password_policy/min_pwd_age/pwp_min_pwd_age_tests.xml

5789N/A<?xml version="1.0" encoding="UTF-8" standalone="no"?>
5789N/A<!DOCTYPE stax SYSTEM "/shared/stax.dtd">
5789N/A<!--
5789N/A ! CDDL HEADER START
5789N/A !
5789N/A ! The contents of this file are subject to the terms of the
5789N/A ! Common Development and Distribution License, Version 1.0 only
5789N/A ! (the "License").  You may not use this file except in compliance
5789N/A ! with the License.
5789N/A !
6982N/A ! You can obtain a copy of the license at legal-notices/CDDLv1_0.txt
6982N/A ! or http://forgerock.org/license/CDDLv1.0.html.
5789N/A ! See the License for the specific language governing permissions
5789N/A ! and limitations under the License.
5789N/A !
5789N/A ! When distributing Covered Code, include this CDDL HEADER in each
6982N/A ! file and include the License file at legal-notices/CDDLv1_0.txt.
6982N/A ! If applicable, add the following below this CDDL HEADER, with the
6982N/A ! fields enclosed by brackets "[]" replaced with your own identifying
6982N/A ! information:
5789N/A !      Portions Copyright [yyyy] [name of copyright owner]
5789N/A !
5789N/A ! CDDL HEADER END
5789N/A !
5789N/A !      Copyright 2006-2008 Sun Microsystems, Inc.
5789N/A !      Portions Copyright 2012 ForgeRock AS
5789N/A ! -->
5789N/A<stax>
5789N/A
5789N/A  <!--- Test Case information
5789N/A    #@TestMarker          Minimum Password Age
5789N/A    #@TestName            Default Minimum Password Age
5789N/A    #@TestIssue           none
5789N/A    #@TestPurpose         Checking Minimum Password Age
5789N/A    #@TestPreamble        none
5789N/A    #@TestStep            Checking existence of ds-cfg-min-password-age
5789N/A    #@TestPostamble       none
5789N/A    #@TestResult          Success if compareEntry returns 0.
5789N/A  -->
5789N/A  <function name="pwp_min_pwd_age_001" scope="local">
5789N/A    <testcase name="getTestCaseName('PWP Default Minimum Password Age')">
5789N/A      <sequence>
5789N/A        <try>
5789N/A          <sequence>
5789N/A
5789N/A            <call function="'testCase_Preamble'"/>
5789N/A
5789N/A            <message>
5789N/A               'Test Name = %s' % STAXCurrentTestcase
5789N/A            </message>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s Get Min Password Age.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <script>
5789N/A              options=[]
5789N/A              options.append('--policy-name "Default Password Policy"')
5789N/A              options.append('--property "min-password-age"')
5789N/A              dsconfigOptions=' '.join(options)
5789N/A            </script>
5789N/A
5789N/A            <call function="'dsconfig'">
5789N/A              { 'dsInstanceHost'      : DIRECTORY_INSTANCE_HOST,
5789N/A                'dsInstanceAdminPort' : DIRECTORY_INSTANCE_ADMIN_PORT,
5789N/A                'dsInstanceDn'        : DIRECTORY_INSTANCE_DN,
5789N/A                'dsInstancePswd'      : DIRECTORY_INSTANCE_PSWD,
5789N/A                'subcommand'          : 'get-password-policy-prop',
5789N/A                'optionsString'       : dsconfigOptions,
5789N/A                'expectedString'      : 'min-password-age : 0 s'
5789N/A
5789N/A              }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s Compare Min Password Age Attribute.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'compareEntry'">
5789N/A              { 'dsInstanceHost'      : DIRECTORY_INSTANCE_HOST ,
5789N/A                'dsInstancePort'      : DIRECTORY_INSTANCE_PORT ,
5789N/A                'dsInstanceDn'        : DIRECTORY_INSTANCE_DN ,
5789N/A                'dsInstancePswd'      : DIRECTORY_INSTANCE_PSWD ,
5789N/A                'attrToBeCompared'    : 'ds-cfg-min-password-age:0 seconds',
5789N/A                'entryToBeCompared'   : 'cn=Default Password Policy,cn=Password Policies,cn=config' }
5789N/A            </call>
5789N/A
5789N/A          </sequence>
5789N/A
5789N/A          <catch exception="'STAXException'" typevar="eType" var="eInfo">
5789N/A            <message log="1" level="'fatal'">
5789N/A              '%s: Test failed. eInfo(%s)' % (eType,eInfo)
5789N/A            </message>
5789N/A          </catch>
5789N/A          <finally>
5789N/A            <sequence>
5789N/A              <call function="'testCase_Postamble'"/>
5789N/A            </sequence>
5789N/A          </finally>
5789N/A        </try>
5789N/A      </sequence>
5789N/A    </testcase>
5789N/A  </function>
5789N/A
5789N/A  <!--- Test Case information
5789N/A    #@TestMarker          Minimum Password Age
5789N/A    #@TestName            Minimum Password Age
5789N/A    #@TestIssue           none
