mirror of https://github.com/ansible/ansible.git
Split integration test fixes. (#78281)
* Add setup_test_user integration target. This integration target creates a temporary test user and removes it when the current integration target finishes. This user is configured with a password so it can be used with become, even when the current user is unprivileged. * Fix slurp integration test. * Fix unarchive integration test. * Fix module_utils integration test.pull/78294/head
parent
b63812bc08
commit
ee4588abca
@ -1,5 +1,6 @@
|
||||
shippable/posix/group3
|
||||
needs/root
|
||||
needs/target/setup_nobody
|
||||
needs/target/setup_test_user
|
||||
needs/target/setup_remote_tmp_dir
|
||||
context/target
|
||||
destructive
|
||||
|
@ -0,0 +1,6 @@
|
||||
- name: delete test user
|
||||
user:
|
||||
name: "{{ test_user_name }}"
|
||||
state: absent
|
||||
remove: yes
|
||||
force: yes
|
@ -0,0 +1,14 @@
|
||||
- name: set variables
|
||||
set_fact:
|
||||
test_user_name: ansibletest0
|
||||
test_user_group: null
|
||||
|
||||
- name: set plaintext password
|
||||
no_log: yes
|
||||
set_fact:
|
||||
test_user_plaintext_password: "{{ lookup('password', '/dev/null') }}"
|
||||
|
||||
- name: set hashed password
|
||||
no_log: yes
|
||||
set_fact:
|
||||
test_user_hashed_password: "{{ test_user_plaintext_password | password_hash('sha512') }}"
|
@ -0,0 +1,14 @@
|
||||
- name: set variables
|
||||
set_fact:
|
||||
test_user_name: ansibletest0
|
||||
test_user_group: staff
|
||||
|
||||
- name: set plaintext password
|
||||
no_log: yes
|
||||
set_fact:
|
||||
test_user_plaintext_password: "{{ lookup('password', '/dev/null') }}"
|
||||
|
||||
- name: set hashed password
|
||||
no_log: yes
|
||||
set_fact:
|
||||
test_user_hashed_password: "{{ test_user_plaintext_password }}"
|
@ -0,0 +1,37 @@
|
||||
- name: gather distribution facts
|
||||
gather_facts:
|
||||
gather_subset: distribution
|
||||
when: ansible_distribution is not defined
|
||||
|
||||
- name: include distribution specific tasks
|
||||
include_tasks: "{{ lookup('first_found', params) }}"
|
||||
vars:
|
||||
params:
|
||||
files:
|
||||
- "{{ ansible_distribution | lower }}.yml"
|
||||
- default.yml
|
||||
paths:
|
||||
- tasks
|
||||
|
||||
- name: create test user
|
||||
user:
|
||||
name: "{{ test_user_name }}"
|
||||
group: "{{ test_user_group or omit }}"
|
||||
password: "{{ test_user_hashed_password or omit }}"
|
||||
register: test_user
|
||||
notify:
|
||||
- delete test user
|
||||
|
||||
- name: run whoami as the test user
|
||||
shell: whoami
|
||||
vars:
|
||||
# ansible_become_method and ansible_become_flags are not set, allowing them to be provided by inventory
|
||||
ansible_become: yes
|
||||
ansible_become_user: "{{ test_user_name }}"
|
||||
ansible_become_password: "{{ test_user_plaintext_password }}"
|
||||
register: whoami
|
||||
|
||||
- name: verify becoming the test user worked
|
||||
assert:
|
||||
that:
|
||||
- whoami.stdout == test_user_name
|
@ -1 +1,2 @@
|
||||
shippable/posix/group1
|
||||
destructive
|
||||
|
@ -1 +0,0 @@
|
||||
become_test_user: testuser
|
@ -1,6 +0,0 @@
|
||||
- name: remove test user and their home dir
|
||||
user:
|
||||
name: "{{ become_test_user }}"
|
||||
state: absent
|
||||
remove: yes
|
||||
force: yes
|
@ -1,2 +1,3 @@
|
||||
dependencies:
|
||||
- setup_remote_tmp_dir
|
||||
- setup_test_user
|
||||
|
@ -1,4 +1,4 @@
|
||||
dependencies:
|
||||
- prepare_tests
|
||||
- setup_remote_tmp_dir
|
||||
- setup_gnutar
|
||||
- setup_test_user
|
||||
|
@ -1,73 +1,50 @@
|
||||
