@test.attr(type='smoke')
def test_validation_of_grant_revoke_role_to_group_on_project(self):
# Create project in domain, and grant role to group on project
resp, project = self.client.create_project(
data_utils.rand_name('Pro-'),
domain_id=self.domain['id'])
self.addCleanup(self.client.delete_project, project['id'])
resp, _ = self.client.assign_group_role_on_project(
project['id'], self.group_body['id'], self.role['id'])
# Create a user, add it to group
u_name = data_utils.rand_name("user-")
u_pass = data_utils.rand_name("pwd-")
resp, user = self.client.create_user(
u_name, password=u_pass, domain_id=self.domain['id'])
self.addCleanup(self.client.delete_user, user['id'])
self.client.add_group_user(self.group_body['id'], user['id'])
# Insure user has role on project
p_name = project['name']
d_name = self.domain['name']
resp, body = self.token.auth(user['id'], u_pass, p_name, domain=d_name)
roles = body['token']['roles']
self.assertEqual(resp['status'], '201')
self.assertEqual(len(roles), 1)
self.assertEqual(roles[0]['id'], self.role['id'])
# Revoke role to group on project
resp, _ = self.client.revoke_role_from_group_on_project(
project['id'], self.group_body['id'], self.role['id'])
self.assertRaises(exceptions.Unauthorized, self.token.auth,
user['id'], u_pass, p_name, domain=d_name)
07-13
07-13
07-13
07-13
07-13
07-13
“相关推荐”对你有帮助么?
-
非常没帮助
-
没帮助
-
一般
-
有帮助
-
非常有帮助
提交