def runtests(self, testGroups):
self.assertTrue(is_request_allowed(self.username, testGroups, ADMIN_GROUPS))
request = create_request(self.username, testGroups)
response = json.loads(get_response(request, debug=False))
self.assertTrue(response['response']['allowed'])
def runtests(self, testGroups):
# for these tests, add the SRE group to every request
testGroups.append(self.sreGroup)
self.assertTrue(is_request_allowed(self.username, testGroups, ADMIN_GROUPS))
request = create_request(self.username, testGroups)
response = json.loads(get_response(request, debug=False))
self.assertTrue(response['response']['allowed'])
def test_handle_request_denied(self):
request = create_request("Groups", "someuser", "")
response = json.loads(get_response(request, debug=False))
self.assertFalse(response['response']['allowed'])
def test_handle_request_allowed_user(self):
request = create_request("Groups", "some-sre-user", ADMIN_GROUPS[0])
response = json.loads(get_response(request, debug=False))
self.assertTrue(response['response']['allowed'])
def test_handle_request_allowed_system(self):
request = create_request("Groups", "kube:admin", ADMIN_GROUPS[0])
response = json.loads(get_response(request, debug=False))
self.assertTrue(response['response']['allowed'])