~ubuntu-branches/ubuntu/trusty/heat/trusty-security

« back to all changes in this revision

Viewing changes to heat/tests/test_heatclient.py

Committer: Package Import Robot
Author(s): Chuck Short
Date: 2013-10-03 09:43:04 UTC
mto: This revision was merged to the branch mainline in revision 15.
Revision ID: package-import@ubuntu.com-20131003094304-zhhr2brapzlpvjmm

Tags: upstream-2013.2~rc1

Import upstream version 2013.2~rc1

files added:
contrib/rackspace

contrib/rackspace/README.md

contrib/rackspace/__init__.py

contrib/rackspace/heat

contrib/rackspace/heat/__init__.py

contrib/rackspace/heat/engine

contrib/rackspace/heat/engine/__init__.py

contrib/rackspace/heat/engine/plugins

contrib/rackspace/heat/engine/plugins/__init__.py

contrib/rackspace/heat/engine/plugins/cloud_loadbalancer.py

contrib/rackspace/heat/engine/plugins/cloud_server.py

contrib/rackspace/heat/engine/plugins/clouddatabase.py

contrib/rackspace/heat/engine/plugins/rackspace_resource.py

contrib/rackspace/heat/tests

contrib/rackspace/heat/tests/__init__.py

contrib/rackspace/heat/tests/test_cloud_loadbalancer.py

contrib/rackspace/heat/tests/test_clouddatabase.py

contrib/rackspace/heat/tests/test_rackspace_cloud_server.py

etc/heat/templates/AWS_RDS_DBInstance.yaml

heat/db/sqlalchemy/migrate_repo/versions/028_text_mysql_longtext.py

files removed:
heat/engine/resources/dbinstance.py

heat/engine/resources/rackspace

heat/engine/resources/rackspace/__init__.py

heat/engine/resources/rackspace/cloud_loadbalancer.py

heat/engine/resources/rackspace/cloud_server.py

heat/engine/resources/rackspace/clouddatabase.py

heat/engine/resources/rackspace/rackspace_resource.py

heat/tests/test_cloud_loadbalancer.py

heat/tests/test_clouddatabase.py

heat/tests/test_rackspace_cloud_server.py

tools/openstack

tools/openstack_ubuntu

files modified:
AUTHORS

ChangeLog

PKG-INFO

bin/heat-api

bin/heat-api-cfn

bin/heat-api-cloudwatch

bin/heat-engine

doc/docbkx/api-ref/src/wadls/heat-api/src/heat-api-1.0.wadl

doc/source/architecture.rst

doc/source/conf.py

doc/source/getting_started/jeos_building.rst

doc/source/getting_started/on_devstack.rst

doc/source/getting_started/on_fedora.rst

doc/source/getting_started/on_ubuntu.rst

doc/source/template_guide/hot_guide.rst

doc/source/template_guide/hot_spec.rst

etc/heat/environment.d/default.yaml

etc/heat/heat.conf.sample

etc/heat/templates/AWS_CloudWatch_Alarm.yaml

heat.egg-info/PKG-INFO

heat.egg-info/SOURCES.txt

heat.egg-info/dependency_links.txt

heat.egg-info/requires.txt

heat/api/aws/ec2token.py

heat/api/cfn/v1/signal.py

heat/api/middleware/fault.py

heat/common/auth_password.py

heat/common/auth_token.py

heat/common/config.py

heat/common/exception.py

heat/common/heat_keystoneclient.py

heat/common/policy.py

heat/common/template_format.py

heat/common/wsgi.py

heat/db/api.py

heat/db/sqlalchemy/api.py

heat/engine/hot.py

heat/engine/parameters.py

heat/engine/parser.py

heat/engine/properties.py

heat/engine/resource.py

heat/engine/resources/autoscaling.py

heat/engine/resources/ceilometer/alarm.py

heat/engine/resources/cloud_watch.py

heat/engine/resources/eip.py

heat/engine/resources/instance.py

heat/engine/resources/internet_gateway.py

heat/engine/resources/loadbalancer.py

heat/engine/resources/neutron/firewall.py

heat/engine/resources/neutron/floatingip.py

heat/engine/resources/neutron/loadbalancer.py

heat/engine/resources/neutron/net.py

heat/engine/resources/neutron/port.py

heat/engine/resources/neutron/router.py

heat/engine/resources/neutron/subnet.py

heat/engine/resources/neutron/vpnservice.py

heat/engine/resources/nova_utils.py

