Add tests for PVE realms

mrtwnklr · mrtwnklr · commit 9b163106f551 · 2023-03-09T00:06:51.000+01:00
diff --git a/tests/group_vars/all b/tests/group_vars/all
@@ -15,6 +15,35 @@ pve_ssl_certificate: "{{ lookup('file', ssl_host_cert_path) }}"
 pve_cluster_enabled: yes
 pve_datacenter_cfg:
   console: xtermjs
+pve_domains_cfg:
+  - name: pam
+    type: pam
+    attributes:
+      comment: Linux PAM standard authentication
+  - name: pve
+    type: pve
+    attributes:
+      comment: Proxmox VE authentication server
+  - name: ad
+    type: ad
+    attributes:
+      comment: Active Directory authentication
+      domain: yourdomain.com
+      server1: dc01.yourdomain.com
+      default: 1
+      secure: 1
+      server2: dc02.yourdomain.com
+  - name: ldap
+    type: ldap
+    attributes:
+      comment: LDAP authentication
+      base_dn: CN=Users,dc=yourdomain,dc=com
+      bind_dn: "uid=svc-reader,CN=Users,dc=yourdomain,dc=com"
+      bind_password: "my-password"
+      server1: ldap1.yourdomain.com
+      user_attr: uid
+      secure: 1
+      server2: ldap2.yourdomain.com
 pve_cluster_ha_groups:
   - name: proxmox_5_01
     comment: "Resources on proxmox-5-01"
diff --git a/tests/test.yml b/tests/test.yml
@@ -16,6 +16,34 @@
       vars:
         query: "([?type=='cluster'].quorate)[0]"
 
+    - name: Query PVE realms
+      shell: "pvesh get /access/domains --output=json"
+      register: _pve_realms
+      changed_when: False
+
+    - name: Construct realm list
+      set_fact:
+        realm_list: "{{ realm_list | default([]) }} + [ '{{ item.type }}' ]"
+      with_items: "{{ pve_domains_cfg }}"
+
+    - name: Check that PVE realms exist
+      assert:
+        that: "realm_list is subset(_pve_realms.stdout | from_json | json_query(query))"
+      vars:
+        query: "[*].type"
+      run_once: True
+
+    - name: Check PVE realms configuration
+      assert:
+        that:
+          - item.type == realm.type
+          - item.name == realm.realm
+          - item.attributes.comment == realm.comment
+      vars:
+        realm: '{{ _pve_realms.stdout | from_json
+                   | json_query("[?realm==''" + item.name + "'']") | first }}'
+      with_items: "{{ pve_domains_cfg }}"
+
     - name: Query PVE groups
       shell: "pvesh get /access/groups --output=json"
       register: _pve_groups
