entry.rb +1 -1
data/lib/chef/chef_fs/file_system/chef_repository_file_system_entry.rb +3 -3
data/lib/chef/chef_fs/file_system/cookbook_file.rb +2 -2
data/lib/chef/chef_fs/file_system/rest_list_dir.rb +2 -2
data/lib/chef/chef_fs/file_system/rest_list_entry.rb +4 -4
data/lib/chef/config.rb +6 -5
data/lib/chef/config_fetcher.rb +1 -1
data/lib/chef/cookbook/cookbook_version_loader.rb +126 -43
data/lib/chef/cookbook/metadata.rb +102 -53
data/lib/chef/cookbook/syntax_check.rb +1 -1
data/lib/chef/cookbook_loader.rb +62 -14
data/lib/chef/cookbook_site_streaming_uploader.rb +12 -1
data/lib/chef/cookbook_version.rb +13 -4
data/lib/chef/data_bag.rb +28 -15
data/lib/chef/data_bag_item.rb +5 -7
data/lib/chef/digester.rb +5 -9
data/lib/chef/dsl/recipe.rb +14 -0
data/lib/chef/encrypted_data_bag_item.rb +1 -0
data/lib/chef/encrypted_data_bag_item/assertions.rb +57 -0
data/lib/chef/encrypted_data_bag_item/decryptor.rb +52 -28
data/lib/chef/encrypted_data_bag_item/encrypted_data_bag_item_assertions.rb +37 -0
data/lib/chef/encrypted_data_bag_item/encryption_failure.rb +22 -0
data/lib/chef/encrypted_data_bag_item/encryptor.rb +79 -8
data/lib/chef/environment.rb +1 -3
data/lib/chef/exceptions.rb +18 -3
data/lib/chef/formatters/base.rb +7 -0
data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb +1 -1
data/lib/chef/handler/json_file.rb +0 -1
data/lib/chef/http/json_output.rb +1 -1
data/lib/chef/json_compat.rb +24 -6
data/lib/chef/knife/bootstrap.rb +2 -2
data/lib/chef/knife/client_delete.rb +1 -1
data/lib/chef/knife/cookbook_site_download.rb +1 -1
data/lib/chef/knife/cookbook_site_list.rb +1 -1
data/lib/chef/knife/cookbook_site_search.rb +1 -1
data/lib/chef/knife/cookbook_site_share.rb +2 -2
data/lib/chef/knife/cookbook_site_show.rb +3 -3
data/lib/chef/knife/cookbook_site_unshare.rb +1 -1
data/lib/chef/knife/core/node_editor.rb +2 -3
data/lib/chef/knife/core/ui.rb +2 -2
data/lib/chef/knife/deps.rb +2 -3
data/lib/chef/mixin/shell_out.rb +1 -1
data/lib/chef/mixin/windows_architecture_helper.rb +1 -0
data/lib/chef/node.rb +1 -2
data/lib/chef/platform/provider_mapping.rb +33 -6
data/lib/chef/provider.rb +0 -2
data/lib/chef/provider/cookbook_file/content.rb +1 -1
data/lib/chef/provider/cron.rb +11 -0
data/lib/chef/provider/deploy.rb +3 -2
data/lib/chef/provider/deploy/revision.rb +2 -2
data/lib/chef/provider/env.rb +1 -1
data/lib/chef/provider/env/windows.rb +5 -9
data/lib/chef/provider/file.rb +84 -33
data/lib/chef/provider/git.rb +2 -1
data/lib/chef/provider/group/aix.rb +17 -2
data/lib/chef/provider/group/dscl.rb +27 -9
data/lib/chef/provider/group/pw.rb +8 -1
data/lib/chef/provider/http_request.rb +4 -4
data/lib/chef/provider/log.rb +4 -14
data/lib/chef/provider/mount/mount.rb +2 -2
data/lib/chef/provider/package/ips.rb +17 -23
data/lib/chef/provider/package/paludis.rb +2 -2
data/lib/chef/provider/package/rpm.rb +2 -2
data/lib/chef/provider/package/rubygems.rb +2 -0
data/lib/chef/provider/package/yum.rb +2 -0
data/lib/chef/provider/package/zypper.rb +1 -1
data/lib/chef/provider/remote_file/cache_control_data.rb +2 -2
data/lib/chef/provider/service/windows.rb +87 -21
data/lib/chef/provider/user/aix.rb +95 -0
data/lib/chef/provider/user/dscl.rb +544 -156
data/lib/chef/provider/user/useradd.rb +1 -0
data/lib/chef/providers.rb +1 -0
data/lib/chef/resource.rb +4 -3
data/lib/chef/resource/freebsd_package.rb +10 -2
data/lib/chef/resource/paludis_package.rb +1 -0
data/lib/chef/resource/scm.rb +10 -0
data/lib/chef/resource/user.rb +27 -0
data/lib/chef/resource/windows_service.rb +53 -0
data/lib/chef/resource_collection.rb +23 -12
data/lib/chef/resource_reporter.rb +10 -10
data/lib/chef/resources.rb +1 -0
data/lib/chef/role.rb +3 -3
