RubygemsResearch

Sha256: bf89c6134eb4fd6ebaada3dbc6bdc6e4a8e2aafa280bebaabafd8728917009df

Contents?: true

Size: 1.71 KB

Versions: 11

Compression:

Stored size: 1.71 KB

describe S3Secure::Policy::Checker do
  subject { S3Secure::Policy::Checker.new(policy_json) }

  describe "already has ForceSSLOnlyAccess" do
    let(:policy_json) {
      <<~JSON
        {
            "Version": "2012-10-17",
            "Statement": [
                {
                    "Sid": "ForceSSLOnlyAccess",
                    "Effect": "Deny",
                    "Principal": "*",
                    "Action": "s3:GetObject",
                    "Resource": "arn:aws:s3:::my-test-s3-secure-us-east-1/*",
                    "Condition": {
                        "Bool": {
                            "aws:SecureTransport": "false"
                        }
                    }
                }
            ]
        }
      JSON
    }

    it "has?" do
      result = subject.has?("ForceSSLOnlyAccess")
      expect(result).to be true
    end
  end

  describe "doesnt have ForceSSLOnlyAccess" do
    let(:policy_json) {
      <<~JSON
        {
          "Version": "2008-10-17",
          "Id": "PolicyForCloudFrontPrivateContent",
          "Statement": [
            {
              "Sid": "1",
              "Effect": "Allow",
              "Principal": {
                "AWS": "arn:aws:iam::cloudfront:user/CloudFront Origin Access Identity E27G6OAEXAMPLE"
              },
              "Action": "s3:GetObject",
              "Resource": "arn:aws:s3:::test-fake-website/*"
            }
          ]
        }
      JSON
    }

    it "has?" do
      result = subject.has?("ForceSSLOnlyAccess")
      expect(result).to be false
    end
  end

  describe "empty policy" do
    let(:policy_json) { nil }

    it "has?" do
      result = subject.has?("ForceSSLOnlyAccess")
      expect(result).to be false
    end
  end
end

Version data entries

11 entries across 11 versions & 1 rubygems

Version	Path
s3-secure-0.7.0	spec/lib/policy/checker_spec.rb
s3-secure-0.6.1	spec/lib/policy/checker_spec.rb
s3-secure-0.6.0	spec/lib/policy/checker_spec.rb
s3-secure-0.5.1	spec/lib/policy/checker_spec.rb
s3-secure-0.5.0	spec/lib/policy/checker_spec.rb
s3-secure-0.4.2	spec/lib/policy/checker_spec.rb
s3-secure-0.4.1	spec/lib/policy/checker_spec.rb
s3-secure-0.4.0	spec/lib/policy/checker_spec.rb
s3-secure-0.3.0	spec/lib/policy/checker_spec.rb
s3-secure-0.2.0	spec/lib/policy/checker_spec.rb
s3-secure-0.1.0	spec/lib/policy/checker_spec.rb