tests/test_user.py

"""
Test wrappers in tljw.user module
"""
from tljh import user
import os
import os.path
import stat
import uuid
import pwd
import grp
import pytest


def test_ensure_user():
    """
    Test user creation & removal
    """
    # Use a prefix to make sure we never start with a number
    username = "u" + str(uuid.uuid4())[:8]
    # Validate that no user exists
    with pytest.raises(KeyError):
        pwd.getpwnam(username)

    try:
        # Create user!
        user.ensure_user(username)
        # This raises exception if user doesn't exist
        entry = pwd.getpwnam(username)
        # Home directory must also exist
        home_dir = entry.pw_dir
        assert os.path.exists(home_dir)
        # Ensure not word readable/writable especially in teaching context
        homedir_stats = os.stat(home_dir).st_mode
        assert not (
            homedir_stats & stat.S_IROTH
        ), "Everyone should not be able to read users home directory"
        assert not (
            homedir_stats & stat.S_IWOTH
        ), "Everyone should not be able to write users home directory"
        assert not (
            homedir_stats & stat.S_IXOTH
        ), "Everyone should not be able to list what is in users home directory"

        # Run ensure_user again, should be a noop
        user.ensure_user(username)
        # User still exists, after our second ensure_user call
        pwd.getpwnam(username)
    finally:
        # We clean up and remove user!
        user.remove_user(username)
        with pytest.raises(KeyError):
            pwd.getpwnam(username)


def test_ensure_group():
    """
    Test group creation & removal
    """
    # Use a prefix to make sure we never start with a number
    groupname = "g" + str(uuid.uuid4())[:8]

    # Validate that no group exists
    with pytest.raises(KeyError):
        grp.getgrnam(groupname)

    try:
        # Create group
        user.ensure_group(groupname)
        # This raises if group doesn't exist
        grp.getgrnam(groupname)

        # Do it again, this should be a noop
        user.ensure_group(groupname)
        grp.getgrnam(groupname)
    finally:
        # Remove the group
        user.remove_group(groupname)
        with pytest.raises(KeyError):
            grp.getgrnam(groupname)


def test_group_membership():
    """
    Test group memberships can be added / removed
    """
    username = "u" + str(uuid.uuid4())[:8]
    groupname = "g" + str(uuid.uuid4())[:8]

    # Validate that no group exists
    with pytest.raises(KeyError):
        grp.getgrnam(groupname)
    with pytest.raises(KeyError):
        pwd.getpwnam(username)

    try:
        user.ensure_group(groupname)
        user.ensure_user(username)

        user.ensure_user_group(username, groupname)

        assert username in grp.getgrnam(groupname).gr_mem

        # Do it again, this should be a noop
        user.ensure_user_group(username, groupname)

        assert username in grp.getgrnam(groupname).gr_mem

        # Remove it
        user.remove_user_group(username, groupname)
        assert username not in grp.getgrnam(groupname).gr_mem

        # Do it again, this should be a noop
        user.remove_user_group(username, groupname)
        assert username not in grp.getgrnam(groupname).gr_mem
    finally:
        # Remove the group
        user.remove_user(username)
        user.remove_group(groupname)

        with pytest.raises(KeyError):
            grp.getgrnam(groupname)
        with pytest.raises(KeyError):
            pwd.getpwnam(username)
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00			`"""`
			`Test wrappers in tljw.user module`
			`"""`
			`from tljh import user`
			`import os`
add test 2018-08-31 18:04:06 -07:00			`import os.path`
			`import stat`
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00			`import uuid`
			`import pwd`
			`import grp`
			`import pytest`


			`def test_ensure_user():`
			`"""`
			`Test user creation & removal`
			`"""`
			`# Use a prefix to make sure we never start with a number`
pre-commit: run black with string normalization 2021-11-03 23:55:34 +01:00			`username = "u" + str(uuid.uuid4())[:8]`
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00			`# Validate that no user exists`
			`with pytest.raises(KeyError):`
			`pwd.getpwnam(username)`

