| | |
|---|
| | | #@TestPurpose Test effective rights with search-read permission |
|---|
| | | #@TestPreamble Admin adds an aci. |
|---|
| | | #@TestStep Client searches for effective rights in an entry in the targeted branch dn. |
|---|
| | | #@TestStep Client searches for effective rights in an entry in the targeted branch dn as shown in doc example. |
|---|
| | | #@TestStep Client searches for effective rights in an entry in the targeted branch dn with -J option. |
|---|
| | | #@TestStep Client searches for effective rights in an entry in the non-targeted branch dn. |
|---|
| | | #@TestStep Remove aci. |
|---|
| | | #@TestStep Client searches for effective rights in an entry with the previously targeted branch dn. |
|---|
| | |
|---|
| | | </if> |
|---|
| | | |
|---|
| | | <message> |
|---|
| | | 'ACI: Effective Rights: Basic - search-read as doc example, user searching targeted entry' |
|---|
| | | </message> |
|---|
| | | |
|---|
| | | <call function="'SearchObject'"> |
|---|
| | | { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , |
|---|
| | | 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , |
|---|
| | | 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , |
|---|
| | | 'dsInstancePswd' : 'ACIRules' , |
|---|
| | | 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , |
|---|
| | | 'dsFilter' : 'objectclass=*' , |
|---|
| | | 'attributes' : 'aclRights "*"' , |
|---|
| | | 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com"' } |
|---|
| | | </call> |
|---|
| | | |
|---|
| | | <script> |
|---|
| | | returnString = STAXResult[0][1] |
|---|
| | | </script> |
|---|
| | | |
|---|
| | | <call function="'searchStringForSubstring'"> |
|---|
| | | { 'returnString' : returnString , |
|---|
| | | 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' } |
|---|
| | | </call> |
|---|
| | | |
|---|
| | | <if expr="returnCode != '1'"> |
|---|
| | | <tcstatus result="'fail'"/> |
|---|
| | | </if> |
|---|
| | | |
|---|
| | | <call function="'searchStringForSubstring'"> |
|---|
| | | { 'returnString' : returnString , |
|---|
| | | 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' } |
|---|
| | | </call> |
|---|
| | | |
|---|
| | | <if expr="returnCode != '1'"> |
|---|
| | | <tcstatus result="'fail'"/> |
|---|
| | | </if> |
|---|
| | | |
|---|
| | | <message> |
|---|
| | | 'ACI: Effective Rights: Basic - search-read with -J option, user searching targeted entry' |
|---|
| | | </message> |
|---|
| | | |
|---|
| | | <call function="'SearchObject'"> |
|---|
| | | { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , |
|---|
| | | 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , |
|---|
| | | 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , |
|---|
| | | 'dsInstancePswd' : 'ACIRules' , |
|---|
| | | 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , |
|---|
| | | 'dsFilter' : 'objectclass=*' , |
|---|
| | | 'attributes' : 'aclRights' , |
|---|
| | | 'extraParams' : '-T -J effectiveRights' } |
|---|
| | | </call> |
|---|
| | | |
|---|
| | | <script> |
|---|
| | | returnString = STAXResult[0][1] |
|---|
| | | </script> |
|---|
| | | |
|---|
| | | <call function="'searchStringForSubstring'"> |
|---|
| | | { 'returnString' : returnString , |
|---|
| | | 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' } |
|---|
| | | </call> |
|---|
| | | |
|---|
| | | <if expr="returnCode != '1'"> |
|---|
| | | <tcstatus result="'fail'"/> |
|---|
| | | </if> |
|---|
| | | |
|---|
| | | <message> |
|---|
| | | 'ACI: Effective Rights: Basic - search-read, user searching non-targeted entry' |
|---|
| | | </message> |
|---|
| | | |
|---|
