source-git / ansible-freeipa

Clone
Source Code
GIT

Blame tests/privilege/test_privilege.yml

c8 c8s master
  1.   c8s
  2.   tests
  3.   privilege
  4.   test_privilege.yml
Blob History Raw
Packit Service a166ed 
---
Packit Service a166ed 
- name: Test privilege
Packit Service a166ed 
  hosts: ipaserver
Packit Service a166ed 
  become: true
Packit Service a166ed
Packit Service a166ed 
  tasks:
Packit Service a166ed
Packit Service a166ed 
  # CLEANUP TEST ITEMS
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege "Broad Privilege" is absent
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name:
Packit Service a166ed 
      - Broad Privilege
Packit Service a166ed 
      - DNS Privilege
Packit Service a166ed 
      state: absent
Packit Service a166ed
Packit Service a166ed 
  # CREATE TEST ITEMS
Packit Service a166ed
Packit Service a166ed 
  # TESTS
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege is present
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      description: Broad Privilege
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege is present again
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      description: Broad Privilege
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Change privilege Broad Privilege description
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      description: Broad Privilege description
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege has permissions
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      permission:
Packit Service a166ed 
      - "Write IPA Configuration"
Packit Service a166ed 
      - "System: Write DNS Configuration"
Packit Service a166ed 
      - "System: Update DNS Entries"
Packit Service a166ed 
      action: member
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege has permissions, again
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      permission:
Packit Service a166ed 
      - "Write IPA Configuration"
Packit Service a166ed 
      - "System: Write DNS Configuration"
Packit Service a166ed 
      - "System: Update DNS Entries"
Packit Service a166ed 
      action: member
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege member permission "Write IPA Configuration" is absent
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      permission:
Packit Service a166ed 
      - "Write IPA Configuration"
Packit Service a166ed 
      action: member
Packit Service a166ed 
      state: absent
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege member permission "Write IPA Configuration" is absent again
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      permission:
Packit Service a166ed 
      - "Write IPA Configuration"
Packit Service a166ed 
      action: member
Packit Service a166ed 
      state: absent
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege is absent
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      state: absent
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege is present
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege is renamed to "DNS Privilege"
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      rename: DNS Privilege
Packit Service a166ed 
      state: renamed
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege Broad Privilege cannot be renamed, because it does not exist.
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: Broad Privilege
Packit Service a166ed 
      rename: DNS Privilege
Packit Service a166ed 
      state: renamed
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: not result.failed or "No privilege found to be renamed" not in result.msg
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege cannot be renamed to the same name.
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: DNS Privilege
Packit Service a166ed 
      rename: DNS Privilege
Packit Service a166ed 
      state: renamed
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege cannot be renamed to the same name.
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name: DNS Privilege
Packit Service a166ed 
      rename: DNS Privilege
Packit Service a166ed 
      state: renamed
Packit Service a166ed 
    register: result
Packit Service a166ed 
    failed_when: result.changed or result.failed
Packit Service a166ed
Packit Service a166ed 
  # CLEANUP TEST ITEMS
Packit Service a166ed
Packit Service a166ed 
  - name: Ensure privilege testing privileges are absent
Packit Service a166ed 
    ipaprivilege:
Packit Service a166ed 
      ipaadmin_password: SomeADMINpassword
Packit Service a166ed 
      name:
Packit Service a166ed 
      - Broad Privilege
Packit Service a166ed 
      - DNS Privilege
Packit Service a166ed 
      state: absent

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation