foreman_openscap 0.11.5 → 0.12.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/app/controllers/api/v2/compliance/arf_reports_controller.rb +3 -6
- data/app/controllers/api/v2/compliance/policies_controller.rb +3 -1
- data/app/controllers/concerns/foreman/controller/parameters/policy_api.rb +1 -1
- data/app/controllers/policies_controller.rb +2 -1
- data/app/helpers/foreman_openscap_helper.rb +14 -0
- data/app/helpers/policies_helper.rb +36 -0
- data/app/models/concerns/foreman_openscap/host_extensions.rb +5 -1
- data/app/models/concerns/foreman_openscap/openscap_proxy_core_extensions.rb +15 -19
- data/app/models/foreman_openscap/policy.rb +14 -80
- data/app/services/foreman_openscap/client_config/ansible.rb +38 -0
- data/app/services/foreman_openscap/client_config/base.rb +41 -0
- data/app/services/foreman_openscap/client_config/manual.rb +27 -0
- data/app/services/foreman_openscap/client_config/puppet.rb +38 -0
- data/app/services/foreman_openscap/config_name_service.rb +29 -0
- data/app/services/foreman_openscap/hostgroup_overrider.rb +71 -0
- data/app/services/foreman_openscap/lookup_key_overrider.rb +94 -0
- data/app/views/policies/_form.html.erb +6 -2
- data/app/views/policies/steps/_deployment_options_form.html.erb +11 -0
- data/app/views/policies/steps/{_create_policy_form.html.erb → _policy_attributes_form.html.erb} +0 -0
- data/db/migrate/20190103093409_add_deployment_option_to_policy.foreman_openscap.rb +15 -0
- data/lib/foreman_openscap/engine.rb +3 -3
- data/lib/foreman_openscap/version.rb +1 -1
- data/locale/de/foreman_openscap.edit.po +302 -106
- data/locale/en_GB/foreman_openscap.edit.po +302 -106
- data/locale/es/foreman_openscap.edit.po +302 -106
- data/locale/fr/foreman_openscap.edit.po +302 -106
- data/locale/gl/foreman_openscap.edit.po +302 -106
- data/locale/it/foreman_openscap.edit.po +302 -106
- data/locale/ja/foreman_openscap.edit.po +302 -106
- data/locale/ko/foreman_openscap.edit.po +302 -106
- data/locale/pt_BR/foreman_openscap.edit.po +302 -106
- data/locale/ru/foreman_openscap.edit.po +302 -106
- data/locale/sv_SE/foreman_openscap.edit.po +302 -106
- data/locale/zh_CN/foreman_openscap.edit.po +302 -106
- data/locale/zh_TW/foreman_openscap.edit.po +302 -106
- data/test/factories/policy_factory.rb +1 -0
- data/test/functional/api/v2/compliance/arf_reports_controller_test.rb +2 -3
- data/test/functional/api/v2/compliance/policies_controller_test.rb +2 -2
- data/test/test_plugin_helper.rb +26 -7
- data/test/unit/openscap_host_test.rb +0 -2
- data/test/unit/policy_test.rb +32 -23
- data/test/unit/services/config_name_service_test.rb +39 -0
- data/test/unit/services/hostgroup_overrider_test.rb +78 -0
- data/test/unit/services/lookup_key_overrider_test.rb +52 -0
- metadata +19 -5
- data/test/unit/puppet_overrides_test.rb +0 -38
|
@@ -96,8 +96,7 @@ class Api::V2::Compliance::ArfReportsControllerTest < ActionController::TestCase
|
|
|
96
96
|
test "should not create report when host is missing" do
|
|
97
97
|
reports_cleanup
|
|
98
98
|
date = Time.new(1984, 9, 16)
|
|
99
|
-
ForemanOpenscap::Helper.stubs(:
|
|
100
|
-
|
|
99
|
+
ForemanOpenscap::Helper.stubs(:get_asset).returns(nil)
|
|
101
100
|
cname = '9521a5c5-8f44-495f-b087-20e86b30bffg'
|
|
102
101
|
post :create,
|
|
103
102
|
