tempest/api/identity/v3/test_users.py - packaging/sources/tempest - Gitiles

 # Copyright 2015 OpenStack Foundation
 # All Rights Reserved.
 #
 #    Licensed under the Apache License, Version 2.0 (the "License"); you may
 #    not use this file except in compliance with the License. You may obtain
 #    a copy of the License at
 #
 #         http://www.apache.org/licenses/LICENSE-2.0
 #
 #    Unless required by applicable law or agreed to in writing, software
 #    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 #    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 #    License for the specific language governing permissions and limitations
 #    under the License.

 import copy

 from tempest_lib.common.utils import data_utils
 from tempest_lib import exceptions

 from tempest.api.identity import base
 from tempest import manager
 from tempest import test


 class IdentityV3UsersTest(base.BaseIdentityV3Test):

     @classmethod
     def resource_setup(cls):
         super(IdentityV3UsersTest, cls).resource_setup()
         cls.creds = cls.os.credentials
         cls.user_id = cls.creds.user_id
         cls.username = cls.creds.username
         cls.password = cls.creds.password

     @test.idempotent_id('ad71bd23-12ad-426b-bb8b-195d2b635f27')
     def test_user_update_own_password(self):
         self.new_creds = copy.copy(self.creds.credentials)
         self.new_creds.password = data_utils.rand_password()
         # we need new non-admin Identity V3 Client with new credentials, since
         # current non_admin_client token will be revoked after updating
         # password
         self.non_admin_client_for_cleanup = copy.copy(self.non_admin_client)
         self.non_admin_client_for_cleanup.auth_provider = (
             manager.get_auth_provider(self.new_creds))
         user_id = self.creds.credentials.user_id
         old_pass = self.creds.credentials.password
         new_pass = self.new_creds.password
         # to change password back. important for allow_tenant_isolation = false
         self.addCleanup(
             self.non_admin_client_for_cleanup.update_user_password,
             user_id=user_id,
             password=old_pass,
             original_password=new_pass)

         # user updates own password
         self.non_admin_client.update_user_password(
             user_id=user_id, password=new_pass, original_password=old_pass)

         # check authorization with new password
         self.non_admin_token.auth(user_id=self.user_id, password=new_pass)

         # authorize with old token should lead to IdentityError (404 code)
         self.assertRaises(exceptions.IdentityError,
                           self.non_admin_token.auth,
                           token=self.non_admin_client.token)

         # authorize with old password should lead to Unauthorized
         self.assertRaises(exceptions.Unauthorized,
                           self.non_admin_token.auth,
                           user_id=self.user_id,
                           password=old_pass)
	# Copyright 2015 OpenStack Foundation
	# All Rights Reserved.
	#
	# Licensed under the Apache License, Version 2.0 (the "License"); you may
	# not use this file except in compliance with the License. You may obtain
	# a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
	# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	# License for the specific language governing permissions and limitations
	# under the License.

	import copy

	from tempest_lib.common.utils import data_utils
	from tempest_lib import exceptions

	from tempest.api.identity import base
	from tempest import manager
	from tempest import test


	class IdentityV3UsersTest(base.BaseIdentityV3Test):

	@classmethod
	def resource_setup(cls):
	super(IdentityV3UsersTest, cls).resource_setup()
	cls.creds = cls.os.credentials
	cls.user_id = cls.creds.user_id
	cls.username = cls.creds.username
	cls.password = cls.creds.password

	@test.idempotent_id('ad71bd23-12ad-426b-bb8b-195d2b635f27')
	def test_user_update_own_password(self):
	self.new_creds = copy.copy(self.creds.credentials)
	self.new_creds.password = data_utils.rand_password()
	# we need new non-admin Identity V3 Client with new credentials, since
	# current non_admin_client token will be revoked after updating
	# password
	self.non_admin_client_for_cleanup = copy.copy(self.non_admin_client)
	self.non_admin_client_for_cleanup.auth_provider = (
	manager.get_auth_provider(self.new_creds))
	user_id = self.creds.credentials.user_id
	old_pass = self.creds.credentials.password
	new_pass = self.new_creds.password
	# to change password back. important for allow_tenant_isolation = false
	self.addCleanup(
	self.non_admin_client_for_cleanup.update_user_password,
	user_id=user_id,
	password=old_pass,
	original_password=new_pass)

	# user updates own password
	self.non_admin_client.update_user_password(
	user_id=user_id, password=new_pass, original_password=old_pass)

	# check authorization with new password
	self.non_admin_token.auth(user_id=self.user_id, password=new_pass)

	# authorize with old token should lead to IdentityError (404 code)
	self.assertRaises(exceptions.IdentityError,
	self.non_admin_token.auth,
	token=self.non_admin_client.token)

	# authorize with old password should lead to Unauthorized
	self.assertRaises(exceptions.Unauthorized,
	self.non_admin_token.auth,
	user_id=self.user_id,
	password=old_pass)