github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-09-13 05:02:50 +00:00
Code Issues Projects Releases Wiki Activity

test header removal for impersonation

Browse Source
This commit is contained in:
deads2k
2017-06-06 14:08:23 -04:00
parent cc568f6433
commit 38c25393df
1 changed files with 17 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
staging/src/k8s.io/apiserver/pkg/endpoints/filters/impersonation_test.go
View File

@@ -21,6 +21,7 @@ import (
"net/http"
"net/http/httptest"
"reflect"
"strings"
"sync"
"testing"
@@ -319,6 +320,19 @@ func TestImpersonationFilter(t *testing.T) {
}
actualUser = user
if _, ok := req.Header[authenticationapi.ImpersonateUserHeader]; ok {
t.Fatal("user header still present")
}
if _, ok := req.Header[authenticationapi.ImpersonateGroupHeader]; ok {
t.Fatal("group header still present")
}
for key := range req.Header {
if strings.HasPrefix(key, authenticationapi.ImpersonateUserExtraHeaderPrefix) {
t.Fatalf("extra header still present: %v", key)
}
}
})
handler := func(delegate http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
@@ -360,7 +374,9 @@ func TestImpersonationFilter(t *testing.T) {
t.Errorf("%s: unexpected error: %v", tc.name, err)
continue
}
req.Header.Add(authenticationapi.ImpersonateUserHeader, tc.impersonationUser)
if len(tc.impersonationUser) > 0 {
req.Header.Add(authenticationapi.ImpersonateUserHeader, tc.impersonationUser)
}
for _, group := range tc.impersonationGroups {
req.Header.Add(authenticationapi.ImpersonateGroupHeader, group)
}