From b532e092dc2fdcbf4d30430e5deb3fbc68c9d8fc Mon Sep 17 00:00:00 2001 From: Daniel Nephin Date: Fri, 30 Oct 2020 14:07:32 -0400 Subject: [PATCH] structs: add a namespace test for CheckServiceNode.CanRead --- agent/rpc/subscribe/subscribe_test.go | 6 ++---- agent/structs/structs.go | 1 - agent/structs/structs_test.go | 2 +- 3 files changed, 3 insertions(+), 6 deletions(-) diff --git a/agent/rpc/subscribe/subscribe_test.go b/agent/rpc/subscribe/subscribe_test.go index 2f22846716..41f335d4a7 100644 --- a/agent/rpc/subscribe/subscribe_test.go +++ b/agent/rpc/subscribe/subscribe_test.go @@ -604,10 +604,8 @@ node "node1" { policy = "write" } ` - authorizer, err := acl.NewAuthorizerFromRules( - "1", 0, rules, acl.SyntaxCurrent, - &acl.Config{WildcardName: structs.WildcardSpecifier}, - nil) + cfg := &acl.Config{WildcardName: structs.WildcardSpecifier} + authorizer, err := acl.NewAuthorizerFromRules("1", 0, rules, acl.SyntaxCurrent, cfg, nil) require.NoError(t, err) authorizer = acl.NewChainedAuthorizer([]acl.Authorizer{authorizer, acl.DenyAll()}) require.Equal(t, acl.Deny, authorizer.NodeRead("denied", nil)) diff --git a/agent/structs/structs.go b/agent/structs/structs.go index 0a8d4faee5..5e0956a062 100644 --- a/agent/structs/structs.go +++ b/agent/structs/structs.go @@ -1626,7 +1626,6 @@ func (csn *CheckServiceNode) CanRead(authz acl.Authorizer) acl.EnforcementDecisi return acl.Deny } - // TODO(streaming): add enterprise test that uses namespaces authzContext := new(acl.AuthorizerContext) csn.Service.EnterpriseMeta.FillAuthzContext(authzContext) diff --git a/agent/structs/structs_test.go b/agent/structs/structs_test.go index 0b4e9c497e..d6d85aee29 100644 --- a/agent/structs/structs_test.go +++ b/agent/structs/structs_test.go @@ -1290,7 +1290,7 @@ func TestCheckServiceNodes_Filter(t *testing.T) { } } -func TestCheckServiceNodes_CanRead(t *testing.T) { +func TestCheckServiceNode_CanRead(t *testing.T) { type testCase struct { name string csn CheckServiceNode