assert_equal true, found_busy_node
end
+ test "node should ping with ping_secret and no token" do
+ post :ping, {
+ id: 'zzzzz-7ekkf-2z3mc76g2q73aio',
+ instance_id: 'i-0000000',
+ local_ipv4: '172.17.2.174',
+ ping_secret: '69udawxvn3zzj45hs8bumvndricrha4lcpi23pd69e44soanc0'
+ }
+ assert_response :success
+ response = JSON.parse(@response.body)
+ assert_equal 'zzzzz-7ekkf-2z3mc76g2q73aio', response['uuid']
+ # Ensure we are getting the "superuser" attributes, too
+ assert_not_nil response['first_ping_at'], '"first_ping_at" attr missing'
+ assert_not_nil response['info'], '"info" attr missing'
+ assert_not_nil response['nameservers'], '"nameservers" attr missing'
+ end
+
+ test "node should fail ping with invalid ping_secret" do
+ post :ping, {
+ id: 'zzzzz-7ekkf-2z3mc76g2q73aio',
+ instance_id: 'i-0000000',
+ local_ipv4: '172.17.2.174',
+ ping_secret: 'dricrha4lcpi23pd69e44soanc069udawxvn3zzj45hs8bumvn'
+ }
+ assert_response 401
+ end
+
+ test "create node" do
+ authorize_with :admin
+ post :create, {node: {}}
+ assert_response :success
+ assert_not_nil json_response['uuid']
+ assert_not_nil json_response['info'].is_a? Hash
+ assert_not_nil json_response['info']['ping_secret']
+ end
+
+ test "ping adds node stats to info" do
+ authorize_with :admin
+ node = nodes(:idle)
+ post :ping, {
+ id: node.uuid,
+ ping_secret: node.info['ping_secret'],
+ total_cpu_cores: 32,
+ total_ram_mb: 1024,
+ total_scratch_mb: 2048
+ }
+ assert_response :success
+ info = JSON.parse(@response.body)['info']
+ properties = JSON.parse(@response.body)['properties']
+ assert_equal(node.info['ping_secret'], info['ping_secret'])
+ assert_equal(32, properties['total_cpu_cores'].to_i)
+ assert_equal(1024, properties['total_ram_mb'].to_i)
+ assert_equal(2048, properties['total_scratch_mb'].to_i)
+ end
+
+ test "active user can see their assigned job" do
+ authorize_with :active
+ get :show, {id: nodes(:busy).uuid}
+ assert_response :success
+ assert_equal(jobs(:nearly_finished_job).uuid, json_response["job_uuid"])
+ end
+
+ test "user without job read permission can't see job" do
+ authorize_with :spectator
+ get :show, {id: nodes(:busy).uuid}
+ assert_response :success
+ assert_nil(json_response["job"], "spectator can see node's assigned job")
+ end
+
+ test "admin can associate a job with a node" do
+ changed_node = nodes(:idle)
+ assigned_job = jobs(:queued)
+ authorize_with :admin
+ post :update, {
+ id: changed_node.uuid,
+ node: {job_uuid: assigned_job.uuid},
+ }
+ assert_response :success
+ assert_equal(changed_node.hostname, json_response["hostname"],
+ "hostname mismatch after defining job")
+ assert_equal(assigned_job.uuid, json_response["job_uuid"],
+ "mismatch in node's assigned job UUID")
+ end
+
+ test "non-admin can't associate a job with a node" do
+ authorize_with :active
+ post :update, {
+ id: nodes(:idle).uuid,
+ node: {job_uuid: jobs(:queued).uuid},
+ }
+ assert_response 403
+ end
+
+ test "admin can unassign a job from a node" do
+ changed_node = nodes(:busy)
+ authorize_with :admin
+ post :update, {
+ id: changed_node.uuid,
+ node: {job_uuid: nil},
+ }
+ assert_response :success
+ assert_equal(changed_node.hostname, json_response["hostname"],
+ "hostname mismatch after defining job")
+ assert_nil(json_response["job_uuid"],
+ "node still has job assignment after update")
+ end
+
+ test "non-admin can't unassign a job from a node" do
+ authorize_with :project_viewer
+ post :update, {
+ id: nodes(:busy).uuid,
+ node: {job_uuid: nil},
+ }
+ assert_response 403
+ end
+
+ test "job readable after updating other attributes" do
+ authorize_with :admin
+ post :update, {
+ id: nodes(:busy).uuid,
+ node: {last_ping_at: 1.second.ago},
+ }
+ assert_response :success
+ assert_equal(jobs(:nearly_finished_job).uuid, json_response["job_uuid"],
+ "mismatched job UUID after ping update")
+ end
end
projects / arvados.git / blobdiff