| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 1 | # Licensed under the Apache License, Version 2.0 (the "License"); you may |
| 2 | # not use this file except in compliance with the License. You may obtain |
| 3 | # a copy of the License at |
| 4 | # |
| 5 | # http://www.apache.org/licenses/LICENSE-2.0 |
| 6 | # |
| 7 | # Unless required by applicable law or agreed to in writing, software |
| 8 | # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT |
| 9 | # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the |
| 10 | # License for the specific language governing permissions and limitations |
| 11 | # under the License. |
| 12 | |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 13 | import datetime |
| 14 | import re |
| Matthew Treinish | 96e9e88 | 2014-06-09 18:37:19 -0400 | [diff] [blame] | 15 | |
| Doug Hellmann | 583ce2c | 2015-03-11 14:55:46 +0000 | [diff] [blame] | 16 | from oslo_utils import timeutils |
| Masayuki Igawa | bfa0760 | 2015-01-20 18:47:17 +0900 | [diff] [blame] | 17 | |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 18 | from tempest.api.identity import base |
| 19 | from tempest import clients |
| Andrea Frittoli (andreaf) | 290b3e1 | 2015-10-08 10:25:02 +0100 | [diff] [blame] | 20 | from tempest.common import credentials_factory as common_creds |
| Fei Long Wang | d39431f | 2015-05-14 11:30:48 +1200 | [diff] [blame] | 21 | from tempest.common.utils import data_utils |
| Matthew Treinish | d5021a7 | 2014-01-09 18:42:51 +0000 | [diff] [blame] | 22 | from tempest import config |
| Andrea Frittoli (andreaf) | db9672e | 2016-02-23 14:07:24 -0500 | [diff] [blame] | 23 | from tempest.lib import exceptions as lib_exc |
| Masayuki Igawa | ba7bcf6 | 2014-02-17 14:56:41 +0900 | [diff] [blame] | 24 | from tempest import test |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 25 | |
| Matthew Treinish | d5021a7 | 2014-01-09 18:42:51 +0000 | [diff] [blame] | 26 | CONF = config.CONF |
| 27 | |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 28 | |
| Matthew Treinish | db2c597 | 2014-01-31 22:18:59 +0000 | [diff] [blame] | 29 | class BaseTrustsV3Test(base.BaseIdentityV3AdminTest): |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 30 | |
| 31 | def setUp(self): |
| 32 | super(BaseTrustsV3Test, self).setUp() |
| 33 | # Use alt_username as the trustee |
| Matthew Treinish | d5021a7 | 2014-01-09 18:42:51 +0000 | [diff] [blame] | 34 | if not CONF.identity_feature_enabled.trust: |
| 35 | raise self.skipException("Trusts aren't enabled") |
| 36 | |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 37 | self.trust_id = None |
| Steven Hardy | 776f457 | 2013-12-23 21:42:48 +0000 | [diff] [blame] | 38 | |
| 39 | def tearDown(self): |
| 40 | if self.trust_id: |
| 41 | # Do the delete in tearDown not addCleanup - we want the test to |
| 42 | # fail in the event there is a bug which causes undeletable trusts |
| 43 | self.delete_trust() |
| 44 | super(BaseTrustsV3Test, self).tearDown() |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 45 | |
| 46 | def create_trustor_and_roles(self): |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 47 | # create a project that trusts will be granted on |
| Ken'ichi Ohmichi | 80369a9 | 2015-04-06 23:41:14 +0000 | [diff] [blame] | 48 | self.trustor_project_name = data_utils.rand_name(name='project') |
| Yaroslav Lobankov | 47a93ab | 2016-02-07 16:32:49 -0600 | [diff] [blame] | 49 | project = self.projects_client.create_project( |
| 50 | self.trustor_project_name, domain_id='default')['project'] |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 51 | self.trustor_project_id = project['id'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 52 | self.assertIsNotNone(self.trustor_project_id) |
| 53 | |
| 54 | # Create a trustor User |
| Ken'ichi Ohmichi | 9650847 | 2015-03-23 01:43:42 +0000 | [diff] [blame] | 55 | self.trustor_username = data_utils.rand_name('user') |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 56 | u_desc = self.trustor_username + 'description' |
| Steven Hardy | 68f9528 | 2014-01-10 17:40:31 +0000 | [diff] [blame] | 57 | u_email = self.trustor_username + '@testmail.xx' |
