From 16cbac74cadf384cd48be4a176589e5b1f41ae4e Mon Sep 17 00:00:00 2001
From: mkeyes <mkeyes@localhost>
Date: Mon, 20 Aug 2007 19:26:44 +0000
Subject: [PATCH] Adding functional test cases for Similarity-Based password validators.
---
opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_pwd_validator.xml | 4
opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_similarity_based.xml | 345 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 347 insertions(+), 2 deletions(-)
diff --git a/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_pwd_validator.xml b/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_pwd_validator.xml
index 7d98a8d..9965f51 100755
--- a/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_pwd_validator.xml
+++ b/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_pwd_validator.xml
@@ -71,11 +71,11 @@
<import machine="STAF_LOCAL_HOSTNAME"
file="'%s/testcases/security/pwd_validator/security_history_based.xml' % (TESTS_DIR)"/>
<call function="'history_based'" />
- <!--
+
<import machine="STAF_LOCAL_HOSTNAME"
file="'%s/testcases/security/pwd_validator/security_similarity_based.xml' % (TESTS_DIR)"/>
<call function="'similarity_based'" />
- -->
+
<import machine="STAF_LOCAL_HOSTNAME"
file="'%s/testcases/security/pwd_validator/security_dictionary.xml' % (TESTS_DIR)"/>
<call function="'dictionary'" />
diff --git a/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_similarity_based.xml b/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_similarity_based.xml
new file mode 100755
index 0000000..83ab0f5
--- /dev/null
+++ b/opendj-sdk/opends/tests/functional-tests/testcases/security/pwd_validator/security_similarity_based.xml
@@ -0,0 +1,345 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE stax SYSTEM "../../../shared/stax.dtd">
+<!--
+ ! CDDL HEADER START
+ !
+ ! The contents of this file are subject to the terms of the
+ ! Common Development and Distribution License, Version 1.0 only
+ ! (the "License"). You may not use this file except in compliance
+ ! with the License.
+ !
+ ! You can obtain a copy of the license at
+ ! trunk/opends/resource/legal-notices/OpenDS.LICENSE
+ ! or https://OpenDS.dev.java.net/OpenDS.LICENSE.
+ ! See the License for the specific language governing permissions
+ ! and limitations under the License.
+ !
+ ! When distributing Covered Code, include this CDDL HEADER in each
+ ! file and include the License file at
+ ! trunk/opends/resource/legal-notices/OpenDS.LICENSE. If applicable,
+ ! add the following below this CDDL HEADER, with the fields enclosed
+ ! by brackets "[]" replaced with your own identifying information:
+ ! Portions Copyright [yyyy] [name of copyright owner]
+ !
+ ! CDDL HEADER END
+ !
+ ! Portions Copyright 2006-2007 Sun Microsystems, Inc.
+ ! -->
+<stax>
+
+ <defaultcall function="similarity_based"/>
+
+ <function name="similarity_based">
+
+ <sequence>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: Preamble'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Preamble - Admin enabling validator'
+ </message>
+
+ <call function="'modifyPwdPolicy'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
+ 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
+ 'propertyName' : 'Default Password Policy' ,
+ 'attributeName' : 'password-validator-dn' ,
+ 'attributeValue' : 'cn=Similarity-Based Password Validator,cn=Password Validators,cn=config' }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Preamble - Admin modifying password history count'
+ </message>
+
+ <call function="'modifyPwdPolicy'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
+ 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
+ 'propertyName' : 'Default Password Policy' ,
+ 'attributeName' : 'password-history-count' ,
+ 'attributeValue' : '0' }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: new password with 1 letter change, valid'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user modifying password'
+ </message>
+
+ <call function="'modifyAnAttribute'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'bribery' ,
+ 'DNToModify' : 'uid=kvaughan, ou=People, ou=password tests, o=Pwd Validator Tests, dc=example,dc=com' ,
+ 'attributeName' : 'userpassword' ,
+ 'newAttributeValue' : 'brobery' ,
+ 'changetype' : 'replace' }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user binding with new password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'brobery' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base' }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: Enable requires-current-password'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Admin enabling requires-current-password'
+ </message>
+
+ <call function="'modifyPwdPolicy'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
+ 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
