mirror of
https://github.com/goharbor/harbor.git
synced 2024-10-06 09:17:33 +02:00
1b127b16c5
1. Add 7 API python test scripts for tag immutability; 2. Swagger file has object struct defination issue on imuutability policy rule, because this policy is in shared with retention rule, therefore, they should be unified to the same type of rule; 3. Fixed a timeout issue of action keyword, waiting for a long period; 4. Add API test scripts for scan signed image. Signed-off-by: danfengliu <danfengl@vmware.com>
94 lines
4.4 KiB
Python
94 lines
4.4 KiB
Python
from __future__ import absolute_import
|
|
import unittest
|
|
|
|
from testutils import ADMIN_CLIENT
|
|
from testutils import harbor_server
|
|
from testutils import TEARDOWN
|
|
from library.sign import sign_image
|
|
from library.artifact import Artifact
|
|
from library.project import Project
|
|
from library.user import User
|
|
from library.repository import Repository
|
|
from library.repository import push_image_to_project
|
|
from library.repository import push_special_image_to_project
|
|
|
|
class TestProjects(unittest.TestCase):
|
|
@classmethod
|
|
def setUp(self):
|
|
self.project = Project()
|
|
self.user = User()
|
|
self.artifact = Artifact()
|
|
self.repo = Repository()
|
|
self.repo_name_1 = "test1_sign"
|
|
|
|
@classmethod
|
|
def tearDown(self):
|
|
print("Case completed")
|
|
|
|
@unittest.skipIf(TEARDOWN == False, "Test data won't be erased.")
|
|
def test_ClearData(self):
|
|
# remove the deletion as the signed image cannot be deleted.
|
|
#1. Delete repository(RA) by user(UA);
|
|
#self.repo.delete_repoitory(TestProjects.project_sign_image_name, TestProjects.repo_name.split('/')[1], **TestProjects.USER_sign_image_CLIENT)
|
|
|
|
#2. Delete project(PA);
|
|
#self.project.delete_project(TestProjects.project_sign_image_id, **TestProjects.USER_sign_image_CLIENT)
|
|
|
|
#3. Delete user(UA);
|
|
self.user.delete_user(TestProjects.user_sign_image_id, **ADMIN_CLIENT)
|
|
|
|
def testSignImage(self):
|
|
"""
|
|
Test case:
|
|
Sign A Image
|
|
Test step and expected result:
|
|
1. Create a new user(UA);
|
|
2. Create a new private project(PA) by user(UA);
|
|
3. Add user(UA) as a member of project(PA) with project-admin role;
|
|
4. Get private project of user(UA), user(UA) can see only one private project which is project(PA);
|
|
5. Create a new repository(RA) and tag(TA) in project(PA) by user(UA);
|
|
6. Sign image with tag(TA) which was tagged by step #5;
|
|
7. Get signature of image with tag(TA), it should be exist.
|
|
Tear down:
|
|
NA
|
|
"""
|
|
url = ADMIN_CLIENT["endpoint"]
|
|
user_001_password = "Aa123456"
|
|
|
|
#1. Create user-001
|
|
TestProjects.user_sign_image_id, user_sign_image_name = self.user.create_user(user_password = user_001_password, **ADMIN_CLIENT)
|
|
|
|
TestProjects.USER_sign_image_CLIENT=dict(with_signature = True, endpoint = url, username = user_sign_image_name, password = user_001_password)
|
|
|
|
#2. Create a new private project(PA) by user(UA);
|
|
TestProjects.project_sign_image_id, TestProjects.project_sign_image_name = self.project.create_project(metadata = {"public": "false"}, **ADMIN_CLIENT)
|
|
|
|
#3. Add user(UA) as a member of project(PA) with project-admin role;
|
|
self.project.add_project_members(TestProjects.project_sign_image_id, user_id=TestProjects.user_sign_image_id, **ADMIN_CLIENT)
|
|
|
|
#4. Get private project of user(UA), user(UA) can see only one private project which is project(PA);
|
|
self.project.projects_should_exist(dict(public=False), expected_count = 1,
|
|
expected_project_id = TestProjects.project_sign_image_id, **TestProjects.USER_sign_image_CLIENT)
|
|
|
|
image = "hello-world"
|
|
src_tag = "latest"
|
|
#5. Create a new repository(RA) and tag(TA) in project(PA) by user(UA);
|
|
TestProjects.repo_name, tag = push_image_to_project(TestProjects.project_sign_image_name, harbor_server, user_sign_image_name, user_001_password, image, src_tag)
|
|
|
|
#6. Sign image with tag(TA) which was tagged by step #5;
|
|
sign_image(harbor_server, TestProjects.project_sign_image_name, image, tag)
|
|
|
|
#7. Get signature of image with tag(TA), it should be exist.
|
|
artifact = self.artifact.get_reference_info(TestProjects.project_sign_image_name, image, tag, **TestProjects.USER_sign_image_CLIENT)
|
|
self.assertEqual(artifact.tags[0].signed, True)
|
|
|
|
push_special_image_to_project(TestProjects.project_sign_image_name, harbor_server, user_sign_image_name, user_001_password, self.repo_name_1, ['1.0'])
|
|
self.repo.delete_repoitory(TestProjects.project_sign_image_name, self.repo_name_1, **TestProjects.USER_sign_image_CLIENT)
|
|
|
|
ret = self.repo.delete_repoitory(TestProjects.project_sign_image_name, TestProjects.repo_name.split('/')[1], expect_status_code=412, **TestProjects.USER_sign_image_CLIENT)
|
|
self.assertIn("with signature cannot be deleted", ret)
|
|
|
|
|
|
if __name__ == '__main__':
|
|
unittest.main()
|