| Zack Feldstein | d8c5f7a | 2015-12-14 10:44:07 -0600 | [diff] [blame] | 58 | self.trustor_password = data_utils.rand_password() |
| Daniel Mellado | 7aea534 | 2016-02-09 09:10:12 +0000 | [diff] [blame] | 59 | user = self.users_client.create_user( |
| ghanshyam | 7f817db | 2016-08-01 18:37:13 +0900 | [diff] [blame] | 60 | name=self.trustor_username, |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 61 | description=u_desc, |
| 62 | password=self.trustor_password, |
| 63 | email=u_email, |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 64 | project_id=self.trustor_project_id, |
| John Warren | 56317e0 | 2015-08-12 20:48:32 +0000 | [diff] [blame] | 65 | domain_id='default')['user'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 66 | self.trustor_user_id = user['id'] |
| 67 | |
| 68 | # And two roles, one we'll delegate and one we won't |
| Ken'ichi Ohmichi | 9650847 | 2015-03-23 01:43:42 +0000 | [diff] [blame] | 69 | self.delegated_role = data_utils.rand_name('DelegatedRole') |
| 70 | self.not_delegated_role = data_utils.rand_name('NotDelegatedRole') |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 71 | |
| Arx Cruz | 24bcb88 | 2016-02-10 15:20:16 +0100 | [diff] [blame] | 72 | role = self.roles_client.create_role(name=self.delegated_role)['role'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 73 | self.delegated_role_id = role['id'] |
| 74 | |
| Arx Cruz | 24bcb88 | 2016-02-10 15:20:16 +0100 | [diff] [blame] | 75 | role = self.roles_client.create_role( |
| 76 | name=self.not_delegated_role)['role'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 77 | self.not_delegated_role_id = role['id'] |
| 78 | |
| 79 | # Assign roles to trustor |
| Arx Cruz | 24bcb88 | 2016-02-10 15:20:16 +0100 | [diff] [blame] | 80 | self.roles_client.assign_user_role_on_project( |
| 81 | self.trustor_project_id, |
| 82 | self.trustor_user_id, |
| 83 | self.delegated_role_id) |
| 84 | self.roles_client.assign_user_role_on_project( |
| 85 | self.trustor_project_id, |
| 86 | self.trustor_user_id, |
| 87 | self.not_delegated_role_id) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 88 | |
| 89 | # Get trustee user ID, use the demo user |
| Matthew Treinish | db2c597 | 2014-01-31 22:18:59 +0000 | [diff] [blame] | 90 | trustee_username = self.non_admin_client.user |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 91 | self.trustee_user_id = self.get_user_by_name(trustee_username)['id'] |
| 92 | self.assertIsNotNone(self.trustee_user_id) |
| 93 | |
| 94 | # Initialize a new client with the trustor credentials |
| Andrea Frittoli (andreaf) | 290b3e1 | 2015-10-08 10:25:02 +0100 | [diff] [blame] | 95 | creds = common_creds.get_credentials( |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 96 | identity_version='v3', |
| Andrea Frittoli | 422fbdf | 2014-03-20 10:05:18 +0000 | [diff] [blame] | 97 | username=self.trustor_username, |
| 98 | password=self.trustor_password, |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 99 | user_domain_id='default', |
| 100 | tenant_name=self.trustor_project_name, |
| Andrea Frittoli (andreaf) | 100d18d | 2016-05-05 23:34:52 +0100 | [diff] [blame] | 101 | project_domain_id='default', |
| 102 | domain_id='default') |
| Andrea Frittoli | c097835 | 2015-02-06 15:57:40 +0000 | [diff] [blame] | 103 | os = clients.Manager(credentials=creds) |
| Daniel Mellado | 7640539 | 2016-02-11 12:47:12 +0000 | [diff] [blame] | 104 | self.trustor_client = os.trusts_client |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 105 | |
| Steven Hardy | 776f457 | 2013-12-23 21:42:48 +0000 | [diff] [blame] | 106 | def cleanup_user_and_roles(self): |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 107 | if self.trustor_user_id: |
| Daniel Mellado | 7aea534 | 2016-02-09 09:10:12 +0000 | [diff] [blame] | 108 | self.users_client.delete_user(self.trustor_user_id) |
| Jamie Lennox | f8507b4 | 2015-02-23 06:17:57 +0000 | [diff] [blame] | 109 | if self.trustor_project_id: |
