test_users.py
328 lines
| 10.7 KiB
| text/x-python
|
PythonLexer
| r1 | ||||
| r5088 | # Copyright (C) 2010-2023 RhodeCode GmbH | |||
| r1 | # | |||
| # This program is free software: you can redistribute it and/or modify | ||||
| # it under the terms of the GNU Affero General Public License, version 3 | ||||
| # (only), as published by the Free Software Foundation. | ||||
| # | ||||
| # This program is distributed in the hope that it will be useful, | ||||
| # but WITHOUT ANY WARRANTY; without even the implied warranty of | ||||
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||||
| # GNU General Public License for more details. | ||||
| # | ||||
| # You should have received a copy of the GNU Affero General Public License | ||||
| # along with this program. If not, see <http://www.gnu.org/licenses/>. | ||||
| # | ||||
| # This program is dual-licensed. If you wish to learn more about the | ||||
| # RhodeCode Enterprise Edition, including its added features, Support services, | ||||
| # and proprietary license terms, please see https://rhodecode.com/licenses/ | ||||
| import pytest | ||||
| r1677 | import mock | |||
| r1 | ||||
| r1677 | from rhodecode.model.db import ( | |||
| true, User, UserGroup, UserGroupMember, UserEmailMap, Permission, UserIpMap) | ||||
| r1 | from rhodecode.model.meta import Session | |||
| from rhodecode.model.user import UserModel | ||||
| from rhodecode.model.user_group import UserGroupModel | ||||
| from rhodecode.model.repo import RepoModel | ||||
| from rhodecode.model.repo_group import RepoGroupModel | ||||
| from rhodecode.tests.fixture import Fixture | ||||
| r5087 | from rhodecode.lib.str_utils import safe_str | |||
| r1 | ||||
| fixture = Fixture() | ||||
| r1677 | class TestGetUsers(object): | |||
| def test_returns_active_users(self, backend, user_util): | ||||
| for i in range(4): | ||||
| is_active = i % 2 == 0 | ||||
| user_util.create_user(active=is_active, lastname='Fake user') | ||||
| with mock.patch('rhodecode.lib.helpers.gravatar_url'): | ||||
| r2484 | with mock.patch('rhodecode.lib.helpers.link_to_user'): | |||
| users = UserModel().get_users() | ||||
| r1677 | fake_users = [u for u in users if u['last_name'] == 'Fake user'] | |||
| assert len(fake_users) == 2 | ||||
| expected_keys = ( | ||||
| 'id', 'first_name', 'last_name', 'username', 'icon_link', | ||||
| 'value_display', 'value', 'value_type') | ||||
| for user in users: | ||||
| r5089 | assert user['value_type'] == 'user' | |||
| r1677 | for key in expected_keys: | |||
| assert key in user | ||||
| def test_returns_user_filtered_by_last_name(self, backend, user_util): | ||||
| keywords = ('aBc', u'ünicode') | ||||
| for keyword in keywords: | ||||
| for i in range(2): | ||||
| user_util.create_user( | ||||
| active=True, lastname=u'Fake {} user'.format(keyword)) | ||||
| with mock.patch('rhodecode.lib.helpers.gravatar_url'): | ||||
| r2484 | with mock.patch('rhodecode.lib.helpers.link_to_user'): | |||
| keyword = keywords[1].lower() | ||||
| users = UserModel().get_users(name_contains=keyword) | ||||
| r1677 | ||||
| fake_users = [u for u in users if u['last_name'].startswith('Fake')] | ||||
| assert len(fake_users) == 2 | ||||
| for user in fake_users: | ||||
| r5087 | assert user['last_name'] == safe_str('Fake ünicode user') | |||
| r1677 | ||||
| def test_returns_user_filtered_by_first_name(self, backend, user_util): | ||||
| created_users = [] | ||||
| keywords = ('aBc', u'ünicode') | ||||
| for keyword in keywords: | ||||
| for i in range(2): | ||||
| created_users.append(user_util.create_user( | ||||
| active=True, lastname='Fake user', | ||||
| firstname=u'Fake {} user'.format(keyword))) | ||||
| keyword = keywords[1].lower() | ||||
| with mock.patch('rhodecode.lib.helpers.gravatar_url'): | ||||
| r2484 | with mock.patch('rhodecode.lib.helpers.link_to_user'): | |||
| users = UserModel().get_users(name_contains=keyword) | ||||
| r1677 | ||||
| fake_users = [u for u in users if u['last_name'].startswith('Fake')] | ||||
