##// END OF EJS Templates
upstream » kallithea
RSS

Clone from https://kallithea-scm.org/repos/kallithea

usergroup: more descriptive error message when deleting user group
Joseph Rivera -
r4769:2181d005 default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,389 +1,390 b''
1 1 # -*- coding: utf-8 -*-
2 2 # This program is free software: you can redistribute it and/or modify
3 3 # it under the terms of the GNU General Public License as published by
4 4 # the Free Software Foundation, either version 3 of the License, or
5 5 # (at your option) any later version.
6 6 #
7 7 # This program is distributed in the hope that it will be useful,
8 8 # but WITHOUT ANY WARRANTY; without even the implied warranty of
9 9 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 10 # GNU General Public License for more details.
11 11 #
12 12 # You should have received a copy of the GNU General Public License
13 13 # along with this program. If not, see <http://www.gnu.org/licenses/>.
14 14 """
15 15 kallithea.model.users_group
16 16 ~~~~~~~~~~~~~~~~~~~~~~~~~~~
17 17
18 18 user group model for Kallithea
19 19
20 20 This file was forked by the Kallithea project in July 2014.
21 21 Original author and date, and relevant copyright and licensing information is below:
22 22 :created_on: Oct 1, 2011
23 23 :author: nvinot, marcink
24 24 """
25 25
26 26
27 27 import logging
28 28 import traceback
29 29
30 30 from kallithea.model import BaseModel
31 31 from kallithea.model.db import UserGroupMember, UserGroup,\
32 32 UserGroupRepoToPerm, Permission, UserGroupToPerm, User, UserUserGroupToPerm,\
33 33 UserGroupUserGroupToPerm
34 34 from kallithea.lib.exceptions import UserGroupsAssignedException,\
35 35 RepoGroupAssignmentError
36 36
37 37 log = logging.getLogger(__name__)
38 38
39 39
40 40 class UserGroupModel(BaseModel):
41 41
42 42 cls = UserGroup
43 43
44 44 def _get_user_group(self, user_group):
45 45 return self._get_instance(UserGroup, user_group,
46 46 callback=UserGroup.get_by_group_name)
47 47
48 48 def _create_default_perms(self, user_group):
49 49 # create default permission
50 50 default_perm = 'usergroup.read'
51 51 def_user = User.get_default_user()
52 52 for p in def_user.user_perms:
53 53 if p.permission.permission_name.startswith('usergroup.'):
54 54 default_perm = p.permission.permission_name
55 55 break
56 56
57 57 user_group_to_perm = UserUserGroupToPerm()
58 58 user_group_to_perm.permission = Permission.get_by_key(default_perm)
59 59
60 60 user_group_to_perm.user_group = user_group
61 61 user_group_to_perm.user_id = def_user.user_id
62 62 return user_group_to_perm
63 63
64 64 def _update_permissions(self, user_group, perms_new=None,
65 65 perms_updates=None):
66 66 from kallithea.lib.auth import HasUserGroupPermissionAny
67 67 if not perms_new:
68 68 perms_new = []
69 69 if not perms_updates:
70 70 perms_updates = []
71 71
72 72 # update permissions
73 73 for member, perm, member_type in perms_updates:
74 74 if member_type == 'user':
75 75 # this updates existing one
76 76 self.grant_user_permission(
77 77 user_group=user_group, user=member, perm=perm
78 78 )
79 79 else:
80 80 #check if we have permissions to alter this usergroup
81 81 if HasUserGroupPermissionAny('usergroup.read', 'usergroup.write',
82 82 'usergroup.admin')(member):
83 83 self.grant_user_group_permission(
84 84 target_user_group=user_group, user_group=member, perm=perm
85 85 )
86 86 # set new permissions
87 87 for member, perm, member_type in perms_new:
88 88 if member_type == 'user':
89 89 self.grant_user_permission(
90 90 user_group=user_group, user=member, perm=perm
91 91 )
92 92 else:
93 93 #check if we have permissions to alter this usergroup
94 94 if HasUserGroupPermissionAny('usergroup.read', 'usergroup.write',
95 95 'usergroup.admin')(member):
96 96 self.grant_user_group_permission(
97 97 target_user_group=user_group, user_group=member, perm=perm
98 98 )
99 99
100 100 def get(self, user_group_id, cache=False):
101 101 return UserGroup.get(user_group_id)
102 102
103 103 def get_group(self, user_group):
104 104 return self._get_user_group(user_group)
105 105
106 106 def get_by_name(self, name, cache=False, case_insensitive=False):
107 107 return UserGroup.get_by_group_name(name, cache, case_insensitive)
108 108
109 109 def create(self, name, description, owner, active=True, group_data=None):
110 110 try:
111 111 new_user_group = UserGroup()
112 112 new_user_group.user = self._get_user(owner)
113 113 new_user_group.users_group_name = name
114 114 new_user_group.user_group_description = description
115 115 new_user_group.users_group_active = active
116 116 if group_data:
117 117 new_user_group.group_data = group_data
118 118 self.sa.add(new_user_group)
119 119 perm_obj = self._create_default_perms(new_user_group)
120 120 self.sa.add(perm_obj)
121 121
122 122 self.grant_user_permission(user_group=new_user_group,
123 123 user=owner, perm='usergroup.admin')
124 124
125 125 return new_user_group
126 126 except Exception:
127 127 log.error(traceback.format_exc())
128 128 raise
129 129
130 130 def update(self, user_group, form_data):
131 131
132 132 try:
133 133 user_group = self._get_user_group(user_group)
134 134
135 135 for k, v in form_data.items():
136 136 if k == 'users_group_members':
137 137 user_group.members = []
138 138 self.sa.flush()
139 139 members_list = []
140 140 if v:
141 141 v = [v] if isinstance(v, basestring) else v
142 142 for u_id in set(v):
143 143 member = UserGroupMember(user_group.users_group_id, u_id)
144 144 members_list.append(member)
145 145 setattr(user_group, 'members', members_list)
146 146 setattr(user_group, k, v)
147 147
148 148 self.sa.add(user_group)
149 149 except Exception:
150 150 log.error(traceback.format_exc())
151 151 raise
152 152
153 153 def delete(self, user_group, force=False):
154 154 """
155 Deletes repository group, unless force flag is used
155 Deletes user group, unless force flag is used
156 156 raises exception if there are members in that group, else deletes
157 157 group and users
158 158
159 159 :param user_group:
160 160 :param force:
161 161 """
162 162 user_group = self._get_user_group(user_group)
163 163 try:
164 164 # check if this group is not assigned to repo
165 165 assigned_groups = UserGroupRepoToPerm.query()\
166 166 .filter(UserGroupRepoToPerm.users_group == user_group).all()
167 assigned_groups = [x.repository.repo_name for x in assigned_groups]
167 168
168 169 if assigned_groups and not force:
169 170 raise UserGroupsAssignedException(
170 'RepoGroup assigned to %s' % assigned_groups)
171 'User Group assigned to %s' % ", ".join(assigned_groups))
171 172 self.sa.delete(user_group)
172 173 except Exception:
173 174 log.error(traceback.format_exc())
174 175 raise
175 176
176 177 def add_user_to_group(self, user_group, user):
177 178 user_group = self._get_user_group(user_group)
178 179 user = self._get_user(user)
179 180
180 181 for m in user_group.members:
181 182 u = m.user
182 183 if u.user_id == user.user_id:
183 184 # user already in the group, skip
184 185 return True
185 186
186 187 try:
187 188 user_group_member = UserGroupMember()
188 189 user_group_member.user = user
189 190 user_group_member.users_group = user_group
190 191
191 192 user_group.members.append(user_group_member)
192 193 user.group_member.append(user_group_member)
193 194
194 195 self.sa.add(user_group_member)
195 196 return user_group_member
196 197 except Exception:
197 198 log.error(traceback.format_exc())
198 199 raise
199 200
200 201 def remove_user_from_group(self, user_group, user):
201 202 user_group = self._get_user_group(user_group)
202 203 user = self._get_user(user)
203 204
204 205 user_group_member = None
205 206 for m in user_group.members:
206 207 if m.user.user_id == user.user_id:
207 208 # Found this user's membership row
208 209 user_group_member = m
209 210 break
210 211
211 212 if user_group_member:
212 213 try:
213 214 self.sa.delete(user_group_member)
214 215 return True
215 216 except Exception:
216 217 log.error(traceback.format_exc())
217 218 raise
218 219 else:
219 220 # User isn't in that group
220 221 return False
221 222
222 223 def has_perm(self, user_group, perm):
223 224 user_group = self._get_user_group(user_group)
224 225 perm = self._get_perm(perm)
225 226
226 227 return UserGroupToPerm.query()\
227 228 .filter(UserGroupToPerm.users_group == user_group)\
228 229 .filter(UserGroupToPerm.permission == perm).scalar() is not None
229 230
230 231 def grant_perm(self, user_group, perm):
231 232 user_group = self._get_user_group(user_group)
232 233 perm = self._get_perm(perm)
233 234
234 235 # if this permission is already granted skip it
235 236 _perm = UserGroupToPerm.query()\
236 237 .filter(UserGroupToPerm.users_group == user_group)\
237 238 .filter(UserGroupToPerm.permission == perm)\
238 239 .scalar()
239 240 if _perm:
240 241 return
241 242
242 243 new = UserGroupToPerm()
243 244 new.users_group = user_group
244 245 new.permission = perm
245 246 self.sa.add(new)
246 247 return new
247 248
248 249 def revokehas_permrevoke_permgrant_perm_perm(self, user_group, perm):
249 250 user_group = self._get_user_group(user_group)
250 251 perm = self._get_perm(perm)
251 252
252 253 obj = UserGroupToPerm.query()\
253 254 .filter(UserGroupToPerm.users_group == user_group)\
254 255 .filter(UserGroupToPerm.permission == perm).scalar()
255 256 if obj:
256 257 self.sa.delete(obj)
257 258
258 259 def grant_user_permission(self, user_group, user, perm):
259 260 """
260 261 Grant permission for user on given user group, or update
261 262 existing one if found
262 263
263 264 :param user_group: Instance of UserGroup, users_group_id,
264 265 or users_group_name
265 266 :param user: Instance of User, user_id or username
266 267 :param perm: Instance of Permission, or permission_name
267 268 """
268 269
269 270 user_group = self._get_user_group(user_group)
270 271 user = self._get_user(user)
271 272 permission = self._get_perm(perm)
272 273
273 274 # check if we have that permission already
274 275 obj = self.sa.query(UserUserGroupToPerm)\
275 276 .filter(UserUserGroupToPerm.user == user)\
276 277 .filter(UserUserGroupToPerm.user_group == user_group)\
277 278 .scalar()
278 279 if obj is None:
279 280 # create new !
280 281 obj = UserUserGroupToPerm()
281 282 obj.user_group = user_group
282 283 obj.user = user
283 284 obj.permission = permission
284 285 self.sa.add(obj)
285 286 log.debug('Granted perm %s to %s on %s' % (perm, user, user_group))
286 287 return obj
287 288
288 289 def revoke_user_permission(self, user_group, user):
289 290 """
290 291 Revoke permission for user on given repository group
291 292
292 293 :param user_group: Instance of RepoGroup, repositories_group_id,
293 294 or repositories_group name
294 295 :param user: Instance of User, user_id or username
295 296 """
296 297
297 298 user_group = self._get_user_group(user_group)
298 299 user = self._get_user(user)
299 300
300 301 obj = self.sa.query(UserUserGroupToPerm)\
301 302 .filter(UserUserGroupToPerm.user == user)\
302 303 .filter(UserUserGroupToPerm.user_group == user_group)\
303 304 .scalar()
304 305 if obj:
305 306 self.sa.delete(obj)
306 307 log.debug('Revoked perm on %s on %s' % (user_group, user))
307 308
308 309 def grant_user_group_permission(self, target_user_group, user_group, perm):
309 310 """
310 311 Grant user group permission for given target_user_group
311 312
312 313 :param target_user_group:
313 314 :param user_group:
314 315 :param perm:
315 316 """
316 317 target_user_group = self._get_user_group(target_user_group)
317 318 user_group = self._get_user_group(user_group)
318 319 permission = self._get_perm(perm)
319 320 # forbid assigning same user group to itself
320 321 if target_user_group == user_group:
321 322 raise RepoGroupAssignmentError('target repo:%s cannot be '
322 323 'assigned to itself' % target_user_group)
323 324
324 325 # check if we have that permission already
325 326 obj = self.sa.query(UserGroupUserGroupToPerm)\
326 327 .filter(UserGroupUserGroupToPerm.target_user_group == target_user_group)\
327 328 .filter(UserGroupUserGroupToPerm.user_group == user_group)\
328 329 .scalar()
329 330 if obj is None:
330 331 # create new !
331 332 obj = UserGroupUserGroupToPerm()
332 333 obj.user_group = user_group
333 334 obj.target_user_group = target_user_group
334 335 obj.permission = permission
335 336 self.sa.add(obj)
336 337 log.debug('Granted perm %s to %s on %s' % (perm, target_user_group, user_group))
337 338 return obj
338 339
339 340 def revoke_user_group_permission(self, target_user_group, user_group):
340 341 """
341 342 Revoke user group permission for given target_user_group
342 343
343 344 :param target_user_group:
344 345 :param user_group:
345 346 """
346 347 target_user_group = self._get_user_group(target_user_group)
347 348 user_group = self._get_user_group(user_group)
348 349
349 350 obj = self.sa.query(UserGroupUserGroupToPerm)\
350 351 .filter(UserGroupUserGroupToPerm.target_user_group == target_user_group)\
351 352 .filter(UserGroupUserGroupToPerm.user_group == user_group)\
352 353 .scalar()
353 354 if obj:
354 355 self.sa.delete(obj)
355 356 log.debug('Revoked perm on %s on %s' % (target_user_group, user_group))
356 357
357 358 def enforce_groups(self, user, groups, extern_type=None):
358 359 user = self._get_user(user)
359 360 log.debug('Enforcing groups %s on user %s' % (user, groups))
360 361 current_groups = user.group_member
361 362 # find the external created groups
362 363 externals = [x.users_group for x in current_groups
363 364 if 'extern_type' in x.users_group.group_data]
364 365
365 366 # calculate from what groups user should be removed
366 367 # externals that are not in groups
367 368 for gr in externals:
368 369 if gr.users_group_name not in groups:
369 370 log.debug('Removing user %s from user group %s' % (user, gr))
370 371 self.remove_user_from_group(gr, user)
371 372
372 373 # now we calculate in which groups user should be == groups params
373 374 owner = User.get_first_admin().username
374 375 for gr in set(groups):
375 376 existing_group = UserGroup.get_by_group_name(gr)
376 377 if not existing_group:
377 378 desc = 'Automatically created from plugin:%s' % extern_type
378 379 # we use first admin account to set the owner of the group
379 380 existing_group = UserGroupModel().create(gr, desc, owner,
380 381 group_data={'extern_type': extern_type})
381 382
382 383 # we can only add users to special groups created via plugins
383 384 managed = 'extern_type' in existing_group.group_data
384 385 if managed:
385 386 log.debug('Adding user %s to user group %s' % (user, gr))
386 387 UserGroupModel().add_user_to_group(existing_group, user)
387 388 else:
388 389 log.debug('Skipping addition to group %s since it is '
389 390 'not managed by auth plugins' % gr)
Show file before | Show file after | Hide comments
@@ -1,2295 +1,2295 b''
1 1 # -*- coding: utf-8 -*-
2 2 # This program is free software: you can redistribute it and/or modify
3 3 # it under the terms of the GNU General Public License as published by
4 4 # the Free Software Foundation, either version 3 of the License, or
5 5 # (at your option) any later version.
6 6 #
7 7 # This program is distributed in the hope that it will be useful,
8 8 # but WITHOUT ANY WARRANTY; without even the implied warranty of
9 9 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 10 # GNU General Public License for more details.
11 11 #
12 12 # You should have received a copy of the GNU General Public License
13 13 # along with this program. If not, see <http://www.gnu.org/licenses/>.
14 14
15 15 """
16 16 tests for api. run with::
17 17
18 18 KALLITHEA_WHOOSH_TEST_DISABLE=1 nosetests --with-coverage --cover-package=kallithea.controllers.api.api -x kallithea/tests/api
19 19 """
20 20
21 21 from __future__ import with_statement
22 22 import os
23 23 import random
24 24 import mock
25 25
26 26 from kallithea.tests import *
27 27 from kallithea.tests.fixture import Fixture
28 28 from kallithea.lib.compat import json
29 29 from kallithea.lib.auth import AuthUser
30 30 from kallithea.model.user import UserModel
31 31 from kallithea.model.user_group import UserGroupModel
32 32 from kallithea.model.repo import RepoModel
33 33 from kallithea.model.repo_group import RepoGroupModel
34 34 from kallithea.model.meta import Session
35 35 from kallithea.model.scm import ScmModel
36 36 from kallithea.model.gist import GistModel
37 37 from kallithea.model.db import Repository, User, Setting
38 38 from kallithea.lib.utils2 import time_to_datetime
39 39
40 40
41 41 API_URL = '/_admin/api'
42 42 TEST_USER_GROUP = 'test_user_group'
43 43 TEST_REPO_GROUP = 'test_repo_group'
44 44
45 45 fixture = Fixture()
46 46
47 47
48 48 def _build_data(apikey, method, **kw):
49 49 """
50 50 Builds API data with given random ID
51 51
52 52 :param random_id:
53 53 """
54 54 random_id = random.randrange(1, 9999)
55 55 return random_id, json.dumps({
56 56 "id": random_id,
57 57 "api_key": apikey,
58 58 "method": method,
59 59 "args": kw
60 60 })
61 61
62 62
63 63 jsonify = lambda obj: json.loads(json.dumps(obj))
64 64
65 65
66 66 def crash(*args, **kwargs):
67 67 raise Exception('Total Crash !')
