1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
|
# Copyright (c) 2017 Cable Television Laboratories, Inc. ("CableLabs")
# and others. All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at:
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
import uuid
from snaps.openstack.create_project import ProjectSettings
from snaps.openstack.create_user import UserSettings
from snaps.openstack.tests.os_source_file_test import OSComponentTestCase
from snaps.openstack.utils import keystone_utils, neutron_utils
__author__ = 'spisarski'
class KeystoneSmokeTests(OSComponentTestCase):
"""
Tests to ensure that the neutron client can communicate with the cloud
"""
def test_keystone_connect_success(self):
"""
Tests to ensure that the proper credentials can connect.
"""
keystone = keystone_utils.keystone_client(self.os_creds)
users = keystone.users.list()
self.assertIsNotNone(users)
def test_keystone_connect_fail(self):
"""
Tests to ensure that the improper credentials cannot connect.
"""
from snaps.openstack.os_credentials import OSCreds
with self.assertRaises(Exception):
keystone = keystone_utils.keystone_client(OSCreds(
username='user', password='pass', auth_url='url',
project_name='project'))
keystone.users.list()
class KeystoneUtilsTests(OSComponentTestCase):
"""
Test for the CreateImage class defined in create_image.py
"""
def setUp(self):
"""
Instantiates the CreateImage object that is responsible for downloading
and creating an OS image file within OpenStack
"""
self.guid = self.__class__.__name__ + '-' + str(uuid.uuid4())
self.username = self.guid + '-username'
self.user = None
self.project_name = self.guid + '-projName'
self.project = None
self.role = None
self.keystone = keystone_utils.keystone_client(self.os_creds)
def tearDown(self):
"""
Cleans the remote OpenStack objects
"""
if self.project:
neutron = neutron_utils.neutron_client(self.os_creds)
default_sec_grp = neutron_utils.get_security_group(
neutron, sec_grp_name='default',
project_id=self.project.id)
if default_sec_grp:
try:
neutron_utils.delete_security_group(
neutron, default_sec_grp)
except:
pass
keystone_utils.delete_project(self.keystone, self.project)
if self.user:
keystone_utils.delete_user(self.keystone, self.user)
if self.role:
keystone_utils.delete_role(self.keystone, self.role)
def test_create_user_minimal(self):
"""
Tests the keystone_utils.create_user() function
"""
user_settings = UserSettings(
name=self.username,
password=str(uuid.uuid4()),
domain_name=self.os_creds.user_domain_name)
self.user = keystone_utils.create_user(self.keystone, user_settings)
self.assertEqual(self.username, self.user.name)
user = keystone_utils.get_user(self.keystone, self.username)
self.assertIsNotNone(user)
self.assertEqual(self.user, user)
def test_create_project_minimal(self):
"""
Tests the keyston_utils.create_project() funtion
"""
project_settings = ProjectSettings(
name=self.project_name, domain=self.os_creds.project_domain_name)
self.project = keystone_utils.create_project(self.keystone,
project_settings)
self.assertEqual(self.project_name, self.project.name)
project = keystone_utils.get_project(
keystone=self.keystone, project_settings=project_settings)
self.assertIsNotNone(project)
self.assertEqual(self.project_name, self.project.name)
domain = keystone_utils.get_domain_by_id(
self.keystone, project.domain_id)
if self.keystone.version == keystone_utils.V2_VERSION_STR:
self.assertIsNone(domain)
else:
self.assertIsNotNone(domain)
self.assertEqual(domain.id, project.domain_id)
def test_get_endpoint_success(self):
"""
Tests to ensure that proper credentials and proper service type can
succeed.
"""
endpoint = keystone_utils.get_endpoint(self.os_creds,
service_type='identity')
self.assertIsNotNone(endpoint)
def test_get_endpoint_fail_without_proper_service(self):
"""
Tests to ensure that proper credentials and improper service type
cannot succeed.
"""
with self.assertRaises(Exception):
keystone_utils.get_endpoint(self.os_creds, service_type='glance')
def test_get_endpoint_fail_without_proper_credentials(self):
"""
Tests to ensure that improper credentials and proper service type
cannot succeed.
"""
from snaps.openstack.os_credentials import OSCreds
with self.assertRaises(Exception):
keystone_utils.get_endpoint(
OSCreds(username='user', password='pass', auth_url='url',
project_name='project'),
service_type='image')
def test_get_endpoint_with_each_interface(self):
"""
Tests to ensure that endpoint urls are obtained with
'public', 'internal' and 'admin' interface
"""
endpoint_public = keystone_utils.get_endpoint(self.os_creds,
service_type='image',
interface='public')
endpoint_internal = keystone_utils.get_endpoint(self.os_creds,
service_type='image',
interface='internal')
endpoint_admin = keystone_utils.get_endpoint(self.os_creds,
service_type='image',
interface='admin')
self.assertIsNotNone(endpoint_public)
self.assertIsNotNone(endpoint_internal)
self.assertIsNotNone(endpoint_admin)
def test_grant_user_role_to_project(self):
"""
Tests the keystone_utils function grant_user_role_to_project()
:return:
"""
user_settings = UserSettings(
name=self.username, password=str(uuid.uuid4()),
domain_name=self.os_creds.user_domain_name)
self.user = keystone_utils.create_user(self.keystone, user_settings)
self.assertEqual(self.username, self.user.name)
project_settings = ProjectSettings(
name=self.project_name, domain=self.os_creds.project_domain_name)
self.project = keystone_utils.create_project(self.keystone,
project_settings)
self.assertEqual(self.project_name, self.project.name)
role_name = self.guid + '-role'
self.role = keystone_utils.create_role(self.keystone, role_name)
self.assertEqual(role_name, self.role.name)
keystone_utils.grant_user_role_to_project(
self.keystone, self.role, self.user, self.project)
user_roles = keystone_utils.get_roles_by_user(
self.keystone, self.user, self.project)
self.assertIsNotNone(user_roles)
self.assertEqual(1, len(user_roles))
self.assertEqual(self.role.id, user_roles[0].id)
|
