Files @ 3dd7f39302f8
Branch filter:

Location: majic-ansible-roles/roles/database/tests/test_default.py

branko
MAR-29: Implemented tests for php_website role:

- Install some additional tools for testing everything.
- Updated test playbook to change allowed extensions for running PHP scripts on
parameters-optional.
- Updated error page to use correct extension for parameters-optional test
instance.
- Expanded rewrite configuration slightly for parameters-optional.
- Install libmariadb-client-lgpl-dev-compat to test mysql_config symlink
creation.
- Deploy a number of PHP pages used for testing if pages are served correctly.
- Set file permissions on deployed PHP FPM pool configuraiton files.
- Use expanded syntax when deploying TLS keys/certificates in order to avoid
issues with TAB mangling.
- Fixed set-up of Strict-Transport-Security header when HTTPS enforcement is
disabled.
- Added a number of PHP and static test pages.
- Wrote tests covering full functionality of the role.
import testinfra.utils.ansible_runner

testinfra_hosts = testinfra.utils.ansible_runner.AnsibleRunner(
    '.molecule/ansible_inventory').get_hosts('all')


def test_database_created(Command, Sudo):
    """
    Tests if database has been created.
    """

    with Sudo():
        show_databases = Command("mysql -BNe \"show databases like 'testdb'\"")

        assert show_databases.rc == 0
        assert show_databases.stdout == "testdb"


def test_database_user_login(Command):
    """
    Tests database user login.
    """

    login = Command("mysql -utestdb -ptestdbpassword -BNe 'show databases'")

    assert login.rc == 0


def test_database_user_permissions(Command, Sudo):
    """
    Tests if database user has been granted correct permissions on the database.
    """

    visible_databases = Command("mysql -utestdb -ptestdbpassword -BNe 'show databases'")

    assert visible_databases.rc == 0
    assert visible_databases.stdout == "information_schema\ntestdb"

    with Sudo():
        permissions = Command("mysql -BNe 'show grants for testdb@localhost'")
        assert len(permissions.stdout.split("\n")) == 2
        assert "GRANT USAGE ON *.* TO 'testdb'@'localhost' IDENTIFIED BY PASSWORD '*676852B7FAE972722AD20D6E74781D6B1A100544'" in permissions.stdout.split("\n")
        assert "GRANT ALL PRIVILEGES ON `testdb`.* TO 'testdb'@'localhost'" in permissions.stdout.split("\n")