68 68
69 69
70 70 def api_call(test_obj, params):
71 71 response = test_obj.app.post(API_URL, content_type='application/json',
72 72 params=params)
73 73 return response
74 74
75 75
76 76 ## helpers
77 77 def make_user_group(name=TEST_USER_GROUP):
78 78 gr = fixture.create_user_group(name, cur_user=TEST_USER_ADMIN_LOGIN)
79 79 UserGroupModel().add_user_to_group(user_group=gr,
80 80 user=TEST_USER_ADMIN_LOGIN)
81 81 Session().commit()
82 82 return gr
83 83
84 84
85 85 def make_repo_group(name=TEST_REPO_GROUP):
86 86 gr = fixture.create_repo_group(name, cur_user=TEST_USER_ADMIN_LOGIN)
87 87 Session().commit()
88 88 return gr
89 89
90 90
91 91 class BaseTestApi(object):
92 92 REPO = None
93 93 REPO_TYPE = None
94 94
95 95 @classmethod
96 96 def setup_class(cls):
97 97 cls.usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
98 98 cls.apikey = cls.usr.api_key
99 99 cls.test_user = UserModel().create_or_update(
100 100 username='test-api',
101 101 password='test',
102 102 email='test@example.com',
103 103 firstname='first',
104 104 lastname='last'
105 105 )
106 106 Session().commit()
107 107 cls.TEST_USER_LOGIN = cls.test_user.username
108 108 cls.apikey_regular = cls.test_user.api_key
109 109
110 110 @classmethod
111 111 def teardown_class(cls):
112 112 pass
113 113
114 114 def setUp(self):
115 115 self.maxDiff = None
116 116 make_user_group()
117 117 make_repo_group()
118 118
119 119 def tearDown(self):
120 120 fixture.destroy_user_group(TEST_USER_GROUP)
121 121 fixture.destroy_gists()
122 122 fixture.destroy_repo_group(TEST_REPO_GROUP)
123 123
124 124 def _compare_ok(self, id_, expected, given):
125 125 expected = jsonify({
126 126 'id': id_,
127 127 'error': None,
128 128 'result': expected
129 129 })
130 130 given = json.loads(given)
131 131 self.assertEqual(expected, given)
132 132
133 133 def _compare_error(self, id_, expected, given):
134 134 expected = jsonify({
135 135 'id': id_,
136 136 'error': expected,
137 137 'result': None
138 138 })
139 139 given = json.loads(given)
140 140 self.assertEqual(expected, given)
141 141
142 142 def test_Optional_object(self):
143 143 from kallithea.controllers.api.api import Optional
144 144
145 145 option1 = Optional(None)
146 146 self.assertEqual('<Optional:%s>' % None, repr(option1))
147 147 self.assertEqual(option1(), None)
148 148
149 149 self.assertEqual(1, Optional.extract(Optional(1)))
150 150 self.assertEqual('trololo', Optional.extract('trololo'))
151 151
152 152 def test_Optional_OAttr(self):
153 153 from kallithea.controllers.api.api import Optional, OAttr
154 154
155 155 option1 = Optional(OAttr('apiuser'))
156 156 self.assertEqual('apiuser', Optional.extract(option1))
157 157
158 158 def test_OAttr_object(self):
159 159 from kallithea.controllers.api.api import OAttr
160 160
161 161 oattr1 = OAttr('apiuser')
162 162 self.assertEqual('<OptionalAttr:apiuser>', repr(oattr1))
163 163 self.assertEqual(oattr1(), oattr1)
164 164
165 165 def test_api_wrong_key(self):
166 166 id_, params = _build_data('trololo', 'get_user')
167 167 response = api_call(self, params)
168 168
169 169 expected = 'Invalid API KEY'
170 170 self._compare_error(id_, expected, given=response.body)
171 171
172 172 def test_api_missing_non_optional_param(self):
173 173 id_, params = _build_data(self.apikey, 'get_repo')
174 174 response = api_call(self, params)
175 175
176 176 expected = 'Missing non optional `repoid` arg in JSON DATA'
177 177 self._compare_error(id_, expected, given=response.body)
178 178
179 179 def test_api_missing_non_optional_param_args_null(self):
180 180 id_, params = _build_data(self.apikey, 'get_repo')
181 181 params = params.replace('"args": {}', '"args": null')
182 182 response = api_call(self, params)
183 183
184 184 expected = 'Missing non optional `repoid` arg in JSON DATA'
185 185 self._compare_error(id_, expected, given=response.body)
186 186
187 187 def test_api_missing_non_optional_param_args_bad(self):
188 188 id_, params = _build_data(self.apikey, 'get_repo')
189 189 params = params.replace('"args": {}', '"args": 1')
190 190 response = api_call(self, params)
191 191
192 192 expected = 'Missing non optional `repoid` arg in JSON DATA'
193 193 self._compare_error(id_, expected, given=response.body)
194 194
195 195 def test_api_args_is_null(self):
196 196 id_, params = _build_data(self.apikey, 'get_users', )
197 197 params = params.replace('"args": {}', '"args": null')
198 198 response = api_call(self, params)
199 199 self.assertEqual(response.status, '200 OK')
200 200
201 201 def test_api_args_is_bad(self):
202 202 id_, params = _build_data(self.apikey, 'get_users', )
203 203 params = params.replace('"args": {}', '"args": 1')
204 204 response = api_call(self, params)
205 205 self.assertEqual(response.status, '200 OK')
206 206
207 207 def test_api_args_different_args(self):
208 208 import string
209 209 expected = {
210 210 'ascii_letters': string.ascii_letters,
211 211 'ws': string.whitespace,
212 212 'printables': string.printable
213 213 }
214 214 id_, params = _build_data(self.apikey, 'test', args=expected)
215 215 response = api_call(self, params)
216 216 self.assertEqual(response.status, '200 OK')
217 217 self._compare_ok(id_, expected, response.body)
218 218
219 219 def test_api_get_users(self):
220 220 id_, params = _build_data(self.apikey, 'get_users', )
221 221 response = api_call(self, params)
222 222 ret_all = []
223 223 _users = User.query().filter(User.username != User.DEFAULT_USER) \
224 224 .order_by(User.username).all()
225 225 for usr in _users:
226 226 ret = usr.get_api_data()
227 227 ret_all.append(jsonify(ret))
228 228 expected = ret_all
229 229 self._compare_ok(id_, expected, given=response.body)
230 230
231 231 def test_api_get_user(self):
232 232 id_, params = _build_data(self.apikey, 'get_user',
233 233 userid=TEST_USER_ADMIN_LOGIN)
234 234 response = api_call(self, params)
235 235
236 236 usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
237 237 ret = usr.get_api_data()
238 238 ret['permissions'] = AuthUser(usr.user_id).permissions
239 239
240 240 expected = ret
241 241 self._compare_ok(id_, expected, given=response.body)
242 242
243 243 def test_api_get_user_that_does_not_exist(self):
244 244 id_, params = _build_data(self.apikey, 'get_user',
245 245 userid='trololo')
246 246 response = api_call(self, params)
247 247
248 248 expected = "user `%s` does not exist" % 'trololo'
249 249 self._compare_error(id_, expected, given=response.body)
250 250
251 251 def test_api_get_user_without_giving_userid(self):
252 252 id_, params = _build_data(self.apikey, 'get_user')
253 253 response = api_call(self, params)
254 254
255 255 usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
256 256 ret = usr.get_api_data()
257 257 ret['permissions'] = AuthUser(usr.user_id).permissions
258 258
259 259 expected = ret
260 260 self._compare_ok(id_, expected, given=response.body)
261 261
262 262 def test_api_get_user_without_giving_userid_non_admin(self):
263 263 id_, params = _build_data(self.apikey_regular, 'get_user')
264 264 response = api_call(self, params)
265 265
266 266 usr = UserModel().get_by_username(self.TEST_USER_LOGIN)
267 267 ret = usr.get_api_data()
268 268 ret['permissions'] = AuthUser(usr.user_id).permissions
269 269
270 270 expected = ret
271 271 self._compare_ok(id_, expected, given=response.body)
272 272
273 273 def test_api_get_user_with_giving_userid_non_admin(self):
274 274 id_, params = _build_data(self.apikey_regular, 'get_user',
275 275 userid=self.TEST_USER_LOGIN)
276 276 response = api_call(self, params)
277 277
278 278 expected = 'userid is not the same as your user'
279 279 self._compare_error(id_, expected, given=response.body)
280 280
281 281 def test_api_pull(self):
282 282 repo_name = 'test_pull'
283 283 r = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
284 284 r.clone_uri = os.path.join(TESTS_TMP_PATH, self.REPO)
285 285 Session.add(r)
286 286 Session.commit()
287 287
288 288 id_, params = _build_data(self.apikey, 'pull',
289 289 repoid=repo_name,)
290 290 response = api_call(self, params)
291 291
292 292 expected = {'msg': 'Pulled from `%s`' % repo_name,
293 293 'repository': repo_name}
294 294 self._compare_ok(id_, expected, given=response.body)
295 295
296 296 fixture.destroy_repo(repo_name)
297 297
298 298 def test_api_pull_error(self):
299 299 id_, params = _build_data(self.apikey, 'pull',
300 300 repoid=self.REPO, )
301 301 response = api_call(self, params)
302 302
303 303 expected = 'Unable to pull changes from `%s`' % self.REPO
304 304 self._compare_error(id_, expected, given=response.body)
305 305
306 306 def test_api_rescan_repos(self):
307 307 id_, params = _build_data(self.apikey, 'rescan_repos')
308 308 response = api_call(self, params)
309 309
310 310 expected = {'added': [], 'removed': []}
311 311 self._compare_ok(id_, expected, given=response.body)
312 312
313 313 @mock.patch.object(ScmModel, 'repo_scan', crash)
314 314 def test_api_rescann_error(self):
315 315 id_, params = _build_data(self.apikey, 'rescan_repos', )
316 316 response = api_call(self, params)
317 317
318 318 expected = 'Error occurred during rescan repositories action'
319 319 self._compare_error(id_, expected, given=response.body)
320 320
321 321 def test_api_invalidate_cache(self):
