Merge branch '382-lock-admin-when-creating-new-user' of https://github.com/Leandry/magento-functional-tests-migration into community-tests-migration-pr

okolesnyk · okolesnyk · commit f1561c61a2c2 · 2019-04-22T19:47:45.000-05:00
diff --git a/app/code/Magento/Backend/Test/Mftf/Page/AdminAddNewUserPage.xml b/app/code/Magento/Backend/Test/Mftf/Page/AdminAddNewUserPage.xml
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ /**
+  * Copyright © Magento, Inc. All rights reserved.
+  * See COPYING.txt for license details.
+  */
+-->
+
+<pages xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:noNamespaceSchemaLocation="urn:magento:mftf:Page/etc/PageObject.xsd">
+    <page name="AdminAddNewUserPage" url="admin/user/new" area="admin" module="Backend">
+        <section name="AddNewAdminUserSection"/>
+    </page>
+</pages>
diff --git a/app/code/Magento/Backend/Test/Mftf/Section/AdminLoginFormSection.xml b/app/code/Magento/Backend/Test/Mftf/Section/AdminLoginFormSection.xml
@@ -13,5 +13,6 @@
         <element name="password" type="input" selector="#login"/>
         <element name="signIn" type="button" selector=".actions .action-primary" timeout="30"/>
         <element name="forgotPasswordLink" type="button" selector=".action-forgotpassword" timeout="10"/>
+        <element name="error" type="text" selector=".message.message-error.error"/>
     </section>
 </sections>
diff --git a/app/code/Magento/Backend/Test/Mftf/Section/AdminNewUserSection.xml b/app/code/Magento/Backend/Test/Mftf/Section/AdminNewUserSection.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ /**
+  * Copyright © Magento, Inc. All rights reserved.
+  * See COPYING.txt for license details.
+  */
+-->
+
+<sections xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+          xsi:noNamespaceSchemaLocation="urn:magento:mftf:Page/etc/SectionObject.xsd">
+    <section name="AdminNewUserSection">
+        <element name="username" type="input" selector="#user_username"/>
+        <element name="firstname" type="input" selector="#user_firstname"/>
+        <element name="lastname" type="input" selector="#user_lastname"/>
+        <element name="email" type="input" selector="#user_email"/>
+        <element name="password" type="input" selector="#user_password"/>
+        <element name="confirmation" type="input" selector="#user_confirmation"/>
+        <element name="currentPassword" type="input" selector="#user_current_password"/>
+        <element name="save" type="button" selector="#save"/>
+        <element name="userRoleTab" type="button" selector="#page_tabs_roles_section"/>
+        <element name="administratorRole" type="radio" selector="//*[@id='permissionsUserRolesGrid_table']//td[{{role}}]/input" parameterized="true"/>
+    </section>
+</sections>
diff --git a/app/code/Magento/Checkout/Test/Mftf/Section/StorefrontCheckoutCheckoutCustomerLoginSection.xml b/app/code/Magento/Checkout/Test/Mftf/Section/StorefrontCheckoutCheckoutCustomerLoginSection.xml
@@ -11,7 +11,7 @@
     <section name="StorefrontCheckoutCheckoutCustomerLoginSection">
         <element name="email" type="input" selector="form[data-role='email-with-possible-login'] input[name='username']" />
         <element name="emailNoteMessage" type="text" selector="//form[@data-role='email-with-possible-login']//div[input[@name='username']]//*[contains(@class, 'note')]" />
-        <element name="emailErrorMessage" type="text" selector="//form[@data-role='email-with-possible-login']//div[input[@name='username']]//*[@id='customer-email-error']" />
+        <element name="emailErrorMessage" type="text" selector="//form[@data-role='email-with-possible-login']//div[input[@name='username']]//*[@id='checkout-customer-email-error']" />
         <element name="emailTooltipButton" type="button" selector="//form[@data-role='email-with-possible-login']//div[input[@name='username']]//*[contains(@class, 'action-help')]" />
         <element name="emailTooltipContent" type="text" selector="//form[@data-role='email-with-possible-login']//div[input[@name='username']]//*[contains(@class, 'field-tooltip-content')]" />
         <element name="password" type="input" selector="form[data-role='email-with-possible-login'] input[name='password']" />
diff --git a/app/code/Magento/Security/Test/Mftf/ActionGroup/AdminNewUserInvalidCurrentUserPasswordActionGroup.xml b/app/code/Magento/Security/Test/Mftf/ActionGroup/AdminNewUserInvalidCurrentUserPasswordActionGroup.xml
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ /**
+  * Copyright © Magento, Inc. All rights reserved.
