search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
ctdb-scripts: Improve update and listing code
[samba4-gss.git] / python / samba / tests / samba_tool / group_edit.sh
blob3db2c66ea603fd4d6a4dab56b558bc00bb6be634
1 #!/bin/sh
2 #
3 # Test for 'samba-tool group edit'
4
5 if [ $# -lt 3 ]; then
6 cat <<EOF
7 Usage: group_edit.sh SERVER USERNAME PASSWORD
8 EOF
9 exit 1
10 fi
11
12 SERVER="$1"
13 USERNAME="$2"
14 PASSWORD="$3"
15
16 samba_ldbsearch=ldbsearch
17 if test -x $BINDIR/ldbsearch; then
18 samba_ldbsearch=$BINDIR/ldbsearch
19 fi
20
21 STpath=$(pwd)
22 . $STpath/testprogs/blackbox/subunit.sh
23
24 display_name="Users in Göttingen"
25 display_name_b64="VXNlcnMgaW4gR8O2dHRpbmdlbg=="
26 display_name_new="Users in Goettingen"
27 # attribute value including control character
28 # echo -e "test \a string" | base64
29 display_name_con_b64="dGVzdCAHIHN0cmluZwo="
30
31 tmpeditor=$(mktemp --suffix .sh -p $SELFTEST_TMPDIR samba-tool-editor-XXXXXXXX)
32 chmod +x $tmpeditor
33
34 create_test_group()
35 {
36 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
37 group add testgroup1 \
38 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
39 }
40
41 delete_test_group()
42 {
43 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
44 group delete testgroup1 \
45 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
46 }
47
48 create_test_user()
49 {
50 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
51 user create testuser1 --random-password \
52 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
53 }
54
55 delete_test_user()
56 {
57 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
58 user delete testuser1 \
59 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
60 }
61
62 add_member()
63 {
64 user_dn=$($PYTHON ${STpath}/source4/scripting/bin/samba-tool \
65 user show testuser1 --attributes=dn \
66 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD" |
67 grep ^dn: | cut -d' ' -f2)
68
69 # create editor.sh
70 cat >$tmpeditor <<EOF
71 #!/usr/bin/env bash
72 group_ldif="\$1"
73
74 grep -v '^$' \$group_ldif > \${group_ldif}.tmp
75 echo "member: $user_dn" >> \${group_ldif}.tmp
76
77 mv \${group_ldif}.tmp \$group_ldif
78 EOF
79
80 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
81 group edit testgroup1 --editor=$tmpeditor \
82 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
83 }
84
85 get_member()
86 {
87 $PYTHON ${STpath}/source4/scripting/bin/samba-tool \
88 group listmembers testgroup1 \
89 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
90 }
91
92 # Test edit group - add base64 attributes
93 add_attribute_base64()
94 {
95 # create editor.sh
96 cat >$tmpeditor <<EOF
97 #!/usr/bin/env bash
98 group_ldif="\$1"
99
100 grep -v '^$' \$group_ldif > \${group_ldif}.tmp
101 echo "displayName:: $display_name_b64" >> \${group_ldif}.tmp
102
103 mv \${group_ldif}.tmp \$group_ldif
104 EOF
105
106 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group edit \
107 testgroup1 --editor=$tmpeditor \
108 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
109 }
110
111 get_attribute_base64()
112 {
113 $samba_ldbsearch '(sAMAccountName=testgroup1)' displayName \
114 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
115 }
116
117 delete_attribute()
118 {
119 # create editor.sh
120 cat >$tmpeditor <<EOF
121 #!/usr/bin/env bash
122 group_ldif="\$1"
123
124 grep -v '^displayName' \$group_ldif >> \${group_ldif}.tmp
125 mv \${group_ldif}.tmp \$group_ldif
126 EOF
127 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group edit \
128 testgroup1 --editor=$tmpeditor \
129 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
130 }
131
132 # Test edit group - add base64 attribute value including control character
133 add_attribute_base64_control()
134 {
135 # create editor.sh
136 cat >$tmpeditor <<EOF
137 #!/usr/bin/env bash
138 group_ldif="\$1"
139
140 grep -v '^$' \$group_ldif > \${group_ldif}.tmp
141 echo "displayName:: $display_name_con_b64" >> \${group_ldif}.tmp
142
143 mv \${group_ldif}.tmp \$group_ldif
144 EOF
145 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group edit \
146 testgroup1 --editor=$tmpeditor \
147 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
148 }
149
150 get_attribute_base64_control()
151 {
152 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group show \
153 testgroup1 --attributes=displayName \
154 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
155 }
156
157 get_attribute_force_no_base64()
158 {
159 # LDB_FLAG_FORCE_NO_BASE64_LDIF should be used here.
