Add role support to user type and an implemention

modify user type:
    add ensure = role logic
    add roles property
    add manages_solaris_rbac feature
    refactored 'list' property to reuse logic for groups in roles

1 files changed, 131 insertions, 0 deletions

diff --git a/spec/unit/provider/user/user_role_add.rb b/spec/unit/provider/user/user_role_add.rb
new file mode 100644
index 000000000..87ad92049
--- /dev/null
+++ b/spec/unit/provider/user/user_role_add.rb
@@ -0,0 +1,131 @@
+#!/usr/bin/env ruby
+
+require File.dirname(__FILE__) + '/../../../spec_helper'
+
+provider_class = Puppet::Type.type(:user).provider(:user_role_add)
+
+describe provider_class do
+    before do
+        @resource = stub("resource", :name => "myuser", :managehome? => nil)
+        @resource.stubs(:should).returns "fakeval"
+        @resource.stubs(:[]).returns "fakeval"
+        @resource.stubs(:allowdupe?).returns false
+        @provider = provider_class.new(@resource)
+    end
+
+    describe "when calling command" do
+        before do
+            klass = stub("provider")
+            klass.stubs(:command).with(:foo).returns("userfoo")
+            klass.stubs(:command).with(:role_foo).returns("rolefoo")
+            @provider.stubs(:class).returns(klass)
+        end
+
+        it "should use the command if not a role and ensure!=role" do
+            @provider.stubs(:is_role?).returns(false)
+            @provider.stubs(:exists?).returns(false)
+            @resource.stubs(:[]).with(:ensure).returns(:present)
+            @provider.command(:foo).should == "userfoo"
+        end
+
+        it "should use the role command when a role" do
+            @provider.stubs(:is_role?).returns(true)
+            @provider.command(:foo).should == "rolefoo"
+        end
+
+        it "should use the role command when !exists and ensure=role" do
+            @provider.stubs(:is_role?).returns(false)
+            @provider.stubs(:exists?).returns(false)
+            @resource.stubs(:[]).with(:ensure).returns(:role)
+            @provider.command(:foo).should == "rolefoo"
+        end
+    end
+
+    describe "when calling transition" do
+        it "should return foomod setting the type to bar" do
+            @provider.expects(:command).with(:modify).returns("foomod")
+            @provider.transition("bar").should == ["foomod", "-K", "type=bar", "fakeval"]
+        end
+    end
+
+    describe "when calling create" do
+        it "should use the add command when the user doesn't exist" do
+            @provider.stubs(:exists?).returns(false)
+            @provider.expects(:addcmd).returns("useradd")
+            @provider.expects(:run)
+            @provider.create
+        end
+
+        it "should use transition(normal) when the user is a role" do
+            @provider.stubs(:exists?).returns(true)
+            @provider.stubs(:is_role?).returns(true)
+            @provider.expects(:transition).with("normal")
+            @provider.expects(:run)
+            @provider.create
+        end
+    end
+
+   describe "when calling destroy" do
+       it "should use the delete command if the user exists and is not a role" do
+            @provider.stubs(:exists?).returns(true)
+            @provider.stubs(:is_role?).returns(false)
+            @provider.expects(:deletecmd)
+            @provider.expects(:run)
+            @provider.destroy
+       end
+
+       it "should use the delete command if the user is a role" do
+            @provider.stubs(:exists?).returns(true)
+            @provider.stubs(:is_role?).returns(true)
+            @provider.expects(:deletecmd)
+            @provider.expects(:run)
+            @provider.destroy
+       end
+   end
+
+   describe "when calling create_role" do
+       it "should use the transition(role) if the user exists" do
+            @provider.stubs(:exists?).returns(true)
+            @provider.stubs(:is_role?).returns(false)
+            @provider.expects(:transition).with("role")
+            @provider.expects(:run)
+            @provider.create_role
+       end
+
+       it "should use the add command when role doesn't exists" do
+            @provider.stubs(:exists?).returns(false)
+            @provider.expects(:addcmd)
+            @provider.expects(:run)
+            @provider.create_role
+       end
+   end
+
+    describe "when allow duplicate is enabled" do
+        before do
+            @resource.expects(:allowdupe?).returns true
+            @provider.expects(:execute).with { |args| args.include?("-o") }
+        end
+
+        it "should add -o when the user is being created" do
+            @provider.create
+        end
+
+        it "should add -o when the uid is being modified" do
+            @provider.uid = 150
+        end
+    end
+
+    describe "when getting roles" do
+        it "should get the user_attributes" do
+            @provider.expects(:user_attributes)
+            @provider.roles
+        end
+
+        it "should get the :roles attribute" do
+            attributes = mock("attributes")
+            attributes.expects(:[]).with(:roles)
+            @provider.stubs(:user_attributes).returns(attributes)
+            @provider.roles
+        end
+    end
+end