def test_check_identity_rule_not_found_true(self):
policy_backend.reset()
value = policy.check((("identity", "i_dont_exist"), ),
request=self.request)
# this should succeed because the default check for
# identity is admin_required
self.assertTrue(value)
def test_compound_check_true(self):
policy_backend.reset()
value = policy.check((
("identity", "admin_required"),
("identity", "identity:default"),
),
request=self.request)
self.assertTrue(value)
def test_scope_not_found(self):
policy_backend.reset()
value = policy.check((("dummy", "default"), ), request=self.request)
self.assertTrue(value)
def test_check_nova_context_is_admin_false(self):
policy_backend.reset()
value = policy.check((("compute", "context_is_admin"), ),
request=self.request)
self.assertFalse(value)
def test_check_admin_required_false(self):
policy_backend.reset()
value = policy.check((("identity", "admin_required"), ),
request=self.request)
self.assertFalse(value)
def test_policy_reset(self):
policy_backend._get_enforcer()
self.assertEqual(2, len(policy_backend._ENFORCER))
policy_backend.reset()
self.assertIsNone(policy_backend._ENFORCER)
def test_policy_file_load(self):
policy_backend.reset()
enforcer = policy_backend._get_enforcer()
self.assertEqual(2, len(enforcer))
self.assertTrue('identity' in enforcer)
self.assertTrue('compute' in enforcer)