+  * See COPYING.txt for license details.
+  */
+-->
+<actionGroups xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:noNamespaceSchemaLocation="urn:magento:mftf:Test/etc/actionGroupSchema.xsd">
+    <actionGroup name="AdminNewUserInvalidCurrentUserPasswordActionGroup">
+        <arguments>
+            <argument name="adminUser" type="string" />
+            <argument name="adminFirstname" type="string" />
+            <argument name="adminLastname" type="string" />
+            <argument name="adminEmail" type="string" />
+            <argument name="adminPassword" type="string" />
+            <argument name="adminPasswordConfirmation" type="string" />
+            <argument name="currentAdminPassword" type="string" />
+            <argument name="adminUserRole" type="string"/>
+        </arguments>
+        <!-- Fill in all data according to data set (current password is incorrect). -->
+        <fillField selector="{{AdminNewUserSection.username}}" userInput="{{adminUser}}" stepKey="fillUser"/>
+        <fillField selector="{{AdminNewUserSection.firstname}}" userInput="{{adminFirstname}}" stepKey="fillFirstName"/>
+        <fillField selector="{{AdminNewUserSection.lastname}}" userInput="{{adminLastname}}" stepKey="fillLastName"/>
+        <fillField selector="{{AdminNewUserSection.email}}" userInput="{{adminEmail}}" stepKey="fillEmail"/>
+        <fillField selector="{{AdminNewUserSection.password}}" userInput="{{adminPassword}}" stepKey="fillPassword"/>
+        <fillField selector="{{AdminNewUserSection.confirmation}}" userInput="{{adminPasswordConfirmation}}" stepKey="fillPasswordConfirmation"/>
+        <fillField selector="{{AdminNewUserSection.currentPassword}}" userInput="{{currentAdminPassword}}" stepKey="fillCurrentUserPassword"/>
+        <scrollToTopOfPage stepKey="ScrollToTopOfPage"/>
+        <click selector="{{AdminNewUserSection.userRoleTab}}" stepKey="openUserRoleTab"/>
+        <click selector="{{adminUserRole}}" stepKey="assignRole"/>
+        <click selector="{{AdminNewUserSection.save}}" stepKey="saveNewUser"/>
+        <waitForPageLoad stepKey="waitForSaveResultLoad"/>
+    </actionGroup>
+</actionGroups>
diff --git a/app/code/Magento/Security/Test/Mftf/Data/AdminUserData.xml b/app/code/Magento/Security/Test/Mftf/Data/AdminUserData.xml
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ /**
+  * Copyright © Magento, Inc. All rights reserved.
+  * See COPYING.txt for license details.
+  */
+-->
+
+<entities xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+          xsi:noNamespaceSchemaLocation="urn:magento:mftf:DataGenerator/etc/dataProfileSchema.xsd">
+    <entity name="AdminUserData" type="admin">
+        <data key="email" unique="prefix">John.Doe@example.com</data>
+        <data key="firstname">John</data>
+        <data key="username" unique="prefix">lockuser</data>
+        <data key="lastname">Doe</data>
+        <data key="password">pwdTest123!</data>
+    </entity>
+</entities>
diff --git a/app/code/Magento/Security/Test/Mftf/Test/LockAdminUserWhenCreatingNewUserTest.xml b/app/code/Magento/Security/Test/Mftf/Test/LockAdminUserWhenCreatingNewUserTest.xml
@@ -0,0 +1,110 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ /**
+  * Copyright © Magento, Inc. All rights reserved.
+  * See COPYING.txt for license details.
