From 79c384fb0c41a205b8119f86ef23860c223c853e Mon Sep 17 00:00:00 2001
From: Sumit Bose <sbose@redhat.com>
Date: Mon, 25 Mar 2024 10:39:23 +0100
Subject: [PATCH] test: set 'local_auth_policy = only' for all passkey test
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Reviewed-by: Alejandro López <allopez@redhat.com>
Reviewed-by: Iker Pedrosa <ipedrosa@redhat.com>
Reviewed-by: Justin Stephenson <jstephen@redhat.com>
Reviewed-by: Scott Poore <spoore@redhat.com>
---
 src/tests/system/tests/test_passkey.py | 21 ++++++++-------------
 1 file changed, 8 insertions(+), 13 deletions(-)

diff --git a/src/tests/system/tests/test_passkey.py b/src/tests/system/tests/test_passkey.py
index 9f0e9c448a2..e03d1502127 100644
--- a/src/tests/system/tests/test_passkey.py
+++ b/src/tests/system/tests/test_passkey.py
@@ -104,8 +104,7 @@ def test_passkey__su(client: Client, provider: GenericProvider, moduledatadir: s
     """
     suffix = type(provider).__name__.lower()
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
         provider.user("user1").add().passkey_add(f.read().strip())
@@ -139,8 +138,7 @@ def test_passkey__su_fail_pin(client: Client, provider: GenericProvider, moduled
     """
     suffix = type(provider).__name__.lower()
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
         provider.user("user1").add().passkey_add(f.read().strip())
@@ -174,8 +172,7 @@ def test_passkey__su_fail_mapping(client: Client, provider: GenericProvider, mod
     """
     suffix = type(provider).__name__.lower()
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     # Here, we are using passkey-mapping from the other FIDO2 key.
 
@@ -220,12 +217,13 @@ def test_passkey__su_srv_not_resolvable(
         server_url = "ipa_server"
     elif suffix == "ldap":
         server_url = "ldap_uri"
-        client.sssd.domain["local_auth_policy"] = "only"
     elif suffix == "samba" or "ad":
         server_url = "ad_server"
     else:
         assert False, "provider not found"
 
+    client.sssd.domain["local_auth_policy"] = "only"
+
     with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
         provider.user("user1").add().passkey_add(f.read().strip())
 
@@ -281,8 +279,7 @@ def test_passkey__offline_su(client: Client, provider: GenericProvider, moduleda
     with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
         provider.user("user1").add().passkey_add(f.read().strip())
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     client.sssd.start()
 
@@ -370,8 +367,7 @@ def test_passkey__su_multi_keys_for_same_user(
     suffix = type(provider).__name__.lower()
     user_add = provider.user("user1").add()
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     for n in range(1, 5):
         with open(f"{testdatadir}/passkey-mapping.{suffix}{n}") as f:
@@ -408,8 +404,7 @@ def test_passkey__su_same_key_for_multi_user(
     """
     suffix = type(provider).__name__.lower()
 
-    if suffix == "ldap":
-        client.sssd.domain["local_auth_policy"] = "only"
+    client.sssd.domain["local_auth_policy"] = "only"
 
     client.sssd.start()