inspec/test/unit/resources/passwd_test.rb

# encoding: utf-8
# author: Christoph Hartmann
# author: Dominik Richter

require 'helper'
require 'inspec/resource'

describe 'Inspec::Resources::Passwd' do
  let(:passwd) { load_resource('passwd') }
  it 'retrieve users via field' do
    _(passwd.users).must_equal %w{root www-data}
  end

  it 'retrieve uids via field' do
    _(passwd.uids).must_equal %w{0 33}
  end

  it 'retrieve gids via field' do
    _(passwd.gids).must_equal %w{0 133}
  end

  it 'retrieve passwords via field' do
    _(passwd.passwords).must_equal %w{x x}
  end

  it 'retrieve login-shells via field' do
    _(passwd.shells).must_equal %w{/bin/bash /bin/sh}
  end

  it 'access all lines of the file' do
    _(passwd.lines).must_equal %w{root:x:0:0:root:/root:/bin/bash www-data:x:33:133:www-data:/var/www:/bin/sh}
  end

  it 'access all params of the file' do
    _(passwd.params[1]).must_equal({"user"=>"www-data", "password"=>"x", "uid"=>"33", "gid"=>"133", "desc"=>"www-data", "home"=>"/var/www", "shell"=>"/bin/sh"})
  end

  describe 'filter by uid == 0' do
    let(:child) { passwd.uids(0) }
    it 'creates a new passwd instance' do
      _(child.content).must_equal 'root:x:0:0:root:/root:/bin/bash'
    end

    it 'prints a nice to_s string' do
      _(child.to_s).must_equal '/etc/passwd with uid == 0'
    end

    it 'retrieves singular elements instead of arrays when filter has only one entry' do
      _(child.users).must_equal ['root']
      _(child.count).must_equal 1
    end
  end

  describe 'filter via name =~ /^www/' do
    let(:child) { passwd.users(/^www/) }
    it 'filters by user via name (regex)' do
      _(child.users).must_equal ['www-data']
      _(child.count).must_equal 1
    end

    it 'prints a nice to_s string' do
      _(child.to_s).must_equal '/etc/passwd with user == /^www/'
    end
  end

  describe 'deprecated calls' do
    it 'retrieves a username via uid' do
      _(passwd.uid(0).username).must_equal 'root'
    end

    it 'retrieves a usercount via uid' do
      _(passwd.uid(0).count).must_equal 1
    end

    it 'retrieves usernames' do
      _(passwd.usernames).must_equal ['root', 'www-data']
    end
  end

  # TODO REWORK ALL OF THESE, please don't depend on them yet!
  describe 'experimental features' do
    it 'retrieves username via uids < x' do
      _(passwd.uids({ :< => 33 }).count).must_equal 1
      _(passwd.uids({ :< => 34 }).count).must_equal 2
    end

    it 'retrieves username via uids <= x' do
      _(passwd.uids({ :<= => 32 }).count).must_equal 1
      _(passwd.uids({ :<= => 33 }).count).must_equal 2
    end

    it 'retrieves username via uids > x' do
      _(passwd.uids({ :> => 0 }).count).must_equal 1
      _(passwd.uids({ :> => -1 }).count).must_equal 2
    end

    it 'retrieves username via uids >= x' do
      _(passwd.uids({ :>= => 1 }).count).must_equal 1
      _(passwd.uids({ :>= => 0 }).count).must_equal 2
    end

    it 'retrieves username via uids == x' do
      _(passwd.uids({ :== => 0 }).count).must_equal 1
      _(passwd.uids({ :== => 1 }).count).must_equal 0
    end

    it 'retrieves username via uids != x' do
      _(passwd.uids({ :!= => 0 }).count).must_equal 1
      _(passwd.uids({ :!= => 1 }).count).must_equal 2
    end
  end
end