provider/aws: Add acceptance test for IAM Account Password Policy
This commit is contained in:
parent
1686a1023c
commit
5b4fccaa73
|
@ -0,0 +1,105 @@
|
|||
package aws
|
||||
|
||||
import (
|
||||
"fmt"
|
||||
"testing"
|
||||
|
||||
"github.com/aws/aws-sdk-go/aws/awserr"
|
||||
"github.com/aws/aws-sdk-go/service/iam"
|
||||
"github.com/hashicorp/terraform/helper/resource"
|
||||
"github.com/hashicorp/terraform/terraform"
|
||||
)
|
||||
|
||||
func TestAccAWSIAMAccountPasswordPolicy_basic(t *testing.T) {
|
||||
var policy iam.GetAccountPasswordPolicyOutput
|
||||
|
||||
resource.Test(t, resource.TestCase{
|
||||
PreCheck: func() { testAccPreCheck(t) },
|
||||
Providers: testAccProviders,
|
||||
CheckDestroy: testAccCheckAWSIAMAccountPasswordPolicyDestroy,
|
||||
Steps: []resource.TestStep{
|
||||
resource.TestStep{
|
||||
Config: testAccAWSIAMAccountPasswordPolicy,
|
||||
Check: resource.ComposeTestCheckFunc(
|
||||
testAccCheckAWSIAMAccountPasswordPolicyExists("aws_iam_account_password_policy.default", &policy),
|
||||
resource.TestCheckResourceAttr("aws_iam_account_password_policy.default", "minimum_password_length", "8"),
|
||||
),
|
||||
},
|
||||
resource.TestStep{
|
||||
Config: testAccAWSIAMAccountPasswordPolicy_modified,
|
||||
Check: resource.ComposeTestCheckFunc(
|
||||
testAccCheckAWSIAMAccountPasswordPolicyExists("aws_iam_account_password_policy.default", &policy),
|
||||
resource.TestCheckResourceAttr("aws_iam_account_password_policy.default", "minimum_password_length", "7"),
|
||||
),
|
||||
},
|
||||
},
|
||||
})
|
||||
}
|
||||
|
||||
func testAccCheckAWSIAMAccountPasswordPolicyDestroy(s *terraform.State) error {
|
||||
iamconn := testAccProvider.Meta().(*AWSClient).iamconn
|
||||
|
||||
for _, rs := range s.RootModule().Resources {
|
||||
if rs.Type != "aws_iam_account_password_policy" {
|
||||
continue
|
||||
}
|
||||
|
||||
// Try to get policy
|
||||
_, err := iamconn.GetAccountPasswordPolicy(&iam.GetAccountPasswordPolicyInput{})
|
||||
if err == nil {
|
||||
return fmt.Errorf("still exist.")
|
||||
}
|
||||
|
||||
// Verify the error is what we want
|
||||
awsErr, ok := err.(awserr.Error)
|
||||
if !ok {
|
||||
return err
|
||||
}
|
||||
if awsErr.Code() != "NoSuchEntity" {
|
||||
return err
|
||||
}
|
||||
}
|
||||
|
||||
return nil
|
||||
}
|
||||
|
||||
func testAccCheckAWSIAMAccountPasswordPolicyExists(n string, res *iam.GetAccountPasswordPolicyOutput) resource.TestCheckFunc {
|
||||
return func(s *terraform.State) error {
|
||||
rs, ok := s.RootModule().Resources[n]
|
||||
if !ok {
|
||||
return fmt.Errorf("Not found: %s", n)
|
||||
}
|
||||
|
||||
if rs.Primary.ID == "" {
|
||||
return fmt.Errorf("No policy ID is set")
|
||||
}
|
||||
|
||||
iamconn := testAccProvider.Meta().(*AWSClient).iamconn
|
||||
|
||||
resp, err := iamconn.GetAccountPasswordPolicy(&iam.GetAccountPasswordPolicyInput{})
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
*res = *resp
|
||||
|
||||
return nil
|
||||
}
|
||||
}
|
||||
|
||||
const testAccAWSIAMAccountPasswordPolicy = `
|
||||
resource "aws_iam_account_password_policy" "default" {
|
||||
allow_users_to_change_password = true
|
||||
minimum_password_length = 8
|
||||
require_numbers = true
|
||||
}
|
||||
`
|
||||
const testAccAWSIAMAccountPasswordPolicy_modified = `
|
||||
resource "aws_iam_account_password_policy" "default" {
|
||||
allow_users_to_change_password = true
|
||||
minimum_password_length = 7
|
||||
require_numbers = false
|
||||
require_symbols = true
|
||||
require_uppercase_characters = true
|
||||
}
|
||||
`
|
Loading…
Reference in New Issue