heat/engine/resources/server.py

heat/engine/resources/stack.py

heat/engine/resources/swift.py

heat/engine/resources/template_resource.py

heat/engine/resources/user.py

heat/engine/resources/volume.py

heat/engine/service.py

heat/engine/signal_responder.py

heat/engine/stack_resource.py

heat/engine/template.py

heat/engine/update.py

heat/engine/watchrule.py

heat/locale/bs/LC_MESSAGES/heat.po

heat/locale/cs/LC_MESSAGES/heat.po

heat/locale/da/LC_MESSAGES/heat.po

heat/locale/de/LC_MESSAGES/heat.po

heat/locale/en_AU/LC_MESSAGES/heat.po

heat/locale/en_GB/LC_MESSAGES/heat.po

heat/locale/en_US/LC_MESSAGES/heat.po

heat/locale/es/LC_MESSAGES/heat.po

heat/locale/fr/LC_MESSAGES/heat.po

heat/locale/heat.pot

heat/locale/it/LC_MESSAGES/heat.po

heat/locale/ja/LC_MESSAGES/heat.po

heat/locale/ko/LC_MESSAGES/heat.po

heat/locale/pt_BR/LC_MESSAGES/heat.po

heat/locale/ru/LC_MESSAGES/heat.po

heat/locale/tl/LC_MESSAGES/heat.po

heat/locale/tr/LC_MESSAGES/heat.po

heat/locale/uk/LC_MESSAGES/heat.po

heat/locale/zh_CN/LC_MESSAGES/heat.po

heat/locale/zh_TW/LC_MESSAGES/heat.po

heat/openstack/common/gettextutils.py

heat/tests/common.py

heat/tests/test_api_cloudwatch.py

heat/tests/test_api_ec2token.py

heat/tests/test_api_openstack_v1.py

heat/tests/test_auth_password.py

heat/tests/test_autoscaling.py

heat/tests/test_ceilometer_alarm.py

heat/tests/test_common_policy.py

heat/tests/test_components.py

heat/tests/test_dbinstance.py

heat/tests/test_engine_service.py

heat/tests/test_event.py

heat/tests/test_exception.py

heat/tests/test_fault_middleware.py

heat/tests/test_heatclient.py

heat/tests/test_hot.py

heat/tests/test_instance.py

heat/tests/test_instance_group.py

heat/tests/test_nested_stack.py

heat/tests/test_neutron.py

heat/tests/test_nova_utils.py

heat/tests/test_parameters.py

heat/tests/test_parser.py

heat/tests/test_properties.py

heat/tests/test_provider_template.py

heat/tests/test_resource.py

heat/tests/test_server.py

heat/tests/test_server_tags.py

heat/tests/test_signal.py

heat/tests/test_sqlalchemy_api.py

heat/tests/test_template_format.py

heat/tests/test_validate.py

heat/tests/test_volume.py

heat/tests/test_vpc.py

heat/tests/test_wsgi.py

heat/tests/utils.py

heat/tests/v1_1/fakes.py

requirements.txt

setup.py

test-requirements.txt

tools/cfn-json2yaml

tools/experimental_ssh_eventlet.py

tools/install_venv.py

tools/state_transitions.py

tools/with_venv.sh

tox.ini

Show diffs side-by-side

added added

removed removed

heat/tests/test_heatclient.py

group='keystone_authtoken')

self.addCleanup(self.m.VerifyAll)

def tearDown(self):

super(KeystoneClientTest, self).tearDown()

cfg.CONF.clear_override('deferred_auth_method')

cfg.CONF.clear_override('auth_uri', group='keystone_authtoken')

cfg.CONF.clear_override('admin_user', group='keystone_authtoken')

cfg.CONF.clear_override('admin_password', group='keystone_authtoken')

cfg.CONF.clear_override('admin_tenant_name',

group='keystone_authtoken')

def _stubs_v2(self, method='token', auth_ok=True):

def _stubs_v2(self, method='token', auth_ok=True,

trust_scoped=True):

self.m.StubOutClassWithMocks(heat_keystoneclient.kc, "Client")

if method == 'token':

self.mock_ks_client = heat_keystoneclient.kc.Client(

username='test_username',

password='password')

self.mock_ks_client.authenticate().AndReturn(auth_ok)

if method == 'trust':

self.mock_ks_client = heat_keystoneclient.kc.Client(

auth_url='http://server.test:5000/v2.0',

password='verybadpass',

tenant_name='service',

username='heat')

self.mock_ks_client.authenticate(trust_id='atrust123',

tenant_id='test_tenant_id'

