89f9260da2
* initial implementation of configurable test users * user superuser by default to match master * referenced the configs in reporting and api integration * setting the minimum number of default roles * looking for x-pack tests with users and roles * add testUserService in dashboard mode tests * running only ciGroup7 * uncommenting - addign visualization * re-enabling all CI groups to run on CI * reinstating Jenkinsfile * disable Test user for OIDC config * improved logging and added Roles for OSS tests to get better info on the runs. * disable test_user for auth tests * don't fetch enabledPlugins when testuser disabled * fix es-lint * running oss tests with x-pack enabled * [revertme] build default dist for oss tests * updating NOTICE.txt file as it complained in the kibana intake tests * changed to pick OSS builds * trying a license change to trial * switch back to xpack builds * created a new sample data role and used it in homepage tests * revert test/scripts/jenkins_ci_group.sh * only refresh browser and wait for chrome if we are already on Kibana page * fix large_string test to use minimum set of roles and privileges * fix for date nanos custom timestamp with a configured role * changes to the files with addition of new roles for the test_user * reverting to OSS changes and few additions to the time_zone test to run as a test_user * changes to security * changes to the x-pack test to use elastic superuser * fix for chart_types test * fixes to area chart , input control test * fix for dashboard filtering test and a new config role * changes to handle the x-pack tests * additional role for date nanos mixed * added the logstash role to the accessibility tests * removed telemetry setting * docs+few changes to the tests * removed Page navigation * removed pageNavigation which was unused * test/accessibility/apps/management.ts * update management.ts * aria label, and other changes * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * accidentally checked in a piped file with results. * reverted * unloading of logstash data, fixing aria label * aria-label * added the required role * fix for tsvb chart * fix for sample data test reverted home_page pageobject file * changes to sample data test and visualize index file to incorporate OSS changes * changes to describe() and some more changes to incorporate in settings_page * re-adding the after() * removed unwanted roles * replaced kibana_user with kibana_admin * added the check of deprecated kibana_user * testing with kibana_admin role * fix for discover test * incorporated the review comments * incorporated the review comments * incorporate review comments and added restoreDefaults() * removed describe.only * reverted the OSS logic change I had here- pulled into seperate PR * incorporated the review comments * incorporated review changes * adding hidden=true to find hidden kibanaChrome * change field.test.tsx to be same as that of master branch Co-authored-by: spalger <spalger@users.noreply.github.com> Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
92 lines
3.3 KiB
TypeScript
92 lines
3.3 KiB
TypeScript
/*
|
|
* Licensed to Elasticsearch B.V. under one or more contributor
|
|
* license agreements. See the NOTICE file distributed with
|
|
* this work for additional information regarding copyright
|
|
* ownership. Elasticsearch B.V. licenses this file to you under
|
|
* the Apache License, Version 2.0 (the "License"); you may
|
|
* not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing,
|
|
* software distributed under the License is distributed on an
|
|
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
|
* KIND, either express or implied. See the License for the
|
|
* specific language governing permissions and limitations
|
|
* under the License.
|
|
*/
|
|
import { Role } from './role';
|
|
import { User } from './user';
|
|
import { FtrProviderContext } from '../../ftr_provider_context';
|
|
import { Browser } from '../../../functional/services/browser';
|
|
import { TestSubjects } from '../../../functional/services/test_subjects';
|
|
|
|
export async function createTestUserService(
|
|
role: Role,
|
|
user: User,
|
|
{ getService, hasService }: FtrProviderContext
|
|
) {
|
|
const log = getService('log');
|
|
const config = getService('config');
|
|
// @ts-ignore browser service is not normally available in common.
|
|
const browser: Browser | void = hasService('browser') && getService('browser');
|
|
const testSubjects: TestSubjects | void =
|
|
// @ts-ignore testSubject service is not normally available in common.
|
|
hasService('testSubjects') && getService('testSubjects');
|
|
const kibanaServer = getService('kibanaServer');
|
|
|
|
const enabledPlugins = config.get('security.disableTestUser')
|
|
? []
|
|
: await kibanaServer.plugins.getEnabledIds();
|
|
const isEnabled = () => {
|
|
return enabledPlugins.includes('security') && !config.get('security.disableTestUser');
|
|
};
|
|
if (isEnabled()) {
|
|
log.debug('===============creating roles and users===============');
|
|
for (const [name, definition] of Object.entries(config.get('security.roles'))) {
|
|
// create the defined roles (need to map array to create roles)
|
|
await role.create(name, definition);
|
|
}
|
|
try {
|
|
// delete the test_user if present (will it error if the user doesn't exist?)
|
|
await user.delete('test_user');
|
|
} catch (exception) {
|
|
log.debug('no test user to delete');
|
|
}
|
|
|
|
// create test_user with username and pwd
|
|
log.debug(`default roles = ${config.get('security.defaultRoles')}`);
|
|
await user.create('test_user', {
|
|
password: 'changeme',
|
|
roles: config.get('security.defaultRoles'),
|
|
full_name: 'test user',
|
|
});
|
|
}
|
|
|
|
return new (class TestUser {
|
|
async restoreDefaults() {
|
|
if (isEnabled()) {
|
|
await this.setRoles(config.get('security.defaultRoles'));
|
|
}
|
|
}
|
|
|
|
async setRoles(roles: string[]) {
|
|
if (isEnabled()) {
|
|
log.debug(`set roles = ${roles}`);
|
|
await user.create('test_user', {
|
|
password: 'changeme',
|
|
roles,
|
|
full_name: 'test user',
|
|
});
|
|
|
|
if (browser && testSubjects) {
|
|
if (await testSubjects.exists('kibanaChrome', { allowHidden: true })) {
|
|
await browser.refresh();
|
|
await testSubjects.find('kibanaChrome', config.get('timeouts.find') * 10);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
})();
|
|
}
|