:params => @from_json.merge(:cname => cname,
|
|
@@ -114,7 +113,7 @@ class Api::V2::Compliance::ArfReportsControllerTest < ActionController::TestCase
|
|
|
114
113
|
test "should not create report when policy is missing" do
|
|
115
114
|
reports_cleanup
|
|
116
115
|
date = Time.new(1984, 9, 17)
|
|
117
|
-
ForemanOpenscap::Helper.stubs(:
|
|
116
|
+
ForemanOpenscap::Helper.stubs(:get_asset).returns(@asset)
|
|
118
117
|
policy_id = 0
|
|
119
118
|
post :create,
|
|
120
119
|
:params => @from_json.merge(:cname => @cname,
|
|
@@ -2,13 +2,13 @@ require 'test_plugin_helper'
|
|
|
2
2
|
|
|
3
3
|
class Api::V2::Compliance::PoliciesControllerTest < ActionController::TestCase
|
|
4
4
|
setup do
|
|
5
|
-
::ForemanOpenscap::Policy.any_instance.stubs(:ensure_needed_puppetclasses).returns(true)
|
|
6
5
|
@scap_content_profile = FactoryBot.create(:scap_content_profile)
|
|
7
6
|
@attributes = { :policy => { :name => 'my_policy',
|
|
8
7
|
:scap_content_profile_id => @scap_content_profile.id,
|
|
9
8
|
:scap_content_id => @scap_content_profile.scap_content_id,
|
|
10
9
|
:period => 'weekly',
|
|
11
|
-
:weekday => 'friday'
|
|
10
|
+
:weekday => 'friday',
|
|
11
|
+
:deploy_by => 'manual' } }
|
|
12
12
|
end
|
|
13
13
|
|
|
14
14
|
test "should get index" do
|
data/test/test_plugin_helper.rb
CHANGED
|
@@ -6,10 +6,30 @@ FactoryBot.definition_file_paths << File.join(File.dirname(__FILE__), 'factories
|
|
|
6
6
|
FactoryBot.reload
|
|
7
7
|
|
|
8
8
|
module ScapClientPuppetclass
|
|
9
|
-
def
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
9
|
+
def setup_puppet_class
|
|
10
|
+
puppet_config = ::ForemanOpenscap::ClientConfig::Puppet.new
|
|
11
|
+
Puppetclass.find_by(:name => puppet_config.puppetclass_name)&.destroy
|
|
12
|
+
|
|
13
|
+
puppet_class = FactoryBot.create(:puppetclass, :name => puppet_config.puppetclass_name)
|
|
14
|
+
server_param = FactoryBot.create(:puppetclass_lookup_key, :key => puppet_config.server_param, :puppetclass_id => puppet_class.id)
|
|
15
|
+
port_param = FactoryBot.create(:puppetclass_lookup_key, :key => puppet_config.port_param, :puppetclass_id => puppet_class.id)
|
|
16
|
+
policies_param = FactoryBot.create(:puppetclass_lookup_key, :key => puppet_config.policies_param, :puppetclass_id => puppet_class.id)
|
|
17
|
+
|
|
18
|
+
env = FactoryBot.create :environment
|
|
19
|
+
|
|
20
|
+
FactoryBot.create(:environment_class,
|
|
21
|
+
:puppetclass_id => puppet_class.id,
|
|
22
|
+
:environment_id => env.id,
|
|
23
|
+
:puppetclass_lookup_key_id => server_param.id)
|
|
24
|
+
FactoryBot.create(:environment_class,
|
|
25
|
+
:puppetclass_id => puppet_class.id,
|
|
26
|
+
:environment_id => env.id,
|
|
27
|
+
:puppetclass_lookup_key_id => port_param.id)
|
|
28
|
+
FactoryBot.create(:environment_class,
|
|
29
|
+
:puppetclass_id => puppet_class.id,
|
|
30
|
+
:environment_id => env.id,
|
|
31
|
+
:puppetclass_lookup_key_id => policies_param.id)
|
|
32
|
+
{ :puppet_class => puppet_class, :env => env, :server_param => server_param, :port_param => port_param, :policies_param => policies_param }
|
|
13
33
|
end
|
|
14
34
|
end
|
|
15
35
|
|
|
@@ -45,7 +65,6 @@ end
|
|
|
45
65
|
|
|
46
66
|
class ActionMailer::TestCase
|
|
47
67
|
include ScapClientPuppetclass
|
|
48
|
-
setup :skip_scap_callback
|
|
49
68
|
end
|
|
50
69
|
|
|
51
70
|
class ActionController::TestCase
|
|
@@ -53,7 +72,7 @@ class ActionController::TestCase
|
|
|
53
72
|
include ScapTestProxy
|
|
54
73
|
include ScapTestCommon
|
|
55
74
|
|
|
56
|
-
setup :add_smart_proxy
|
|
75
|
+
setup :add_smart_proxy
|
|
57
76
|
end
|
|
58
77
|
|
|
59
78
|
class ActiveSupport::TestCase
|
|
@@ -61,5 +80,5 @@ class ActiveSupport::TestCase
|
|
|
61
80
|
include ScapTestProxy
|
|
62
81
|
include ScapTestCommon
|
|
63
82
|
|
|
64
|
-
setup :add_smart_proxy
|
|
83
|
+
setup :add_smart_proxy
|
|
65
84
|
end
|
|
@@ -4,8 +4,6 @@ class OpenscapHostTest < ActiveSupport::TestCase
|
|
|
4
4
|
setup do
|
|
5
5
|
disable_orchestration
|
|
6
6
|
User.current = users :admin
|
|
7
|
-
ForemanOpenscap::Policy.any_instance.stubs(:ensure_needed_puppetclasses).returns(true)
|
|
8
|
-
ForemanOpenscap::Policy.any_instance.stubs(:find_scap_puppetclass).returns(FactoryBot.create(:puppetclass, :name => 'foreman_scap_client'))
|
|
9
7
|
@policy = FactoryBot.create(:policy)
|
|
10
8
|
end
|
|
11
9
|
|
data/test/unit/policy_test.rb
CHANGED
|
@@ -2,7 +2,6 @@ require 'test_plugin_helper'
|
|
|
2
2
|
|
|
3
3
|
class PolicyTest < ActiveSupport::TestCase
|
|
4
4
|
setup do
|
|
5
|
-
ForemanOpenscap::Policy.any_instance.stubs(:ensure_needed_puppetclasses).returns(true)
|
|
6
5
|
ForemanOpenscap::DataStreamValidator.any_instance.stubs(:validate)
|
|
7
6
|
ForemanOpenscap::ScapContent.any_instance.stubs(:fetch_profiles).returns({ 'test_profile_key' => 'test_profile_title' })
|
|
8
7
|
@scap_content = FactoryBot.create(:scap_content)
|
|
@@ -11,8 +10,6 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
11
10
|
end
|
|
12
11
|
|
|
13
12
|
test "should assign hostgroups by their ids" do
|
|
14
|
-
ForemanOpenscap::Policy.any_instance.stubs(:find_scap_puppetclass).returns(FactoryBot.create(:puppetclass, :name => 'foreman_scap_client'))
|
|
15
|
-
ForemanOpenscap::Policy.any_instance.stubs(:populate_overrides)
|
|
16
13
|
hg1 = FactoryBot.create(:hostgroup)
|
|
17
14
|
hg2 = FactoryBot.create(:hostgroup)
|
|
18
15
|
host = FactoryBot.create(:compliance_host)
|
|
@@ -27,8 +24,6 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
27
24
|
end
|
|
28
25
|
|
|
29
26
|
test "should assign hosts by their ids" do
|
|
30
|
-
ForemanOpenscap::Policy.any_instance.stubs(:find_scap_puppetclass).returns(FactoryBot.create(:puppetclass, :name => 'foreman_scap_client'))
|
|
31
|
-
ForemanOpenscap::Policy.any_instance.stubs(:populate_overrides)
|
|
32
27
|
host1 = FactoryBot.create(:compliance_host)
|
|
33
28
|
host2 = FactoryBot.create(:compliance_host)
|
|
34
29
|
hostgroup = FactoryBot.create(:hostgroup)
|
|
@@ -43,8 +38,6 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
43
38
|
end
|
|
44
39
|
|
|
45
40
|
test "should remove associated hostgroup" do
|
|
46
|
-
ForemanOpenscap::Policy.any_instance.stubs(:find_scap_puppetclass).returns(FactoryBot.create(:puppetclass, :name => 'foreman_scap_client'))
|
|
47
|
-
ForemanOpenscap::Policy.any_instance.stubs(:populate_overrides)
|
|
48
41
|
hg = FactoryBot.create(:hostgroup)
|
|
49
42
|
asset = FactoryBot.create(:asset, :assetable_id => hg.id, :assetable_type => 'Hostgroup')
|
|
50
43
|
policy = FactoryBot.create(:policy, :assets => [asset], :scap_content => @scap_content, :scap_content_profile => @scap_profile)
