security_min_pwd_age.xml revision d25372dc8e65a9ed019a88fdf659ca61313f1b31
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!--
! CDDL HEADER START
!
! The contents of this file are subject to the terms of the
! Common Development and Distribution License, Version 1.0 only
! (the "License"). You may not use this file except in compliance
! with the License.
!
! You can obtain a copy of the license at
! See the License for the specific language governing permissions
! and limitations under the License.
!
! When distributing Covered Code, include this CDDL HEADER in each
! file and include the License file at
! trunk/opends/resource/legal-notices/OpenDS.LICENSE. If applicable,
! add the following below this CDDL HEADER, with the fields enclosed
! by brackets "[]" replaced with your own identifying information:
! Portions Copyright [yyyy] [name of copyright owner]
!
! CDDL HEADER END
!
! Copyright 2006-2008 Sun Microsystems, Inc.
! -->
<stax>
<defaultcall function="min_pwd_age"/>
<function name="min_pwd_age">
<sequence>
<!--- Test Suite information
#@TestSuiteName Minimum Password Age
#@TestSuitePurpose Test the Password Policy Minimum Password Age
#@TestSuiteGroup Minimum Password Age
#@TestScript security_min_pwd_age.xml
-->
<!--- Define default value for basedn -->
<script>
basedn = 'ou=people,ou=password tests,o=Pwd Policy Tests,dc=example,dc=com'
</script>
<!--- Test Case information
#@TestMarker Minimum Password Age
#@TestName Test Preamble
#@TestIssue none
#@TestPurpose Checking existence of ds-cfg-min-password-age
#@TestPreamble none
#@TestStep Checking existence of ds-cfg-min-password-age
#@TestPostamble none
#@TestResult Success if compareEntry returns 0.
-->
<testcase name="getTestCaseName('Preamble Check')">
<sequence>
<call function="'testCase_Preamble'"/>
<message>
'Security: Min Pwd Age: Preamble Check: Checking existence of ds-cfg-min-password-age'
</message>
<call function="'compareEntry'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
'attrToBeCompared' : 'ds-cfg-min-password-age:0 seconds',
'entryToBeCompared' : 'cn=Default Password Policy,cn=Password Policies,cn=config' }
</call>
<call function="'testCase_Postamble'"/>
</sequence>
</testcase>
<!--- Test Case information
#@TestMarker Minimum Password Age
#@TestName Test Minimum Password Age
#@TestIssue none
#@TestPurpose Test Minimum Password Age
#@TestPreamble none
#@TestStep Step 1. Admin Enabling Minimum Pwd Age
set min-password-age to 24 h
#@TestStep Step 2. User Changing Password
ldapPasswordModifyWithScript returns 53
#@TestStep Step 3. User Searching With Password
SearchObject returns 49
#@TestPostamble none
#@TestResult Success if the 3 steps are PASS
-->
<testcase name="getTestCaseName('Test')">
<sequence>
<call function="'testCase_Preamble'"/>
<message>
'Security: Min Pwd Age: Test: Step 1. Admin Enabling Minimum Pwd Age'
</message>
<call function="'modifyPwdPolicy'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
'propertyName' : 'Default Password Policy' ,
'attributeName' : 'min-password-age' ,
'attributeValue' : '24 h' }
</call>
<!--- User Change Password -->
<message>
'Security: Min Pwd Age: Test: Step 2. User Changing Password'
</message>
<call function="'ldapPasswordModifyWithScript'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'gosling' ,
'dsAuthzID' : 'dn:uid=dmiller,%s' % basedn ,
'dsNewPassword' : 'newgosling' ,
'expectedRC' : 53 }
</call>
<!--- User Search With Password -->
<message>
'Security: Min Pwd Age: Test: Step 3. User Searching With Password'
</message>
<call function="'SearchObject'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'newgosling' ,
'dsBaseDN' : 'dc=example,dc=com' ,
'dsFilter' : 'objectclass=*' ,
'extraParams' : '-s base' ,
'expectedRC' : 49 }
</call>
<call function="'testCase_Postamble'"/>
</sequence>
</testcase>
<!--- Test Case information
#@TestMarker Minimum Password Age
#@TestName Postamble Reset
#@TestIssue none
#@TestPurpose Reseting the password Policy
#@TestPreamble none
#@TestStep Step 1. Admin Disabling Minimum Pwd Age
set min-password-age to 0 s
#@TestStep Step 2. User Changing Password RC 0
#@TestStep Step 3. User Searching With Password RC 0
#@TestStep Step 4. User Changing Password RC 0
#@TestStep Step 5. User Searching With Password RC 0
#@TestPostamble none
#@TestResult Success if returns 0.
-->
<testcase name="getTestCaseName('Postamble Reset')">
<sequence>
<call function="'testCase_Preamble'"/>
<message>
'Security: Min Pwd Age: Postamble Reset: Step 1. Admin Disabling Minimum Pwd Age'
</message>
<call function="'modifyPwdPolicy'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
'propertyName' : 'Default Password Policy' ,
'attributeName' : 'min-password-age' ,
'attributeValue' : '0 s' }
</call>
<message>
'Security: Min Pwd Age: Postamble Reset: Step 2. User Changing Password'
</message>
<call function="'ldapPasswordModifyWithScript'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'gosling' ,
'dsAuthzID' : 'dn:uid=dmiller,%s' % basedn ,
'dsNewPassword' : 'newgosling' }
</call>
<!--- User Search With Password -->
<message>
'Security: Min Pwd Age: Postamble Reset: Step 3. User Searching With Password'
</message>
<call function="'SearchObject'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'newgosling' ,
'dsBaseDN' : 'dc=example,dc=com' ,
'dsFilter' : 'objectclass=*' ,
'extraParams' : '-s base' }
</call>
<!--- User Change Password -->
<message>
'Security: Min Pwd Age: Postamble Reset: Step 4. User Changing Password'
</message>
<call function="'ldapPasswordModifyWithScript'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'newgosling' ,
'dsAuthzID' : 'dn:uid=dmiller,%s' % basedn ,
'dsNewPassword' : 'gosling' }
</call>
<!--- User Search With Password -->
<message>
'Security: Min Pwd Age: Postamble Reset: Step 5. User Searching With Password'
</message>
<call function="'SearchObject'">
{ 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
'dsInstanceDn' : 'uid=dmiller,%s' % basedn ,
'dsInstancePswd' : 'gosling' ,
'dsBaseDN' : 'dc=example,dc=com' ,
'dsFilter' : 'objectclass=*' ,
'extraParams' : '-s base' }
</call>
<call function="'testCase_Postamble'"/>
</sequence>
</testcase>
</sequence>
</function>
</stax>