archive
/
ansible
mirror of https://github.com/ansible/ansible.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
stable-2.15
stable-2.14
devel
stable-2.16
stable-2.17
milestone
stable-2.12
stable-2.13
stable-2.9
stable-2.11
stable-2.3
stable-2.10
stable-2.8
stable-2.4
stable-2.5
stable-2.6
stable-2.7
temp-2.10-devel
mazer_role_loader
stable-2.2
threading_plus_forking
threading_instead_of_forking
stable-2.1
stable-1.9
stable-2.0
stable-2.0.0.1
stable-2.0-network
release1.8.4
release1.8.3
release1.8.2
release1.8.1
release1.8.0
release1.7.2
release1.7.1
release1.7.0
release1.6.8
release1.6.10
release1.6.9
release1.6.7
release1.6.6
release1.6.5
release1.6.4
release1.6.3
release1.6.2
release1.6.1
release1.6.0
release1.5.5
release1.5.4
release1.5.3
release1.5.2
release1.5.1
release1.5.0
v2.14.3
v2.13.8
v2.14.3rc1
v2.13.8rc1
v2.14.2
v2.14.2rc1
v2.14.1
v2.13.7
v2.13.7rc1
v2.14.1rc1
v2.13.6
v2.14.0
v2.14.0rc2
v2.13.6rc1
v2.14.0rc1
v2.14.0b3
v2.13.5
v2.12.10
v2.14.0b2
v2.13.5rc1
v2.12.10rc1
v2.14.0b1
v2.12.9
v2.13.4
v2.13.4rc1
v2.12.9rc1
v2.13.3
v2.12.8
v2.12.8rc1
v2.13.3rc1
v2.13.2
v2.13.2rc1
v2.12.7
v2.13.1
v2.12.7rc1
v2.13.1rc1
v2.12.6
v2.11.12
v2.12.6rc1
v2.11.12rc1
v2.13.0
v2.13.0rc1
v2.13.0b1
v2.12.5
v2.11.11
v2.12.5rc1
v2.11.11rc1
v2.13.0b0
v2.12.4
v2.11.10
v2.12.4rc1
v2.11.10rc1
v2.11.9
v2.12.3
v2.12.3rc1
v2.11.9rc1
v2.12.2
v2.11.8
v2.10.17
v2.12.2rc1
v2.11.8rc1
v2.10.17rc1
v2.12.1
v2.11.7
v2.10.16
v2.10.16rc1
v2.11.7rc1
v2.12.1rc1
v2.12.0
v2.12.0rc1
v2.12.0b2
v2.11.6
v2.10.15
v2.9.27
v2.9.27rc1
v2.10.15rc1
v2.11.6rc1
v2.12.0b1
v2.11.5
v2.10.14
v2.9.26
v2.11.5rc1
v2.10.14rc1
v2.9.26rc1
v2.11.4
v2.10.13
v2.9.25
v2.9.25rc1
v2.10.13rc1
v2.11.4rc1
v2.11.3
v2.10.12
v2.9.24
v2.11.3rc1
v2.10.12rc1
v2.9.24rc1
v2.9.23
v2.10.11
v2.11.2
v2.11.2rc1
v2.10.11rc1
v2.9.23rc1
v2.11.1
v2.10.10
v2.9.22
v2.9.22rc1
v2.10.10rc1
v2.11.1rc1
v2.10.9
v2.9.21
v2.10.9rc1
v2.9.21rc1
v2.11.0
v2.8.20
v2.9.20
v2.10.8
v2.11.0rc2
v2.8.20rc1
v2.9.20rc1
v2.10.8rc1
v2.11.0rc1
stable-2.11-branchpoint
v2.11.0b4
v2.11.0b3
v2.11.0b2
v2.10.7
v2.9.19
v2.10.7rc1
v2.9.19rc1
v2.11.0b1
v2.8.19
v2.9.18
v2.10.6
v2.8.19rc1
v2.9.18rc1
v2.10.6rc1
v2.9.17
v2.10.5
v2.10.5rc1
v2.9.17rc1
v2.8.18
v2.9.16
v2.10.4
v2.8.18rc1
v2.9.16rc1
v2.10.4rc1
v2.8.17
v2.9.15
v2.10.3
v2.8.17rc1
v2.9.15rc1
v2.10.3rc1
v2.10.2
v2.9.14
v2.8.16
v2.8.16rc1
v2.9.14rc1
v2.10.2rc1
v2.10.1