|
|
@@ -59,7 +52,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
59
52
|
:scap_content_id => @scap_content.id,
|
|
60
53
|
:scap_content_profile_id => @scap_profile.id,
|
|
61
54
|
:period => 'custom',
|
|
62
|
-
:cron_line => '6 * 15 12 0'
|
|
55
|
+
:cron_line => '6 * 15 12 0',
|
|
56
|
+
:deploy_by => 'manual')
|
|
63
57
|
assert p.save
|
|
64
58
|
end
|
|
65
59
|
|
|
@@ -68,7 +62,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
68
62
|
:scap_content_id => @scap_content.id,
|
|
69
63
|
:scap_content_profile_id => @scap_profile.id,
|
|
70
64
|
:period => 'custom',
|
|
71
|
-
:cron_line => 'aaa'
|
|
65
|
+
:cron_line => 'aaa',
|
|
66
|
+
:deploy_by => 'manual')
|
|
72
67
|
refute p.save
|
|
73
68
|
assert p.errors[:cron_line].include?("does not consist of 5 parts separated by space")
|
|
74
69
|
end
|
|
@@ -78,7 +73,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
78
73
|
:scap_content_id => @scap_content.id,
|
|
79
74
|
:scap_content_profile_id => @scap_profile.id,
|
|
80
75
|
:period => 'weekly',
|
|
81
|
-
:weekday => 'monday'
|
|
76
|
+
:weekday => 'monday',
|
|
77
|
+
:deploy_by => 'manual')
|
|
82
78
|
assert p.save
|
|
83
79
|
end
|
|
84
80
|
|
|
@@ -87,7 +83,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
87
83
|
:scap_content_id => @scap_content.id,
|
|
88
84
|
:scap_content_profile_id => @scap_profile.id,
|
|
89
85
|
:period => 'weekly',
|
|
90
|
-
:weekday => 'someday'
|
|
86
|
+
:weekday => 'someday',
|
|
87
|
+
:deploy_by => 'manual')
|
|
91
88
|
refute p.save
|
|
92
89
|
assert p.errors[:weekday].include?("is not a valid value")
|
|
93
90
|
end
|
|
@@ -97,7 +94,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
97
94
|
:scap_content_id => @scap_content.id,
|
|
98
95
|
:scap_content_profile_id => @scap_profile.id,
|
|
99
96
|
:period => 'monthly',
|
|
100
|
-
:day_of_month => '1'
|
|
97
|
+
:day_of_month => '1',
|
|
98
|
+
:deploy_by => 'manual')
|
|
101
99
|
assert p.save
|
|
102
100
|
end
|
|
103
101
|
|
|
@@ -106,7 +104,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
106
104
|
:scap_content_id => @scap_content.id,
|
|
107
105
|
:scap_content_profile_id => @scap_profile.id,
|
|
108
106
|
:period => 'monthly',
|
|
109
|
-
:day_of_month => '0'
|
|
107
|
+
:day_of_month => '0',
|
|
108
|
+
:deploy_by => 'manual')
|
|
110
109
|
refute p.save
|
|
111
110
|
assert p.errors[:day_of_month].include?("must be between 1 and 31")
|
|
112
111
|
end
|
|
@@ -117,13 +116,15 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
117
116
|
:scap_content_profile_id => @scap_profile.id,
|
|
118
117
|
:period => 'monthly',
|
|
119
118
|
:weekday => 'tuesday',
|
|
120
|
-
:cron_line => "0 0 0 0 0"
|
|
119
|
+
:cron_line => "0 0 0 0 0",
|
|
120
|
+
:deploy_by => 'manual')
|
|
121
121
|
policy = ForemanOpenscap::Policy.new(:name => "test policy",
|
|
122
122
|
:scap_content_id => @scap_content.id,
|
|
123
123
|
:scap_content_profile_id => @scap_profile.id,
|
|
124
124
|
:period => 'custom',
|
|
125
125
|
:weekday => 'tuesday',
|
|
126
|
-
:day_of_month => "15"
|
|
126
|
+
:day_of_month => "15",
|
|
127
|
+
:deploy_by => 'manual')
|
|
127
128
|
refute p.save
|
|
128
129
|
refute policy.save
|
|
129
130
|
assert p.weekday.empty?
|
|
@@ -137,7 +138,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
137
138
|
:scap_content_id => @scap_content.id,
|
|
138
139
|
:scap_content_profile_id => @scap_profile.id,
|
|
139
140
|
:period => 'monthly',
|
|
140
|
-
:day_of_month => '5'
|
|
141
|
+
:day_of_month => '5',
|
|
142
|
+
:deploy_by => 'manual')
|
|
141
143
|
assert p.save
|
|
142
144
|
p.period = 'weekly'
|
|
143
145
|
p.weekday = 'monday'
|
|
@@ -149,7 +151,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
149
151
|
p = ForemanOpenscap::Policy.new(:name => "custom_policy",
|
|
150
152
|
:scap_content_profile_id => @scap_profile.id,
|
|
151
153
|
:period => 'monthly',
|
|
152
|
-
:day_of_month => '5'
|
|
154
|
+
:day_of_month => '5',
|
|
155
|
+
:deploy_by => 'manual')
|
|
153
156
|
refute p.save
|
|
154
157
|
assert p.errors[:scap_content_id].include?("can't be blank")
|
|
155
158
|
end
|
|
@@ -158,7 +161,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
158
161
|
p = ForemanOpenscap::Policy.new(:name => "custom_policy",
|
|
159
162
|
:scap_content_id => @scap_content.id,
|
|
160
163
|
:period => 'monthly',
|
|
161
|
-
:day_of_month => '5'
|
|
164
|
+
:day_of_month => '5',
|
|
165
|
+
:deploy_by => 'manual')
|
|
162
166
|
assert p.save
|
|
163
167
|
end
|
|
164
168
|
|
|
@@ -180,7 +184,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
180
184
|
:scap_content => @scap_content,
|
|
181
185
|
:scap_content_profile => @scap_profile,
|
|
182
186
|
:tailoring_file => tailoring_file,
|
|
183
|
-
:tailoring_file_profile => @scap_profile
|
|
187
|
+
:tailoring_file_profile => @scap_profile,
|
|
188
|
+
:deploy_by => 'manual')
|
|
184
189
|
refute p.valid?
|
|
185
190
|
p.tailoring_file_profile = tailoring_profile
|
|
186
191
|
assert p.save
|
|
@@ -191,7 +196,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
191
196
|
:scap_content_id => @scap_content.id,
|
|
192
197
|
:scap_content_profile_id => @scap_profile.id,
|
|
193
198
|
:period => 'monthly',
|
|
194
|
-
:day_of_month => '5'
|
|
199
|
+
:day_of_month => '5',
|
|
200
|
+
:deploy_by => 'manual')
|
|
195
201
|
assert_equal 6, p.to_enc['download_path'].split('/').length
|
|
196
202
|
assert_equal @scap_content.digest, p.to_enc['download_path'].split('/').last
|
|
197
203
|
end
|
|
@@ -204,7 +210,8 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
204
210
|
:tailoring_file => tailoring_file,
|
|
205
211
|
:tailoring_file_profile => @tailoring_profile,
|
|
206
212
|
:period => 'monthly',
|
|
207
|
-
:day_of_month => '5'
|
|
213
|
+
:day_of_month => '5',
|
|
214
|
+
:deploy_by => 'manual')
|
|
208
215
|
assert_equal 6, p.to_enc['tailoring_download_path'].split('/').length
|
|
209
216
|
assert_equal tailoring_file.digest, p.to_enc['tailoring_download_path'].split('/').last
|
|
210
217
|
end
|
|
@@ -215,13 +222,15 @@ class PolicyTest < ActiveSupport::TestCase
|
|
|
215
222
|
:scap_content_id => @scap_content.id,
|
|
216
223
|
:scap_content_profile_id => @scap_profile.id,
|
|
217
224
|
:period => 'monthly',
|
|
218
|
-
:day_of_month => '5'
|
|
225
|
+
:day_of_month => '5',
|
|
226
|
+
:deploy_by => 'manual')
|
|
219
227
|
assert p.valid?
|
|
220
228
|
q = ForemanOpenscap::Policy.create(:name => "invalid_profile_policy",
|
|
221
229
|
:scap_content_id => scap_content_2.id,
|
|
222
230
|
:scap_content_profile_id => @scap_profile.id,
|
|
223
231
|
:period => 'monthly',
|
|
224
|
-
:day_of_month => '5'
|
|
232
|
+
:day_of_month => '5',
|
|
233
|
+
:deploy_by => 'manual')
|
|
225
234
|
refute q.valid?
|
|
226
235
|
assert_equal "does not have the selected SCAP content profile", q.errors.messages[:scap_content_id].first
|
|
227
236
|
end
|
|
@@ -0,0 +1,39 @@
|
|
|
1
|
+
require 'test_plugin_helper'
|
|
2
|
+
|
|
3
|
+
class ConfigNameServiceTest < ActiveSupport::TestCase
|
|
4
|
+
setup do
|
|
5
|
+
@name_service = ForemanOpenscap::ConfigNameService.new
|
|
6
|
+
end
|
|
7
|
+
|
|
8
|
+
test 'should find config for Puppet' do
|
|
9
|
+
assert @name_service.config_for(:puppet).is_a?(ForemanOpenscap::ClientConfig::Puppet)
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
test 'should find config for Ansible' do
|
|
13
|
+
assert @name_service.config_for(:ansible).is_a?(ForemanOpenscap::ClientConfig::Ansible)
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
test 'should find config for Manual' do
|
|
17
|
+
assert @name_service.config_for(:manual).is_a?(ForemanOpenscap::ClientConfig::Manual)
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
test 'should find all except Manual' do
|
|
21
|
+
configs = @name_service.all_except(:manual)
|
|
22
|
+
assert_equal 2, configs.size
|
|
23
|
+
refute configs.map(&:type).include?(:manual)
|
|
24
|
+
end
|
|
25
|
+
|
|
26
|
+
test 'should find all available except Manual' do
|
|
27
|
+
ForemanOpenscap::ClientConfig::Ansible.any_instance.stubs(:available?).returns(false)
|
|
28
|
+
configs = @name_service.all_available_except(:manual)
|
|
29
|
+
assert_equal 1, configs.size
|
|
30
|
+
assert_equal :puppet, configs.first.type
|
|
31
|
+
end
|
|
32
|
+
|
|
33
|
+
test 'should find all available with overrides except Puppet' do
|
|
34
|
+
ForemanOpenscap::ClientConfig::Ansible.any_instance.stubs(:available?).returns(true)
|
|
35
|
+
configs = @name_service.all_available_with_overrides_except(:puppet)
|
|
36
|
+
assert_equal 1, configs.size
|
|
37
|
+
assert_equal :ansible, configs.first.type
|
|
38
|
+
end
|
|
39
|
+
end
|
|
@@ -0,0 +1,78 @@
|
|
|
1
|
+
require 'test_plugin_helper'
|
|
2
|
+
|
|
3
|
+
class HostgroupOverriderTest < ActiveSupport::TestCase
|
|
4
|
+
setup do
|
|
5
|
+
ForemanOpenscap::ScapContent.any_instance.stubs(:fetch_profiles).returns({ 'test_profile_key' => 'test_profile_title' })
|
|
6
|
+
|
|
7
|
+
@scap_content = FactoryBot.create(:scap_content)
|
|
8
|
+
@scap_profile = FactoryBot.create(:scap_content_profile, :scap_content => @scap_content)
|
|
9
|
+
end
|
|
10
|
+
|
|
11
|
+
test 'should populate puppet overrides' do
|
|
12
|
+
puppet_class, env, port_param, server_param = setup_puppet_class.values_at :puppet_class, :env, :port_param, :server_param
|
|
13
|
+
|
|
14
|
+
proxy = FactoryBot.create(:openscap_proxy, :url => 'https://override-keys.example.com:8998')
|
|
15
|
+
|
|
16
|
+
hostgroup = FactoryBot.create(:hostgroup, :environment_id => env.id, :openscap_proxy_id => proxy.id)
|
|
17
|
+
refute hostgroup.puppetclasses.include? puppet_class
|
|
18
|
+
assert LookupValue.where(:match => "hostgroup=#{hostgroup.to_label}",
|
|
19
|
+
:lookup_key_id => port_param.id,
|
|
20
|
+
:value => '8998').empty?