).AndReturn(auth_ok)

self.mock_ks_client.auth_ref = self.m.CreateMockAnything()

self.mock_ks_client.auth_ref.trust_scoped = trust_scoped

self.mock_ks_client.auth_ref.auth_token = 'atrusttoken'

def _stubs_v3(self, method='token', auth_ok=True):

self.m.StubOutClassWithMocks(heat_keystoneclient.kc, "Client")

self.m.StubOutClassWithMocks(heat_keystoneclient.kc_v3, "Client")

if method == 'token':

username='heat',

password='verybadpass',

project_name='service',

auth_url='http://server.test:5000/v3',

trust_id='atrust123')

auth_url='http://server.test:5000/v3')

self.mock_ks_v3_client.authenticate().AndReturn(auth_ok)

if auth_ok:

100

self.mock_ks_v3_client.auth_ref = self.m.CreateMockAnything()

101

self.mock_ks_v3_client.auth_ref.get('auth_token').AndReturn(

102

'av3token')

103

self.mock_ks_client = heat_keystoneclient.kc.Client(

104

auth_url=mox.IgnoreArg(),

105

tenant_name='test_tenant',

106

token='4b97cc1b2454e137ee2e8261e115bbe8')

107

self.mock_ks_client.authenticate().AndReturn(auth_ok)

108

100

109

101

def test_username_length(self):

110

102

"""Test that user names >64 characters are properly truncated."""

132

124

# the cleanup VerifyAll should verify that though we passed

133

125

# long_user_name, keystone was actually called with a truncated

134

126

# user name

135

heat_ks_client = heat_keystoneclient.KeystoneClient(

136

utils.dummy_context())

127

ctx = utils.dummy_context()

128

ctx.trust_id = None

129

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

137

130

heat_ks_client.create_stack_user(long_user_name, password='password')

138

131

139

132

def test_init_v2_password(self):

140

133

141

"""Test creating the client without trusts, user/password context."""

134

"""Test creating the client, user/password context."""

142

135

143

136

self._stubs_v2(method='password')

144

137

self.m.ReplayAll()

145

138

146

139

ctx = utils.dummy_context()

147

140

ctx.auth_token = None

141

ctx.trust_id = None

148

142

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

149

143

self.assertIsNotNone(heat_ks_client.client_v2)

150

self.assertIsNone(heat_ks_client.client_v3)

144

self.assertIsNone(heat_ks_client._client_v3)

151

145

152

146

def test_init_v2_bad_nocreds(self):

153

147

157

151

ctx.auth_token = None

158

152

ctx.username = None

159

153

ctx.password = None

160

self.assertRaises(exception.AuthorizationFailure,

161

heat_keystoneclient.KeystoneClient, ctx)

162

163

def test_init_v2_bad_denied(self):

164

165

"""Test creating the client without trusts, auth failure."""

166

167

self._stubs_v2(method='password', auth_ok=False)

168

self.m.ReplayAll()

169

170

ctx = utils.dummy_context()

171

ctx.auth_token = None

172

self.assertRaises(exception.AuthorizationFailure,

173

heat_keystoneclient.KeystoneClient, ctx)

154

ctx.trust_id = None

155

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

156

self.assertRaises(exception.AuthorizationFailure,

157

heat_ks_client._v2_client_init)

174

158

175

159

def test_init_v3_token(self):

176

160

177

"""Test creating the client with trusts, token auth."""

178

179

cfg.CONF.set_override('deferred_auth_method', 'trusts')

161

"""Test creating the client, token auth."""

180

162

181

163

self._stubs_v3()

182

164

self.m.ReplayAll()

184

166

ctx = utils.dummy_context()

185

167

ctx.username = None

186

168

ctx.password = None

169

ctx.trust_id = None

187

170

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

188

self.assertIsNotNone(heat_ks_client.client_v2)

189

self.assertIsNotNone(heat_ks_client.client_v3)

171

heat_ks_client.client_v3

172

self.assertIsNotNone(heat_ks_client._client_v3)

173

self.assertIsNone(heat_ks_client._client_v2)

190

174

191

175

def test_init_v3_password(self):

192

176

193

"""Test creating the client with trusts, password auth."""

194

195

cfg.CONF.set_override('deferred_auth_method', 'trusts')

177

"""Test creating the client, password auth."""

