diff --git a/tests/group/test_group_membermanager.yml b/tests/group/test_group_membermanager.yml
index 661f26d64f48f517d253af133119ea7924ef4509..f3d58812ac10bd77d5d9491b549cbb92bbcb3af1 100644
--- a/tests/group/test_group_membermanager.yml
+++ b/tests/group/test_group_membermanager.yml
@@ -5,199 +5,205 @@
gather_facts: false
tasks:
- - name: Ensure user manangeruser1 and manageruser2 is absent
- ipauser:
- ipaadmin_password: SomeADMINpassword
- name: manageruser1,manageruser2,unknown_user
- state: absent
-
- - name: Ensure group testgroup, managergroup1 and managergroup2 are absent
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup,managergroup1,managergroup2
- state: absent
-
- - name: Ensure user manageruser1 and manageruser2 are present
- ipauser:
- ipaadmin_password: SomeADMINpassword
- users:
- - name: manageruser1
- first: manageruser1
- last: Last1
- - name: manageruser2
- first: manageruser2
- last: Last2
- register: result
- failed_when: not result.changed
-
- - name: Ensure testgroup is present
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- register: result
- failed_when: not result.changed
-
- - name: Ensure managergroup1 is present
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: managergroup1
- register: result
- failed_when: not result.changed
-
- - name: Ensure managergroup2 is present
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: managergroup2
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user1 is present for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user1 is present for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager group1 is present for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_group: managergroup1
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager group1 is present for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_group: managergroup1
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager user2 and group2 members are present for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser2
- membermanager_group: managergroup2
- action: member
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user2 and group2 members are present for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser2
- membermanager_group: managergroup2
- action: member
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager user and group members are present for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1,manageruser2
- membermanager_group: managergroup1,managergroup2
- action: member
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager user1 and group1 members are absent for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- membermanager_group: managergroup1
- action: member
- state: absent
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user1 and group1 members are absent for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- membermanager_group: managergroup1
- action: member
- state: absent
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager user1 and group1 members are present for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- membermanager_group: managergroup1
- action: member
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user1 and group1 members are present for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1
- membermanager_group: managergroup1
- action: member
- register: result
- failed_when: result.changed
-
- - name: Ensure membermanager user and group members are absent for testgroup
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1,manageruser2
- membermanager_group: managergroup1,managergroup2
- action: member
- state: absent
- register: result
- failed_when: not result.changed
-
- - name: Ensure membermanager user and group members are absent for testgroup again
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: manageruser1,manageruser2
- membermanager_group: managergroup1,managergroup2
- action: member
- state: absent
- register: result
- failed_when: result.changed
-
- - name: Ensure user manangeruser1 and manageruser2 is absent
- ipauser:
- ipaadmin_password: SomeADMINpassword
- name: manageruser1,manageruser2
- state: absent
- register: result
- failed_when: not result.changed
-
- - name: Ensure unknown membermanager_user member failure
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup
- membermanager_user: unknown_user
- action: member
- register: result
- failed_when: result.changed or "no such entry" not in result.msg
-
- - name: Ensure group testgroup, managergroup1 and managergroup2 are absent
- ipagroup:
- ipaadmin_password: SomeADMINpassword
- name: testgroup,managergroup1,managergroup2
- state: absent
- register: result
- failed_when: not result.changed
+ - include_tasks: ../env_freeipa_facts.yml
+
+ - name: Tests requiring IPA version 4.8.4+
+ block:
+ - name: Ensure user manangeruser1 and manageruser2 is absent
+ ipauser:
+ ipaadmin_password: SomeADMINpassword
+ name: manageruser1,manageruser2,unknown_user
+ state: absent
+
+ - name: Ensure group testgroup, managergroup1 and managergroup2 are absent
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup,managergroup1,managergroup2
+ state: absent
+
+ - name: Ensure user manageruser1 and manageruser2 are present
+ ipauser:
+ ipaadmin_password: SomeADMINpassword
+ users:
+ - name: manageruser1
+ first: manageruser1
+ last: Last1
+ - name: manageruser2
+ first: manageruser2
+ last: Last2
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure testgroup is present
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure managergroup1 is present
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: managergroup1
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure managergroup2 is present
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: managergroup2
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user1 is present for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user1 is present for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager group1 is present for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_group: managergroup1
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager group1 is present for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_group: managergroup1
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager user2 and group2 members are present for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser2
+ membermanager_group: managergroup2
+ action: member
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user2 and group2 members are present for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser2
+ membermanager_group: managergroup2
+ action: member
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager user and group members are present for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1,manageruser2
+ membermanager_group: managergroup1,managergroup2
+ action: member
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager user1 and group1 members are absent for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ membermanager_group: managergroup1
+ action: member
+ state: absent
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user1 and group1 members are absent for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ membermanager_group: managergroup1
+ action: member
+ state: absent
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager user1 and group1 members are present for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ membermanager_group: managergroup1
+ action: member
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user1 and group1 members are present for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1
+ membermanager_group: managergroup1
+ action: member
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure membermanager user and group members are absent for testgroup
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1,manageruser2
+ membermanager_group: managergroup1,managergroup2
+ action: member
+ state: absent
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure membermanager user and group members are absent for testgroup again
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: manageruser1,manageruser2
+ membermanager_group: managergroup1,managergroup2
+ action: member
+ state: absent
+ register: result
+ failed_when: result.changed
+
+ - name: Ensure user manangeruser1 and manageruser2 is absent
+ ipauser:
+ ipaadmin_password: SomeADMINpassword
+ name: manageruser1,manageruser2
+ state: absent
+ register: result
+ failed_when: not result.changed
+
+ - name: Ensure unknown membermanager_user member failure
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup
+ membermanager_user: unknown_user
+ action: member
+ register: result
+ failed_when: result.changed or "no such entry" not in result.msg
+
+ - name: Ensure group testgroup, managergroup1 and managergroup2 are absent
+ ipagroup:
+ ipaadmin_password: SomeADMINpassword
+ name: testgroup,managergroup1,managergroup2
+ state: absent
+ register: result
+ failed_when: not result.changed
+
+ when: ipa_version is version('4.8.4', '>=')