v2.10.1rc3
v2.10.1rc2
v2.8.15
v2.9.13
v2.10.0
v2.9.12
v2.8.14
v2.10.0rc4
v2.10.0rc3
v2.10.0rc2
v2.10.0rc1
v2.9.11
v2.8.13
v2.9.10
v2.10.0b1
stable-2.10-branchpoint
v2.9.9
v2.7.18
v2.8.12
v2.9.8
v2.9.7
v2.8.11
v2.7.17
pre-ansible-base
v2.8.10
v2.8.9
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.8.8
v2.7.16
v2.9.2
v2.9.1
v2.8.7
v2.7.15
v2.9.0
v2.9.0rc5
v2.8.6
v2.7.14
v2.9.0rc4
v2.6.20
v2.9.0rc3
v2.9.0rc2
v2.9.0rc1
v2.8.5
v2.9.0b1
stable-2.9-branchpoint
v2.6.19
v2.7.13
v2.8.4
v2.8.3
v2.6.18
v2.7.12
v2.8.2
v2.8.1
v2.7.11
v2.6.17
v2.8.0
v2.8.0rc3
v2.8.0rc2
v2.8.0rc1
v2.8.0b1
v2.8.0a1
v2.6.16
v2.7.10
v2.6.15
v2.7.9
v2.7.8
v2.6.14
v2.5.15
v2.7.7
v2.6.13
v2.6.12
v2.7.6
v2.5.14
v2.7.5
v2.6.11
v2.6.10
v2.7.4
v2.5.13
v2.7.3
v2.6.9
v2.5.12
v2.6.8
v2.7.2
v2.6.7
v2.5.11
v2.7.1
v2.6.6
v2.7.0
v2.6.5
v2.7.0rc4
v2.5.10
v2.7.0rc3
v2.7.0rc2
v2.5.9
v2.6.4
v2.7.0rc1
v2.7.0b1
v2.7.0.a1
v2.6.3
v2.5.8
v2.6.2
v2.5.7
v2.6.1
v2.5.6
v2.4.6.0-1
v2.6.0
v2.6.0rc5
v2.6.0rc4
v2.4.5.0-1
v2.6.0rc3
v2.5.5
v2.4.5.0-0.1.rc1
v2.6.0rc2
v2.6.0rc1
v2.5.4
v2.6.0a2
v2.6.0a1
v2.5.3
v2.5.2
v2.5.1
v2.4.4.0-1
v2.4.4.0-0.3.rc2
v2.5.0
v2.5.0rc3
v2.5.0rc2
v2.4.4-0.2.rc1
v2.3.4.0-0.1.rc1
v2.5.0rc1
v2.4.4-0.1.beta1
v2.5.0b1
v2.5.0a1
v2.4.3.0-1
v2.4.3.0-0.6.rc3
v2.4.3.0-0.5.rc2
v2.4.3.0-0.4.rc1
v2.4.3-0.3.beta3
v2.4.3.0-0.2.beta2
v2.3.3.0-1
v2.4.3.0-0.1.beta1
v2.4.2.0-1
v2.4.2.0-0.5.rc1
v2.4.2.0-0.4.beta4
v2.3.3.0-0.3.rc3
v2.4.2.0-0.3.beta3
v2.4.2.0-0.2.beta2
v2.4.2.0-0.1.beta1
v2.4.1.0-1
v2.4.1.0-0.4.rc2
v2.3.3.0-0.2.rc2
v2.4.1.0-0.3.rc1
v2.4.1.0-0.2.beta2
v2.3.3.0-0.1.rc1
v2.4.1.0-0.1.beta1
v2.4.0.0-1
v2.4.0.0-0.5.rc5
v2.4.0.0-0.4.rc4
v2.4.0.0-0.3.rc3
v2.4.0.0-0.2.rc2
v2.4.0.0-0.1.rc1
v2.3.2.0-1
v2.3.2.0-0.5.rc5
v2.3.2.0-0.4.rc4
v2.3.2.0-0.3.rc3
v2.3.2.0-0.2.rc2
v2.3.2.0-0.1.rc1
v2.1.6.0-1
v2.3.1.0-1
v2.3.1.0-0.2.rc2
v2.2.3.0-1
v2.1.6.0-0.1.rc1
v2.3.1.0-0.1.rc1
v2.3.0.0-1
v2.3.0.0-0.6.rc6
v2.3.0.0-0.5.rc5
v2.3.0.0-0.4.rc4
v2.2.3.0-0.1.rc1
v2.3.0.0-0.3.rc3
v2.3.0.0-0.2.rc2
v2.2.2.0-1
v2.1.5.0-1
v2.3.0.0-0.1.rc1
v2.1.5.0-0.2.rc2
v2.2.2.0-0.2.rc2
v2.1.5.0-0.1.rc1
v2.2.2.0-0.1.rc1
v2.1.4.0-1
v2.2.1.0-1
v2.1.4.0-0.3.rc3
v2.2.1.0-0.5.rc5
v2.1.4.0-0.2.rc2
v2.2.1.0-0.4.rc4
v2.1.4.0-0.1.rc1
v2.2.1.0-0.3.rc3
v2.2.1.0-0.2.rc2
v2.2.1.0-0.1.rc1
v2.1.3.0-1
v2.2.0.0-1
v2.2.0.0-0.4.rc4
v2.1.3.0-0.3.rc3
v2.1.3.0-0.2.rc2
v2.2.0.0-0.3.rc3
v2.1.3.0-0.1.rc1
v2.2.0.0-0.2.rc2
v2.2.0.0-0.1.rc1
