def test_delete_security_group_nova_os_id(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.OS_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.OS_SECURITY_GROUP_2)
])
resp = self.execute('DeleteSecurityGroup',
{'GroupId': fakes.ID_OS_SECURITY_GROUP_2})
self.assertEqual(True, resp['return'])
self.nova.security_groups.delete.assert_called_once_with(
fakes.ID_OS_SECURITY_GROUP_2)
def test_create_security_group_rollback(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.set_mock_db_items(fakes.DB_VPC_1)
self.db_api.add_item.side_effect = Exception()
self.nova.security_groups.create.return_value = (
fakes.NovaSecurityGroup(fakes.OS_SECURITY_GROUP_1))
self.assert_execution_error(
self.ANY_EXECUTE_ERROR, 'CreateSecurityGroup', {
'VpcId': fakes.ID_EC2_VPC_1,
'GroupName': 'groupname',
'GroupDescription': 'Group description'
})
self.nova.security_groups.delete.assert_called_once_with(
fakes.ID_OS_SECURITY_GROUP_1)
def test_describe_security_groups_nova(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.set_mock_db_items()
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_2)
])
resp = self.execute('DescribeSecurityGroups', {})
self.assertThat(
resp['securityGroupInfo'],
matchers.ListMatches([
fakes.EC2_NOVA_SECURITY_GROUP_1,
fakes.EC2_NOVA_SECURITY_GROUP_2
],
orderless_lists=True))
def test_revoke_security_group_ingress_ip_ranges_nova(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_2)
])
self.nova.security_groups.get.return_value = (fakes.NovaSecurityGroup(
fakes.NOVA_SECURITY_GROUP_2))
self.nova.security_group_rules.delete.return_value = True
self.execute(
'RevokeSecurityGroupIngress', {
'GroupName': fakes.EC2_NOVA_SECURITY_GROUP_2['groupName'],
'IpPermissions.1.FromPort': '10',
'IpPermissions.1.ToPort': '10',
'IpPermissions.1.IpProtocol': 'tcp',
'IpPermissions.1.IpRanges.1.CidrIp': '192.168.1.0/24'
})
self.nova.security_group_rules.delete.assert_called_once_with(
fakes.NOVA_SECURITY_GROUP_RULE_1['id'])
def test_revoke_security_group_groups_nova(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_2)
])
self.nova.security_groups.get.return_value = (fakes.NovaSecurityGroup(
fakes.NOVA_SECURITY_GROUP_2))
self.nova.security_group_rules.delete.return_value = True
self.execute(
'RevokeSecurityGroupIngress', {
'GroupName':
fakes.EC2_NOVA_SECURITY_GROUP_2['groupName'],
'IpPermissions.1.IpProtocol':
'icmp',
'IpPermissions.1.Groups.1.GroupName':
fakes.EC2_NOVA_SECURITY_GROUP_1['groupName']
})
self.nova.security_group_rules.delete.assert_called_once_with(
fakes.NOVA_SECURITY_GROUP_RULE_2['id'])
def test_authorize_security_group_ip_ranges_nova(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.nova.security_group_rules.create.return_value = ({
'security_group_rule': [fakes.NOVA_SECURITY_GROUP_RULE_1]
})
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_2)
])
self.execute(
'AuthorizeSecurityGroupIngress', {
'GroupName': fakes.EC2_NOVA_SECURITY_GROUP_2['groupName'],
'IpPermissions.1.FromPort': '10',
'IpPermissions.1.ToPort': '10',
'IpPermissions.1.IpProtocol': 'tcp',
'IpPermissions.1.IpRanges.1.CidrIp': '192.168.1.0/24'
})
self.nova.security_group_rules.create.assert_called_once_with(
str(fakes.ID_NOVA_OS_SECURITY_GROUP_2), 'tcp', 10, 10,
'192.168.1.0/24', None)
def test_authorize_security_group_groups_nova(self):
security_group.security_group_engine = (
security_group.SecurityGroupEngineNova())
self.nova.security_group_rules.create.return_value = ({
'security_group_rule': [fakes.NOVA_SECURITY_GROUP_RULE_2]
})
self.nova.security_groups.list.return_value = ([
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_1),
fakes.NovaSecurityGroup(fakes.NOVA_SECURITY_GROUP_2)
])
self.execute(
'AuthorizeSecurityGroupIngress', {
'GroupName':
fakes.EC2_NOVA_SECURITY_GROUP_2['groupName'],
'IpPermissions.1.IpProtocol':
'icmp',
'IpPermissions.1.Groups.1.GroupName':
fakes.EC2_NOVA_SECURITY_GROUP_1['groupName']
})
self.nova.security_group_rules.create.assert_called_once_with(
str(fakes.ID_NOVA_OS_SECURITY_GROUP_2), 'icmp', -1, -1, None,
str(fakes.ID_NOVA_OS_SECURITY_GROUP_1))
