Merge pull request #1681 from Happycoil/add-windows-user-groups

fetch user groups while building user object

lib/resources/users.rb

@@ -627,7 +627,7 @@ $adsi.Children | where {$_.SchemaClassName -eq  'user'} |  ForEach {
     maxbadpasswords = $_.MaxBadPasswordsAllowed[0]
     gid = $null
     group = $null
-    groups = $null
+    groups = @($_.Groups() | Foreach-Object { $_.GetType().InvokeMember('Name', 'GetProperty', $null, $_, $null) })
     home = $_.HomeDirectory[0]
     shell = $null
     domain = $Computername

test/helper.rb

@@ -231,7 +231,7 @@ class MockLoader
       # user info for freebsd
       'pw usershow root -7' => cmd.call('pw-usershow-root-7'),
       # user info for windows (winrm 1.6.0, 1.6.1)
-      '21c8fabaade05b84ec979759a30814f04353722f173424921bddedc7b65cacbf' => cmd.call('adsiusers'),
+      '27c6cda89fa5d196506251c0ed0d20468b378c5689711981dc1e1e683c7b02c1' => cmd.call('adsiusers'),
       # group info for windows
       'd8d5b3e3355650399e23857a526ee100b4e49e5c2404a0a5dbb7d85d7f4de5cc' => cmd.call('adsigroups'),
       # network interface

test/integration/default/user_spec.rb

@@ -30,7 +30,7 @@ elsif os.windows?
     groupname: nil,
     uid: nil,
     gid: nil,
-    groups: nil,
+    groups: "Administrators",
     home: nil,
     shell: nil,
   }
@@ -91,6 +91,7 @@ if os.windows?
     it { should exist }
     # should return the SID of the user
     its('uid') { should_not eq nil}
+    its('groups') { should include userinfo[:groups] }
   end
 
   # also support simple username for local users without domain
@@ -98,6 +99,7 @@ if os.windows?
     it { should exist }
     # should return the SID of the user
     its('uid') { should_not eq nil}
+    its('groups') { should include userinfo[:groups] }
   end
 else
   # test single `user` resource

test/unit/mock/cmd/adsiusers

@@ -18,7 +18,10 @@
                           "NORMAL_ACCOUNT",
                           "PASSWORD_EXPIRED"
                       ],
-        "groups":  null,
+        "groups":  [
+            "Administrators",
+            "Users"
+        ],
         "gid":  null,
         "maxdays":  42,
         "shell":  null
@@ -45,7 +48,9 @@
                           "NORMAL_ACCOUNT",
                           "DONT_EXPIRE_PASSWORD"
                       ],
-        "groups":  null,
+        "groups":  [
+            "Users"
+        ],
         "gid":  null,
         "maxdays":  42,
         "shell":  null

test/unit/resources/user_test.rb

@@ -98,12 +98,12 @@ describe 'Inspec::Resources::User' do
     _(resource.warndays).must_equal nil
   end
 
-  it 'read user on Windows' do
+  it 'read administrator user on Windows' do
     resource = MockLoader.new(:windows).load_resource('user', 'Administrator')
     _(resource.uid).wont_be_nil
     _(resource.exists?).must_equal true
     _(resource.group).must_equal nil
-    _(resource.groups).must_equal nil
+    _(resource.groups).must_equal ['Administrators', 'Users']
     _(resource.home).must_equal nil
     _(resource.shell).must_equal nil
     _(resource.mindays).must_equal nil
@@ -112,6 +112,20 @@ describe 'Inspec::Resources::User' do
     _(resource.disabled?).must_equal false
   end
 
+  it 'read guest user on Windows' do
+    resource = MockLoader.new(:windows).load_resource('user', 'Guest')
+    _(resource.uid).wont_be_nil
+    _(resource.exists?).must_equal true
+    _(resource.group).must_equal nil
+    _(resource.groups).must_equal ['Users']
+    _(resource.home).must_equal nil
+    _(resource.shell).must_equal nil
+    _(resource.mindays).must_equal nil
+    _(resource.maxdays).must_equal nil
+    _(resource.warndays).must_equal nil
+    _(resource.disabled?).must_equal true
+  end
+
   it 'read disabled user on Windows' do
     resource = MockLoader.new(:windows).load_resource('user', 'Guest')
     _(resource.uid).wont_be_nil