'Privileges: Users: bypass-acl, preamble check default privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } 'Privileges: Users: bypass-acl, removing search global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'remove' } 'Privileges: Users: bypass-acl, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'add' } 'Privileges: Users: bypass-acl, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } 'Privileges: Users: bypass-acl, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'delete' } 'Privileges: Users: bypass-acl, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: Putting Back Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'add' } 'Privileges: Users: bypass-acl, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid' } { 'returnString' : returnString , 'expectedString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' } 'Privileges: Users: bypass-acl with proxy, preamble, removing search global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'remove' } 'Privileges: Users: bypass-acl with proxy, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'add' } 'Privileges: Users: bypass-acl with proxy, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } 'Privileges: Users: bypass-acl with proxy, proxied user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=aproxy,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ProxyRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid' } { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl with proxy, adding proxy aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : proxy_aci , 'changetype' : 'add' } 'Privileges: Users: bypass-acl with proxy, proxied user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=aproxy,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ProxyRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid' } { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl with proxy, Admin deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : proxy_aci , 'changetype' : 'delete' } 'Privileges: Users: bypass-acl with proxy, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'delete' } 'Privileges: Users: bypass-acl with proxy, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl with proxy, Putting Back Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'add' } 'Privileges: Users: bypass-acl with proxy, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'expectedString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' } 'Privileges: Users: bypass-acl with minus notation, preamble, removing search global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'remove' } 'Privileges: Users: bypass-acl with minus notation, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'add' } 'Privileges: Users: bypass-acl with minus notation, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } 'Privileges: Users: bypass-acl with minus notation, Admin adding privilege with minus notation' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : '-bypass-acl' , 'changetype' : 'add' } 'Privileges: Users: bypass-acl with minus notation, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl with minus notation, Admin deleting privilege with minus notation' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : '-bypass-acl' , 'changetype' : 'delete' } 'Privileges: Users: bypass-acl with minus notation, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } 'Privileges: Users: bypass-acl with proxy, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'delete' } 'Privileges: Users: bypass-acl with minus notation, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl with minus notation, Putting Back Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'add' } 'Privileges: Users: bypass-acl with minus notation, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'expectedString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' } 'Privileges: Users: bypass-acl self-modify add, preamble, removing search global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'remove' } 'Privileges: Users: bypass-acl self-modify add, user adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'bypass-acl' , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: bypass-acl self-modify add, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' , 'expectedResult' : '0' } 'Privileges: Users: bypass-acl self-modify add, Putting Back Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'add' } 'Privileges: Users: bypass-acl self-modify add, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'cn sn uid'} { 'returnString' : returnString , 'expectedString' : 'dn: uid=scarter,ou=People,o=Privileges Tests' } 'Privileges: Users: modify-acl - add aci, check default, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'add' } 'Privileges: Users: modify-acl - add aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - add aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - add aci, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - add aci, user adding second ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search2_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - add aci, Admin deleting user-added ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - add aci, user adding second ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=scarter, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search3_aci , 'changetype' : 'add' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: modify-acl - add aci - disable privilege, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - add aci - disable privilege, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci - disable privilege, Admin disabling privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'objectName' : 'global-configuration' , 'attributeName' : 'disabled-privilege' , 'attributeValue' : 'modify-acl' } 'Privileges: Users: modify-acl - add aci - disable privilege, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - add aci - disable privilege, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - add aci - disable privilege, user adding second ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search2_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci - disable privilege, Admin un-disabling privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'objectName' : 'global-configuration' , 'attributeName' : 'disabled-privilege' , 'attributeValue' : 'modify-acl' , 'modifyType' : 'remove' } 'Privileges: Users: modify-acl - add aci - disable privilege, Admin deleting user-added ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - add aci - disable privilege, user adding second ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=scarter, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search3_aci , 'changetype' : 'add' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: modify-acl - replace aci, check default, user replacing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=tmorris, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - replace aci, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - replace aci, user