From b2ca1cd0693e7d1ea7cab0b2ee102ab3bd63d5d8 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Mon, 29 Jun 2015 14:40:28 +0200
Subject: [PATCH] tests: verify that groupname is read correctly when in
 kerberos auth

---
 tests/docker-kerberos/myscript    | 9 +++++++++
 tests/docker-kerberos/ocserv.conf | 2 +-
 tests/kerberos-test               | 6 ++++++
 3 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/tests/docker-kerberos/myscript b/tests/docker-kerberos/myscript
index d71f406b..e8038006 100755
--- a/tests/docker-kerberos/myscript
+++ b/tests/docker-kerberos/myscript
@@ -6,6 +6,15 @@ if [ "$REASON" != "connect" ];then
 	else
 		echo $STATS_BYTES_IN >/tmp/disconnect/not-ok
 	fi
+elif [ "$REASON" = "connect" ];then
+	rm -f /tmp/disconnect/group-ok
+
+	if test "$GROUPNAME" != "testuser";then
+		echo "Groupname failed: $GROUPNAME" >/tmp/group-not-ok
+		exit 1;
+	else
+		echo "Groupname ok: $GROUPNAME" >/tmp/group-ok
+	fi
 fi
 
 exit 0
diff --git a/tests/docker-kerberos/ocserv.conf b/tests/docker-kerberos/ocserv.conf
index ce826b71..0c9eefe2 100644
--- a/tests/docker-kerberos/ocserv.conf
+++ b/tests/docker-kerberos/ocserv.conf
@@ -158,7 +158,7 @@ rekey-method = ssl
 # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP
 # in the P-t-P connection), IP_REMOTE (the VPN IP of the client),
 # ID (a unique numeric ID); REASON may be "connect" or "disconnect".
-#connect-script = /usr/bin/myscript
+connect-script = /usr/bin/myscript
 disconnect-script = /usr/bin/myscript
 
 # UTMP
diff --git a/tests/kerberos-test b/tests/kerberos-test
index 2e7b68d0..1a485255 100755
--- a/tests/kerberos-test
+++ b/tests/kerberos-test
@@ -104,6 +104,12 @@ if test $? != 0;then
 	ret=1
 fi
 
+check_for_file /tmp/group-ok test_ocserv_kerberos
+if test $? != 0;then
+	echo "Kerberos group name detection test failed"
+	ret=1
+fi
+
 $DOCKER stop test_ocserv_kerberos
 $DOCKER rm test_ocserv_kerberos
 $DOCKER stop test_ocserv_client_kerberos