open-vault/vault/policy_test.go

package vault

import (
	"fmt"
	"reflect"
	"testing"
)

func TestPolicy_Parse(t *testing.T) {
	p, err := Parse(rawPolicy)
	if err != nil {
		t.Fatalf("err: %v", err)
	}

	if p.Name != "dev" {
		t.Fatalf("bad: %#v", p)
	}

	expect := []*PathCapabilities{
		&PathCapabilities{"", "deny",
			[]string{
				"deny",
			}, DenyCapabilityInt, true},
		&PathCapabilities{"stage/", "sudo",
			[]string{
				"create",
				"read",
				"update",
				"delete",
				"list",
				"sudo",
			}, CreateCapabilityInt | ReadCapabilityInt | UpdateCapabilityInt |
				DeleteCapabilityInt | ListCapabilityInt | SudoCapabilityInt, true},
		&PathCapabilities{"prod/version", "read",
			[]string{
				"read",
				"list",
			}, ReadCapabilityInt | ListCapabilityInt, false},
		&PathCapabilities{"foo/bar", "read",
			[]string{
				"read",
				"list",
			}, ReadCapabilityInt | ListCapabilityInt, false},
		&PathCapabilities{"foo/bar", "",
			[]string{
				"create",
				"sudo",
			}, CreateCapabilityInt | SudoCapabilityInt, false},
	}
	if !reflect.DeepEqual(p.Paths, expect) {
		ret := fmt.Sprintf("bad:\nexpected:\n")
		for _, v := range expect {
			ret = fmt.Sprintf("%s\n%#v", ret, *v)
		}
		ret = fmt.Sprintf("%s\n\ngot:\n", ret)
		for _, v := range p.Paths {
			ret = fmt.Sprintf("%s\n%#v", ret, *v)
		}
		t.Fatalf("%s\n", ret)
	}
}

var rawPolicy = `
# Developer policy
name = "dev"

# Deny all paths by default
path "*" {
	policy = "deny"
}

# Allow full access to staging
path "stage/*" {
	policy = "sudo"
}

# Limited read privilege to production
path "prod/version" {
	policy = "read"
}

# Read access to foobar
# Also tests stripping of leading slash
path "/foo/bar" {
	policy = "read"
}

# Add capabilities for creation and sudo to foobar
# This will be separate; they are combined when compiled into an ACL
path "foo/bar" {
	capabilities = ["create", "sudo"]
}
`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`package vault`

			`import (`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`"fmt"`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`"reflect"`
			`"testing"`
			`)`

			`func TestPolicy_Parse(t *testing.T) {`
			`p, err := Parse(rawPolicy)`
			`if err != nil {`
			`t.Fatalf("err: %v", err)`
			`}`

			`if p.Name != "dev" {`
			`t.Fatalf("bad: %#v", p)`
			`}`

Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`expect := []*PathCapabilities{`
			`&PathCapabilities{"", "deny",`
			`[]string{`
			`"deny",`
Convert map to bitmap 2016-01-12 22:08:10 +00:00			`}, DenyCapabilityInt, true},`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`&PathCapabilities{"stage/", "sudo",`
			`[]string{`
			`"create",`
			`"read",`
			`"update",`
			`"delete",`
			`"list",`
			`"sudo",`
Convert map to bitmap 2016-01-12 22:08:10 +00:00			`}, CreateCapabilityInt \| ReadCapabilityInt \| UpdateCapabilityInt \|`
			`DeleteCapabilityInt \| ListCapabilityInt \| SudoCapabilityInt, true},`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`&PathCapabilities{"prod/version", "read",`
			`[]string{`
			`"read",`
			`"list",`
Convert map to bitmap 2016-01-12 22:08:10 +00:00			`}, ReadCapabilityInt \| ListCapabilityInt, false},`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`&PathCapabilities{"foo/bar", "read",`
			`[]string{`
			`"read",`
			`"list",`
Convert map to bitmap 2016-01-12 22:08:10 +00:00			`}, ReadCapabilityInt \| ListCapabilityInt, false},`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`&PathCapabilities{"foo/bar", "",`
			`[]string{`
			`"create",`
			`"sudo",`
Convert map to bitmap 2016-01-12 22:08:10 +00:00			`}, CreateCapabilityInt \| SudoCapabilityInt, false},`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`}`
			`if !reflect.DeepEqual(p.Paths, expect) {`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`ret := fmt.Sprintf("bad:\nexpected:\n")`
			`for _, v := range expect {`
			`ret = fmt.Sprintf("%s\n%#v", ret, *v)`
			`}`
			`ret = fmt.Sprintf("%s\n\ngot:\n", ret)`
			`for _, v := range p.Paths {`
			`ret = fmt.Sprintf("%s\n%#v", ret, *v)`
			`}`
			`t.Fatalf("%s\n", ret)`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`}`
			`}`

			var rawPolicy = `
			`# Developer policy`
			`name = "dev"`

			`# Deny all paths by default`
vault: look for glob character in policy 2015-07-05 21:58:38 +00:00			`path "*" {`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`policy = "deny"`
			`}`

			`# Allow full access to staging`
vault: look for glob character in policy 2015-07-05 21:58:38 +00:00			`path "stage/*" {`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`policy = "sudo"`
			`}`

			`# Limited read privilege to production`
vault: look for glob character in policy 2015-07-05 21:58:38 +00:00			`path "prod/version" {`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`policy = "read"`
			`}`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00
			`# Read access to foobar`
Strip leading paths in policies. It appears to be a common mistake, but they won't ever match. Fixes #1167 2016-03-03 16:32:48 +00:00			`# Also tests stripping of leading slash`
			`path "/foo/bar" {`
Create more granular ACL capabilities. This commit splits ACL policies into more fine-grained capabilities. This both drastically simplifies the checking code and makes it possible to support needed workflows that are not possible with the previous method. It is backwards compatible; policies containing a "policy" string are simply converted to a set of capabilities matching previous behavior. Fixes #724 (and others). 2016-01-07 20:10:05 +00:00			`policy = "read"`
			`}`

			`# Add capabilities for creation and sudo to foobar`
			`# This will be separate; they are combined when compiled into an ACL`
			`path "foo/bar" {`
			`capabilities = ["create", "sudo"]`
			`}`
vault: Adding policy parsing 2015-03-17 22:53:29 +00:00			`