open-nomad/command/acl_bootstrap_test.go

78 lines
1.7 KiB
Go
Raw Normal View History

2017-09-11 17:46:17 +00:00
package command
import (
"testing"
2017-10-24 17:37:03 +00:00
"github.com/hashicorp/nomad/command/agent"
2017-09-11 17:46:17 +00:00
"github.com/mitchellh/cli"
2017-10-24 17:37:03 +00:00
"github.com/stretchr/testify/assert"
2017-09-11 17:46:17 +00:00
)
2017-10-25 18:08:15 +00:00
func TestACLBootstrapCommand(t *testing.T) {
2017-09-11 17:46:17 +00:00
t.Parallel()
2017-10-24 17:37:03 +00:00
assert := assert.New(t)
// create a acl-enabled server without bootstrapping the token
config := func(c *agent.Config) {
c.ACL.Enabled = true
c.ACL.PolicyTTL = 0
}
srv, _, url := testServer(t, true, config)
defer srv.Shutdown()
assert.Nil(srv.RootToken)
2020-10-05 14:07:41 +00:00
ui := cli.NewMockUi()
2017-10-24 17:37:03 +00:00
cmd := &ACLBootstrapCommand{Meta: Meta{Ui: ui, flagAddress: url}}
code := cmd.Run([]string{"-address=" + url})
assert.Equal(0, code)
out := ui.OutputWriter.String()
assert.Contains(out, "Secret ID")
2017-09-11 17:46:17 +00:00
}
2017-10-25 18:08:15 +00:00
2018-03-11 17:43:19 +00:00
// If a bootstrap token has already been created, attempts to create more should
2017-10-25 18:08:15 +00:00
// fail.
func TestACLBootstrapCommand_ExistingBootstrapToken(t *testing.T) {
t.Parallel()
assert := assert.New(t)
config := func(c *agent.Config) {
c.ACL.Enabled = true
}
srv, _, url := testServer(t, true, config)
defer srv.Shutdown()
assert.NotNil(srv.RootToken)
2020-10-05 14:07:41 +00:00
ui := cli.NewMockUi()
2017-10-25 18:08:15 +00:00
cmd := &ACLBootstrapCommand{Meta: Meta{Ui: ui, flagAddress: url}}
code := cmd.Run([]string{"-address=" + url})
assert.Equal(1, code)
out := ui.OutputWriter.String()
assert.NotContains(out, "Secret ID")
}
// Attempting to bootstrap a token on a non-ACL enabled server should fail.
func TestACLBootstrapCommand_NonACLServer(t *testing.T) {
t.Parallel()
assert := assert.New(t)
srv, _, url := testServer(t, true, nil)
defer srv.Shutdown()
2020-10-05 14:07:41 +00:00
ui := cli.NewMockUi()
2017-10-25 18:08:15 +00:00
cmd := &ACLBootstrapCommand{Meta: Meta{Ui: ui, flagAddress: url}}
code := cmd.Run([]string{"-address=" + url})
assert.Equal(1, code)
out := ui.OutputWriter.String()
assert.NotContains(out, "Secret ID")
}