inspec/test/functional/inspec_exec_signed_profile_test.rb

86 lines
2.8 KiB
Ruby
Raw Normal View History

require "functional/helper"
describe "inspec exec" do
include FunctionalHelper
parallelize_me!
def test_inspec_exec_signed_profile
prepare_examples do |dir|
skip_windows!
unique_key_name = SecureRandom.uuid
# create profile
profile = File.join(dir, "profile_a")
run_inspec_process("init profile profile_a", prefix: "cd #{dir};")
out = run_inspec_process("sign generate-keys --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
out = run_inspec_process("sign profile #{profile} --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
out = run_inspec_process("exec profile_a-0.1.0.iaf --no-create-lockfile", prefix: "cd #{dir};")
assert_exit_code 0, out
delete_keys(unique_key_name)
end
end
def test_inspec_exec_signed_profile_without_validation_key
prepare_examples do |dir|
skip_windows!
unique_key_name = SecureRandom.uuid
# create profile
profile = File.join(dir, "profile_a")
run_inspec_process("init profile profile_a", prefix: "cd #{dir};")
out = run_inspec_process("sign generate-keys --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
out = run_inspec_process("sign profile #{profile} --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
delete_keys(unique_key_name)
out = run_inspec_process("exec profile_a-0.1.0.iaf --no-create-lockfile", prefix: "cd #{dir};")
assert_exit_code 1, out
assert_includes out.stderr.force_encoding(Encoding::UTF_8), "Validation key #{unique_key_name} not found"
end
end
def test_inspec_exec_signed_profile_with_dependency
prepare_examples do |dir|
skip_windows!
unique_key_name = SecureRandom.uuid
profile = "#{profile_path}/dependencies/profile_a"
out = run_inspec_process("sign generate-keys --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
out = run_inspec_process("sign profile #{profile} --keyname #{unique_key_name}", prefix: "cd #{dir};")
assert_exit_code 0, out
out = run_inspec_process("exec profile_a-0.1.0.iaf --no-create-lockfile", prefix: "cd #{dir};")
assert_exit_code 0, out
assert_includes out.stdout.force_encoding(Encoding::UTF_8), "InSpec Profile (profile_c)"
delete_keys(unique_key_name)
# Removing vendors directory from the profile once the test is performed.
FileUtils.rm_rf("#{profile}/vendor/")
end
end
def delete_keys(unique_key_name)
File.delete("#{Inspec.config_dir}/keys/#{unique_key_name}.pem.key") if File.exist?("#{Inspec.config_dir}/keys/#{unique_key_name}.pem.key")
File.delete("#{Inspec.config_dir}/keys/#{unique_key_name}.pem.pub") if File.exist?("#{Inspec.config_dir}/keys/#{unique_key_name}.pem.pub")
end
end