Merge branch 'SOL011-NSLifecycleOperationGranting' into '4.5.1-dev'

    ...    Test title: Requests a grant for a particular NS lifecycle operation

    ...    Test objective: The objective is to request a grant for a particular NS lifecycle operation and perform a JSON schema validation on the returned grant data structure

    ...    Pre-conditions: 

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: The NFVO can decide immediately what to respond to a grant request

    ...    Post-Conditions: The grant information is available to the NFVO.

    ...    Test title: Requests a grant for a particular NS lifecycle operation - Forbidden 

    ...    Test objective: The objective is to request a grant for a particular NS lifecycle operation and the grant is rejected

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    ...    Test title: GET Grants - Method not implemented

    ...    Test objective: The objective is to test that GET method is not allowed for Lifecycle operation granting 

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.3.3.2 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.2 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions:   none

    ...    Test title: PUT Grants - Method not implemented

    ...    Test objective: The objective is to test that PUT method is not allowed for Lifecycle operation granting 

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.3.3.3 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.3 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    ...    Test title: PATCH Grants - Method not implemented

    ...    Test objective: The objective is to test that PATCH method is not allowed for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.3.3.4 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.4 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none 

    ...    Test title: DELETE Grants - Method not implemented

    ...    Test objective: The objective is to test that DELETE method is not allowed for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.3.3.5 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.3.3.5 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions:  Resources are not deleted

    Delete Grants

    Check HTTP Response Status Code Is    405

    Check Postcondition Grants Exist

Requests a grant for a particular NS lifecycle operation with permitted authorization scope

    [Documentation]    Test ID: 9.3.1.1.7

    ...    Test title: Requests a grant for a particular NS lifecycle operation with permitted authorization scope

    ...    Test objective: The objective is to request a grant for a particular NS lifecycle operation and perform a JSON schema validation on the returned grant data structure

    ...    Pre-conditions: 

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: The NFVO can decide immediately what to respond to a grant request

    ...    Post-Conditions: The grant information is available to the NFVO.

    Send Post Request for Grant with permitted authorization scope

    Check HTTP Response Status Code Is    201

    Check HTTP Response Body Json Schema Is    Grant

    Check HTTP Response Header Contains  Location 

    Check Postcondition Grant Is Set 

Requests a grant for a particular NS lifecycle operation with NOT permitted authorization scope

    [Documentation]    Test ID: 9.3.1.1.8

    ...    Test title: Requests a grant for a particular NS lifecycle operation with not permitted authorization scope

    ...    Test objective: The objective is to request a grant for a particular NS lifecycle operation and perform a JSON schema validation on the returned grant data structure

    ...    Pre-conditions: 

    ...    Reference: Clause 7.5.3.3.1 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: The NFVO can decide immediately what to respond to a grant request

    ...    Post-Conditions: The grant information is available to the NFVO.

    Send Post Request for Grant with not permitted authorization scope

    Check HTTP Response Status Code Is    403

    Check HTTP Response Body Json Schema Is    ProblemDetails

 No newline at end of file

    ...    Test title: POST Individual Grant - Method not implemented

    ...    Test objective: The objective is to test that POST method is not allowed for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.4.3.1 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.1 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none 

    ...    Test title: GET an individual grant - Successful

    ...    Test objective: The objective is to retrieve a grant for a particular NS Lifecycle Operation.

    ...    Pre-conditions: The  grant information is available to the NFVO

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    ...    Test title: PUT an individual grant - Method not implemented

    ...    Test objective: The objective is to test that PUT method is not allowed to for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.4.3.3 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.3 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none 

    ...    Test title: PATCH an individual grant - Method not implemented

    ...    Test objective: The objective is to test that PATCH method is not allowed to for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.4.3.4 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.4 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none 

    ...    Test title: DELETE an individual grant - Method not implemented

    ...    Test objective: The objective is to test that DELETE method is not allowed to for Lifecycle operation granting  

    ...    Pre-conditions: none

    ...    Reference: Clause 7.5.4.3.5 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.5 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    ...    Test title: GET an individual grant - NOT FOUND

    ...    Test objective: The objective is to test that the retrieval of individual grant for a particular Lifecycle operation fails when using an invalid resource identifier

    ...    Pre-conditions: The  grant information is available to the NFVO

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.4.1

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: Invalid resource identifier is used

    ...    Post-Conditions: none

    Get individual grant

    Check HTTP Response Status Code Is    404

    Check HTTP Response Body Json Schema Is    ProblemDetails

GET an individual grant with permitted authorization scope - Successful

    [Documentation]    Test ID: 9.3.1.2.7

    ...    Test title: GET an individual grant with permitted authorization scope - Successful

    ...    Test objective: The objective is to retrieve a grant for a particular NS Lifecycle Operation.

    ...    Pre-conditions: The  grant information is available to the NFVO

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    Get individual grant with permitted authorization scope

    Check HTTP Response Status Code Is    200

    Check HTTP Response Body Json Schema Is    Grant

GET an individual grant with not permitted authorization scope - Successful

    [Documentation]    Test ID: 9.3.1.2.8

    ...    Test title: GET an individual grant with not permitted authorization scope - Successful

    ...    Test objective: The objective is to retrieve a grant for a particular NS Lifecycle Operation.