322 322 repo = RepoModel().get_by_repo_name(self.REPO)
323 323 repo.scm_instance_cached() # seed cache
324 324
325 325 id_, params = _build_data(self.apikey, 'invalidate_cache',
326 326 repoid=self.REPO)
327 327 response = api_call(self, params)
328 328
329 329 expected = {
330 330 'msg': "Cache for repository `%s` was invalidated" % (self.REPO,),
331 331 'repository': self.REPO
332 332 }
333 333 self._compare_ok(id_, expected, given=response.body)
334 334
335 335 @mock.patch.object(ScmModel, 'mark_for_invalidation', crash)
336 336 def test_api_invalidate_cache_error(self):
337 337 id_, params = _build_data(self.apikey, 'invalidate_cache',
338 338 repoid=self.REPO)
339 339 response = api_call(self, params)
340 340
341 341 expected = 'Error occurred during cache invalidation action'
342 342 self._compare_error(id_, expected, given=response.body)
343 343
344 344 def test_api_invalidate_cache_regular_user_no_permission(self):
345 345 repo = RepoModel().get_by_repo_name(self.REPO)
346 346 repo.scm_instance_cached() # seed cache
347 347
348 348 id_, params = _build_data(self.apikey_regular, 'invalidate_cache',
349 349 repoid=self.REPO)
350 350 response = api_call(self, params)
351 351
352 352 expected = "repository `%s` does not exist" % (self.REPO,)
353 353 self._compare_error(id_, expected, given=response.body)
354 354
355 355 def test_api_lock_repo_lock_aquire(self):
356 356 id_, params = _build_data(self.apikey, 'lock',
357 357 userid=TEST_USER_ADMIN_LOGIN,
358 358 repoid=self.REPO,
359 359 locked=True)
360 360 response = api_call(self, params)
361 361 expected = {
362 362 'repo': self.REPO, 'locked': True,
363 363 'locked_since': response.json['result']['locked_since'],
364 364 'locked_by': TEST_USER_ADMIN_LOGIN,
365 365 'lock_state_changed': True,
366 366 'msg': ('User `%s` set lock state for repo `%s` to `%s`'
367 367 % (TEST_USER_ADMIN_LOGIN, self.REPO, True))
368 368 }
369 369 self._compare_ok(id_, expected, given=response.body)
370 370
371 371 def test_api_lock_repo_lock_aquire_by_non_admin(self):
372 372 repo_name = 'api_delete_me'
373 373 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
374 374 cur_user=self.TEST_USER_LOGIN)
375 375 try:
376 376 id_, params = _build_data(self.apikey_regular, 'lock',
377 377 repoid=repo_name,
378 378 locked=True)
379 379 response = api_call(self, params)
380 380 expected = {
381 381 'repo': repo_name,
382 382 'locked': True,
383 383 'locked_since': response.json['result']['locked_since'],
384 384 'locked_by': self.TEST_USER_LOGIN,
385 385 'lock_state_changed': True,
386 386 'msg': ('User `%s` set lock state for repo `%s` to `%s`'
387 387 % (self.TEST_USER_LOGIN, repo_name, True))
388 388 }
389 389 self._compare_ok(id_, expected, given=response.body)
390 390 finally:
391 391 fixture.destroy_repo(repo_name)
392 392
393 393 def test_api_lock_repo_lock_aquire_non_admin_with_userid(self):
394 394 repo_name = 'api_delete_me'
395 395 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
396 396 cur_user=self.TEST_USER_LOGIN)
397 397 try:
398 398 id_, params = _build_data(self.apikey_regular, 'lock',
399 399 userid=TEST_USER_ADMIN_LOGIN,
400 400 repoid=repo_name,
401 401 locked=True)
402 402 response = api_call(self, params)
403 403 expected = 'userid is not the same as your user'
404 404 self._compare_error(id_, expected, given=response.body)
405 405 finally:
406 406 fixture.destroy_repo(repo_name)
407 407
408 408 def test_api_lock_repo_lock_aquire_non_admin_not_his_repo(self):
409 409 id_, params = _build_data(self.apikey_regular, 'lock',
410 410 repoid=self.REPO,
411 411 locked=True)
412 412 response = api_call(self, params)
413 413 expected = 'repository `%s` does not exist' % (self.REPO)
414 414 self._compare_error(id_, expected, given=response.body)
415 415
416 416 def test_api_lock_repo_lock_release(self):
417 417 id_, params = _build_data(self.apikey, 'lock',
418 418 userid=TEST_USER_ADMIN_LOGIN,
419 419 repoid=self.REPO,
420 420 locked=False)
421 421 response = api_call(self, params)
422 422 expected = {
423 423 'repo': self.REPO,
424 424 'locked': False,
425 425 'locked_since': None,
426 426 'locked_by': TEST_USER_ADMIN_LOGIN,
427 427 'lock_state_changed': True,
428 428 'msg': ('User `%s` set lock state for repo `%s` to `%s`'
429 429 % (TEST_USER_ADMIN_LOGIN, self.REPO, False))
430 430 }
431 431 self._compare_ok(id_, expected, given=response.body)
432 432
433 433 def test_api_lock_repo_lock_aquire_optional_userid(self):
434 434 id_, params = _build_data(self.apikey, 'lock',
435 435 repoid=self.REPO,
436 436 locked=True)
437 437 response = api_call(self, params)
438 438 time_ = response.json['result']['locked_since']
439 439 expected = {
440 440 'repo': self.REPO,
441 441 'locked': True,
442 442 'locked_since': time_,
443 443 'locked_by': TEST_USER_ADMIN_LOGIN,
444 444 'lock_state_changed': True,
445 445 'msg': ('User `%s` set lock state for repo `%s` to `%s`'
446 446 % (TEST_USER_ADMIN_LOGIN, self.REPO, True))
447 447 }
448 448
449 449 self._compare_ok(id_, expected, given=response.body)
450 450
451 451 def test_api_lock_repo_lock_optional_locked(self):
452 452 id_, params = _build_data(self.apikey, 'lock',
453 453 repoid=self.REPO)
454 454 response = api_call(self, params)
455 455 time_ = response.json['result']['locked_since']
456 456 expected = {
457 457 'repo': self.REPO,
458 458 'locked': True,
459 459 'locked_since': time_,
460 460 'locked_by': TEST_USER_ADMIN_LOGIN,
461 461 'lock_state_changed': False,
462 462 'msg': ('Repo `%s` locked by `%s` on `%s`.'
463 463 % (self.REPO, TEST_USER_ADMIN_LOGIN,
464 464 json.dumps(time_to_datetime(time_))))
465 465 }
466 466 self._compare_ok(id_, expected, given=response.body)
467 467
468 468 def test_api_lock_repo_lock_optional_not_locked(self):
469 469 repo_name = 'api_not_locked'
470 470 repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
471 471 cur_user=self.TEST_USER_LOGIN)
472 472 self.assertEqual(repo.locked, [None, None])
473 473 try:
474 474 id_, params = _build_data(self.apikey, 'lock',
475 475 repoid=repo.repo_id)
476 476 response = api_call(self, params)
477 477 expected = {
478 478 'repo': repo_name,
479 479 'locked': False,
480 480 'locked_since': None,
481 481 'locked_by': None,
482 482 'lock_state_changed': False,
483 483 'msg': ('Repo `%s` not locked.' % (repo_name,))
484 484 }
485 485 self._compare_ok(id_, expected, given=response.body)
486 486 finally:
487 487 fixture.destroy_repo(repo_name)
488 488
489 489 @mock.patch.object(Repository, 'lock', crash)
490 490 def test_api_lock_error(self):
491 491 id_, params = _build_data(self.apikey, 'lock',
492 492 userid=TEST_USER_ADMIN_LOGIN,
493 493 repoid=self.REPO,
494 494 locked=True)
495 495 response = api_call(self, params)
496 496
497 497 expected = 'Error occurred locking repository `%s`' % self.REPO
498 498 self._compare_error(id_, expected, given=response.body)
499 499
500 500 def test_api_get_locks_regular_user(self):
501 501 id_, params = _build_data(self.apikey_regular, 'get_locks')
502 502 response = api_call(self, params)
503 503 expected = []
504 504 self._compare_ok(id_, expected, given=response.body)
505 505
506 506 def test_api_get_locks_with_userid_regular_user(self):
507 507 id_, params = _build_data(self.apikey_regular, 'get_locks',
508 508 userid=TEST_USER_ADMIN_LOGIN)
509 509 response = api_call(self, params)
510 510 expected = 'userid is not the same as your user'
511 511 self._compare_error(id_, expected, given=response.body)
512 512
513 513 def test_api_get_locks(self):
514 514 id_, params = _build_data(self.apikey, 'get_locks')
515 515 response = api_call(self, params)
516 516 expected = []
517 517 self._compare_ok(id_, expected, given=response.body)
518 518
519 519 def test_api_get_locks_with_one_locked_repo(self):
520 520 repo_name = 'api_delete_me'
521 521 repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
522 522 cur_user=self.TEST_USER_LOGIN)
523 523 Repository.lock(repo, User.get_by_username(self.TEST_USER_LOGIN).user_id)
524 524 try:
525 525 id_, params = _build_data(self.apikey, 'get_locks')
526 526 response = api_call(self, params)
527 527 expected = [repo.get_api_data()]
528 528 self._compare_ok(id_, expected, given=response.body)
529 529 finally:
530 530 fixture.destroy_repo(repo_name)
531 531
532 532 def test_api_get_locks_with_one_locked_repo_for_specific_user(self):
533 533 repo_name = 'api_delete_me'
534 534 repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
535 535 cur_user=self.TEST_USER_LOGIN)
536 536 Repository.lock(repo, User.get_by_username(self.TEST_USER_LOGIN).user_id)
537 537 try:
538 538 id_, params = _build_data(self.apikey, 'get_locks',
539 539 userid=self.TEST_USER_LOGIN)
540 540 response = api_call(self, params)
541 541 expected = [repo.get_api_data()]
542 542 self._compare_ok(id_, expected, given=response.body)
543 543 finally:
544 544 fixture.destroy_repo(repo_name)
545 545
546 546 def test_api_get_locks_with_userid(self):
547 547 id_, params = _build_data(self.apikey, 'get_locks',
548 548 userid=TEST_USER_REGULAR_LOGIN)
549 549 response = api_call(self, params)
550 550 expected = []
551 551 self._compare_ok(id_, expected, given=response.body)
552 552
553 553 def test_api_create_existing_user(self):
554 554 id_, params = _build_data(self.apikey, 'create_user',