data/lib/chef/run_list.rb +6 -3
data/lib/chef/user.rb +1 -1
data/lib/chef/util/diff.rb +1 -2
data/lib/chef/version.rb +1 -1
data/lib/chef/version_constraint.rb +4 -4
data/spec/data/cookbooks/angrybash/metadata.rb +2 -0
data/spec/data/cookbooks/apache2/metadata.rb +2 -0
data/spec/data/cookbooks/borken/metadata.rb +2 -0
data/spec/data/cookbooks/ignorken/metadata.rb +2 -0
data/spec/data/cookbooks/java/metadata.rb +2 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/README.md +4 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/metadata.rb +8 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/recipes/default.rb +8 -0
data/spec/data/cookbooks/openldap/files/default/remotedir/not_a_template.erb +2 -0
data/spec/data/cookbooks/preseed/metadata.rb +2 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/README.md +4 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/metadata.rb +13 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/recipes/default.rb +8 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/README.md +4 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/metadata.rb +10 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/recipes/default.rb +8 -0
data/spec/data/mac_users/10.7-8.plist.xml +559 -0
data/spec/data/mac_users/10.7-8.shadow.xml +11 -0
data/spec/data/mac_users/10.7.plist.xml +559 -0
data/spec/data/mac_users/10.7.shadow.xml +11 -0
data/spec/data/mac_users/10.8.plist.xml +559 -0
data/spec/data/mac_users/10.8.shadow.xml +21 -0
data/spec/data/mac_users/10.9.plist.xml +560 -0
data/spec/data/mac_users/10.9.shadow.xml +21 -0
data/spec/data/object_loader/environments/test.json +2 -0
data/spec/data/object_loader/environments/test_json_class.json +2 -0
data/spec/data/object_loader/nodes/test.json +2 -0
data/spec/data/object_loader/nodes/test_json_class.json +2 -0
data/spec/data/object_loader/roles/test.json +2 -0
data/spec/data/object_loader/roles/test_json_class.json +2 -0
data/spec/functional/resource/bff_spec.rb +1 -1
data/spec/functional/resource/cron_spec.rb +20 -1
data/spec/functional/resource/env_spec.rb +137 -0
data/spec/functional/resource/group_spec.rb +7 -5
data/spec/functional/resource/remote_file_spec.rb +12 -1
data/spec/functional/resource/user/dscl_spec.rb +198 -0
data/spec/functional/resource/{user_spec.rb → user/useradd_spec.rb} +175 -37
data/spec/integration/client/client_spec.rb +6 -4
data/spec/integration/client/ipv6_spec.rb +16 -14
data/spec/integration/knife/chef_fs_data_store_spec.rb +57 -46
data/spec/integration/knife/chef_repo_path_spec.rb +105 -78
data/spec/integration/knife/chef_repository_file_system_spec.rb +100 -84
data/spec/integration/knife/chefignore_spec.rb +76 -46
data/spec/integration/knife/common_options_spec.rb +16 -21
data/spec/integration/knife/cookbook_api_ipv6_spec.rb +3 -3
data/spec/integration/knife/delete_spec.rb +66 -46
data/spec/integration/knife/deps_spec.rb +145 -94
data/spec/integration/knife/diff_spec.rb +176 -110
data/spec/integration/knife/download_spec.rb +229 -133
data/spec/integration/knife/list_spec.rb +62 -54
data/spec/integration/knife/raw_spec.rb +24 -9
data/spec/integration/knife/redirection_spec.rb +2 -2
data/spec/integration/knife/serve_spec.rb +2 -2
data/spec/integration/knife/show_spec.rb +32 -26
data/spec/integration/knife/upload_spec.rb +308 -165
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +10 -8
data/spec/integration/solo/solo_spec.rb +22 -11
data/spec/spec_helper.rb +3 -0
data/spec/support/lib/chef/resource/zen_follower.rb +46 -0
data/spec/support/platform_helpers.rb +12 -0
data/spec/support/shared/functional/file_resource.rb +10 -0
data/spec/support/shared/integration/chef_zero_support.rb +130 -0
