X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/80dbda890bf58bda79654cf4cebdfbc2b07d6b1f..df8aa6da0173f77aa9f2fcbe2814a07bcdcbf5d9:/lib/controller/localdb/login_pam_test.go diff --git a/lib/controller/localdb/login_pam_test.go b/lib/controller/localdb/login_pam_test.go index c5876bbfad..0282b566f1 100644 --- a/lib/controller/localdb/login_pam_test.go +++ b/lib/controller/localdb/login_pam_test.go @@ -13,9 +13,11 @@ import ( "git.arvados.org/arvados.git/lib/config" "git.arvados.org/arvados.git/lib/controller/rpc" + "git.arvados.org/arvados.git/lib/ctrlctx" "git.arvados.org/arvados.git/sdk/go/arvados" "git.arvados.org/arvados.git/sdk/go/arvadostest" "git.arvados.org/arvados.git/sdk/go/ctxlog" + "github.com/jmoiron/sqlx" check "gopkg.in/check.v1" ) @@ -25,6 +27,9 @@ type PamSuite struct { cluster *arvados.Cluster ctrl *pamLoginController railsSpy *arvadostest.Proxy + db *sqlx.DB + ctx context.Context + rollback func() error } func (s *PamSuite) SetUpSuite(c *check.C) { @@ -39,10 +44,24 @@ func (s *PamSuite) SetUpSuite(c *check.C) { Cluster: s.cluster, Parent: &Conn{railsProxy: rpc.NewConn(s.cluster.ClusterID, s.railsSpy.URL, true, rpc.PassthroughTokenProvider)}, } + s.db = arvadostest.DB(c, s.cluster) +} + +func (s *PamSuite) SetUpTest(c *check.C) { + tx, err := s.db.Beginx() + c.Assert(err, check.IsNil) + s.ctx = ctrlctx.NewWithTransaction(context.Background(), tx) + s.rollback = tx.Rollback +} + +func (s *PamSuite) TearDownTest(c *check.C) { + if s.rollback != nil { + s.rollback() + } } func (s *PamSuite) TestLoginFailure(c *check.C) { - resp, err := s.ctrl.UserAuthenticate(context.Background(), arvados.UserAuthenticateOptions{ + resp, err := s.ctrl.UserAuthenticate(s.ctx, arvados.UserAuthenticateOptions{ Username: "bogususername", Password: "boguspassword", }) @@ -57,6 +76,9 @@ func (s *PamSuite) TestLoginFailure(c *check.C) { // This test only runs if the ARVADOS_TEST_PAM_CREDENTIALS_FILE env // var is set. The credentials file should contain a valid username // and password, separated by \n. +// +// Depending on the host config, this test succeeds only if the test +// credentials are for the same account being used to run tests. func (s *PamSuite) TestLoginSuccess(c *check.C) { testCredsFile := os.Getenv("ARVADOS_TEST_PAM_CREDENTIALS_FILE") if testCredsFile == "" { @@ -69,7 +91,7 @@ func (s *PamSuite) TestLoginSuccess(c *check.C) { c.Assert(len(lines), check.Equals, 2, check.Commentf("credentials file %s should contain \"username\\npassword\"", testCredsFile)) u, p := lines[0], lines[1] - resp, err := s.ctrl.UserAuthenticate(context.Background(), arvados.UserAuthenticateOptions{ + resp, err := s.ctrl.UserAuthenticate(s.ctx, arvados.UserAuthenticateOptions{ Username: u, Password: p, })