+ 'propertyName' : 'Default Password Policy' ,
+ 'attributeName' : 'password-change-requires-current-password' ,
+ 'attributeValue' : 'true' }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: new password with 1 letter change, invalid'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user modifying password'
+ </message>
+
+ <call function="'modifyAnAttribute'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'brobery' ,
+ 'DNToModify' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'attributeName' : 'userpassword' ,
+ 'newAttributeValue' : 'probery' ,
+ 'changetype' : 'replace' ,
+ 'expectedRC' : 53 }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user binding with invalid password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'probery' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base',
+ 'expectedRC' : 49 }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: new password with 1 letter change, invalid 2'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user modifying password'
+ </message>
+
+ <call function="'ldapPasswordModifyWithScript'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'brobery' ,
+ 'dsAuthzID' : 'dn:uid=kvaughan, ou=People, ou=password tests, o=Pwd Validator Tests, dc=example,dc=com' ,
+ 'dsCurrentPassword' : 'brobery' ,
+ 'dsNewPassword' : 'probery' ,
+ 'expectedRC' : 49 }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user binding with invalid password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'probery' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base' ,
+ 'expectedRC' : 49 }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: new password with 2 letter change, invalid'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user modifying password'
+ </message>
+
+ <call function="'ldapPasswordModifyWithScript'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'brobery' ,
+ 'dsAuthzID' : 'dn:uid=kvaughan, ou=People, ou=password tests, o=Pwd Validator Tests, dc=example,dc=com' ,
+ 'dsCurrentPassword' : 'brobery' ,
+ 'dsNewPassword' : 'phobery' ,
+ 'expectedRC' : 49 }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user binding with invalid password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'phobery' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base',
+ 'expectedRC' : 49 }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: new password with 3 letter change, valid'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user modifying password'
+ </message>
+
+ <call function="'ldapPasswordModifyWithScript'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'brobery' ,
+ 'dsAuthzID' : 'dn:uid=kvaughan, ou=People, ou=password tests, o=Pwd Validator Tests, dc=example,dc=com' ,
+ 'dsCurrentPassword' : 'brobery' ,
+ 'dsNewPassword' : 'phibery' }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: user binding with new password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'phibery' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base' }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ <testcase name="'Security: Pwd Validator: Similarity Based: Postamble'">
+ <sequence>
+ <call function="'testCase_Preamble'"/>
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Postamble Step 1. Admin disabling password validator'
+ </message>
+
+ <call function="'modifyPwdPolicy'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : DIRECTORY_INSTANCE_DN ,
+ 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD ,
+ 'propertyName' : 'Default Password Policy' ,
+ 'attributeName' : 'password-validator-dn' ,
+ 'attributeValue' : 'cn=Similarity-Based Password Validator,cn=Password Validators,cn=config' ,
+ 'modifyType' : 'remove' }
+ </call>
+
+ <!--- User Change Password -->
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Postamble Step 2. User Changing Password'
+ </message>
+
+ <call function="'ldapPasswordModifyWithScript'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'phibery' ,
+ 'dsAuthzID' : 'dn:uid=kvaughan, ou=People, ou=password tests, o=Pwd Validator Tests, dc=example,dc=com' ,
+ 'dsCurrentPassword' : 'phibery' ,
+ 'dsNewPassword' : 'phibary' }
+ </call>
+
+ <message>
+ 'Security: Pwd Validator: Similarity Based: Postamble Step 3. User Searching With Password'
+ </message>
+
+ <call function="'SearchObject'">
+ { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST ,
+ 'dsInstancePort' : DIRECTORY_INSTANCE_PORT ,
+ 'dsInstanceDn' : 'uid=kvaughan,ou=people,ou=password tests,o=Pwd Validator Tests,dc=example,dc=com' ,
+ 'dsInstancePswd' : 'phibary' ,
+ 'dsBaseDN' : 'dc=example,dc=com' ,
+ 'dsFilter' : 'objectclass=*' ,
+ 'extraParams' : '-s base' }
+ </call>
+
+ <call function="'testCase_Postamble'"/>
+
+ </sequence>
+ </testcase>
+
+ </sequence>
+
+ </function>
+
+</stax>
--
Gitblit v1.10.0