data/spec/support/shared/integration/integration_helper.rb +100 -98
data/spec/support/shared/integration/knife_support.rb +0 -1
data/spec/support/shared/unit/provider/file.rb +6 -4
data/spec/support/shared/unit/provider/useradd_based_user_provider.rb +10 -1
data/spec/unit/api_client/registration_spec.rb +83 -74
data/spec/unit/application_spec.rb +32 -9
data/spec/unit/cookbook/cookbook_version_loader_spec.rb +179 -0
data/spec/unit/cookbook/metadata_spec.rb +190 -150
data/spec/unit/cookbook/syntax_check_spec.rb +3 -2
data/spec/unit/cookbook_loader_spec.rb +114 -53
data/spec/unit/{cookbook_site_streaming_uploader.rb → cookbook_site_streaming_uploader_spec.rb} +21 -1
data/spec/unit/data_bag_spec.rb +88 -13
data/spec/unit/deprecation_spec.rb +1 -2
data/spec/unit/encrypted_data_bag_item_spec.rb +145 -9
data/spec/unit/environment_spec.rb +1 -1
data/spec/unit/formatters/base_spec.rb +48 -0
data/spec/unit/json_compat_spec.rb +48 -17
data/spec/unit/knife/client_delete_spec.rb +4 -4
data/spec/unit/knife/client_show_spec.rb +15 -5
data/spec/unit/knife/cookbook_site_download_spec.rb +1 -1
data/spec/unit/knife/cookbook_site_share_spec.rb +3 -3
data/spec/unit/knife/data_bag_from_file_spec.rb +0 -2
data/spec/unit/knife/data_bag_show_spec.rb +23 -14
data/spec/unit/knife/node_show_spec.rb +32 -15
data/spec/unit/knife/role_show_spec.rb +59 -0
data/spec/unit/platform_spec.rb +10 -0
data/spec/unit/provider/deploy_spec.rb +4 -0
data/spec/unit/provider/env_spec.rb +19 -0
data/spec/unit/provider/git_spec.rb +22 -2
data/spec/unit/provider/group/dscl_spec.rb +38 -1
data/spec/unit/provider/group/pw_spec.rb +2 -2
data/spec/unit/provider/http_request_spec.rb +8 -8
data/spec/unit/provider/log_spec.rb +33 -53
data/spec/unit/provider/mount/mount_spec.rb +12 -3
data/spec/unit/provider/package/ips_spec.rb +96 -63
data/spec/unit/provider/package/paludis_spec.rb +5 -5
data/spec/unit/provider/package/rpm_spec.rb +12 -0
data/spec/unit/provider/package/zypper_spec.rb +28 -16
data/spec/unit/provider/service/windows_spec.rb +77 -17
data/spec/unit/provider/user/dscl_spec.rb +659 -264
data/spec/unit/provider/user/useradd_spec.rb +1 -0
data/spec/unit/recipe_spec.rb +41 -0
data/spec/unit/resource/scm_spec.rb +11 -0
data/spec/unit/resource/user_spec.rb +4 -0
data/spec/unit/resource/windows_service_spec.rb +46 -0
data/spec/unit/resource_collection_spec.rb +33 -0
data/spec/unit/resource_reporter_spec.rb +48 -0
data/spec/unit/resource_spec.rb +9 -2
data/spec/unit/role_spec.rb +6 -0
data/spec/unit/version_constraint_spec.rb +28 -0
metadata +61 -4

data/spec/functional/resource/{user_spec.rb → user/useradd_spec.rb} RENAMED

@@ -18,14 +18,24 @@
 #
 require 'spec_helper'
+require 'functional/resource/base'
 require 'chef/mixin/shell_out'
+def user_provider_for_platform
+  case ohai[:platform]
+  when "aix"
+    Chef::Provider::User::Aix
+  else
+    Chef::Provider::User::Useradd
+  end
+end
 metadata = { :unix_only => true,
   :requires_root => true,
-  :provider => {:user => Chef::Provider::User::Useradd}
+  :provider => {:user => user_provider_for_platform}
 }
-describe Chef::Resource::User, metadata do
+describe Chef::Provider::User::Useradd, metadata do
   include Chef::Mixin::ShellOut
@@ -46,15 +56,27 @@ describe Chef::Resource::User, metadata do
   end
   def etc_shadow
-    File.open("/etc/shadow") {|f| f.read }
+    case ohai[:platform]
+    when "aix"
+      File.open("/etc/security/passwd") {|f| f.read }
+    else
+      File.open("/etc/shadow") {|f| f.read }
+    end
   end
   def supports_quote_in_username?
     OHAI_SYSTEM["platform_family"] == "debian"
   end
+  def password_should_be_set
+    if ohai[:platform] == "aix"
+      pw_entry.passwd.should == "!"
