def test_positive_session_survives_unauthenticated_call(self):
"""Check if session stays up after unauthenticated call
:id: 8bc304a0-70ea-489c-9c3f-ea8343c5284c
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run `hammer ping`
:expectedresults: The session is unchanged
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
result = ssh.command('hammer ping')
self.assertEqual(result.return_code, 0, 'Failed to run hammer ping')
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_log_out_from_session(self):
"""Check if session is terminated when user logs out
:id: 0ba05f2d-7b83-4b0c-a04c-80e62b7c4cf2
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run `hammer auth logout`
:expectedresults: The session is terminated
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
Auth.logout()
result = Auth.with_user().status()
self.assertIn(LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message'])
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_change_session(self):
"""Change from existing session to a different session
:id: b6ea6f3c-fcbd-4e7b-97bd-f3e0e6b9da8f
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Login as a different user
:expectedresults: The session is altered
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
Auth.login({'username': self.uname_viewer, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_viewer),
result[0][u'message'])
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_session_survives_unauthenticated_call(self):
"""Check if session stays up after unauthenticated call
:id: 8bc304a0-70ea-489c-9c3f-ea8343c5284c
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run `hammer ping`
:expectedresults: The session is unchanged
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
result = ssh.command('hammer ping')
self.assertEqual(result.return_code, 0, 'Failed to run hammer ping')
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_disable_session(self):
"""Check if user logs out when session is disabled
:id: 38ee0d85-c2fe-4cac-a992-c5dbcec11031
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Disable use_sessions
:expectedresults: The session is terminated
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# disabling sessions
result = configure_sessions(False)
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
result = Auth.with_user().status()
self.assertIn(NOTCONF_MSG.format(self.uname_admin),
result[0][u'message'])
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_change_session(self):
"""Change from existing session to a different session
:id: b6ea6f3c-fcbd-4e7b-97bd-f3e0e6b9da8f
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Login as a different user
:expectedresults: The session is altered
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
Auth.login({'username': self.uname_viewer, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_viewer),
result[0][u'message']
)
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_log_out_from_session(self):
"""Check if session is terminated when user logs out
:id: 0ba05f2d-7b83-4b0c-a04c-80e62b7c4cf2
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run `hammer auth logout`
:expectedresults: The session is terminated
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
Auth.logout()
result = Auth.with_user().status()
self.assertIn(
LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message']
)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_session_preceeds_saved_credentials(self):
"""Check if enabled session is mutually exclusive with
saved credentials in hammer config
:id: e4277298-1c24-494b-84a6-22f45f96e144
:BZ: 1471099
:Steps:
1. Set use_sessions, set usernam and password,
set short expiration time
2. Authenticate, assert credentials are not demanded
on next command run
3. Wait until session expires
:expectedresults: Session expires after specified time
and saved credentials are not applied
"""
try:
idle_timeout = Settings.list({
'search': 'name=idle_timeout'})[0][u'value']
Settings.set({'name': 'idle_timeout', 'value': 1})
result = configure_sessions(add_default_creds=True)
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({
'username': self.uname_admin,
'password': self.password
})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# wait until session expires
sleep(70)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
result = Auth.with_user().status()
self.assertIn(
LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message']
)
finally:
# reset timeout to default
Settings.set({'name': 'idle_timeout', 'value': '{}'.format(
idle_timeout)})
def test_positive_session_preceeds_saved_credentials(self):
"""Check if enabled session is mutually exclusive with
saved credentials in hammer config
:id: e4277298-1c24-494b-84a6-22f45f96e144
:BZ: 1471099
:Steps:
1. Set use_sessions, set usernam and password,
set short expiration time
2. Authenticate, assert credentials are not demanded
on next command run
3. Wait until session expires
:expectedresults: Session expires after specified time
and saved credentials are not applied
"""
try:
idle_timeout = Settings.list({'search':
'name=idle_timeout'})[0][u'value']
Settings.set({'name': 'idle_timeout', 'value': 1})
result = configure_sessions(add_default_creds=True)
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({
'username': self.uname_admin,
'password': self.password
})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# wait until session expires
sleep(70)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
result = Auth.with_user().status()
