rpcenv: drop unused roles()

[pve-access-control.git] / test / perm-test7.pl

diff --git a/test/perm-test7.pl b/test/perm-test7.pl
index e2b71a3524d7ed7fbe1bf93495107df0a17eb131..2add06735989f237196b0fcd746294eecc174752 100755 (executable)
--- a/test/perm-test7.pl
+++ b/test/perm-test7.pl
@@ -14,7 +14,7 @@ $rpcenv->init_request(userconfig => $cfgfn);
 sub check_roles {
     my ($user, $path, $expected_result) = @_;
 
 sub check_roles {
     my ($user, $path, $expected_result) = @_;
 

-    my @ra = $rpcenv->roles($user, $path);
+    my @ra = PVE::AccessControl::roles($rpcenv->{user_cfg}, $user, $path);

     my $res = join(',', sort @ra);
 
     die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"
     my $res = join(',', sort @ra);
 
     die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"


@@ -23,10 +23,30 @@ sub check_roles {
     print "ROLES:$path:$user:$res\n";
 }
 
     print "ROLES:$path:$user:$res\n";
 }
 

+sub check_permissions {
+    my ($user, $path, $expected_result) = @_;
+
+    my $perm = $rpcenv->permissions($user, $path);
+    my $res = join(',', sort keys %$perm);
+
+    die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"
+       if $res ne $expected_result;
+
+    $perm = $rpcenv->permissions($user, $path);
+    $res = join(',', sort keys %$perm);
+    die "unexpected result (compiled)\nneed '${expected_result}'\ngot '$res'\n"
+       if $res ne $expected_result;
+
+    print "PERM:$path:$user:$res\n";
+}

 
 check_roles('User1@pve', '/vms', 'Role1');
 check_roles('User1@pve', '/vms/200', 'Role1');
 
 check_roles('User1@pve', '/vms', 'Role1');
 check_roles('User1@pve', '/vms/200', 'Role1');

-check_roles('User1@pve', '/vms/100', 'NoAccess');
+
+# no pool
+check_roles('User1@pve', '/vms/100', 'Role1');
+# with pool
+check_permissions('User1@pve', '/vms/100', '');

 
 print "all tests passed\n";
 
 
 print "all tests passed\n";