mirror of
https://github.com/inspec/inspec
synced 2025-03-02 14:27:12 +00:00
3f14e467b3
* Add a unique export for security policy resource. Signed-off-by: Jared Quick <jquick@chef.io> * Remove skip resource on empty policy file. Signed-off-by: Jared Quick <jquick@chef.io>
30 lines
1.2 KiB
Ruby
30 lines
1.2 KiB
Ruby
# encoding: utf-8
|
|
# author: Christoph Hartmann
|
|
# author: Dominik Richter
|
|
|
|
require 'helper'
|
|
require 'inspec/resource'
|
|
|
|
describe 'Inspec::Resources::SecurityPolicy' do
|
|
it 'verify processes resource' do
|
|
resource = load_resource('security_policy')
|
|
SecureRandom.expects(:hex).returns('abc123')
|
|
|
|
_(resource.MaximumPasswordAge).must_equal 42
|
|
_(resource.send('MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Setup\RecoveryConsole\SecurityLevel')).must_equal '4,0'
|
|
_(resource.SeUndockPrivilege).must_equal ["S-1-5-32-544"]
|
|
_(resource.SeRemoteInteractiveLogonRight).must_equal ["S-1-5-32-544","S-1-5-32-555"]
|
|
end
|
|
|
|
it 'parse empty policy file' do
|
|
resource = load_resource('security_policy')
|
|
SecureRandom.expects(:hex).returns('abc123')
|
|
backend = resource.inspec.backend
|
|
backend.commands['Get-Content win_secpol-abc123.cfg'] = backend.mock_command('', '', '', 0)
|
|
|
|
_(resource.MaximumPasswordAge).must_be_nil
|
|
_(resource.send('MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Setup\RecoveryConsole\SecurityLevel')).must_be_nil
|
|
_(resource.SeUndockPrivilege).must_equal []
|
|
_(resource.SeRemoteInteractiveLogonRight).must_equal []
|
|
end
|
|
end
|