5789N/A    #@TestPurpose         Test Minimum Password Age
5789N/A    #@TestPreamble        none
5789N/A    #@TestStep            Step 1. Admin Enabling Minimum Pwd Age
5789N/A                          set min-password-age to 24 h
5789N/A    #@TestStep            Step 2. User Changing Password
5789N/A                          ldapPasswordModifyWithScript returns 53
5789N/A    #@TestStep            Step 3. User Searching With Password
5789N/A                          SearchObject returns 49
5789N/A    #@TestPostamble       none
5789N/A    #@TestResult          Success if the 3 steps are PASS
5789N/A  -->
5789N/A  <function name="pwp_min_pwd_age_002" scope="local">
5789N/A    <testcase name="getTestCaseName('PWP Minimum Password Age')">
5789N/A      <sequence>
5789N/A        <try>
5789N/A          <sequence>
5789N/A
5789N/A            <call function="'testCase_Preamble'"/>
5789N/A
5789N/A            <message>
5789N/A               'Test Name = %s' % STAXCurrentTestcase
5789N/A            </message>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s Set Lockout Duration to 24h.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <script>
5789N/A              options=[]
5789N/A              options.append('--policy-name "Default Password Policy"')
5789N/A              options.append('--set "min-password-age:24h"')
5789N/A              dsconfigOptions=' '.join(options)
5789N/A            </script>
5789N/A
5789N/A            <call function="'dsconfig'">
5789N/A              { 'dsInstanceHost'      : DIRECTORY_INSTANCE_HOST,
5789N/A                'dsInstanceAdminPort' : DIRECTORY_INSTANCE_ADMIN_PORT,
5789N/A                'dsInstanceDn'        : DIRECTORY_INSTANCE_DN,
5789N/A                'dsInstancePswd'      : DIRECTORY_INSTANCE_PSWD,
5789N/A                'subcommand'          : 'set-password-policy-prop',
5789N/A                'optionsString'       : dsconfigOptions
5789N/A              }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Changing Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'ldapPasswordModifyWithScript'">
5789N/A                  { 'dsInstanceHost'         : DIRECTORY_INSTANCE_HOST ,
5789N/A                    'dsInstancePort'         : DIRECTORY_INSTANCE_PORT ,
5789N/A                    'dsInstanceDn'           : 'uid=dmiller,%s' % basedn ,
5789N/A                    'dsInstancePswd'         : 'gosling' ,
5789N/A                    'dsAuthzID'              : 'dn:uid=dmiller,%s' % basedn ,
5789N/A                    'dsNewPassword'          : 'newgosling' ,
5789N/A                    'expectedRC'             : 53  }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Searching With Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'SearchObject'">
5789N/A              { 'dsInstanceHost'   : DIRECTORY_INSTANCE_HOST ,
5789N/A                'dsInstancePort'   : DIRECTORY_INSTANCE_PORT ,
5789N/A                'dsInstanceDn'     : 'uid=dmiller,%s' % basedn ,
5789N/A                'dsInstancePswd'   : 'newgosling' ,
5789N/A                'dsBaseDN'         : 'dc=example,dc=com' ,
5789N/A                'dsFilter'         : 'objectclass=*'  ,
5789N/A                'extraParams'      : '-s base' ,
5789N/A                'expectedRC'       : 49 }
5789N/A            </call>
5789N/A          </sequence>
5789N/A
5789N/A          <catch exception="'STAXException'" typevar="eType" var="eInfo">
5789N/A            <message log="1" level="'fatal'">
5789N/A              '%s: Test failed. eInfo(%s)' % (eType,eInfo)
5789N/A            </message>
5789N/A          </catch>
5789N/A          <finally>
5789N/A            <sequence>
5789N/A              <call function="'testCase_Postamble'"/>
5789N/A            </sequence>
5789N/A          </finally>
5789N/A        </try>
5789N/A      </sequence>
5789N/A    </testcase>
5789N/A  </function>
5789N/A
5789N/A
5789N/A  <!--- Test Case information
5789N/A    #@TestMarker          Minimum Password Age
5789N/A    #@TestName            Reset Minimum Password Age Properties
5789N/A    #@TestIssue           none
5789N/A    #@TestPurpose         Reseting the password Policy
5789N/A    #@TestPreamble        none
5789N/A    #@TestStep            Step 1. Admin Disabling Minimum Pwd Age
5789N/A                          set min-password-age to 0 s
5789N/A    #@TestStep            Step 2. User Changing Password RC 0
5789N/A    #@TestStep            Step 3. User Searching With Password RC 0
5789N/A    #@TestStep            Step 4. User Changing Password RC 0
5789N/A    #@TestStep            Step 5. User Searching With Password RC 0
5789N/A    #@TestPostamble       none
5789N/A    #@TestResult          Success if  returns 0.
