dongxiaoyan-tsg-autotest/01-TestCase/tsg_adc/multi_step/b_Deny_Ssl_Tests.robot

*** Settings ***
Force Tags        tsg_adc_wp    security_policy    adc_verify
Library           OperatingSystem
Resource          ../../../02-Keyword/tsg_adc/SystemCommand.robot
Resource          ../../../02-Keyword/tsg_bfapi/PolicyObject.robot
Resource          ../../../02-Keyword/tsg_bfapi/LogVariable.robot
Resource          ../../../02-Keyword/tsg_adc/FileOperation.robot
Resource          ../../../02-Keyword/tsg_bfapi/policy_object/Policy.robot
Resource          ../../../03-Variable/ApplicationID.txt
Resource          ../../../05-Other/AllFlowCaseVariable.txt

*** Test Cases ***
SecurityPolicy-Deny-Ssl-00001
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001.bat
    ...    ELSE    set variable    curl https://www.freestockimages.ru/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    Connection was reset
    ...    ELSE    Create List    Connection reset by peer
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001_1.bat
    ...    ELSE    set variable    curl \ \ \ https://www.cxwl.com/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    Connection was reset
    ...    ELSE    Create List    Connection reset by peer
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    改变阻断策略
    ${policyDict}    Create Dictionary    policyId=${deny_ssl_policyId}    source=${deny_ssl_objectId5}|TSG_SECURITY_SOURCE_LOCATION     policyName=SecurityPolicy-Deny-Ssl-00001_1    policyType=tsg_security    policyDesc=autotest    action=deny    userRegion={"protocol":"SSL","method":"rst"}    filterList=${deny_ssl_objectId4}|TSG_FIELD_SSL_SNI    isValid=${1}    appIdObjects=${SSL_ID}
    log    ${policyDict}
    ${rescode}    UpdatePolicies    1    ${policyDict}    v2    update
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001_1.bat
    ...    ELSE    set variable    curl \ \ \ https://www.cxwl.com/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    Connection was reset
    ...    ELSE    Create List    Connection reset by peer
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    
SecurityPolicy-Deny-Ssl-00002
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00002.bat
    ...    ELSE    set variable    curl https://amesweb.info/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    Connection was reset
    ...    ELSE    Create List    Connection reset by peer
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00002_2.bat
    ...    ELSE    set variable    curl https://rentar.com/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    Connection was reset
    ...    ELSE    Create List    Connection reset by peer
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}

SecurityPolicy-Deny-Ssl-00003
    # Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003.bat
    ...    ELSE    set variable    curl  --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://austinama.org/ 
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out 
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003_3.bat
    ...    ELSE    set variable    curl  --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.carambola.com/ 
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}

SecurityPolicy-Deny-Ssl-00004
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat
    ...    ELSE    set variable    curl https://www.prlib.ru/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    改变阻断策略
    ${policyDict}    Create Dictionary    policyId=${deny_ssl_policyId3}   policyName=SecurityPolicy-Deny-Ssl-00004    policyType=tsg_security    policyDesc=autotest    action=deny    userRegion={"protocol":"SSL","method":"drop"}    filterList=${deny_ssl_objectId6}|TSG_FIELD_SSL_SAN,${deny_ssl_objectId6}|TSG_FIELD_SSL_SNI,${deny_ssl_objectId6}|TSG_FIELD_SSL_CN    isValid=${1}    appIdObjects=${SSL_ID}
    log    ${policyDict}
    ${rescode}    UpdatePolicies    1    ${policyDict}    v2    update
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat
    ...    ELSE    set variable    curl https://www.prlib.ru/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
SecurityPolicy-Deny-Ssl-00005
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat
    ...    ELSE    set variable    curl  --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    Comment    改变阻断策略
    ${policyDict}    Create Dictionary    policyId=${deny_ssl_policyId4}    policyName=SecurityPolicy-Deny-Ssl-00005-1    destination=3309|TSG_SECURITY_DESTINATION_ADDR     policyType=tsg_security    policyDesc=autotest    action=deny    userRegion={"protocol":"SSL","method":"drop"}    filterList=${deny_ssl_objectId7}|TSG_FIELD_SSL_SAN,${deny_ssl_objectId7}|TSG_FIELD_SSL_SNI,${deny_ssl_objectId7}|TSG_FIELD_SSL_CN    isValid=${1}    appIdObjects=${SSL_ID}
    log    ${policyDict}
    ${rescode}    UpdatePolicies    1    ${policyDict}    v2    update
    Comment    功能端验证HTTP验证
    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat
    ...    ELSE    set variable    curl  --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/
    ${stringlist}    run keyword if    '${systemType}'=='Windows'    Create List    timed out
    ...    ELSE    Create List    timed out
    ${rescode}    SystemCommands    ${commandstr}    ${stringlist}
    
SecurityPolicy-Deny-Ssl-00006
    Comment
ssl验证文件 2020-06-23 21:03:54 +08:00			`* Settings *`
			`Force Tags tsg_adc_wp security_policy adc_verify`
			`Library OperatingSystem`
			`Resource ../../../02-Keyword/tsg_adc/SystemCommand.robot`
			`Resource ../../../02-Keyword/tsg_bfapi/PolicyObject.robot`
			`Resource ../../../02-Keyword/tsg_bfapi/LogVariable.robot`
			`Resource ../../../02-Keyword/tsg_adc/FileOperation.robot`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`Resource ../../../02-Keyword/tsg_bfapi/policy_object/Policy.robot`
			`Resource ../../../03-Variable/ApplicationID.txt`
			`Resource ../../../05-Other/AllFlowCaseVariable.txt`
ssl验证文件 2020-06-23 21:03:54 +08:00
			`* Test Cases *`
			`SecurityPolicy-Deny-Ssl-00001`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001.bat`
			`... ELSE set variable curl https://www.freestockimages.ru/`
补充代理策略重定向24和25用例自建网站执行命令文件，添加安全策略多对象自动化用例 2020-07-10 19:15:49 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset`
ssl验证文件 2020-06-23 21:03:54 +08:00			`... ELSE Create List Connection reset by peer`
			`${rescode} SystemCommands ${commandstr} ${stringlist}`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001_1.bat`
			`... ELSE set variable curl \ \ \ https://www.cxwl.com/`
补充代理策略重定向24和25用例自建网站执行命令文件，添加安全策略多对象自动化用例 2020-07-10 19:15:49 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset`
ssl验证文件 2020-06-23 21:03:54 +08:00			`... ELSE Create List Connection reset by peer`
			`${rescode} SystemCommands ${commandstr} ${stringlist}`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`Comment 改变阻断策略`
			`${policyDict} Create Dictionary policyId=${deny_ssl_policyId} source=${deny_ssl_objectId5}\|TSG_SECURITY_SOURCE_LOCATION policyName=SecurityPolicy-Deny-Ssl-00001_1 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"rst"} filterList=${deny_ssl_objectId4}\|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}`
			`log ${policyDict}`
			`${rescode} UpdatePolicies 1 ${policyDict} v2 update`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00001_1.bat`
			`... ELSE set variable curl \ \ \ https://www.cxwl.com/`
			`${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset`
			`... ELSE Create List Connection reset by peer`
			`${rescode} SystemCommands ${commandstr} ${stringlist}`

ssl验证文件 2020-06-23 21:03:54 +08:00			`SecurityPolicy-Deny-Ssl-00002`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00002.bat`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`... ELSE set variable curl https://amesweb.info/`
补充代理策略重定向24和25用例自建网站执行命令文件，添加安全策略多对象自动化用例 2020-07-10 19:15:49 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset`
ssl验证文件 2020-06-23 21:03:54 +08:00			`... ELSE Create List Connection reset by peer`
			`${rescode} SystemCommands ${commandstr} ${stringlist}`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00002_2.bat`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`... ELSE set variable curl https://rentar.com/`
补充代理策略重定向24和25用例自建网站执行命令文件，添加安全策略多对象自动化用例 2020-07-10 19:15:49 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset`
ssl验证文件 2020-06-23 21:03:54 +08:00			`... ELSE Create List Connection reset by peer`
			`${rescode} SystemCommands ${commandstr} ${stringlist}`

			`SecurityPolicy-Deny-Ssl-00003`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`# Comment 功能端验证HTTP验证`
ssl验证文件 2020-06-23 21:03:54 +08:00			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003.bat`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://austinama.org/`
			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
ssl验证文件 2020-06-23 21:03:54 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003_3.bat`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.carambola.com/`
			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
ssl验证文件 2020-06-23 21:03:54 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`

			`SecurityPolicy-Deny-Ssl-00004`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat`
修改部分用例功能验证部分 2020-07-06 19:11:52 +08:00			`... ELSE set variable curl https://www.prlib.ru/`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
ssl验证文件 2020-06-23 21:03:54 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`Comment 改变阻断策略`
			`${policyDict} Create Dictionary policyId=${deny_ssl_policyId3} policyName=SecurityPolicy-Deny-Ssl-00004 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"drop"} filterList=${deny_ssl_objectId6}\|TSG_FIELD_SSL_SAN,${deny_ssl_objectId6}\|TSG_FIELD_SSL_SNI,${deny_ssl_objectId6}\|TSG_FIELD_SSL_CN isValid=${1} appIdObjects=${SSL_ID}`
			`log ${policyDict}`
			`${rescode} UpdatePolicies 1 ${policyDict} v2 update`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat`
			`... ELSE set variable curl https://www.prlib.ru/`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`
			`SecurityPolicy-Deny-Ssl-00005`
			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/`
			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`
			`Comment 改变阻断策略`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`${policyDict} Create Dictionary policyId=${deny_ssl_policyId4} policyName=SecurityPolicy-Deny-Ssl-00005-1 destination=3309\|TSG_SECURITY_DESTINATION_ADDR policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"drop"} filterList=${deny_ssl_objectId7}\|TSG_FIELD_SSL_SAN,${deny_ssl_objectId7}\|TSG_FIELD_SSL_SNI,${deny_ssl_objectId7}\|TSG_FIELD_SSL_CN isValid=${1} appIdObjects=${SSL_ID}`
安全策略Deny_SSL 补充:ip geo,ip learning,改变策略中SAN,SNI,CN用例 2021-01-29 13:50:43 +08:00			`log ${policyDict}`
			`${rescode} UpdatePolicies 1 ${policyDict} v2 update`
安全策略Monitor,Deny动作修改用例补充与curl命令补充 2021-02-01 18:19:18 +08:00			`Comment 功能端验证HTTP验证`
			`${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat`
用例与命令修改，解决由该部分用例引起的策略之间互相冲突的问题 2021-02-18 16:21:02 +08:00			`... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/`
			`${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out`
			`... ELSE Create List timed out`
安全策略Monitor,Deny动作修改用例补充与curl命令补充 2021-02-01 18:19:18 +08:00			`${rescode} SystemCommands ${commandstr} ${stringlist}`
补充allow,deny动作最小组合用例 2021-03-01 09:08:49 +08:00
			`SecurityPolicy-Deny-Ssl-00006`
			`Comment`