2018-01-04 11:23:58 +01:00
|
|
|
# Test code for the vmware_local_role_manager module
|
2018-09-07 06:03:50 +02:00
|
|
|
# Copyright: (c) 2017-2018, Abhijeet Kasurde <akasurde@redhat.com>
|
2018-01-04 11:23:58 +01:00
|
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- import_role:
|
|
|
|
name: prepare_vmware_tests
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2018-12-18 12:40:10 +01:00
|
|
|
- name: Create a role without privileges in check mode
|
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-12-18 12:40:10 +01:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
state: present
|
|
|
|
register: role_creation
|
|
|
|
check_mode: yes
|
|
|
|
|
|
|
|
- name: Verify if role was created
|
|
|
|
assert:
|
|
|
|
that:
|
|
|
|
- role_creation.changed
|
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- &create_role_data
|
|
|
|
name: Create a role without privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-01-04 11:23:58 +01:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
state: present
|
|
|
|
register: role_creation_0001
|
|
|
|
|
2018-12-18 12:40:10 +01:00
|
|
|
- name: Verify if role was created
|
2018-01-04 11:23:58 +01:00
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_creation_0001.changed
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- <<: *create_role_data
|
|
|
|
name: Again create a role without privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
|
|
|
|
- name: verify if role is not created again
|
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- not role_creation_0001.changed
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- &delete_role_data
|
|
|
|
name: Delete a role
|
2018-01-04 11:23:58 +01:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-01-04 11:23:58 +01:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
state: absent
|
|
|
|
register: role_creation_0001
|
|
|
|
|
2018-09-07 06:03:50 +02:00
|
|
|
- name: Verify if role is not present
|
2018-01-04 11:23:58 +01:00
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_creation_0001.changed
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- <<: *delete_role_data
|
|
|
|
name: Delete role again
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2018-09-07 06:03:50 +02:00
|
|
|
- name: Verify if role is absent again
|
2018-01-04 11:23:58 +01:00
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- not role_creation_0001.changed
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2018-09-07 06:03:50 +02:00
|
|
|
- name: Create a role with privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-01-04 11:23:58 +01:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
local_privilege_ids: ['VirtualMachine.State.RenameSnapshot']
|
|
|
|
state: present
|
|
|
|
register: role_creation_0001
|
|
|
|
|
2018-09-07 06:03:50 +02:00
|
|
|
- name: Verify if role is created with privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_creation_0001.changed
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- &exist_role_data
|
|
|
|
name: Add a privilege to existing privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-01-04 11:23:58 +01:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
2018-09-07 06:03:50 +02:00
|
|
|
local_privilege_ids: ['Folder.Create']
|
|
|
|
action: add
|
2018-01-04 11:23:58 +01:00
|
|
|
state: present
|
2018-12-18 12:40:10 +01:00
|
|
|
register: role_add
|
2018-01-04 11:23:58 +01:00
|
|
|
|
2018-09-07 06:03:50 +02:00
|
|
|
- name: Verify if role is updated with updated privileges
|
2018-01-04 11:23:58 +01:00
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_add.changed
|
2018-09-07 06:03:50 +02:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- <<: *exist_role_data
|
|
|
|
name: Again add a privilege to existing privileges
|
2018-09-07 06:03:50 +02:00
|
|
|
|
|
|
|
- name: Verify if role is not updated
|
|
|
|
assert:
|
|
|
|
that:
|
2019-04-24 21:11:47 +02:00
|
|
|
- not role_add.changed
|
2018-09-07 06:03:50 +02:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- &remove_role_data
|
|
|
|
name: Remove a privilege from existing privileges
|
2018-09-07 06:03:50 +02:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-09-07 06:03:50 +02:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
local_privilege_ids: ['Folder.Create']
|
|
|
|
action: remove
|
2018-12-18 12:40:10 +01:00
|
|
|
register: role_remove
|
2018-09-07 06:03:50 +02:00
|
|
|
|
|
|
|
- name: verify if role is updated with privileges
|
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_remove.changed
|
2018-09-07 06:03:50 +02:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- <<: *remove_role_data
|
|
|
|
name: Again remove a privilege from existing privileges
|
2018-09-07 06:03:50 +02:00
|
|
|
|
|
|
|
- name: Verify if role is not updated
|
|
|
|
assert:
|
|
|
|
that:
|
2019-04-24 21:11:47 +02:00
|
|
|
- not role_remove.changed
|
2018-09-07 06:03:50 +02:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- &set_priv_role_data
|
|
|
|
name: Set a privilege to an existing role
|
2018-09-07 06:03:50 +02:00
|
|
|
vmware_local_role_manager:
|
2019-04-24 21:11:47 +02:00
|
|
|
hostname: "{{ vcenter_hostname }}"
|
|
|
|
username: "{{ vcenter_username }}"
|
|
|
|
password: "{{ vcenter_password }}"
|
2018-09-07 06:03:50 +02:00
|
|
|
local_role_name: SampleRole_0001
|
|
|
|
validate_certs: no
|
|
|
|
local_privilege_ids: ['Folder.Create']
|
|
|
|
action: set
|
2018-12-18 12:40:10 +01:00
|
|
|
register: role_set
|
2018-09-07 06:03:50 +02:00
|
|
|
|
|
|
|
- name: Verify if role is updated with privileges
|
|
|
|
assert:
|
|
|
|
that:
|
2018-12-18 12:40:10 +01:00
|
|
|
- role_set.changed
|
2018-09-07 06:03:50 +02:00
|
|
|
|
2019-04-24 21:11:47 +02:00
|
|
|
- <<: *set_priv_role_data
|
|
|
|
name: Again set a privilege to an existing role
|
2018-09-07 06:03:50 +02:00
|
|
|
|
|
|
|
- name: verify if role is not updated
|
|
|
|
assert:
|
|
|
|
that:
|
2019-04-24 21:11:47 +02:00
|
|
|
- not role_set.changed
|