Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / openbmc-test-automation / 9ca0d370267f68011ffc2599b4049c709123168e / . / redfish / dmtf_tools / test_redfishtool_local_user.robot
blob: 2785263b6cb4c7f1bd55f7a813555a4872b0b7de [file] [log] [blame]
*** Settings ***
Documentation Suite to test local user management.
Library OperatingSystem
Library String
Library Collections
Resource ../../lib/resource.robot
Resource ../../lib/bmc_redfish_resource.robot
Resource ../../lib/openbmc_ffdc.robot
Resource ../../lib/certificate_utils.robot
Suite Setup Suite Setup Execution
*** Variables ***
${root_cmd_args} = SEPARATOR=
... redfishtool raw -r ${OPENBMC_HOST} -u ${OPENBMC_USERNAME} -p ${OPENBMC_PASSWORD} -S Always
*** Test Cases ***
Verify Redfishtool Create Users
[Documentation] Create user via Redfishtool and verify.
[Tags] Verify_Redfishtool_Create_Users
[Teardown] Redfishtool Delete User "UserT100"
Redfishtool Create User "UserT100" "TestPwd123" "Operator" true
Redfishtool Verify User "UserT100" "Operator"
Verify Redfishtool Modify Users
[Documentation] Modify user via Redfishtool and verify.
[Tags] Verify_Redfishtool_Modify_Users
[Teardown] Redfishtool Delete User "UserT100"
Redfishtool Create User "UserT100" "TestPwd123" "Operator" true
Redfishtool Update User Role "UserT100" "Administrator"
Redfishtool Verify User "UserT100" "Administrator"
Verify Redfishtool Delete Users
[Documentation] Delete user via Redfishtool and verify.
[Tags] Verify_Redfishtool_Delete_Users
Redfishtool Create User "UserT100" "TestPwd123" "Operator" true
Redfishtool Delete User "UserT100"
${status}= Redfishtool Verify User Name Exists "UserT100"
Should Be True ${status} == False
Verify Redfishtool Login With Deleted Redfish Users
[Documentation] Verify login with deleted user via Redfishtool.
[Tags] Verify_Redfishtool_Login_With_Deleted_Redfish_Users
Redfishtool Create User "UserT100" "TestPwd123" "Operator" true
Redfishtool Delete User "UserT100"
Redfishtool Access Resource /redfish/v1/AccountService/Accounts "UserT100" "TestPwd123"
... ${HTTP_UNAUTHORIZED}
Verify Redfishtool Error Upon Creating Same Users With Different Privileges
[Documentation] Verify error upon creating same users with different privileges.
[Tags] Verify_Redfishtool_Error_Upon_Creating_Same_Users_With_Different_Privileges
[Teardown] Redfishtool Delete User "UserT100"
Redfishtool Create User "UserT100" "TestPwd123" "Operator" true
Redfishtool Create User "UserT100" "TestPwd123" "Administrator" true
... expected_error=${HTTP_BAD_REQUEST}
Verify Redfishtool Admin User Privilege
[Documentation] Verify privilege of admin user.
[Tags] Verify_Redfishtool_Admin_User_Privilege
[Teardown] Run Keywords Redfishtool Delete User "UserT100" AND
... Redfishtool Delete User "UserT101"
Redfishtool Create User "UserT100" "TestPwd123" "Administrator" true
# Verify if an user can be added by admin
Redfishtool Create User "UserT101" "TestPwd123" "Operator" true "UserT100" "TestPwd123"
Verify Redfishtool ReadOnly User Privilege
[Documentation] Verify Redfishtool ReadOnly user privilege works.
[Tags] Verify_Redfishtool_ReadOnly_User_Privilege
[Teardown] Redfishtool Delete User "UserT100"
Redfishtool Create User "UserT100" "TestPwd123" "ReadOnly" true
Redfishtool Access Resource /redfish/v1/Systems/ "UserT100" "TestPwd123"
Redfishtool Create User
... "UserT101" "TestPwd123" "Operator" true "UserT100" "TestPwd123" ${HTTP_FORBIDDEN}
*** Keywords ***
Redfishtool Access Resource
[Documentation] Access resource.
[Arguments] ${uri} ${login_user} ${login_pasword} ${expected_error}=""
# Description of argument(s):
# uri URI for resource access.
# login_user The login user name used other than default root user.
# login_pasword The login password.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. )
${user_cmd_args}= Set Variable
... redfishtool raw -r ${OPENBMC_HOST} -u ${login_user} -p ${login_pasword} -S Always
Redfishtool Get ${uri} ${user_cmd_args} ${expected_error}
Is HTTP error Expected
[Documentation] Check if the HTTP error is expected.
[Arguments] ${cmd_output} ${error_expected}
# Description of argument(s):
# cmd_output Output of an HTTP operation.
# error_expected Expected error.
@{words} = Split String ${error_expected} ,
@{errorString}= Split String ${cmd_output} ${SPACE}
Should Contain Any ${errorString} @{words}
Redfishtool Create User
[Documentation] Create new user.