| Yaroslav Lobankov | 47a93ab | 2016-02-07 16:32:49 -0600 | [diff] [blame] | 110 | self.projects_client.delete_project(self.trustor_project_id) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 111 | if self.delegated_role_id: |
| Arx Cruz | 24bcb88 | 2016-02-10 15:20:16 +0100 | [diff] [blame] | 112 | self.roles_client.delete_role(self.delegated_role_id) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 113 | if self.not_delegated_role_id: |
| Arx Cruz | 24bcb88 | 2016-02-10 15:20:16 +0100 | [diff] [blame] | 114 | self.roles_client.delete_role(self.not_delegated_role_id) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 115 | |
| 116 | def create_trust(self, impersonate=True, expires=None): |
| 117 | |
| David Kranz | d8ccb79 | 2014-12-29 11:32:05 -0500 | [diff] [blame] | 118 | trust_create = self.trustor_client.create_trust( |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 119 | trustor_user_id=self.trustor_user_id, |
| 120 | trustee_user_id=self.trustee_user_id, |
| 121 | project_id=self.trustor_project_id, |
| piyush110786 | 4d7553a | 2015-12-10 10:57:40 +0530 | [diff] [blame] | 122 | roles=[{'name': self.delegated_role}], |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 123 | impersonation=impersonate, |
| John Warren | 56317e0 | 2015-08-12 20:48:32 +0000 | [diff] [blame] | 124 | expires_at=expires)['trust'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 125 | self.trust_id = trust_create['id'] |
| 126 | return trust_create |
| 127 | |
| 128 | def validate_trust(self, trust, impersonate=True, expires=None, |
| 129 | summary=False): |
| 130 | self.assertIsNotNone(trust['id']) |
| 131 | self.assertEqual(impersonate, trust['impersonation']) |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 132 | if expires is not None: |
| Yaroslav Lobankov | 8801baa | 2015-02-25 11:23:36 +0300 | [diff] [blame] | 133 | # Omit microseconds component of the expiry time |
| Yaroslav Lobankov | 94340b5 | 2015-02-17 22:15:37 +0300 | [diff] [blame] | 134 | trust_expires_at = re.sub(r'\.([0-9]){6}', '', trust['expires_at']) |
| 135 | self.assertEqual(expires, trust_expires_at) |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 136 | else: |
| 137 | self.assertIsNone(trust['expires_at']) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 138 | self.assertEqual(self.trustor_user_id, trust['trustor_user_id']) |
| 139 | self.assertEqual(self.trustee_user_id, trust['trustee_user_id']) |
| 140 | self.assertIn('v3/OS-TRUST/trusts', trust['links']['self']) |
| 141 | self.assertEqual(self.trustor_project_id, trust['project_id']) |
| 142 | if not summary: |
| 143 | self.assertEqual(self.delegated_role, trust['roles'][0]['name']) |
| 144 | self.assertEqual(1, len(trust['roles'])) |
| 145 | |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 146 | def show_trust(self): |
| 147 | trust_get = self.trustor_client.show_trust(self.trust_id)['trust'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 148 | return trust_get |
| 149 | |
| 150 | def validate_role(self, role): |
| 151 | self.assertEqual(self.delegated_role_id, role['id']) |
| 152 | self.assertEqual(self.delegated_role, role['name']) |
| 153 | self.assertIn('v3/roles/%s' % self.delegated_role_id, |
| 154 | role['links']['self']) |
| 155 | self.assertNotEqual(self.not_delegated_role_id, role['id']) |
| 156 | self.assertNotEqual(self.not_delegated_role, role['name']) |
| 157 | self.assertNotIn('v3/roles/%s' % self.not_delegated_role_id, |
| 158 | role['links']['self']) |
| 159 | |
| 160 | def check_trust_roles(self): |
| 161 | # Check we find the delegated role |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 162 | roles_get = self.trustor_client.list_trust_roles( |
| John Warren | 56317e0 | 2015-08-12 20:48:32 +0000 | [diff] [blame] | 163 | self.trust_id)['roles'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 164 | self.assertEqual(1, len(roles_get)) |
| 165 | self.validate_role(roles_get[0]) |
| 166 | |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 167 | role_get = self.trustor_client.show_trust_role( |
| John Warren | 56317e0 | 2015-08-12 20:48:32 +0000 | [diff] [blame] | 168 | self.trust_id, self.delegated_role_id)['role'] |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 169 | self.validate_role(role_get) |
