Blame - redfish-core/ut/privileges_test.cpp - openbmc/bmcweb

blob: d8572902503514dfac4171bf08948dd2fe303c0a [file] [log] [blame]

Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	1	#include "nlohmann/json.hpp"
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	2	#include "privileges.hpp"
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	3
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	4	#include <fstream>
				5	#include <string>
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	6
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	7	#include "gmock/gmock.h"
				8
				9	using namespace redfish;
				10
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	11	TEST(PrivilegeTest, PrivilegeConstructor)
				12	{
				13	Privileges privileges{"Login", "ConfigureManager"};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	14
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	15	EXPECT_THAT(privileges.getActivePrivilegeNames(PrivilegeType::BASE),
				16	::testing::UnorderedElementsAre(
				17	::testing::Pointee(&"Login"[0]),
				18	::testing::Pointee(&"ConfigureManager"[0])));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	19	}
				20
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	21	TEST(PrivilegeTest, PrivilegeCheckForNoPrivilegesRequired)
				22	{
				23	Privileges userPrivileges{"Login"};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	24
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	25	OperationMap entityPrivileges{{boost::beast::http::verb::get, {{"Login"}}}};
Ed Tanous	3ebd75f	2018-03-05 18:20:01 -0800	[diff] [blame]	26
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	27	EXPECT_TRUE(isMethodAllowedWithPrivileges(
				28	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	29	}
				30
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	31	TEST(PrivilegeTest, PrivilegeCheckForSingleCaseSuccess)
				32	{
				33	auto userPrivileges = Privileges{"Login"};
				34	OperationMap entityPrivileges{{boost::beast::http::verb::get, {}}};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	35
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	36	EXPECT_TRUE(isMethodAllowedWithPrivileges(
				37	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	38	}
				39
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	40	TEST(PrivilegeTest, PrivilegeCheckForSingleCaseFailure)
				41	{
				42	auto userPrivileges = Privileges{"Login"};
				43	OperationMap entityPrivileges{
				44	{boost::beast::http::verb::get, {{"ConfigureManager"}}}};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	45
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	46	EXPECT_FALSE(isMethodAllowedWithPrivileges(
				47	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	48	}
				49
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	50	TEST(PrivilegeTest, PrivilegeCheckForANDCaseSuccess)
				51	{
				52	auto userPrivileges =
				53	Privileges{"Login", "ConfigureManager", "ConfigureSelf"};
				54	OperationMap entityPrivileges{
				55	{boost::beast::http::verb::get,
				56	{{"Login", "ConfigureManager", "ConfigureSelf"}}}};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	57
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	58	EXPECT_TRUE(isMethodAllowedWithPrivileges(
				59	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	60	}
				61
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	62	TEST(PrivilegeTest, PrivilegeCheckForANDCaseFailure)
				63	{
				64	auto userPrivileges = Privileges{"Login", "ConfigureManager"};
				65	OperationMap entityPrivileges{
				66	{boost::beast::http::verb::get,
				67	{{"Login", "ConfigureManager", "ConfigureSelf"}}}};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	68
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	69	EXPECT_FALSE(isMethodAllowedWithPrivileges(
				70	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	71	}
				72
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	73	TEST(PrivilegeTest, PrivilegeCheckForORCaseSuccess)
				74	{
				75	auto userPrivileges = Privileges{"ConfigureManager"};
				76	OperationMap entityPrivileges{
				77	{boost::beast::http::verb::get, {{"Login"}, {"ConfigureManager"}}}};
Borawski.Lukasz	43a095a	2018-02-19 15:39:01 +0100	[diff] [blame]	78
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	79	EXPECT_TRUE(isMethodAllowedWithPrivileges(
				80	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	43a095a	2018-02-19 15:39:01 +0100	[diff] [blame]	81	}
				82
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	83	TEST(PrivilegeTest, PrivilegeCheckForORCaseFailure)
				84	{
				85	auto userPrivileges = Privileges{"ConfigureComponents"};
				86	OperationMap entityPrivileges = OperationMap(
				87	{{boost::beast::http::verb::get, {{"Login"}, {"ConfigureManager"}}}});
Borawski.Lukasz	43a095a	2018-02-19 15:39:01 +0100	[diff] [blame]	88
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	89	EXPECT_FALSE(isMethodAllowedWithPrivileges(
				90	boost::beast::http::verb::get, entityPrivileges, userPrivileges));
Borawski.Lukasz	43a095a	2018-02-19 15:39:01 +0100	[diff] [blame]	91	}
				92
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	93	TEST(PrivilegeTest, DefaultPrivilegeBitsetsAreEmpty)
				94	{
				95	Privileges privileges;
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	96
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	97	EXPECT_THAT(privileges.getActivePrivilegeNames(PrivilegeType::BASE),
				98	::testing::IsEmpty());
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	99
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	100	EXPECT_THAT(privileges.getActivePrivilegeNames(PrivilegeType::OEM),
				101	::testing::IsEmpty());
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	102	}
				103
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	104	TEST(PrivilegeTest, GetActivePrivilegeNames)
				105	{
				106	Privileges privileges;
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	107
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	108	EXPECT_THAT(privileges.getActivePrivilegeNames(PrivilegeType::BASE),
				109	::testing::IsEmpty());
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	110
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	111	std::array<const char*, 5> expectedPrivileges{
				112	"Login", "ConfigureManager", "ConfigureUsers", "ConfigureComponents",
				113	"ConfigureSelf"};
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	114
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	115	for (const auto& privilege : expectedPrivileges)
				116	{
				117	EXPECT_TRUE(privileges.setSinglePrivilege(privilege));
				118	}
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	119
Ed Tanous	1abe55e	2018-09-05 08:30:59 -0700	[diff] [blame^]	120	EXPECT_THAT(privileges.getActivePrivilegeNames(PrivilegeType::BASE),
				121	::testing::UnorderedElementsAre(
				122	::testing::Pointee(expectedPrivileges[0]),
				123	::testing::Pointee(expectedPrivileges[1]),
				124	::testing::Pointee(expectedPrivileges[2]),
				125	::testing::Pointee(expectedPrivileges[3]),
				126	::testing::Pointee(expectedPrivileges[4])));
Borawski.Lukasz	aecb47a	2018-01-25 12:14:14 +0100	[diff] [blame]	127	}