Added more tests.
This commit is contained in:
acsbendi
parent
e133344846
commit
d2b0812edc
@ -127,6 +127,18 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Actions/Conditions must be prefaced by a vendor, e.g., iam, sdb, ec2, etc.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "",
|
||||
"Resource": "arn:aws:s3:::example_bucket"
|
||||
}
|
||||
},
|
||||
"error_message": 'Actions/Conditions must be prefaced by a vendor, e.g., iam, sdb, ec2, etc.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -151,6 +163,24 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Actions/Condition can contain only one colon.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement": [
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"Action": "s3s:ListBucket",
|
||||
"Resource": "arn:aws:s3:::example_bucket"
|
||||
},
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"Action": "s:3s:ListBucket",
|
||||
"Resource": "arn:aws:s3:::example_bucket"
|
||||
}
|
||||
]
|
||||
},
|
||||
"error_message": 'Actions/Condition can contain only one colon.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -162,6 +192,18 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Resource invalid resource must be in ARN format or "*".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"Action": "s:3:ListBucket",
|
||||
"Resource": "sdfsadf"
|
||||
}
|
||||
},
|
||||
"error_message": 'Resource sdfsadf must be in ARN format or "*".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -184,6 +226,42 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Resource must be in ARN format or "*".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3s:ListBucket",
|
||||
"Resource": "a:bsdfdsafsad"
|
||||
}
|
||||
},
|
||||
"error_message": 'Partition "bsdfdsafsad" is not valid for resource "arn:bsdfdsafsad:*:*:*:*".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3s:ListBucket",
|
||||
"Resource": "a:b:cadfsdf"
|
||||
}
|
||||
},
|
||||
"error_message": 'Partition "b" is not valid for resource "arn:b:cadfsdf:*:*:*".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3s:ListBucket",
|
||||
"Resource": "a:b:c:d:e:f:g:h"
|
||||
}
|
||||
},
|
||||
"error_message": 'Partition "b" is not valid for resource "arn:b:c:d:e:f:g:h".'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -340,6 +418,19 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Syntax errors in policy.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3:ListBucket",
|
||||
"Resource": "arn:aws:s3:::example_bucket",
|
||||
"NotResource": []
|
||||
}
|
||||
},
|
||||
"error_message": 'Syntax errors in policy.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -351,6 +442,19 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Syntax errors in policy.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3s:ListBucket",
|
||||
"Action": [],
|
||||
"Resource": "arn:aws:s3:::example_bucket"
|
||||
}
|
||||
},
|
||||
"error_message": 'Syntax errors in policy.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -546,6 +650,23 @@ invalid_documents_test_cases = [
|
||||
},
|
||||
"error_message": 'Statement IDs (SID) in a single policy must be unique.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Statement": [
|
||||
{
|
||||
"Sid": "sdf",
|
||||
"Effect": "Allow",
|
||||
"Action": "s3:ListBucket",
|
||||
"Resource": "arn:aws:s3:::example_bucket"
|
||||
},
|
||||
{
|
||||
"Sid": "sdf",
|
||||
"Effect": "Allow"
|
||||
}
|
||||
]
|
||||
},
|
||||
"error_message": 'Policy document must be version 2012-10-17 or greater.'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
@ -622,6 +743,29 @@ invalid_documents_test_cases = [
|
||||
}
|
||||
},
|
||||
"error_message": 'The policy failed legacy parsing'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "Allow",
|
||||
"NotAction": "s3:ListBucket",
|
||||
"Resource": "arn:aws::::example_bucket"
|
||||
}
|
||||
},
|
||||
"error_message": 'The policy failed legacy parsing'
|
||||
},
|
||||
{
|
||||
"document": {
|
||||
"Version": "2012-10-17",
|
||||
"Statement":
|
||||
{
|
||||
"Effect": "allow",
|
||||
"Resource": "arn:aws:s3:us-east-1::example_bucket"
|
||||
}
|
||||
},
|
||||
"error_message": 'The policy failed legacy parsing'
|
||||
}
|
||||
] # TODO add more tests
|
||||
|
||||
|
||||
Loading…
Reference in New Issue
Block a user