			`try:`
			`# Create user!`
			`user.ensure_user(username)`
			`# This raises exception if user doesn't exist`
add test 2018-08-31 18:04:06 -07:00			`entry = pwd.getpwnam(username)`
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00			`# Home directory must also exist`
add test 2018-08-31 18:04:06 -07:00			`home_dir = entry.pw_dir`
			`assert os.path.exists(home_dir)`
			`# Ensure not word readable/writable especially in teaching context`
			`homedir_stats = os.stat(home_dir).st_mode`
pre-commit: run black without string normalization 2021-11-01 09:42:45 +01:00			`assert not (`
			`homedir_stats & stat.S_IROTH`
			`), "Everyone should not be able to read users home directory"`
			`assert not (`
			`homedir_stats & stat.S_IWOTH`
			`), "Everyone should not be able to write users home directory"`
			`assert not (`
			`homedir_stats & stat.S_IXOTH`
			`), "Everyone should not be able to list what is in users home directory"`
add test 2018-08-31 18:04:06 -07:00
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00			`# Run ensure_user again, should be a noop`
			`user.ensure_user(username)`
			`# User still exists, after our second ensure_user call`
			`pwd.getpwnam(username)`
			`finally:`
			`# We clean up and remove user!`
			`user.remove_user(username)`
			`with pytest.raises(KeyError):`
			`pwd.getpwnam(username)`


			`def test_ensure_group():`
			`"""`
			`Test group creation & removal`
			`"""`
			`# Use a prefix to make sure we never start with a number`
pre-commit: run black with string normalization 2021-11-03 23:55:34 +01:00			`groupname = "g" + str(uuid.uuid4())[:8]`
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00
			`# Validate that no group exists`
			`with pytest.raises(KeyError):`
			`grp.getgrnam(groupname)`

			`try:`
			`# Create group`
			`user.ensure_group(groupname)`
			`# This raises if group doesn't exist`
			`grp.getgrnam(groupname)`

			`# Do it again, this should be a noop`
			`user.ensure_group(groupname)`
			`grp.getgrnam(groupname)`
			`finally:`
			`# Remove the group`
			`user.remove_group(groupname)`
			`with pytest.raises(KeyError):`
			`grp.getgrnam(groupname)`


			`def test_group_membership():`
			`"""`
			`Test group memberships can be added / removed`
			`"""`
pre-commit: run black with string normalization 2021-11-03 23:55:34 +01:00			`username = "u" + str(uuid.uuid4())[:8]`
			`groupname = "g" + str(uuid.uuid4())[:8]`
Use classic unix users rather than systemd dynamic users Dynamic Users are neat and probably very useful for a tmpnb style situation. However, for regular use they have the following problems: 1. Can't set ProtectHome=no, so you can never apt install or similar from inside admin accounts. 2. Dynamic uid / gid makes it hard to write sudo rules. We want admin users to have sudo. 3. Persistent uids / gids are very useful for ad-hoc ACLs between users. gid sharing isn't the most flexible sharing mechanism, but it is well known & quite useful. 4. /etc/skel is pretty useful! 2018-06-26 23:30:06 -07:00
			`# Validate that no group exists`
			`with pytest.raises(KeyError):`
			`grp.getgrnam(groupname)`
			`with pytest.raises(KeyError):`
			`pwd.getpwnam(username)`

			`try:`
			`user.ensure_group(groupname)`
			`user.ensure_user(username)`

			`user.ensure_user_group(username, groupname)`

			`assert username in grp.getgrnam(groupname).gr_mem`

			`# Do it again, this should be a noop`
			`user.ensure_user_group(username, groupname)`

			`assert username in grp.getgrnam(groupname).gr_mem`

			`# Remove it`
			`user.remove_user_group(username, groupname)`
			`assert username not in grp.getgrnam(groupname).gr_mem`

			`# Do it again, this should be a noop`
			`user.remove_user_group(username, groupname)`
			`assert username not in grp.getgrnam(groupname).gr_mem`
			`finally:`
			`# Remove the group`
			`user.remove_user(username)`
			`user.remove_group(groupname)`

			`with pytest.raises(KeyError):`
			`grp.getgrnam(groupname)`
			`with pytest.raises(KeyError):`
			`pwd.getpwnam(username)`