+    else
+      pw_entry.passwd.should == "x"
+    end
+  end
   before do
-    pending "porting implementation for user provider in aix" if OHAI_SYSTEM[:platform] == 'aix'
     # Silence shell_out live stream
     Chef::Log.level = :warn
   end
@@ -62,7 +84,7 @@ describe Chef::Resource::User, metadata do
   after do
     begin
       pw_entry # will raise if the user doesn't exist
-      shell_out!("userdel", "-f", "-r", username, :returns => [0,12])
+      shell_out!("userdel", "-r", username, :returns => [0,12])
     rescue UserNotFound
       # nothing to remove
     end
@@ -83,7 +105,7 @@ describe Chef::Resource::User, metadata do
   end
   let(:username) do
-    "chef-functional-test"
+    "cf-test"
   end
   let(:uid) { nil }
@@ -105,6 +127,14 @@ describe Chef::Resource::User, metadata do
     r
   end
+  let(:expected_shadow) do
+    if ohai[:platform] == "aix"
+      expected_shadow = "cf-test"  # For aix just check user entry in shadow file
+    else
+      expected_shadow = "cf-test:$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+    end
+  end
   let(:skip) { false }
   describe "action :create" do
@@ -218,10 +248,17 @@ describe Chef::Resource::User, metadata do
       context "when a password is specified" do
         # openssl passwd -1 "secretpassword"
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         it "sets the user's shadow password" do
-          pw_entry.passwd.should == "x"
-          expected_shadow = "chef-functional-test:$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          password_should_be_set
           etc_shadow.should include(expected_shadow)
         end
       end
@@ -229,14 +266,21 @@ describe Chef::Resource::User, metadata do
       context "when a system user is specified" do
         let(:system) { true }
         let(:uid_min) do
-          # from `man useradd`, login user means uid will be between
-          # UID_SYS_MIN and UID_SYS_MAX defined in /etc/login.defs. On my
-          # Ubuntu 13.04 system, these are commented out, so we'll look at
-          # UID_MIN to find the lower limit of the non-system-user range, and
-          # use that value in our assertions.
-          login_defs = File.open("/etc/login.defs", "rb") {|f| f.read }
-          uid_min_scan = /^UID_MIN\s+(\d+)/
-          login_defs.match(uid_min_scan)[1]
+          case ohai[:platform]
+          when "aix"
+            # UIDs and GIDs below 100 are typically reserved for system accounts and services
+            # http://www.ibm.com/developerworks/aix/library/au-satuidgid/
+            100
+          else
+            # from `man useradd`, login user means uid will be between
+            # UID_SYS_MIN and UID_SYS_MAX defined in /etc/login.defs. On my
+            # Ubuntu 13.04 system, these are commented out, so we'll look at
+            # UID_MIN to find the lower limit of the non-system-user range, and
+            # use that value in our assertions.
+            login_defs = File.open("/etc/login.defs", "rb") {|f| f.read }
+            uid_min_scan = /^UID_MIN\s+(\d+)/
+            login_defs.match(uid_min_scan)[1]
+          end
         end
         it "ensures the user has the properties of a system user" do
@@ -284,7 +328,15 @@ describe Chef::Resource::User, metadata do
         let(:home) { "/home/bobo" }
         let(:manage_home) { true }
         # openssl passwd -1 "secretpassword"
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         let(:system) { false }
         let(:comment) { "hello this is dog" }
@@ -347,6 +399,11 @@ describe Chef::Resource::User, metadata do
               File.should_not exist("/home/foo")
               File.should exist("/home/bar")
             end
+          elsif ohai[:platform] == "aix"
+            it "creates the home dir in the desired location" do
+              File.should_not exist("/home/foo")
+              File.should exist("/home/bar")
+            end
           else
             it "does not create the home dir in the desired location (XXX)" do
               # This behavior seems contrary to expectation and non-convergent.
@@ -370,11 +427,18 @@ describe Chef::Resource::User, metadata do
       context "and a password is added" do
         # openssl passwd -1 "secretpassword"
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         it "ensures the password is set" do
-          pw_entry.passwd.should == "x"
-          expected_shadow = "chef-functional-test:$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          password_should_be_set
           etc_shadow.should include(expected_shadow)
         end
@@ -382,13 +446,28 @@ describe Chef::Resource::User, metadata do
       context "and the password is updated" do
         # openssl passwd -1 "OLDpassword"
-        let(:existing_password) { "$1$1dVmwm4z$CftsFn8eBDjDRUytYKkXB." }
+        let(:existing_password) do
+          case ohai[:platform]
+          when "aix"
+            "jkzG6MvUxjk2g"
+          else
+            "$1$1dVmwm4z$CftsFn8eBDjDRUytYKkXB."
