Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / packaging / sources / tempest / 28d6fbeeff69c59fdbd1b8242cc7ebb926cba51a / . / tempest / api / identity / base.py
blob: ada292fd71255e032f5d343fad8454e3a030e55e [file] [log] [blame]
ZhiQiang Fan39f97222013-09-20 04:49:44 +0800[diff] [blame]1# Copyright 2012 OpenStack Foundation
Jay Pipesf38eaac2012-06-21 13:37:35 -0400[diff] [blame]2# All Rights Reserved.
3#
4# Licensed under the Apache License, Version 2.0 (the "License"); you may
5# not use this file except in compliance with the License. You may obtain
6# a copy of the License at
7#
8# http://www.apache.org/licenses/LICENSE-2.0
9#
10# Unless required by applicable law or agreed to in writing, software
11# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13# License for the specific language governing permissions and limitations
14# under the License.
15
Doug Hellmann583ce2c2015-03-11 14:55:46 +0000[diff] [blame]16from oslo_log import log as logging
Masayuki Igawabfa07602015-01-20 18:47:17 +0900[diff] [blame]17from tempest_lib import exceptions as lib_exc
Jay Pipesf38eaac2012-06-21 13:37:35 -0400[diff] [blame]18
Andrea Frittoli878d5ab2015-01-30 13:22:50 +0000[diff] [blame]19from tempest.common import cred_provider
Fei Long Wangd39431f2015-05-14 11:30:48 +1200[diff] [blame]20from tempest.common.utils import data_utils
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]21from tempest import config
Attila Fazekasdc216422013-01-29 15:12:14 +0100[diff] [blame]22import tempest.test
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]23
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]24CONF = config.CONF
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]25LOG = logging.getLogger(__name__)
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]26
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]27
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]28class BaseIdentityTest(tempest.test.BaseTestCase):
Jay Pipesf38eaac2012-06-21 13:37:35 -0400[diff] [blame]29
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]30 @classmethod
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]31 def disable_user(cls, user_name):
32 user = cls.get_user_by_name(user_name)
33 cls.client.enable_disable_user(user['id'], False)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]34
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]35 @classmethod
36 def disable_tenant(cls, tenant_name):
37 tenant = cls.get_tenant_by_name(tenant_name)
38 cls.client.update_tenant(tenant['id'], enabled=False)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]39
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]40 @classmethod
41 def get_user_by_name(cls, name):
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]42 users = cls.client.get_users()
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]43 user = [u for u in users if u['name'] == name]
44 if len(user) > 0:
45 return user[0]
46
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]47 @classmethod
48 def get_tenant_by_name(cls, name):
49 try:
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]50 tenants = cls.client.list_tenants()
John Warrenacf00512015-08-06 16:13:58 -0400[diff] [blame]51 # TODO(jswarren): always retrieve 'tenants' value
52 # once both clients return full response objects
53 if 'tenants' in tenants:
54 tenants = tenants['tenants']
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]55 except AttributeError:
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]56 tenants = cls.client.list_projects()['projects']
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]57 tenant = [t for t in tenants if t['name'] == name]
58 if len(tenant) > 0:
59 return tenant[0]
60
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]61 @classmethod
62 def get_role_by_name(cls, name):
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]63 roles = cls.client.list_roles()
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]64 role = [r for r in roles if r['name'] == name]
65 if len(role) > 0:
66 return role[0]
67
68
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]69class BaseIdentityV2Test(BaseIdentityTest):
70
Andrea Frittolib21de6c2015-02-06 20:12:38 +0000[diff] [blame]71 credentials = ['primary']
72
