RubyGems - cisco_node_utils - Versions diffs - 1.2.0 → 1.3.0 - Mend

cisco_node_utils 1.2.0 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (255) hide show

checksums.yaml +4 -4
data/.gitignore +2 -0
data/.rspec +2 -0
data/.rubocop.yml +13 -0
data/.travis.yml +4 -1
data/CHANGELOG.md +81 -2
data/CONTRIBUTING.md +2 -17
data/Gemfile +5 -0
data/README.md +92 -47
data/Rakefile +23 -1
data/bin/git/hooks/hook_lib +7 -0
data/bin/git/hooks/pre-commit/check_unstaged_changes +18 -0
data/bin/git/hooks/pre-commit/rubocop +7 -2
data/bin/git/hooks/pre-commit/validate-diffs +18 -4
data/bin/git/hooks/pre-commit/validate-yaml +18 -0
data/bin/git/update-hooks +64 -6
data/cisco_node_utils.gemspec +9 -6
data/docs/README-develop-best-practices.md +149 -50
data/docs/README-develop-node-utils-APIs.md +92 -42
data/docs/README-maintainers.md +7 -4
data/docs/README-test-execution.md +57 -0
data/docs/cisco_node_utils.yaml.example +30 -0
data/docs/template-router.rb +4 -0
data/ext/mkrf_conf.rb +63 -0
data/lib/.rubocop.yml +2 -2
data/lib/cisco_node_utils.rb +5 -0
data/lib/cisco_node_utils/aaa_authentication_login.rb +5 -6
data/lib/cisco_node_utils/aaa_authorization_service.rb +1 -1
data/lib/cisco_node_utils/ace.rb +165 -12
data/lib/cisco_node_utils/acl.rb +2 -1
data/lib/cisco_node_utils/bgp.rb +184 -21
data/lib/cisco_node_utils/bgp_af.rb +94 -249
data/lib/cisco_node_utils/bgp_neighbor.rb +94 -14
data/lib/cisco_node_utils/bgp_neighbor_af.rb +75 -8
data/lib/cisco_node_utils/bridge_domain.rb +183 -0
data/lib/cisco_node_utils/bridge_domain_vni.rb +206 -0
data/lib/cisco_node_utils/cisco_cmn_utils.rb +85 -2
data/lib/cisco_node_utils/client.rb +35 -0
data/lib/cisco_node_utils/client/client.rb +234 -0
data/lib/cisco_node_utils/client/grpc.rb +33 -0
data/lib/cisco_node_utils/client/grpc/client.rb +311 -0
data/lib/cisco_node_utils/client/grpc/ems.proto +148 -0
data/lib/cisco_node_utils/client/grpc/ems.rb +111 -0
data/lib/cisco_node_utils/client/grpc/ems_services.rb +49 -0
data/lib/cisco_node_utils/client/nxapi.rb +31 -0
data/lib/cisco_node_utils/client/nxapi/client.rb +305 -0
data/lib/cisco_node_utils/client/utils.rb +164 -0
data/lib/cisco_node_utils/cmd_ref/README_YAML.md +222 -254
data/lib/cisco_node_utils/cmd_ref/aaa_auth_login_service.yaml +11 -8
data/lib/cisco_node_utils/cmd_ref/aaa_authentication_login.yaml +22 -15
data/lib/cisco_node_utils/cmd_ref/aaa_authorization_service.yaml +11 -8
data/lib/cisco_node_utils/cmd_ref/acl.yaml +21 -16
data/lib/cisco_node_utils/cmd_ref/bgp.yaml +239 -109
data/lib/cisco_node_utils/cmd_ref/bgp_af.yaml +114 -55
data/lib/cisco_node_utils/cmd_ref/bgp_neighbor.yaml +76 -52
data/lib/cisco_node_utils/cmd_ref/bgp_neighbor_af.yaml +106 -62
data/lib/cisco_node_utils/cmd_ref/bridge_domain.yaml +71 -0
data/lib/cisco_node_utils/cmd_ref/bridge_domain_vni.yaml +33 -0
data/lib/cisco_node_utils/cmd_ref/dnsclient.yaml +35 -14
data/lib/cisco_node_utils/cmd_ref/encapsulation.yaml +25 -0
data/lib/cisco_node_utils/cmd_ref/evpn_vni.yaml +23 -17
data/lib/cisco_node_utils/cmd_ref/fabricpath.yaml +94 -83
data/lib/cisco_node_utils/cmd_ref/fabricpath_topology.yaml +22 -17
data/lib/cisco_node_utils/cmd_ref/feature.yaml +76 -26
data/lib/cisco_node_utils/cmd_ref/images.yaml +3 -2
data/lib/cisco_node_utils/cmd_ref/interface.yaml +381 -153