196

178

197

179

self._stubs_v3(method='password')

198

180

self.m.ReplayAll()

201

183

ctx.auth_token = None

202

184

ctx.trust_id = None

203

185

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

204

self.assertIsNotNone(heat_ks_client.client_v2)

205

self.assertIsNotNone(heat_ks_client.client_v3)

186

client_v3 = heat_ks_client.client_v3

187

self.assertIsNotNone(client_v3)

188

self.assertIsNone(heat_ks_client._client_v2)

206

189

207

190

def test_init_v3_bad_nocreds(self):

208

191

209

"""Test creating the client with trusts, no credentials."""

210

211

cfg.CONF.set_override('deferred_auth_method', 'trusts')

192

"""Test creating the client, no credentials."""

212

193

213

194

ctx = utils.dummy_context()

214

195

ctx.auth_token = None

215

196

ctx.trust_id = None

216

197

ctx.username = None

217

198

ctx.password = None

218

self.assertRaises(exception.AuthorizationFailure,

219

heat_keystoneclient.KeystoneClient, ctx)

220

221

def test_init_v3_bad_denied(self):

222

223

"""Test creating the client with trusts, auth failure."""

224

225

cfg.CONF.set_override('deferred_auth_method', 'trusts')

226

227

self._stubs_v3(method='password', auth_ok=False)

228

self.m.ReplayAll()

229

230

ctx = utils.dummy_context()

231

ctx.auth_token = None

232

ctx.trust_id = None

233

self.assertRaises(exception.AuthorizationFailure,

234

heat_keystoneclient.KeystoneClient, ctx)

235

236

def test_create_trust_context_notrust(self):

237

238

"""Test create_trust_context with trusts disabled."""

239

240

self._stubs_v2(method='password')

241

self.m.ReplayAll()

242

243

ctx = utils.dummy_context()

244

ctx.auth_token = None

245

ctx.trust_id = None

246

199

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

247

self.assertIsNone(heat_ks_client.create_trust_context())

200

self.assertRaises(exception.AuthorizationFailure,

201

heat_ks_client._v3_client_init)

248

202

249

203

def test_create_trust_context_trust_id(self):

250

204

251

205

"""Test create_trust_context with existing trust_id."""

252

206

207

self._stubs_v2(method='trust')

208

self.m.ReplayAll()

209

253

210

cfg.CONF.set_override('deferred_auth_method', 'trusts')

254

211

255

self._stubs_v3()

256

self.m.ReplayAll()

257

258

212

ctx = utils.dummy_context()

213

ctx.trust_id = 'atrust123'

214

259

215

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

260

self.assertIsNone(heat_ks_client.create_trust_context())

216

trust_context = heat_ks_client.create_trust_context()

217

self.assertEqual(trust_context.to_dict(), ctx.to_dict())

261

218

262

219

def test_create_trust_context_trust_create(self):

263

220

264

"""Test create_trust_context when creating a new trust."""

221

"""Test create_trust_context when creating a trust."""

265

222

266

223

cfg.CONF.set_override('deferred_auth_method', 'trusts')

267

224

268

225

class MockTrust(object):

269

226

id = 'atrust123'

270

227

271

self._stubs_v3()

228

self.m.StubOutClassWithMocks(heat_keystoneclient.kc, "Client")

272

229

mock_admin_client = heat_keystoneclient.kc.Client(

273

230

auth_url=mox.IgnoreArg(),

274

231

username='heat',

275

232

password='verybadpass',

276

233

tenant_name='service')

277

mock_admin_client.authenticate().AndReturn(True)

278

234

mock_admin_client.auth_ref = self.m.CreateMockAnything()

279

mock_admin_client.auth_ref.__getitem__('user').AndReturn(

280

{'id': '1234'})

281

self.mock_ks_v3_client.auth_ref.__getitem__('user').AndReturn(

282

{'id': '5678'})

283

self.mock_ks_v3_client.auth_ref.__getitem__('project').AndReturn(

284

{'id': '42'})

235

mock_admin_client.auth_ref.user_id = '1234'

236

self._stubs_v3()

237

self.mock_ks_v3_client.auth_ref = self.m.CreateMockAnything()

238

self.mock_ks_v3_client.auth_ref.user_id = '5678'

239

self.mock_ks_v3_client.auth_ref.project_id = '42'

285

240

self.mock_ks_v3_client.trusts = self.m.CreateMockAnything()

286

241

self.mock_ks_v3_client.trusts.create(

287

242

trustor_user='5678',

295

250

ctx = utils.dummy_context()

296

251

ctx.trust_id = None

297

252

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

298

self.assertIsNone(heat_ks_client.create_trust_context())

299

self.assertEqual(ctx.trust_id, 'atrust123')

300

self.assertEqual(ctx.trustor_user_id, '5678')

301

302

def test_create_trust_context_denied(self):

303

304

"""Test create_trust_context when creating admin auth fails."""