+          end
+        end
         # openssl passwd -1 "secretpassword"
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         it "ensures the password is set to the desired value" do
-          pw_entry.passwd.should == "x"
-          expected_shadow = "chef-functional-test:$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          password_should_be_set
           etc_shadow.should include(expected_shadow)
         end
       end
@@ -427,15 +506,47 @@ describe Chef::Resource::User, metadata do
       shadow_entry.split(':')[1]
     end
+    def aix_user_lock_status
+      lock_info = shell_out!("lsuser -a account_locked #{username}")
+      status = /\S+\s+account_locked=(\S+)/.match(lock_info.stdout)[1]
+    end
+    def user_account_should_be_locked
+      case ohai[:platform]
+      when "aix"
+        aix_user_lock_status.should == "true"
+      else
+        shadow_password.should include("!")
+      end
+    end
+    def user_account_should_be_unlocked
+      case ohai[:platform]
+      when "aix"
+        aix_user_lock_status.should == "false"
+      else
+        shadow_password.should_not include("!")
+      end
+    end
+    def lock_user_account
+      case ohai[:platform]
+      when "aix"
+        shell_out!("chuser account_locked=true #{username}")
+      else
+        shell_out!("usermod -L #{username}")
+      end
+    end
     before do
       # create user and setup locked/unlocked state
       user_resource.dup.run_action(:create)
       if user_locked_context?
-        shell_out!("usermod -L #{username}")
-        shadow_password.should include("!")
+        lock_user_account
+        user_account_should_be_locked
       elsif password
-        shadow_password.should_not include("!")
+        user_account_should_be_unlocked
       end
     end
   end
@@ -457,16 +568,32 @@ describe Chef::Resource::User, metadata do
       context "and the user is not locked" do
         # user will be locked if it has no password
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         it "locks the user's password" do
-          shadow_password.should include("!")
+          user_account_should_be_locked
         end
       end
       context "and the user is locked" do
         # user will be locked if it has no password
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         let(:user_locked_context?) { true }
         it "does not update the user" do
           user_resource.should_not be_updated_by_last_action
@@ -518,14 +645,27 @@ describe Chef::Resource::User, metadata do
             # DEBUG: ---- End output of usermod -U chef-functional-test ----
             # DEBUG: Ran usermod -U chef-functional-test returned 0
             @error.should be_nil
-            pw_entry.passwd.should == 'x'
-            shadow_password.should == "!"
+            if ohai[:platform] == "aix"
+              pw_entry.passwd.should == '*'
+              user_account_should_be_unlocked
+            else
+              pw_entry.passwd.should == 'x'
+              shadow_password.should include("!")
+            end
           end
         end
       end
       context "and has a password" do
-        let(:password) { "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/" }
+        let(:password) do
+          case ohai[:platform]
+          when "aix"
+            "eL5qfEVznSNss"
+          else
+            "$1$RRa/wMM/$XltKfoX5ffnexVF4dHZZf/"
+          end
+        end
         context "and the user is not locked" do
           it "does not update the user" do
             user_resource.should_not be_updated_by_last_action
@@ -536,9 +676,7 @@ describe Chef::Resource::User, metadata do
           let(:user_locked_context?) { true }
           it "unlocks the user's password" do
-            shadow_entry = etc_shadow.lines.select {|l| l.include?(username) }.first
-            shadow_password = shadow_entry.split(':')[1]
-            shadow_password.should_not include("!")
