test: extend intersection tests

to check the previous commit's fix.

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

diff --git a/src/test/perm-test8.pl b/src/test/perm-test8.pl
index 67e0cb14955136e110b14e030328eeda544063f9..83ca1f26e76672c9017d793e8a66b02fe44b9ed9 100644 (file)
--- a/src/test/perm-test8.pl
+++ b/src/test/perm-test8.pl
@@ -62,6 +62,9 @@ check_roles('carol@pam!token', '/vms/200', 'NoAccess');
 check_roles('max@pve!token', '/vms/200', 'storage_manager');
 check_roles('max@pve!token2', '/vms/200', 'customer');
 
+# check intersection -> token has Administrator, but user only vm_admin
+check_permission('max@pve!token2', '/vms/300', 'Permissions.Modify,VM.Allocate,VM.Audit,VM.Console');
+
 print "all tests passed\n";
 
 exit (0);

diff --git a/src/test/test8.cfg b/src/test/test8.cfg
index 6b0eac6a933c80dcde0578853131e4abf5727098..2f85bfd828772b01a1a3a293d4b75bb5ddd0faca 100644 (file)
--- a/src/test/test8.cfg
+++ b/src/test/test8.cfg
@@ -26,3 +26,5 @@ acl:1:/vms/200:@testgroup2:NoAccess:
 acl:1:/vms/200:carol@pam!token:vm_admin
 acl:1:/vms/200:max@pve!token:storage_manager
 acl:1:/vms/200:max@pve!token2:customer
+
+acl:1:/vms/300:max@pve!token2:Administrator