scheduler/appengine/acl/acl_test.go - Issue 2993793003: [scheduler]: ACLs phase 3 - require ACLs specs for each Job/Trigger.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: scheduler/appengine/acl/acl_test.go

Issue 2993793003: [scheduler]: ACLs phase 3 - require ACLs specs for each Job/Trigger. (Closed)

Patch Set: Updated patchset dependency Created 3 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: scheduler/appengine/acl/acl_test.go

diff --git a/scheduler/appengine/acl/acl_test.go b/scheduler/appengine/acl/acl_test.go

index 9ec1629bac73313e8a00a2ce356d5ae119170cdb..80da208c66dbdddaf8515c08fbcf7aaee92b4dd0 100644

--- a/scheduler/appengine/acl/acl_test.go

+++ b/scheduler/appengine/acl/acl_test.go

@@ -68,11 +68,14 @@ func TestAclsValidation(t *testing.T) {

})

Convey("Task Acls", t, func() {

- Convey("Without AclSets", func() {

- jobAcls, err := ValidateTaskAcls(nil, []string{}, validGrants)

- So(err, ShouldBeNil)

- So(jobAcls.Owners, ShouldResemble, []string{})

- So(jobAcls.Readers, ShouldResemble, []string{"group:all"})

+ Convey("READER and OWNER ACLs are required", func() {

+ _, err := ValidateTaskAcls(nil, []string{},

+ []*messages.Acl{{Role: messages.Acl_READER, GrantedTo: "group:readers"}})

+ So(err.Error(), ShouldResemble, "Job or Trigger must have OWNER acl set")

+ _, err = ValidateTaskAcls(nil, []string{},

+ []*messages.Acl{{Role: messages.Acl_OWNER, GrantedTo: "group:owners"}})

+ So(err.Error(), ShouldResemble, "Job or Trigger must have READER acl set")

})

Convey("Without AclSets but with bad ACLs", func() {

@@ -83,13 +86,16 @@ func TestAclsValidation(t *testing.T) {

Convey("Many ACLs", func() {

taskGrants := make([]*messages.Acl, maxGrantsPerJob)

- for i := 0; i < maxGrantsPerJob; i++ {

+ taskGrants[0] = &messages.Acl{Role: messages.Acl_READER, GrantedTo: "group:readers"}

+ for i := 1; i < maxGrantsPerJob; i++ {

taskGrants[i] = &messages.Acl{Role: messages.Acl_OWNER, GrantedTo: fmt.Sprintf("group:%d", i)}

}

+ So(len(taskGrants), ShouldEqual, maxGrantsPerJob)

Convey("Hitting max is OK", func() {

r, err := ValidateTaskAcls(nil, []string{}, taskGrants)

So(err, ShouldBeNil)

- So(len(r.Owners), ShouldEqual, maxGrantsPerJob)

+ So(len(r.Readers), ShouldEqual, 1)

+ So(len(r.Owners), ShouldEqual, maxGrantsPerJob-1)

})

Convey("1 too many", func() {

aclSets := map[string][]*messages.Acl{

« no previous file with comments | « scheduler/appengine/acl/acl.go ('k') | scheduler/appengine/engine/engine_test.go » ('j') | no next file with comments »