+            user_account_should_be_unlocked
           end
         end
       end

data/spec/integration/client/client_spec.rb CHANGED

@@ -2,7 +2,7 @@ require 'support/shared/integration/integration_helper'
 require 'chef/mixin/shell_out'
 describe "chef-client" do
-  extend IntegrationSupport
+  include IntegrationSupport
   include Chef::Mixin::ShellOut
   let(:chef_dir) { File.join(File.dirname(__FILE__), "..", "..", "..", "bin") }
@@ -19,7 +19,7 @@ describe "chef-client" do
   let(:chef_client) { "ruby #{chef_dir}/chef-client" }
   when_the_repository "has a cookbook with a no-op recipe" do
-    file 'cookbooks/x/recipes/default.rb', ''
+    before { file 'cookbooks/x/recipes/default.rb', '' }
     it "should complete with success" do
       file 'config/client.rb', <<EOM
@@ -49,7 +49,7 @@ EOM
     end
     context 'and a config file under .chef/knife.rb' do
-      file '.chef/knife.rb', 'xxx.xxx'
+      before { file '.chef/knife.rb', 'xxx.xxx' }
       it 'should load .chef/knife.rb when -z is specified' do
         result = shell_out("#{chef_client} -z -o 'x::default' --config-file-jail \"#{path_to('')}\"", :cwd => path_to(''))
@@ -74,7 +74,8 @@ EOM
     end
     context 'and a private key' do
-      file 'mykey.pem', <<EOM
+      before do
+        file 'mykey.pem', <<EOM
 -----BEGIN RSA PRIVATE KEY-----
 MIIEogIBAAKCAQEApubutqtYYQ5UiA9QhWP7UvSmsfHsAoPKEVVPdVW/e8Svwpyf
 0Xef6OFWVmBE+W442ZjLOe2y6p2nSnaq4y7dg99NFz6X+16mcKiCbj0RCiGqCvCk
@@ -103,6 +104,7 @@ syHLXYFNy0OxMtH/bBAXBGNHd9gf5uOnqh0pYcbe/uRAxumC7Rl0cL509eURiA2T
 +vFmf54y9YdnLXaqv+FhJT6B6V7WX7IpU9BMqJY1cJYXHuHG2KA=
 -----END RSA PRIVATE KEY-----
 EOM
+      end
       it "should complete with success even with a client key" do
         file 'config/client.rb', <<EOM

data/spec/integration/client/ipv6_spec.rb CHANGED

@@ -19,7 +19,7 @@ require 'support/shared/integration/integration_helper'
 require 'chef/mixin/shell_out'
 describe "chef-client" do
-  extend IntegrationSupport
+  include IntegrationSupport
   include Chef::Mixin::ShellOut
   let(:chef_zero_opts) { {:host => "::1"} }
@@ -87,8 +87,8 @@ END_CLIENT_RB
   when_the_chef_server "is running on IPv6", :not_supported_on_solaris do
     when_the_repository "has a cookbook with a no-op recipe" do
-      cookbook 'noop', '1.0.0', { 'metadata.rb' => 'version "1.0.0"' }, "recipes" => {"default.rb" => "#raise 'foo'"}
       before do
+        cookbook 'noop', '1.0.0', { }, "recipes" => {"default.rb" => "#raise 'foo'"}
         file 'config/client.rb', client_rb_content
         file 'config/validator.pem', validation_pem
       end
@@ -102,21 +102,23 @@ END_CLIENT_RB
     when_the_repository "has a cookbook that hits server APIs" do
-      recipe=<<-END_RECIPE
-        actual_item = data_bag_item("expect_bag", "expect_item")
-        if actual_item.key?("expect_key") and actual_item["expect_key"] == "expect_value"
-          Chef::Log.info "lookin good"
-        else
-          Chef::Log.error("!" * 80)
-          raise "unexpected data bag item content \#{actual_item.inspect}"
-          Chef::Log.error("!" * 80)
-        end
+      before do
+        recipe=<<-END_RECIPE
+          actual_item = data_bag_item("expect_bag", "expect_item")
+          if actual_item.key?("expect_key") and actual_item["expect_key"] == "expect_value"
+            Chef::Log.info "lookin good"
+          else
+            Chef::Log.error("!" * 80)
+            raise "unexpected data bag item content \#{actual_item.inspect}"
+            Chef::Log.error("!" * 80)
+          end
-      END_RECIPE
+        END_RECIPE
-      data_bag('expect_bag', { 'expect_item' => {"expect_key" => "expect_value"} })
+        data_bag('expect_bag', { 'expect_item' => {"expect_key" => "expect_value"} })
-      cookbook 'api-smoke-test', '1.0.0', { 'metadata.rb' => 'version "1.0.0"' }, "recipes" => {"default.rb" => recipe}
+        cookbook 'api-smoke-test', '1.0.0', { }, "recipes" => {"default.rb" => recipe}
+      end
       before do
         file 'config/client.rb', client_rb_content

data/spec/integration/knife/chef_fs_data_store_spec.rb CHANGED

@@ -23,17 +23,22 @@ require 'chef/knife/raw'
 require 'chef/knife/cookbook_upload'
 describe 'ChefFSDataStore tests' do
-  extend IntegrationSupport
+  include IntegrationSupport
   include KnifeSupport
+  let(:cookbook_x_100_metadata_rb) { cb_metadata("x", "1.0.0") }
+  let(:cookbook_z_100_metadata_rb) { cb_metadata("z", "1.0.0") }
   when_the_repository "has one of each thing" do
-    file 'clients/x.json', {}
-    file 'cookbooks/x/metadata.rb', 'version "1.0.0"'
-    file 'data_bags/x/y.json', {}
-    file 'environments/x.json', {}
-    file 'nodes/x.json', {}
-    file 'roles/x.json', {}
-    file 'users/x.json', {}
+    before do