160 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group show \
161 testgroup1 --attributes=displayName \
162 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
163 }
164
165 # Test edit group - change base64 attribute value including control character
166 change_attribute_base64_control()
167 {
168 # create editor.sh
169 cat >$tmpeditor <<EOF
170 #!/usr/bin/env bash
171 group_ldif="\$1"
172
173 sed -i -e 's/displayName:: $display_name_con_b64/displayName: $display_name/' \
174 \$group_ldif
175 EOF
176 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group edit \
177 testgroup1 --editor=$tmpeditor \
178 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
179 }
180
181 # Test edit group - change attributes with LDB_FLAG_FORCE_NO_BASE64_LDIF
182 change_attribute_force_no_base64()
183 {
184 # create editor.sh
185 # Expects that the original attribute is available as clear text,
186 # because the LDB_FLAG_FORCE_NO_BASE64_LDIF should be used here.
187 cat >$tmpeditor <<EOF
188 #!/usr/bin/env bash
189 group_ldif="\$1"
190
191 sed -i -e 's/displayName: $display_name/displayName: $display_name_new/' \
192 \$group_ldif
193 EOF
194
195 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group edit \
196 testgroup1 --editor=$tmpeditor \
197 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
198 }
199
200 get_changed_attribute_force_no_base64()
201 {
202 $PYTHON ${STpath}/source4/scripting/bin/samba-tool group show \
203 testgroup1 --attributes=displayName \
204 -H "ldap://$SERVER" "-U$USERNAME" "--password=$PASSWORD"
205 }
206
207 failed=0
208
209 testit "create_test_group" create_test_group || failed=$(expr $failed + 1)
210 testit "create_test_user" create_test_user || failed=$(expr $failed + 1)
211 testit "add_member" add_member || failed=$(expr $failed + 1)
212 testit_grep "get_member" "^testuser1" get_member || failed=$(expr $failed + 1)
213 testit "add_attribute_base64" add_attribute_base64 || failed=$(expr $failed + 1)
214 testit_grep "get_attribute_base64" "^displayName:: $display_name_b64" get_attribute_base64 || failed=$(expr $failed + 1)
215 testit "delete_attribute" delete_attribute || failed=$(expr $failed + 1)
216 testit "add_attribute_base64_control" add_attribute_base64_control || failed=$(expr $failed + 1)
217 testit_grep "get_attribute_base64_control" "^displayName:: $display_name_con_b64" get_attribute_base64_control || failed=$(expr $failed + 1)
218 testit "change_attribute_base64_control" change_attribute_base64_control || failed=$(expr $failed + 1)
219 testit_grep "get_attribute_base64" "^displayName:: $display_name_b64" get_attribute_base64 || failed=$(expr $failed + 1)
220 testit_grep "get_attribute_force_no_base64" "^displayName: $display_name" get_attribute_force_no_base64 || failed=$(expr $failed + 1)
221 testit "change_attribute_force_no_base64" change_attribute_force_no_base64 || failed=$(expr $failed + 1)
222 testit_grep "get_changed_attribute_force_no_base64" "^displayName: $display_name_new" get_changed_attribute_force_no_base64 || failed=$(expr $failed + 1)
223 testit "delete_test_group" delete_test_group || failed=$(expr $failed + 1)
224 testit "delete_test_user" delete_test_user || failed=$(expr $failed + 1)
225
226 rm -f $tmpeditor
227
228 exit $failed
GSS-enabled samba4