inspec/test/unit/profile_test.rb

# encoding: utf-8
# author: Christoph Hartmann
# author: Dominik Richter

require 'helper'
require 'inspec/profile_context'
require 'inspec/runner'
require 'inspec/runner_mock'

describe Inspec::Profile do
  let(:logger) { Minitest::Mock.new }
  let(:home) { File.dirname(__FILE__) }

  def load_profile(name, opts = {})
    opts[:test_collector] = Inspec::RunnerMock.new
    Inspec::Profile.from_path("#{home}/mock/profiles/#{name}", opts)
  end

  describe 'with an empty profile' do
    let(:profile) { load_profile('empty-metadata') }

    it 'has no metadata' do
      profile.params[:name].must_be_nil
    end

    it 'has no rules' do
      profile.params[:rules].must_equal({})
    end
  end

  describe 'with an empty profile (legacy mode)' do
    let(:profile) { load_profile('legacy-empty-metadata') }

    it 'has no metadata' do
      profile.params[:name].must_be_nil
    end

    it 'has no rules' do
      profile.params[:rules].must_equal({})
    end
  end

  describe 'with simple metadata in profile' do
    let(:profile_id) { 'simple-metadata' }
    let(:profile) { load_profile(profile_id) }

    it 'has metadata' do
      profile.params[:name].must_equal 'yumyum profile'
    end

    it 'has no rules' do
      profile.params[:rules].must_equal({})
    end

    it 'can overwrite the profile ID' do
      testID = rand.to_s
      res = load_profile(profile_id, id: testID)
      res.params[:name].must_equal testID
    end
  end

  describe 'with simple metadata in profile (legacy mode)' do
    let(:profile) { load_profile('legacy-simple-metadata') }

    it 'has metadata' do
      profile.params[:name].must_equal 'metadata profile'
    end

    it 'has no rules' do
      profile.params[:rules].must_equal({})
    end
  end

  describe 'when checking' do
    describe 'an empty profile' do
      let(:profile_id) { 'empty-metadata' }

      it 'prints loads of warnings' do
        logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]
        logger.expect :error, nil, ['Missing profile name in inspec.yml']
        logger.expect :error, nil, ['Missing profile version in inspec.yml']
        logger.expect :warn, nil, ['Missing profile title in inspec.yml']
        logger.expect :warn, nil, ['Missing profile summary in inspec.yml']
        logger.expect :warn, nil, ['Missing profile maintainer in inspec.yml']
        logger.expect :warn, nil, ['Missing profile copyright in inspec.yml']
        logger.expect :warn, nil, ['No controls or tests were defined.']

        load_profile(profile_id, {logger: logger}).check
        logger.verify
      end
    end

    describe 'an empty profile (legacy mode)' do
      let(:profile_id) { 'legacy-empty-metadata' }

      it 'prints loads of warnings' do
        logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]
        logger.expect :warn, nil, ['The use of `metadata.rb` is deprecated. Use `inspec.yml`.']
        logger.expect :error, nil, ['Missing profile name in metadata.rb']
        logger.expect :error, nil, ['Missing profile version in metadata.rb']
        logger.expect :warn, nil, ['Missing profile title in metadata.rb']
        logger.expect :warn, nil, ['Missing profile summary in metadata.rb']
        logger.expect :warn, nil, ['Missing profile maintainer in metadata.rb']
        logger.expect :warn, nil, ['Missing profile copyright in metadata.rb']
        logger.expect :warn, nil, ['No controls or tests were defined.']

        load_profile(profile_id, {logger: logger}).check
        logger.verify
      end
    end

    describe 'a complete metadata profile' do
      let(:profile_id) { 'complete-metadata' }
      let(:profile) { load_profile(profile_id, {logger: logger}) }

      it 'prints ok messages' do
        logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]
        logger.expect :info, nil, ['Metadata OK.']
        logger.expect :warn, nil, ['No controls or tests were defined.']

        profile.check
        logger.verify
      end
    end

    describe 'a complete metadata profile (legacy mode)' do
      let(:profile_id) { 'legacy-complete-metadata' }
      let(:profile) { load_profile(profile_id, {logger: logger}) }

      it 'prints ok messages' do
        logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]
        logger.expect :warn, nil, ['The use of `metadata.rb` is deprecated. Use `inspec.yml`.']
        logger.expect :info, nil, ['Metadata OK.']
        logger.expect :warn, nil, ["Profile uses deprecated `test` directory, rename it to `controls`."]
        logger.expect :warn, nil, ['No controls or tests were defined.']

        profile.check
        logger.verify
      end

      it 'doesnt have constraints on supported systems' do
        profile.metadata.params.wont_include(:supports)
      end
    end

    describe 'a complete metadata profile with controls' do
      let(:profile_id) { 'complete-profile' }

      it 'prints ok messages and counts the rules' do
        logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]
        logger.expect :info, nil, ['Metadata OK.']
        logger.expect :info, nil, ['Found 1 rules.']
        logger.expect :debug, nil, ["Verify all rules in  #{home}/mock/profiles/#{profile_id}/controls/filesystem_spec.rb"]
        logger.expect :info, nil, ['Rule definitions OK.']

