security_pwd_CRYPT.xml revision 75e4d72341a69fa125aeab6e326e49a5422a9eac
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster<?xml version="1.0" encoding="UTF-8" standalone="no"?>
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! CDDL HEADER START
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! The contents of this file are subject to the terms of the
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! Common Development and Distribution License, Version 1.0 only
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! (the "License"). You may not use this file except in compliance
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! with the License.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! You can obtain a copy of the license at
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! trunk/opends/resource/legal-notices/OpenDS.LICENSE
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! or https://OpenDS.dev.java.net/OpenDS.LICENSE.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! See the License for the specific language governing permissions
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! and limitations under the License.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! When distributing Covered Code, include this CDDL HEADER in each
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! file and include the License file at
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! trunk/opends/resource/legal-notices/OpenDS.LICENSE. If applicable,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! add the following below this CDDL HEADER, with the fields enclosed
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! by brackets "[]" replaced with your own identifying information:
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! Portions Copyright [yyyy] [name of copyright owner]
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! CDDL HEADER END
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! Copyright 2007-2008 Sun Microsystems, Inc.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster ! Portions Copyright 2013 ForgeRock AS
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster Place suite-specific test information here.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestSuiteName CRYPT Tests
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestSuitePurpose Test the CRYPT storage scheme.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestSuiteGroup CRYPT Storage Scheme Tests
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <!--- Test case: Admin Change To CRYPT Storage Scheme -->
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster Place test-specific test information here.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster The tag, TestMarker, must be the same as the tag, TestSuiteName.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestMarker CRYPT Tests
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestName CRYPT Preamble
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestIssue none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPurpose Change password storage scheme to CRYPT.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPreamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestStep Client calls ldapmodify
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster with the filename to the appropriate file.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPostamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestResult Success if OpenDS returns 0
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <testcase name="getTestCaseName('CRYPT - Preamble')">
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'Security: Pwd Storage CRYPT: Preamble - Admin Changing to CRYPT Storage Scheme'
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'propertyName' : 'Default Password Policy' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributeName' : 'default-password-storage-scheme' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributeValue' : 'CRYPT' }
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <!--- Test Case : User Change Password CRYPT Scheme-->
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster Place test-specific test information here.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster The tag, TestMarker, must be the same as the tag, TestSuiteName.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestMarker CRYPT Tests
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestName CRYPT Test 1
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestIssue none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPurpose Test CRYPT password storage scheme.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPreamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestStep Admin changes a user's password to convert
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster so it is stored as CRYPT scheme.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestStep The user binds with the new password.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestStep Admin retrieves the user's password and
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster checks for the required {CRYPT} prefix.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPostamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestResult Success if OpenDS returns 0 for the ldap
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster operations and the password has the {CRYPT} prefix.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <testcase name="getTestCaseName('CRYPT - Pwd Change')">
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'Security: Pwd Storage CRYPT: User Changing Password'
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstanceDn' : 'uid=rdaugherty,ou=people,ou=password tests,o=Pwd Storage Tests,dc=example,dc=com' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePswd' : 'apples' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'DNToModify' : 'uid=rdaugherty,ou=people,ou=password tests,o=Pwd Storage Tests,dc=example,dc=com' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributeName' : 'userpassword' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'newAttributeValue' : 'CRYPTapples' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'changetype' : 'replace' }
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'Security: Pwd Storage CRYPT: User Binding With New Password'
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstanceDn' : 'uid=rdaugherty,ou=people,ou=password tests,o=Pwd Storage Tests,dc=example,dc=com' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePswd' : 'CRYPTapples' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsBaseDN' : 'dc=example,dc=com' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsFilter' : 'objectclass=*' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'extraParams' : '-s base' }
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'Security: Pwd Storage CRYPT: Checking for CRYPT Scheme On New Password'
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsBaseDN' : 'uid=rdaugherty,ou=people,ou=password tests,o=Pwd Storage Tests,dc=example,dc=com' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsFilter' : 'objectclass=*' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributes' : 'userpassword' }
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster returnString = STAXResult[0][1]
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'returnString' : returnString ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'expectedString' : '{CRYPT}' }
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <!--- Test case: Admin Reset To SCRYPT Storage Scheme -->
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster Place test-specific test information here.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster The tag, TestMarker, must be the same as the tag, TestSuiteName.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestMarker CRYPT Tests
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestName CRYPT Postamble
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestIssue none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPurpose Reset password storage scheme to the default, SCRYPT.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPreamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestStep Client calls ldapmodify
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster with the filename to the appropriate file.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestPostamble none
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster #@TestResult Success if OpenDS returns 0
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster <testcase name="getTestCaseName('CRYPT - Postamble')">
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'Security: Pwd Storage CRYPT: Postamble - Admin Resetting to SCRYPT Storage Scheme'
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'propertyName' : 'Default Password Policy' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributeName' : 'default-password-storage-scheme' ,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster 'attributeValue' : 'Salted SHA-1' }