data/lib/cisco_node_utils/cmd_ref/interface_channel_group.yaml +21 -11
data/lib/cisco_node_utils/cmd_ref/interface_ospf.yaml +21 -21
data/lib/cisco_node_utils/cmd_ref/interface_portchannel.yaml +30 -21
data/lib/cisco_node_utils/cmd_ref/interface_service_vni.yaml +18 -13
data/lib/cisco_node_utils/cmd_ref/inventory.yaml +26 -31
data/lib/cisco_node_utils/cmd_ref/itd_device_group.yaml +83 -0
data/lib/cisco_node_utils/cmd_ref/itd_service.yaml +119 -0
data/lib/cisco_node_utils/cmd_ref/memory.yaml +17 -6
data/lib/cisco_node_utils/cmd_ref/ntp_config.yaml +10 -3
data/lib/cisco_node_utils/cmd_ref/ntp_server.yaml +17 -5
data/lib/cisco_node_utils/cmd_ref/ospf.yaml +33 -29
data/lib/cisco_node_utils/cmd_ref/overlay_global.yaml +12 -10
data/lib/cisco_node_utils/cmd_ref/pim.yaml +16 -19
data/lib/cisco_node_utils/cmd_ref/portchannel_global.yaml +40 -25
data/lib/cisco_node_utils/cmd_ref/radius_global.yaml +17 -12
data/lib/cisco_node_utils/cmd_ref/radius_server.yaml +71 -35
data/lib/cisco_node_utils/cmd_ref/radius_server_group.yaml +10 -5
data/lib/cisco_node_utils/cmd_ref/show_system.yaml +6 -2
data/lib/cisco_node_utils/cmd_ref/show_version.yaml +47 -43
data/lib/cisco_node_utils/cmd_ref/snmp_community.yaml +13 -11
data/lib/cisco_node_utils/cmd_ref/snmp_group.yaml +4 -2
data/lib/cisco_node_utils/cmd_ref/snmp_notification_receiver.yaml +23 -21
data/lib/cisco_node_utils/cmd_ref/snmp_server.yaml +26 -22
data/lib/cisco_node_utils/cmd_ref/snmp_user.yaml +19 -17
data/lib/cisco_node_utils/cmd_ref/snmpnotification.yaml +18 -6
data/lib/cisco_node_utils/cmd_ref/stp_global.yaml +234 -0
data/lib/cisco_node_utils/cmd_ref/syslog_server.yaml +24 -9
data/lib/cisco_node_utils/cmd_ref/syslog_settings.yaml +5 -3
data/lib/cisco_node_utils/cmd_ref/system.yaml +4 -3
data/lib/cisco_node_utils/cmd_ref/tacacs_server.yaml +22 -20
data/lib/cisco_node_utils/cmd_ref/tacacs_server_group.yaml +27 -15
data/lib/cisco_node_utils/cmd_ref/tacacs_server_host.yaml +45 -16
data/lib/cisco_node_utils/cmd_ref/vdc.yaml +21 -11
data/lib/cisco_node_utils/cmd_ref/virtual_service.yaml +3 -2
data/lib/cisco_node_utils/cmd_ref/vlan.yaml +60 -32
data/lib/cisco_node_utils/cmd_ref/vpc.yaml +118 -101
data/lib/cisco_node_utils/cmd_ref/vrf.yaml +54 -58
data/lib/cisco_node_utils/cmd_ref/vrf_af.yaml +118 -0
data/lib/cisco_node_utils/cmd_ref/vtp.yaml +19 -25
data/lib/cisco_node_utils/cmd_ref/vxlan_vtep.yaml +28 -18
data/lib/cisco_node_utils/cmd_ref/vxlan_vtep_vni.yaml +34 -17
data/lib/cisco_node_utils/cmd_ref/yum.yaml +6 -4
data/lib/cisco_node_utils/command_reference.rb +261 -142
data/lib/cisco_node_utils/constants.rb +33 -0
data/lib/cisco_node_utils/encapsulation.rb +112 -0
data/lib/cisco_node_utils/environment.rb +102 -0
data/lib/cisco_node_utils/evpn_vni.rb +5 -3
data/lib/cisco_node_utils/exceptions.rb +111 -0
data/lib/cisco_node_utils/fabricpath_global.rb +52 -35
data/lib/cisco_node_utils/fabricpath_topology.rb +44 -57
data/lib/cisco_node_utils/feature.rb +165 -3
data/lib/cisco_node_utils/interface.rb +1051 -260
data/lib/cisco_node_utils/interface_channel_group.rb +11 -10
data/lib/cisco_node_utils/interface_ospf.rb +1 -2
data/lib/cisco_node_utils/interface_portchannel.rb +4 -12
data/lib/cisco_node_utils/interface_service_vni.rb +7 -7
data/lib/cisco_node_utils/itd_device_group.rb +248 -0
data/lib/cisco_node_utils/itd_device_group_node.rb +144 -0
data/lib/cisco_node_utils/itd_service.rb +523 -0
data/lib/cisco_node_utils/logger.rb +75 -0
data/lib/cisco_node_utils/node.rb +62 -192
data/lib/cisco_node_utils/node_util.rb +56 -10
data/lib/cisco_node_utils/overlay_global.rb +2 -2
data/lib/cisco_node_utils/pim.rb +2 -13
data/lib/cisco_node_utils/pim_group_list.rb +1 -1
data/lib/cisco_node_utils/pim_rp_address.rb +1 -1
data/lib/cisco_node_utils/platform.rb +52 -21
data/lib/cisco_node_utils/portchannel_global.rb +89 -19
data/lib/cisco_node_utils/radius_server.rb +168 -37
data/lib/cisco_node_utils/router_ospf.rb +20 -35
data/lib/cisco_node_utils/router_ospf_vrf.rb +4 -4
data/lib/cisco_node_utils/snmpserver.rb +1 -6
data/lib/cisco_node_utils/snmpuser.rb +6 -4
data/lib/cisco_node_utils/stp_global.rb +676 -0
data/lib/cisco_node_utils/syslog_server.rb +77 -18
data/lib/cisco_node_utils/syslog_settings.rb +1 -1
data/lib/cisco_node_utils/tacacs_server_group.rb +8 -4
data/lib/cisco_node_utils/tacacs_server_host.rb +115 -25
data/lib/cisco_node_utils/vdc.rb +12 -0
data/lib/cisco_node_utils/version.rb +1 -1
data/lib/cisco_node_utils/vlan.rb +147 -29
data/lib/cisco_node_utils/vpc.rb +55 -3
data/lib/cisco_node_utils/vrf.rb +72 -11
data/lib/cisco_node_utils/vrf_af.rb +114 -29
data/lib/cisco_node_utils/vtp.rb +34 -52
data/lib/cisco_node_utils/vxlan_vtep.rb +34 -8
data/lib/cisco_node_utils/vxlan_vtep_vni.rb +36 -4
data/lib/minitest/environment_plugin.rb +31 -0
data/lib/minitest/log_level_plugin.rb +41 -0
data/spec/client_spec.rb +7 -0
data/spec/environment_spec.rb +263 -0
data/spec/grpc_client_spec.rb +23 -0
data/spec/isolate/all_clients_spec.rb +9 -0
data/spec/isolate/grpc_only_spec.rb +16 -0
data/spec/isolate/no_clients_spec.rb +26 -0
data/spec/isolate/nxapi_only_spec.rb +16 -0
data/spec/nxapi_client_spec.rb +42 -0
data/spec/schema.yaml +75 -0
data/spec/shared_examples_for_clients.rb +14 -0
data/spec/spec_helper.rb +91 -0
data/spec/whitespace_spec.rb +10 -0
data/spec/yaml_spec.rb +42 -0
data/tests/.rubocop.yml +2 -2
data/tests/CSCuxdublin-1.0.0-7.0.3.I3.1.lib32_n9000.rpm +0 -0
data/tests/basetest.rb +96 -36
data/tests/ciscotest.rb +220 -12
data/tests/cmd_config.yaml +71 -49
data/tests/cmd_config_invalid.yaml +1 -1
data/tests/test_aaa_authentication_login.rb +1 -0
data/tests/test_aaa_authentication_login_service.rb +9 -0
data/tests/test_aaa_authorization_service.rb +173 -367
data/tests/test_ace.rb +171 -100
data/tests/test_acl.rb +10 -1
data/tests/test_bgp_af.rb +395 -728
data/tests/test_bgp_neighbor.rb +274 -115
data/tests/test_bgp_neighbor_af.rb +178 -77
data/tests/test_bridge_domain.rb +191 -0
data/tests/test_bridge_domain_vni.rb +116 -0
data/tests/test_client_utils.rb +111 -0
data/tests/test_command_config.rb +9 -5
data/tests/test_command_reference.rb +380 -102
data/tests/test_dns_domain.rb +13 -3
data/tests/test_domain_name.rb +13 -3
data/tests/test_encapsulation.rb +77 -0
data/tests/test_evpn_vni.rb +25 -7
data/tests/test_fabricpath_global.rb +167 -163
data/tests/test_fabricpath_topology.rb +12 -33
data/tests/test_feature.rb +215 -0
data/tests/test_grpc.rb +166 -0
data/tests/test_interface.rb +585 -344
data/tests/test_interface_bdi.rb +80 -0
data/tests/test_interface_channel_group.rb +6 -3
data/tests/test_interface_ospf.rb +26 -24