|
|
21
|
+
assert LookupValue.where(:match => "hostgroup=#{hostgroup.to_label}",
|
|
22
|
+
:lookup_key_id => server_param.id,
|
|
23
|
+
:value => 'override-keys.example.com').empty?
|
|
24
|
+
|
|
25
|
+
port_param.override = true
|
|
26
|
+
port_param.save
|
|
27
|
+
server_param.override = true
|
|
28
|
+
server_param.save
|
|
29
|
+
hostgroup.puppetclasses << puppet_class
|
|
30
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
31
|
+
:scap_content_profile => @scap_profile,
|
|
32
|
+
:deploy_by => 'puppet',
|
|
33
|
+
:hostgroup_ids => [hostgroup.id])
|
|
34
|
+
policy.save
|
|
35
|
+
refute LookupValue.where(:match => "hostgroup=#{hostgroup.to_label}",
|
|
36
|
+
:lookup_key_id => port_param.id,
|
|
37
|
+
:value => 8998).empty?
|
|
38
|
+
refute LookupValue.where(:match => "hostgroup=#{hostgroup.to_label}",
|
|
39
|
+
:lookup_key_id => server_param.id,
|
|
40
|
+
:value => 'override-keys.example.com').empty?
|
|
41
|
+
end
|
|
42
|
+
|
|
43
|
+
test "should return when policy has blank deploy_by" do
|
|
44
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
45
|
+
:scap_content_profile => @scap_profile)
|
|
46
|
+
overrider = ForemanOpenscap::HostgroupOverrider.new(policy)
|
|
47
|
+
overrider.expects(:populate_overrides).never
|
|
48
|
+
overrider.populate
|
|
49
|
+
end
|
|
50
|
+
|
|
51
|
+
test "should return when deploy_by type is not supported" do
|
|
52
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
53
|
+
:scap_content_profile => @scap_profile,
|
|
54
|
+
:deploy_by => 'salt')
|
|
55
|
+
overrider = ForemanOpenscap::HostgroupOverrider.new(policy)
|
|
56
|
+
overrider.expects(:populate_overrides).never
|
|
57
|
+
overrider.populate
|
|
58
|
+
end
|
|
59
|
+
|
|
60
|
+
test "should return when deployment type is not available" do
|
|
61
|
+
ForemanOpenscap::ClientConfig::Ansible.any_instance.stubs(:available?).returns(false)
|
|
62
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
63
|
+
:scap_content_profile => @scap_profile,
|
|
64
|
+
:deploy_by => 'ansible')
|
|
65
|
+
overrider = ForemanOpenscap::HostgroupOverrider.new(policy)
|
|
66
|
+
overrider.expects(:populate_overrides).never
|
|
67
|
+
overrider.populate
|
|
68
|
+
end
|
|
69
|
+
|
|
70
|
+
test "should return when config has unmanaged overrides" do
|
|
71
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
72
|
+
:scap_content_profile => @scap_profile,
|
|
73
|
+
:deploy_by => 'manual')
|
|
74
|
+
overrider = ForemanOpenscap::HostgroupOverrider.new(policy)
|
|
75
|
+
overrider.expects(:populate_overrides).never
|
|
76
|
+
overrider.populate
|
|
77
|
+
end
|
|
78
|
+
end
|
|
@@ -0,0 +1,52 @@
|
|
|
1
|
+
require 'test_plugin_helper'
|
|
2
|
+
|
|
3
|
+
class LookupKeyOverriderTest < ActiveSupport::TestCase
|
|
4
|
+
setup do
|
|
5
|
+
ForemanOpenscap::ScapContent.any_instance.stubs(:fetch_profiles).returns({ 'test_profile_key' => 'test_profile_title' })
|
|
6
|
+
@scap_content = FactoryBot.create(:scap_content)
