test: extend intersection tests

[pve-access-control.git] / src / test / perm-test8.pl

diff --git a/src/test/perm-test8.pl b/src/test/perm-test8.pl
index 67e0cb14955136e110b14e030328eeda544063f9..83ca1f26e76672c9017d793e8a66b02fe44b9ed9 100644 (file)
--- a/src/test/perm-test8.pl
+++ b/src/test/perm-test8.pl
@@ -62,6 +62,9 @@ check_roles('carol@pam!token', '/vms/200', 'NoAccess');
 check_roles('max@pve!token', '/vms/200', 'storage_manager');
 check_roles('max@pve!token2', '/vms/200', 'customer');
 
+# check intersection -> token has Administrator, but user only vm_admin
+check_permission('max@pve!token2', '/vms/300', 'Permissions.Modify,VM.Allocate,VM.Audit,VM.Console');
+
 print "all tests passed\n";
 
 exit (0);