data/tests/test_interface_portchannel.rb +1 -0
data/tests/test_interface_private_vlan.rb +724 -0
data/tests/test_interface_service_vni.rb +37 -66
data/tests/test_interface_svi.rb +98 -101
data/tests/test_interface_switchport.rb +419 -549
data/tests/test_itd_device_group.rb +145 -0
data/tests/test_itd_device_group_node.rb +199 -0
data/tests/test_itd_service.rb +298 -0
data/tests/test_logger.rb +43 -0
data/tests/test_name_server.rb +11 -2
data/tests/test_node.rb +16 -75
data/tests/test_node_ext.rb +174 -163
data/tests/test_node_util.rb +119 -0
data/tests/test_ntp_config.rb +5 -1
data/tests/test_ntp_server.rb +2 -2
data/tests/test_nxapi.rb +221 -0
data/tests/test_overlay_global.rb +47 -38
data/tests/test_pim.rb +2 -0
data/tests/test_pim_group_list.rb +2 -0
data/tests/test_pim_rp_address.rb +2 -0
data/tests/test_platform.rb +86 -39
data/tests/test_portchannel_global.rb +211 -135
data/tests/test_radius_global.rb +13 -5
data/tests/test_radius_server.rb +256 -104
data/tests/test_radius_server_group.rb +2 -0
data/tests/test_router_bgp.rb +781 -485
data/tests/test_router_ospf.rb +26 -103
data/tests/test_router_ospf_vrf.rb +52 -57
data/tests/test_snmp_notification_receiver.rb +2 -0
data/tests/test_snmpcommunity.rb +2 -0
data/tests/test_snmpgroup.rb +2 -0
data/tests/test_snmpnotification.rb +40 -21
data/tests/test_snmpserver.rb +2 -0
data/tests/test_snmpuser.rb +2 -0
data/tests/test_stp_global.rb +563 -0
data/tests/test_syslog_server.rb +32 -8
data/tests/test_syslog_settings.rb +22 -9
data/tests/test_tacacs_server.rb +32 -27
data/tests/test_tacacs_server_group.rb +100 -45
data/tests/test_tacacs_server_host.rb +135 -43
data/tests/test_vdc.rb +2 -16
data/tests/test_vlan.rb +106 -54
data/tests/test_vlan_mt_full.rb +11 -21
data/tests/test_vlan_private.rb +669 -0
data/tests/test_vpc.rb +312 -159
data/tests/test_vrf.rb +122 -113
data/tests/test_vrf_af.rb +238 -0
data/tests/test_vtp.rb +58 -102
data/tests/test_vxlan_vtep.rb +38 -17
data/tests/test_vxlan_vtep_vni.rb +61 -9
data/tests/test_yum.rb +49 -25
metadata +122 -36
data/lib/cisco_node_utils/cmd_ref/fex.yaml +0 -9
data/lib/cisco_node_utils/cmd_ref/vni.yaml +0 -76
data/lib/cisco_node_utils/vni.rb +0 -227
data/tests/test_vni.rb +0 -106

data/tests/test_aaa_authorization_service.rb CHANGED Viewed

@@ -17,57 +17,84 @@ require_relative '../lib/cisco_node_utils/aaa_authorization_service'
 # TestAaaAuthorizationService - Minitest for AaaAuthorizationService util
 class TestAaaAuthorizationService < CiscoTestCase
+  @skip_unless_supported = 'aaa_authorization_service'
+  @@pre_clean_needed = true # rubocop:disable Style/ClassVars
   def setup
     super
+    # TBD: Remove once CSCuz44696 is resolved.
+    skip('This test is not currently supported on 7.0(3)I3 images') if
+      node.os_version[/7.0\(3\)I3\(/]
+    cleanup_aaa if @@pre_clean_needed
+    @@pre_clean_needed = false # rubocop:disable Style/ClassVars
     feature_tacacs
+    preconfig_tacacs_server_access(tacacs_groups[0])
+    config_tacacs_servers(tacacs_groups[1..3])
   end
   def teardown
+    cleanup_aaa
     feature_tacacs(false)
     super
   end
-  # Method to pre-configure a valid tacacs server and aaa group.  This
-  # group can be included in the testing such access to the device
-  # never is compromised.