| assert len(fake_users) == 2 | ||||
| for user in fake_users: | ||||
| r5087 | assert user['first_name'] == safe_str('Fake ünicode user') | |||
| r1677 | ||||
| def test_returns_user_filtered_by_username(self, backend, user_util): | ||||
| created_users = [] | ||||
| for i in range(5): | ||||
| created_users.append(user_util.create_user( | ||||
| active=True, lastname='Fake user')) | ||||
| user_filter = created_users[-1].username[-2:] | ||||
| with mock.patch('rhodecode.lib.helpers.gravatar_url'): | ||||
| r2484 | with mock.patch('rhodecode.lib.helpers.link_to_user'): | |||
| users = UserModel().get_users(name_contains=user_filter) | ||||
| r1677 | ||||
| fake_users = [u for u in users if u['last_name'].startswith('Fake')] | ||||
| assert len(fake_users) == 1 | ||||
| assert fake_users[0]['username'] == created_users[-1].username | ||||
| def test_returns_limited_user_list(self, backend, user_util): | ||||
| created_users = [] | ||||
| for i in range(5): | ||||
| created_users.append(user_util.create_user( | ||||
| active=True, lastname='Fake user')) | ||||
| with mock.patch('rhodecode.lib.helpers.gravatar_url'): | ||||
| r2484 | with mock.patch('rhodecode.lib.helpers.link_to_user'): | |||
| users = UserModel().get_users(name_contains='Fake', limit=3) | ||||
| r1677 | ||||
| fake_users = [u for u in users if u['last_name'].startswith('Fake')] | ||||
| assert len(fake_users) == 3 | ||||
| r3946 | @pytest.fixture() | |||
| r2351 | def test_user(request, baseapp): | |||
| r1 | usr = UserModel().create_or_update( | |||
| r5087 | username='test_user', | |||
| password='qweqwe', | ||||
| email='main_email@rhodecode.org', | ||||
| firstname='u1', lastname=u'u1') | ||||
| r1 | Session().commit() | |||
| assert User.get_by_username(u'test_user') == usr | ||||
| @request.addfinalizer | ||||
| def cleanup(): | ||||
| if UserModel().get_user(usr.user_id) is None: | ||||
| return | ||||
| perm = Permission.query().all() | ||||
| for p in perm: | ||||
| UserModel().revoke_perm(usr, p) | ||||
| UserModel().delete(usr.user_id) | ||||
| Session().commit() | ||||
| return usr | ||||
| def test_create_and_remove(test_user): | ||||
| usr = test_user | ||||
| # make user group | ||||
| user_group = fixture.create_user_group('some_example_group') | ||||
| Session().commit() | ||||
| UserGroupModel().add_user_to_group(user_group, usr) | ||||
| Session().commit() | ||||
| assert UserGroup.get(user_group.users_group_id) == user_group | ||||
| assert UserGroupMember.query().count() == 1 | ||||
| UserModel().delete(usr.user_id) | ||||
| Session().commit() | ||||
| assert UserGroupMember.query().all() == [] | ||||
| def test_additonal_email_as_main(test_user): | ||||
| with pytest.raises(AttributeError): | ||||
| m = UserEmailMap() | ||||
| m.email = test_user.email | ||||
| m.user = test_user | ||||
| Session().add(m) | ||||
| Session().commit() | ||||
| def test_extra_email_map(test_user): | ||||
| m = UserEmailMap() | ||||
| m.email = u'main_email2@rhodecode.org' | ||||
| m.user = test_user | ||||
| Session().add(m) | ||||
| Session().commit() | ||||
| u = User.get_by_email(email='main_email@rhodecode.org') | ||||
| assert test_user.user_id == u.user_id | ||||
| assert test_user.username == u.username | ||||
| u = User.get_by_email(email='main_email2@rhodecode.org') | ||||
| assert test_user.user_id == u.user_id | ||||
| assert test_user.username == u.username | ||||
| u = User.get_by_email(email='main_email3@rhodecode.org') | ||||
| assert u is None | ||||
| def test_get_api_data_replaces_secret_data_by_default(test_user): | ||||
| api_data = test_user.get_api_data() | ||||
| api_key_length = 40 | ||||
| expected_replacement = '*' * api_key_length | ||||
| r1953 | for key in api_data['auth_tokens']: | |||
| r1 | assert key == expected_replacement | |||
| def test_get_api_data_includes_secret_data_if_activated(test_user): | ||||
| api_data = test_user.get_api_data(include_secrets=True) | ||||
| r1953 | assert api_data['auth_tokens'] == test_user.auth_tokens | |||
| r1 | ||||
