pspmigrator/migrator_test.go

package pspmigrator

import (
	"testing"

	v1 "k8s.io/api/core/v1"
	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
)

func TestSuggestBaseline(t *testing.T) {

	pod := &v1.Pod{
		TypeMeta: metav1.TypeMeta{
			Kind:       "Pod",
			APIVersion: "v1",
		},
		ObjectMeta: metav1.ObjectMeta{
			Name: "test-pod",
		},
		Spec: v1.PodSpec{
			Containers: []v1.Container{
				{
					Name:  "nginx",
					Image: "nginx",
				},
			},
		},
	}

	level, err := SuggestedPodSecurityStandard(pod)
	if err != nil {
		t.Error(err.Error())
	}
	if level != "baseline" {
		t.Errorf("Expected baseline, but got %v\n", level)
	}

}

func newTrue() *bool {
	b := true
	return &b
}

func TestSuggestPrivileged(t *testing.T) {
	pod := &v1.Pod{
		TypeMeta: metav1.TypeMeta{
			Kind:       "Pod",
			APIVersion: "v1",
		},
		ObjectMeta: metav1.ObjectMeta{
			Name: "test-pod",
		},
		Spec: v1.PodSpec{
			Containers: []v1.Container{
				{
					Name:            "nginx",
					Image:           "nginx",
					SecurityContext: &v1.SecurityContext{Privileged: newTrue()},
				},
			},
		},
	}

	level, err := SuggestedPodSecurityStandard(pod)
	if err != nil {
		t.Error(err.Error())
	}
	if level != "privileged" {
		t.Errorf("Expected privileged, but got %v\n", level)
	}
}
Move files from samos123/pspmigrator into here 2022-06-24 17:13:51 +00:00			`package pspmigrator`

			`import (`
			`"testing"`

			`v1 "k8s.io/api/core/v1"`
			`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
			`)`

			`func TestSuggestBaseline(t *testing.T) {`

			`pod := &v1.Pod{`
			`TypeMeta: metav1.TypeMeta{`
			`Kind: "Pod",`
			`APIVersion: "v1",`
			`},`
			`ObjectMeta: metav1.ObjectMeta{`
			`Name: "test-pod",`
			`},`
			`Spec: v1.PodSpec{`
			`Containers: []v1.Container{`
			`{`
			`Name: "nginx",`
			`Image: "nginx",`
			`},`
			`},`
			`},`
			`}`

			`level, err := SuggestedPodSecurityStandard(pod)`
			`if err != nil {`
			`t.Error(err.Error())`
			`}`
			`if level != "baseline" {`
			`t.Errorf("Expected baseline, but got %v\n", level)`
			`}`

			`}`

			`func newTrue() *bool {`
			`b := true`
			`return &b`
			`}`

			`func TestSuggestPrivileged(t *testing.T) {`
			`pod := &v1.Pod{`
			`TypeMeta: metav1.TypeMeta{`
			`Kind: "Pod",`
			`APIVersion: "v1",`
			`},`
			`ObjectMeta: metav1.ObjectMeta{`
			`Name: "test-pod",`
			`},`
			`Spec: v1.PodSpec{`
			`Containers: []v1.Container{`
			`{`
			`Name: "nginx",`
			`Image: "nginx",`
			`SecurityContext: &v1.SecurityContext{Privileged: newTrue()},`
			`},`
			`},`
			`},`
			`}`

			`level, err := SuggestedPodSecurityStandard(pod)`
			`if err != nil {`
			`t.Error(err.Error())`
			`}`
			`if level != "privileged" {`
			`t.Errorf("Expected privileged, but got %v\n", level)`
			`}`
			`}`