Andrea Frittoli (andreaf)41601412015-05-12 16:39:03 +0100[diff] [blame]73 # identity v2 tests should obtain tokens and create accounts via v2
74 # regardless of the configured CONF.identity.auth_version
75 identity_version = 'v2'
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]76
77 @classmethod
78 def setup_clients(cls):
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]79 super(BaseIdentityV2Test, cls).setup_clients()
Jane Zadorozhnabfc72372015-06-16 17:32:59 +0300[diff] [blame]80 cls.non_admin_client = cls.os.identity_public_client
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]81 cls.non_admin_token_client = cls.os.token_client
82
83 @classmethod
84 def resource_setup(cls):
85 super(BaseIdentityV2Test, cls).resource_setup()
86
87 @classmethod
88 def resource_cleanup(cls):
89 super(BaseIdentityV2Test, cls).resource_cleanup()
90
91
92class BaseIdentityV2AdminTest(BaseIdentityV2Test):
93
Andrea Frittoli (andreaf)41601412015-05-12 16:39:03 +0100[diff] [blame]94 credentials = ['primary', 'admin']
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]95
96 @classmethod
97 def setup_clients(cls):
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]98 super(BaseIdentityV2AdminTest, cls).setup_clients()
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]99 cls.client = cls.os_adm.identity_client
Jane Zadorozhnabfc72372015-06-16 17:32:59 +0300[diff] [blame]100 cls.non_admin_client = cls.os.identity_client
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]101 cls.token_client = cls.os_adm.token_client
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]102
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]103 @classmethod
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]104 def resource_setup(cls):
105 super(BaseIdentityV2AdminTest, cls).resource_setup()
106 cls.data = DataGenerator(cls.client)
107
108 @classmethod
Andrea Frittoli7688e742014-09-15 12:38:22 +0100[diff] [blame]109 def resource_cleanup(cls):
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]110 cls.data.teardown_all()
Andrea Frittoli7688e742014-09-15 12:38:22 +0100[diff] [blame]111 super(BaseIdentityV2AdminTest, cls).resource_cleanup()
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]112
113
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]114class BaseIdentityV3Test(BaseIdentityTest):
115
Andrea Frittolib21de6c2015-02-06 20:12:38 +0000[diff] [blame]116 credentials = ['primary']
117
Andrea Frittoli (andreaf)41601412015-05-12 16:39:03 +0100[diff] [blame]118 # identity v3 tests should obtain tokens and create accounts via v3
119 # regardless of the configured CONF.identity.auth_version
120 identity_version = 'v3'
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]121
122 @classmethod
123 def setup_clients(cls):
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]124 super(BaseIdentityV3Test, cls).setup_clients()
125 cls.non_admin_client = cls.os.identity_v3_client
126 cls.non_admin_token = cls.os.token_v3_client
127 cls.non_admin_endpoints_client = cls.os.endpoints_client
128 cls.non_admin_region_client = cls.os.region_client
129 cls.non_admin_service_client = cls.os.service_client
130 cls.non_admin_policy_client = cls.os.policy_client
131 cls.non_admin_creds_client = cls.os.credentials_client
132
133 @classmethod
134 def resource_cleanup(cls):
135 super(BaseIdentityV3Test, cls).resource_cleanup()
136
137
138class BaseIdentityV3AdminTest(BaseIdentityV3Test):
139
Andrea Frittoli (andreaf)41601412015-05-12 16:39:03 +0100[diff] [blame]140 credentials = ['primary', 'admin']
Chris Hoge4f6117a2015-03-20 12:39:33 -0500[diff] [blame]141
142 @classmethod
143 def setup_clients(cls):
Rohan Kanadeb645e172015-02-05 17:38:59 +0530[diff] [blame]144 super(BaseIdentityV3AdminTest, cls).setup_clients()
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]145 cls.client = cls.os_adm.identity_v3_client
146 cls.token = cls.os_adm.token_v3_client
147 cls.endpoints_client = cls.os_adm.endpoints_client
ravikumar-venkatesan3052e942014-05-12 18:25:17 +0000[diff] [blame]148 cls.region_client = cls.os_adm.region_client
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]149 cls.data = DataGenerator(cls.client)
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]150 cls.service_client = cls.os_adm.service_client
151 cls.policy_client = cls.os_adm.policy_client