-  def preconfig_tacacs_server_access(group_name, keep=true)
-    if keep
-      config('tacacs-server key testing123',
-             'tacacs-server host 10.122.197.197 key testing123',
-             "aaa group server tacacs+ #{group_name}",
-             'server 10.122.197.197',
-             'use-vrf management',
-             'source-interface mgmt0',
-             'aaa authentication login ascii-authentication')
-    else
-      config("no aaa group server tacacs+ #{group_name}")
-    end
-  end
-  def feature_tacacs(feature=true)
-    if feature
-      config('feature tacacs')
-    else
-      config('no feature tacacs',
-             'no aaa authentication login ascii-authentication')
+  def cleanup_aaa
+    cmds = config('show run aaa').scan(/^aaa auth.*/)
+    cmds.each do |cmd|
+      config("no #{cmd}")
     end
   end
   def config_tacacs_servers(servers)
-    config('feature tacacs+')
     servers.each do |server|
       config("aaa group server tacacs+ #{server}")
     end
   end
-  def show_cmd
-    'show run aaa all | no-more'
+  def feature_tacacs(feature=true)
+    state = feature ? '' : 'no'
+    config("#{state} feature tacacs+")
+  end
+  # Helper method to get regexp for aaa authorization commands
+  def get_pattern(cmd_type, service, groups, method=:unselected)
+    cmd_type = cmd_type == :config_commands ? 'config-commands' : cmd_type.to_s
+    groups = groups.join(' ') if groups.is_a? Array
+    method = method == :unselected ? '' : method.to_s
+    p = prefix
+    p << ' ' + cmd_type
+    p << ' ' + service
+    p << ' group ' + groups unless groups.empty?
+    p << ' ' + method unless method.empty?
+    Regexp.new(p)
+  end
+  # Method to pre-configure a valid tacacs server and aaa group.  This
+  # group can be included in the testing such access to the device
+  # never is compromised.
+  def preconfig_tacacs_server_access(group_name)
+    config('tacacs-server key testing123',
+           'tacacs-server host 10.122.197.197 key testing123',
+           "aaa group server tacacs+ #{group_name}",
+           'server 10.122.197.197',
+           'use-vrf management',
+           'source-interface mgmt0',
+           'aaa authentication login ascii-authentication')
   end
   def prefix
     'aaa authorization'
   end
+  def show_cmd
+    'show run aaa all | no-more'
+  end
+  def tacacs_groups
+    %w(tac_group bxb100 sjc200 rtp10)
+  end
   def test_create_unsupported_type
     assert_raises(ArgumentError) do
       AaaAuthorizationService.new(:none, 'default')
@@ -355,57 +382,31 @@ class TestAaaAuthorizationService < CiscoTestCase
                  'Error: AaaAuthorizationService commands, ' \
                  'get groups for default')
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
     config('aaa authorization commands default group ' \
-           "#{group0} #{group1} #{group2}")
+           "#{tacacs_groups[0..2].join(' ')}")
-    groups = [group0, group1, group2]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/1/2')
-    assert_equal(:unselected, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/1/2')
+    assert_equal(tacacs_groups[0..2], aaa_a_service.groups)
+    assert_equal(:unselected, aaa_a_service.method)
     # Change the config to have different groups and method
     config('aaa authorization commands default group ' \
-           "#{group0} #{group3} #{group1} local")
+           "#{tacacs_groups[0]} #{tacacs_groups[3]} #{tacacs_groups[1]} local")
-    groups = [group0, group3, group1]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/3/1')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/3/1')
+    conf_groups = [tacacs_groups[0], tacacs_groups[3], tacacs_groups[1]]
+    assert_equal(conf_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
     # Mix default and console, but since our instance is for 'default'
     # service we should only get 'default' groups and not 'console'
     # groups.
     aaa_cmd1 = 'aaa authorization commands default group ' \
-               "#{group0} #{group2} #{group1} #{group3} local"
+               "#{tacacs_groups.join(' ')} local"
     aaa_cmd2 = 'aaa authorization commands console group ' \
-               "#{group0} #{group2} #{group3} local"
+               "#{tacacs_groups[1..3].join(' ')} local"
     config(aaa_cmd1, aaa_cmd2)
-    groups = [group0, group2, group1, group3]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/2/1/3')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/3/1')
-    # Cleanup
-    aaa_a_service.destroy
-    config("no #{aaa_cmd1}", "no #{aaa_cmd2}")
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
+    assert_equal(tacacs_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
   end
   def test_collection_groups_commands_console
@@ -413,62 +414,33 @@ class TestAaaAuthorizationService < CiscoTestCase
     aaa_a_service = AaaAuthorizationService.new(type, 'console')
     # Default case
-    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService commands, ' \
-                 'get groups for console')
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
+    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups)
     config('aaa authorization commands console group ' \
-           "#{group0} #{group1} #{group2}")
+           "#{tacacs_groups[0..2].join(' ')}")
-    groups = [group0, group1, group2]
-    # puts aaa_a_service.groups
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/1/2')
-    assert_equal(:unselected, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/1/2')
+    assert_equal(tacacs_groups[0..2], aaa_a_service.groups)
+    assert_equal(:unselected, aaa_a_service.method)
     # Change the config to have different groups and method
     config('aaa authorization commands console group ' \
-           "#{group0} #{group3} #{group1} local")
+           "#{tacacs_groups[0]} #{tacacs_groups[3]} #{tacacs_groups[1]} local")
-    groups = [group0, group3, group1]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/3/1')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/3/1')
+    conf_groups = [tacacs_groups[0], tacacs_groups[3], tacacs_groups[1]]