        load_profile(profile_id, {logger: logger, ignore_supports: true}).check
        logger.verify
      end
    end
  end
end
add simple tests for profile 2015-10-26 21:51:21 +00:00			`# encoding: utf-8`
			`# author: Christoph Hartmann`
			`# author: Dominik Richter`

			`require 'helper'`
completely separate rspec runner parts 2016-01-16 07:00:52 +00:00			`require 'inspec/profile_context'`
			`require 'inspec/runner'`
extract example group creation and restore profile tests that had been completely mocked until now 2016-01-16 13:53:51 +00:00			`require 'inspec/runner_mock'`
add simple tests for profile 2015-10-26 21:51:21 +00:00
			`describe Inspec::Profile do`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`let(:logger) { Minitest::Mock.new }`
			`let(:home) { File.dirname(__FILE__) }`

			`def load_profile(name, opts = {})`
extract example group creation and restore profile tests that had been completely mocked until now 2016-01-16 13:53:51 +00:00			`opts[:test_collector] = Inspec::RunnerMock.new`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`Inspec::Profile.from_path("#{home}/mock/profiles/#{name}", opts)`
			`end`

add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00			`describe 'with an empty profile' do`
			`let(:profile) { load_profile('empty-metadata') }`

			`it 'has no metadata' do`
			`profile.params[:name].must_be_nil`
			`end`

			`it 'has no rules' do`
			`profile.params[:rules].must_equal({})`
			`end`
			`end`

			`describe 'with an empty profile (legacy mode)' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`let(:profile) { load_profile('legacy-empty-metadata') }`
add simple tests for profile 2015-10-26 21:51:21 +00:00
			`it 'has no metadata' do`
			`profile.params[:name].must_be_nil`
			`end`

			`it 'has no rules' do`
			`profile.params[:rules].must_equal({})`
			`end`
			`end`

add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00			`describe 'with simple metadata in profile' do`
bugfix: write given ID to metadata json Whenever the user provides an ID under which the profile is scoped, write it out to JSON during generation. 2016-01-25 14:44:17 +00:00			`let(:profile_id) { 'simple-metadata' }`
			`let(:profile) { load_profile(profile_id) }`
add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00
			`it 'has metadata' do`
			`profile.params[:name].must_equal 'yumyum profile'`
			`end`

			`it 'has no rules' do`
			`profile.params[:rules].must_equal({})`
			`end`
bugfix: write given ID to metadata json Whenever the user provides an ID under which the profile is scoped, write it out to JSON during generation. 2016-01-25 14:44:17 +00:00
			`it 'can overwrite the profile ID' do`
			`testID = rand.to_s`
			`res = load_profile(profile_id, id: testID)`
			`res.params[:name].must_equal testID`
			`end`
add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00			`end`

			`describe 'with simple metadata in profile (legacy mode)' do`
			`let(:profile) { load_profile('legacy-simple-metadata') }`
add simple tests for profile 2015-10-26 21:51:21 +00:00
			`it 'has metadata' do`
			`profile.params[:name].must_equal 'metadata profile'`
			`end`

			`it 'has no rules' do`
			`profile.params[:rules].must_equal({})`
			`end`
			`end`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00
			`describe 'when checking' do`
add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00			`describe 'an empty profile' do`
			`let(:profile_id) { 'empty-metadata' }`

			`it 'prints loads of warnings' do`
			`logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]`
			`logger.expect :error, nil, ['Missing profile name in inspec.yml']`
			`logger.expect :error, nil, ['Missing profile version in inspec.yml']`
			`logger.expect :warn, nil, ['Missing profile title in inspec.yml']`
			`logger.expect :warn, nil, ['Missing profile summary in inspec.yml']`
			`logger.expect :warn, nil, ['Missing profile maintainer in inspec.yml']`
			`logger.expect :warn, nil, ['Missing profile copyright in inspec.yml']`
			`logger.expect :warn, nil, ['No controls or tests were defined.']`

			`load_profile(profile_id, {logger: logger}).check`
			`logger.verify`
			`end`
			`end`

clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`describe 'an empty profile (legacy mode)' do`
			`let(:profile_id) { 'legacy-empty-metadata' }`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00
			`it 'prints loads of warnings' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]`
fix metadata validation 2015-12-28 12:30:42 +00:00			logger.expect :warn, nil, ['The use of `metadata.rb` is deprecated. Use `inspec.yml`.']
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`logger.expect :error, nil, ['Missing profile name in metadata.rb']`
			`logger.expect :error, nil, ['Missing profile version in metadata.rb']`
			`logger.expect :warn, nil, ['Missing profile title in metadata.rb']`
			`logger.expect :warn, nil, ['Missing profile summary in metadata.rb']`
			`logger.expect :warn, nil, ['Missing profile maintainer in metadata.rb']`
			`logger.expect :warn, nil, ['Missing profile copyright in metadata.rb']`
			`logger.expect :warn, nil, ['No controls or tests were defined.']`

clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`load_profile(profile_id, {logger: logger}).check`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`logger.verify`
			`end`
			`end`

add profile tests (non-legacy) 2016-01-16 15:27:28 +00:00			`describe 'a complete metadata profile' do`
			`let(:profile_id) { 'complete-metadata' }`
			`let(:profile) { load_profile(profile_id, {logger: logger}) }`

