def test_present(self):
'''
Test to ensure the IAM role exists.
'''
name = 'myrole'
ret = {'name': name,
'result': False,
'changes': {},
'comment': ''}
mock = MagicMock(side_effect=[False, True, False, True, True,
False, True, True, True, True])
mock_bool = MagicMock(return_value=False)
mock_lst = MagicMock(return_value=[])
with patch.dict(boto_iam_role.__salt__,
{'boto_iam.role_exists': mock,
'boto_iam.create_role': mock_bool,
'boto_iam.instance_profile_exists': mock,
'boto_iam.create_instance_profile': mock_bool,
'boto_iam.profile_associated': mock,
'boto_iam.associate_profile_to_role': mock_bool,
'boto_iam.list_role_policies': mock_lst}):
with patch.dict(boto_iam_role.__opts__, {'test': False}):
comt = (' Failed to create {0} IAM role.'.format(name))
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. '
'Failed to create myrole instance profile.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. Failed to associate myrole'
' instance profile with myrole role.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. ')
ret.update({'comment': comt, 'result': True})
self.assertDictEqual(boto_iam_role.present(name), ret)
def test_present():
"""
Test to ensure the IAM role exists.
"""
name = "myrole"
ret = {"name": name, "result": False, "changes": {}, "comment": ""}
_desc_role = {
"create_date": "2015-02-11T19:47:14Z",
"role_id": "HIUHBIUBIBNKJNBKJ",
"assume_role_policy_document": {
"Version":
"2008-10-17",
"Statement": [{
"Action": "sts:AssumeRole",
"Principal": {
"Service": "ec2.amazonaws.com"
},
"Effect": "Allow",
}],
},
"role_name": "myfakerole",
"path": "/",
"arn": "arn:aws:iam::12345:role/myfakerole",
}
_desc_role2 = {
"create_date": "2015-02-11T19:47:14Z",
"role_id": "HIUHBIUBIBNKJNBKJ",
"assume_role_policy_document": {
"Version":
"2008-10-17",
"Statement": [{
"Action": "sts:AssumeRole",
"Principal": {
"Service":
["ec2.amazonaws.com", "datapipeline.amazonaws.com"]
},
"Effect": "Allow",
}],
},
"role_name": "myfakerole",
"path": "/",
"arn": "arn:aws:iam::12345:role/myfakerole",
}
mock_desc = MagicMock(
side_effect=[False, _desc_role, _desc_role, _desc_role2, _desc_role])
_build_policy = {
"Version":
"2008-10-17",
"Statement": [{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "ec2.amazonaws.com"
},
}],
}
mock_policy = MagicMock(return_value=_build_policy)
mock_ipe = MagicMock(side_effect=[False, True, True, True])
mock_pa = MagicMock(side_effect=[False, True, True, True])
mock_bool = MagicMock(return_value=False)
mock_lst = MagicMock(return_value=[])
with patch.dict(
boto_iam_role.__salt__,
{
"boto_iam.describe_role": mock_desc,
"boto_iam.create_role": mock_bool,
"boto_iam.build_policy": mock_policy,
"boto_iam.update_assume_role_policy": mock_bool,
"boto_iam.instance_profile_exists": mock_ipe,
"boto_iam.list_attached_role_policies": mock_lst,
"boto_iam.create_instance_profile": mock_bool,
"boto_iam.profile_associated": mock_pa,
"boto_iam.associate_profile_to_role": mock_bool,
"boto_iam.list_role_policies": mock_lst,
},
):
with patch.dict(boto_iam_role.__opts__, {"test": False}):
comt = " Failed to create {} IAM role.".format(name)
ret.update({"comment": comt})
assert boto_iam_role.present(name) == ret
comt = " myrole role present. Failed to create myrole instance profile."
ret.update({"comment": comt})
assert boto_iam_role.present(name) == ret
comt = (" myrole role present. Failed to associate myrole"
" instance profile with myrole role.")
ret.update({"comment": comt})
assert boto_iam_role.present(name) == ret
comt = " myrole role present. Failed to update assume role policy."
ret.update({"comment": comt})
assert boto_iam_role.present(name) == ret
comt = " myrole role present. "
ret.update({"comment": comt, "result": True})
assert boto_iam_role.present(name) == ret
def test_present(self):
'''
Test to ensure the IAM role exists.
'''
name = 'myrole'
ret = {'name': name,
'result': False,
'changes': {},
'comment': ''}
_desc_role = {
'create_date': '2015-02-11T19:47:14Z',
'role_id': 'HIUHBIUBIBNKJNBKJ',
'assume_role_policy_document': {
'Version': '2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Principal': {'Service': 'ec2.amazonaws.com'},
'Effect': 'Allow'
}]},
'role_name': 'myfakerole',
'path': '/',
'arn': 'arn:aws:iam::12345:role/myfakerole'
}
_desc_role2 = {
'create_date': '2015-02-11T19:47:14Z',
'role_id': 'HIUHBIUBIBNKJNBKJ',
'assume_role_policy_document': {
'Version': '2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Principal': {
'Service': [
'ec2.amazonaws.com',
'datapipeline.amazonaws.com'
]
},
'Effect': 'Allow'
}]},
'role_name': 'myfakerole',
'path': '/',
'arn': 'arn:aws:iam::12345:role/myfakerole'
}
mock_desc = MagicMock(side_effect=[
False, _desc_role, _desc_role, _desc_role2, _desc_role
])
_build_policy = {
'Version': '2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Effect': 'Allow',
'Principal': {'Service': 'ec2.amazonaws.com'}
}]
}
mock_policy = MagicMock(return_value=_build_policy)
mock_ipe = MagicMock(side_effect=[False, True, True, True])
mock_pa = MagicMock(side_effect=[False, True, True, True])
mock_bool = MagicMock(return_value=False)
mock_lst = MagicMock(return_value=[])
with patch.dict(boto_iam_role.__salt__,
{'boto_iam.describe_role': mock_desc,
'boto_iam.create_role': mock_bool,
'boto_iam.build_policy': mock_policy,
'boto_iam.update_assume_role_policy': mock_bool,
'boto_iam.instance_profile_exists': mock_ipe,
'boto_iam.list_attached_role_policies': mock_lst,
'boto_iam.create_instance_profile': mock_bool,
'boto_iam.profile_associated': mock_pa,
'boto_iam.associate_profile_to_role': mock_bool,
'boto_iam.list_role_policies': mock_lst}):
with patch.dict(boto_iam_role.__opts__, {'test': False}):
comt = (' Failed to create {0} IAM role.'.format(name))
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. '
'Failed to create myrole instance profile.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. Failed to associate myrole'
' instance profile with myrole role.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. Failed to update assume role'
' policy.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. ')
ret.update({'comment': comt, 'result': True})
self.assertDictEqual(boto_iam_role.present(name), ret)
def test_present(self):
'''
Test to ensure the IAM role exists.
'''
name = 'myrole'
ret = {'name': name, 'result': False, 'changes': {}, 'comment': ''}
_desc_role = {
'create_date': '2015-02-11T19:47:14Z',
'role_id': 'HIUHBIUBIBNKJNBKJ',
'assume_role_policy_document': {
'Version':
'2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Principal': {
'Service': 'ec2.amazonaws.com'
},
'Effect': 'Allow'
}]
},
'role_name': 'myfakerole',
'path': '/',
'arn': 'arn:aws:iam::12345:role/myfakerole'
}
_desc_role2 = {
'create_date': '2015-02-11T19:47:14Z',
'role_id': 'HIUHBIUBIBNKJNBKJ',
'assume_role_policy_document': {
'Version':
'2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Principal': {
'Service':
['ec2.amazonaws.com', 'datapipeline.amazonaws.com']
},
'Effect': 'Allow'
}]
},
'role_name': 'myfakerole',
'path': '/',
'arn': 'arn:aws:iam::12345:role/myfakerole'
}
mock_desc = MagicMock(side_effect=[
False, _desc_role, _desc_role, _desc_role2, _desc_role
])
_build_policy = {
'Version':
'2008-10-17',
'Statement': [{
'Action': 'sts:AssumeRole',
'Effect': 'Allow',
'Principal': {
'Service': 'ec2.amazonaws.com'
}
}]
}
mock_policy = MagicMock(return_value=_build_policy)
mock_ipe = MagicMock(side_effect=[False, True, True, True])
mock_pa = MagicMock(side_effect=[False, True, True, True])
mock_bool = MagicMock(return_value=False)
mock_lst = MagicMock(return_value=[])
with patch.dict(
boto_iam_role.__salt__, {
'boto_iam.describe_role': mock_desc,
'boto_iam.create_role': mock_bool,
'boto_iam.build_policy': mock_policy,
'boto_iam.update_assume_role_policy': mock_bool,
'boto_iam.instance_profile_exists': mock_ipe,
'boto_iam.create_instance_profile': mock_bool,
'boto_iam.profile_associated': mock_pa,
'boto_iam.associate_profile_to_role': mock_bool,
'boto_iam.list_role_policies': mock_lst
}):
with patch.dict(boto_iam_role.__opts__, {'test': False}):
comt = (' Failed to create {0} IAM role.'.format(name))
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. '
'Failed to create myrole instance profile.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. Failed to associate myrole'
' instance profile with myrole role.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. Failed to update assume role'
' policy.')
ret.update({'comment': comt})
self.assertDictEqual(boto_iam_role.present(name), ret)
comt = (' myrole role present. ')
ret.update({'comment': comt, 'result': True})
self.assertDictEqual(boto_iam_role.present(name), ret)