+    assert_equal(conf_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
     # Mix default and console, but since our instance is for 'console'
     # service we should only get 'console' groups and not 'default'
     # groups.
     aaa_cmd1 = 'aaa authorization commands console group ' \
-               "#{group0} #{group2} #{group1} #{group3} local"
+               "#{tacacs_groups.join(' ')} local"
     aaa_cmd2 = 'aaa authorization commands default group ' \
-               "#{group0} #{group2} #{group3} local"
+               "#{tacacs_groups[1..3].join(' ')} local"
     config(aaa_cmd1, aaa_cmd2)
-    groups = [group0, group2, group1, group3]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/2/1/3')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/2/1/3')
-    # Cleanup
-    aaa_a_service.destroy
-    config("no #{aaa_cmd1}", "no #{aaa_cmd2}")
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
+    assert_equal(tacacs_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
   end
   def test_collection_groups_config_commands_default
@@ -476,62 +448,33 @@ class TestAaaAuthorizationService < CiscoTestCase
     aaa_a_service = AaaAuthorizationService.new(type, 'default')
     # Default case
-    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService config-commands, ' \
-                 'get groups for default')
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
+    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups)
     config('aaa authorization config-commands default group ' \
-           "#{group0} #{group1} #{group2}")
+           "#{tacacs_groups[0]} #{tacacs_groups[1]} #{tacacs_groups[2]}")
-    groups = [group0, group1, group2]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/1/2')
-    assert_equal(:unselected, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/1/2')
+    assert_equal(tacacs_groups[0..2], aaa_a_service.groups)
+    assert_equal(:unselected, aaa_a_service.method)
     # Change the config to have different groups and method
     config('aaa authorization config-commands default group ' \
-           "#{group0} #{group3} #{group1} local")
+           "#{tacacs_groups[0]} #{tacacs_groups[3]} #{tacacs_groups[1]} local")
-    groups = [group0, group3, group1]
-    # puts aaa_a_service.groups
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/3/1')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/3/1')
+    conf_groups = [tacacs_groups[0], tacacs_groups[3], tacacs_groups[1]]
+    assert_equal(conf_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
     # Mix default and console, but since our instance is for 'default'
     # service we should only get 'default' groups and not 'console'
     # groups.
     aaa_cmd1 = 'aaa authorization config-commands default group ' \
-               "#{group0} #{group2} #{group1} #{group3} local"
+               "#{tacacs_groups.join(' ')} local"
     aaa_cmd2 = 'aaa authorization config-commands console group ' \
-               "#{group0} #{group2} #{group3} local"
+               "#{tacacs_groups[1..3].join(' ')} local"
     config(aaa_cmd1, aaa_cmd2)
-    groups = [group0, group2, group1, group3]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService default get groups, 0/2/1/3')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/2/1/3')
-    # Cleanup
-    aaa_a_service.destroy
-    config("no #{aaa_cmd1}", "no #{aaa_cmd2}")
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
+    assert_equal(tacacs_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
   end
   def test_collection_groups_config_commands_console
@@ -539,62 +482,33 @@ class TestAaaAuthorizationService < CiscoTestCase
     aaa_a_service = AaaAuthorizationService.new(type, 'console')
     # Default case
-    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService config-commands, ' \
-                 'get groups for console')
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
+    assert_equal(aaa_a_service.default_groups, aaa_a_service.groups)
     config('aaa authorization config-commands console group ' \
-           "#{group0} #{group1} #{group2}")
+           "#{tacacs_groups[0..2].join(' ')}")
-    groups = [group0, group1, group2]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/1/2')
-    assert_equal(:unselected, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/1/2')
+    assert_equal(tacacs_groups[0..2], aaa_a_service.groups)
+    assert_equal(:unselected, aaa_a_service.method)
     # Change the config to have different groups and method
     config('aaa authorization config-commands console group ' \
-           "#{group0} #{group3} #{group1} local")
+           "#{tacacs_groups[0]} #{tacacs_groups[3]} #{tacacs_groups[1]} local")
-    groups = [group0, group3, group1]
-    # puts aaa_a_service.groups
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/3/1')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/3/1')
+    conf_groups = [tacacs_groups[0], tacacs_groups[3], tacacs_groups[1]]