152 cls.creds_client = cls.os_adm.credentials_client
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]153
154 @classmethod
Andrea Frittoli7688e742014-09-15 12:38:22 +0100[diff] [blame]155 def resource_cleanup(cls):
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]156 cls.data.teardown_all()
Andrea Frittoli7688e742014-09-15 12:38:22 +0100[diff] [blame]157 super(BaseIdentityV3AdminTest, cls).resource_cleanup()
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]158
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]159 @classmethod
160 def get_user_by_name(cls, name):
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]161 users = cls.client.get_users()['users']
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]162 user = [u for u in users if u['name'] == name]
163 if len(user) > 0:
164 return user[0]
165
166 @classmethod
167 def get_tenant_by_name(cls, name):
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]168 tenants = cls.client.list_projects()['projects']
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]169 tenant = [t for t in tenants if t['name'] == name]
170 if len(tenant) > 0:
171 return tenant[0]
172
173 @classmethod
174 def get_role_by_name(cls, name):
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]175 roles = cls.client.list_roles()['roles']
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]176 role = [r for r in roles if r['name'] == name]
177 if len(role) > 0:
178 return role[0]
179
Martin Pavlasek4c3f2ab2014-04-15 17:15:15 +0200[diff] [blame]180 def delete_domain(self, domain_id):
181 # NOTE(mpavlase) It is necessary to disable the domain before deleting
182 # otherwise it raises Forbidden exception
183 self.client.update_domain(domain_id, enabled=False)
184 self.client.delete_domain(domain_id)
185
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]186
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]187class DataGenerator(object):
188
189 def __init__(self, client):
190 self.client = client
191 self.users = []
192 self.tenants = []
193 self.roles = []
194 self.role_name = None
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]195 self.v3_users = []
196 self.projects = []
197 self.v3_roles = []
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]198 self.domains = []
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]199
Andrea Frittoli422fbdf2014-03-20 10:05:18 +0000[diff] [blame]200 @property
201 def test_credentials(self):
Andrea Frittoli878d5ab2015-01-30 13:22:50 +0000[diff] [blame]202 return cred_provider.get_credentials(username=self.test_user,
203 user_id=self.user['id'],
204 password=self.test_password,
205 tenant_name=self.test_tenant,
206 tenant_id=self.tenant['id'])
Andrea Frittoli422fbdf2014-03-20 10:05:18 +0000[diff] [blame]207
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]208 def setup_test_user(self):
Sean Daguef237ccb2013-01-04 15:19:14 -0500[diff] [blame]209 """Set up a test user."""
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]210 self.setup_test_tenant()
Ken'ichi Ohmichi96508472015-03-23 01:43:42 +0000[diff] [blame]211 self.test_user = data_utils.rand_name('test_user')
212 self.test_password = data_utils.rand_name('pass')
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]213 self.test_email = self.test_user + '@testmail.tm'
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]214 self.user = self.client.create_user(self.test_user,
215 self.test_password,
216 self.tenant['id'],
217 self.test_email)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]218 self.users.append(self.user)
219
220 def setup_test_tenant(self):
Sean Daguef237ccb2013-01-04 15:19:14 -0500[diff] [blame]221 """Set up a test tenant."""
Ken'ichi Ohmichi96508472015-03-23 01:43:42 +0000[diff] [blame]222 self.test_tenant = data_utils.rand_name('test_tenant')
223 self.test_description = data_utils.rand_name('desc')
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]224 self.tenant = self.client.create_tenant(
Zhongyue Luoa1343de2013-01-04 16:21:35 +0800[diff] [blame]225 name=self.test_tenant,
226 description=self.test_description)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]227 self.tenants.append(self.tenant)
228
229 def setup_test_role(self):
Sean Daguef237ccb2013-01-04 15:19:14 -0500[diff] [blame]230 """Set up a test role."""