+      file 'clients/x.json', {}
+      file 'cookbooks/x/metadata.rb', cookbook_x_100_metadata_rb
+      file 'data_bags/x/y.json', {}
+      file 'environments/x.json', {}
+      file 'nodes/x.json', {}
+      file 'roles/x.json', {}
+      file 'users/x.json', {}
+    end
     context 'GET /TYPE' do
       it 'knife list -z -R returns everything' do
@@ -102,41 +107,43 @@ EOM
     context 'GET /TYPE/NAME' do
       it 'knife show -z /clients/x.json works' do
-        knife('show -z /clients/x.json').should_succeed /"x"/
+        knife('show -z /clients/x.json').should_succeed( /"x"/ )
       end
       it 'knife show -z /cookbooks/x/metadata.rb works' do
-        knife('show -z /cookbooks/x/metadata.rb').should_succeed "/cookbooks/x/metadata.rb:\nversion \"1.0.0\"\n"
+        knife('show -z /cookbooks/x/metadata.rb').should_succeed "/cookbooks/x/metadata.rb:\n#{cookbook_x_100_metadata_rb}\n"
       end
       it 'knife show -z /data_bags/x/y.json works' do
-        knife('show -z /data_bags/x/y.json').should_succeed /"y"/
+        knife('show -z /data_bags/x/y.json').should_succeed( /"y"/ )
       end
       it 'knife show -z /environments/x.json works' do
-        knife('show -z /environments/x.json').should_succeed /"x"/
+        knife('show -z /environments/x.json').should_succeed( /"x"/ )
       end
       it 'knife show -z /nodes/x.json works' do
-        knife('show -z /nodes/x.json').should_succeed /"x"/
+        knife('show -z /nodes/x.json').should_succeed( /"x"/ )
       end
       it 'knife show -z /roles/x.json works' do
-        knife('show -z /roles/x.json').should_succeed /"x"/
+        knife('show -z /roles/x.json').should_succeed( /"x"/ )
       end
       it 'knife show -z /users/x.json works' do
-        knife('show -z /users/x.json').should_succeed /"x"/
+        knife('show -z /users/x.json').should_succeed( /"x"/ )
       end
     end
     context 'PUT /TYPE/NAME' do
-      file 'empty.json', {}
-      file 'rolestuff.json', '{"description":"hi there","name":"x"}'
-      file 'cookbooks_to_upload/x/metadata.rb', "version '1.0.0'\n\n"
+      before do
+        file 'empty.json', {}
+        file 'rolestuff.json', '{"description":"hi there","name":"x"}'
+        file 'cookbooks_to_upload/x/metadata.rb', cookbook_x_100_metadata_rb
+      end
       it 'knife raw -z -i empty.json -m PUT /clients/x' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /clients/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /clients/x").should_succeed( /"x"/ )
         knife('list --local /clients').should_succeed "/clients/x.json\n"
       end
@@ -149,32 +156,32 @@ EOM
       end
       it 'knife raw -z -i empty.json -m PUT /data/x/y' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /data/x/y").should_succeed /"y"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /data/x/y").should_succeed( /"y"/ )
         knife('list --local -Rfp /data_bags').should_succeed "/data_bags/x/\n/data_bags/x/y.json\n"
       end
       it 'knife raw -z -i empty.json -m PUT /environments/x' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /environments/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /environments/x").should_succeed( /"x"/ )
         knife('list --local /environments').should_succeed "/environments/x.json\n"
       end
       it 'knife raw -z -i empty.json -m PUT /nodes/x' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /nodes/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /nodes/x").should_succeed( /"x"/ )
         knife('list --local /nodes').should_succeed "/nodes/x.json\n"
       end
       it 'knife raw -z -i empty.json -m PUT /roles/x' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /roles/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /roles/x").should_succeed( /"x"/ )
         knife('list --local /roles').should_succeed "/roles/x.json\n"
       end
       it 'knife raw -z -i empty.json -m PUT /users/x' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /users/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /users/x").should_succeed( /"x"/ )
         knife('list --local /users').should_succeed "/users/x.json\n"
       end
       it 'After knife raw -z -i rolestuff.json -m PUT /roles/x, the output is pretty', :pending => (RUBY_VERSION < "1.9") do
-        knife("raw -z -i #{path_to('rolestuff.json')} -m PUT /roles/x").should_succeed /"x"/
+        knife("raw -z -i #{path_to('rolestuff.json')} -m PUT /roles/x").should_succeed( /"x"/ )
         IO.read(path_to('roles/x.json')).should == <<EOM.strip
 {
   "name": "x",
@@ -187,14 +194,16 @@ EOM
   when_the_repository 'is empty' do
     context 'POST /TYPE/NAME' do
-      file 'empty.json', { 'name' => 'z' }
-      file 'empty_x.json', { 'name' => 'x' }
-      file 'empty_id.json', { 'id' => 'z' }
