santerikainulainen/ansible-role-elasticsearch
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #450 from Crazybus/tell_me_whats_wrong

Browse source 
Look at the results from the http request instead of checking the md5 hash
This commit is contained in:
DJ Gill 2018-05-17 07:54:03 -07:00 committed by GitHub
commit e7fa4f93ec
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 22 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

39
test/integration/helpers/serverspec/xpack_spec.rb
View file

@ -148,11 +148,6 @@ shared_examples 'xpack::init' do |vars|
end end
#Test native roles and users are loaded
describe command('curl -s localhost:9200/_xpack/security/user -u es_admin:changeMeAgain | md5sum | grep b6a1293c343e745a508c74778c9be8bb') do
its(:exit_status) { should eq 0 }
end
describe 'security roles' do describe 'security roles' do
it 'should list the security roles' do it 'should list the security roles' do
roles = curl_json('http://localhost:9200/_xpack/security/role', username='es_admin', password='changeMeAgain') roles = curl_json('http://localhost:9200/_xpack/security/role', username='es_admin', password='changeMeAgain')
@ -227,11 +222,30 @@ shared_examples 'xpack::init' do |vars|
end end
end end
describe command('curl -s localhost:9200/_xpack/security/user/kibana4_server -u elastic:elasticChanged | md5sum | grep f0548742161d9e50c7c7fbe2e061a1fa') do describe 'security users' do
its(:exit_status) { should eq 0 } result = curl_json('http://localhost:9200/_xpack/security/user', username='elastic', password='elasticChanged')
it 'should have the elastic user' do
expect(result['elastic']['username']).to eq('elastic')
expect(result['elastic']['roles']).to eq(['superuser'])
expect(result['elastic']['enabled']).to eq(true)
end
it 'should have the kibana user' do
expect(result['kibana']['username']).to eq('kibana')
expect(result['kibana']['roles']).to eq(['kibana_system'])
expect(result['kibana']['enabled']).to eq(true)
end
it 'should have the kibana_server user' do
expect(result['kibana4_server']['username']).to eq('kibana4_server')
expect(result['kibana4_server']['roles']).to eq(['kibana4_server'])
expect(result['kibana4_server']['enabled']).to eq(true)
end
it 'should have the logstash user' do
expect(result['logstash_system']['username']).to eq('logstash_system')
expect(result['logstash_system']['roles']).to eq(['logstash_system'])
expect(result['logstash_system']['enabled']).to eq(true)
end
end end
describe 'logstash_system access check' do describe 'logstash_system access check' do
it 'should be reported as version '+vars['es_version'] do it 'should be reported as version '+vars['es_version'] do
command = command('curl -s localhost:9200/ -u logstash_system:aNewLogstashPassword | grep number') command = command('curl -s localhost:9200/ -u logstash_system:aNewLogstashPassword | grep number')
@ -240,10 +254,6 @@ shared_examples 'xpack::init' do |vars|
end end
end end
describe command('curl -s localhost:9200/_xpack/security/user/logstash_system -u elastic:elasticChanged | md5sum | grep 98d361ddfa5156abd33542a493b4fd85') do
its(:exit_status) { should eq 0 }
end
if vars['es_major_version'] == '5.x' # kibana default password has been removed in 6.x if vars['es_major_version'] == '5.x' # kibana default password has been removed in 6.x
describe 'kibana access check' do describe 'kibana access check' do
it 'should be reported as version '+vars['es_version'] do it 'should be reported as version '+vars['es_version'] do
@ -252,10 +262,5 @@ shared_examples 'xpack::init' do |vars|
end end
end end
end end
describe command('curl -s localhost:9200/_xpack/security/user/kibana -u elastic:elasticChanged | md5sum | grep 34190c64eb3c7cfb002fa789df5fad20') do
its(:exit_status) { should eq 0 }
end
end end