External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-05-24 09:07:45 -02:30
Code Issues Packages Projects Releases Wiki Activity

Ported old redact.py tests

Browse Source
This commit is contained in:
Akita Noek
2016-06-29 14:36:25 -04:00
parent 66f86de3fa
commit 172b6b48b4
1 changed files with 76 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files

78
awx/main/tests/old/redact.py → awx/main/tests/unit/test_redact.py
View File

@@ -1,11 +1,9 @@
import textwrap import textwrap
import re
# AWX # AWX
from awx.main.redact import UriCleaner from awx.main.redact import UriCleaner
from awx.main.tests.base import BaseTest, URI from awx.main.tests.base import URI
__all__ = ['UriCleanTests']
TEST_URIS = [ TEST_URIS = [
URI('no host', scheme='https', username='myusername', password='mypass', host=None), URI('no host', scheme='https', username='myusername', password='mypass', host=None),
@@ -80,25 +78,56 @@ TEST_CLEARTEXT.append({
'host_occurrences' : 4 'host_occurrences' : 4
}) })
class UriCleanTests(BaseTest):
# should redact sensitive usernames and passwords def check_found(string, substr, count=-1, description=None, word_boundary=False):
def test_uri_scm_simple_redacted(self): if word_boundary:
count_actual = len(re.findall(r'\b%s\b' % re.escape(substr), string))
else:
count_actual = string.count(substr)
msg = ''
if description:
msg = 'Test "%s".\n' % description
if count == -1:
assert count_actual > 0
else:
msg += 'Found %d occurances of "%s" instead of %d in: "%s"' % (count_actual, substr, count, string)
if count_actual != count:
raise Exception(msg)
def check_not_found(string, substr, description=None, word_boundary=False):
if word_boundary:
count = len(re.findall(r'\b%s\b' % re.escape(substr), string))
else:
count = string.find(substr)
if count == -1:
count = 0
msg = ''
if description:
msg = 'Test "%s".\n' % description
msg += '"%s" found in: "%s"' % (substr, string)
if count != 0:
raise Exception(msg)
# should redact sensitive usernames and passwords
def test_uri_scm_simple_redacted():
for uri in TEST_URIS: for uri in TEST_URIS:
redacted_str = UriCleaner.remove_sensitive(str(uri)) redacted_str = UriCleaner.remove_sensitive(str(uri))
if uri.username: if uri.username:
self.check_not_found(redacted_str, uri.username, uri.description) check_not_found(redacted_str, uri.username, uri.description)
if uri.password: if uri.password:
self.check_not_found(redacted_str, uri.password, uri.description) check_not_found(redacted_str, uri.password, uri.description)
# should replace secret data with safe string, UriCleaner.REPLACE_STR # should replace secret data with safe string, UriCleaner.REPLACE_STR
def test_uri_scm_simple_replaced(self): def test_uri_scm_simple_replaced():
for uri in TEST_URIS: for uri in TEST_URIS:
redacted_str = UriCleaner.remove_sensitive(str(uri)) redacted_str = UriCleaner.remove_sensitive(str(uri))
self.check_found(redacted_str, UriCleaner.REPLACE_STR, uri.get_secret_count()) check_found(redacted_str, UriCleaner.REPLACE_STR, uri.get_secret_count())
# should redact multiple uris in text # should redact multiple uris in text
def test_uri_scm_multiple(self): def test_uri_scm_multiple():
cleartext = '' cleartext = ''
for uri in TEST_URIS: for uri in TEST_URIS:
cleartext += str(uri) + ' ' cleartext += str(uri) + ' '
@@ -107,12 +136,12 @@ class UriCleanTests(BaseTest):
redacted_str = UriCleaner.remove_sensitive(str(uri)) redacted_str = UriCleaner.remove_sensitive(str(uri))
if uri.username: if uri.username:
self.check_not_found(redacted_str, uri.username, uri.description) check_not_found(redacted_str, uri.username, uri.description)
if uri.password: if uri.password:
self.check_not_found(redacted_str, uri.password, uri.description) check_not_found(redacted_str, uri.password, uri.description)
# should replace multiple secret data with safe string # should replace multiple secret data with safe string
def test_uri_scm_multiple_replaced(self): def test_uri_scm_multiple_replaced():
cleartext = '' cleartext = ''
find_count = 0 find_count = 0
for uri in TEST_URIS: for uri in TEST_URIS:
@@ -124,15 +153,14 @@ class UriCleanTests(BaseTest):
find_count += uri.get_secret_count() find_count += uri.get_secret_count()
redacted_str = UriCleaner.remove_sensitive(cleartext) redacted_str = UriCleaner.remove_sensitive(cleartext)
self.check_found(redacted_str, UriCleaner.REPLACE_STR, find_count) check_found(redacted_str, UriCleaner.REPLACE_STR, find_count)
# should redact and replace multiple secret data within a complex cleartext blob # should redact and replace multiple secret data within a complex cleartext blob
def test_uri_scm_cleartext_redact_and_replace(self): def test_uri_scm_cleartext_redact_and_replace():
for test_data in TEST_CLEARTEXT: for test_data in TEST_CLEARTEXT:
uri = test_data['uri'] uri = test_data['uri']
redacted_str = UriCleaner.remove_sensitive(test_data['text']) redacted_str = UriCleaner.remove_sensitive(test_data['text'])
self.check_not_found(redacted_str, uri.username, uri.description) check_not_found(redacted_str, uri.username, uri.description)
self.check_not_found(redacted_str, uri.password, uri.description) check_not_found(redacted_str, uri.password, uri.description)
# Ensure the host didn't get redacted # Ensure the host didn't get redacted
self.check_found(redacted_str, uri.host, test_data['host_occurrences'], uri.description) check_found(redacted_str, uri.host, test_data['host_occurrences'], uri.description)