555 555 username=TEST_USER_ADMIN_LOGIN,
556 556 email='test@foo.com',
557 557 password='trololo')
558 558 response = api_call(self, params)
559 559
560 560 expected = "user `%s` already exist" % TEST_USER_ADMIN_LOGIN
561 561 self._compare_error(id_, expected, given=response.body)
562 562
563 563 def test_api_create_user_with_existing_email(self):
564 564 id_, params = _build_data(self.apikey, 'create_user',
565 565 username=TEST_USER_ADMIN_LOGIN + 'new',
566 566 email=TEST_USER_REGULAR_EMAIL,
567 567 password='trololo')
568 568 response = api_call(self, params)
569 569
570 570 expected = "email `%s` already exist" % TEST_USER_REGULAR_EMAIL
571 571 self._compare_error(id_, expected, given=response.body)
572 572
573 573 def test_api_create_user(self):
574 574 username = 'test_new_api_user'
575 575 email = username + "@foo.com"
576 576
577 577 id_, params = _build_data(self.apikey, 'create_user',
578 578 username=username,
579 579 email=email,
580 580 password='trololo')
581 581 response = api_call(self, params)
582 582
583 583 usr = UserModel().get_by_username(username)
584 584 ret = dict(
585 585 msg='created new user `%s`' % username,
586 586 user=jsonify(usr.get_api_data())
587 587 )
588 588
589 589 try:
590 590 expected = ret
591 591 self._compare_ok(id_, expected, given=response.body)
592 592 finally:
593 593 fixture.destroy_user(usr.user_id)
594 594
595 595 def test_api_create_user_without_password(self):
596 596 username = 'test_new_api_user_passwordless'
597 597 email = username + "@foo.com"
598 598
599 599 id_, params = _build_data(self.apikey, 'create_user',
600 600 username=username,
601 601 email=email)
602 602 response = api_call(self, params)
603 603
604 604 usr = UserModel().get_by_username(username)
605 605 ret = dict(
606 606 msg='created new user `%s`' % username,
607 607 user=jsonify(usr.get_api_data())
608 608 )
609 609 try:
610 610 expected = ret
611 611 self._compare_ok(id_, expected, given=response.body)
612 612 finally:
613 613 fixture.destroy_user(usr.user_id)
614 614
615 615 def test_api_create_user_with_extern_name(self):
616 616 username = 'test_new_api_user_passwordless'
617 617 email = username + "@foo.com"
618 618
619 619 id_, params = _build_data(self.apikey, 'create_user',
620 620 username=username,
621 621 email=email, extern_name='internal')
622 622 response = api_call(self, params)
623 623
624 624 usr = UserModel().get_by_username(username)
625 625 ret = dict(
626 626 msg='created new user `%s`' % username,
627 627 user=jsonify(usr.get_api_data())
628 628 )
629 629 try:
630 630 expected = ret
631 631 self._compare_ok(id_, expected, given=response.body)
632 632 finally:
633 633 fixture.destroy_user(usr.user_id)
634 634
635 635 @mock.patch.object(UserModel, 'create_or_update', crash)
636 636 def test_api_create_user_when_exception_happened(self):
637 637
638 638 username = 'test_new_api_user'
639 639 email = username + "@foo.com"
640 640
641 641 id_, params = _build_data(self.apikey, 'create_user',
642 642 username=username,
643 643 email=email,
644 644 password='trololo')
645 645 response = api_call(self, params)
646 646 expected = 'failed to create user `%s`' % username
647 647 self._compare_error(id_, expected, given=response.body)
648 648
649 649 def test_api_delete_user(self):
650 650 usr = UserModel().create_or_update(username=u'test_user',
651 651 password=u'qweqwe',
652 652 email=u'u232@example.com',
653 653 firstname=u'u1', lastname=u'u1')
654 654 Session().commit()
655 655 username = usr.username
656 656 email = usr.email
657 657 usr_id = usr.user_id
658 658 ## DELETE THIS USER NOW
659 659
660 660 id_, params = _build_data(self.apikey, 'delete_user',
661 661 userid=username, )
662 662 response = api_call(self, params)
663 663
664 664 ret = {'msg': 'deleted user ID:%s %s' % (usr_id, username),
665 665 'user': None}
666 666 expected = ret
667 667 self._compare_ok(id_, expected, given=response.body)
668 668
669 669 @mock.patch.object(UserModel, 'delete', crash)
670 670 def test_api_delete_user_when_exception_happened(self):
671 671 usr = UserModel().create_or_update(username=u'test_user',
672 672 password=u'qweqwe',
673 673 email=u'u232@example.com',
674 674 firstname=u'u1', lastname=u'u1')
675 675 Session().commit()
676 676 username = usr.username
677 677
678 678 id_, params = _build_data(self.apikey, 'delete_user',
679 679 userid=username, )
680 680 response = api_call(self, params)
681 681 ret = 'failed to delete user ID:%s %s' % (usr.user_id,
682 682 usr.username)
683 683 expected = ret
684 684 self._compare_error(id_, expected, given=response.body)
685 685
686 686 @parameterized.expand([('firstname', 'new_username'),
687 687 ('lastname', 'new_username'),
688 688 ('email', 'new_username'),
689 689 ('admin', True),
690 690 ('admin', False),
691 691 ('extern_type', 'ldap'),
692 692 ('extern_type', None),
693 693 ('extern_name', 'test'),
694 694 ('extern_name', None),
695 695 ('active', False),
696 696 ('active', True),
697 697 ('password', 'newpass')
698 698 ])
699 699 def test_api_update_user(self, name, expected):
700 700 usr = UserModel().get_by_username(self.TEST_USER_LOGIN)
701 701 kw = {name: expected,
702 702 'userid': usr.user_id}
703 703 id_, params = _build_data(self.apikey, 'update_user', **kw)
704 704 response = api_call(self, params)
705 705
706 706 ret = {
707 707 'msg': 'updated user ID:%s %s' % (
708 708 usr.user_id, self.TEST_USER_LOGIN),
709 709 'user': jsonify(UserModel() \
710 710 .get_by_username(self.TEST_USER_LOGIN) \
711 711 .get_api_data())
712 712 }
713 713
714 714 expected = ret
715 715 self._compare_ok(id_, expected, given=response.body)
716 716
717 717 def test_api_update_user_no_changed_params(self):
718 718 usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
719 719 ret = jsonify(usr.get_api_data())
720 720 id_, params = _build_data(self.apikey, 'update_user',
721 721 userid=TEST_USER_ADMIN_LOGIN)
722 722
723 723 response = api_call(self, params)
724 724 ret = {
725 725 'msg': 'updated user ID:%s %s' % (
726 726 usr.user_id, TEST_USER_ADMIN_LOGIN),
727 727 'user': ret
728 728 }
729 729 expected = ret
730 730 self._compare_ok(id_, expected, given=response.body)
731 731
732 732 def test_api_update_user_by_user_id(self):
733 733 usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
734 734 ret = jsonify(usr.get_api_data())
735 735 id_, params = _build_data(self.apikey, 'update_user',
736 736 userid=usr.user_id)
737 737
738 738 response = api_call(self, params)
739 739 ret = {
740 740 'msg': 'updated user ID:%s %s' % (
741 741 usr.user_id, TEST_USER_ADMIN_LOGIN),
742 742 'user': ret
743 743 }
744 744 expected = ret
745 745 self._compare_ok(id_, expected, given=response.body)
746 746
747 747 def test_api_update_user_default_user(self):
748 748 usr = User.get_default_user()
749 749 id_, params = _build_data(self.apikey, 'update_user',
750 750 userid=usr.user_id)
751 751
752 752 response = api_call(self, params)
753 753 expected = 'editing default user is forbidden'
754 754 self._compare_error(id_, expected, given=response.body)
755 755
756 756 @mock.patch.object(UserModel, 'update_user', crash)
757 757 def test_api_update_user_when_exception_happens(self):
758 758 usr = UserModel().get_by_username(TEST_USER_ADMIN_LOGIN)
759 759 ret = jsonify(usr.get_api_data())
760 760 id_, params = _build_data(self.apikey, 'update_user',
761 761 userid=usr.user_id)
762 762
763 763 response = api_call(self, params)
764 764 ret = 'failed to update user `%s`' % usr.user_id
765 765
766 766 expected = ret
767 767 self._compare_error(id_, expected, given=response.body)
768 768
769 769 def test_api_get_repo(self):
770 770 new_group = 'some_new_group'
771 771 make_user_group(new_group)
772 772 RepoModel().grant_user_group_permission(repo=self.REPO,
773 773 group_name=new_group,
774 774 perm='repository.read')
775 775 Session().commit()
776 776 id_, params = _build_data(self.apikey, 'get_repo',
777 777 repoid=self.REPO)
778 778 response = api_call(self, params)
779 779
780 780 repo = RepoModel().get_by_repo_name(self.REPO)
781 781 ret = repo.get_api_data()
782 782
783 783 members = []
784 784 followers = []
785 785 for user in repo.repo_to_perm:
786 786 perm = user.permission.permission_name
787 787 user = user.user
788 788 user_data = {'name': user.username, 'type': "user",
789 789 'permission': perm}
790 790 members.append(user_data)
791 791
792 792 for user_group in repo.users_group_to_perm:
793 793 perm = user_group.permission.permission_name
794 794 user_group = user_group.users_group
795 795 user_group_data = {'name': user_group.users_group_name,
796 796 'type': "user_group", 'permission': perm}
797 797 members.append(user_group_data)
798 798
799 799 for user in repo.followers:
800 800 followers.append(user.user.get_api_data())
801 801
802 802 ret['members'] = members
803 803 ret['followers'] = followers
804 804
805 805 expected = ret
806 806 self._compare_ok(id_, expected, given=response.body)
807 807 fixture.destroy_user_group(new_group)
808 808
809 809 @parameterized.expand([
810 810 ('repository.admin',),
811 811 ('repository.write',),
812 812 ('repository.read',),
813 813 ])
814 814 def test_api_get_repo_by_non_admin(self, grant_perm):
815 815 RepoModel().grant_user_permission(repo=self.REPO,
816 816 user=self.TEST_USER_LOGIN,
817 817 perm=grant_perm)
