fasdrf

 @test.attr(type='smoke')
    def test_validation_of_grant_revoke_role_to_group_on_project(self):
        # Create project in domain, and grant role to group on project
        resp, project = self.client.create_project(
            data_utils.rand_name('Pro-'),
            domain_id=self.domain['id'])
        self.addCleanup(self.client.delete_project, project['id'])
        resp, _ = self.client.assign_group_role_on_project(
            project['id'], self.group_body['id'], self.role['id'])
        # Create a user, add it to group
        u_name = data_utils.rand_name("user-")
        u_pass = data_utils.rand_name("pwd-")
        resp, user = self.client.create_user(
            u_name, password=u_pass, domain_id=self.domain['id'])
        self.addCleanup(self.client.delete_user, user['id'])
        self.client.add_group_user(self.group_body['id'], user['id'])
        # Insure user has role on project
        p_name = project['name']
        d_name = self.domain['name']
        resp, body = self.token.auth(user['id'], u_pass, p_name, domain=d_name)
        roles = body['token']['roles']
        self.assertEqual(resp['status'], '201')
        self.assertEqual(len(roles), 1)
        self.assertEqual(roles[0]['id'], self.role['id'])
        # Revoke role to group on project
        resp, _ = self.client.revoke_role_from_group_on_project(
            project['id'], self.group_body['id'], self.role['id'])
        self.assertRaises(exceptions.Unauthorized, self.token.auth,
                          user['id'], u_pass, p_name, domain=d_name)