v2.1.2.0-1
v2.1.2.0-0.5.rc5
v2.1.2.0-0.4.rc4
v2.1.2.0-0.3.rc3
v2.1.2.0-0.2.rc2
v2.1.2.0-0.1.rc1
v2.1.1.0-1
v2.1.1.0-0.5.rc5
v2.1.1.0-0.4.rc4
v2.1.1.0-0.3.rc3
v2.1.1.0-0.2.rc2
v2.1.1.0-0.1.rc1
v2.1.0.0-1
v2.1.0.0-0.4.rc4
v2.1.0.0-0.2.rc2
v2.1.0.0-0.3.rc3
v2.1.0.0-0.1.rc1
v2.0.2.0-1
v1.9.6-1
v2.0.2.0-0.4.rc4
v2.0.2.0-0.3.rc3
v1.9.6-0.1.rc1
v2.0.2.0-0.2.rc2
v2.0.2.0-0.1.rc1
v1.9.5-1
v1.9.5-0.1.rc1
v2.0.1.0-1
v2.0.1.0-0.2.rc2
v2.0.1.0-0.1.rc1
v2.0.0.2-1
v2.0.0.1-1
v2.0.0.0-1
v2.0.0-0.9.rc4
v2.0.0-0.8.rc3
v2.0.0-0.7.rc2
v2.0.0-0.6.rc1
v2.0.0-0.5.beta3
v2.0.0-0.4.beta2
v1.9.4-1
v2.0.0-0.3.beta1
v1.9.4-0.3.rc3
v1.9.4-0.2.rc2
v1.9.4-0.1.rc1
v2.0.0-0.2.alpha2
v1.9.3-1
v2.0.0-0.1.alpha1
v1.9.3-0.3.rc3
v1.9.3-0.2.rc2
v1.9.3-0.1.rc1
v1.9.2-1
v1.9.2-0.2.rc2
v1_last
v1.9.2-0.1.rc1
v1.9.1-1
v1.9.1-0.4.rc4
v1.9.1-0.3.rc3
v1.9.1-0.2.rc2
v1.9.1-0.1.rc1
v1.9.0.1-1
v1.9.0-2
v1.9.0-1
v1.9.0-0.2.rc2
v1.9.0-0.1.rc1
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.2
v1.7.1
v1.7.0
v1.6.10
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.4
v1.3.3
v1.3.2
v1.3.1
v1.3.0
v1.2.3
v1.2.2
v1.2.1
v1.2
v1.1
v1.0
0.8
0.7.2
0.7
0.6
0.5
0.4.1
0.4
0.3.1
0.3
0.01
0.0.1
0.0.2
0.7.1
v0.9
v2.13.10
v2.13.10rc1
v2.13.11
v2.13.11rc1
v2.13.12
v2.13.12rc1
v2.13.13
v2.13.13rc1
v2.13.9
v2.13.9rc1
v2.14.10
v2.14.10rc1
v2.14.11
v2.14.11rc1
v2.14.12
v2.14.12rc1
v2.14.13
v2.14.14
v2.14.14rc1
v2.14.15
v2.14.15rc1
v2.14.16
v2.14.16rc1
v2.14.17
v2.14.17rc1
v2.14.4
v2.14.4rc1
v2.14.5
v2.14.5rc1
v2.14.6
v2.14.6rc1
v2.14.7
v2.14.7rc1
v2.14.8
v2.14.8rc1
v2.14.9
v2.14.9rc1
v2.15.0
v2.15.0b1
v2.15.0b2
v2.15.0b3
v2.15.0rc1
v2.15.0rc2
v2.15.1
v2.15.10
v2.15.10rc1
v2.15.11
v2.15.11rc1
v2.15.12
v2.15.12rc1
v2.15.1rc1
v2.15.2
v2.15.2rc1
v2.15.3
v2.15.3rc1
v2.15.4
v2.15.4rc1
v2.15.5
v2.15.5rc1
v2.15.6
v2.15.6rc1
v2.15.7
v2.15.7rc1
v2.15.8
v2.15.9
v2.15.9rc1
v2.16.0
v2.16.0b1
v2.16.0b2
v2.16.0rc1
v2.16.1
v2.16.10
v2.16.10rc1
v2.16.11
v2.16.11rc1
v2.16.1rc1
v2.16.2
v2.16.3
v2.16.3rc1
v2.16.4
v2.16.4rc1
v2.16.5
v2.16.5rc1
v2.16.6
v2.16.7
v2.16.7rc1
v2.16.8
v2.16.8rc1
v2.16.9
v2.16.9rc1
v2.17.0
v2.17.0b1
v2.17.0rc1
v2.17.0rc2
v2.17.1
v2.17.1rc1
v2.17.2
v2.17.2rc1
v2.17.2rc2
v2.17.3
v2.17.3rc1
v2.17.4
v2.17.4rc1
v2.5.0b2
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'cd8161a948'
${ noResults }
ansible/test/units/modules/network/fortios/test_fortios_vpn_ipsec_phas...