5789N/A  -->
5789N/A  <function name="pwp_min_pwd_age_003" scope="local">
5789N/A    <testcase name="getTestCaseName('PWP Reset Minimum Password Age Properties')">
5789N/A      <sequence>
5789N/A        <try>
5789N/A          <sequence>
5789N/A
5789N/A            <call function="'testCase_Preamble'"/>
5789N/A
5789N/A            <message>
5789N/A               'Test Name = %s' % STAXCurrentTestcase
5789N/A            </message>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s Admin Disabling Minimum Pwd Age.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s Reset Lockout Duration.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <script>
5789N/A              options=[]
5789N/A              options.append('--policy-name "Default Password Policy"')
5789N/A              options.append('--reset "min-password-age"')
5789N/A              dsconfigOptions=' '.join(options)
5789N/A            </script>
5789N/A
5789N/A            <call function="'dsconfig'">
5789N/A              { 'dsInstanceHost'      : DIRECTORY_INSTANCE_HOST,
5789N/A                'dsInstanceAdminPort' : DIRECTORY_INSTANCE_ADMIN_PORT,
5789N/A                'dsInstanceDn'        : DIRECTORY_INSTANCE_DN,
5789N/A                'dsInstancePswd'      : DIRECTORY_INSTANCE_PSWD,
5789N/A                'subcommand'          : 'set-password-policy-prop',
5789N/A                'optionsString'       : dsconfigOptions
5789N/A              }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Changing Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'ldapPasswordModifyWithScript'">
5789N/A                  { 'dsInstanceHost'         : DIRECTORY_INSTANCE_HOST ,
5789N/A                    'dsInstancePort'         : DIRECTORY_INSTANCE_PORT ,
5789N/A                    'dsInstanceDn'           : 'uid=dmiller,%s' % basedn ,
5789N/A                    'dsInstancePswd'         : 'gosling' ,
5789N/A                    'dsAuthzID'              : 'dn:uid=dmiller,%s' % basedn ,
5789N/A                    'dsNewPassword'          : 'newgosling' }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Searching With Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'SearchObject'">
5789N/A              { 'dsInstanceHost'   : DIRECTORY_INSTANCE_HOST ,
5789N/A                'dsInstancePort'   : DIRECTORY_INSTANCE_PORT ,
5789N/A                'dsInstanceDn'     : 'uid=dmiller,%s' % basedn ,
5789N/A                'dsInstancePswd'   : 'newgosling' ,
5789N/A                'dsBaseDN'         : 'dc=example,dc=com' ,
5789N/A                'dsFilter'         : 'objectclass=*'  ,
5789N/A                'extraParams'      : '-s base' }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Changing Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'ldapPasswordModifyWithScript'">
5789N/A                  { 'dsInstanceHost'         : DIRECTORY_INSTANCE_HOST ,
5789N/A                    'dsInstancePort'         : DIRECTORY_INSTANCE_PORT ,
5789N/A                    'dsInstanceDn'           : 'uid=dmiller,%s' % basedn ,
5789N/A                    'dsInstancePswd'         : 'newgosling' ,
5789N/A                    'dsAuthzID'              : 'dn:uid=dmiller,%s' % basedn ,
5789N/A                    'dsNewPassword'          : 'gosling' }
5789N/A            </call>
5789N/A
5789N/A            <call function="'testStep'">
5789N/A              { 'stepMessage' : '%s User Searching With Password.' % msg1 }
5789N/A            </call>
5789N/A
5789N/A            <call function="'SearchObject'">
5789N/A              { 'dsInstanceHost'   : DIRECTORY_INSTANCE_HOST ,
5789N/A                'dsInstancePort'   : DIRECTORY_INSTANCE_PORT ,
5789N/A                'dsInstanceDn'     : 'uid=dmiller,%s' % basedn ,
5789N/A                'dsInstancePswd'   : 'gosling' ,
5789N/A                'dsBaseDN'         : 'dc=example,dc=com' ,
5789N/A                'dsFilter'         : 'objectclass=*'  ,
5789N/A                'extraParams'      : '-s base' }
5789N/A            </call>
5789N/A
5789N/A          </sequence>
5789N/A
5789N/A          <catch exception="'STAXException'" typevar="eType" var="eInfo">
5789N/A            <message log="1" level="'fatal'">
5789N/A              '%s: Test failed. eInfo(%s)' % (eType,eInfo)
5789N/A            </message>
5789N/A          </catch>
5789N/A          <finally>
5789N/A            <sequence>
5789N/A              <call function="'testCase_Postamble'"/>
5789N/A            </sequence>
5789N/A          </finally>
5789N/A        </try>
5789N/A      </sequence>
5789N/A    </testcase>
5789N/A  </function>
5789N/A
5789N/A</stax>