818 818 Session().commit()
819 819 id_, params = _build_data(self.apikey_regular, 'get_repo',
820 820 repoid=self.REPO)
821 821 response = api_call(self, params)
822 822
823 823 repo = RepoModel().get_by_repo_name(self.REPO)
824 824 ret = repo.get_api_data()
825 825
826 826 members = []
827 827 followers = []
828 828 self.assertEqual(2, len(repo.repo_to_perm))
829 829 for user in repo.repo_to_perm:
830 830 perm = user.permission.permission_name
831 831 user_obj = user.user
832 832 user_data = {'name': user_obj.username, 'type': "user",
833 833 'permission': perm}
834 834 members.append(user_data)
835 835
836 836 for user_group in repo.users_group_to_perm:
837 837 perm = user_group.permission.permission_name
838 838 user_group_obj = user_group.users_group
839 839 user_group_data = {'name': user_group_obj.users_group_name,
840 840 'type': "user_group", 'permission': perm}
841 841 members.append(user_group_data)
842 842
843 843 for user in repo.followers:
844 844 followers.append(user.user.get_api_data())
845 845
846 846 ret['members'] = members
847 847 ret['followers'] = followers
848 848
849 849 expected = ret
850 850 try:
851 851 self._compare_ok(id_, expected, given=response.body)
852 852 finally:
853 853 RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)
854 854
855 855 def test_api_get_repo_by_non_admin_no_permission_to_repo(self):
856 856 RepoModel().grant_user_permission(repo=self.REPO,
857 857 user=self.TEST_USER_LOGIN,
858 858 perm='repository.none')
859 859
860 860 id_, params = _build_data(self.apikey_regular, 'get_repo',
861 861 repoid=self.REPO)
862 862 response = api_call(self, params)
863 863
864 864 expected = 'repository `%s` does not exist' % (self.REPO)
865 865 self._compare_error(id_, expected, given=response.body)
866 866
867 867 def test_api_get_repo_that_doesn_not_exist(self):
868 868 id_, params = _build_data(self.apikey, 'get_repo',
869 869 repoid='no-such-repo')
870 870 response = api_call(self, params)
871 871
872 872 ret = 'repository `%s` does not exist' % 'no-such-repo'
873 873 expected = ret
874 874 self._compare_error(id_, expected, given=response.body)
875 875
876 876 def test_api_get_repos(self):
877 877 id_, params = _build_data(self.apikey, 'get_repos')
878 878 response = api_call(self, params)
879 879
880 880 result = []
881 881 for repo in RepoModel().get_all():
882 882 result.append(repo.get_api_data())
883 883 ret = jsonify(result)
884 884
885 885 expected = ret
886 886 self._compare_ok(id_, expected, given=response.body)
887 887
888 888 def test_api_get_repos_non_admin(self):
889 889 id_, params = _build_data(self.apikey_regular, 'get_repos')
890 890 response = api_call(self, params)
891 891
892 892 result = []
893 893 for repo in RepoModel().get_all_user_repos(self.TEST_USER_LOGIN):
894 894 result.append(repo.get_api_data())
895 895 ret = jsonify(result)
896 896
897 897 expected = ret
898 898 self._compare_ok(id_, expected, given=response.body)
899 899
900 900 @parameterized.expand([('all', 'all'),
901 901 ('dirs', 'dirs'),
902 902 ('files', 'files'), ])
903 903 def test_api_get_repo_nodes(self, name, ret_type):
904 904 rev = 'tip'
905 905 path = '/'
906 906 id_, params = _build_data(self.apikey, 'get_repo_nodes',
907 907 repoid=self.REPO, revision=rev,
908 908 root_path=path,
909 909 ret_type=ret_type)
910 910 response = api_call(self, params)
911 911
912 912 # we don't the actual return types here since it's tested somewhere
913 913 # else
914 914 expected = response.json['result']
915 915 self._compare_ok(id_, expected, given=response.body)
916 916
917 917 def test_api_get_repo_nodes_bad_revisions(self):
918 918 rev = 'i-dont-exist'
919 919 path = '/'
920 920 id_, params = _build_data(self.apikey, 'get_repo_nodes',
921 921 repoid=self.REPO, revision=rev,
922 922 root_path=path, )
923 923 response = api_call(self, params)
924 924
925 925 expected = 'failed to get repo: `%s` nodes' % self.REPO
926 926 self._compare_error(id_, expected, given=response.body)
927 927
928 928 def test_api_get_repo_nodes_bad_path(self):
929 929 rev = 'tip'
930 930 path = '/idontexits'
931 931 id_, params = _build_data(self.apikey, 'get_repo_nodes',
932 932 repoid=self.REPO, revision=rev,
933 933 root_path=path, )
934 934 response = api_call(self, params)
935 935
936 936 expected = 'failed to get repo: `%s` nodes' % self.REPO
937 937 self._compare_error(id_, expected, given=response.body)
938 938
939 939 def test_api_get_repo_nodes_bad_ret_type(self):
940 940 rev = 'tip'
941 941 path = '/'
942 942 ret_type = 'error'
943 943 id_, params = _build_data(self.apikey, 'get_repo_nodes',
944 944 repoid=self.REPO, revision=rev,
945 945 root_path=path,
946 946 ret_type=ret_type)
947 947 response = api_call(self, params)
948 948
949 949 expected = ('ret_type must be one of %s'
950 950 % (','.join(['files', 'dirs', 'all'])))
951 951 self._compare_error(id_, expected, given=response.body)
952 952
953 953 @parameterized.expand([('all', 'all', 'repository.write'),
954 954 ('dirs', 'dirs', 'repository.admin'),
955 955 ('files', 'files', 'repository.read'), ])
956 956 def test_api_get_repo_nodes_by_regular_user(self, name, ret_type, grant_perm):
957 957 RepoModel().grant_user_permission(repo=self.REPO,
958 958 user=self.TEST_USER_LOGIN,
959 959 perm=grant_perm)
960 960 Session().commit()
961 961
962 962 rev = 'tip'
963 963 path = '/'
964 964 id_, params = _build_data(self.apikey_regular, 'get_repo_nodes',
965 965 repoid=self.REPO, revision=rev,
966 966 root_path=path,
967 967 ret_type=ret_type)
968 968 response = api_call(self, params)
969 969
970 970 # we don't the actual return types here since it's tested somewhere
971 971 # else
972 972 expected = response.json['result']
973 973 try:
974 974 self._compare_ok(id_, expected, given=response.body)
975 975 finally:
976 976 RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)
977 977
978 978 def test_api_create_repo(self):
979 979 repo_name = 'api-repo'
980 980 id_, params = _build_data(self.apikey, 'create_repo',
981 981 repo_name=repo_name,
982 982 owner=TEST_USER_ADMIN_LOGIN,
983 983 repo_type=self.REPO_TYPE,
984 984 )
985 985 response = api_call(self, params)
986 986
987 987 repo = RepoModel().get_by_repo_name(repo_name)
988 988 self.assertNotEqual(repo, None)
989 989 ret = {
990 990 'msg': 'Created new repository `%s`' % repo_name,
991 991 'success': True,
992 992 'task': None,
993 993 }
994 994 expected = ret
995 995 self._compare_ok(id_, expected, given=response.body)
996 996 fixture.destroy_repo(repo_name)
997 997
998 998 def test_api_create_repo_in_group(self):
999 999 repo_name = 'my_gr/api-repo'
1000 1000 id_, params = _build_data(self.apikey, 'create_repo',
1001 1001 repo_name=repo_name,
1002 1002 owner=TEST_USER_ADMIN_LOGIN,
1003 1003 repo_type=self.REPO_TYPE,)
1004 1004 response = api_call(self, params)
1005 1005 print params
1006 1006 repo = RepoModel().get_by_repo_name(repo_name)
1007 1007 self.assertNotEqual(repo, None)
1008 1008 ret = {
1009 1009 'msg': 'Created new repository `%s`' % repo_name,
1010 1010 'success': True,
1011 1011 'task': None,
1012 1012 }
1013 1013 expected = ret
1014 1014 self._compare_ok(id_, expected, given=response.body)
1015 1015 fixture.destroy_repo(repo_name)
1016 1016 fixture.destroy_repo_group('my_gr')
1017 1017
1018 1018 def test_api_create_repo_unknown_owner(self):
1019 1019 repo_name = 'api-repo'
1020 1020 owner = 'i-dont-exist'
1021 1021 id_, params = _build_data(self.apikey, 'create_repo',
1022 1022 repo_name=repo_name,
1023 1023 owner=owner,
1024 1024 repo_type=self.REPO_TYPE,
1025 1025 )
1026 1026 response = api_call(self, params)
1027 1027 expected = 'user `%s` does not exist' % owner
1028 1028 self._compare_error(id_, expected, given=response.body)
1029 1029
1030 1030 def test_api_create_repo_dont_specify_owner(self):
1031 1031 repo_name = 'api-repo'
1032 1032 owner = 'i-dont-exist'
1033 1033 id_, params = _build_data(self.apikey, 'create_repo',
1034 1034 repo_name=repo_name,
1035 1035 repo_type=self.REPO_TYPE,
1036 1036 )
1037 1037 response = api_call(self, params)
1038 1038
1039 1039 repo = RepoModel().get_by_repo_name(repo_name)
1040 1040 self.assertNotEqual(repo, None)
1041 1041 ret = {
1042 1042 'msg': 'Created new repository `%s`' % repo_name,
1043 1043 'success': True,
1044 1044 'task': None,
1045 1045 }
1046 1046 expected = ret
1047 1047 self._compare_ok(id_, expected, given=response.body)
1048 1048 fixture.destroy_repo(repo_name)
1049 1049
1050 1050 def test_api_create_repo_by_non_admin(self):
1051 1051 repo_name = 'api-repo'
1052 1052 owner = 'i-dont-exist'
1053 1053 id_, params = _build_data(self.apikey_regular, 'create_repo',
1054 1054 repo_name=repo_name,
1055 1055 repo_type=self.REPO_TYPE,
1056 1056 )
1057 1057 response = api_call(self, params)
1058 1058
1059 1059 repo = RepoModel().get_by_repo_name(repo_name)
1060 1060 self.assertNotEqual(repo, None)
1061 1061 ret = {
1062 1062 'msg': 'Created new repository `%s`' % repo_name,
1063 1063 'success': True,
1064 1064 'task': None,
1065 1065 }
1066 1066 expected = ret
1067 1067 self._compare_ok(id_, expected, given=response.body)
1068 1068 fixture.destroy_repo(repo_name)
1069 1069
1070 1070 def test_api_create_repo_by_non_admin_specify_owner(self):
1071 1071 repo_name = 'api-repo'
1072 1072 owner = 'i-dont-exist'