1420 lines
56 KiB
Python
Raw Blame History

# Copyright 2019 Fortinet, Inc.
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Ansible. If not, see <https://www.gnu.org/licenses/>.
# Make coding more python3-ish
from __future__ import (absolute_import, division, print_function)
__metaclass__ = type
import os
import json
import pytest
from mock import ANY
from ansible.module_utils.network.fortios.fortios import FortiOSHandler
try:
from ansible.modules.network.fortios import fortios_vpn_ipsec_phase1_interface
except ImportError:
pytest.skip("Could not load required modules for testing", allow_module_level=True)
@pytest.fixture(autouse=True)
def connection_mock(mocker):
connection_class_mock = mocker.patch('ansible.modules.network.fortios.fortios_vpn_ipsec_phase1_interface.Connection')
return connection_class_mock
fos_instance = FortiOSHandler(connection_mock)
def test_vpn_ipsec_phase1_interface_creation(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
set_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200}
set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result)
input_data = {
'username': 'admin',
'state': 'present',
'vpn_ipsec_phase1_interface': {
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
expected_data = {
'acct-verify': 'enable',
'add-gw-route': 'enable',
'add-route': 'disable',
'assign-ip': 'disable',
'assign-ip-from': 'range',
'authmethod': 'psk',
'authmethod-remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto-discovery-forwarder': 'enable',
'auto-discovery-psk': 'enable',
'auto-discovery-receiver': 'enable',
'auto-discovery-sender': 'enable',
'auto-negotiate': 'enable',
'banner': 'test_value_18',
'cert-id-validation': 'enable',
'childless-ike': 'enable',
'client-auto-negotiate': 'disable',
'client-keep-alive': 'disable',
'comments': 'test_value_23',
'default-gw': 'test_value_24',
'default-gw-priority': '25',
'dhgrp': '1',
'digital-signature-auth': 'enable',
'distance': '28',
'dns-mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd-retrycount': '32',
'dpd-retryinterval': 'test_value_33',
'eap': 'enable',
'eap-identity': 'use-id-payload',
'encap-local-gw4': 'test_value_36',
'encap-local-gw6': 'test_value_37',
'encap-remote-gw4': 'test_value_38',
'encap-remote-gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation-address': 'ike',
'enforce-unique-id': 'disable',
'exchange-interface-ip': 'enable',
'exchange-ip-addr4': 'test_value_44',
'exchange-ip-addr6': 'test_value_45',
'forticlient-enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation-mtu': '48',
'group-authentication': 'enable',
'group-authentication-secret': 'test_value_50',
'ha-sync-esp-seqno': 'enable',
'idle-timeout': 'enable',
'idle-timeoutinterval': '53',
'ike-version': '1',
'include-local-lan': 'disable',
'interface': 'test_value_56',
'ip-version': '4',
'ipv4-dns-server1': 'test_value_58',
'ipv4-dns-server2': 'test_value_59',
'ipv4-dns-server3': 'test_value_60',
'ipv4-end-ip': 'test_value_61',
'ipv4-name': 'test_value_62',
'ipv4-netmask': 'test_value_63',
'ipv4-split-exclude': 'test_value_64',
'ipv4-split-include': 'test_value_65',
'ipv4-start-ip': 'test_value_66',
'ipv4-wins-server1': 'test_value_67',
'ipv4-wins-server2': 'test_value_68',
'ipv6-dns-server1': 'test_value_69',
'ipv6-dns-server2': 'test_value_70',
'ipv6-dns-server3': 'test_value_71',
'ipv6-end-ip': 'test_value_72',
'ipv6-name': 'test_value_73',
'ipv6-prefix': '74',
'ipv6-split-exclude': 'test_value_75',
'ipv6-split-include': 'test_value_76',
'ipv6-start-ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local-gw': 'test_value_80',
'local-gw6': 'test_value_81',
'localid': 'test_value_82',
'localid-type': 'auto',
'mesh-selector-type': 'disable',
'mode': 'aggressive',
'mode-cfg': 'disable',
'monitor': 'test_value_87',
'monitor-hold-down-delay': '88',
'monitor-hold-down-time': 'test_value_89',
'monitor-hold-down-type': 'immediate',
'monitor-hold-down-weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate-timeout': '94',
'net-device': 'enable',
'passive-mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk-identity': 'test_value_102',
'ppk-secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret-remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote-gw': 'test_value_110',
'remote-gw6': 'test_value_111',
'remotegw-ddns': 'test_value_112',
'rsa-signature-format': 'pkcs1',
'save-password': 'disable',
'send-cert-chain': 'enable',
'signature-hash-alg': 'sha1',
