2017-08-25 17:25:15 +02:00
|
|
|
---
|
|
|
|
- block:
|
|
|
|
- name: Create user with password
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
|
|
|
state: present
|
|
|
|
configured_password: pass123
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-08-25 17:25:15 +02:00
|
|
|
|
|
|
|
- name: test login
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no show version"
|
2017-08-25 17:25:15 +02:00
|
|
|
responses:
|
|
|
|
(?i)password: "pass123"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-08-25 17:25:15 +02:00
|
|
|
|
|
|
|
- name: test login with invalid password (should fail)
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no show version"
|
2017-08-25 17:25:15 +02:00
|
|
|
responses:
|
|
|
|
(?i)password: "badpass"
|
|
|
|
ignore_errors: yes
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-08-25 17:25:15 +02:00
|
|
|
register: results
|
|
|
|
|
|
|
|
- name: check that attempt failed
|
|
|
|
assert:
|
|
|
|
that:
|
|
|
|
- results.failed
|
|
|
|
|
2017-11-15 15:34:36 +01:00
|
|
|
- name: create user with private key (contents input)
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
|
|
|
state: present
|
2017-11-28 10:28:42 +01:00
|
|
|
public_key_contents: "{{ lookup('file', \"{{ role_path }}/files/public.pub\") }}"
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
|
|
|
- name: test login with private key
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i {{ role_path }}/files/private show version"
|
2017-11-28 10:28:42 +01:00
|
|
|
responses:
|
|
|
|
(?i)password: 'pass123'
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
|
|
|
- name: remove user and key
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2017-11-15 15:34:36 +01:00
|
|
|
state: absent
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
|
|
|
- name: test login with private key (should fail, no user)
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i {{ role_path }}/files/private show version"
|
2017-11-28 10:28:42 +01:00
|
|
|
responses:
|
|
|
|
(?i)password: 'pass123'
|
2017-11-15 15:34:36 +01:00
|
|
|
ignore_errors: yes
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
register: results
|
|
|
|
|
|
|
|
- name: create user with private key (path input)
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
|
|
|
state: present
|
2017-11-28 10:28:42 +01:00
|
|
|
public_key: "{{ role_path }}/files/public.pub"
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
|
|
|
- name: test login with private key
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i {{ role_path }}/files/private show version"
|
2017-11-28 10:28:42 +01:00
|
|
|
responses:
|
|
|
|
(?i)password: 'pass123'
|
|
|
|
ignore_errors: yes
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
|
|
|
- name: change private key for user
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
|
|
|
state: present
|
2017-11-28 10:28:42 +01:00
|
|
|
public_key_contents: "{{ lookup('file', \"{{ role_path }}/files/public2.pub\") }}"
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
|
2017-11-28 10:28:42 +01:00
|
|
|
# FIXME: pexpect fails with OSError: [Errno 5] Input/output error
|
2017-11-15 15:34:36 +01:00
|
|
|
- name: test login with invalid private key (should fail)
|
|
|
|
expect:
|
2017-12-20 17:26:09 +01:00
|
|
|
command: "ssh auth_user@{{ ansible_ssh_host }} -p {{ ansible_ssh_port|default(22) }} -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i {{ role_path }}/files/private show version"
|
2017-11-15 15:34:36 +01:00
|
|
|
responses:
|
2017-11-28 10:28:42 +01:00
|
|
|
(?i)password: "pass123"
|
2017-11-15 15:34:36 +01:00
|
|
|
ignore_errors: yes
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-11-15 15:34:36 +01:00
|
|
|
register: results
|
|
|
|
|
|
|
|
- name: check that attempt failed
|
|
|
|
assert:
|
|
|
|
that:
|
|
|
|
- results.failed
|
|
|
|
|
2017-08-25 17:25:15 +02:00
|
|
|
always:
|
|
|
|
- name: delete user
|
|
|
|
iosxr_user:
|
|
|
|
name: auth_user
|
|
|
|
state: absent
|
2017-12-06 18:07:31 +01:00
|
|
|
provider: "{{ cli }}"
|
2018-01-24 15:16:27 +01:00
|
|
|
connection: network_cli
|
2017-08-25 17:25:15 +02:00
|
|
|
register: result
|