1073 1073 id_, params = _build_data(self.apikey_regular, 'create_repo',
1074 1074 repo_name=repo_name,
1075 1075 repo_type=self.REPO_TYPE,
1076 1076 owner=owner)
1077 1077 response = api_call(self, params)
1078 1078
1079 1079 expected = 'Only Kallithea admin can specify `owner` param'
1080 1080 self._compare_error(id_, expected, given=response.body)
1081 1081 fixture.destroy_repo(repo_name)
1082 1082
1083 1083 def test_api_create_repo_exists(self):
1084 1084 repo_name = self.REPO
1085 1085 id_, params = _build_data(self.apikey, 'create_repo',
1086 1086 repo_name=repo_name,
1087 1087 owner=TEST_USER_ADMIN_LOGIN,
1088 1088 repo_type=self.REPO_TYPE,)
1089 1089 response = api_call(self, params)
1090 1090 expected = "repo `%s` already exist" % repo_name
1091 1091 self._compare_error(id_, expected, given=response.body)
1092 1092
1093 1093 @mock.patch.object(RepoModel, 'create', crash)
1094 1094 def test_api_create_repo_exception_occurred(self):
1095 1095 repo_name = 'api-repo'
1096 1096 id_, params = _build_data(self.apikey, 'create_repo',
1097 1097 repo_name=repo_name,
1098 1098 owner=TEST_USER_ADMIN_LOGIN,
1099 1099 repo_type=self.REPO_TYPE,)
1100 1100 response = api_call(self, params)
1101 1101 expected = 'failed to create repository `%s`' % repo_name
1102 1102 self._compare_error(id_, expected, given=response.body)
1103 1103
1104 1104 @parameterized.expand([
1105 1105 ('owner', {'owner': TEST_USER_REGULAR_LOGIN}),
1106 1106 ('description', {'description': 'new description'}),
1107 1107 ('active', {'active': True}),
1108 1108 ('active', {'active': False}),
1109 1109 ('clone_uri', {'clone_uri': 'http://foo.com/repo'}),
1110 1110 ('clone_uri', {'clone_uri': None}),
1111 1111 ('landing_rev', {'landing_rev': 'branch:master'}),
1112 1112 ('enable_statistics', {'enable_statistics': True}),
1113 1113 ('enable_locking', {'enable_locking': True}),
1114 1114 ('enable_downloads', {'enable_downloads': True}),
1115 1115 ('name', {'name': 'new_repo_name'}),
1116 1116 ('repo_group', {'group': 'test_group_for_update'}),
1117 1117 ])
1118 1118 def test_api_update_repo(self, changing_attr, updates):
1119 1119 repo_name = 'api_update_me'
1120 1120 repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
1121 1121 if changing_attr == 'repo_group':
1122 1122 fixture.create_repo_group(updates['group'])
1123 1123
1124 1124 id_, params = _build_data(self.apikey, 'update_repo',
1125 1125 repoid=repo_name, **updates)
1126 1126 response = api_call(self, params)
1127 1127 if changing_attr == 'name':
1128 1128 repo_name = updates['name']
1129 1129 if changing_attr == 'repo_group':
1130 1130 repo_name = '/'.join([updates['group'], repo_name])
1131 1131 try:
1132 1132 expected = {
1133 1133 'msg': 'updated repo ID:%s %s' % (repo.repo_id, repo_name),
1134 1134 'repository': repo.get_api_data()
1135 1135 }
1136 1136 self._compare_ok(id_, expected, given=response.body)
1137 1137 finally:
1138 1138 fixture.destroy_repo(repo_name)
1139 1139 if changing_attr == 'repo_group':
1140 1140 fixture.destroy_repo_group(updates['group'])
1141 1141
1142 1142 def test_api_update_repo_repo_group_does_not_exist(self):
1143 1143 repo_name = 'admin_owned'
1144 1144 fixture.create_repo(repo_name)
1145 1145 updates = {'group': 'test_group_for_update'}
1146 1146 id_, params = _build_data(self.apikey, 'update_repo',
1147 1147 repoid=repo_name, **updates)
1148 1148 response = api_call(self, params)
1149 1149 try:
1150 1150 expected = 'repository group `%s` does not exist' % updates['group']
1151 1151 self._compare_error(id_, expected, given=response.body)
1152 1152 finally:
1153 1153 fixture.destroy_repo(repo_name)
1154 1154
1155 1155 def test_api_update_repo_regular_user_not_allowed(self):
1156 1156 repo_name = 'admin_owned'
1157 1157 fixture.create_repo(repo_name)
1158 1158 updates = {'active': False}
1159 1159 id_, params = _build_data(self.apikey_regular, 'update_repo',
1160 1160 repoid=repo_name, **updates)
1161 1161 response = api_call(self, params)
1162 1162 try:
1163 1163 expected = 'repository `%s` does not exist' % repo_name
1164 1164 self._compare_error(id_, expected, given=response.body)
1165 1165 finally:
1166 1166 fixture.destroy_repo(repo_name)
1167 1167
1168 1168 @mock.patch.object(RepoModel, 'update', crash)
1169 1169 def test_api_update_repo_exception_occured(self):
1170 1170 repo_name = 'api_update_me'
1171 1171 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
1172 1172 id_, params = _build_data(self.apikey, 'update_repo',
1173 1173 repoid=repo_name, owner=TEST_USER_ADMIN_LOGIN,)
1174 1174 response = api_call(self, params)
1175 1175 try:
1176 1176 expected = 'failed to update repo `%s`' % repo_name
1177 1177 self._compare_error(id_, expected, given=response.body)
1178 1178 finally:
1179 1179 fixture.destroy_repo(repo_name)
1180 1180
1181 1181 def test_api_delete_repo(self):
1182 1182 repo_name = 'api_delete_me'
1183 1183 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
1184 1184
1185 1185 id_, params = _build_data(self.apikey, 'delete_repo',
1186 1186 repoid=repo_name, )
1187 1187 response = api_call(self, params)
1188 1188
1189 1189 ret = {
1190 1190 'msg': 'Deleted repository `%s`' % repo_name,
1191 1191 'success': True
1192 1192 }
1193 1193 try:
1194 1194 expected = ret
1195 1195 self._compare_ok(id_, expected, given=response.body)
1196 1196 finally:
1197 1197 fixture.destroy_repo(repo_name)
1198 1198
1199 1199 def test_api_delete_repo_by_non_admin(self):
1200 1200 repo_name = 'api_delete_me'
1201 1201 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,
1202 1202 cur_user=self.TEST_USER_LOGIN)
1203 1203 id_, params = _build_data(self.apikey_regular, 'delete_repo',
1204 1204 repoid=repo_name, )
1205 1205 response = api_call(self, params)
1206 1206
1207 1207 ret = {
1208 1208 'msg': 'Deleted repository `%s`' % repo_name,
1209 1209 'success': True
1210 1210 }
1211 1211 try:
1212 1212 expected = ret
1213 1213 self._compare_ok(id_, expected, given=response.body)
1214 1214 finally:
1215 1215 fixture.destroy_repo(repo_name)
1216 1216
1217 1217 def test_api_delete_repo_by_non_admin_no_permission(self):
1218 1218 repo_name = 'api_delete_me'
1219 1219 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
1220 1220 try:
1221 1221 id_, params = _build_data(self.apikey_regular, 'delete_repo',
1222 1222 repoid=repo_name, )
1223 1223 response = api_call(self, params)
1224 1224 expected = 'repository `%s` does not exist' % (repo_name)
1225 1225 self._compare_error(id_, expected, given=response.body)
1226 1226 finally:
1227 1227 fixture.destroy_repo(repo_name)
1228 1228
1229 1229 def test_api_delete_repo_exception_occurred(self):
1230 1230 repo_name = 'api_delete_me'
1231 1231 fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)
1232 1232 try:
1233 1233 with mock.patch.object(RepoModel, 'delete', crash):
1234 1234 id_, params = _build_data(self.apikey, 'delete_repo',
1235 1235 repoid=repo_name, )
1236 1236 response = api_call(self, params)
1237 1237
1238 1238 expected = 'failed to delete repository `%s`' % repo_name
1239 1239 self._compare_error(id_, expected, given=response.body)
1240 1240 finally:
1241 1241 fixture.destroy_repo(repo_name)
1242 1242
1243 1243 def test_api_fork_repo(self):
1244 1244 fork_name = 'api-repo-fork'
1245 1245 id_, params = _build_data(self.apikey, 'fork_repo',
1246 1246 repoid=self.REPO,
1247 1247 fork_name=fork_name,
1248 1248 owner=TEST_USER_ADMIN_LOGIN,
1249 1249 )
1250 1250 response = api_call(self, params)
1251 1251
1252 1252 ret = {
1253 1253 'msg': 'Created fork of `%s` as `%s`' % (self.REPO,
1254 1254 fork_name),
1255 1255 'success': True,
1256 1256 'task': None,
1257 1257 }
1258 1258 expected = ret
1259 1259 self._compare_ok(id_, expected, given=response.body)
1260 1260 fixture.destroy_repo(fork_name)
1261 1261
1262 1262 def test_api_fork_repo_non_admin(self):
1263 1263 fork_name = 'api-repo-fork'
1264 1264 id_, params = _build_data(self.apikey_regular, 'fork_repo',
1265 1265 repoid=self.REPO,
1266 1266 fork_name=fork_name,
1267 1267 )
1268 1268 response = api_call(self, params)
1269 1269
1270 1270 ret = {
1271 1271 'msg': 'Created fork of `%s` as `%s`' % (self.REPO,
1272 1272 fork_name),
1273 1273 'success': True,
1274 1274 'task': None,
1275 1275 }
1276 1276 expected = ret
1277 1277 self._compare_ok(id_, expected, given=response.body)
1278 1278 fixture.destroy_repo(fork_name)
1279 1279
1280 1280 def test_api_fork_repo_non_admin_specify_owner(self):
1281 1281 fork_name = 'api-repo-fork'
1282 1282 id_, params = _build_data(self.apikey_regular, 'fork_repo',
1283 1283 repoid=self.REPO,
1284 1284 fork_name=fork_name,
1285 1285 owner=TEST_USER_ADMIN_LOGIN,
1286 1286 )
1287 1287 response = api_call(self, params)
1288 1288 expected = 'Only Kallithea admin can specify `owner` param'
1289 1289 self._compare_error(id_, expected, given=response.body)
1290 1290 fixture.destroy_repo(fork_name)
1291 1291
1292 1292 def test_api_fork_repo_non_admin_no_permission_to_fork(self):
1293 1293 RepoModel().grant_user_permission(repo=self.REPO,
1294 1294 user=self.TEST_USER_LOGIN,
1295 1295 perm='repository.none')
1296 1296 fork_name = 'api-repo-fork'
1297 1297 id_, params = _build_data(self.apikey_regular, 'fork_repo',
1298 1298 repoid=self.REPO,
1299 1299 fork_name=fork_name,
1300 1300 )