|
|
7
|
+
@scap_profile = FactoryBot.create(:scap_content_profile, :scap_content => @scap_content)
|
|
8
|
+
end
|
|
9
|
+
|
|
10
|
+
test 'should override puppet class parameters' do
|
|
11
|
+
server_param, port_param, policies_param = setup_puppet_class.values_at :server_param, :port_param, :policies_param
|
|
12
|
+
refute server_param.override
|
|
13
|
+
refute port_param.override
|
|
14
|
+
refute policies_param.override
|
|
15
|
+
policy = FactoryBot.create(:policy, :scap_content => @scap_content, :scap_content_profile => @scap_content_profile, :deploy_by => :puppet)
|
|
16
|
+
ForemanOpenscap::LookupKeyOverrider.new(policy).override
|
|
17
|
+
assert server_param.reload.override
|
|
18
|
+
assert port_param.reload.override
|
|
19
|
+
assert policies_param.reload.override
|
|
20
|
+
assert_equal '<%= @host.policies_enc %>', policies_param.default_value
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
test 'should add error when no puppet class found' do
|
|
24
|
+
puppet_class = Puppetclass.find_by :name => ForemanOpenscap::ClientConfig::Puppet.new.puppetclass_name
|
|
25
|
+
puppet_class.destroy if puppet_class
|
|
26
|
+
policy = FactoryBot.create(:policy, :scap_content => @scap_content, :scap_content_profile => @scap_content_profile, :deploy_by => :puppet)
|
|
27
|
+
ForemanOpenscap::LookupKeyOverrider.new(policy).override
|
|
28
|
+
assert_equal ["Required Puppet class foreman_scap_client was not found, please ensure it is imported first."], policy.errors[:base]
|
|
29
|
+
end
|
|
30
|
+
|
|
31
|
+
test 'should add error when deployment type is not available' do
|
|
32
|
+
ForemanOpenscap::ClientConfig::Ansible.any_instance.stubs(:available?).returns(false)
|
|
33
|
+
policy = FactoryBot.build(:policy, :scap_content => @scap_content,
|
|
34
|
+
:scap_content_profile => @scap_profile,
|
|
35
|
+
:deploy_by => 'ansible')
|
|
36
|
+
overrider = ForemanOpenscap::LookupKeyOverrider.new(policy)
|
|
37
|
+
overrider.expects(:override_required_params).never
|
|
38
|
+
overrider.override
|
|
39
|
+
assert_equal "Ansible was selected to deploy policy to clients, but Ansible is not available. Are you missing a plugin?",
|
|
40
|
+
policy.errors[:deploy_by].first
|
|
41
|
+
end
|
|
42
|
+
|
|
43
|
+
test 'should add error when lookup keys not present' do
|
|
44
|
+
server_param, port_param, policies_param = setup_puppet_class.values_at :server_param, :port_param, :policies_param
|
|
45
|
+
server_param.destroy
|
|
46
|
+
port_param.destroy
|
|
47
|
+
policy = FactoryBot.create(:policy, :scap_content => @scap_content, :scap_content_profile => @scap_content_profile, :deploy_by => :puppet)
|
|
48
|
+
ForemanOpenscap::LookupKeyOverrider.new(policy).override
|
|
49
|
+
err = "The following Smart Class Parameters were missing for foreman_scap_client: port, server. Make sure they are imported before proceeding."
|
|
50
|
+
assert_equal err, policy.errors[:base].first
|
|
51
|
+
end
|
|
52
|
+
end
|