scooter 0.0.0 → 3.2.19

data/spec/scooter/httpdispatchers/puppetdbdispatcher_spec.rb

@@ -0,0 +1,246 @@
+require "spec_helper"
+module Scooter
+
+  describe HttpDispatchers::PuppetdbDispatcher do
+
+    let(:host) { double('host') }
+    let(:credentials) { double('credentials') }
+    let(:credentials) { { login: 'Ziggy', password: 'Stardust' } }
+
+    subject { HttpDispatchers::PuppetdbDispatcher.new(host) }
+
+    unixhost = { roles:     ['test_role'],
+                 'platform' => 'debian-7-x86_64' }
+    let(:host) { Beaker::Host.create('test.com', unixhost, {}) }
+
+    before do
+      expect(Scooter::Utilities::BeakerUtilities).to receive(:pe_ca_cert_file).and_return('cert file')
+      expect(Scooter::Utilities::BeakerUtilities).to receive(:pe_private_key).and_return('key file')
+      expect(Scooter::Utilities::BeakerUtilities).to receive(:pe_hostcert).and_return('host cert')
+      expect(OpenSSL::PKey).to receive(:read).and_return('Pkey')
+      expect(OpenSSL::X509::Certificate).to receive(:new).and_return('client_cert')
+      expect(Scooter::Utilities::BeakerUtilities).to receive(:get_public_ip).and_return('public_ip')
+      expect(subject).not_to be_nil
+    end
+
+    context 'with a beaker host passed in' do
+      describe '.query_nodes' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/nodes') { [200, []] }
+          end
+        end
+        it 'query for all nodes' do
+          expect { subject.query_nodes }.not_to raise_error
+          expect(subject.query_nodes.status).to eq(200)
+        end
+        it 'query for nodes matching query' do
+          expect { subject.query_nodes('["and",   ["=", ["fact", "kernel"], "Linux"]]') }.not_to raise_error
+          response = subject.query_nodes('["and",   ["=", ["fact", "kernel"], "Linux"]]')
+          expect(response.status).to eq(200)
+          hashed_query = CGI.parse(response.env.url.query)
+          expect(hashed_query).to eq('query' => ['["and",   ["=", ["fact", "kernel"], "Linux"]]'])
+        end
+      end
+
+      describe '.query_catalogs' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/catalogs') { [200, []] }
+          end
+        end
+        it 'query for all catalogs' do
+          expect { subject.query_catalogs }.not_to raise_error
+          expect(subject.query_catalogs.status).to eq(200)
+        end
+        it 'query for catalogs matching query' do
+          expect { subject.query_catalogs('[">","producer_timestamp","2015-11-19"]') }.not_to raise_error
+          response = subject.query_catalogs('[">","producer_timestamp","2015-11-19"]')
+          expect(response.status).to eq(200)
+          hashed_query = CGI.parse(response.env.url.query)
+          expect(hashed_query).to eq('query' => ['[">","producer_timestamp","2015-11-19"]'])
+        end
+      end
+
+      describe '.query_reports' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/reports') { [200, []] }
+          end
+        end
+        it 'query for all reports' do
+          expect { subject.query_reports }.not_to raise_error
+          expect(subject.query_reports.status).to eq(200)
+        end
+        it 'query for reports matching query' do
+          expect { subject.query_reports('["extract",[["function","count"], "status"], ["~","certname",""], ["group_by", "status"]]') }.not_to raise_error
+          response = subject.query_reports('["extract",[["function","count"], "status"], ["~","certname",""], ["group_by", "status"]]')
+          expect(response.status).to eq(200)
+          hashed_query = CGI.parse(response.env.url.query)
+          expect(hashed_query).to eq('query' => ['["extract",[["function","count"], "status"], ["~","certname",""], ["group_by", "status"]]'])
+        end
+      end
+
+      describe '.query_facts' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/facts') { [200, []] }
+          end
+        end
+        it 'query for all facts' do
+          expect { subject.query_facts }.not_to raise_error
+          expect(subject.query_facts.status).to eq(200)
+        end
+        it 'query for facts matching query' do
+          expect { subject.query_facts('["=", "name", "operatingsystem"]') }.not_to raise_error
+          response = subject.query_facts('["=", "name", "operatingsystem"]')
+          expect(response.status).to eq(200)
+          hashed_query = CGI.parse(response.env.url.query)
+          expect(hashed_query).to eq('query' => ['["=", "name", "operatingsystem"]'])
+        end
+      end
+
+      # N.B. in several tests below we use ++subject.send(:foo?)++ instead of ++subject.foo?++ because
+      # ++foo++ is a private method, so we have to use this sneaky workaround to access the methods for
+      # testing purposes. Ruby bug or Ruby feature? -- you decide.