'split-include-service': 'test_value_117',
'suite-b': 'disable',
'tunnel-search': 'selectors',
'type': 'static',
'unity-support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard-type': 'custom',
'xauthtype': 'disable'
}
set_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', data=expected_data, vdom='root')
schema_method_mock.assert_not_called()
assert not is_error
assert changed
assert response['status'] == 'success'
assert response['http_status'] == 200
def test_vpn_ipsec_phase1_interface_creation_fails(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
set_method_result = {'status': 'error', 'http_method': 'POST', 'http_status': 500}
set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result)
input_data = {
'username': 'admin',
'state': 'present',
'vpn_ipsec_phase1_interface': {
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
expected_data = {
'acct-verify': 'enable',
'add-gw-route': 'enable',
'add-route': 'disable',
'assign-ip': 'disable',
'assign-ip-from': 'range',
'authmethod': 'psk',
'authmethod-remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto-discovery-forwarder': 'enable',
'auto-discovery-psk': 'enable',
'auto-discovery-receiver': 'enable',
'auto-discovery-sender': 'enable',
'auto-negotiate': 'enable',
'banner': 'test_value_18',
'cert-id-validation': 'enable',
'childless-ike': 'enable',
'client-auto-negotiate': 'disable',
'client-keep-alive': 'disable',
'comments': 'test_value_23',
'default-gw': 'test_value_24',
'default-gw-priority': '25',
'dhgrp': '1',
'digital-signature-auth': 'enable',
'distance': '28',
'dns-mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd-retrycount': '32',
'dpd-retryinterval': 'test_value_33',
'eap': 'enable',
'eap-identity': 'use-id-payload',
'encap-local-gw4': 'test_value_36',
'encap-local-gw6': 'test_value_37',
'encap-remote-gw4': 'test_value_38',
'encap-remote-gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation-address': 'ike',
'enforce-unique-id': 'disable',
'exchange-interface-ip': 'enable',
'exchange-ip-addr4': 'test_value_44',
'exchange-ip-addr6': 'test_value_45',
'forticlient-enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation-mtu': '48',
'group-authentication': 'enable',
'group-authentication-secret': 'test_value_50',
'ha-sync-esp-seqno': 'enable',
'idle-timeout': 'enable',
'idle-timeoutinterval': '53',
'ike-version': '1',
'include-local-lan': 'disable',
'interface': 'test_value_56',
'ip-version': '4',
'ipv4-dns-server1': 'test_value_58',
'ipv4-dns-server2': 'test_value_59',
'ipv4-dns-server3': 'test_value_60',
'ipv4-end-ip': 'test_value_61',
'ipv4-name': 'test_value_62',
'ipv4-netmask': 'test_value_63',
'ipv4-split-exclude': 'test_value_64',
'ipv4-split-include': 'test_value_65',
'ipv4-start-ip': 'test_value_66',
'ipv4-wins-server1': 'test_value_67',
'ipv4-wins-server2': 'test_value_68',
'ipv6-dns-server1': 'test_value_69',
'ipv6-dns-server2': 'test_value_70',
'ipv6-dns-server3': 'test_value_71',
'ipv6-end-ip': 'test_value_72',
'ipv6-name': 'test_value_73',
'ipv6-prefix': '74',
'ipv6-split-exclude': 'test_value_75',
'ipv6-split-include': 'test_value_76',
'ipv6-start-ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local-gw': 'test_value_80',
'local-gw6': 'test_value_81',
'localid': 'test_value_82',
'localid-type': 'auto',
'mesh-selector-type': 'disable',
'mode': 'aggressive',
'mode-cfg': 'disable',
'monitor': 'test_value_87',
'monitor-hold-down-delay': '88',
'monitor-hold-down-time': 'test_value_89',
'monitor-hold-down-type': 'immediate',
'monitor-hold-down-weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate-timeout': '94',
'net-device': 'enable',
'passive-mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk-identity': 'test_value_102',
'ppk-secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret-remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote-gw': 'test_value_110',
'remote-gw6': 'test_value_111',
'remotegw-ddns': 'test_value_112',
'rsa-signature-format': 'pkcs1',
'save-password': 'disable',
'send-cert-chain': 'enable',
'signature-hash-alg': 'sha1',
'split-include-service': 'test_value_117',
'suite-b': 'disable',
'tunnel-search': 'selectors',
'type': 'static',
'unity-support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard-type': 'custom',
'xauthtype': 'disable'
}
set_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', data=expected_data, vdom='root')
schema_method_mock.assert_not_called()
assert is_error
assert not changed
