/spec/classes/snat4_spec.rb - Diff - puppet nftables - Koumbit's Redmine

Révision 01d8a819

ID	01d8a819a56fcaf14e4b7b73774a6ed4dc30635a
Parent	705bb26f
Enfant	9d7d63a6

Ajouté par tr il y a plus de 4 ans

Styling to make tests green

           context 'with snat4' do
             let(:pre_condition) do
               """
+              '
               nftables::rules::snat4{
                 'static':
                   order => '60',
                   snat  => '198.51.100.1',
                   oif   => 'eth0';
                 '1_1':
                   order => '61',
                   saddr => '192.0.2.2',
                   snat  => '198.51.100.3',
                   oif   => 'eth0';
                 '1_1_smtp':
                   saddr => '192.0.2.2',
                   snat  => '198.51.100.2',
                   dport => '25';
                 '1_1_wireguard':
                   saddr => '192.0.2.2',
                   snat  => '198.51.100.2',
                   proto => 'udp',
                   dport => '51820';
                 \'static\':
                   order => \'60\',
                   snat  => \'198.51.100.1\',
                   oif   => \'eth0\';
                 \'1_1\':
                   order => \'61\',
                   saddr => \'192.0.2.2\',
                   snat  => \'198.51.100.3\',
                   oif   => \'eth0\';
                 \'1_1_smtp\':
                   saddr => \'192.0.2.2\',
                   snat  => \'198.51.100.2\',
                   dport => \'25\';
                 \'1_1_wireguard\':
                   saddr => \'192.0.2.2\',
                   snat  => \'198.51.100.2\',
                   proto => \'udp\',
                   dport => \'51820\';
+              }
               """
+              '
             end
             it { is_expected.to compile }
             it { is_expected.to contain_concat('nftables-ip-nat-chain-POSTROUTING').with(
               :path           => '/etc/nftables/puppet/ip-nat-chain-POSTROUTING.nft',
               :owner          => 'root',
               :group          => 'root',
               :mode           => '0640',
               :ensure_newline => true,
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-header').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^chain POSTROUTING {$/,
               :order   => '00',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-type').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  type nat hook postrouting priority 100$/,
               :order   => '01',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-policy').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  policy accept$/,
               :order   => '02',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-static').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  oifname eth0 snat 198\.51\.100\.1$/,
               :order   => '60',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  oifname eth0 ip saddr 192\.0\.2\.2 snat 198\.51\.100\.3$/,
               :order   => '61',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1_smtp').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  ip saddr 192\.0\.2\.2 tcp dport 25 snat 198\.51\.100\.2$/,
               :order   => '70',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1_wireguard').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^  ip saddr 192\.0\.2\.2 udp dport 51820 snat 198\.51\.100\.2$/,
               :order   => '70',
             )}
             it { is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-footer').with(
               :target  => 'nftables-ip-nat-chain-POSTROUTING',
               :content => /^}$/,
               :order   => '99',
             )}
             it {
               is_expected.to contain_concat('nftables-ip-nat-chain-POSTROUTING').with(
                 path:           '/etc/nftables/puppet/ip-nat-chain-POSTROUTING.nft',
                 owner:          'root',
                 group:          'root',
                 mode:           '0640',
                 ensure_newline: true,
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-header').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^chain POSTROUTING \{$},
                 order:   '00',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-type').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  type nat hook postrouting priority 100$},
                 order:   '01',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-policy').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  policy accept$},
                 order:   '02',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-static').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  oifname eth0 snat 198\.51\.100\.1$},
                 order:   '60',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  oifname eth0 ip saddr 192\.0\.2\.2 snat 198\.51\.100\.3$},
                 order:   '61',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1_smtp').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  ip saddr 192\.0\.2\.2 tcp dport 25 snat 198\.51\.100\.2$},
                 order:   '70',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-rule-1_1_wireguard').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^  ip saddr 192\.0\.2\.2 udp dport 51820 snat 198\.51\.100\.2$},
                 order:   '70',
+              )
+            }
             it {
               is_expected.to contain_concat__fragment('nftables-ip-nat-chain-POSTROUTING-footer').with(
                 target:  'nftables-ip-nat-chain-POSTROUTING',
                 content: %r{^\}$},
                 order:   '99',
+              )
+            }
           end
         end
       end

Formats disponibles : Unified diff

Projet

Général

Profil

puppet nftables

Révision 01d8a819