+    assert_equal(conf_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
     # Mix default and console, but since our instance is for 'console'
     # service we should only get 'console' groups and not 'default'
     # groups.
     aaa_cmd1 = 'aaa authorization config-commands console group ' \
-               "#{group0} #{group2} #{group1} #{group3} local"
+               "#{tacacs_groups.join(' ')} local"
     aaa_cmd2 = 'aaa authorization config-commands default group ' \
-               "#{group0} #{group2} #{group3} local"
+               "#{tacacs_groups[1..3].join(' ')} local"
     config(aaa_cmd1, aaa_cmd2)
-    groups = [group0, group2, group1, group3]
-    assert_equal(groups, aaa_a_service.groups,
-                 'Error: AaaAuthorizationService console get groups, 0/2/1/3')
-    assert_equal(:local, aaa_a_service.method,
-                 'Error: AaaAuthorizationService default get method, 0/2/1/3')
-    # Cleanup
-    aaa_a_service.destroy
-    config("no #{aaa_cmd1}", "no #{aaa_cmd2}")
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
+    assert_equal(tacacs_groups, aaa_a_service.groups)
+    assert_equal(:local, aaa_a_service.method)
   end
   def test_get_default_groups
@@ -630,240 +544,144 @@ class TestAaaAuthorizationService < CiscoTestCase
     aaa_a_service.destroy
   end
-  def test_commands_default_set_groups
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
-    # Commands, service default
-    type_str = 'commands'
-    type = :commands
-    service = 'default'
-    aaa_a_service = AaaAuthorizationService.new(type, service)
-    # Single group, with method 'unselected'
-    method = :unselected
-    groups = [group0]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_default_unselected_single
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0}/
+    p = get_pattern(:commands, 'default', tacacs_groups[0])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'unselected'
-    method = :unselected
-    groups = [group0, group1, group2]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_default_unselected_multi
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0} #{group1} #{group2}/
+    p = get_pattern(:commands, 'default', tacacs_groups[0..2])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'local'
-    method = :local
-    groups = [group0, group1, group3]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_default_local_multi
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :local)
-    group_str = "group #{group0} #{group1} #{group3}"
-    p = /#{prefix} #{type_str} #{service} #{group_str} local/
+    p = get_pattern(:commands, 'default', tacacs_groups[0..2], :local)
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Default group and method
+  def test_commands_default_all_default
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'default')
     method = aaa_a_service.default_method
     groups = aaa_a_service.default_groups
     aaa_a_service.groups_method_set(groups, method)
-    p = /#{prefix} #{type_str} #{service} local/
+    p = get_pattern(:commands, 'default', groups, method)
     assert_show_match(command: show_cmd, pattern: p)
-    # Cleanup
-    aaa_a_service.destroy
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
   end
-  def test_commands_console_set_groups
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
-    # Commands, service console
-    type_str = 'commands'
-    type = :commands
-    service = 'console'
-    aaa_a_service = AaaAuthorizationService.new(type, service)
-    # Single group, with method 'unselected'
-    method = :unselected
-    groups = [group0]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_console_unselected_single
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0}/
+    p = get_pattern(:commands, 'console', tacacs_groups[0])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'unselected'
-    method = :unselected
-    groups = [group0, group1, group2]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_console_unselected_multi
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0} #{group1} #{group2}/
+    p = get_pattern(:commands, 'console', tacacs_groups[0..2])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'local'
-    method = :local
-    groups = [group0, group1, group3]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_commands_console_local_multi
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :local)
-    group_str = "group #{group0} #{group1} #{group3}"
-    p = /#{prefix} #{type_str} #{service} #{group_str} local/
+    p = get_pattern(:commands, 'console', tacacs_groups[0..2], :local)
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Default group and method
+  def test_commans_console_all_default
+    aaa_a_service = AaaAuthorizationService.new(:commands, 'console')
     method = aaa_a_service.default_method
     groups = aaa_a_service.default_groups
     aaa_a_service.groups_method_set(groups, method)
-    p = /#{prefix} #{type_str} #{service} local/
+    p = get_pattern(:commands, 'console', groups, method)
     assert_show_match(command: show_cmd, pattern: p)
-    aaa_a_service.destroy
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
   end
-  def test_config_commands_default_set_groups
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
-    # Commands, service default
-    type_str = 'config-commands'
-    type = :config_commands
-    service = 'default'
-    aaa_a_service = AaaAuthorizationService.new(type, service)
