Initial commit for Issue #1120 - Adding remote auth endpoints

- All endpoints added
- Files stubbed for unit/functional tests

Issue #1120 - functional tests complete

Issue #1120 - unit tests complete

Issue #1120 - flake8 errors fixed

Updated remote-role functional test case to reflect error message change

Author: f5-rahm

f5/bigip/tm/auth/__init__.py

@@ -29,16 +29,32 @@
 
 
 from f5.bigip.resource import OrganizingCollection
+from f5.bigip.tm.auth.cert_ldap import Cert_Ldaps
+from f5.bigip.tm.auth.ldap import Ldaps
 from f5.bigip.tm.auth.partition import Partitions
 from f5.bigip.tm.auth.password_policy import Password_Policy
+from f5.bigip.tm.auth.radius import Radius_s
+from f5.bigip.tm.auth.radius_server import Radius_Servers
+from f5.bigip.tm.auth.remote_role import Remote_Role
+from f5.bigip.tm.auth.remote_user import Remote_User
+from f5.bigip.tm.auth.source import Source
+from f5.bigip.tm.auth.tacacs import Tacacs_s
 from f5.bigip.tm.auth.user import Users
 
 
 class Auth(OrganizingCollection):
     def __init__(self, tm):
         super(Auth, self).__init__(tm)
         self._meta_data['allowed_lazy_attributes'] = [
+            Cert_Ldaps,
+            Ldaps,
             Partitions,
             Password_Policy,
+            Radius_s,
+            Radius_Servers,
+            Remote_Role,
+            Remote_User,
+            Source,
+            Tacacs_s,
             Users
         ]

f5/bigip/tm/auth/cert_ldap.py

@@ -0,0 +1,56 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/cert-ldap``
+
+GUI Path
+    ``System --> Users --> Authentication``
+
+REST Kind
+    ``tm:auth:cert-ldap:*``
+"""
+
+from f5.bigip.resource import Collection
+from f5.bigip.resource import Resource
+from f5.sdk_exception import InvalidName
+
+
+class Cert_Ldaps(Collection):
+    """BIG-IP® ldap server collection"""
+    def __init__(self, auth):
+        super(Cert_Ldaps, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Cert_Ldap]
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:cert-ldap:cert-ldapstate': Cert_Ldap}
+
+
+class Cert_Ldap(Resource):
+    """BIG-IP® ldap server resource"""
+    def __init__(self, cert_ldaps):
+        super(Cert_Ldap, self).__init__(cert_ldaps)
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:cert-ldap:cert-ldapstate'
+
+    def create(self, **kwargs):
+        """name has to be system-auth, raise error if not named correctly"""
+        if 'name' in kwargs:
+            if kwargs['name'] != 'system-auth':
+                raise InvalidName("Name must be 'system-auth'")
+        return self._create(**kwargs)

f5/bigip/tm/auth/ldap.py

@@ -0,0 +1,55 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/ldap``
+
+GUI Path
+    ``System --> Users --> Authentication``
+
+REST Kind
+    ``tm:auth:ldap:*``
+"""
+
+from f5.bigip.resource import Collection
+from f5.bigip.resource import Resource
+from f5.sdk_exception import InvalidName
+
+
+class Ldaps(Collection):
+    """BIG-IP® ldap server collection"""
+    def __init__(self, auth):
+        super(Ldaps, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Ldap]
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:ldap:ldapstate': Ldap}
+
+
+class Ldap(Resource):
+    """BIG-IP® ldap server resource"""
+    def __init__(self, ldaps):
+        super(Ldap, self).__init__(ldaps)
+        self._meta_data['required_json_kind'] = 'tm:auth:ldap:ldapstate'
+
+    def create(self, **kwargs):
+        """name has to be system-auth, raise error if not named correctly"""
+        if 'name' in kwargs:
+            if kwargs['name'] != 'system-auth':
+                raise InvalidName("Name must be 'system-auth'")
+        return self._create(**kwargs)