+
+      describe '.nodes_match?' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/nodes') { [200, [], [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }]] }
+          end
+        end
+        it 'nodes different size' do
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' },
+                                              { 'certname' => 'name2', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }])).to be false
+        end
+        it 'nodes do not match' do
+          # N.B.: nodes are considered to match even if facts_timestamp and/or catalog_timestamp differ
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name_bad', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }])).to be false
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time_bad', 'catalog_timestamp' => 'catalog_time' }])).to be false
+        end
+        it 'nodes match' do
+          # N.B.: nodes are considered to match even if facts_timestamp and/or catalog_timestamp differ
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }])).to be true
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time_bad', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }])).to be true
+          expect(subject.send(:nodes_match?, [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time_bad' }])).to be true
+        end
+
+      end
+
+      describe '.catalogs_match?' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/catalogs') { [200, [], [{ 'catalog_uuid' => 'catalog_uuid_1', 'producer_timestamp' => 'time' }]] }
+          end
+        end
+        it 'catalogs different size' do
+          expect(subject.send(:catalogs_match?, [{ 'catalog_uuid' => 'catalog_uuid_1', 'producer_timestamp' => 'time' },
+                                                 { 'catalog_uuid' => 'catalog_uuid_2', 'producer_timestamp' => 'time2' }])).to be false
+        end
+        it 'catalogs do not match' do
+          expect(subject.send(:catalogs_match?, [{ 'catalog_uuid' => 'catalog_uuid_2', 'producer_timestamp' => 'time2' }])).to be false
+        end
+        it 'catalogs match' do
+          expect(subject.send(:catalogs_match?, [{ 'catalog_uuid' => 'catalog_uuid_1', 'producer_timestamp' => 'time' }])).to be true
+        end
+
+      end
+
+      describe '.facts_match?' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/facts') { [200, [], [{ 'name' => 'name', 'value' => 'value' }]] }
+          end
+        end
+        it 'facts different size' do
+          expect(subject.send(:facts_match?, [{ 'name' => 'name', 'value' => 'value' },
+                                              { 'name2' => 'name', 'value2' => 'value' }])).to be false
+        end
+        it 'facts do not match' do
+          expect(subject.send(:facts_match?, [{ 'name2' => 'name', 'value2' => 'value' }])).to be false
+        end
+        it 'facts match' do
+          expect(subject.send(:facts_match?, [{ 'name' => 'name', 'value' => 'value' }])).to be true
+        end
+
+      end
+
+      describe '.reports_match?' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/reports') { [200, [], [{ 'hash' => 'hash_value', 'producer_timestamp' => 'time' }]] }
+          end
+        end
+        it 'reports different size' do
+          expect(subject.send(:reports_match?, [{ 'hash' => 'hash_value', 'producer_timestamp' => 'time' },
+                                                { 'hash' => 'hash_value2', 'producer_timestamp' => 'time2' }])).to be false
+        end
+        it 'reports do not match' do
+          expect(subject.send(:reports_match?, [{ 'hash' => 'hash_value2', 'producer_timestamp' => 'time2' }])).to be false
+        end
+        it 'reports match' do
+          expect(subject.send(:reports_match?, [{ 'hash' => 'hash_value', 'producer_timestamp' => 'time' }])).to be true
+        end
+
+      end
+
+      describe '.database_matches_self?' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/pdb/query/v4/nodes') { |env| env[:url].to_s == "https://test.com:8081/pdb/query/v4/nodes" ?