replacing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=tmorris, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - replace aci, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'add' } 'Privileges: Users: modify-acl - replace aci, user replacing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=tmorris, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'replace' } 'Privileges: Users: modify-acl - replace aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - replace aci, user replacing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=tmorris, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - replace aci, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - replace aci, user replacing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=tmorris, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'replace' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: modify-acl - delete aci, preamble, check default, user deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=dmiller, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci_dmiller , 'changetype' : 'delete' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - delete aci, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'add' } 'Privileges: Users: modify-acl - delete aci, user deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=dmiller, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci_dmiller , 'changetype' : 'delete' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - delete aci, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: modify-acl - delete aci, user deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=dmiller, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci_dmiller , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - delete aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: modify-acl - delete aci, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'delete' } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: config-read, check default privilege, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' , 'expectedRC' : 50 } 'Privileges: Users: config-read, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'add' } 'Privileges: Users: config-read, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' } { 'returnString' : returnString , 'testString' : 'dn: cn=config' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'ds-cfg-check-schema:' , 'expectedResult' : '1' } 'Privileges: Users: config-read, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'delete' } 'Privileges: Users: config-read, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' , 'expectedRC' : 50 } { 'returnString' : returnString , 'testString' : 'dn: cn=config' } 'Privileges: Users: config-read - disable privilege, check default privilege, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' , 'expectedRC' : 50 } 'Privileges: Users: config-read - disable privilege, Admin disabling privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'objectName' : 'global-configuration' , 'attributeName' : 'disabled-privilege' , 'attributeValue' : 'config-read' } 'Privileges: Users: config-read - disable privilege, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' } { 'returnString' : returnString , 'testString' : 'dn: cn=config' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'ds-cfg-check-schema:' , 'expectedResult' : '1' } 'Privileges: Users: config-read - disable privilege, Admin un-disabling privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'objectName' : 'global-configuration' , 'attributeName' : 'disabled-privilege' , 'attributeValue' : 'config-read' , 'modifyType' : 'remove' } 'Privileges: Users: config-read - disable privilege, user searching cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'cn=config' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'ds-cfg-check-schema' , 'extraParams' : '-s base' , 'expectedRC' : 50 } { 'returnString' : returnString , 'testString' : 'dn: cn=config' } 'Privileges: Users: config-write, check default privilege, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: config-write, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-write' , 'changetype' : 'add' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: config-write, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'add' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: config-write, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=config' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' } 'Privileges: Users: config-write, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'delete' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: config-write, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-write' , 'changetype' : 'delete' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: modify-acl - add aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=config' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: config-write, user modifying cn=config' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=config' , 'attributeName' : 'ds-cfg-check-schema' , 'newAttributeValue' : 'true' , 'changetype' : 'replace' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: config-write - add global aci, check default, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : another_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: config-write - add global aci, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'add' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : another_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: config-write - add global aci, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-write' , 'changetype' : 'add' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : another_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: config-write - add global aci, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=config' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : another_aci , 'changetype' : 'add' } 'Privileges: Users: config-write - add global aci, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-write' , 'changetype' : 'delete' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : global2_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: config-write - add global aci, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'config-read' , 'changetype' : 'delete' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : global2_aci , 'changetype' : 'add' , 'expectedRC' : 50 } 'Privileges: Users: config-write - add global aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=config' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: config-write - add global aci, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci', 'newAttributeValue' : another_aci , 'changetype' : 'delete' } 'Privileges: Users: config-write - add global aci, user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : global2_aci , 'changetype' : 'add' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: password-reset, preamble, Admin adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: password-reset, check default privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=bhall, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'userpassword' , 