-      file 'rolestuff.json', '{"description":"hi there","name":"x"}'
-      file 'cookbooks_to_upload/z/metadata.rb', "version '1.0.0'"
+      before do
+        file 'empty.json', { 'name' => 'z' }
+        file 'empty_x.json', { 'name' => 'x' }
+        file 'empty_id.json', { 'id' => 'z' }
+        file 'rolestuff.json', '{"description":"hi there","name":"x"}'
+        file 'cookbooks_to_upload/z/metadata.rb', cookbook_z_100_metadata_rb
+      end
       it 'knife raw -z -i empty.json -m POST /clients' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /clients").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /clients").should_succeed( /uri/ )
         knife('list --local /clients').should_succeed "/clients/z.json\n"
       end
@@ -207,38 +216,38 @@ EOM
       end
       it 'knife raw -z -i empty.json -m POST /data' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /data").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /data").should_succeed( /uri/ )
         knife('list --local -Rfp /data_bags').should_succeed "/data_bags/z/\n"
       end
       it 'knife raw -z -i empty.json -m POST /data/x' do
-        knife("raw -z -i #{path_to('empty_x.json')} -m POST /data").should_succeed /uri/
-        knife("raw -z -i #{path_to('empty_id.json')} -m POST /data/x").should_succeed /"z"/
+        knife("raw -z -i #{path_to('empty_x.json')} -m POST /data").should_succeed( /uri/ )
+        knife("raw -z -i #{path_to('empty_id.json')} -m POST /data/x").should_succeed( /"z"/ )
         knife('list --local -Rfp /data_bags').should_succeed "/data_bags/x/\n/data_bags/x/z.json\n"
       end
       it 'knife raw -z -i empty.json -m POST /environments' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /environments").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /environments").should_succeed( /uri/ )
         knife('list --local /environments').should_succeed "/environments/z.json\n"
       end
       it 'knife raw -z -i empty.json -m POST /nodes' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /nodes").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /nodes").should_succeed( /uri/ )
         knife('list --local /nodes').should_succeed "/nodes/z.json\n"
       end
       it 'knife raw -z -i empty.json -m POST /roles' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /roles").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /roles").should_succeed( /uri/ )
         knife('list --local /roles').should_succeed "/roles/z.json\n"
       end
       it 'knife raw -z -i empty.json -m POST /users' do
-        knife("raw -z -i #{path_to('empty.json')} -m POST /users").should_succeed /uri/
+        knife("raw -z -i #{path_to('empty.json')} -m POST /users").should_succeed( /uri/ )
         knife('list --local /users').should_succeed "/users/z.json\n"
       end
       it 'After knife raw -z -i rolestuff.json -m POST /roles, the output is pretty', :pending => (RUBY_VERSION < "1.9") do
-        knife("raw -z -i #{path_to('rolestuff.json')} -m POST /roles").should_succeed /uri/
+        knife("raw -z -i #{path_to('rolestuff.json')} -m POST /roles").should_succeed( /uri/ )
         IO.read(path_to('roles/x.json')).should == <<EOM.strip
 {
   "name": "x",
@@ -325,30 +334,32 @@ EOM
     end
     context 'PUT /TYPE/NAME' do
-      file 'empty.json', {}
+      before do
+        file 'empty.json', {}
+      end
       it 'knife raw -z -i empty.json -m PUT /clients/x fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /clients/x").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /clients/x").should_fail( /404/ )
       end
       it 'knife raw -z -i empty.json -m PUT /data/x/y fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /data/x/y").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /data/x/y").should_fail( /404/ )
       end
       it 'knife raw -z -i empty.json -m PUT /environments/x fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /environments/x").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /environments/x").should_fail( /404/ )
       end
       it 'knife raw -z -i empty.json -m PUT /nodes/x fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /nodes/x").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /nodes/x").should_fail( /404/ )
       end
       it 'knife raw -z -i empty.json -m PUT /roles/x fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /roles/x").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /roles/x").should_fail( /404/ )
       end
       it 'knife raw -z -i empty.json -m PUT /users/x fails with 404' do
-        knife("raw -z -i #{path_to('empty.json')} -m PUT /users/x").should_fail /404/
+        knife("raw -z -i #{path_to('empty.json')} -m PUT /users/x").should_fail( /404/ )
       end
     end
   end