+                [200, [], [{ 'certname' => 'name', 'facts_timestamp' => 'facts_time', 'report_timestamp' => 'reports_time', 'catalog_timestamp' => 'catalog_time' }]] :
+                [200, [], [{ 'certname' => 'name2', 'facts_timestamp' => 'facts_time', 'report_timestamp2' => 'reports_time', 'catalog_timestamp' => 'catalog_time2' }]] }
+            stub.post('/pdb/query/v4/catalogs') { |env| env[:url].to_s == "https://test.com:8081/pdb/query/v4/catalogs" ?
+                [200, [], [{ 'catalog_uuid' => 'catalog_uuid_1', 'producer_timestamp' => 'time' }]] :
+                [200, [], [{ 'catalog_uuid' => 'catalog_uuid_2', 'producer_timestamp' => 'time2' }]] }
+            stub.post('/pdb/query/v4/facts') { |env| env[:url].to_s == "https://test.com:8081/pdb/query/v4/facts" ?
+                [200, [], [{ 'name' => 'name', 'value' => 'value' }]] :
+                [200, [], [{ 'name' => 'name2', 'value' => 'value2' }]] }
+            stub.post('/pdb/query/v4/reports') { |env| env[:url].to_s == "https://test.com:8081/pdb/query/v4/reports" ?
+                [200, [], [{ 'hash' => 'hash_value', 'producer_timestamp' => 'time' }]] :
+                [200, [], [{ 'hash' => 'hash_value2', 'producer_timestamp' => 'time2' }]] }
+          end
+          expect(subject).to receive(:create_default_connection).with(any_args).twice.and_return(subject.connection)
+          expect(Scooter::Utilities::BeakerUtilities).to receive(:get_public_ip).and_return('public_ip')
+        end
+        it 'compare with self' do
+          expect(subject.database_matches_self?('test.com')).to be_truthy
+        end
+
+        it 'compare with different' do
+          expect(subject.faraday_logger).to receive(:warn).with /Nodes do not match/
+          expect(subject.database_matches_self?('test2.com')).to be_falsey
+        end
+      end
+
+    end
+  end
+end

data/spec/scooter/httpdispatchers/rbac/rbac_spec.rb

@@ -0,0 +1,387 @@
+require 'spec_helper'
+
+module Scooter
+
+  describe Scooter::HttpDispatchers::Rbac do
+
+    let(:host) { double('host') }
+    let(:credentials) { double('credentials') }
+    let(:user_list) {
+      [
+        {
+          :email        => "",
+          :is_revoked   => false,
+          :last_login   => nil,
+          :is_remote    => false,
+          :login        => "api_user",
+          :is_superuser => true,
+          :id           => "af94921f-bd76-4b58-b5ce-e17c029a2790",
+          :role_ids     => [
+            1
+          ],
+          :display_name => "API User",
+          :is_group     => false
+        },
+        {
+          :email        => "",
+          :is_revoked   => false,
+          :last_login   => "2016-06-09T19 =>14 =>25.923Z",
+          :is_remote    => false,
+          :login        => "admin",
+          :is_superuser => true,
+          :id           => "42bf351c-f9ec-40af-84ad-e976fec7f4bd",
+          :role_ids     => [
+            1
+          ],
+          :display_name => "Administrator",
+          :is_group     => false
+        }
+      ]
+    }
+    let(:role_list) {
+      [
+        {
+          :description  => "Manage users and their permissions, and create and modify node groups and other objects.",
+          :user_ids     => [
+            "42bf351c-f9ec-40af-84ad-e976fec7f4bd",
+            "af94921f-bd76-4b58-b5ce-e17c029a2790"
+          ],
+          :group_ids    => [],
+          :display_name => "Administrators",
+          :id           => 1,
+          :permissions  => [
+            {
+              :object_type => "console_page",
+              :action      => "view",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "modify_children",
+              :instance    => "*"
+            },
+            {
+              :object_type => "puppet_agent",
+              :action      => "run",
+              :instance    => "*"
+            },
+            {
+              :object_type => "users",
+              :action      => "edit",
+              :instance    => "*"
+            },
+            {
+              :object_type => "roles",
+              :action      => "edit",
+              :instance    => "*"
+            },
+            {
+              :object_type => "users",
+              :action      => "create",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "set_environment",
+              :instance    => "*"
+            },
+            {
+              :object_type => "user_groups",
+              :action      => "import",
+              :instance    => "*"
+            },
+            {
+              :object_type => "roles",
+              :action      => "create",
+              :instance    => "*"
+            },
+            {
+              :object_type => "users",