'newAttributeValue' : 'bananas' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: password-reset, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'password-reset' , 'changetype' : 'add' } 'Privileges: Users: password-reset, user resetting password' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=bhall, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'userpassword' , 'newAttributeValue' : 'bananas' , 'changetype' : 'replace' } 'Privileges: Users: password-reset, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=bhall,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'bananas' , 'dsBaseDN' : 'ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=bhall,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'uid: bhall' , 'expectedResult' : '1' } 'Privileges: Users: password-reset - delete aci, Admin deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: password-reset, user resetting password' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=bhall, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'userpassword' , 'newAttributeValue' : 'bananas' , 'changetype' : 'replace' , 'expectedRC' : 50 } 'Privileges: Users: password-reset, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'password-reset' , 'changetype' : 'delete' } 'Privileges: Users: password-reset, user resetting password' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=bhall, ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'userpassword' , 'newAttributeValue' : 'bananas' , 'changetype' : 'replace' , 'expectedRC' : 50 } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: update-schema, preamble, Admin adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: update-schema, check default privilege, user adding new schema object' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'entryToBeModified' : '%s/privileges/addmozobj.ldif' % logsRemoteDataDir , 'expectedRC' : 50 } 'Privileges: Users: update-schema, Admin adding entry that uses new object class' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeAdded' : '%s/privileges/add_entry_with_new_objclass.ldif' % logsRemoteDataDir , 'expectedRC' : 65 } 'Privileges: Users: update-schema, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'update-schema' , 'changetype' : 'add' } 'Privileges: Users: update-schema, user adding new schema object' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'entryToBeModified' : '%s/privileges/addmozobj.ldif' % logsRemoteDataDir } 'Privileges: Users: update-schema, Admin adding entry that users new object class' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeAdded' : '%s/privileges/add_entry_with_new_objclass.ldif' % logsRemoteDataDir } 'Privileges: Users: password-reset, user searching entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'dsBaseDN' : 'uid=sfish,ou=People,o=Privileges Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid'} { 'returnString' : returnString , 'testString' : 'dn: uid=sfish,ou=People,o=Privileges Tests' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'uid: sfish' , 'expectedResult' : '1' } 'Privileges: Users: update-schema, Admin deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } 'Privileges: Users: update-schema, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'update-schema' , 'changetype' : 'delete' } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: privilege-change, Admin adding write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'add' } 'Privileges: Users: privilege-change, Admin adding privilege to first user' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'privilege-change' , 'changetype' : 'add' } 'Privileges: Users: privilege-change, first user adding privilege to second user' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'uid=buser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'add' } 'Privileges: Users: privilege-change, second user adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=buser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' } 'Privileges: Users: privilege-change, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=buser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'modify-acl' , 'changetype' : 'delete' } 'Privileges: Users: privilege-change, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'privilege-change' , 'changetype' : 'delete' } 'Privileges: Users: privilege-change, Admin deleting ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'ou=People, o=Privileges Tests, dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : search_aci , 'changetype' : 'delete' } 'Privileges: Users: privilege-change, Admin deleting write ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : write_aci , 'changetype' : 'delete' } { 'returncode' : RC , 'result' : STAXResult } 'Privileges: Users: server-shutdown, user adding server shutdown task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-shutdown, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'server-shutdown' , 'changetype' : 'add' } 'Privileges: Users: server-shutdown, user adding server shutdown task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-shutdown, Admin adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' } 'Privileges: Users: server-shutdown, user adding server shutdown task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Start DS to run on port %s' % (DIRECTORY_INSTANCE_PORT) { 'location' : STAF_REMOTE_HOSTNAME } { 'returncode' : RC , 'result' : STAXResult } { 'noOfLoops' : 5 , 'noOfMilliSeconds' : 2000 } 'Privileges: Users: server-shutdown, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'server-shutdown' , 'changetype' : 'delete' } 'Privileges: Users: server-shutdown, user adding server shutdown task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-shutdown, Admin removing ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : search_aci , 'changetype' : 'delete' } 'Privileges: Users: server-shutdown, user adding server shutdown task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } { 'returncode' : RC , 'result' : STAXResult , 'expected' : 50 } 'Privileges: Users: server-restart, user adding server restart task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-restart, Admin adding privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'server-restart' , 'changetype' : 'add' } 'Privileges: Users: server-restart, user adding server restart task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-restart, Admin adding ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'cn=Access Control Handler,cn=config' , 'attributeName' : 'ds-cfg-global-aci' , 'newAttributeValue' : search_aci , 'changetype' : 'add' } 'Privileges: Users: server-restart, user adding server restart task' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules', 'taskID' : STAXCurrentTestcase, } 'Privileges: Users: server-restart, Admin deleting privilege' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'uid=auser,o=Privileges Tests,dc=example,dc=com' , 'attributeName' : 'ds-privilege-name' , 'newAttributeValue' : 'server-restart' , 'changetype' : 'delete' }