-    # Single group, with method 'unselected'
-    method = :unselected
-    groups = [group0]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_default_unselected_single
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0}/
+    p = get_pattern(:config_commands, 'default', tacacs_groups[0])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'unselected'
-    method = :unselected
-    groups = [group0, group1, group2]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_default_unselected_multi
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0} #{group1} #{group2}/
+    p = get_pattern(:config_commands, 'default', tacacs_groups[0..2])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'local'
-    method = :local
-    groups = [group0, group1, group3]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_default_local_multi
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'default')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :local)
-    group_str = "group #{group0} #{group1} #{group3}"
-    p = /#{prefix} #{type_str} #{service} #{group_str} local/
+    p = get_pattern(:config_commands, 'default', tacacs_groups[0..2], :local)
     assert_show_match(command: show_cmd, pattern: p)
+  end
+  def test_config_commands_default_all_default
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'default')
-    # Default group and method
     method = aaa_a_service.default_method
     groups = aaa_a_service.default_groups
     aaa_a_service.groups_method_set(groups, method)
-    p = /#{prefix} #{type_str} #{service} local/
+    p = get_pattern(:config_commands, 'default', groups, method)
     assert_show_match(command: show_cmd, pattern: p)
-    aaa_a_service.destroy
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
   end
-  def test_config_commands_console_set_groups
-    # Preconfigure tacacs, tacacs server and AAA valid group
-    group0 = 'tac_group'
-    preconfig_tacacs_server_access(group0)
-    # Preconfig for test
-    group1 = 'bxb100'
-    group2 = 'sjc200'
-    group3 = 'rtp10'
-    servers = [group1, group2, group3]
-    config_tacacs_servers(servers)
-    # Commands, service console
-    type_str = 'config-commands'
-    type = :config_commands
-    service = 'console'
-    aaa_a_service = AaaAuthorizationService.new(type, service)
-    # Single group, with method 'unselected'
-    method = :unselected
-    groups = [group0]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_console_unselected_single
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0}/
+    p = get_pattern(:config_commands, 'console', tacacs_groups[0])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'unselected'
-    method = :unselected
-    groups = [group0, group1, group2]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_console_unselected_multi
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :unselected)
-    p = /#{prefix} #{type_str} #{service} group #{group0} #{group1} #{group2}/
+    p = get_pattern(:config_commands, 'console', tacacs_groups[0..2])
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Multi group, with method 'local'
-    method = :local
-    groups = [group0, group1, group3]
-    aaa_a_service.groups_method_set(groups, method)
+  def test_config_commands_console_local_multi
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'console')
+    aaa_a_service.groups_method_set(tacacs_groups[0..2], :local)
-    group_str = "group #{group0} #{group1} #{group3}"
-    p = /#{prefix} #{type_str} #{service} #{group_str} local/
+    p = get_pattern(:config_commands, 'console', tacacs_groups[0..2], :local)
     assert_show_match(command: show_cmd, pattern: p)
+  end
-    # Default group and method
+  def test_config_commands_console_all_default
+    aaa_a_service = AaaAuthorizationService.new(:config_commands, 'console')
     method = aaa_a_service.default_method
     groups = aaa_a_service.default_groups
     aaa_a_service.groups_method_set(groups, method)
-    p = /#{prefix} #{type_str} #{service} local/
+    p = get_pattern(:config_commands, 'console', groups, method)
     assert_show_match(command: show_cmd, pattern: p)
-    aaa_a_service.destroy
-    # Unconfigure tacacs, tacacs server and AAA valid group
-    preconfig_tacacs_server_access(group0, false)
   end
   def test_commands_invalid_groups_method_set_groups
-    # preconfig servers
-    servers = %w(bxb100 sjc200 rtp10)
-    config_tacacs_servers(servers)
     # Commands, with service default
     type = :commands
     service = 'default'
@@ -908,10 +726,6 @@ class TestAaaAuthorizationService < CiscoTestCase
   end
   def test_config_commands_invalid_set_groups
-    # preconfig servers
-    servers = %w(bxb100 sjc200 rtp10)
-    config_tacacs_servers(servers)
     # Commands, with service default
     type = :config_commands
     service = 'default'
@@ -956,10 +770,6 @@ class TestAaaAuthorizationService < CiscoTestCase
   end
   def test_commands_invalid_method
-    # preconfig servers
-    servers = %w(bxb100 sjc200 rtp10)
-    config_tacacs_servers(servers)
     # Commands, with service default
     type = :commands
     service = 'default'
@@ -998,10 +808,6 @@ class TestAaaAuthorizationService < CiscoTestCase
   end
   def test_config_commands_invalid_method
-    # preconfig servers
-    servers = %w(bxb100 sjc200 rtp10)
-    config_tacacs_servers(servers)
     # Commands, with service default
     type = :config_commands
     service = 'default'