~jamesj/charms/trusty/haproxy/xenial-support

Viewing changes to hooks/tests/test_helpers.py

Committer: Christopher Glass
Date: 2015-02-20 09:42:24 UTC
mfrom: (86.2.15 ssl-crt-support)
Revision ID: christopher.glass@canonical.com-20150220094224-az770sf2ny2jnkax

Merge lp:~free.ekanayaka/charms/trusty/haproxy/ssl-crt-support [a=free.ekanayaka, r=tribaal]

This branch adds support for SSL termination if the installed HAproxy version
supports it.

files added:
data

data/openssl.cnf

hooks/charmhelpers/core/decorators.py

hooks/charmhelpers/core/fstab.py

hooks/charmhelpers/core/services

hooks/charmhelpers/core/services/__init__.py

hooks/charmhelpers/core/services/base.py

hooks/charmhelpers/core/services/helpers.py

hooks/charmhelpers/core/sysctl.py

hooks/charmhelpers/core/templating.py

hooks/charmhelpers/fetch/giturl.py

files modified:
README.md

config-manager.txt

config.yaml

hooks/charmhelpers/__init__.py

hooks/charmhelpers/contrib/__init__.py

hooks/charmhelpers/contrib/charmsupport/__init__.py

hooks/charmhelpers/contrib/charmsupport/nrpe.py

hooks/charmhelpers/contrib/charmsupport/volumes.py

hooks/charmhelpers/core/__init__.py

hooks/charmhelpers/core/hookenv.py

hooks/charmhelpers/core/host.py

hooks/charmhelpers/fetch/__init__.py

hooks/charmhelpers/fetch/archiveurl.py

hooks/charmhelpers/fetch/bzrurl.py

hooks/hooks.py

hooks/tests/test_config_changed_hooks.py

hooks/tests/test_helpers.py

hooks/tests/test_install.py

hooks/tests/test_peer_hooks.py

tests/10_deploy_test.py

Show diffs side-by-side

added added

removed removed

hooks/tests/test_helpers.py

class HelpersTest(TestCase):

@patch('hooks.has_ssl_support')

@patch('hooks.config_get')

def test_creates_haproxy_globals(self, config_get):

def test_creates_haproxy_globals(self, config_get, has_ssl_support):

config_get.return_value = {

'global_log': 'foo-log, bar-log',

'global_maxconn': 123,

'global_user': 'foo-user',

'global_group': 'foo-group',

'global_spread_checks': 234,

'global_default_dh_param': 345,

'global_debug': False,

'global_quiet': False,

'global_stats_socket': True,

}

has_ssl_support.return_value = True

result = hooks.create_haproxy_globals()

sock_path = "/var/run/haproxy/haproxy.sock"

' user foo-user',

' group foo-group',

' spread-checks 234',

' tune.ssl.default-dh-param 345',

' stats socket %s mode 0600' % sock_path,

])

self.assertEqual(result, expected)

@patch('hooks.has_ssl_support')

@patch('hooks.config_get')

def test_creates_haproxy_globals_quietly_with_debug(self, config_get):

def test_creates_haproxy_globals_quietly_with_debug(

self, config_get, has_ssl_support):

config_get.return_value = {

'global_log': 'foo-log, bar-log',

'global_maxconn': 123,

'global_user': 'foo-user',

'global_group': 'foo-group',

'global_spread_checks': 234,

'global_default_dh_param': 345,

'global_debug': True,

'global_quiet': True,

'global_stats_socket': False,

}

has_ssl_support.return_value = True

result = hooks.create_haproxy_globals()

expected = '\n'.join([

' debug',

' quiet',

' spread-checks 234',

' tune.ssl.default-dh-param 345',

])

self.assertEqual(result, expected)

@patch('hooks.has_ssl_support')

@patch('hooks.config_get')

def test_creates_haproxy_globals_no_ssl_support(

self, config_get, has_ssl_support):

config_get.return_value = {

'global_log': 'foo-log, bar-log',

'global_maxconn': 123,

'global_user': 'foo-user',

'global_group': 'foo-group',

'global_spread_checks': 234,

'global_debug': False,

'global_quiet': False,

'global_stats_socket': True,

}

has_ssl_support.return_value = False

result = hooks.create_haproxy_globals()

sock_path = "/var/run/haproxy/haproxy.sock"

expected = '\n'.join([

'global',

' log foo-log',

100

' log bar-log',

101

' maxconn 123',

102

' user foo-user',

103

' group foo-group',

104

' spread-checks 234',

105

' stats socket %s mode 0600' % sock_path,

106

])

107

self.assertEqual(result, expected)

108

192

231

stanzas)

193

232

194

233

@patch('hooks.load_haproxy_config')

234

def test_get_listen_stanzas_with_ssl_frontend(self, load_haproxy_config):

235

load_haproxy_config.return_value = '''

236

frontend foo-2-123

237

bind 1.2.3.4:123 ssl crt /foo/bar

238

default_backend foo.internal

239

frontend foo-2-234

240

bind 1.2.3.5:234

241

default_backend bar.internal

242

'''

243

244

stanzas = hooks.get_listen_stanzas()

245

246

self.assertEqual((('foo.internal', '1.2.3.4', 123),

247

('bar.internal', '1.2.3.5', 234)),

248

stanzas)

249

250

@patch('hooks.load_haproxy_config')

195

251

def test_get_empty_tuple_when_no_stanzas(self, load_haproxy_config):

196

252

load_haproxy_config.return_value = '''

197

253

'''

393

449

394

450

self.assertEqual(expected, result)

395

451

452

@patch.dict(os.environ, {"JUJU_UNIT_NAME": "haproxy/2"})

453

def test_creates_a_listen_stanza_with_crts(self):

454

service_name = 'foo'

455

service_ip = '1.2.3.4'

456

service_port = 443

457

server_entries = [

458

('name-1', 'ip-1', 'port-1', ('foo1', 'bar1')),

459

]

460

content = ("-----BEGIN CERTIFICATE-----\n"

461

"<data>\n"

462

"-----END CERTIFICATE-----\n")

463

crts = [base64.b64encode(content)]

464

465

result = hooks.create_listen_stanza(service_name, service_ip,

466

service_port,

467

server_entries=server_entries,

468

service_crts=crts)

469

470

expected = '\n'.join((

471

'frontend haproxy-2-443',

472

' bind 1.2.3.4:443 ssl crt /var/lib/haproxy/service_foo/0.pem',

473

' default_backend foo',

474

'',

475

'backend foo',

476

' server name-1 ip-1:port-1 foo1 bar1',

477

))

478

479

self.assertEqual(expected, result)

480

396

481

def test_doesnt_create_listen_stanza_if_args_not_provided(self):

397

482

self.assertIsNone(hooks.create_listen_stanza())

398

483

Older »