src/test/perm-test7.pl

   1 #!/usr/bin/perl -w
   2
   3 use strict;
   4 use warnings;
   5
   6 use Getopt::Long;
   7
   8 use PVE::Tools;
   9
  10 use PVE::AccessControl;
  11 use PVE::RPCEnvironment;
  12
  13 my $rpcenv = PVE::RPCEnvironment->init('cli');
  14
  15 my $cfgfn = "test7.cfg";
  16 $rpcenv->init_request(userconfig => $cfgfn);
  17
  18 sub check_roles {
  19     my ($user, $path, $expected_result) = @_;
  20
  21     my $roles = PVE::AccessControl::roles($rpcenv->{user_cfg}, $user, $path);
  22     my $res = join(',', sort keys %$roles);
  23
  24     die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"
  25         if $res ne $expected_result;
  26
  27     print "ROLES:$path:$user:$res\n";
  28 }
  29
  30 sub check_permissions {
  31     my ($user, $path, $expected_result) = @_;
  32
  33     my $perm = $rpcenv->permissions($user, $path);
  34     my $res = join(',', sort keys %$perm);
  35
  36     die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"
  37         if $res ne $expected_result;
  38
  39     $perm = $rpcenv->permissions($user, $path);
  40     $res = join(',', sort keys %$perm);
  41     die "unexpected result (compiled)\nneed '${expected_result}'\ngot '$res'\n"
  42         if $res ne $expected_result;
  43
  44     print "PERM:$path:$user:$res\n";
  45 }
  46
  47 check_roles('User1@pve', '/vms', 'Role1');
  48 check_roles('User1@pve', '/vms/200', 'Role1');
  49
  50 # no pool
  51 check_roles('User1@pve', '/vms/100', 'Role1');
  52 # with pool
  53 check_permissions('User1@pve', '/vms/100', '');
  54
  55 print "all tests passed\n";
  56
  57 exit (0);