305

306

cfg.CONF.set_override('deferred_auth_method', 'trusts')

307

308

self._stubs_v3()

309

mock_admin_client = heat_keystoneclient.kc.Client(

310

auth_url=mox.IgnoreArg(),

311

username='heat',

312

password='verybadpass',

313

tenant_name='service')

314

mock_admin_client.authenticate().AndReturn(False)

315

self.m.ReplayAll()

316

317

ctx = utils.dummy_context()

318

ctx.trust_id = None

319

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

320

self.assertRaises(exception.AuthorizationFailure,

321

heat_ks_client.create_trust_context)

253

trust_context = heat_ks_client.create_trust_context()

254

self.assertEqual(trust_context.trust_id, 'atrust123')

255

self.assertEqual(trust_context.trustor_user_id, '5678')

322

256

323

257

def test_trust_init(self):

324

258

326

260

327

261

cfg.CONF.set_override('deferred_auth_method', 'trusts')

328

262

329

self._stubs_v3(method='trust')

330

self.m.ReplayAll()

331

332

ctx = utils.dummy_context()

333

ctx.username = None

334

ctx.password = None

335

ctx.auth_token = None

336

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

337

338

def test_delete_trust_context(self):

339

340

"""Test delete_trust_context when deleting trust."""

263

self._stubs_v2(method='trust')

264

self.m.ReplayAll()

265

266

ctx = utils.dummy_context()

267

ctx.username = None

268

ctx.password = None

269

ctx.auth_token = None

270

ctx.trust_id = 'atrust123'

271

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

272

client_v2 = heat_ks_client.client_v2

273

self.assertIsNotNone(client_v2)

274

275

def test_trust_init_fail(self):

276

277

"""Test consuming a trust when initializing, error scoping."""

278

279

cfg.CONF.set_override('deferred_auth_method', 'trusts')

280

281

self._stubs_v2(method='trust', trust_scoped=False)

282

self.m.ReplayAll()

283

284

ctx = utils.dummy_context()

285

ctx.username = None

286

ctx.password = None

287

ctx.auth_token = None

288

ctx.trust_id = 'atrust123'

289

self.assertRaises(exception.AuthorizationFailure,

290

heat_keystoneclient.KeystoneClient, ctx)

291

292

def test_trust_init_pw(self):

293

294

"""Test trust_id is takes precedence username/password specified."""

295

296

self._stubs_v2(method='trust')

297

self.m.ReplayAll()

298

299

ctx = utils.dummy_context()

300

ctx.auth_token = None

301

ctx.trust_id = 'atrust123'

302

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

303

self.assertIsNotNone(heat_ks_client._client_v2)

304

self.assertIsNone(heat_ks_client._client_v3)

305

306

def test_trust_init_token(self):

307

308

"""Test trust_id takes precedence when token specified."""

309

310

self._stubs_v2(method='trust')

311

self.m.ReplayAll()

312

313

ctx = utils.dummy_context()

314

ctx.username = None

315

ctx.password = None

316

ctx.trust_id = 'atrust123'

317

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

318

self.assertIsNotNone(heat_ks_client._client_v2)

319

self.assertIsNone(heat_ks_client._client_v3)

320

321

def test_delete_trust(self):

322

323

"""Test delete_trust when deleting trust."""

341

324

342

325

cfg.CONF.set_override('deferred_auth_method', 'trusts')

343

326

348

331

self.m.ReplayAll()

349

332

ctx = utils.dummy_context()

350

333

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

351

self.assertIsNone(heat_ks_client.delete_trust_context())

352

353

def test_delete_trust_context_notrust(self):

354

355

"""Test delete_trust_context no trust_id specified."""

356

357

cfg.CONF.set_override('deferred_auth_method', 'trusts')

358

359

self._stubs_v3()

360

self.m.ReplayAll()

361

ctx = utils.dummy_context()

362

ctx.trust_id = None

363

heat_ks_client = heat_keystoneclient.KeystoneClient(ctx)

364

self.assertIsNone(heat_ks_client.delete_trust_context())

334

self.assertIsNone(heat_ks_client.delete_trust(trust_id='atrust123'))

Older »