def test_parse_verify_ssl_verify_turned_off(self):
with mock.patch('os.environ', {}):
parsed_args = FakeParsedArgs(verify_ssl=False, ca_bundle=None)
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertFalse(parsed_args.verify_ssl)
def test_parse_verify_ssl_verify_turned_off(self):
with mock.patch('os.environ', {}):
parsed_args = FakeParsedArgs(verify_ssl=False, ca_bundle=None)
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertFalse(parsed_args.verify_ssl)
def test_parse_verify_ssl_default_value(self):
with mock.patch('os.environ', {}):
parsed_args = FakeParsedArgs(verify_ssl=True, ca_bundle=None)
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map)
globalargs.resolve_verify_ssl(parsed_args, session)
# None, so that botocore can apply it's default logic.
self.assertIsNone(parsed_args.verify_ssl)
def test_parse_verify_ssl_default_value(self):
with mock.patch('os.environ', {}):
parsed_args = FakeParsedArgs(verify_ssl=True, ca_bundle=None)
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map)
globalargs.resolve_verify_ssl(parsed_args, session)
# None, so that botocore can apply it's default logic.
self.assertIsNone(parsed_args.verify_ssl)
def test_os_environ_overrides_cert_bundle(self):
environ = {
'AWS_CA_BUNDLE': '/path/to/bundle.pem',
}
with mock.patch('os.environ', environ):
parsed_args = FakeParsedArgs(verify_ssl=True, ca_bundle=None)
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertEqual(parsed_args.verify_ssl, '/path/to/bundle.pem')
def test_config_overrides_cert_bundle(self):
environ = {}
with mock.patch('os.environ', environ):
parsed_args = FakeParsedArgs(verify_ssl=True, ca_bundle=None)
config_file_vars = {'ca_bundle': '/path/to/bundle.pem'}
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map,
config_file_vars=config_file_vars)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertEqual(parsed_args.verify_ssl, '/path/to/bundle.pem')
def test_cli_overrides_cert_bundle(self):
environ = {}
with mock.patch('os.environ', environ):
parsed_args = FakeParsedArgs(
verify_ssl=True,
ca_bundle='/path/to/cli_bundle.pem')
config_file_vars = {}
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(
session_vars=session_var_map,
config_file_vars=config_file_vars)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertEqual(parsed_args.verify_ssl, '/path/to/cli_bundle.pem')
def test_no_verify_ssl_overrides_cli_cert_bundle(self):
environ = {
'AWS_CA_BUNDLE': '/path/to/env_bundle.pem',
}
with mock.patch('os.environ', environ):
parsed_args = FakeParsedArgs(verify_ssl=False,
ca_bundle='/path/to/cli_bundle.pem')
config_file_vars = {}
session_var_map = {'ca_bundle': ('ca_bundle', 'AWS_CA_BUNDLE')}
session = FakeSession(session_vars=session_var_map,
config_file_vars=config_file_vars)
globalargs.resolve_verify_ssl(parsed_args, session)
self.assertFalse(parsed_args.verify_ssl)
