def test_process_with_password_cmd(self, mock_google, mock_amazon,
mock_util):
mock_config = Mock()
mock_config.saml_cache = False
mock_config.username = "******"
mock_config.idp_id = "input2"
mock_config.sp_id = "input3"
mock_config.region = "region_input"
mock_config.password_cmd = "echo '123'"
mock_config.provider = "da_provider"
mock_config.role_arn = "da_role"
mock_config.ask_role = False
mock_amazon_client = Mock()
mock_amazon_client.roles = {'da_role': 'da_role'}
mock_amazon.Amazon = MagicMock(return_value=mock_amazon_client)
args = aws_google_auth.parse_args([])
# Method Under Test
aws_google_auth.process_auth(args, mock_config)
# Assert values collected
self.assertEqual(mock_config.password, "123")
def test_process_auth_standard(self, mock_google, mock_amazon, mock_util, mock_getpass):
mock_config = Mock()
mock_config.profile = False
mock_config.saml_cache = False
mock_config.keyring = False
mock_config.username = None
mock_config.idp_id = None
mock_config.sp_id = None
mock_config.return_value = None
mock_amazon_client = Mock()
mock_google_client = Mock()
mock_getpass.return_value = "pass"
mock_amazon_client.roles = {
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'
}
mock_util_obj = MagicMock()
mock_util_obj.pick_a_role = MagicMock(return_value=("da_role", "da_provider"))
mock_util_obj.get_input = MagicMock(side_effect=["input", "input2", "input3"])
mock_util.Util = mock_util_obj
mock_amazon_client.resolve_aws_aliases = MagicMock(return_value=[])
mock_amazon_client.print_export_line = Mock()
mock_amazon.Amazon = MagicMock(return_value=mock_amazon_client)
mock_google.Google = MagicMock(return_value=mock_google_client)
args = aws_google_auth.parse_args([])
# Method Under Test
aws_google_auth.process_auth(args, mock_config)
# Assert values collected
self.assertEqual(mock_config.username, "input")
self.assertEqual(mock_config.idp_id, "input2")
self.assertEqual(mock_config.sp_id, "input3")
self.assertEqual(mock_config.password, "pass")
self.assertEqual(mock_config.provider, "da_provider")
self.assertEqual(mock_config.role_arn, "da_role")
# Assert calls occur
self.assertEqual([call.Util.get_input('Google username: '******'Google IDP ID: '),
call.Util.get_input('Google SP ID: '),
call.Util.pick_a_role({'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'}, [])],
mock_util.mock_calls)
self.assertEqual([call()],
mock_amazon_client.print_export_line.mock_calls)
self.assertEqual([call('Google Password: '******'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'
})],
mock_amazon_client.resolve_aws_aliases.mock_calls)
self.assertEqual([call({'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'}, [])
], mock_util_obj.pick_a_role.mock_calls)
def test_process_auth_with_saml_cache(self, mock_google, mock_amazon, mock_util, mock_getpass):
mock_config = Mock()
mock_config.saml_cache = True
mock_config.username = None
mock_config.idp_id = None
mock_config.sp_id = None
mock_config.password = None
mock_config.return_value = None
mock_config.role_arn = 'arn:aws:iam::123456789012:role/admin'
mock_amazon_client = Mock()
mock_google_client = Mock()
mock_getpass.return_value = "pass"
mock_amazon_client.roles = {
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'
}
mock_util_obj = MagicMock()
mock_util_obj.pick_a_role = MagicMock(return_value=("da_role", "da_provider"))
mock_util_obj.get_input = MagicMock(side_effect=["input", "input2", "input3"])
mock_util.Util = mock_util_obj
mock_amazon_client.resolve_aws_aliases = MagicMock(return_value=[])
mock_amazon.Amazon = MagicMock(return_value=mock_amazon_client)
mock_google.Google = MagicMock(return_value=mock_google_client)
args = aws_google_auth.parse_args([])
# Method Under Test
aws_google_auth.process_auth(args, mock_config)
# Assert values collected
self.assertEqual(mock_config.username, None)
self.assertEqual(mock_config.idp_id, None)
self.assertEqual(mock_config.sp_id, None)
self.assertEqual(mock_config.password, None)
self.assertEqual(mock_config.provider, "da_provider")
self.assertEqual(mock_config.role_arn, "da_role")
# Assert calls occur
self.assertEqual([call.Util.pick_a_role({'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'}, [])],
mock_util.mock_calls)
# Cache means no password request
self.assertEqual([],
mock_getpass.mock_calls)
# Cache means no google calls
self.assertEqual([],
mock_google_client.mock_calls)
self.assertEqual([call.write(mock_amazon_client)],
mock_config.mock_calls)
self.assertEqual([call({'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'
})],
mock_amazon_client.resolve_aws_aliases.mock_calls)
self.assertEqual([call({'arn:aws:iam::123456789012:role/read-only': 'arn:aws:iam::123456789012:saml-provider/GoogleApps',
'arn:aws:iam::123456789012:role/admin': 'arn:aws:iam::123456789012:saml-provider/GoogleApps'}, [])
], mock_util_obj.pick_a_role.mock_calls)
