##// END OF EJS Templates
dependencies: added pyotp library for usage in 2FA.
dependencies: added pyotp library for usage in 2FA.

File last commit:

r2487:fcee5614 default
r2934:70d15bca default
Show More
test_delegated_admin.py
152 lines | 5.7 KiB | text/x-python | PythonLexer
auth: make owner of user group give proper admin permissions to the user group....
r1443 # -*- coding: utf-8 -*-
release: update copyright year to 2018
r2487 # Copyright (C) 2016-2018 RhodeCode GmbH
auth: make owner of user group give proper admin permissions to the user group....
r1443 #
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License, version 3
# (only), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# This program is dual-licensed. If you wish to learn more about the
# RhodeCode Enterprise Edition, including its added features, Support services,
# and proprietary license terms, please see https://rhodecode.com/licenses/
import pytest
repo-groups: moved to pyramid
r2175 from rhodecode.tests import TestController
auth: make owner of user group give proper admin permissions to the user group....
r1443 from rhodecode.tests.fixture import Fixture
user-groups: moved the display of user group into a pyramid view
r1980 def route_path(name, params=None, **kwargs):
import urllib
from rhodecode.apps._base import ADMIN_PREFIX
base_url = {
'home': '/',
repositories: rewrote whole admin section to pyramid....
r2014 'repos':
ADMIN_PREFIX + '/repos',
repo-groups: moved to pyramid
r2175 'repo_groups':
ADMIN_PREFIX + '/repo_groups',
user-groups: moved the display of user group into a pyramid view
r1980 'user_groups':
ADMIN_PREFIX + '/user_groups',
'user_groups_data':
ADMIN_PREFIX + '/user_groups_data',
}[name].format(**kwargs)
if params:
base_url = '{}?{}'.format(base_url, urllib.urlencode(params))
return base_url
auth: make owner of user group give proper admin permissions to the user group....
r1443 fixture = Fixture()
user-groups: moved the display of user group into a pyramid view
r1980 class TestAdminDelegatedUser(TestController):
home: moved home and repo group views into pyramid....
r1774
user-groups: moved the display of user group into a pyramid view
r1980 def test_regular_user_cannot_see_admin_interfaces(
self, user_util, xhr_header):
auth: make owner of user group give proper admin permissions to the user group....
r1443 user = user_util.create_user(password='qweqwe')
self.log_user(user.username, 'qweqwe')
# check if in home view, such user doesn't see the "admin" menus
home: moved home and repo group views into pyramid....
r1774 response = self.app.get(route_path('home'))
auth: make owner of user group give proper admin permissions to the user group....
r1443
assert_response = response.assert_response()
assert_response.no_element_exists('li.local-admin-repos')
assert_response.no_element_exists('li.local-admin-repo-groups')
assert_response.no_element_exists('li.local-admin-user-groups')
repositories: rewrote whole admin section to pyramid....
r2014 response = self.app.get(route_path('repos'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('data: []')
repo-groups: moved to pyramid
r2175 response = self.app.get(route_path('repo_groups'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('data: []')
user-groups: moved the display of user group into a pyramid view
r1980 response = self.app.get(route_path('user_groups_data'),
status=200, extra_environ=xhr_header)
assert response.json['data'] == []
auth: make owner of user group give proper admin permissions to the user group....
r1443
user-groups: moved the display of user group into a pyramid view
r1980 def test_regular_user_can_see_admin_interfaces_if_owner(
self, user_util, xhr_header):
auth: make owner of user group give proper admin permissions to the user group....
r1443 user = user_util.create_user(password='qweqwe')
username = user.username
repo = user_util.create_repo(owner=username)
repo_name = repo.repo_name
repo_group = user_util.create_repo_group(owner=username)
repo_group_name = repo_group.group_name
user_group = user_util.create_user_group(owner=username)
user_group_name = user_group.users_group_name
self.log_user(username, 'qweqwe')
# check if in home view, such user doesn't see the "admin" menus
home: moved home and repo group views into pyramid....
r1774 response = self.app.get(route_path('home'))
auth: make owner of user group give proper admin permissions to the user group....
r1443
assert_response = response.assert_response()
assert_response.one_element_exists('li.local-admin-repos')
assert_response.one_element_exists('li.local-admin-repo-groups')
assert_response.one_element_exists('li.local-admin-user-groups')
# admin interfaces have visible elements
repositories: rewrote whole admin section to pyramid....
r2014 response = self.app.get(route_path('repos'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('"name_raw": "{}"'.format(repo_name))
repo-groups: moved to pyramid
r2175 response = self.app.get(route_path('repo_groups'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('"name_raw": "{}"'.format(repo_group_name))
user-groups: moved the display of user group into a pyramid view
r1980 response = self.app.get(route_path('user_groups_data'),
extra_environ=xhr_header, status=200)
response.mustcontain('"name_raw": "{}"'.format(user_group_name))
auth: make owner of user group give proper admin permissions to the user group....
r1443
user-groups: moved the display of user group into a pyramid view
r1980 def test_regular_user_can_see_admin_interfaces_if_admin_perm(
self, user_util, xhr_header):
auth: make owner of user group give proper admin permissions to the user group....
r1443 user = user_util.create_user(password='qweqwe')
username = user.username
repo = user_util.create_repo()
repo_name = repo.repo_name
repo_group = user_util.create_repo_group()
repo_group_name = repo_group.group_name
user_group = user_util.create_user_group()
user_group_name = user_group.users_group_name
user_util.grant_user_permission_to_repo(
repo, user, 'repository.admin')
user_util.grant_user_permission_to_repo_group(
repo_group, user, 'group.admin')
user_util.grant_user_permission_to_user_group(
user_group, user, 'usergroup.admin')
self.log_user(username, 'qweqwe')
# check if in home view, such user doesn't see the "admin" menus
home: moved home and repo group views into pyramid....
r1774 response = self.app.get(route_path('home'))
auth: make owner of user group give proper admin permissions to the user group....
r1443
assert_response = response.assert_response()
assert_response.one_element_exists('li.local-admin-repos')
assert_response.one_element_exists('li.local-admin-repo-groups')
assert_response.one_element_exists('li.local-admin-user-groups')
# admin interfaces have visible elements
repositories: rewrote whole admin section to pyramid....
r2014 response = self.app.get(route_path('repos'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('"name_raw": "{}"'.format(repo_name))
repo-groups: moved to pyramid
r2175 response = self.app.get(route_path('repo_groups'), status=200)
auth: make owner of user group give proper admin permissions to the user group....
r1443 response.mustcontain('"name_raw": "{}"'.format(repo_group_name))
user-groups: moved the display of user group into a pyramid view
r1980 response = self.app.get(route_path('user_groups_data'),
extra_environ=xhr_header, status=200)
response.mustcontain('"name_raw": "{}"'.format(user_group_name))