harbor/tests/testcases/Group4-logging/4-06-LDAP-usergroup-view-logs.md
stonezdj ab20642f0d Add testcase for assign role to LDAP group.
Including
1. LDAP group configure settings
2. Assign role to LDAP user group.
3. Manage user group
2018-05-22 19:17:45 +08:00

1.5 KiB

Test 4-06 - User Views Logs (LDAP Mode)

Purpose:

To verify that a LDAP user group can views logs when users are managed externally by LDAP or AD (LDAP mode).

References:

User guide

Environment:

  • This test requires that a Harbor instance is running and available.
  • An LDAP server is running and available, and enabled memberof overlay feature.
  • Harbor is set to authenticate against an LDAP or AD server. ( auth_mode is set to ldap_auth .) The user data is stored in an LDAP or AD server.
  • A linux host with Docker CLI installed (Docker client).
  • LDAP group config parameter are configured.
    1. ldap_group_basedn
    2. ldap_group_filter
    3. ldap_gid
    4. ldap_group_scope

Test Steps:

  1. Add group harbor_admin and create a user admin_user, admin_user is a member of harbor_admin
  2. Login to UI with admin user, create a private project ldap_group_proj
  3. Add a project member with ldap the LDAP DN of harbor_admin, with administrator role
  4. Log in to the UI as the admin_user in docker client.
  5. push/pull images to ldap_group_proj.
  6. View the logs of the project.
  7. Try below search criteria to see if the search result is correct:
  • push only
  • pull only
  • pull and push
  • delete only
  • all
  • push and delete
  • different date ranges
  • date range and push

Expected Outcome:

  • All operations in Step 5 should be logged.
  • Logs can be viewed in Step 6, check if the time and operations are correct.
  • Logs can be filtered in Step 6.

Possible Problems:

None