mirror of https://github.com/ansible/ansible.git
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
178 lines
5.3 KiB
Python
178 lines
5.3 KiB
Python
# -*- coding: utf-8 -*-
|
|
#
|
|
# Copyright: (c) 2019, F5 Networks Inc.
|
|
# GNU General Public License v3.0 (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
from __future__ import (absolute_import, division, print_function)
|
|
__metaclass__ = type
|
|
|
|
import os
|
|
import json
|
|
import pytest
|
|
import sys
|
|
|
|
if sys.version_info < (2, 7):
|
|
pytestmark = pytest.mark.skip("F5 Ansible modules require Python >= 2.7")
|
|
|
|
from ansible.module_utils.basic import AnsibleModule
|
|
|
|
try:
|
|
from library.modules.bigip_device_certificate import ApiParameters
|
|
from library.modules.bigip_device_certificate import ModuleParameters
|
|
from library.modules.bigip_device_certificate import ModuleManager
|
|
from library.modules.bigip_device_certificate import ArgumentSpec
|
|
|
|
# In Ansible 2.8, Ansible changed import paths.
|
|
from test.units.compat import unittest
|
|
from test.units.compat.mock import Mock
|
|
from test.units.compat.mock import patch
|
|
|
|
from test.units.modules.utils import set_module_args
|
|
except ImportError:
|
|
from ansible.modules.network.f5.bigip_device_certificate import ApiParameters
|
|
from ansible.modules.network.f5.bigip_device_certificate import ModuleParameters
|
|
from ansible.modules.network.f5.bigip_device_certificate import ModuleManager
|
|
from ansible.modules.network.f5.bigip_device_certificate import ArgumentSpec
|
|
|
|
# Ansible 2.8 imports
|
|
from units.compat import unittest
|
|
from units.compat.mock import Mock
|
|
from units.compat.mock import patch
|
|
|
|
from units.modules.utils import set_module_args
|
|
|
|
|
|
fixture_path = os.path.join(os.path.dirname(__file__), 'fixtures')
|
|
fixture_data = {}
|
|
|
|
|
|
def load_fixture(name):
|
|
path = os.path.join(fixture_path, name)
|
|
|
|
if path in fixture_data:
|
|
return fixture_data[path]
|
|
|
|
with open(path) as f:
|
|
data = f.read()
|
|
|
|
try:
|
|
data = json.loads(data)
|
|
except Exception:
|
|
pass
|
|
|
|
fixture_data[path] = data
|
|
return data
|
|
|
|
|
|
class TestParameters(unittest.TestCase):
|
|
def test_module_parameters(self):
|
|
args = dict(
|
|
key_size=2048,
|
|
cert_name='foo.crt',
|
|
key_name='foo.key',
|
|
days_valid=60,
|
|
issuer=dict(
|
|
country='US',
|
|
state='WA',
|
|
locality='Seattle',
|
|
organization='F5',
|
|
division='IT',
|
|
common_name='foo.bar.local',
|
|
email='admin@foo.bar.local'
|
|
),
|
|
new_cert='yes'
|
|
)
|
|
p = ModuleParameters(params=args)
|
|
assert p.key_size == 2048
|
|
assert p.cert_name == 'foo.crt'
|
|
assert p.key_name == 'foo.key'
|
|
assert p.days_valid == 60
|
|
assert 'CN=foo.bar.local' in p.issuer
|
|
|
|
|
|
class TestManager(unittest.TestCase):
|
|
def setUp(self):
|
|
self.spec = ArgumentSpec()
|
|
|
|
def test_update_expired_cert(self, *args):
|
|
set_module_args(dict(
|
|
days_valid=60,
|
|
provider=dict(
|
|
server='localhost',
|
|
password='password',
|
|
user='admin',
|
|
transport='cli',
|
|
server_port=22
|
|
)
|
|
))
|
|
|
|
module = AnsibleModule(
|
|
argument_spec=self.spec.argument_spec,
|
|
supports_check_mode=self.spec.supports_check_mode,
|
|
required_if=self.spec.required_if
|
|
)
|
|
|
|
mm = ModuleManager(module=module)
|
|
mm.expired = Mock(return_value=True)
|
|
mm.update_certificate = Mock(return_value=True)
|
|
mm.restart_daemon = Mock(return_value=True)
|
|
mm.copy_files_to_trusted = Mock(return_value=True)
|
|
|
|
results = mm.exec_module()
|
|
|
|
assert results['changed'] is True
|
|
assert results['days_valid'] == 60
|
|
|
|
def test_create_new_cert(self):
|
|
set_module_args(dict(
|
|
key_size=2048,
|
|
cert_name='foo.crt',
|
|
key_name='foo.key',
|
|
days_valid=60,
|
|
new_cert='yes',
|
|
issuer=dict(
|
|
country='US',
|
|
state='WA',
|
|
locality='Seattle',
|
|
organization='F5',
|
|
division='IT',
|
|
common_name='foo.bar.local',
|
|
email='admin@foo.bar.local'
|
|
),
|
|
provider=dict(
|
|
server='localhost',
|
|
password='password',
|
|
user='admin',
|
|
transport='cli',
|
|
server_port=22
|
|
)
|
|
))
|
|
|
|
module = AnsibleModule(
|
|
argument_spec=self.spec.argument_spec,
|
|
supports_check_mode=self.spec.supports_check_mode,
|
|
required_if=self.spec.required_if
|
|
)
|
|
|
|
mm = ModuleManager(module=module)
|
|
mm.expired = Mock(return_value=True)
|
|
mm.generate_cert_key = Mock(return_value=True)
|
|
mm.restart_daemon = Mock(return_value=True)
|
|
mm.configure_new_cert = Mock(return_value=True)
|
|
|
|
results = mm.exec_module()
|
|
|
|
assert results['changed'] is True
|
|
assert results['days_valid'] == 60
|
|
assert results['cert_name'] == 'foo.crt'
|
|
assert results['key_name'] == 'foo.key'
|
|
assert results['issuer'] == dict(
|
|
country='US',
|
|
state='WA',
|
|
locality='Seattle',
|
|
organization='F5',
|
|
division='IT',
|
|
common_name='foo.bar.local',
|
|
email='admin@foo.bar.local'
|
|
)
|