openstack/puppet-nova
Code Issues Proposed changes
Files
e93c8c9c575a5427a30522f689ec3336cc246a10
puppet-nova/spec/classes/nova_keystone_endpoint_spec.rb
Risto Laurikainen 45788081c9 Make user creation optional when creating service. 
In some cases it is useful to be able to just configure
the service in Keystone and not the service user. This
is the case when e.g. a read only LDAP backend is used.
Added parameters configure_user and configure_user_role
(default to true).

Change-Id: If3d53c2c9070691b4731142f512b1f4bb754be00
Closes-Bug: 1360232
2014-09-11 12:22:15 +03:00

217 lines
6.0 KiB
Ruby
Raw Blame History

require 'spec_helper'
describe 'nova::keystone::auth' do
let :params do
{:password => 'nova_password'}
end
context 'with default parameters' do
it { should contain_keystone_user('nova').with(
:ensure => 'present',
:password => 'nova_password'
) }
it { should contain_keystone_user_role('nova@services').with(
:ensure => 'present',
:roles => 'admin'
)}
it { should contain_keystone_service('nova').with(
:ensure => 'present',
:type => 'compute',
:description => 'Openstack Compute Service'
)}
it { should contain_keystone_service('novav3').with(
:ensure => 'present',
:type => 'computev3',
:description => 'Openstack Compute Service v3'
)}
it { should contain_keystone_service('nova_ec2').with(
:ensure => 'present',
:type => 'ec2',
:description => 'EC2 Service'
)}
it { should contain_keystone_endpoint('RegionOne/nova').with(
:ensure => 'present',
:public_url => 'http://127.0.0.1:8774/v2/%(tenant_id)s',
:admin_url => 'http://127.0.0.1:8774/v2/%(tenant_id)s',
:internal_url => 'http://127.0.0.1:8774/v2/%(tenant_id)s'
)}
it { should contain_keystone_endpoint('RegionOne/novav3').with(
:ensure => 'present',
:public_url => 'http://127.0.0.1:8774/v3',
:admin_url => 'http://127.0.0.1:8774/v3',
:internal_url => 'http://127.0.0.1:8774/v3'
)}
it { should contain_keystone_endpoint('RegionOne/nova_ec2').with(
:ensure => 'present',
:public_url => 'http://127.0.0.1:8773/services/Cloud',
:admin_url => 'http://127.0.0.1:8773/services/Admin',
:internal_url => 'http://127.0.0.1:8773/services/Cloud'
)}
end
context 'when setting auth name' do
before do
params.merge!( :auth_name => 'foo' )
end
it { should contain_keystone_user('foo').with(
:ensure => 'present',
:password => 'nova_password'
) }
it { should contain_keystone_user_role('foo@services').with(
:ensure => 'present',
:roles => 'admin'
)}
it { should contain_keystone_service('foo').with(
:ensure => 'present',
:type => 'compute',
:description => 'Openstack Compute Service'
)}
it { should contain_keystone_service('foo_ec2').with(
:ensure => 'present',
:type => 'ec2',
:description => 'EC2 Service'
)}
end
context 'when overriding endpoint params' do
before do
params.merge!(
:public_address => '10.0.0.1',
:admin_address => '10.0.0.2',
:internal_address => '10.0.0.3',
:compute_port => '9774',
:ec2_port => '9773',
:compute_version => 'v2.2',
:region => 'RegionTwo',
:admin_protocol => 'https',
:internal_protocol => 'https',
:public_protocol => 'https'
)
end
it { should contain_keystone_endpoint('RegionTwo/nova').with(
:ensure => 'present',
:public_url => 'https://10.0.0.1:9774/v2.2/%(tenant_id)s',
:admin_url => 'https://10.0.0.2:9774/v2.2/%(tenant_id)s',
:internal_url => 'https://10.0.0.3:9774/v2.2/%(tenant_id)s'
)}
it { should contain_keystone_endpoint('RegionTwo/nova_ec2').with(
:ensure => 'present',
:public_url => 'https://10.0.0.1:9773/services/Cloud',
:admin_url => 'https://10.0.0.2:9773/services/Admin',
:internal_url => 'https://10.0.0.3:9773/services/Cloud'
)}
end
describe 'when disabling endpoint configuration' do
before do
params.merge!( :configure_endpoint => false )
end
it { should_not contain_keystone_endpoint('RegionOne/nova') }
end
describe 'when disabling EC2 endpoint' do
before do
params.merge!( :configure_ec2_endpoint => false )
end
it { should_not contain_keystone_service('nova_ec2') }
it { should_not contain_keystone_endpoint('RegionOne/nova_ec2') }
end
describe 'when disabling user configuration' do
before do
params.merge!( :configure_user => false )
end
it { should_not contain_keystone_user('nova') }
it { should contain_keystone_user_role('nova@services') }
it { should contain_keystone_service('nova').with(
:ensure => 'present',
:type => 'compute',
:description => 'Openstack Compute Service'
)}
end
describe 'when disabling user and user role configuration' do
let :params do
{
:configure_user => false,
:configure_user_role => false,
:password => 'nova_password'
}
end
it { should_not contain_keystone_user('nova') }
it { should_not contain_keystone_user_role('nova@services') }
it { should contain_keystone_service('nova').with(
:ensure => 'present',
:type => 'compute',
:description => 'Openstack Compute Service'
)}
end
describe 'when configuring nova-api and the keystone endpoint' do
let :pre_condition do
"class { 'nova::api': admin_password => 'test' }
include nova"
end
let :facts do
{ :osfamily => "Debian"}
end
let :params do
{
:password => 'test'
}
end
it { should contain_keystone_endpoint('RegionOne/nova').with_notify('Service[nova-api]') }
end
describe 'when overriding service names' do
let :params do
{
:service_name => 'nova_service',
:service_name_v3 => 'nova_service_v3',
:password => 'nova_password'
}
end
it { should contain_keystone_user('nova') }
it { should contain_keystone_user_role('nova@services') }
it { should contain_keystone_service('nova_service') }
it { should contain_keystone_service('nova_service_v3') }
it { should contain_keystone_service('nova_service_ec2') }
it { should contain_keystone_endpoint('RegionOne/nova_service') }
it { should contain_keystone_endpoint('RegionOne/nova_service_v3') }
it { should contain_keystone_endpoint('RegionOne/nova_service_ec2') }
end
end
View Git Blame Copy Permalink