*** Settings *** Force Tags tsg_adc_wp adc_api security_policy Library OperatingSystem Resource ../../../02-Keyword/tsg_adc/SystemCommand.robot Resource ../../../02-Keyword/tsg_bfapi/PolicyObject.robot Resource ../../../02-Keyword/tsg_bfapi/LogVariable.robot Resource ../../../02-Keyword/tsg_adc/FileOperation.robot Resource ../../../02-Keyword/tsg_bfapi/policy_object/Policy.robot *** Test Cases *** SecurityPolicy-Allow-Http-00001 [Tags] fqdn right match,whole world match,ip geo,url Comment 创建fqdn ${addItemList1} Create Dictionary keywordArray=*clintonairport.com isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=fqdn objectSubType=fqdn isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建url ${addItemList1} Create Dictionary keywordArray=$clintonairport.com/airlines-flights/covid/ isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=url objectSubType=url isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId2} AddObjects ${1} ${objectDict} Comment 创建fqdn2 ${addItemList1} Create Dictionary keywordArray=$www.66rpg.com isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=fqdn objectSubType=fqdn isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId3} AddObjects ${1} ${objectDict} Comment 创建url2 ${addItemList1} Create Dictionary keywordArray=66rpg isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=url objectSubType=url isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId4} AddObjects ${1} ${objectDict} Comment 创建categories ${addItemList1} Create Dictionary fqdn=*clintonairport.com ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary categoryType=fqdn categoryName=feiji objectSubType=category isValid=${1} fqdnList=${addItemLists} ${rescode} ${categoryObjId} ${categoryId} AddCategories ${1} ${objectDict} add 200 Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-Http-00001 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"HTTP"} filterList=${objectId}|TSG_FIELD_HTTP_HOST,${objectId1}|TSG_FIELD_HTTP_URL,${categoryObjId}|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_http_objectId ${objectId} insert_policyId_to_file1 allow_http_objectId2 ${objectId1} insert_policyId_to_file1 allow_http_objectId3 ${objectId2} insert_policyId_to_file1 allow_http_objectId4 ${objectId3} insert_policyId_to_file1 allow_http_objectId5 ${objectId4} insert_policyId_to_file1 allow_http_policyId ${policyId} insert_policyId_to_file1 allow_http_categoryId ${categoryId} SecurityPolicy-Allow-Http-00002 [Tags] cat,fqdn 完全匹配,url左匹配 update policy:url右匹配 Comment 创建fqdn ${addItemList1} Create Dictionary keywordArray=$scoutbahamas.org isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=fqdn objectSubType=fqdn isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建url ${addItemList1} Create Dictionary keywordArray=scoutbah* isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=url objectSubType=url isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建fqdn2 ${addItemList1} Create Dictionary keywordArray=*ang5.com isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=fqdn objectSubType=fqdn isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId2} AddObjects ${1} ${objectDict} Comment 创建url2 ${addItemList1} Create Dictionary keywordArray=*w.xiang5.com/ isHexbin=${0} ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=url objectSubType=url isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId3} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-Http-00002 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"HTTP"} filterList=${objectId}|TSG_FIELD_HTTP_HOST,${objectId1}|TSG_FIELD_HTTP_URL isValid=${1} appIdObjects=${HTTP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_http_objectId1 ${objectId} insert_policyId_to_file1 allow_http_objectId6 ${objectId1} insert_policyId_to_file1 allow_http_objectId7 ${objectId2} insert_policyId_to_file1 allow_http_objectId8 ${objectId3} insert_policyId_to_file1 allow_http_policyId1 ${policyId} SecurityPolicy-Allow-Http-00003 [Tags] the minimum match Comment 与allow00002组合验证筛选条件优先级 Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-Http-00003 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"HTTP"} isValid=${0} appIdObjects=${HTTP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_http_policyId2 ${policyId}