diff options
| author | Petr Viktorin <pviktori@redhat.com> | 2013-05-21 13:40:27 +0200 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2013-06-17 19:22:50 +0200 |
| commit | c60142efda817f030a7495cd6fe4a19953e55afa (patch) | |
| tree | 31a840ceddd4381311bbc879f9851bb71a8e2ffa /ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py | |
| parent | 6d66e826c1c248dffc80056b20c1e4b74b04d46f (diff) | |
| download | freeipa-c60142efda817f030a7495cd6fe4a19953e55afa.tar.gz freeipa-c60142efda817f030a7495cd6fe4a19953e55afa.tar.xz freeipa-c60142efda817f030a7495cd6fe4a19953e55afa.zip | |
Make an ipa-tests package
Rename the 'tests' directory to 'ipa-tests', and create an ipa-tests RPM
containing the test suite
Part of the work for: https://fedorahosted.org/freeipa/ticket/3654
Diffstat (limited to 'ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py')
| -rw-r--r-- | ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py | 693 |
1 files changed, 693 insertions, 0 deletions
diff --git a/ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py b/ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py new file mode 100644 index 000000000..397d47683 --- /dev/null +++ b/ipatests/test_xmlrpc/test_sudocmdgroup_plugin.py @@ -0,0 +1,693 @@ +# Authors: +# Jr Aquino <jr.aquino@citrixonline.com> +# +# Copyright (C) 2010 Red Hat +# see file 'COPYING' for use and warranty information +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. +""" +Test the `ipalib/plugins/sudocmdgroup.py` module. +""" + +from ipalib import api, errors +from ipatests.test_xmlrpc import objectclasses +from xmlrpc_test import Declarative, fuzzy_uuid, fuzzy_sudocmddn +from ipapython.dn import DN + +sudocmdgroup1 = u'testsudocmdgroup1' +sudocmdgroup2 = u'testsudocmdgroup2' +sudocmd1 = u'/usr/bin/sudotestcmd1' +sudocmd1_camelcase = u'/usr/bin/sudoTestCmd1' +sudocmd_plus = u'/bin/ls -l /lost+found/*' + +def create_command(sudocmd): + return dict( + desc='Create %r' % sudocmd, + command=( + 'sudocmd_add', [], dict(sudocmd=sudocmd, + description=u'Test sudo command') + ), + expected=dict( + value=sudocmd, + summary=u'Added Sudo Command "%s"' % sudocmd, + result=dict( + objectclass=objectclasses.sudocmd, + sudocmd=[sudocmd], + ipauniqueid=[fuzzy_uuid], description=[u'Test sudo command'], + dn=fuzzy_sudocmddn, + ), + ), + ) + +class test_sudocmdgroup(Declarative): + cleanup_commands = [ + ('sudocmdgroup_del', [sudocmdgroup1], {}), + ('sudocmdgroup_del', [sudocmdgroup2], {}), + ('sudocmd_del', [sudocmd1], {}), + ('sudocmd_del', [sudocmd1_camelcase], {}), + ('sudocmd_del', [sudocmd_plus], {}), + ] + + tests = [ + + ################ + # create sudo command + dict( + desc='Create %r' % sudocmd1, + command=( + 'sudocmd_add', [], dict(sudocmd=sudocmd1, description=u'Test sudo command 1') + ), + expected=dict( + value=sudocmd1, + summary=u'Added Sudo Command "%s"' % sudocmd1, + result=dict( + objectclass=objectclasses.sudocmd, + sudocmd=[u'/usr/bin/sudotestcmd1'], + ipauniqueid=[fuzzy_uuid], + description=[u'Test sudo command 1'], + dn=fuzzy_sudocmddn, + ), + ), + ), + + dict( + desc='Create %r' % sudocmd1_camelcase, + command=( + 'sudocmd_add', [], dict(sudocmd=sudocmd1_camelcase, description=u'Test sudo command 2') + ), + expected=dict( + value=sudocmd1_camelcase, + summary=u'Added Sudo Command "%s"' % sudocmd1_camelcase, + result=dict( + objectclass=objectclasses.sudocmd, + sudocmd=[u'/usr/bin/sudoTestCmd1'], + ipauniqueid=[fuzzy_uuid], + description=[u'Test sudo command 2'], + dn=fuzzy_sudocmddn, + ), + ), + ), + + dict( + desc='Verify the managed sudo command %r was created' % sudocmd1, + command=('sudocmd_show', [sudocmd1], {}), + expected=dict( + value=sudocmd1, + summary=None, + result=dict( + sudocmd=[sudocmd1], + description=[u'Test