assert response['status'] == 'error'
assert response['http_status'] == 500
def test_vpn_ipsec_phase1_interface_removal(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
delete_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200}
delete_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.delete', return_value=delete_method_result)
input_data = {
'username': 'admin',
'state': 'absent',
'vpn_ipsec_phase1_interface': {
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
delete_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', mkey=ANY, vdom='root')
schema_method_mock.assert_not_called()
assert not is_error
assert changed
assert response['status'] == 'success'
assert response['http_status'] == 200
def test_vpn_ipsec_phase1_interface_deletion_fails(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
delete_method_result = {'status': 'error', 'http_method': 'POST', 'http_status': 500}
delete_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.delete', return_value=delete_method_result)
input_data = {
'username': 'admin',
'state': 'absent',
'vpn_ipsec_phase1_interface': {
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
delete_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', mkey=ANY, vdom='root')
schema_method_mock.assert_not_called()
assert is_error
assert not changed
assert response['status'] == 'error'
assert response['http_status'] == 500
def test_vpn_ipsec_phase1_interface_idempotent(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
set_method_result = {'status': 'error', 'http_method': 'DELETE', 'http_status': 404}
set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result)
input_data = {
'username': 'admin',
'state': 'present',
'vpn_ipsec_phase1_interface': {
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
expected_data = {
'acct-verify': 'enable',
'add-gw-route': 'enable',
'add-route': 'disable',
'assign-ip': 'disable',
'assign-ip-from': 'range',
'authmethod': 'psk',
'authmethod-remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto-discovery-forwarder': 'enable',
'auto-discovery-psk': 'enable',
'auto-discovery-receiver': 'enable',
'auto-discovery-sender': 'enable',
'auto-negotiate': 'enable',
'banner': 'test_value_18',
'cert-id-validation': 'enable',
'childless-ike': 'enable',
'client-auto-negotiate': 'disable',
'client-keep-alive': 'disable',
'comments': 'test_value_23',
'default-gw': 'test_value_24',
'default-gw-priority': '25',
'dhgrp': '1',
'digital-signature-auth': 'enable',
'distance': '28',
'dns-mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd-retrycount': '32',
'dpd-retryinterval': 'test_value_33',
'eap': 'enable',
'eap-identity': 'use-id-payload',
'encap-local-gw4': 'test_value_36',
'encap-local-gw6': 'test_value_37',
'encap-remote-gw4': 'test_value_38',
'encap-remote-gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation-address': 'ike',
'enforce-unique-id': 'disable',
'exchange-interface-ip': 'enable',
'exchange-ip-addr4': 'test_value_44',
'exchange-ip-addr6': 'test_value_45',
'forticlient-enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation-mtu': '48',
'group-authentication': 'enable',
'group-authentication-secret': 'test_value_50',
'ha-sync-esp-seqno': 'enable',
'idle-timeout': 'enable',
'idle-timeoutinterval': '53',
'ike-version': '1',
'include-local-lan': 'disable',
'interface': 'test_value_56',
'ip-version': '4',
'ipv4-dns-server1': 'test_value_58',
'ipv4-dns-server2': 'test_value_59',
'ipv4-dns-server3': 'test_value_60',
'ipv4-end-ip': 'test_value_61',
'ipv4-name': 'test_value_62',
'ipv4-netmask': 'test_value_63',
'ipv4-split-exclude': 'test_value_64',
'ipv4-split-include': 'test_value_65',
'ipv4-start-ip': 'test_value_66',
'ipv4-wins-server1': 'test_value_67',
'ipv4-wins-server2': 'test_value_68',
'ipv6-dns-server1': 'test_value_69',
'ipv6-dns-server2': 'test_value_70',
'ipv6-dns-server3': 'test_value_71',
'ipv6-end-ip': 'test_value_72',
'ipv6-name': 'test_value_73',
'ipv6-prefix': '74',
'ipv6-split-exclude': 'test_value_75',
'ipv6-split-include': 'test_value_76',
'ipv6-start-ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local-gw': 'test_value_80',
'local-gw6': 'test_value_81',
'localid': 'test_value_82',
'localid-type': 'auto',
'mesh-selector-type': 'disable',
'mode': 'aggressive',
'mode-cfg': 'disable',
'monitor': 'test_value_87',
'monitor-hold-down-delay': '88',
'monitor-hold-down-time': 'test_value_89',
'monitor-hold-down-type': 'immediate',
