Начало Каталог Помощ
Вход
github-mirrors
/
mirror-seaweedfs
2
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
ИН на ревизия: b64ada08bd
Клонове Маркери
mirror-seaweedf...
/
weed
/
s3api
/
s3_iam_role_selection_test.go

s3_iam_role_selection_test.go 1.9 KB
История Директен файл

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. package s3api
    2. 

  2. 

  3. import (
    4. 

  4. 	"testing"
    5. 

  5. 

  6. 	"github.com/seaweedfs/seaweedfs/weed/iam/providers"
    7. 

  7. 	"github.com/stretchr/testify/assert"
    8. 

  8. )
    9. 

  9. 

  10. func TestSelectPrimaryRole(t *testing.T) {
    11. 

  11. 	s3iam := &S3IAMIntegration{}
    12. 

  12. 

  13. 	t.Run("empty_roles_returns_empty", func(t *testing.T) {
    14. 

  14. 		identity := &providers.ExternalIdentity{Attributes: make(map[string]string)}
    15. 

  15. 		result := s3iam.selectPrimaryRole([]string{}, identity)
    16. 

  16. 		assert.Equal(t, "", result)
    17. 

  17. 	})
    18. 

  18. 

  19. 	t.Run("single_role_returns_that_role", func(t *testing.T) {
    20. 

  20. 		identity := &providers.ExternalIdentity{Attributes: make(map[string]string)}
    21. 

  21. 		result := s3iam.selectPrimaryRole([]string{"admin"}, identity)
    22. 

  22. 		assert.Equal(t, "admin", result)
    23. 

  23. 	})
    24. 

  24. 

  25. 	t.Run("multiple_roles_returns_first", func(t *testing.T) {
    26. 

  26. 		identity := &providers.ExternalIdentity{Attributes: make(map[string]string)}
    27. 

  27. 		roles := []string{"viewer", "manager", "admin"}
    28. 

  28. 		result := s3iam.selectPrimaryRole(roles, identity)
    29. 

  29. 		assert.Equal(t, "viewer", result, "Should return first role")
    30. 

  30. 	})
    31. 

  31. 

  32. 	t.Run("order_matters", func(t *testing.T) {
    33. 

  33. 		identity := &providers.ExternalIdentity{Attributes: make(map[string]string)}
    34. 

  34. 

  35. 		// Test different orderings
    36. 

  36. 		roles1 := []string{"admin", "viewer", "manager"}
    37. 

  37. 		result1 := s3iam.selectPrimaryRole(roles1, identity)
    38. 

  38. 		assert.Equal(t, "admin", result1)
    39. 

  39. 

  40. 		roles2 := []string{"viewer", "admin", "manager"}
    41. 

  41. 		result2 := s3iam.selectPrimaryRole(roles2, identity)
    42. 

  42. 		assert.Equal(t, "viewer", result2)
    43. 

  43. 

  44. 		roles3 := []string{"manager", "admin", "viewer"}
    45. 

  45. 		result3 := s3iam.selectPrimaryRole(roles3, identity)
    46. 

  46. 		assert.Equal(t, "manager", result3)
    47. 

  47. 	})
    48. 

  48. 

  49. 	t.Run("complex_enterprise_roles", func(t *testing.T) {
    50. 

  50. 		identity := &providers.ExternalIdentity{Attributes: make(map[string]string)}
    51. 

  51. 		roles := []string{
    52. 

  52. 			"finance-readonly",
    53. 

  53. 			"hr-manager",
    54. 

  54. 			"it-system-admin",
    55. 

  55. 			"guest-viewer",
    56. 

  56. 		}
    57. 

  57. 		result := s3iam.selectPrimaryRole(roles, identity)
    58. 

  58. 		// Should return the first role
    59. 

  59. 		assert.Equal(t, "finance-readonly", result, "Should return first role in list")
    60. 

  60. 	})
    61. 

  61. }
    62.