+              :action      => "reset_password",
+              :instance    => "*"
+            },
+            {
+              :object_type => "directory_service",
+              :action      => "edit",
+              :instance    => "*"
+            },
+            {
+              :object_type => "cert_requests",
+              :action      => "accept_reject",
+              :instance    => "*"
+            },
+            {
+              :object_type => "roles",
+              :action      => "edit_members",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "edit_classification",
+              :instance    => "*"
+            },
+            {
+              :object_type => "users",
+              :action      => "disable",
+              :instance    => "*"
+            },
+            {
+              :object_type => "tokens",
+              :action      => "override_lifetime",
+              :instance    => "*"
+            },
+            {
+              :object_type => "nodes",
+              :action      => "view_data",
+              :instance    => "*"
+            },
+            {
+              :object_type => "environment",
+              :action      => "deploy_code",
+              :instance    => "*"
+            },
+            {
+              :object_type => "nodes",
+              :action      => "edit_data",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "edit_child_rules",
+              :instance    => "*"
+            },
+            {
+              :object_type => "orchestration",
+              :action      => "use",
+              :instance    => "*"
+            },
+            {
+              :object_type => "user_groups",
+              :action      => "delete",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "view",
+              :instance    => "*"
+            }
+          ]
+        },
+        {
+          :description  => "Create and modify node groups and other objects.",
+          :user_ids     => [],
+          :group_ids    => [],
+          :display_name => "Operators",
+          :id           => 2,
+          :permissions  => [
+            {
+              :object_type => "tokens",
+              :action      => "override_lifetime",
+              :instance    => "*"
+            },
+            {
+              :object_type => "cert_requests",
+              :action      => "accept_reject",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "view",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "edit_classification",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "modify_children",
+              :instance    => "*"
+            },
+            {
+              :object_type => "puppet_agent",
+              :action      => "run",
+              :instance    => "*"
+            },
+            {
+              :object_type => "environment",
+              :action      => "deploy_code",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "set_environment",
+              :instance    => "*"
+            },
+            {
+              :object_type => "orchestration",
+              :action      => "use",
+              :instance    => "*"
+            },
+            {
+              :object_type => "console_page",
+              :action      => "view",
+              :instance    => "*"
+            },
+            {
+              :object_type => "node_groups",
+              :action      => "edit_child_rules",
+              :instance    => "*"
+            }
+          ]
+        },
+        {
+          :description  => "Test delete role functionality",
+          :user_ids     => [],
+          :group_ids    => [],
+          :display_name => "Dummy role",
+          :id           => 13,
+          :permissions  => [
+            {
+              :object_type => "console_page",
+              :action      => "view",
+              :instance    => "*"
+            }]
+        }
+      ]
+    }
+    let(:group_list) {
+      []
+    }
+
+    subject { HttpDispatchers::ConsoleDispatcher.new(host, credentials) }
+
+    context 'with a beaker host passed in' do
+
+      unixhost = { roles:     ['test_role'],
+                   'platform' => 'debian-7-x86_64' }
+      let(:host) { Beaker::Host.create('test.com', unixhost, {}) }
+      let(:credentials) { { login: 'Ziggy', password: 'Stardust' } }
+
+      before do
+        expect(Scooter::Utilities::BeakerUtilities).to receive(:pe_ca_cert_file).and_return('cert file')
+        expect(Scooter::Utilities::BeakerUtilities).to receive(:get_public_ip).and_return('public_ip')
+        expect(subject).not_to be_nil
+      end
+
+      describe '.acquire_token_with_credentials' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/rbac-api/v1/auth/token') { [200, {}, 'token' => 'blah'] }