sudo command 1'], + dn=fuzzy_sudocmddn, + ), + ), + ), + + + ################ + # create sudo command group1: + dict( + desc='Try to retrieve non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_show', [sudocmdgroup1], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + dict( + desc='Try to update non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_mod', [sudocmdgroup1], + dict(description=u'Foo')), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + dict( + desc='Try to delete non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_del', [sudocmdgroup1], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + dict( + desc='Create %r' % sudocmdgroup1, + command=( + 'sudocmdgroup_add', [sudocmdgroup1], + dict(description=u'Test desc 1') + ), + expected=dict( + value=sudocmdgroup1, + summary=u'Added Sudo Command Group "testsudocmdgroup1"', + result=dict( + cn=[sudocmdgroup1], + description=[u'Test desc 1'], + objectclass=objectclasses.sudocmdgroup, + ipauniqueid=[fuzzy_uuid], + dn=DN(('cn','testsudocmdgroup1'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + ), + ), + + + dict( + desc='Try to create duplicate %r' % sudocmdgroup1, + command=( + 'sudocmdgroup_add', [sudocmdgroup1], + dict(description=u'Test desc 1') + ), + expected=errors.DuplicateEntry(message=u'sudo command group ' + + u'with name "%s" already exists' % sudocmdgroup1), + ), + + + dict( + desc='Retrieve %r' % sudocmdgroup1, + command=('sudocmdgroup_show', [sudocmdgroup1], {}), + expected=dict( + value=sudocmdgroup1, + summary=None, + result=dict( + cn=[sudocmdgroup1], + description=[u'Test desc 1'], + dn=DN(('cn','testsudocmdgroup1'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + ), + ), + + + dict( + desc='Updated %r' % sudocmdgroup1, + command=( + 'sudocmdgroup_mod', [sudocmdgroup1], + dict(description=u'New desc 1') + ), + expected=dict( + result=dict( + cn=[sudocmdgroup1], + description=[u'New desc 1'], + ), + summary=u'Modified Sudo Command Group "testsudocmdgroup1"', + value=sudocmdgroup1, + ), + ), + + + dict( + desc='Retrieve %r to verify update' % sudocmdgroup1, + command=('sudocmdgroup_show', [sudocmdgroup1], {}), + expected=dict( + value=sudocmdgroup1, + result=dict( + cn=[sudocmdgroup1], + description=[u'New desc 1'], + dn=DN(('cn','testsudocmdgroup1'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + summary=None, + ), + ), + + + dict( + desc='Search for %r' % sudocmdgroup1, + command=('sudocmdgroup_find', [], dict(cn=sudocmdgroup1)), + expected=dict( + count=1, + truncated=False, + result=[ + dict( + dn=DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + cn=[sudocmdgroup1], + description=[u'New desc 1'], + ), + ], + summary=u'1 Sudo Command Group matched', + ), + ), + + + + ################ + # create sudocmdgroup2: + dict( + desc='Try to retrieve non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_show', [sudocmdgroup2], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + dict( + desc='Try to update non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_mod', [sudocmdgroup2], + dict(description=u'Foo')), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + dict( + desc='Try to delete non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_del', [sudocmdgroup2], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + dict( + desc='Create %r' % sudocmdgroup2, + command=( + 'sudocmdgroup_add', [sudocmdgroup2], + dict(description=u'Test desc 2') + ), + expected=dict( + value=sudocmdgroup2, + summary=u'Added Sudo Command Group "testsudocmdgroup2"', + result=dict( + cn=[sudocmdgroup2], + description=[u'Test desc 2'], + objectclass=objectclasses.sudocmdgroup, + ipauniqueid=[fuzzy_uuid], + dn=DN(('cn','testsudocmdgroup2'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + ), + ), + + + dict( + desc='Try to create duplicate %r' % sudocmdgroup2, + command=( + 'sudocmdgroup_add', [sudocmdgroup2], + dict(description=u'Test desc 2') + ), + expected=errors.DuplicateEntry( + message=u'sudo command group with name "%s" already exists' % + sudocmdgroup2), + ), + + + dict( + desc='Retrieve %r' % sudocmdgroup2, + command=('sudocmdgroup_show', [sudocmdgroup2], {}), + expected=dict( + value=sudocmdgroup2, + summary=None, + result=dict( + cn=[sudocmdgroup2], + description=[u'Test desc 2'], + dn=DN(('cn','testsudocmdgroup2'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + ), + ), + + + dict( + desc='Updated %r' % sudocmdgroup2, + command=( + 'sudocmdgroup_mod', [sudocmdgroup2], + dict(description=u'New desc 2') + ), + expected=dict( + result=dict( + cn=[sudocmdgroup2], + description=[u'New desc 2'], + ), + summary=u'Modified Sudo Command Group "testsudocmdgroup2"', + value=sudocmdgroup2, + ), + ), + + + dict( + desc='Retrieve %r to verify update' % sudocmdgroup2, + command=('sudocmdgroup_show', [sudocmdgroup2], {}), + expected=dict( + value=sudocmdgroup2, + result=dict( + cn=[sudocmdgroup2], + description=[u'New desc 2'], + dn=DN(('cn','testsudocmdgroup2'),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + ), + summary=None, + ), + ), + + + dict( + desc='Search for %r' % sudocmdgroup2, + command=('sudocmdgroup_find', [], dict(cn=sudocmdgroup2)), + expected=dict( + count=1, + truncated=False, + result=[ + dict( + dn=DN(('cn',sudocmdgroup2),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + cn=[sudocmdgroup2], + description=[u'New desc 2'], + ), + ], + summary=u'1 Sudo Command Group matched', + ), + ), + + + dict( + desc='Search for all sudocmdgroups', + command=('sudocmdgroup_find', [], {}), + expected=dict( + summary=u'2 Sudo Command Groups matched', + count=2, + truncated=False, + result=[ + dict( + dn=DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + cn=[sudocmdgroup1], + description=[u'New desc 1'], + ), + dict( + dn=DN(('cn',sudocmdgroup2),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + cn=[sudocmdgroup2], + description=[u'New desc 2'], + ), + ], + ), + ), + + + + ############### + # member stuff: + dict( + desc='Add member %r to %r' % (sudocmd1, sudocmdgroup1), + command=( + 'sudocmdgroup_add_member', [sudocmdgroup1], + dict(sudocmd=sudocmd1) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'member_sudocmd': (sudocmd1,), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + desc='Retrieve %r to show membership' % sudocmd1, + command=('sudocmd_show', [sudocmd1], {}), + expected=dict( + value=sudocmd1, + summary=None, + result=dict( + dn=fuzzy_sudocmddn, + sudocmd=[sudocmd1], + description=[u'Test sudo command 1'], + memberof_sudocmdgroup=[u'testsudocmdgroup1'], + ), + ), + ), + + dict( + desc='Try to add non-existent member to %r' % sudocmdgroup1, + command=( + 'sudocmdgroup_add_member', [sudocmdgroup1], + dict(sudocmd=u'notfound') + ), + expected=dict( + completed=0, + failed=dict( + member=dict( + sudocmd=[(u'notfound', u'no such entry')], + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'member_sudocmd': (u'/usr/bin/sudotestcmd1',), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + desc='Add member %r to %r' % (sudocmd1_camelcase, sudocmdgroup1), + command=( + 'sudocmdgroup_add_member', [sudocmdgroup1], + dict(sudocmd=sudocmd1_camelcase) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'member_sudocmd': (sudocmd1, sudocmd1_camelcase), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + desc='Remove member %r from %r' % (sudocmd1, sudocmdgroup1), + command=('sudocmdgroup_remove_member', + [sudocmdgroup1], dict(sudocmd=sudocmd1) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'member_sudocmd': (sudocmd1_camelcase,), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + desc='Remove member %r from %r' % (sudocmd1_camelcase, sudocmdgroup1), + command=('sudocmdgroup_remove_member', + [sudocmdgroup1], dict(sudocmd=sudocmd1_camelcase) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + # FIXME: Shouldn't this raise a NotFound instead? + desc='Try to remove non-existent member from %r' % sudocmdgroup1, + command=('sudocmdgroup_remove_member', + [sudocmdgroup1], dict(sudocmd=u'notfound') + ), + expected=dict( + completed=0, + failed=dict( + member=dict( + sudocmd=[(u'notfound', u'This entry is not a member')], + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + ################ + # test a command that needs DN escaping: + create_command(sudocmd_plus), + + dict( + desc='Add %r to %r' % (sudocmd_plus, sudocmdgroup1), + command=('sudocmdgroup_add_member', [sudocmdgroup1], + dict(sudocmd=sudocmd_plus) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'member_sudocmd': (sudocmd_plus,), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + dict( + desc='Remove %r from %r' % (sudocmd_plus, sudocmdgroup1), + command=('sudocmdgroup_remove_member', [sudocmdgroup1], + dict(sudocmd=sudocmd_plus) + ), + expected=dict( + completed=1, + failed=dict( + member=dict( + sudocmd=tuple(), + ), + ), + result={ + 'dn': DN(('cn',sudocmdgroup1),('cn','sudocmdgroups'), + ('cn','sudo'),api.env.basedn), + 'cn': [sudocmdgroup1], + 'description': [u'New desc 1'], + }, + ), + ), + + ################ + # delete sudocmdgroup1: + dict( + desc='Delete %r' % sudocmdgroup1, + command=('sudocmdgroup_del', [sudocmdgroup1], {}), + expected=dict( + result=dict(failed=u''), + value=sudocmdgroup1, + summary=u'Deleted Sudo Command Group "testsudocmdgroup1"', + ) + ), + + + dict( + desc='Try to delete non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_del', [sudocmdgroup1], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + dict( + desc='Try to retrieve non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_show', [sudocmdgroup1], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + dict( + desc='Try to update non-existent %r' % sudocmdgroup1, + command=('sudocmdgroup_mod', [sudocmdgroup1], + dict(description=u'Foo')), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup1), + ), + + + ################ + # delete sudocmdgroup2: + dict( + desc='Delete %r' % sudocmdgroup2, + command=('sudocmdgroup_del', [sudocmdgroup2], {}), + expected=dict( + result=dict(failed=u''), + value=sudocmdgroup2, + summary=u'Deleted Sudo Command Group "testsudocmdgroup2"', + ) + ), + + + dict( + desc='Try to delete non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_del', [sudocmdgroup2], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + dict( + desc='Try to retrieve non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_show', [sudocmdgroup2], {}), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + dict( + desc='Try to update non-existent %r' % sudocmdgroup2, + command=('sudocmdgroup_mod', [sudocmdgroup2], + dict(description=u'Foo')), + expected=errors.NotFound( + reason=u'%s: sudo command group not found' % sudocmdgroup2), + ), + + + ##### clean up test Command + + dict( + desc='Now delete the sudo command %r' % sudocmd1, + command=('sudocmd_del', [sudocmd1], {}), + expected=dict( + result=dict(failed=u''), + value=sudocmd1, + summary=u'Deleted Sudo Command "%s"' % sudocmd1, + ) + ), + + + dict( + desc='Verify that %r is really gone' % sudocmd1, + command=('sudocmd_show', [sudocmd1], {}), + expected=errors.NotFound( + reason=u'%s: sudo command not found' % sudocmd1), + ), + + ] |