snaps/openstack/utils/tests/keystone_utils_tests.py

   1 # Copyright (c) 2017 Cable Television Laboratories, Inc. ("CableLabs")
   2 #                    and others.  All rights reserved.
   3 #
   4 # Licensed under the Apache License, Version 2.0 (the "License");
   5 # you may not use this file except in compliance with the License.
   6 # You may obtain a copy of the License at:
   7 #
   8 #     http://www.apache.org/licenses/LICENSE-2.0
   9 #
  10 # Unless required by applicable law or agreed to in writing, software
  11 # distributed under the License is distributed on an "AS IS" BASIS,
  12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  13 # See the License for the specific language governing permissions and
  14 # limitations under the License.
  15 import uuid
  16
  17 from snaps.openstack.create_project import ProjectSettings
  18 from snaps.openstack.create_user import UserSettings
  19 from snaps.openstack.tests.os_source_file_test import OSComponentTestCase
  20 from snaps.openstack.utils import keystone_utils, neutron_utils
  21
  22 __author__ = 'spisarski'
  23
  24
  25 class KeystoneSmokeTests(OSComponentTestCase):
  26     """
  27     Tests to ensure that the neutron client can communicate with the cloud
  28     """
  29
  30     def test_keystone_connect_success(self):
  31         """
  32         Tests to ensure that the proper credentials can connect.
  33         """
  34         keystone = keystone_utils.keystone_client(self.os_creds)
  35
  36         users = keystone.users.list()
  37         self.assertIsNotNone(users)
  38
  39     def test_keystone_connect_fail(self):
  40         """
  41         Tests to ensure that the improper credentials cannot connect.
  42         """
  43         from snaps.openstack.os_credentials import OSCreds
  44
  45         with self.assertRaises(Exception):
  46             keystone = keystone_utils.keystone_client(OSCreds(
  47                 username='user', password='pass', auth_url='url',
  48                 project_name='project'))
  49             keystone.users.list()
  50
  51
  52 class KeystoneUtilsTests(OSComponentTestCase):
  53     """
  54     Test for the CreateImage class defined in create_image.py
  55     """
  56
  57     def setUp(self):
  58         """
  59         Instantiates the CreateImage object that is responsible for downloading
  60         and creating an OS image file within OpenStack
  61         """
  62         self.guid = self.__class__.__name__ + '-' + str(uuid.uuid4())
  63         self.username = self.guid + '-username'
  64         self.user = None
  65
  66         self.project_name = self.guid + '-projName'
  67         self.project = None
  68         self.role = None
  69         self.keystone = keystone_utils.keystone_client(self.os_creds)
  70
  71     def tearDown(self):
  72         """
  73         Cleans the remote OpenStack objects
  74         """
  75         if self.project:
  76             neutron = neutron_utils.neutron_client(self.os_creds)
  77             default_sec_grp = neutron_utils.get_security_group(
  78                 neutron, 'default',
  79                 tenant_id=self.project.id)
  80             if default_sec_grp:
  81                 try:
  82                     neutron_utils.delete_security_group(
  83                         neutron, default_sec_grp)
  84                 except:
  85                     pass
  86
  87             keystone_utils.delete_project(self.keystone, self.project)
  88
  89         if self.user:
  90             keystone_utils.delete_user(self.keystone, self.user)
  91
  92         if self.role:
  93             keystone_utils.delete_role(self.keystone, self.role)
  94
  95     def test_create_user_minimal(self):
  96         """
  97         Tests the keystone_utils.create_user() function
  98         """
  99         user_settings = UserSettings(
 100             name=self.username,
 101             password=str(uuid.uuid4()),
 102             domain_name=self.os_creds.user_domain_name)
 103         self.user = keystone_utils.create_user(self.keystone, user_settings)
 104         self.assertEqual(self.username, self.user.name)
 105
 106         user = keystone_utils.get_user(self.keystone, self.username)
 107         self.assertIsNotNone(user)
 108         self.assertEqual(self.user, user)
 109
 110     def test_create_project_minimal(self):
 111         """
 112         Tests the keyston_utils.create_project() funtion
 113         """
 114         project_settings = ProjectSettings(
 115             name=self.project_name, domain=self.os_creds.project_domain_name)
 116         self.project = keystone_utils.create_project(self.keystone,
 117                                                      project_settings)
 118         self.assertEqual(self.project_name, self.project.name)
 119
 120         project = keystone_utils.get_project(
 121             keystone=self.keystone, project_settings=project_settings)
 122         self.assertIsNotNone(project)
 123         self.assertEqual(self.project_name, self.project.name)
 124
 125         domain = keystone_utils.get_domain_by_id(
 126             self.keystone, project.domain_id)
 127         self.assertIsNotNone(domain)
 128         self.assertEqual(domain.id, project.domain_id)
 129
 130     def test_get_endpoint_success(self):
 131         """
 132         Tests to ensure that proper credentials and proper service type can
 133         succeed.