| 170 | |
| David Kranz | d8ccb79 | 2014-12-29 11:32:05 -0500 | [diff] [blame] | 171 | role_get = self.trustor_client.check_trust_role( |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 172 | self.trust_id, self.delegated_role_id) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 173 | |
| 174 | # And that we don't find not_delegated_role |
| Masayuki Igawa | bfa0760 | 2015-01-20 18:47:17 +0900 | [diff] [blame] | 175 | self.assertRaises(lib_exc.NotFound, |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 176 | self.trustor_client.show_trust_role, |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 177 | self.trust_id, |
| 178 | self.not_delegated_role_id) |
| 179 | |
| Masayuki Igawa | bfa0760 | 2015-01-20 18:47:17 +0900 | [diff] [blame] | 180 | self.assertRaises(lib_exc.NotFound, |
| Matthew Treinish | db2c597 | 2014-01-31 22:18:59 +0000 | [diff] [blame] | 181 | self.trustor_client.check_trust_role, |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 182 | self.trust_id, |
| 183 | self.not_delegated_role_id) |
| 184 | |
| 185 | def delete_trust(self): |
| David Kranz | e9d2f42 | 2014-07-02 13:57:41 -0400 | [diff] [blame] | 186 | self.trustor_client.delete_trust(self.trust_id) |
| Masayuki Igawa | bfa0760 | 2015-01-20 18:47:17 +0900 | [diff] [blame] | 187 | self.assertRaises(lib_exc.NotFound, |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 188 | self.trustor_client.show_trust, |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 189 | self.trust_id) |
| 190 | self.trust_id = None |
| 191 | |
| 192 | |
| 193 | class TrustsV3TestJSON(BaseTrustsV3Test): |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 194 | |
| 195 | def setUp(self): |
| 196 | super(TrustsV3TestJSON, self).setUp() |
| 197 | self.create_trustor_and_roles() |
| Steven Hardy | 68f9528 | 2014-01-10 17:40:31 +0000 | [diff] [blame] | 198 | self.addCleanup(self.cleanup_user_and_roles) |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 199 | |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 200 | @test.idempotent_id('5a0a91a4-baef-4a14-baba-59bf4d7fcace') |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 201 | def test_trust_impersonate(self): |
| 202 | # Test case to check we can create, get and delete a trust |
| 203 | # updates are not supported for trusts |
| 204 | trust = self.create_trust() |
| 205 | self.validate_trust(trust) |
| 206 | |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 207 | trust_get = self.show_trust() |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 208 | self.validate_trust(trust_get) |
| 209 | |
| 210 | self.check_trust_roles() |
| 211 | |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 212 | @test.idempotent_id('ed2a8779-a7ac-49dc-afd7-30f32f936ed2') |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 213 | def test_trust_noimpersonate(self): |
| 214 | # Test case to check we can create, get and delete a trust |
| 215 | # with impersonation=False |
| 216 | trust = self.create_trust(impersonate=False) |
| 217 | self.validate_trust(trust, impersonate=False) |
| 218 | |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 219 | trust_get = self.show_trust() |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 220 | self.validate_trust(trust_get, impersonate=False) |
| 221 | |
| 222 | self.check_trust_roles() |
| 223 | |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 224 | @test.idempotent_id('0ed14b66-cefd-4b5c-a964-65759453e292') |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 225 | def test_trust_expire(self): |
| 226 | # Test case to check we can create, get and delete a trust |
| 227 | # with an expiry specified |
| 228 | expires_at = timeutils.utcnow() + datetime.timedelta(hours=1) |
| Yaroslav Lobankov | 94340b5 | 2015-02-17 22:15:37 +0300 | [diff] [blame] | 229 | # NOTE(ylobankov) In some cases the expiry time may be rounded up |
| Yaroslav Lobankov | 8801baa | 2015-02-25 11:23:36 +0300 | [diff] [blame] | 230 | # because of microseconds. In fact, it depends on database and its |