| def test_add_perm(test_user): | ||||
| perm = Permission.query().all()[0] | ||||
| UserModel().grant_perm(test_user, perm) | ||||
| Session().commit() | ||||
| assert UserModel().has_perm(test_user, perm) | ||||
| def test_has_perm(test_user): | ||||
| perm = Permission.query().all() | ||||
| for p in perm: | ||||
| assert not UserModel().has_perm(test_user, p) | ||||
| def test_revoke_perm(test_user): | ||||
| perm = Permission.query().all()[0] | ||||
| UserModel().grant_perm(test_user, perm) | ||||
| Session().commit() | ||||
| assert UserModel().has_perm(test_user, perm) | ||||
| # revoke | ||||
| UserModel().revoke_perm(test_user, perm) | ||||
| Session().commit() | ||||
| assert not UserModel().has_perm(test_user, perm) | ||||
| @pytest.mark.parametrize("ip_range, expected, expect_errors", [ | ||||
| ('', [], False), | ||||
| ('127.0.0.1', ['127.0.0.1'], False), | ||||
| ('127.0.0.1,127.0.0.2', ['127.0.0.1', '127.0.0.2'], False), | ||||
| ('127.0.0.1 , 127.0.0.2', ['127.0.0.1', '127.0.0.2'], False), | ||||
| ( | ||||
| '127.0.0.1,172.172.172.0,127.0.0.2', | ||||
| ['127.0.0.1', '172.172.172.0', '127.0.0.2'], False), | ||||
| ( | ||||
| '127.0.0.1-127.0.0.5', | ||||
| ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'], | ||||
| False), | ||||
| ( | ||||
| '127.0.0.1 - 127.0.0.5', | ||||
| ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5'], | ||||
| False | ||||
| ), | ||||
| ('-', [], True), | ||||
| ('127.0.0.1-32', [], True), | ||||
| ( | ||||
| '127.0.0.1,127.0.0.1,127.0.0.1,127.0.0.1-127.0.0.2,127.0.0.2', | ||||
| ['127.0.0.1', '127.0.0.2'], False), | ||||
| ( | ||||
| '127.0.0.1-127.0.0.2,127.0.0.4-127.0.0.6,', | ||||
| ['127.0.0.1', '127.0.0.2', '127.0.0.4', '127.0.0.5', '127.0.0.6'], | ||||
| False | ||||
| ), | ||||
| ( | ||||
| '127.0.0.1-127.0.0.2,127.0.0.1-127.0.0.6,', | ||||
| ['127.0.0.1', '127.0.0.2', '127.0.0.3', '127.0.0.4', '127.0.0.5', | ||||
| '127.0.0.6'], | ||||
| False | ||||
| ), | ||||
| ]) | ||||
| def test_ip_range_generator(ip_range, expected, expect_errors): | ||||
| func = UserModel().parse_ip_range | ||||
| if expect_errors: | ||||
| r1907 | pytest.raises(ValueError, func, ip_range) | |||
| r1 | else: | |||
| parsed_list = func(ip_range) | ||||
| assert parsed_list == expected | ||||
| def test_user_delete_cascades_ip_whitelist(test_user): | ||||
| sample_ip = '1.1.1.1' | ||||
| uid_map = UserIpMap(user_id=test_user.user_id, ip_addr=sample_ip) | ||||
| Session().add(uid_map) | ||||
| Session().delete(test_user) | ||||
| try: | ||||
| Session().flush() | ||||
| finally: | ||||
| Session().rollback() | ||||
| def test_account_for_deactivation_generation(test_user): | ||||
| accounts = UserModel().get_accounts_in_creation_order( | ||||
| current_user=test_user) | ||||
| # current user should be #1 in the list | ||||
| assert accounts[0] == test_user.user_id | ||||
| active_users = User.query().filter(User.active == true()).count() | ||||
| assert active_users == len(accounts) | ||||
| def test_user_delete_cascades_permissions_on_repo(backend, test_user): | ||||
| test_repo = backend.create_repo() | ||||
| RepoModel().grant_user_permission( | ||||
| test_repo, test_user, 'repository.write') | ||||
| Session().commit() | ||||
| assert test_user.repo_to_perm | ||||
| UserModel().delete(test_user) | ||||
| Session().commit() | ||||
| def test_user_delete_cascades_permissions_on_repo_group( | ||||
| test_repo_group, test_user): | ||||
| RepoGroupModel().grant_user_permission( | ||||
| test_repo_group, test_user, 'group.write') | ||||
| Session().commit() | ||||
| assert test_user.repo_group_to_perm | ||||
| Session().delete(test_user) | ||||
| Session().commit() | ||||
| def test_user_delete_cascades_permissions_on_user_group( | ||||
| test_user_group, test_user): | ||||
| UserGroupModel().grant_user_permission( | ||||
| test_user_group, test_user, 'usergroup.write') | ||||
| Session().commit() | ||||
| assert test_user.user_group_to_perm | ||||
| Session().delete(test_user) | ||||
| Session().commit() | ||||