 134         """
 135         endpoint = keystone_utils.get_endpoint(self.os_creds,
 136                                                service_type='identity')
 137         self.assertIsNotNone(endpoint)
 138
 139     def test_get_endpoint_fail_without_proper_service(self):
 140         """
 141         Tests to ensure that proper credentials and improper service type
 142         cannot succeed.
 143         """
 144         with self.assertRaises(Exception):
 145             keystone_utils.get_endpoint(self.os_creds, service_type='glance')
 146
 147     def test_get_endpoint_fail_without_proper_credentials(self):
 148         """
 149         Tests to ensure that improper credentials and proper service type
 150         cannot succeed.
 151         """
 152         from snaps.openstack.os_credentials import OSCreds
 153
 154         with self.assertRaises(Exception):
 155             keystone_utils.get_endpoint(
 156                 OSCreds(username='user', password='pass', auth_url='url',
 157                         project_name='project'),
 158                 service_type='image')
 159
 160     def test_get_endpoint_with_each_interface(self):
 161         """
 162         Tests to ensure that endpoint urls are obtained with
 163         'public', 'internal' and 'admin' interface
 164         """
 165         endpoint_public = keystone_utils.get_endpoint(self.os_creds,
 166                                                       service_type='image',
 167                                                       interface='public')
 168         endpoint_internal = keystone_utils.get_endpoint(self.os_creds,
 169                                                         service_type='image',
 170                                                         interface='internal')
 171         endpoint_admin = keystone_utils.get_endpoint(self.os_creds,
 172                                                      service_type='image',
 173                                                      interface='admin')
 174         self.assertIsNotNone(endpoint_public)
 175         self.assertIsNotNone(endpoint_internal)
 176         self.assertIsNotNone(endpoint_admin)
 177
 178     def test_grant_user_role_to_project(self):
 179         """
 180         Tests the keystone_utils function grant_user_role_to_project()
 181         :return:
 182         """
 183         user_settings = UserSettings(
 184             name=self.username, password=str(uuid.uuid4()),
 185             domain_name=self.os_creds.user_domain_name)
 186         self.user = keystone_utils.create_user(self.keystone, user_settings)
 187         self.assertEqual(self.username, self.user.name)
 188
 189         project_settings = ProjectSettings(
 190             name=self.project_name, domain=self.os_creds.project_domain_name)
 191         self.project = keystone_utils.create_project(self.keystone,
 192                                                      project_settings)
 193         self.assertEqual(self.project_name, self.project.name)
 194
 195         role_name = self.guid + '-role'
 196         self.role = keystone_utils.create_role(self.keystone, role_name)
 197         self.assertEqual(role_name, self.role.name)
 198
 199         keystone_utils.grant_user_role_to_project(
 200             self.keystone, self.role, self.user, self.project)
 201
 202         user_roles = keystone_utils.get_roles_by_user(
 203             self.keystone, self.user, self.project)
 204         self.assertIsNotNone(user_roles)
 205         self.assertEqual(1, len(user_roles))
 206         self.assertEqual(self.role.id, user_roles[0].id)