##// END OF EJS Templates
fix(permissions): added a common way to update private flag via repo model...
fix(permissions): added a common way to update private flag via repo model - this allows to have a one and only one way to control the flag with the business logic shared - added test for that - changed view to use this method instead of DB update and custom permissions flush - fixed a case when update of repo settings didn't flush permissions actually while it should when private flag changed

File last commit:

r5173:95a4b30f default
r5551:5b9b5ed2 default
Show More
test_repo_permissions.py
64 lines | 2.3 KiB | text/x-python | PythonLexer
# Copyright (C) 2010-2023 RhodeCode GmbH
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License, version 3
# (only), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# This program is dual-licensed. If you wish to learn more about the
# RhodeCode Enterprise Edition, including its added features, Support services,
# and proprietary license terms, please see https://rhodecode.com/licenses/
import pytest
from rhodecode.tests.utils import permission_update_data_generator
from rhodecode.tests.routes import route_path
@pytest.mark.usefixtures("app")
class TestRepoPermissionsView(object):
def test_edit_perms_view(self, user_util, autologin_user):
repo = user_util.create_repo()
self.app.get(
route_path('edit_repo_perms',
repo_name=repo.repo_name), status=200)
def test_update_permissions(self, csrf_token, user_util):
repo = user_util.create_repo()
repo_name = repo.repo_name
user = user_util.create_user()
user_id = user.user_id
username = user.username
# grant new
form_data = permission_update_data_generator(
csrf_token,
default='repository.write',
grant=[(user_id, 'repository.write', username, 'user')])
response = self.app.post(
route_path('edit_repo_perms',
repo_name=repo_name), form_data).follow()
assert 'Repository access permissions updated' in response
# revoke given
form_data = permission_update_data_generator(
csrf_token,
default='repository.read',
revoke=[(user_id, 'user')])
response = self.app.post(
route_path('edit_repo_perms',
repo_name=repo_name), form_data).follow()
assert 'Repository access permissions updated' in response