'monitor-hold-down-weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate-timeout': '94',
'net-device': 'enable',
'passive-mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk-identity': 'test_value_102',
'ppk-secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret-remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote-gw': 'test_value_110',
'remote-gw6': 'test_value_111',
'remotegw-ddns': 'test_value_112',
'rsa-signature-format': 'pkcs1',
'save-password': 'disable',
'send-cert-chain': 'enable',
'signature-hash-alg': 'sha1',
'split-include-service': 'test_value_117',
'suite-b': 'disable',
'tunnel-search': 'selectors',
'type': 'static',
'unity-support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard-type': 'custom',
'xauthtype': 'disable'
}
set_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', data=expected_data, vdom='root')
schema_method_mock.assert_not_called()
assert not is_error
assert not changed
assert response['status'] == 'error'
assert response['http_status'] == 404
def test_vpn_ipsec_phase1_interface_filter_foreign_attributes(mocker):
schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema')
set_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200}
set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result)
input_data = {
'username': 'admin',
'state': 'present',
'vpn_ipsec_phase1_interface': {
'random_attribute_not_valid': 'tag',
'acct_verify': 'enable',
'add_gw_route': 'enable',
'add_route': 'disable',
'assign_ip': 'disable',
'assign_ip_from': 'range',
'authmethod': 'psk',
'authmethod_remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto_discovery_forwarder': 'enable',
'auto_discovery_psk': 'enable',
'auto_discovery_receiver': 'enable',
'auto_discovery_sender': 'enable',
'auto_negotiate': 'enable',
'banner': 'test_value_18',
'cert_id_validation': 'enable',
'childless_ike': 'enable',
'client_auto_negotiate': 'disable',
'client_keep_alive': 'disable',
'comments': 'test_value_23',
'default_gw': 'test_value_24',
'default_gw_priority': '25',
'dhgrp': '1',
'digital_signature_auth': 'enable',
'distance': '28',
'dns_mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd_retrycount': '32',
'dpd_retryinterval': 'test_value_33',
'eap': 'enable',
'eap_identity': 'use-id-payload',
'encap_local_gw4': 'test_value_36',
'encap_local_gw6': 'test_value_37',
'encap_remote_gw4': 'test_value_38',
'encap_remote_gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation_address': 'ike',
'enforce_unique_id': 'disable',
'exchange_interface_ip': 'enable',
'exchange_ip_addr4': 'test_value_44',
'exchange_ip_addr6': 'test_value_45',
'forticlient_enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation_mtu': '48',
'group_authentication': 'enable',
'group_authentication_secret': 'test_value_50',
'ha_sync_esp_seqno': 'enable',
'idle_timeout': 'enable',
'idle_timeoutinterval': '53',
'ike_version': '1',
'include_local_lan': 'disable',
'interface': 'test_value_56',
'ip_version': '4',
'ipv4_dns_server1': 'test_value_58',
'ipv4_dns_server2': 'test_value_59',
'ipv4_dns_server3': 'test_value_60',
'ipv4_end_ip': 'test_value_61',
'ipv4_name': 'test_value_62',
'ipv4_netmask': 'test_value_63',
'ipv4_split_exclude': 'test_value_64',
'ipv4_split_include': 'test_value_65',
'ipv4_start_ip': 'test_value_66',
'ipv4_wins_server1': 'test_value_67',
'ipv4_wins_server2': 'test_value_68',
'ipv6_dns_server1': 'test_value_69',
'ipv6_dns_server2': 'test_value_70',
'ipv6_dns_server3': 'test_value_71',
'ipv6_end_ip': 'test_value_72',
'ipv6_name': 'test_value_73',
'ipv6_prefix': '74',
'ipv6_split_exclude': 'test_value_75',
'ipv6_split_include': 'test_value_76',
'ipv6_start_ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local_gw': 'test_value_80',
'local_gw6': 'test_value_81',
'localid': 'test_value_82',
'localid_type': 'auto',
'mesh_selector_type': 'disable',
'mode': 'aggressive',
'mode_cfg': 'disable',
'monitor': 'test_value_87',
'monitor_hold_down_delay': '88',
'monitor_hold_down_time': 'test_value_89',
'monitor_hold_down_type': 'immediate',
'monitor_hold_down_weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate_timeout': '94',
'net_device': 'enable',
'passive_mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk_identity': 'test_value_102',
'ppk_secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret_remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote_gw': 'test_value_110',
'remote_gw6': 'test_value_111',
'remotegw_ddns': 'test_value_112',
