Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add support for deleting hash tables #1

Open
wants to merge 16 commits into
base: master
Choose a base branch
from
Open

add support for deleting hash tables #1

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
a95390d
add support for deleting hash tables
rico89 Oct 26, 2017
5561f99
fixing errors in spec for the deletion of hashtad instances
rico89 Oct 27, 2017
4109c27
supporting the setting of hash values and added test for that
rico89 Oct 27, 2017
1a1c93e
fix issue with creating hash resources and modified test accordingly
rico89 Oct 27, 2017
331f723
Properly manage :deleted with insync?
raphink May 4, 2018
ac7020d
Fix spaces
raphink May 4, 2018
7ade80b
Remove out_file as it is never used
raphink May 4, 2018
ff90106
Simplify logic in set_value()
raphink May 4, 2018
316a98b
Convert to pol and import when removing key
raphink May 4, 2018
e69e9cd
Simplify filtering in remove_key
raphink May 4, 2018
7e5656e
Fix out_file variable
raphink May 4, 2018
532014e
Warn only when resource cannot be mapped
raphink May 4, 2018
e865364
Pass guid to import_pol
raphink May 4, 2018
dade060
Remove pol_file if it exists
raphink May 4, 2018
eeae781
merge with upstream
May 4, 2018
71cbee8
fix conflicts with upstream
May 4, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 16 additions & 0 deletions lib/puppet/provider/gpo/lgpo.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -125,6 +125,8 @@ def set_value(val)
out_file.write(out)
end

remove_key(path['setting_key'], scope) if real_val == 'DELETEALLVALUES'

# Convert lgpo_import.txt to lgpo_import.pol with lgpo.exe
lgpo_args = ['/r', out_file_path, '/w', out_polfile_path]
lgpo(*lgpo_args)
Expand All @@ -138,4 +140,18 @@ def set_value(val)
lgpo(*lgpo_args)
File.delete(out_polfile_path)
end

def remove_key(key, scope)
pol_file = "C:\\Windows\\System32\\GroupPolicy\\#{scope.capitalize}\\Registry.pol"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Return if pol_file doesn't exist to avoid lgpo from crashing

out_file_path = File.join(Puppet[:vardir], 'lgpo_import.txt')
gpos = lgpo('/parse', '/q', "/#{scope[0]}", pol_file)
gpos.split("\n\n").reject { |l| l.start_with? ';' }.each do |g|
split_g = g.split("\n")
unless split_g[1] == key
File.open(out_file_path, 'a') do |out_file|
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would rather open the file outside the loop to avoid opening/closing for every line.

out_file.write(split_g)
end
end
end
end
end
48 changes: 36 additions & 12 deletions spec/unit/puppet/provider/gpo/lgpo_spec.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,25 @@ def stub_create(scope, content, cse)
provider.class.expects(:lgpo).once.with(*args).returns(nil)
expect(File).to receive(:delete).once.with(out_polfile).and_return(nil)
end
def hash_delete(scope, content, cse)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe call this stub_hash_delete

file = StringIO.new
allow(File).to receive(:open).once.with(out_file, 'w').and_yield(file)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

expect would be better here.

allow(file).to receive(:write).with(content)

stub_lgpo_pol(scope, true)
allow(file).to receive(:open).at_least(:once).with(out_file, 'a').and_yield(file)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is expect(File), not expect(file) since we're stubbing the File module, not the file object.

allow(file).to receive(:write).at_least(:once)

args = ["/r", out_file]
args << '/w' << out_polfile
provider.class.expects(:lgpo).once.with(*args).returns(nil)
expect(File).to receive(:delete).once.with(out_file).and_return(nil)

args = ["/#{scope[0]}", out_polfile]
args << '/e' << cse unless cse.nil?
provider.class.expects(:lgpo).once.with(*args).returns(nil)
expect(File).to receive(:delete).once.with(out_polfile).and_return(nil)
end

context 'when listing instances' do
context 'when the gpo file exists' do
Expand Down Expand Up @@ -211,32 +230,37 @@ def stub_create(scope, content, cse)
end
end

context 'when we need to delete a HASHTABLE instance' do
context 'when there is a cse' do
let(:params) do
{
:title => 'machine::windowsdefender::exclusions_processes::exclusions_processeslist',
:ensure => :deleted,
:title => 'admpwd::pol_admpwd_enabled::admpwdenabled',
:value => '1',
:provider => 'lgpo',
}
end
it 'should create a resource without /e' do
stub_create('machine', "computer\nSoftware\\Policies\\Microsoft\\Windows Defender\\Exclusions\\Processes\n*\nDELETEALLVALUES", nil)

it 'should create a resource with /e' do
stub_create('machine', "computer\nSoftware\\Policies\\Microsoft Services\\AdmPwd\nAdmPwdEnabled\nDELETE", '{D76B9641-3288-4f75-942D-087DE603E3EA}')

provider.delete
end
end

context 'when there is a cse' do
end
context 'when deleting a hash resource' do
before :each do
expect(Puppet).to receive(:[]).exactly(3).times.with(:vardir).and_return('C:\ProgramData\PuppetLabs\Puppet\var')
end

context 'when we need to delete a HASHTABLE instance' do
let(:params) do
{
:title => 'admpwd::pol_admpwd_enabled::admpwdenabled',
:value => '1',
:title => 'machine::windowsdefender::exclusions_processes::exclusions_processeslist',
:ensure => :deleted,
:provider => 'lgpo',
}
end

it 'should create a resource with /e' do
stub_create('machine', "computer\nSoftware\\Policies\\Microsoft Services\\AdmPwd\nAdmPwdEnabled\nDELETE", '{D76B9641-3288-4f75-942D-087DE603E3EA}')
it 'should create a resource without /e' do
hash_delete('machine', "computer\nSoftware\\Policies\\Microsoft\\Windows Defender\\Exclusions\\Processes\n*\nDELETEALLVALUES", nil)

provider.delete
end
Expand Down