+  */
+-->
+
+<tests xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:noNamespaceSchemaLocation="urn:magento:mftf:Test/etc/testSchema.xsd">
+    <test name="LockAdminUserWhenCreatingNewUserTest">
+        <annotations>
+            <features value="Security"/>
+            <stories value="Runs Lock admin user when creating new user test."/>
+            <title value="Lock admin user when creating new user"/>
+            <description value="Runs Lock admin user when creating new user test."/>
+            <severity value="MAJOR"/>
+            <group value="security"/>
+            <group value="mtf_migrated"/>
+        </annotations>
+        <before>
+            <!-- Log in to Admin Panel -->
+            <actionGroup ref="LoginAsAdmin" stepKey="loginAsAdmin"/>
+        </before>
+        <after>
+            <!-- Unlock Admin user -->
+            <magentoCLI command="admin:user:unlock {{_ENV.MAGENTO_ADMIN_USERNAME}}" stepKey="unlockAdminUser"/>
+        </after>
+
+        <!-- Open Admin New User Page -->
+        <amOnPage url="{{AdminAddNewUserPage.url}}" stepKey="amOnNewAdminUserPage"/>
+        <waitForPageLoad stepKey="waitForNewAdminUserPageLoad"/>
+
+        <!-- Perform add new admin user 6 specified number of times.
+        "The password entered for the current user is invalid. Verify the password and try again." appears after each attempt.-->
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserFirstAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+        <waitForPageLoad stepKey="waitForSaveResultLoad"/>
+        <see selector="{{AdminMessagesSection.error}}" userInput="The password entered for the current user is invalid. Verify the password and try again."
+             stepKey="seeInvalidPasswordError"/>
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserSecondAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserThirdAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserFourthAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserFifthAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+        <actionGroup ref="AdminNewUserInvalidCurrentUserPasswordActionGroup" stepKey="failedSaveUserSixthAttempt">
+            <argument name="adminUser" value="{{AdminUserData.username}}" />
+            <argument name="adminFirstname" value="{{AdminUserData.firstname}}" />
+            <argument name="adminLastname" value="{{AdminUserData.lastname}}" />
+            <argument name="adminEmail" value="{{AdminUserData.email}}" />
+            <argument name="adminPassword" value="{{AdminUserData.password}}" />
+            <argument name="adminPasswordConfirmation" value="{{AdminUserData.password}}" />
+            <argument name="currentAdminPassword" value="{{AdminUserData.password}}INVALID" />
+            <argument name="adminUserRole" value="{{AdminNewUserSection.administratorRole('1')}}" />
+        </actionGroup>
+
+        <!-- Check Error that account has been locked -->
+        <waitForPageLoad stepKey="wailtForSaveResultLoad"/>
+        <see selector="{{AdminLoginFormSection.error}}" userInput="Your account is temporarily disabled. Please try again later." stepKey="seeLockUserError"/>
+
+        <!-- Try to login as admin and check error -->
+        <actionGroup ref="LoginAsAdmin" stepKey="loginAsLockedAdmin"/>
+        <waitForPageLoad stepKey="waitForError"/>
+        <see selector="{{AdminLoginFormSection.error}}" userInput="The account sign-in was incorrect or your account is disabled temporarily. Please wait and try again later"
+             stepKey="seeLoginUserError"/>
+    </test>
+</tests>
diff --git a/dev/tests/functional/tests/app/Magento/Security/Test/TestCase/LockAdminUserWhenCreatingNewUserTest.xml b/dev/tests/functional/tests/app/Magento/Security/Test/TestCase/LockAdminUserWhenCreatingNewUserTest.xml
@@ -9,7 +9,7 @@
     <testCase name="Magento\Security\Test\TestCase\LockAdminUserWhenCreatingNewUserTest" summary="Lock admin user after entering incorrect password while creating new User">
         <variation name="LockAdminUserWhenCreatingNewUserTestVariation1">
             <data name="configData" xsi:type="string">user_lockout_failures</data>
-            <data name="tag" xsi:type="string">severity:S2</data>
+            <data name="tag" xsi:type="string">severity:S2,mftf_migrated:yes</data>
             <data name="customAdmin/dataset" xsi:type="string">custom_admin_with_default_role</data>
             <data name="user/data/username" xsi:type="string">AdminUser%isolation%</data>
             <data name="user/data/firstname" xsi:type="string">FirstName%isolation%</data>