			`it 'prints ok messages' do`
			`logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]`
			`logger.expect :info, nil, ['Metadata OK.']`
			`logger.expect :warn, nil, ['No controls or tests were defined.']`

			`profile.check`
			`logger.verify`
			`end`
			`end`

make metadata.rb legacy mode consistent for supports Before introducing InSpec profiles in https://github.com/chef/inspec/pull/252 we had `metadata.rb` keep all information. This included an undisclosed field called `supports`. However, this field was never actually used in practice. So for legacy profiles, this means that `supports` was ignored. In order to keep old profiles running in exactly the way they were before, ignore this field when reading from metadata.rb 2016-01-15 17:45:05 +00:00			`describe 'a complete metadata profile (legacy mode)' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`let(:profile_id) { 'legacy-complete-metadata' }`
			`let(:profile) { load_profile(profile_id, {logger: logger}) }`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00
			`it 'prints ok messages' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]`
fix metadata validation 2015-12-28 12:30:42 +00:00			logger.expect :warn, nil, ['The use of `metadata.rb` is deprecated. Use `inspec.yml`.']
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`logger.expect :info, nil, ['Metadata OK.']`
make metadata.rb legacy mode consistent for supports Before introducing InSpec profiles in https://github.com/chef/inspec/pull/252 we had `metadata.rb` keep all information. This included an undisclosed field called `supports`. However, this field was never actually used in practice. So for legacy profiles, this means that `supports` was ignored. In order to keep old profiles running in exactly the way they were before, ignore this field when reading from metadata.rb 2016-01-15 17:45:05 +00:00			logger.expect :warn, nil, ["Profile uses deprecated `test` directory, rename it to `controls`."]
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`logger.expect :warn, nil, ['No controls or tests were defined.']`

			`profile.check`
			`logger.verify`
			`end`
make metadata.rb legacy mode consistent for supports Before introducing InSpec profiles in https://github.com/chef/inspec/pull/252 we had `metadata.rb` keep all information. This included an undisclosed field called `supports`. However, this field was never actually used in practice. So for legacy profiles, this means that `supports` was ignored. In order to keep old profiles running in exactly the way they were before, ignore this field when reading from metadata.rb 2016-01-15 17:45:05 +00:00
			`it 'doesnt have constraints on supported systems' do`
			`profile.metadata.params.wont_include(:supports)`
			`end`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`end`
fix reading profiles bug For reading the profiles metadata, we're using the train mock backend through Inspec::Runner. The new `supports` feature never agrees with the mock backend. Now, it we figure out if this is a mock class and then just say that it supports whatever we're asking for. Tl;dr: there's probably a more beautiful solution to this. Added a test case, but it fails -- while the command line interface works fine. 2016-01-07 23:16:07 +00:00
			`describe 'a complete metadata profile with controls' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`let(:profile_id) { 'complete-profile' }`
explicitly ignore supports for `inspec check` 2016-01-11 04:59:57 +00:00
			`it 'prints ok messages and counts the rules' do`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`logger.expect :info, nil, ["Checking profile in #{home}/mock/profiles/#{profile_id}"]`
explicitly ignore supports for `inspec check` 2016-01-11 04:59:57 +00:00			`logger.expect :info, nil, ['Metadata OK.']`
extract example group creation and restore profile tests that had been completely mocked until now 2016-01-16 13:53:51 +00:00			`logger.expect :info, nil, ['Found 1 rules.']`
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`logger.expect :debug, nil, ["Verify all rules in #{home}/mock/profiles/#{profile_id}/controls/filesystem_spec.rb"]`
extract example group creation and restore profile tests that had been completely mocked until now 2016-01-16 13:53:51 +00:00			`logger.expect :info, nil, ['Rule definitions OK.']`
explicitly ignore supports for `inspec check` 2016-01-11 04:59:57 +00:00
clearly identify legacy profile tests and fix identification 2016-01-16 14:33:07 +00:00			`load_profile(profile_id, {logger: logger, ignore_supports: true}).check`
explicitly ignore supports for `inspec check` 2016-01-11 04:59:57 +00:00			`logger.verify`
			`end`
fix reading profiles bug For reading the profiles metadata, we're using the train mock backend through Inspec::Runner. The new `supports` feature never agrees with the mock backend. Now, it we figure out if this is a mock class and then just say that it supports whatever we're asking for. Tl;dr: there's probably a more beautiful solution to this. Added a test case, but it fails -- while the command line interface works fine. 2016-01-07 23:16:07 +00:00			`end`
change check errors on summary+title to warnings 2015-12-22 14:18:09 +00:00			`end`
add simple tests for profile 2015-10-26 21:51:21 +00:00			`end`