ipatests: Check maxlife error message where minlife > maxlife specified #6098
Conversation
|
depends on #6086 |
mrizwan93
added
ipa-4-9
mrizwan93
force-pushed
the
maxlife-test-6086
branch
from
1fe6803
to
cb585e5
Compare
| @@ -261,3 +261,35 @@ def test_minlength_add(self): | |||
| ) | |||
| assert result.returncode != 0 | |||
| assert 'minlength' in result.stderr_text | |||
|
|
|||
| def test_maxlife(self): | |||
| """Check maxlife error message where minlife > maxlife specified | |||
There was a problem hiding this comment.
If its checking only error text then i would suggest you to add this test
in test_xmlrpc/test_pwpolicy_plugin.py
There was a problem hiding this comment.
+1 to that suggestion. Integration tests are much slower.
mrizwan93
force-pushed
the
maxlife-test-6086
branch
from
cb585e5
to
80637c9
Compare
mrizwan93
force-pushed
the
maxlife-test-6086
branch
3 times, most recently
from
5ea4bc9
to
0f6d4a3
Compare
| try: | ||
| entry = api.Command['pwpolicy_mod'](krbminpwdlife=25, | ||
| krbmaxpwdlife=1)['result'] | ||
| except errors.ValidationError as e: | ||
| assert ("Maximum password life must be equal to " | ||
| "or greater than the minimum.") in str(e) |
There was a problem hiding this comment.
Is it an expected mandatory exception?
https://docs.pytest.org/en/latest/how-to/assert.html#assertions-about-expected-exceptions
There was a problem hiding this comment.
There was a problem hiding this comment.
let me rephrase myself.
if this is an expected exception then it should be raised always. Currently, the test assumes that the exception is optional. For example, try except else construction or Pytest's pytest.raises (the link above) can be used.
There was a problem hiding this comment.
Missed your point :)
Updated.
There was a problem hiding this comment.
example:
freeipa/ipatests/test_xmlrpc/test_plugins_plugin.py
Lines 56 to 60 in 637412a
mrizwan93
force-pushed
the
maxlife-test-6086
branch
2 times, most recently
from
e5c9396
to
b8224fe
Compare
|
@stanislavlevin @rcritten Could you look at this please? |
|
Hi, @mrizwan93.
|
mrizwan93
force-pushed
the
maxlife-test-6086
branch
9 times, most recently
from
4994191
to
5b1ed80
Compare
mrizwan93
force-pushed
the
maxlife-test-6086
branch
2 times, most recently
from
5848671
to
f8d4bee
Compare
|
/azp run |
|
Azure Pipelines successfully started running 1 pipeline(s). |
|
/azp run |
|
Azure Pipelines successfully started running 1 pipeline(s). |
mrizwan93
force-pushed
the
maxlife-test-6086
branch
7 times, most recently
from
a620feb
to
9939cca
Compare
|
|
||
| # when minlife is -1 | ||
| pwpolicy_cmd('pwpolicy_mod', -1) | ||
| pwpolicy_cmd('pwpolicy_add', -1, test_group101, pwpolicyadd=True) |
There was a problem hiding this comment.
The cospriority argument is missing: the method expects cmd, minlife, cospriority=None, pwpolicy_group=None, pwpolicyadd=False.
mrizwan93
force-pushed
the
maxlife-test-6086
branch
2 times, most recently
from
5519ca8
to
eb75cf2
Compare
| @@ -186,28 +282,32 @@ def test_b_pwpolicy_add(self): | |||
| def test_c_pwpolicy_find(self): | |||
| """Test that password policies are sorted and reported properly""" | |||
| result = api.Command['pwpolicy_find']()['result'] | |||
| assert len(result) == 4 | |||
| assert len(result) == 6 | |||
There was a problem hiding this comment.
Instead of modifying test_c_pwpolicy_find and test_c_pwpolicy_find_pkey_only because there are additional policies, you can simply delete the pwpolicies created in test_maxlife_pwpolicy at the end of test_maxlife_pwpolicy.
mrizwan93
force-pushed
the
maxlife-test-6086
branch
from
eb75cf2
to
48fba47
Compare
| @@ -31,6 +31,49 @@ | |||
| Declarative) | |||
|
|
|||
|
|
|||
| def pwpolicy_cmd( | |||
| cmd, minlife, cospriority=None, | |||
| pwpolicy_group=None, pwpolicyadd=False): | |||
There was a problem hiding this comment.
The method arguments are redundant: there is no need for pwpolicyadd=True/False as the cmd arg already defines either add or mod. I would remove the pwpolicyadd arg and replace if pwpolicyadd: with if cmd == "pwpolicy_add":
| def pwpolicy_cmd( | ||
| cmd, minlife, cospriority=None, | ||
| pwpolicy_group=None, pwpolicyadd=False): | ||
| if pwpolicyadd: |
There was a problem hiding this comment.
Add a method docstring: either create a new pwpolicy with max life = 1 day or modify the existing global pwpolicy.
mrizwan93
force-pushed
the
maxlife-test-6086
branch
2 times, most recently
from
dee6722
to
8edfeb6
Compare
There was a problem hiding this comment.
Hi @mrizwan93
I only have minor nitpicks, please find them inline.
| """Helper method to add or modify the password policy | ||
|
|
||
| :param cmd: Either pwpolicy_add or pwpolicy_mod | ||
| :pram minlife: minimum life for the password to exist |
There was a problem hiding this comment.
typo pram
minlife: The minimum amount of time (in hours) that must pass between two password change operations.
| cmd, minlife, cospriority=None, | ||
| pwpolicy_group=None): | ||
| """Helper method to add or modify the password policy | ||
|
|
There was a problem hiding this comment.
The add method harcodes the max life to 1 day.
mrizwan93
force-pushed
the
maxlife-test-6086
branch
2 times, most recently
from
d6e8f46
to
cc61243
Compare
When minlife > maxlife specified on commandline, it says: "ipa: ERROR: invalid 'maxlife': Maximum password life must be greater than minimum." But when minlife == maxlife specfied, It works. This test check that error message says what exactly it does related: https://pagure.io/freeipa/issue/9038 Signed-off-by: Mohammad Rizwan <myusuf@redhat.com>
mrizwan93
force-pushed
the
maxlife-test-6086
branch
from
cc61243
to
0026f65
Compare
|
/azp run |
|
Azure Pipelines successfully started running 1 pipeline(s). |
flo-renaud
added
ack
|
master:
|
When minlife > maxlife specified on commandline, it says:
"ipa: ERROR: invalid 'maxlife': Maximum password life must be
greater than minimum."
But when minlife == maxlife specfied, It works.
This test check that error message says what exactly it does.
related: https://pagure.io/freeipa/issue/9038
Signed-off-by: Mohammad Rizwan myusuf@redhat.com