'ACI: Effective Rights: Preamble - Removing Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'remove' } { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : allow_aci , 'changetype' : 'add' } 'ACI: Effective Rights: Preamble - Admin adding get effective rights ACI,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } { 'returncode' : RC , 'result' : STAXResult } 'ACI: Effective Rights: Basic - wildcard, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'dsBaseDN' : 'ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'uid=scarter' , 'attributes' : 'aclRights "*"' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com"' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:0,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;cn: search:0,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:0,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'expectedString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' } 'ACI: Effective Rights: Basic - read, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - read, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:0,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:0,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - read, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - read, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - read, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - search, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - search, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - search, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - search, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - search, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - search-read, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - search-read, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - search-read as doc example, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights "*"' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com"' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - search-read with -J option, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -J effectiveRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - search-read, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - search-read, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - search-read, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - search-read, separate ACIs, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - search-read, separate ACIs, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - search-read, separate ACIs, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - search-read, separate ACIs, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - search-read, separate ACIs, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - compare, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - compare, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:1,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:1,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - compare, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - compare, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - compare, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - add, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - add, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:1,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - add, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - add, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - add, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - delete, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - delete, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:1,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - delete, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - delete, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - delete, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - write, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - write, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:1,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:1,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:1,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - write, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - write, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - write, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - proxy, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - proxy, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:1' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:1' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:1' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - proxy, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - proxy, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - proxy, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - selfwrite, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - selfwrite, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:1,selfwrite_delete:1,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:1,selfwrite_delete:1,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - selfwrite, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - selfwrite, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - selfwrite, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - all, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - all, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:1,delete:1,read:1,write:1,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:1,write:1,selfwrite_add:1,selfwrite_delete:1,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:1,write:1,selfwrite_add:1,selfwrite_delete:1,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - all, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - all, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - all, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - export, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - export, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - export, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - export, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - export, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Basic - import, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: Basic - import, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'uid aclRights roomnumber' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: Basic - import, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: Basic - import, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: Basic - import, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'objectclass=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: targetattr with search,read, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: targetattr with search,read, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'roomnumber=*' , 'attributes' : 'uid aclRights roomnumber cn' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:0,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: targetattr with search,read, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'roomnumber=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: targetattr with search,read, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: targetattr with search,read, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'roomnumber=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: targetattr with not equal and search,read, preamble adding aci,\n %s' % curr_aci { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/%s' % (logsRemoteDataDir,curr_aci_ldif_file) } 'ACI: Effective Rights: targetattr with not equal and search,read, user searching targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'uid=*' , 'attributes' : 'uid aclRights roomnumber cn' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'entryLevel: add:0,delete:0,read:1,write:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;uid: search:1,read:1,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } { 'returnString' : returnString , 'testString' : 'attributeLevel;roomnumber: search:0,read:0,compare:0,write:0,selfwrite_add:0,selfwrite_delete:0,proxy:0' , 'expectedResult' : '1' } 'ACI: Effective Rights: targetattr with not equal and search,read, user searching non-targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'uid=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' , 'expectedResult' : '0' } 'ACI: Effective Rights: targetattr with not equal and search,read, admin deleting aci' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_aci.ldif' % logsRemoteDataDir } 'ACI: Effective Rights: targetattr with not equal and search,read, user searching previously targeted entry' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : 'uid=auser,ou=people,o=ACI Tests,dc=example,dc=com' , 'dsInstancePswd' : 'ACIRules' , 'dsBaseDN' : 'uid=scarter,ou=People,ou=aci branch,o=ACI Tests,dc=example,dc=com' , 'dsFilter' : 'uid=*' , 'attributes' : 'aclRights' , 'extraParams' : '-T -g "dn: uid=auser,ou=people,o=ACI Tests,dc=example,dc=com" -e uid -e roomnumber -e aclRights' } { 'returnString' : returnString , 'testString' : 'uid=scarter,ou=People,ou=non-aci branch,o=ACI Tests,dc=example,dc=com' } 'ACI: Effective Rights: Postamble - Admin deleting get effective rights ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s/aci/aci_effective_rights/del_effrights_aci.ldif' % (logsRemoteDataDir) } { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : 'dc=example,dc=com' , 'attributeName' : 'aci' , 'newAttributeValue' : allow_aci , 'changetype' : 'delete' } 'ACI: Effective Rights: Preamble - putting back Search Global ACI' { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST , 'dsInstancePort' : DIRECTORY_INSTANCE_PORT , 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'aciValue' : GLOBAL_ACI_SEARCH , 'opType' : 'add' }