]>
git.proxmox.com Git - pve-access-control.git/blob - src/test/perm-test5.pl
10 use PVE
::AccessControl
;
11 use PVE
::RPCEnvironment
;
13 my $rpcenv = PVE
::RPCEnvironment-
>init('cli');
15 my $cfgfn = "test5.cfg";
16 $rpcenv->init_request(userconfig
=> $cfgfn);
19 my ($user, $path, $expected_result) = @_;
21 my $roles = PVE
::AccessControl
::roles
($rpcenv->{user_cfg
}, $user, $path);
22 my $res = join(',', sort keys %$roles);
24 die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"
25 if $res ne $expected_result;
27 print "ROLES:$path:$user:$res\n";
31 check_roles
('User1@pve', '/vms', 'Role1');
32 check_roles
('User1@pve', '/vms/100', 'Role1');
33 check_roles
('User1@pve', '/vms/100/a', 'Role1');
34 check_roles
('User1@pve', '/vms/100/a/b', 'Role2');
35 check_roles
('User1@pve', '/vms/100/a/b/c', 'Role2');
36 check_roles
('User1@pve', '/vms/200', 'Role1');
38 check_roles
('User2@pve', '/kvm', 'Role2');
39 check_roles
('User2@pve', '/kvm/vms', 'Role1');
40 check_roles
('User2@pve', '/kvm/vms/100', '');
41 check_roles
('User2@pve', '/kvm/vms/100/a', 'Role3');
42 check_roles
('User2@pve', '/kvm/vms/100/a/b', '');
44 print "all tests passed\n";