    ...    Pre-conditions: The  grant information is available to the NFVO

    ...    Reference: Clause 7.5.4.3.2 - ETSI GS NFV-SOL 011 [8] v4.5.1

    ...    Config ID: Config_prod_NFVO

    ...    Applicability: none

    ...    Post-Conditions: none

    Get individual grant with permitted not authorization scope

    Check HTTP Response Status Code Is    403

    Check HTTP Response Body Json Schema Is    ProblemDetails

 No newline at end of file

Library    OperatingSystem

Library    JSONLibrary

Library    JSONSchemaLibrary    schemas/

Library    jwt

*** Keywords ***

Send Post Request for Grant

    ${output}=    Output    response

    Set Suite Variable    ${response}    ${output}

    Check HTTP Response Status Code Is    200

JWT Encode

    [Arguments]    ${payload}    ${key}    ${algorithm}

    ${encoded}=    Evaluate    jwt.encode(${payload}, ${key}, ${algorithm})

    [Return]    ${encoded}

Send Post Request for Grant with permitted authorization scope

    Log    Request a new Grant for an NS LCM operation by POST to ${apiRoot}/${apiName}/${apiVersion}/grants

    Set Headers    {"Accept": "${ACCEPT}"}

    Set Headers    {"Content-Type": "${CONTENT_TYPE}"}

    ${scope_value}=    Create Dictionary    scopeValue=${OPERATION_GRANTING_SCOPE}

    ${authorizationToken}=    JWT Encode    payload=${scope_value}    key=''    algorithm=${OAUTH_Encryption_ALGORITHM}

    Run Keyword If    ${AUTH_USAGE} == 1    Set Headers    {"Authorization":"${authorizationToken}"}

    ${body}=    Get File    jsons/grantNSLifecycleOperationRequest.json

    Post    ${apiRoot}/${apiName}/${apiVersion}/grants    ${body}

    ${body}=    Output    response

    Set Suite Variable    ${response}    ${body}

Send Post Request for Grant with not permitted authorization scope

    Log    Request a new Grant for an NS LCM operation by POST to ${apiRoot}/${apiName}/${apiVersion}/grants

    Set Headers    {"Accept": "${ACCEPT}"}

    Set Headers    {"Content-Type": "${CONTENT_TYPE}"}

    ${scope_value}=    Create Dictionary    scopeValue=${NEG_SCOPE}

    ${authorizationToken}=    JWT Encode    payload=${scope_value}    key=''    algorithm=${OAUTH_Encryption_ALGORITHM}

    Run Keyword If    ${AUTH_USAGE} == 1    Set Headers    {"Authorization":"${authorizationToken}"}

    ${body}=    Get File    jsons/grantNSLifecycleOperationRequest.json

    Post    ${apiRoot}/${apiName}/${apiVersion}/grants    ${body}

    ${body}=    Output    response

    Set Suite Variable    ${response}    ${body}

Get individual grant with permitted authorization scope

    log    Trying to read an individual grant

    Set Headers    {"Accept":"${ACCEPT}"}  

    Set Headers    {"Content-Type":"${CONTENT_TYPE}"}

    ${scope_value}=    Create Dictionary    scopeValue=${OPERATION_GRANTING_SCOPE}

    ${authorizationToken}=    JWT Encode    payload=${scope_value}    key=''    algorithm=${OAUTH_Encryption_ALGORITHM}

    Run Keyword If    ${AUTH_USAGE} == 1    Set Headers    {"Authorization":"${authorizationToken}"}

    Get    ${apiRoot}/${apiName}/${apiVersion}/grants/${grantId}

    ${body}=    Output    response

    Set Suite Variable    ${response}    ${body}

Get individual grant with permitted not authorization scope

    log    Trying to read an individual grant

    Set Headers    {"Accept":"${ACCEPT}"}  

    Set Headers    {"Content-Type":"${CONTENT_TYPE}"}

    ${scope_value}=    Create Dictionary    scopeValue=${NEG_SCOPE}

    ${authorizationToken}=    JWT Encode    payload=${scope_value}    key=''    algorithm=${OAUTH_Encryption_ALGORITHM}

    Run Keyword If    ${AUTH_USAGE} == 1    Set Headers    {"Authorization":"${authorizationToken}"}

    Get    ${apiRoot}/${apiName}/${apiVersion}/grants/${grantId}

    ${body}=    Output    response

    Set Suite Variable    ${response}    ${body}

 No newline at end of file

${CONTENT_TYPE_PATCH}    application/merge-patch+json

${WRONG_AUTHORIZATION}    Bearer    XXXXXWRONGXXXXX

${OPERATION_GRANTING_SCOPE}     nslcog:v1:all

${NEG_SCOPE}     nslcog:v1:invalid

${OAUTH_Encryption_ALGORITHM}   HS256

${vnfInstanceDescription}    description vnf

${vnfInstanceDescription_Update}    Updated description vnf 

${SINGLE_FILE_VNFD}    1    # If VNFD is PLAIN TEXT

This folder includes the NFV API conformance test descriptions for NFV SOL011 APIs.

The reference spec version is v4.4.1: https://www.etsi.org/deliver/etsi_gs/NFV-SOL/001_099/011/04.04.01_60/gs_NFV-SOL011v040401p.pdf

The reference spec version is v4.5.1: https://www.etsi.org/deliver/etsi_gs/NFV-SOL/001_099/011/04.05.01_60/gs_NFV-SOL011v040501p.pdf

## Applicable Tests

In addition to the SOL011 tests included in this folder for NS Instance Usage Notification API and NS Lifecycle Operation Granting API, the SOL011 tests make use of applicable SOL005 tests.