upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2026-01-27 09:09:20 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

ITS#7084, ITS#7089, ITS#7788 Update test to account for new functionality

Browse source
This commit is contained in:
Ondřej Kuzník 2020-06-24 12:54:27 +01:00 committed by Quanah Gibson-Mount
parent e05c09b919
commit 5bf16496e4
2 changed files with 33 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
tests/data/slapd-ppolicy.conf
View file

@ -47,6 +47,7 @@ ppolicy_use_lockout
access to attrs=userpassword
by self write
by dn="uid=ndadmin, ou=People, dc=example, dc=com" manage
by * auth
access to *

36
tests/scripts/test022-ppolicy
View file

@ -38,6 +38,8 @@ KILLPIDS="$PID"
USER="uid=nd, ou=People, dc=example, dc=com"
PASS=testpassword
PWADMIN="uid=ndadmin, ou=People, dc=example, dc=com"
ADMINPASSWD=testpw
sleep 1
@ -216,17 +218,43 @@ if test $RC = 0 ; then
exit 1
fi
echo "Testing failed logins when password/policy missing..."
$LDAPSEARCH -e ppolicy -h $LOCALHOST -p $PORT1 \
-D "uid=test, ou=People,$BASEDN" -w hasnopolicy \
-b "$BASEDN" -s base > $SEARCHOUT 2>&1
RC=$?
if test $RC = 0 ; then
echo "Password accepted ($RC)!"
test $KILLSERVERS != no && kill -HUP $KILLPIDS
exit 1
fi
$LDAPSEARCH -e ppolicy -h $LOCALHOST -p $PORT1 -D "$BASEDN" -w hasnopw \
-b "$BASEDN" -s base > $SEARCHOUT 2>&1
RC=$?
if test $RC = 0 ; then
echo "Password accepted ($RC)!"
test $KILLSERVERS != no && kill -HUP $KILLPIDS
exit 1
fi
$LDAPSEARCH -H $URI1 -D "$MANAGERDN" -w $PASSWD -b "$BASEDN" \* \+ > $SEARCHOUT 2>&1
COUNT=`grep "pwdFailureTime" $SEARCHOUT | wc -l`
if test $COUNT != 0 ; then
echo "Failed login stored on an account without policy and or password"
test $KILLSERVERS != no && kill -HUP $KILLPIDS
exit 1
fi
echo "Testing forced reset..."
$LDAPMODIFY -v -D "$MANAGERDN" -h $LOCALHOST -p $PORT1 -w $PASSWD >> \
$LDAPMODIFY -v -D "$PWADMIN" -h $LOCALHOST -p $PORT1 -w $ADMINPASSWD >> \
$TESTOUT 2>&1 << EOMODS
dn: uid=nd, ou=People, dc=example, dc=com
changetype: modify
replace: userPassword
userPassword: $PASS
-
replace: pwdReset
pwdReset: TRUE
EOMODS
RC=$?