juergen 2002/07/12 00:12:45
Added: testsuite/testsuite/junit/xmltestcases/DASL/functional/select/ACL
denyReadACLSearch.xml
Log:
Test case to check DASL commands with ACL.
Revision Changes Path
1.1
jakarta-slide/testsuite/testsuite/junit/xmltestcases/DASL/functional/select/ACL/denyReadACLSearch.xml
Index: denyReadACLSearch.xml
===================================================================
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE test SYSTEM "../../../../../Tprocessor.dtd">
<test>
<specification>
<abstract> A user is denied read-acl access to a resource. The user
then attempts to Search.</abstract>
<description>
1) Put a resource to the server.
2) ACL command to deny read-acl privileges to user %user%.
3) PropFind command by user %user% to check that read-acl privileges
have been denied.
4) Search performed on created resource. This should not be possible.
5) Delete created resource.
</description>
<expectedResult> The Search should return a 409 Forbidden error.
</expectedResult>
</specification>
<step>
<request>
<command
varUsage="userNumber,globalVariableCollection,globalVariableServerName">PUT
/%globalVariableServerName%/%globalVariableCollection%/acl_dasl.xml HTTP/1.1</command>
<header>Accept-Language: en-us</header>
<header>Translate: f</header>
<header>User-Agent: Microsoft Data Access Internet Publishing Provider
DAV</header>
<header>Connection: Keep-Alive</header>
<body fileReference="../../../../contentDirectory/validXML.xm1">
</body>
</request>
<response>
<command>HTTP/1.0 201 Created</command>
<header>Date: Mon, 12 Mar 2001 17:21:35 GMT+01:00</header>
<header>Content-Language: en</header>
<header>Servlet-Engine: Tomcat Web Server/3.2 beta 4 (JSP 1.1; Servlet
2.2; Java 1.3.0; Windows NT 4.0 x86; java.vendor=Sun Microsystems Inc.)</header>
</response>
</step>
<step>
<user varUsage="user">2%user%</user>
<password varUsage="user">2%user%</password>
<request>
<command
varUsage="globalVariableCollection,globalVariableServerName">ACL
/%globalVariableServerName%/%globalVariableCollection%/acl_dasl.xml HTTP/1.1</command>
<header>Content-Type: text/xml; charset=utf-8</header>
<header>User-Agent: Jakarta HTTP Client/1.0</header>
<body varUsage="host,user"><![CDATA[<?xml
version="1.0" encoding="utf-8" ?>
<D:acl xmlns:D="DAV:">
<D:ace>
<D:principal>
<D:href>/administration/security/users/%host%/%user%</D:href>
</D:principal>
<D:deny>
<D:privilege><D:read-acl/></D:privilege>
</D:deny>
</D:ace>
</D:acl>]]>
</body>
</request>
<response>
<command>HTTP/1.0 (200,409) OK</command>
</response>
</step>
<step>
<request>
<command
varUsage="globalVariableCollection,globalVariableServerName">PROPFIND
/%globalVariableServerName%/%globalVariableCollection%/acl_dasl.xml HTTP/1.1</command>
<header>Accept-Language: en-us</header>
<header>Content-Type: text/xml</header>
<header>Translate: f</header>
<header>Depth: 1</header>
<header>User-Agent: Microsoft Data Access Internet Publishing
Provider DAV</header>
<header>Connection: Keep-Alive</header>
<body><![CDATA[<?xml version="1.0" ?>
<D:propfind xmlns:D="DAV:">
<D:prop>
<D:acl />
</D:prop>
</D:propfind>]]>
</body>
</request>
<response>
<command>HTTP/1.0 403 Forbidden</command>
</response>
</step>
<step>
<request>
<command varUsage ="globalVariableServerName">SEARCH
/%globalVariableServerName% HTTP/1.1</command>
<body varUsage="globalVariableCollection"><![CDATA[<?xml
version="1.0" encoding="UTF-8"?>
<searchrequest xmlns:D="DAV:">
<D:basicsearch>
<D:select>
<D:prop>
<D:displayname/>
<D:test/>
</D:prop>
</D:select>
<D:from>
<D:scope>
<D:href>%globalVariableCollection%/acl_dasl.xml</D:href>
<D:depth>1</D:depth>
</D:scope>
</D:from>
</D:basicsearch>
</searchrequest>
]]>
</body>
</request>
<response>
<command>HTTP/1.0 403 Forbidden</command>
</response>
</step>
<cleanup>
<step>
<user varUsage="user">2%user%</user>
<password varUsage="user">2%user%</password>
<request>
<command
varUsage="globalVariableCollection,globalVariableServerName">ACL
/%globalVariableServerName%/%globalVariableCollection%/acl_dasl.xml HTTP/1.1</command>
<header>Content-Type: text/xml; charset=utf-8</header>
<header>User-Agent: Jakarta HTTP Client/1.0</header>
<body
varUsage="globalVariableCollection,globalVariableServerName"><![CDATA[<?xml
version="1.0" encoding="utf-8" ?>
<D:acl xmlns:D="DAV:">
<D:ace>
<D:principal>
<D:all></D:all>
</D:principal>
<D:grant>
<D:privilege><D:all /></D:privilege>
</D:grant>
</D:ace>
</D:acl>]]>
</body>
</request>
<response>
<command>HTTP/1.0 200 OK</command>
</response>
</step>
<step>
<request>
<command
varUsage="globalVariableCollection,globalVariableServerName">DELETE
/%globalVariableServerName%/%globalVariableCollection%/acl_dasl.xml HTTP/1.1</command>
<header>Accept-Language: en-us</header>
<header>Destroy: NoUndelete</header>
<header>Translate: f</header>
<header>User-Agent: Microsoft Data Access Internet
Publishing Provider DAV</header>
<header>Connection: Keep-Alive</header>
</request>
<response>
<command>HTTP/1.0 204 No Content</command>
<header>Date: Wed, 14 Mar 2001 14:47:37
GMT+01:00</header>
<header>Content-Language: en</header>
<header>Servlet-Engine: Tomcat Web Server/3.2 beta 4
(JSP 1.1; Servlet 2.2; Java 1.3.0; Windows NT 4.0 x86; java.vendor=Sun Microsystems
Inc.)</header>
</response>
</step>
</cleanup>
</test>
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
