UNPKG

mecano

Version:

Common functions for system deployment.

www.adaltas.com/projects/node-mecano/

wdavidw/node-mecano

97 lines (90 loc) 3.21 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
should = require 'should' mecano = if process.env.MECANO_COV then require '../lib-cov/mecano' else require '../lib/mecano' test = require './test' ldap = require 'ldapjs' describe 'ldap_acl', -> scratch = test.scratch @ config = test.config() return unless config.ldap client = olcAccess = null beforeEach (next) -> client = ldap.createClient url: config.ldap.url client.bind config.ldap.binddn, config.ldap.passwd, (err) -> return next err if err client.search 'olcDatabase={2}bdb,cn=config', scope: 'base' attributes:['olcAccess'] , (err, search) -> search.on 'searchEntry', (entry) -> olcAccess = entry.object.olcAccess search.on 'end', -> next() afterEach (next) -> change = new ldap.Change operation: 'replace' modification: olcAccess: olcAccess client.modify 'olcDatabase={2}bdb,cn=config', change, (err) -> client.unbind (err) -> next err it 'create a new permission', (next) -> mecano.ldap_acl ldap: client name: 'olcDatabase={2}bdb,cn=config' to: 'dn.base="dc=test,dc=com"' by: [ 'dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" manage' ] , (err, modified) -> return next err if err modified.should.eql 1 mecano.ldap_acl ldap: client name: 'olcDatabase={2}bdb,cn=config' to: 'dn.base="dc=test,dc=com"' by: [ 'dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" manage' ] , (err, modified) -> return next err if err modified.should.eql 0 next() it 'respect order in creation', (next) -> mecano.ldap_acl [ ldap: client name: 'olcDatabase={2}bdb,cn=config' to: 'dn.base="ou=test1,dc=test,dc=com"' by: [ 'dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" read' ] , ldap: client name: 'olcDatabase={2}bdb,cn=config' to: 'dn.base="ou=test2,dc=test,dc=com"' by: [ 'dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" read' ] ], (err, modified) -> return next err if err mecano.ldap_acl ldap: client name: 'olcDatabase={2}bdb,cn=config' to: 'dn.base="ou=INSERTED,dc=test,dc=com"' before: 'dn.base="ou=test2,dc=test,dc=com"' by: [ 'dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" read' ] , (err, modified) -> return next err if err client.search 'olcDatabase={2}bdb,cn=config', scope: 'base' attributes:['olcAccess'] , (err, search) -> search.on 'searchEntry', (entry) -> accesses = entry.object.olcAccess for access, i in accesses if /\{\d+\}(.*?) by/.exec(access)[1] is 'to dn.base="ou=test1,dc=test,dc=com"' /\{\d+\}(.*?) by/.exec(accesses[i+1])[1].should.eql 'to dn.base="ou=INSERTED,dc=test,dc=com"' /\{\d+\}(.*?) by/.exec(accesses[i+2])[1].should.eql 'to dn.base="ou=test2,dc=test,dc=com"' break search.on 'end', -> next()