Last active
May 2, 2019 18:41
-
-
Save joatmon08/4a5b264176a9b8dc79f103dc3eaa8d16 to your computer and use it in GitHub Desktop.
TDD-Infra-integration-bucket
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require './spec_helper' | |
| bucket_policy = JSON.parse(File.open("../../policies/bucket.json").read) | |
| describe s3_bucket(@bucket_name) do | |
| it { should exist } | |
| its(:acl_grants_count) { should eq 1 } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][0]['Sid'] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][0]['Action'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][0]['Resource'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][1]['Sid'] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][1]['Action'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][1]['Resource'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][2]['Sid'] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][2]['Action'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][2]['Resource'][0] } | |
| its('policy.policy.read') { should include bucket_policy['Statement'][2]['Resource'][1] } | |
| end |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require './spec_helper' | |
| bucket_write_user = "#{@bucket_name}WriteUser" | |
| bucket_write_user_policy = "#{@bucket_name}WriteUserPolicy" | |
| bucket_read_user = "#{@bucket_name}ReadUser" | |
| bucket_read_user_policy = "#{@bucket_name}ReadUserPolicy" | |
| bucket_admin_role = "#{@bucket_name}AdminRole" | |
| bucket_admin_role_policy = "#{@bucket_name}AdminRolePolicy" | |
| describe iam_user(bucket_write_user) do | |
| it { should exist } | |
| it { should have_inline_policy(bucket_write_user_policy) } | |
| end | |
| describe iam_user(bucket_read_user) do | |
| it { should exist } | |
| it { should have_inline_policy(bucket_read_user_policy) } | |
| end | |
| describe iam_role(bucket_admin_role) do | |
| it { should exist } | |
| it { should have_iam_policy(bucket_admin_role_policy) } | |
| end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment