From b40d41f6d33e000d614943a51fb17aa40077e780 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E5=A7=AC=E5=B7=8D=E5=B7=9D?= <jiweichuan@zdjizhi.com>
Date: Tue, 21 Apr 2020 19:29:13 +0800
Subject: [PATCH] =?UTF-8?q?Windows=E5=92=8Cliunx=E5=9D=87=E6=B5=8B?=
 =?UTF-8?q?=E8=AF=95=E9=80=9A=E8=BF=87?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../Api_Security/Intercept_SSL_Tests.robot    | 31 ++++++++++++++++++-
 1 file changed, 30 insertions(+), 1 deletion(-)

diff --git a/01-TestCase/tsg_adc/selfserver/Api_Security/Intercept_SSL_Tests.robot b/01-TestCase/tsg_adc/selfserver/Api_Security/Intercept_SSL_Tests.robot
index ce1482d..ef5de39 100644
--- a/01-TestCase/tsg_adc/selfserver/Api_Security/Intercept_SSL_Tests.robot
+++ b/01-TestCase/tsg_adc/selfserver/Api_Security/Intercept_SSL_Tests.robot
@@ -39,7 +39,7 @@ SecurityPolicy-Intercept-SSL-00001
     GetLogList    security_event_log    ${starttime}    ${endtime}    ${testClentIP}    ${s}    http_host    open.node.com
 
 SecurityPolicy-Intercept-SSL-00002
-    [Tags]    Selfserver    Intercept    SSL    ip+cat
+    [Tags]    Selfserver    Intercept    SSL    ip+cat完整匹配
     Comment    创建目标IP
     ${objectDict}    Create Dictionary    objectType=ip    isValid=${1}    addItemList=CIDR|192.168.100.5|32|0/0
     ${rescode}    ${objectId}    AddObject2    ${1}    ${objectDict}
@@ -66,3 +66,32 @@ SecurityPolicy-Intercept-SSL-00002
     #日志验证
     ${s}    Convert to String    ${policyId}
     GetLogList    security_event_log    ${starttime}    ${endtime}    ${testClentIP}    ${s}    http_host    open.node.com
+
+SecurityPolicy-Intercept-SSL-00003
+    [Tags]    Selfserver    Intercept    SSL    ip+fqdn右匹配
+    Comment    创建目标IP
+    ${objectDict}    Create Dictionary    objectType=ip    isValid=${1}    addItemList=CIDR|192.168.100.5|32|0/0
+    ${rescode}    ${objectId}    AddObject2    ${1}    ${objectDict}
+    ${objectids}    set Variable    ${objectId}
+    Comment    FQDN
+    ${objectDict}    Create Dictionary    objectType=fqdn    isValid=${1}    addItemList=*open.node.com
+    ${rescode}    ${object_fqdn_Id}    AddObject2    ${1}    ${objectDict}
+    ${objectids}    set Variable    ${objectId},${object_fqdn_Id}
+    Comment    创建安全策略
+    ${policyDict}    Create Dictionary    policyName=SecurityPolicy-Intercept-SSL-00003    policyType=tsg_security    policyDesc=autotest    userTags=    action=intercept    effectiveRange=    userRegion=protocol:SSL    referenceObject=${objectId}|TSG_SECURITY_DESTINATION_ADDR,${object_fqdn_Id}|TSG_FIELD_SSL_SNI    isValid=${1}    appObjectIdArray=3
+    ${rescode}    ${policyId}    AddPolicy2    ${1}    ${policyDict}
+    #删除策略
+    ${policyIds}    Create List    {"policyType":"tsg_security","policyIds":[${policyId}]}
+    Comment    功能端验证HTTP验证
+    ${commandstr}    run keyword if    '${systemType}'=='Windows'    set variable    ${curlbatpath}/selfserver/SecurityPolicy-Intercept-SSL-0003.bat
+    ...    ELSE    set variable    curl \ -kv \ https://open.node.com/test/bytedance/bytedance.html
+    @{stringlist}    run keyword if    '${systemType}'=='Windows'    set variable    字节跳动    Tango Secure Gateway CA
+    ...    ELSE    set variable    字节跳动     Tango Secure Gateway CA
+    ${starttime}    Get Time
+    Sleep    ${policyVerificationSleepSeconds}s
+    ${rescode}    SystemCommand    ${commandstr}    @{stringlist}
+    Sleep    ${policyLogVerificationSleepSeconds}s
+    ${endtime}    Get Time
+    #日志验证
+    ${s}    Convert to String    ${policyId}
+    GetLogList    security_event_log    ${starttime}    ${endtime}    ${testClentIP}    ${s}    http_host    open.node.com
\ No newline at end of file