[ufw] Insert or delete biased when deletion enabled - as for append or delete. (#3514) (#3525)

* [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. * [ufw] Insert or delete biased when deletion enabled - as for append or delete. (cherry picked from commit 80bb42325b) Co-authored-by: Greg <greg-a-atkinson@users.noreply.github.com>
2026-05-06 21:32:49 +00:00 · 2021-10-07 22:15:40 +02:00
parent 1f0b2a5173
commit 2e4864db7f
3 changed files with 46 additions and 2 deletions
--- a/tests/unit/plugins/modules/system/test_ufw.py
+++ b/tests/unit/plugins/modules/system/test_ufw.py
@@ -54,6 +54,7 @@ dry_mode_cmd_with_port_700 = {
    "ufw status verbose": ufw_status_verbose_with_port_7000,
    "ufw --version": ufw_version_35,
    "ufw --dry-run allow from any to any port 7000 proto tcp": skippg_adding_existing_rules,
+    "ufw --dry-run insert 1 allow from any to any port 7000 proto tcp": skippg_adding_existing_rules,
    "ufw --dry-run delete allow from any to any port 7000 proto tcp": "",
    "ufw --dry-run delete allow from any to any port 7001 proto tcp": user_rules_with_port_7000,
    "ufw --dry-run route allow in on foo out on bar from 1.1.1.1 port 7000 to 8.8.8.8 port 7001 proto tcp": "",
@@ -178,6 +179,17 @@ class TestUFW(unittest.TestCase):
        result = self.__getResult(do_nothing_func_port_7000)
        self.assertFalse(result.exception.args[0]['changed'])

+    def test_check_mode_add_insert_rules(self):
+        set_module_args({
+            'insert': '1',
+            'rule': 'allow',
+            'proto': 'tcp',
+            'port': '7000',
+            '_ansible_check_mode': True
+        })
+        result = self.__getResult(do_nothing_func_port_7000)
+        self.assertFalse(result.exception.args[0]['changed'])
+
    def test_check_mode_add_detailed_route(self):
        set_module_args({
            'rule': 'allow',
@@ -318,6 +330,19 @@ class TestUFW(unittest.TestCase):

        self.assertTrue(self.__getResult(do_nothing_func_port_7000).exception.args[0]['changed'])

+    def test_check_mode_delete_existing_insert_rules(self):
+
+        set_module_args({
+            'insert': '1',
+            'rule': 'allow',
+            'proto': 'tcp',
+            'port': '7000',
+            'delete': 'yes',
+            '_ansible_check_mode': True,
+        })
+
+        self.assertTrue(self.__getResult(do_nothing_func_port_7000).exception.args[0]['changed'])
+
    def test_check_mode_delete_not_existing_rules(self):

        set_module_args({
@@ -330,6 +355,19 @@ class TestUFW(unittest.TestCase):

        self.assertFalse(self.__getResult(do_nothing_func_port_7000).exception.args[0]['changed'])

+    def test_check_mode_delete_not_existing_insert_rules(self):
+
+        set_module_args({
+            'insert': '1',
+            'rule': 'allow',
+            'proto': 'tcp',
+            'port': '7001',
+            'delete': 'yes',
+            '_ansible_check_mode': True,
+        })
+
+        self.assertFalse(self.__getResult(do_nothing_func_port_7000).exception.args[0]['changed'])
+
    def test_enable_mode(self):
        set_module_args({
            'state': 'enabled',