- name: Create unarchivetest3 user
|
||||
user:
|
||||
name: unarchivetest3
|
||||
group: "{{ group_table[ansible_facts['distribution']] | default(omit) }}"
|
||||
register: user
|
||||
vars:
|
||||
group_table:
|
||||
MacOSX: staff
|
||||
|
||||
- name: Test unarchiving as root and apply different ownership to top folder
|
||||
become: yes
|
||||
become_user: root
|
||||
vars:
|
||||
ansible_become: yes
|
||||
ansible_become_user: root
|
||||
ansible_become_password: null
|
||||
block:
|
||||
|
||||
- name: Create top folder owned by root
|
||||
file:
|
||||
path: "{{ user.home }}/tarball-top-folder"
|
||||
path: "{{ test_user.home }}/tarball-top-folder"
|
||||
state: directory
|
||||
owner: root
|
||||
|
||||
- name: Add a file owned by root
|
||||
copy:
|
||||
src: foo.txt
|
||||
dest: "{{ user.home }}/tarball-top-folder/foo-unarchive.txt"
|
||||
dest: "{{ test_user.home }}/tarball-top-folder/foo-unarchive.txt"
|
||||
mode: preserve
|
||||
|
||||
- name: Create a tarball as root. This tarball won't list the top folder when doing "tar tvf test-tarball.tar.gz"
|
||||
shell: tar -czf test-tarball.tar.gz tarball-top-folder/foo-unarchive.txt
|
||||
args:
|
||||
chdir: "{{ user.home }}"
|
||||
creates: "{{ user.home }}/test-tarball.tar.gz"
|
||||
chdir: "{{ test_user.home }}"
|
||||
creates: "{{ test_user.home }}/test-tarball.tar.gz"
|
||||
|
||||
- name: Create unarchive destination folder in /home/unarchivetest3/unarchivetest3-unarchive
|
||||
- name: Create unarchive destination folder in {{ test_user.home }}/unarchivetest3-unarchive
|
||||
file:
|
||||
path: "{{ user.home }}/unarchivetest3-unarchive"
|
||||
path: "{{ test_user.home }}/unarchivetest3-unarchive"
|
||||
state: directory
|
||||
owner: unarchivetest3
|
||||
group: "{{ user.group }}"
|
||||
owner: "{{ test_user.name }}"
|
||||
group: "{{ test_user.group }}"
|
||||
|
||||
- name: unarchive the tarball as root. apply ownership for unarchivetest3
|
||||
- name: "unarchive the tarball as root. apply ownership for {{ test_user.name }}"
|
||||
unarchive:
|
||||
src: "{{ user.home }}/test-tarball.tar.gz"
|
||||
dest: "{{ user.home }}/unarchivetest3-unarchive"
|
||||
src: "{{ test_user.home }}/test-tarball.tar.gz"
|
||||
dest: "{{ test_user.home }}/unarchivetest3-unarchive"
|
||||
remote_src: yes
|
||||
list_files: True
|
||||
owner: unarchivetest3
|
||||
group: "{{ user.group }}"
|
||||
owner: "{{ test_user.name }}"
|
||||
group: "{{ test_user.group }}"
|
||||
|
||||
- name: Stat the extracted top folder
|
||||
stat:
|
||||
path: "{{ user.home }}/unarchivetest3-unarchive/tarball-top-folder"
|
||||
path: "{{ test_user.home }}/unarchivetest3-unarchive/tarball-top-folder"
|
||||
register: top_folder_info
|
||||
|
||||
- name: verify that extracted top folder is owned by unarchivetest3
|
||||
- name: "verify that extracted top folder is owned by {{ test_user.name }}"
|
||||
assert:
|
||||
that:
|
||||
- top_folder_info.stat.pw_name == "unarchivetest3"
|
||||
- top_folder_info.stat.gid == {{ user.group }}
|
||||
|
||||
always:
|
||||
- name: remove our unarchivetest3 user and files
|
||||
user:
|
||||
name: unarchivetest3
|
||||
state: absent
|
||||
remove: yes
|
||||
become: no
|
||||
|
||||
- name: Remove user home directory on macOS
|
||||
file:
|
||||
path: /Users/unarchivetest3
|
||||
state: absent
|
||||
become: no
|
||||
when: ansible_facts.distribution == 'MacOSX'
|
||||
- top_folder_info.stat.pw_name == test_user.name
|
||||
- top_folder_info.stat.gid == test_user.group
|
||||
|
Loading…
Reference in New Issue