| 231 | # version. At least MySQL 5.6.16 does this. |
| 232 | # For example, when creating a trust, we will set the expiry time of |
| 233 | # the trust to 2015-02-17T17:34:01.907051Z. However, if we make a GET |
| 234 | # request on the trust, the response will contain the time rounded up |
| 235 | # to 2015-02-17T17:34:02.000000Z. That is why we shouldn't set flag |
| 236 | # "subsecond" to True when we invoke timeutils.isotime(...) to avoid |
| 237 | # problems with rounding. |
| Yaroslav Lobankov | 94340b5 | 2015-02-17 22:15:37 +0300 | [diff] [blame] | 238 | expires_str = timeutils.isotime(at=expires_at) |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 239 | |
| 240 | trust = self.create_trust(expires=expires_str) |
| 241 | self.validate_trust(trust, expires=expires_str) |
| 242 | |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 243 | trust_get = self.show_trust() |
| Steven Hardy | c234ada | 2013-12-10 17:00:41 +0000 | [diff] [blame] | 244 | |
| 245 | self.validate_trust(trust_get, expires=expires_str) |
| 246 | |
| 247 | self.check_trust_roles() |
| 248 | |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 249 | @test.idempotent_id('3e48f95d-e660-4fa9-85e0-5a3d85594384') |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 250 | def test_trust_expire_invalid(self): |
| nayna-patel | 1dfbedb | 2015-08-04 11:07:56 +0000 | [diff] [blame] | 251 | # Test case to check we can check an invalid expiry time |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 252 | # is rejected with the correct error |
| 253 | # with an expiry specified |
| 254 | expires_str = 'bad.123Z' |
| Masayuki Igawa | 4b29e47 | 2015-02-16 10:41:54 +0900 | [diff] [blame] | 255 | self.assertRaises(lib_exc.BadRequest, |
| Steven Hardy | bf70c5c | 2013-10-30 21:55:16 +0000 | [diff] [blame] | 256 | self.create_trust, |
| 257 | expires=expires_str) |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 258 | |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 259 | @test.idempotent_id('6268b345-87ca-47c0-9ce3-37792b43403a') |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 260 | def test_get_trusts_query(self): |
| 261 | self.create_trust() |
| Ken'ichi Ohmichi | 2c4cb0c | 2016-02-03 07:16:21 +0000 | [diff] [blame] | 262 | trusts_get = self.trustor_client.list_trusts( |
| John Warren | 56317e0 | 2015-08-12 20:48:32 +0000 | [diff] [blame] | 263 | trustor_user_id=self.trustor_user_id)['trusts'] |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 264 | self.assertEqual(1, len(trusts_get)) |
| 265 | self.validate_trust(trusts_get[0], summary=True) |
| 266 | |
| Masayuki Igawa | ba7bcf6 | 2014-02-17 14:56:41 +0900 | [diff] [blame] | 267 | @test.attr(type='smoke') |
| Chris Hoge | 7579c1a | 2015-02-26 14:12:15 -0800 | [diff] [blame] | 268 | @test.idempotent_id('4773ebd5-ecbf-4255-b8d8-b63e6f72b65d') |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 269 | def test_get_trusts_all(self): |
| Andrea Frittoli (andreaf) | 100d18d | 2016-05-05 23:34:52 +0100 | [diff] [blame] | 270 | |
| 271 | # Simple function that can be used for cleanup |
| 272 | def set_scope(auth_provider, scope): |
| 273 | auth_provider.scope = scope |
| 274 | |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 275 | self.create_trust() |
| Andrea Frittoli (andreaf) | 100d18d | 2016-05-05 23:34:52 +0100 | [diff] [blame] | 276 | # Listing trusts can be done by trustor, by trustee, or without |
| 277 | # any filter if scoped to a project, so we must ensure token scope is |
| 278 | # project for this test. |
| 279 | original_scope = self.os_adm.auth_provider.scope |
| 280 | set_scope(self.os_adm.auth_provider, 'project') |
| 281 | self.addCleanup(set_scope, self.os_adm.auth_provider, original_scope) |
| Daniel Mellado | 7640539 | 2016-02-11 12:47:12 +0000 | [diff] [blame] | 282 | trusts_get = self.trusts_client.list_trusts()['trusts'] |
| Steven Hardy | f31fd2d | 2013-12-10 17:02:36 +0000 | [diff] [blame] | 283 | trusts = [t for t in trusts_get |
| 284 | if t['id'] == self.trust_id] |
| 285 | self.assertEqual(1, len(trusts)) |
| 286 | self.validate_trust(trusts[0], summary=True) |