'rsa_signature_format': 'pkcs1',
'save_password': 'disable',
'send_cert_chain': 'enable',
'signature_hash_alg': 'sha1',
'split_include_service': 'test_value_117',
'suite_b': 'disable',
'tunnel_search': 'selectors',
'type': 'static',
'unity_support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard_type': 'custom',
'xauthtype': 'disable'
},
'vdom': 'root'}
is_error, changed, response = fortios_vpn_ipsec_phase1_interface.fortios_vpn_ipsec(input_data, fos_instance)
expected_data = {
'acct-verify': 'enable',
'add-gw-route': 'enable',
'add-route': 'disable',
'assign-ip': 'disable',
'assign-ip-from': 'range',
'authmethod': 'psk',
'authmethod-remote': 'psk',
'authpasswd': 'test_value_10',
'authusr': 'test_value_11',
'authusrgrp': 'test_value_12',
'auto-discovery-forwarder': 'enable',
'auto-discovery-psk': 'enable',
'auto-discovery-receiver': 'enable',
'auto-discovery-sender': 'enable',
'auto-negotiate': 'enable',
'banner': 'test_value_18',
'cert-id-validation': 'enable',
'childless-ike': 'enable',
'client-auto-negotiate': 'disable',
'client-keep-alive': 'disable',
'comments': 'test_value_23',
'default-gw': 'test_value_24',
'default-gw-priority': '25',
'dhgrp': '1',
'digital-signature-auth': 'enable',
'distance': '28',
'dns-mode': 'manual',
'domain': 'test_value_30',
'dpd': 'disable',
'dpd-retrycount': '32',
'dpd-retryinterval': 'test_value_33',
'eap': 'enable',
'eap-identity': 'use-id-payload',
'encap-local-gw4': 'test_value_36',
'encap-local-gw6': 'test_value_37',
'encap-remote-gw4': 'test_value_38',
'encap-remote-gw6': 'test_value_39',
'encapsulation': 'none',
'encapsulation-address': 'ike',
'enforce-unique-id': 'disable',
'exchange-interface-ip': 'enable',
'exchange-ip-addr4': 'test_value_44',
'exchange-ip-addr6': 'test_value_45',
'forticlient-enforcement': 'enable',
'fragmentation': 'enable',
'fragmentation-mtu': '48',
'group-authentication': 'enable',
'group-authentication-secret': 'test_value_50',
'ha-sync-esp-seqno': 'enable',
'idle-timeout': 'enable',
'idle-timeoutinterval': '53',
'ike-version': '1',
'include-local-lan': 'disable',
'interface': 'test_value_56',
'ip-version': '4',
'ipv4-dns-server1': 'test_value_58',
'ipv4-dns-server2': 'test_value_59',
'ipv4-dns-server3': 'test_value_60',
'ipv4-end-ip': 'test_value_61',
'ipv4-name': 'test_value_62',
'ipv4-netmask': 'test_value_63',
'ipv4-split-exclude': 'test_value_64',
'ipv4-split-include': 'test_value_65',
'ipv4-start-ip': 'test_value_66',
'ipv4-wins-server1': 'test_value_67',
'ipv4-wins-server2': 'test_value_68',
'ipv6-dns-server1': 'test_value_69',
'ipv6-dns-server2': 'test_value_70',
'ipv6-dns-server3': 'test_value_71',
'ipv6-end-ip': 'test_value_72',
'ipv6-name': 'test_value_73',
'ipv6-prefix': '74',
'ipv6-split-exclude': 'test_value_75',
'ipv6-split-include': 'test_value_76',
'ipv6-start-ip': 'test_value_77',
'keepalive': '78',
'keylife': '79',
'local-gw': 'test_value_80',
'local-gw6': 'test_value_81',
'localid': 'test_value_82',
'localid-type': 'auto',
'mesh-selector-type': 'disable',
'mode': 'aggressive',
'mode-cfg': 'disable',
'monitor': 'test_value_87',
'monitor-hold-down-delay': '88',
'monitor-hold-down-time': 'test_value_89',
'monitor-hold-down-type': 'immediate',
'monitor-hold-down-weekday': 'everyday',
'name': 'default_name_92',
'nattraversal': 'enable',
'negotiate-timeout': '94',
'net-device': 'enable',
'passive-mode': 'enable',
'peer': 'test_value_97',
'peergrp': 'test_value_98',
'peerid': 'test_value_99',
'peertype': 'any',
'ppk': 'disable',
'ppk-identity': 'test_value_102',
'ppk-secret': 'test_value_103',
'priority': '104',
'proposal': 'des-md5',
'psksecret': 'test_value_106',
'psksecret-remote': 'test_value_107',
'reauth': 'disable',
'rekey': 'enable',
'remote-gw': 'test_value_110',
'remote-gw6': 'test_value_111',
'remotegw-ddns': 'test_value_112',
'rsa-signature-format': 'pkcs1',
'save-password': 'disable',
'send-cert-chain': 'enable',
'signature-hash-alg': 'sha1',
'split-include-service': 'test_value_117',
'suite-b': 'disable',
'tunnel-search': 'selectors',
'type': 'static',
'unity-support': 'disable',
'usrgrp': 'test_value_122',
'vni': '123',
'wizard-type': 'custom',
'xauthtype': 'disable'
}
set_method_mock.assert_called_with('vpn.ipsec', 'phase1-interface', data=expected_data, vdom='root')
schema_method_mock.assert_not_called()
assert not is_error
assert changed
assert response['status'] == 'success'
assert response['http_status'] == 200
Reference in New Issue View Git Blame Copy Permalink