Masayuki Igawa259c1132013-10-31 17:48:44 +0900[diff] [blame]231 self.test_role = data_utils.rand_name('role')
David Kranzb7afa922014-12-30 10:56:26 -0500[diff] [blame]232 self.role = self.client.create_role(self.test_role)
Rohit Karajgi69e80a02012-05-15 03:54:04 -0700[diff] [blame]233 self.roles.append(self.role)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]234
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]235 def setup_test_v3_user(self):
236 """Set up a test v3 user."""
237 self.setup_test_project()
Ken'ichi Ohmichi96508472015-03-23 01:43:42 +0000[diff] [blame]238 self.test_user = data_utils.rand_name('test_user')
239 self.test_password = data_utils.rand_name('pass')
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]240 self.test_email = self.test_user + '@testmail.tm'
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]241 self.v3_user = self.client.create_user(
wanglianminb1ddea72014-02-25 17:17:30 +0800[diff] [blame]242 self.test_user,
243 password=self.test_password,
244 project_id=self.project['id'],
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]245 email=self.test_email)['user']
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]246 self.v3_users.append(self.v3_user)
247
248 def setup_test_project(self):
249 """Set up a test project."""
Ken'ichi Ohmichi96508472015-03-23 01:43:42 +0000[diff] [blame]250 self.test_project = data_utils.rand_name('test_project')
251 self.test_description = data_utils.rand_name('desc')
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]252 self.project = self.client.create_project(
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]253 name=self.test_project,
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]254 description=self.test_description)['project']
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]255 self.projects.append(self.project)
256
257 def setup_test_v3_role(self):
258 """Set up a test v3 role."""
Masayuki Igawa259c1132013-10-31 17:48:44 +0900[diff] [blame]259 self.test_role = data_utils.rand_name('role')
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]260 self.v3_role = self.client.create_role(self.test_role)['role']
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]261 self.v3_roles.append(self.v3_role)
262
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]263 def setup_test_domain(self):
264 """Set up a test domain."""
265 self.test_domain = data_utils.rand_name('test_domain')
266 self.test_description = data_utils.rand_name('desc')
David Kranzd8ccb792014-12-29 11:32:05 -0500[diff] [blame]267 self.domain = self.client.create_domain(
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]268 name=self.test_domain,
John Warren56317e02015-08-12 20:48:32 +0000[diff] [blame]269 description=self.test_description)['domain']
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]270 self.domains.append(self.domain)
271
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]272 @staticmethod
273 def _try_wrapper(func, item, **kwargs):
274 try:
275 if kwargs:
David Kranz9e2ad372014-10-06 17:06:20 -0400[diff] [blame]276 func(item['id'], **kwargs)
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]277 else:
278 func(item['id'])
Masayuki Igawabfa07602015-01-20 18:47:17 +0900[diff] [blame]279 except lib_exc.NotFound:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]280 pass
281 except Exception:
282 LOG.exception("Unexpected exception occurred in %s deletion."
283 " But ignored here." % item['id'])
284
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]285 def teardown_all(self):
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]286 # NOTE(masayukig): v3 client doesn't have v2 method.
287 # (e.g. delete_tenant) So we need to check resources existence
288 # before using client methods.
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]289 for user in self.users:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]290 self._try_wrapper(self.client.delete_user, user)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]291 for tenant in self.tenants:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]292 self._try_wrapper(self.client.delete_tenant, tenant)
Rohit Karajgi6b1e1542012-05-14 05:55:54 -0700[diff] [blame]293 for role in self.roles:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]294 self._try_wrapper(self.client.delete_role, role)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]295 for v3_user in self.v3_users:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]296 self._try_wrapper(self.client.delete_user, v3_user)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]297 for v3_project in self.projects:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]298 self._try_wrapper(self.client.delete_project, v3_project)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]299 for v3_role in self.v3_roles:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]300 self._try_wrapper(self.client.delete_role, v3_role)
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]301 for domain in self.domains:
Masayuki Igawa630a3fa2014-03-12 19:51:45 +0900[diff] [blame]302 self._try_wrapper(self.client.update_domain, domain,
303 enabled=False)
304 self._try_wrapper(self.client.delete_domain, domain)