[Arguments] ${user_name} ${password} ${roleID} ${enable} ${login_user}="" ${login_pasword}=""
... ${expected_error}=""
# Description of argument(s):
# user_name The user name (e.g. "test", "robert", etc.).
# password The user password (e.g. "0penBmc", "0penBmc1", etc.).
# roleID The role of user (e.g. "Administrator", "Operator", etc.).
# enable Enabled attribute of (e.g. true or false).
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. )
${user_cmd_args}= Set Variable
... redfishtool raw -r ${OPENBMC_HOST} -u ${login_user} -p ${login_pasword} -S Always
${data}= Set Variable
... '{"UserName":${user_name},"Password":${password},"RoleId":${roleId},"Enabled":${enable}}'
Run Keyword If ${login_user} == ""
... Redfishtool Post ${data} /redfish/v1/AccountService/Accounts ${root_cmd_args} ${expected_error}
... ELSE
... Redfishtool Post ${data} /redfish/v1/AccountService/Accounts ${user_cmd_args} ${expected_error}
Redfishtool Update User Role
[Documentation] Update user role.
[Arguments] ${user_name} ${newRole} ${login_user}="" ${login_pasword}=""
... ${expected_error}=""
# Description of argument(s):
# user_name The user name (e.g. "test", "robert", etc.).
# newRole The new role of user (e.g. "Administrator", "Operator", etc.).
# login_user The login user name used other than default root user.
# login_pasword The login password.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. )
${user_cmd_args}= Set Variable
... redfishtool raw -r ${OPENBMC_HOST} -u ${login_user} -p ${login_pasword} -S Always
Run Keyword If ${login_user} == ""
... Redfishtool Patch '{"RoleId":${newRole}}'
... /redfish/v1/AccountService/Accounts/${user_name} ${root_cmd_args} ${expected_error}
... ELSE
... Redfishtool Patch '{"RoleId":${newRole}}'
... /redfish/v1/AccountService/Accounts/${user_name} ${user_cmd_args} ${expected_error}
Redfishtool Delete User
[Documentation] Delete an user.
[Arguments] ${user_name} ${expected_error}=""
# Description of argument(s):
# user_name The user name (e.g. "test", "robert", etc.).
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. ).
Redfishtool Delete /redfish/v1/AccountService/Accounts/${user_name}
... ${root_cmd_args} ${expected_error}
Redfishtool Verify User
[Documentation] Verify role of the user.
[Arguments] ${user_name} ${role}
# Description of argument(s):
# user_name The user name (e.g. "test", "robert", etc.).
# role The new role of user (e.g. "Administrator", "Operator", etc.).
${user_account}= Redfishtool Get /redfish/v1/AccountService/Accounts/${user_name}
${json_obj}= Evaluate json.loads('''${user_account}''') json
Should Be equal "${json_obj["RoleId"]}" ${role}
Redfishtool Verify User Name Exists
[Documentation] Verify user name exists.
[Arguments] ${user_name}
# Description of argument(s):
# user_name The user name (e.g. "test", "robert", etc.).
${status}= Run Keyword And Return Status redfishtool Get
... /redfish/v1/AccountService/Accounts/${user_name}
[return] ${status}
Redfishtool Get
[Documentation] Execute redfishtool for GET operation.
[Arguments] ${uri} ${cmd_args}=${root_cmd_args} ${expected_error}=""
# Description of argument(s):
# uri URI for GET operation (e.g. /redfish/v1/AccountService/Accounts/).
# cmd_args Commandline arguments.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. ).
${rc} ${cmd_output}= Run and Return RC and Output ${cmd_args} GET ${uri}
Run Keyword If ${rc} != 0 Is HTTP error Expected ${cmd_output} ${expected_error}
[Return] ${cmd_output}
Redfishtool Post
[Documentation] Execute redfishtool for Post operation.
[Arguments] ${payload} ${uri} ${cmd_args}=${root_cmd_args} ${expected_error}=""
# Description of argument(s):
# payload Payload with POST operation (e.g. data for user name, password, role,
# enabled attribute)
# uri URI for POST operation (e.g. /redfish/v1/AccountService/Accounts/).
# cmd_args Commandline arguments.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. ).
${rc} ${cmd_output}= Run and Return RC and Output ${cmd_args} POST ${uri} --data=${payload}
Run Keyword If ${rc} != 0 Is HTTP error Expected ${cmd_output} ${expected_error}
[Return] ${cmd_output}
Redfishtool Patch
[Documentation] Execute redfishtool for Patch operation.
[Arguments] ${payload} ${uri} ${cmd_args}=${root_cmd_args} ${expected_error}=""
# Description of argument(s):
# payload Payload with POST operation (e.g. data for user name, role, etc. ).
# uri URI for PATCH operation (e.g. /redfish/v1/AccountService/Accounts/ ).
# cmd_args Commandline arguments.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. ).
${rc} ${cmd_output}= Run and Return RC and Output ${cmd_args} PATCH ${uri} --data=${payload}
Run Keyword If ${rc} != 0 Is HTTP error Expected ${cmd_output} ${expected_error}
[Return] ${cmd_output}
Redfishtool Delete
[Documentation] Execute redfishtool for Post operation.
[Arguments] ${uri} ${cmd_args}=${root_cmd_args} ${expected_error}=""
# Description of argument(s):
# uri URI for DELETE operation.
# cmd_args Commandline arguments.
# expected_error Expected error optionally provided in testcase (e.g. 401 /
# authentication error, etc. ).
${rc} ${cmd_output}= Run and Return RC and Output ${cmd_args} DELETE ${uri}
Run Keyword If ${rc} != 0 Is HTTP error Expected ${cmd_output} ${expected_error}
[Return] ${cmd_output}
Suite Setup Execution
[Documentation] Do suite setup execution.
${tool_exist}= Run which redfishtool
Should Not Be Empty ${tool_exist}