summaryrefslogtreecommitdiff
path: root/qpid/cpp/src/tests/acl.py
Commit message (Collapse)AuthorAgeFilesLines
* QPID-7207: remove cpp and python subdirs from svn trunk, they have migrated ↵Robert Gemmell2016-07-051-3959/+0
| | | | | | to their own git repositories git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1751566 13f79535-47bb-0310-9956-ffa450edef68
* NO-JIRA: Fix error message test in acl.py, on older python versions error ↵Alan Conway2014-09-091-10/+10
| | | | | | code is '7L' instead of '7' git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1623856 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4123: C++ Broker ACL creates too many rulesCharles E. Rolke2014-07-231-3/+177
| | | | | | | | | | | | | | | | | | | | | | | Recent changes have added new tables to define what are ACL lookups and their properties. This commit finishes that work by not propagating rules that will never match. Also, it completes the scaffolding for allowed and denied host lists to be fully integrated. This commit: * Adds startup logging of ACL validation tables with cross references to possible rule matches. * Hooks the ACL host allow/deny connection lists into self test. * Fixes self tests that get broken by proper rule table handling. * Introduces a 'create connection' decision mode similar to ACL rule decision mode. * Describes it all in doc book. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1612874 13f79535-47bb-0310-9956-ffa450edef68
* QPID-5817: [C++ broker] Improve ACL authorisation of QMF methods and queriesPavel Moravec2014-06-181-5/+158
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1603364 13f79535-47bb-0310-9956-ffa450edef68
* QPID-5561: QPID-5565: Broker->ACL module improvementsPavel Moravec2014-02-261-8/+8
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1572059 13f79535-47bb-0310-9956-ffa450edef68
* QPID-5519: ACL property/properties for paged queues - fixed typo, added ↵Pavel Moravec2014-02-031-0/+223
| | | | | | tests and documentation git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1563866 13f79535-47bb-0310-9956-ffa450edef68
* QPID-5283: ensure queue has no consumers before granting exclusive ownershipGordon Sim2013-10-311-1/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1537579 13f79535-47bb-0310-9956-ffa450edef68
* QPID-5246: update ACL code to recognise self-destruct policyGordon Sim2013-10-221-2/+13
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1534613 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4775: C++ Broker add ACL property checks for delete queue and exchange.Charles E. Rolke2013-05-021-7/+239
| | | | | | | | | 0-18-based patch from Pavel Moravec was adjusted for trunk. Removed size properties from list of queue deletion check parameters. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1478418 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4735: ACL file size/count upper limit checks incorrectCharles E. Rolke2013-04-101-1/+94
| | | | | | | | | | Merge IntMin and IntMax functions into a single function to contain duplicated code. Improve log messages so that reading a log file is less painful. Turn on ACL debug logging for main broker in ACL self test. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1466652 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4727:C++ Broker ACL keyword to reference default exchange.Charles E. Rolke2013-04-081-0/+11
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1465719 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4604: C++ Broker queue limits controlled by ACL file. Patch from Ernie ↵Charles E. Rolke2013-03-011-39/+123
| | | | | | | | | | Allen. See https://reviews.apache.org/r/9703/ git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1451737 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4607: C++ Broker connection limit counting failsCharles E. Rolke2013-02-271-68/+78
| | | | | | | | | | | | | | | Repair a few small but critical errors in program logic. Repair several misconceptions in the self test including: * provide visibility to connections (not sessions) so that they may be closed. * dodge names that may survive open connections from other tests. Tests may pass if run first but then fail if run 30th. The whole acl.py module could use a clean up pass to close out the 50+ open connections that exist that the end of the test. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1450841 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4054 C++ Broker connection limits per userCharles E. Rolke2013-02-091-7/+215
| | | | | | | | | | | | | | 1. Constrain maximum limits to be a few ticks below Uint16_t max to avoid inadvertent wrapping and to allow room for some named constants such as UNLIMITED. 2. Add syntax to Acl rule file quota connections N user|group [user|group] 3. Pseudo user 'all' receives value from command line switch or from Acl rule file. 4. Named constant strings used in comparisons instead of local strings. 5. Connection counts maintained all the time to support reolad of Acl rule file that may change limits. 6. Self tests exercise all the features. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1444302 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4268 C++ Broker Acl support for limiting on-disk store file size and countCharles E. Rolke2012-09-071-0/+282
| | | | | | | | Reviewed at https://reviews.apache.org/r/6838/ git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1382095 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4249 TopicExchange binding lookup for all routing keysCharles E. Rolke2012-08-241-2/+123
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1377130 13f79535-47bb-0310-9956-ffa450edef68
* QPID-2393 Limit number of queues per user.Charles E. Rolke2012-08-241-0/+59
| | | | | | | | | Merge work from branches/qpid-2393 This scheme works for old HA as long as cluster members run with the same --max-queues-per-user setting. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1376961 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4230 (review 6645) Username substition keywords in Acl file.Charles E. Rolke2012-08-201-0/+540
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1375195 13f79535-47bb-0310-9956-ffa450edef68
* NO-JIRA Initialize variable before its use.Charles E. Rolke2012-08-151-0/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1373429 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3892 C++ broker add routing key wildcard support to Acl 'publish ↵Charles E. Rolke2012-07-151-1/+119
| | | | | | | | | | | | | exchange' lookups. Although this patch does not address the original issue's regex request it provides the desired functionality in a more comprehensive manner. * Acl publish exchange rules may specify routing keys using the topic exchange syntax with '*' and '#' wildcard match tokens. * Acl lookups hook in to the broker's topic exchange key match code to perform the wildcard match. * Acl rules written using the old Acl wildcard syntax (with a single trailing '*') will continue to work the same as before. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1361678 13f79535-47bb-0310-9956-ffa450edef68
* QPID-4032 Broker ACL does not accept sub-groups in group declarationCharles E. Rolke2012-06-011-1/+29
| | | | | | | | | | | | Patch from Paul Colby and new self test demonstrating the fix. Note that this patch broke the user_realm self test. That is, a naked name like 'bob' has changed from being a username missing a domain to being a group name. The self test used to fail and still fails but now for a different reason. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1345190 13f79535-47bb-0310-9956-ffa450edef68
* QPID-2616 Count and limit client connections.Charles E. Rolke2012-05-021-10/+22
| | | | | | | | Bug fix: use Connection.getUserId() and not getUsername() to identify user and upgrade selftest to match. Add comment to Connection.h to suggest the particular pitfall. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1333110 13f79535-47bb-0310-9956-ffa450edef68
* QPID-2616 Count and limit client connections.Charles E. Rolke2012-04-301-0/+50
| | | | | | | | Add self tests for connection counting feature. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1332342 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3964: Enforce 'access' premission rather than 'create' for passive ↵Gordon Sim2012-04-201-9/+32
| | | | | | declares; remove the now redundant 'passive' property from ACL model git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1328384 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3918 Add management queries to ACL module.Charles E. Rolke2012-04-041-0/+194
| | | | | | | | | * Make queries available to self tests. * Exercise query interface during acl self tests. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1309549 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3799 Acl update. Merge from branches/QPID-3799-aclCharles E. Rolke2012-03-011-206/+392
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1295730 13f79535-47bb-0310-9956-ffa450edef68
* QPID-2894 - Added ACL stats to qpid-stat and a reload-file action to ↵Ted Ross2012-02-231-29/+33
| | | | | | | | | qpid-config. Ported the ACL tests to use the faster API. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1292880 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3417: C++ broker - support adding arrival timestamp to received messages.Kenneth Anthony Giusti2011-10-121-0/+64
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1182490 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3015: assertTrue not available on older versions of python; change to ↵Gordon Sim2011-02-231-2/+2
| | | | | | assert git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1073945 13f79535-47bb-0310-9956-ffa450edef68
* QPID-3015: cleanup and additional test of acl enforcementGordon Sim2011-02-231-26/+129
| | | | | | | | [Also modified acl unit test module to allow the policy file used to be configurable, making it easier to run standalone. Reset policy to allow all on tear down to allow repeated runs.] git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1073726 13f79535-47bb-0310-9956-ffa450edef68
* Added a few more test cases for acl file format.Rajith Muditha Attapattu2010-05-121-3/+26
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@943624 13f79535-47bb-0310-9956-ffa450edef68
* This commit contains a fix for QPID-2600Rajith Muditha Attapattu2010-05-121-34/+24
| | | | | | | | | | Added a test case to check if all allowed chars are accepted and the rest is rejected. Added a check for empty continuation lines. Improved error reporting by adding a line number. Removed test_allowed_chars_for_username method from acl.py as the check for group name will flag the "@" char, making this test case redundent. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@943351 13f79535-47bb-0310-9956-ffa450edef68
* Use UnauthorizedAccessException for ACL violations rather than ↵Gordon Sim2010-05-061-76/+76
| | | | | | NotAllowedException git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@941636 13f79535-47bb-0310-9956-ffa450edef68
* This adds test cases for QPID-2488Rajith Muditha Attapattu2010-04-081-0/+75
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@932152 13f79535-47bb-0310-9956-ffa450edef68
* specify PLAIN so that sasl negotiation can't end up using ANONYMOUSRafael H. Schloming2010-02-051-1/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@906959 13f79535-47bb-0310-9956-ffa450edef68
* This is a fix for QPID-2297Rajith Muditha Attapattu2010-01-111-2/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@898016 13f79535-47bb-0310-9956-ffa450edef68
* Added full SASL authentication and security layer for the Python client.Ted Ross2009-11-111-5/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@834975 13f79535-47bb-0310-9956-ffa450edef68
* This is related to QPID-2108Rajith Muditha Attapattu2009-09-291-8/+8
| | | | | | | | | I was initially setting the qpid.max_count and qpid.max_size as strings instead of ints as expected by the API. I also incorrectly fetched them as strings on the broker side. This commit fixes acl.py test script to use int values for the above properties and then fetches them appropriately from the broker side. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@820082 13f79535-47bb-0310-9956-ffa450edef68
* I have applied the patch attached to QPID-2108 from Tim Platten with a few ↵Rajith Muditha Attapattu2009-09-291-12/+114
| | | | | | | | | | | modifications. (Please refer to the JIRA for a description of these modifications) I also fixed the formatting and added more debug loggging for the publish acl lookup method in AclData.cpp I also added test cases to cover QPID-2108 git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@819948 13f79535-47bb-0310-9956-ffa450edef68
* Organized the tests to cover both allow and deny mode for particular caseRajith Muditha Attapattu2009-09-111-33/+259
| | | | | | | | Added more tests cases to exchange , particularly to cover QPID-2098 Fixed errors in test cases for queue acl git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@814077 13f79535-47bb-0310-9956-ffa450edef68
* This commit contains the followingRajith Muditha Attapattu2009-09-111-21/+105
| | | | | | | | | | 1. Applying patches from Tim Platten attched to QPID-2062 and QPID-2063 2. Fixed QPID-2098 3. Added test cases for QPID-2062 and QPID-2063 4. Added more user friendly logging for ACL rule processing and lookup methods. In debug mode the logging should now provide more visibility into how rules are evaluated. git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@813850 13f79535-47bb-0310-9956-ffa450edef68
* fixed the cpp/python test integrationRafael H. Schloming2009-08-111-59/+30
| | | | git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@803270 13f79535-47bb-0310-9956-ffa450edef68
* This is related to QPID-1558.Rajith Muditha Attapattu2009-01-071-2/+44
| | | | | | | The test case test_group_and_user_with_same_name covers the error condition in QPID-1545 git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@732466 13f79535-47bb-0310-9956-ffa450edef68
* QPID-1464 - Moved qmf console API out of python/qpid and into python/qmfTed Ross2008-11-201-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/incubator/qpid/trunk@719359 13f79535-47bb-0310-9956-ffa450edef68
* This is for QPID-1363Rajith Muditha Attapattu2008-10-221-0/+459
These tests creates an acl file and use the acl.reloadAclFile method to reconfigure the broker. The tests are run as part of make check git-svn-id: https://svn.apache.org/repos/asf/incubator/qpid/trunk@706850 13f79535-47bb-0310-9956-ffa450edef68