Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / openbmc-test-automation / 2b8bfcaa821fe4d1bc5fbac927ca7a0ceea735e4^! / .
commit2b8bfcaa821fe4d1bc5fbac927ca7a0ceea735e4[log] [tgz]
authorshrsuman123 <shrsuman@in.ibm.com>Thu Nov 18 05:14:23 2021 -0600
committerGeorge Keishing <gkeishin@gmail.com>Wed Mar 02 06:48:30 2022 +0000
tree3911932883adc3934c173e04ad7e3b6722bac916
parentf4c86a00c3d2c2e958b6896a167e49103e60abf2 [diff]
Added security bmc connections testcases

    -Test Bmcweb Stability On Continuous Invalid Credentials Login Attempts To Redfish
    -Test Delete Object Without Session Token Should Fail
    -Test Bmcweb Stability On Continuous Redfish Delete Object Request Without Session Token

Change-Id: I84b85472a6e8a9b92f31e0815471a3f09817ede0
Signed-off-by: shrsuman123 <shrsuman@in.ibm.com>

diff --git a/security/test_bmc_connections.robot b/security/test_bmc_connections.robot
index 34cf521..83bed20 100644
--- a/security/test_bmc_connections.robot
+++ b/security/test_bmc_connections.robot

@@ -207,6 +207,46 @@
     ${fail_count}=  Get Length  ${failed_list}
     Run Keyword If  ${fail_count} > ${0}  FAIL  Could not open BMC GUI ${fail_count} times
 
+Test BMCweb Stability On Continuous Redfish Login Attempts With Invalid Credentials
+    [Documentation]  Make invalid credentials Redfish login attempts continuously and
+    ...  verify bmcweb stability by login to Redfish with valid credentials.
+    [Tags]  Test_BMCweb_Stability_On_Continuous_Redfish_Login_Attempts_With_Invalid_Credentials
+
+    Invalid Credentials Redfish Login Attempts
+
+Test User Delete Operation Without Session Token And Expect Failure
+    [Documentation]  Try to delete an object without valid session token and verifies it throws
+    ...  an unauthorised error.
+    [Tags]  Test_User_Delete_Operation_Without_Session_Token_And_Expect_Failure
+    [Setup]  Redfish.Logout
+
+    Redfish.Delete  /redfish/v1/AccountService/Accounts/test_user
+    ...  valid_status_codes=[${HTTP_UNAUTHORIZED}]
+
+
+Test Bmcweb Stability On Continuous Redfish Delete Operation Request Without Session Token
+    [Documentation]  Send delete object request without valid session token continuously and
+    ...  verify bmcweb stability by sending delete request with valid session token.
+    [Tags]  Test_Bmcweb_Stability_On_Continuous_Redfish_Delete_Operation_Request_Without_Session_Token
+
+    @{failed_iter_list}=  Create List
+
+    FOR  ${iter}  IN RANGE  ${iterations}
+        Log To Console  ${iter}th Redfish Delete Object Request without valid session token
+
+        Run Keyword And Ignore Error
+        ...  Redfish.Delete  /redfish/v1/AccountService/Accounts/test_user
+        Continue For Loop If   ${iter}%100 != 0
+
+        # Every 100th iteration, check delete operation with valid session token.
+        ${status}=  Run Keyword And Return Status
+        ...  Login And Delete User
+        Run Keyword If  '${status}' == 'False'  Append To List  ${failed_iter_list}  ${iter}
+    END
+    Log  ${failed_iter_list}
+    ${fail_count}=  Get Length  ${failed_iter_list}
+    Run Keyword If  ${fail_count} > ${0}  FAIL  Could not do Redfish delete operation ${fail_count} times
+
 *** Keywords ***
 
 Login And Configure Hostname
@@ -223,6 +263,19 @@
 Login And Create User
     [Documentation]  Login and create user
 
+    [Teardown]  Run Keywords   Redfish.Delete  /redfish/v1/AccountService/Accounts/test_user
+    ...  AND  Redfish.Logout
+
+    Redfish.Login
+
+    ${user_info}=  Create Dictionary
+    ...  UserName=test_user  Password=TestPwd123  RoleId=Operator  Enabled=${True}
+    Redfish.Post  /redfish/v1/AccountService/Accounts/  body=&{user_info}
+    ...  valid_status_codes=[${HTTP_OK}, ${HTTP_CREATED}]
+
+Login And Delete User
+    [Documentation]  Login create and delete user
+
     [Teardown]  Redfish.Logout
 
     Redfish.Login
@@ -230,8 +283,8 @@
     ${user_info}=  Create Dictionary
     ...  UserName=test_user  Password=TestPwd123  RoleId=Operator  Enabled=${True}
     Redfish.Post  /redfish/v1/AccountService/Accounts/  body=&{user_info}
-    ...  valid_status_codes=[${HTTP_OK}]
-
+    ...  valid_status_codes=[${HTTP_OK}, ${HTTP_CREATED}]
+    Redfish.Delete  /redfish/v1/AccountService/Accounts/test_user
 
 Set Account Lockout Threshold
    [Documentation]  Set user account lockout threshold.
@@ -248,3 +301,29 @@
     Input Text  ${xpath_textbox_username}  root
     Input Password  ${xpath_textbox_password}  incorrect_password
     Click Button  ${xpath_login_button}
+
+Invalid Credentials Redfish Login Attempts
+    [Documentation]  Continuous invalid credentials login attempts to Redfish and
+    ...  login to Redfish with valid credentials at times and get failed login attempts.
+    [Arguments]  ${login_username}=${OPENBMC_USERNAME}  ${login_password}=${OPENBMC_PASSWORD}
+
+    # Description of argument(s):
+    # login_username   username for login user.
+    # login_password   password for login user.
+
+    @{failed_iter_list}=  Create List
+
+    FOR  ${iter}  IN RANGE  ${iterations}
+        Log To Console  ${iter}th Redfish login with invalid credentials
+        Run Keyword And Ignore Error  Redfish.Login   ${login_username}  incorrect_password
+        Continue For Loop If   ${iter}%100 != 0
+
+        # Every 100th iteration, check Redfish is responsive.
+        ${status}=  Run Keyword And Return Status
+        ...  Redfish.Login  ${login_username}   ${login_password}
+        Run Keyword If  '${status}' == 'False'  Append To List  ${failed_iter_list}  ${iter}
+        Redfish.Logout
+    END
+    Log  ${failed_iter_list}
+    ${fail_count}=  Get Length  ${failed_iter_list}
+    Run Keyword If  ${fail_count} > ${0}  FAIL  Could not Login to Redfish ${fail_count} times