self.assertIn(LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message'])
finally:
# reset timeout to default
Settings.set({
'name': 'idle_timeout',
'value': '{}'.format(idle_timeout)
})
def test_positive_create_session(self):
"""Check if user stays authenticated with session enabled
:id: fcee7f5f-1040-41a9-bf17-6d0c24a93e22
:Steps:
1. Set use_sessions, set short expiration time
2. Authenticate, assert credentials are not demanded
on next command run
3. Wait until session expires, assert credentials
are required
:expectedresults: The session is successfully created and
expires after specified time
"""
try:
idle_timeout = Settings.list({
'search': 'name=idle_timeout'})[0][u'value']
Settings.set({'name': 'idle_timeout', 'value': 1})
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({
'username': self.uname_admin,
'password': self.password
})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# wait until session expires
sleep(70)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
result = Auth.with_user().status()
self.assertIn(
LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message']
)
finally:
# reset timeout to default
Settings.set({'name': 'idle_timeout', 'value': '{}'.format(
idle_timeout)})
def test_positive_create_session(self):
"""Check if user stays authenticated with session enabled
:id: fcee7f5f-1040-41a9-bf17-6d0c24a93e22
:Steps:
1. Set use_sessions, set short expiration time
2. Authenticate, assert credentials are not demanded
on next command run
3. Wait until session expires, assert credentials
are required
:expectedresults: The session is successfully created and
expires after specified time
"""
try:
idle_timeout = Settings.list({'search':
'name=idle_timeout'})[0][u'value']
Settings.set({'name': 'idle_timeout', 'value': 1})
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({
'username': self.uname_admin,
'password': self.password
})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# wait until session expires
sleep(70)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
result = Auth.with_user().status()
self.assertIn(LOGEDOFF_MSG.format(self.uname_admin),
result[0][u'message'])
finally:
# reset timeout to default
Settings.set({
'name': 'idle_timeout',
'value': '{}'.format(idle_timeout)
})
def test_negative_no_permissions(self):
"""Attempt to execute command out of user's permissions
:id: 756f666f-270a-4b02-b587-a2ab09b7d46c
:expectedresults: Command is not executed
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_viewer, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_viewer),
result[0][u'message'])
# try to update user from viewer's session
with self.assertRaises(CLIReturnCodeError):
User.with_user().update({
'login': self.uname_admin,
'new-login': gen_string('alpha'),
})
def test_positive_session_survives_failed_login(self):
"""Check if session stays up after failed login attempt
:id: 6c4d5c4c-eff0-411b-829f-0c2f2ec26132
:BZ: 1465552
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run login with invalid credentials
:expectedresults: The session is unchanged
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# using invalid password
with self.assertRaises(CLIReturnCodeError):
Auth.login({
'username': self.uname_viewer,
'password': gen_string('alpha')})
# checking the session status again
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_negative_no_permissions(self):
"""Attempt to execute command out of user's permissions
:id: 756f666f-270a-4b02-b587-a2ab09b7d46c
:expectedresults: Command is not executed
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_viewer, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_viewer),
result[0][u'message']
)
# try to update user from viewer's session
with self.assertRaises(CLIReturnCodeError):
User.with_user().update({
'login': self.uname_admin,
'new-login': gen_string('alpha'),
})
def test_positive_session_survives_failed_login(self):
"""Check if session stays up after failed login attempt
:id: 6c4d5c4c-eff0-411b-829f-0c2f2ec26132
:BZ: 1465552
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Run login with invalid credentials
:expectedresults: The session is unchanged
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# using invalid password
with self.assertRaises(CLIReturnCodeError):
Auth.login({
'username': self.uname_viewer,
'password': gen_string('alpha')
})
# checking the session status again
result = Auth.with_user().status()
self.assertIn(LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message'])
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
def test_positive_disable_session(self):
"""Check if user logs out when session is disabled
:id: 38ee0d85-c2fe-4cac-a992-c5dbcec11031
:Steps:
1. Set use_sessions
2. Authenticate, assert credentials are not demanded
on next command run
3. Disable use_sessions
:expectedresults: The session is terminated
"""
result = configure_sessions()
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
Auth.login({'username': self.uname_admin, 'password': self.password})
result = Auth.with_user().status()
self.assertIn(
LOGEDIN_MSG.format(self.uname_admin),
result[0][u'message']
)
# list organizations without supplying credentials
with self.assertNotRaises(CLIReturnCodeError):
Org.with_user().list()
# disabling sessions
result = configure_sessions(False)
self.assertEqual(result, 0, 'Failed to configure hammer sessions')
result = Auth.with_user().status()
self.assertIn(
NOTCONF_MSG.format(self.uname_admin),
result[0][u'message']
)
with self.assertRaises(CLIReturnCodeError):
Org.with_user().list()