f5/bigip/tm/auth/radius.py

@@ -0,0 +1,55 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/radius``
+
+GUI Path
+    ``System --> Users --> Authentication``
+
+REST Kind
+    ``tm:auth:radius:*``
+"""
+
+from f5.bigip.resource import Collection
+from f5.bigip.resource import Resource
+from f5.sdk_exception import InvalidName
+
+
+class Radius_s(Collection):
+    """BIG-IP® tacacs server collection"""
+    def __init__(self, auth):
+        super(Radius_s, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Radius]
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:radius:radiusstate': Radius}
+
+
+class Radius(Resource):
+    """BIG-IP® tacacs server resource"""
+    def __init__(self, radius_s):
+        super(Radius, self).__init__(radius_s)
+        self._meta_data['required_json_kind'] = 'tm:auth:radius:radiusstate'
+
+    def create(self, **kwargs):
+        """name has to be system-auth, raise error if not named correctly"""
+        if 'name' in kwargs:
+            if kwargs['name'] != 'system-auth':
+                raise InvalidName("Name must be 'system-auth'")
+        return self._create(**kwargs)

f5/bigip/tm/auth/radius_server.py

@@ -0,0 +1,48 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/radius-server``
+
+GUI Path
+    ``System --> Users --> Authentication``
+
+REST Kind
+    ``tm:auth:radius-server:*``
+"""
+
+from f5.bigip.resource import Collection
+from f5.bigip.resource import Resource
+
+
+class Radius_Servers(Collection):
+    """BIG-IP® tacacs server collection"""
+    def __init__(self, auth):
+        super(Radius_Servers, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Radius_Server]
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:radius-server:radius-serverstate': Radius_Server}
+
+
+class Radius_Server(Resource):
+    """BIG-IP® tacacs server resource"""
+    def __init__(self, radius_servers):
+        super(Radius_Server, self).__init__(radius_servers)
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:radius-server:radius-serverstate'

f5/bigip/tm/auth/remote_role.py

@@ -0,0 +1,72 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/remote-role``
+
+GUI Path
+    ``System --> Users --> Remote Role Groups``
+
+REST Kind
+    ``tm:auth:remote-role:*``
+"""
+
+from f5.bigip.resource import Collection
+from f5.bigip.resource import Resource
+from f5.bigip.resource import UnnamedResource
+from f5.sdk_exception import UnsupportedOperation
+
+
+class Remote_Role(UnnamedResource):
+    """BIG-IP® auth remote role resource"""
+    def __init__(self, auth):
+        super(Remote_Role, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Role_Infos]
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:remote-role:remote-rolestate'
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:remote-role:role-info:role-infocollectionstate': Role_Infos}
+
+
+class Role_Infos(Collection):
+    """BIG-IP® remote role role-info collection"""
+    def __init__(self, auth):
+        super(Role_Infos, self).__init__(auth)
+        self._meta_data['allowed_lazy_attributes'] = [Role_Info]
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:remote-role:role-info:role-infocollectionstate'
+        self._meta_data['attribute_registry'] = \
+            {'tm:auth:remote-role:role-info:role-infostate': Role_Info}
+
+
+class Role_Info(Resource):
+    """BIG-IP® remote role role-info resource"""
+    def __init__(self, role_infos):
+        super(Role_Info, self).__init__(role_infos)
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:remote-role:role-info:role-infostate'
+
+    def update(self, **kwargs):
+        '''Update is not supported for Auth Remote Role - Role Info Objects
+
+        :raises: UnsupportedOperation
+        '''
+        raise UnsupportedOperation(
+            "%s does not support update, use modify instead" % self.__class__.__name__
+        )

f5/bigip/tm/auth/remote_user.py

@@ -0,0 +1,38 @@
+# coding=utf-8
+#
+# Copyright 2017 F5 Networks Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+"""BIG-IP® auth module
+
+REST URI
+    ``http://localhost/mgmt/tm/auth/remote-user``
+
+GUI Path
+    ``System --> Users --> Authentication``
+
+REST Kind
+    ``tm:auth:remote-user:*``
+"""
+
+from f5.bigip.resource import UnnamedResource
+
+
+class Remote_User(UnnamedResource):
+    """BIG-IP® auth source resource"""
+    def __init__(self, auth):
+        super(Remote_User, self).__init__(auth)
+        self._meta_data['required_json_kind'] = \
+            'tm:auth:remote-user:remote-userstate'