+          end
+        end
+        it 'sets the token instance variable for the dispatcher' do
+          expect { subject.acquire_token_with_credentials }.not_to raise_error
+          expect(subject.token).to eq('blah')
+        end
+        it 'accepts an optional lifetime parameter' do
+          expect { subject.acquire_token_with_credentials('600') }.not_to raise_error
+          expect(subject.token).to eq('blah')
+        end
+      end
+
+      describe 'ensure failure to get a token does not set the token instance variable' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.post('/rbac-api/v1/auth/token') { [401, {}, 'unauthorized'] }
+          end
+        end
+        it 'the token variable should still be nil for a failed request' do
+          expect { subject.acquire_token_with_credentials }.to raise_error(Faraday::ClientError)
+          expect(subject.token).to eq(nil)
+        end
+      end
+
+      describe '.delete_role_by_name' do
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.get('rbac-api/v1/roles') { [200, {}, role_list] }
+            stub.delete('rbac-api/v1/roles/') { [200, {}] }
+          end
+        end
+        it 'returns 200 when deleting role' do
+          response = subject.delete_role_by_name('Dummy role')
+          expect(response.status).to eq(200)
+        end
+        it 'returns 400 when getting deleted role' do
+          response = subject.get_role_by_name('Dummy role')
+          expect(response).to be_nil
+        end
+      end
+
+      describe '.get_group_data_by_name' do
+        let(:groups_array) {
+          [{ "user_ids"     => [],
+             "role_ids"     => [],
+             "display_name" => "",
+             "is_superuser" => false,
+             "is_remote"    => true,
+             "is_group"     => true,
+             "login"        => "group1",
+             "id"           => "09c2c1fd-ea01-4555-bc7b-a8f25c4511f8" },
+             { "user_ids"     => [],
+               "role_ids"     => [],
+               "display_name" => "",
+               "is_superuser" => false,
+               "is_remote"    => true,
+               "is_group"     => true,
+               "login"        => "group2",
+               "id"           => "09c2c1fd-ea01-4555-bc7b-a8f25c4511f7" }]
+        }
+        before do
+          expect(subject).to receive(:get_list_of_groups) { groups_array }
+        end
+        it 'can find group1 in the payload' do
+          expect(subject.get_group_data_by_name('group1')).to eq(groups_array[0])
+        end
+        it 'can find group2 in the payload' do
+          expect(subject.get_group_data_by_name('group2')).to eq(groups_array[1])
+        end
+        it 'returns nil for group3, who is not in the payload' do
+          expect(subject.get_group_data_by_name('group3')).to eq(nil)
+        end
+      end
+
+      describe '.rbac_database_matches_self' do
+
+
+        before do
+          # find the index of the default Faraday::Adapter::NetHttp handler
+          # and replace it with the Test adapter
+          index = subject.connection.builder.handlers.index(Faraday::Adapter::NetHttp)
+          subject.connection.builder.swap(index, Faraday::Adapter::Test) do |stub|
+            stub.get('rbac-api/v1/users') { |env| env[:url].to_s == "https://test.com:4433/rbac-api/v1/users" ?
+                                            [200, [], user_list] :
+                                            [200, [], user_list.dup.push('another_array_item')] }
+            stub.get('rbac-api/v1/groups') { |env| env[:url].to_s == "https://test.com:4433/rbac-api/v1/groups" ?
+                                             [200, [], group_list] :
+                                             [200, [], group_list.dup.push('another_array_item')] }
+            stub.get('rbac-api/v1/roles') { |env| env[:url].to_s == "https://test.com:4433/rbac-api/v1/roles" ?
+                                            [200, [], role_list] :
+                                            [200, [], role_list.dup.push('another_array_item')] }
+          end
+          expect(subject).to receive(:create_default_connection).with(any_args).twice.and_return(subject.connection)
+          expect(Scooter::Utilities::BeakerUtilities).to receive(:get_public_ip).and_return('public_ip')
+        end
+        it 'compare with self' do
+          expect(subject.rbac_database_matches_self?('test.com')).to be_truthy
+        end
+
+        it 'compare with different' do
+          expect(subject.faraday_logger).to receive(:warn).with /Users do not match/
+          expect(subject.rbac_database_matches_self?('test2.com')).to be_falsey
+        end
+      end
+    end
+  end
+end