1301 1301 response = api_call(self, params)
1302 1302 expected = 'repository `%s` does not exist' % (self.REPO)
1303 1303 self._compare_error(id_, expected, given=response.body)
1304 1304 fixture.destroy_repo(fork_name)
1305 1305
1306 1306 def test_api_fork_repo_unknown_owner(self):
1307 1307 fork_name = 'api-repo-fork'
1308 1308 owner = 'i-dont-exist'
1309 1309 id_, params = _build_data(self.apikey, 'fork_repo',
1310 1310 repoid=self.REPO,
1311 1311 fork_name=fork_name,
1312 1312 owner=owner,
1313 1313 )
1314 1314 response = api_call(self, params)
1315 1315 expected = 'user `%s` does not exist' % owner
1316 1316 self._compare_error(id_, expected, given=response.body)
1317 1317
1318 1318 def test_api_fork_repo_fork_exists(self):
1319 1319 fork_name = 'api-repo-fork'
1320 1320 fixture.create_fork(self.REPO, fork_name)
1321 1321
1322 1322 try:
1323 1323 fork_name = 'api-repo-fork'
1324 1324
1325 1325 id_, params = _build_data(self.apikey, 'fork_repo',
1326 1326 repoid=self.REPO,
1327 1327 fork_name=fork_name,
1328 1328 owner=TEST_USER_ADMIN_LOGIN,
1329 1329 )
1330 1330 response = api_call(self, params)
1331 1331
1332 1332 expected = "fork `%s` already exist" % fork_name
1333 1333 self._compare_error(id_, expected, given=response.body)
1334 1334 finally:
1335 1335 fixture.destroy_repo(fork_name)
1336 1336
1337 1337 def test_api_fork_repo_repo_exists(self):
1338 1338 fork_name = self.REPO
1339 1339
1340 1340 id_, params = _build_data(self.apikey, 'fork_repo',
1341 1341 repoid=self.REPO,
1342 1342 fork_name=fork_name,
1343 1343 owner=TEST_USER_ADMIN_LOGIN,
1344 1344 )
1345 1345 response = api_call(self, params)
1346 1346
1347 1347 expected = "repo `%s` already exist" % fork_name
1348 1348 self._compare_error(id_, expected, given=response.body)
1349 1349
1350 1350 @mock.patch.object(RepoModel, 'create_fork', crash)
1351 1351 def test_api_fork_repo_exception_occurred(self):
1352 1352 fork_name = 'api-repo-fork'
1353 1353 id_, params = _build_data(self.apikey, 'fork_repo',
1354 1354 repoid=self.REPO,
1355 1355 fork_name=fork_name,
1356 1356 owner=TEST_USER_ADMIN_LOGIN,
1357 1357 )
1358 1358 response = api_call(self, params)
1359 1359
1360 1360 expected = 'failed to fork repository `%s` as `%s`' % (self.REPO,
1361 1361 fork_name)
1362 1362 self._compare_error(id_, expected, given=response.body)
1363 1363
1364 1364 def test_api_get_user_group(self):
1365 1365 id_, params = _build_data(self.apikey, 'get_user_group',
1366 1366 usergroupid=TEST_USER_GROUP)
1367 1367 response = api_call(self, params)
1368 1368
1369 1369 user_group = UserGroupModel().get_group(TEST_USER_GROUP)
1370 1370 members = []
1371 1371 for user in user_group.members:
1372 1372 user = user.user
1373 1373 members.append(user.get_api_data())
1374 1374
1375 1375 ret = user_group.get_api_data()
1376 1376 ret['members'] = members
1377 1377 expected = ret
1378 1378 self._compare_ok(id_, expected, given=response.body)
1379 1379
1380 1380 def test_api_get_user_groups(self):
1381 1381 gr_name = 'test_user_group2'
1382 1382 make_user_group(gr_name)
1383 1383
1384 1384 id_, params = _build_data(self.apikey, 'get_user_groups', )
1385 1385 response = api_call(self, params)
1386 1386
1387 1387 try:
1388 1388 expected = []
1389 1389 for gr_name in [TEST_USER_GROUP, 'test_user_group2']:
1390 1390 user_group = UserGroupModel().get_group(gr_name)
1391 1391 ret = user_group.get_api_data()
1392 1392 expected.append(ret)
1393 1393 self._compare_ok(id_, expected, given=response.body)
1394 1394 finally:
1395 1395 fixture.destroy_user_group(gr_name)
1396 1396
1397 1397 def test_api_create_user_group(self):
1398 1398 group_name = 'some_new_group'
1399 1399 id_, params = _build_data(self.apikey, 'create_user_group',
1400 1400 group_name=group_name)
1401 1401 response = api_call(self, params)
1402 1402
1403 1403 ret = {
1404 1404 'msg': 'created new user group `%s`' % group_name,
1405 1405 'user_group': jsonify(UserGroupModel() \
1406 1406 .get_by_name(group_name) \
1407 1407 .get_api_data())
1408 1408 }
1409 1409 expected = ret
1410 1410 self._compare_ok(id_, expected, given=response.body)
1411 1411
1412 1412 fixture.destroy_user_group(group_name)
1413 1413
1414 1414 def test_api_get_user_group_that_exist(self):
1415 1415 id_, params = _build_data(self.apikey, 'create_user_group',
1416 1416 group_name=TEST_USER_GROUP)
1417 1417 response = api_call(self, params)
1418 1418
1419 1419 expected = "user group `%s` already exist" % TEST_USER_GROUP
1420 1420 self._compare_error(id_, expected, given=response.body)
1421 1421
1422 1422 @mock.patch.object(UserGroupModel, 'create', crash)
1423 1423 def test_api_get_user_group_exception_occurred(self):
1424 1424 group_name = 'exception_happens'
1425 1425 id_, params = _build_data(self.apikey, 'create_user_group',
1426 1426 group_name=group_name)
1427 1427 response = api_call(self, params)
1428 1428
1429 1429 expected = 'failed to create group `%s`' % group_name
1430 1430 self._compare_error(id_, expected, given=response.body)
1431 1431
1432 1432 @parameterized.expand([('group_name', {'group_name': 'new_group_name'}),
1433 1433 ('group_name', {'group_name': 'test_group_for_update'}),
1434 1434 ('owner', {'owner': TEST_USER_REGULAR_LOGIN}),
1435 1435 ('active', {'active': False}),
1436 1436 ('active', {'active': True})])
1437 1437 def test_api_update_user_group(self, changing_attr, updates):
1438 1438 gr_name = 'test_group_for_update'
1439 1439 user_group = fixture.create_user_group(gr_name)
1440 1440 id_, params = _build_data(self.apikey, 'update_user_group',
1441 1441 usergroupid=gr_name, **updates)
1442 1442 response = api_call(self, params)
1443 1443 try:
1444 1444 expected = {
1445 1445 'msg': 'updated user group ID:%s %s' % (user_group.users_group_id,
1446 1446 user_group.users_group_name),
1447 1447 'user_group': user_group.get_api_data()
1448 1448 }
1449 1449 self._compare_ok(id_, expected, given=response.body)
1450 1450 finally:
1451 1451 if changing_attr == 'group_name':
1452 1452 # switch to updated name for proper cleanup
1453 1453 gr_name = updates['group_name']
1454 1454 fixture.destroy_user_group(gr_name)
1455 1455
1456 1456 @mock.patch.object(UserGroupModel, 'update', crash)
1457 1457 def test_api_update_user_group_exception_occured(self):
1458 1458 gr_name = 'test_group'
1459 1459 fixture.create_user_group(gr_name)
1460 1460 id_, params = _build_data(self.apikey, 'update_user_group',
1461 1461 usergroupid=gr_name)
1462 1462 response = api_call(self, params)
1463 1463 try:
1464 1464 expected = 'failed to update user group `%s`' % gr_name
1465 1465 self._compare_error(id_, expected, given=response.body)
1466 1466 finally:
1467 1467 fixture.destroy_user_group(gr_name)
1468 1468
1469 1469 def test_api_add_user_to_user_group(self):
1470 1470 gr_name = 'test_group'
1471 1471 fixture.create_user_group(gr_name)
1472 1472 id_, params = _build_data(self.apikey, 'add_user_to_user_group',
1473 1473 usergroupid=gr_name,
1474 1474 userid=TEST_USER_ADMIN_LOGIN)
1475 1475 response = api_call(self, params)
1476 1476 try:
1477 1477 expected = {
1478 1478 'msg': 'added member `%s` to user group `%s`' % (
1479 1479 TEST_USER_ADMIN_LOGIN, gr_name),
1480 1480 'success': True
1481 1481 }
1482 1482 self._compare_ok(id_, expected, given=response.body)
1483 1483 finally:
1484 1484 fixture.destroy_user_group(gr_name)
1485 1485
1486 1486 def test_api_add_user_to_user_group_that_doesnt_exist(self):
1487 1487 id_, params = _build_data(self.apikey, 'add_user_to_user_group',
1488 1488 usergroupid='false-group',
1489 1489 userid=TEST_USER_ADMIN_LOGIN)
1490 1490 response = api_call(self, params)
1491 1491
1492 1492 expected = 'user group `%s` does not exist' % 'false-group'
1493 1493 self._compare_error(id_, expected, given=response.body)
1494 1494
1495 1495 @mock.patch.object(UserGroupModel, 'add_user_to_group', crash)
1496 1496 def test_api_add_user_to_user_group_exception_occurred(self):
1497 1497 gr_name = 'test_group'
1498 1498 fixture.create_user_group(gr_name)
1499 1499 id_, params = _build_data(self.apikey, 'add_user_to_user_group',
1500 1500 usergroupid=gr_name,
1501 1501 userid=TEST_USER_ADMIN_LOGIN)
1502 1502 response = api_call(self, params)
1503 1503
1504 1504 try:
1505 1505 expected = 'failed to add member to user group `%s`' % gr_name
1506 1506 self._compare_error(id_, expected, given=response.body)
1507 1507 finally:
1508 1508 fixture.destroy_user_group(gr_name)
1509 1509
1510 1510 def test_api_remove_user_from_user_group(self):
1511 1511 gr_name = 'test_group_3'
1512 1512 gr = fixture.create_user_group(gr_name)
1513 1513 UserGroupModel().add_user_to_group(gr, user=TEST_USER_ADMIN_LOGIN)
1514 1514 Session().commit()
1515 1515 id_, params = _build_data(self.apikey, 'remove_user_from_user_group',
1516 1516 usergroupid=gr_name,
1517 1517 userid=TEST_USER_ADMIN_LOGIN)
1518 1518 response = api_call(self, params)
1519 1519
1520 1520 try:
1521 1521 expected = {
1522 1522 'msg': 'removed member `%s` from user group `%s`' % (
1523 1523 TEST_USER_ADMIN_LOGIN, gr_name
1524 1524 ),
1525 1525 'success': True}
1526 1526 self._compare_ok(id_, expected, given=response.body)
1527 1527 finally:
1528 1528 fixture.destroy_user_group(gr_name)
1529 1529
1530 1530 @mock.patch.object(UserGroupModel, 'remove_user_from_group', crash)
1531 1531 def test_api_remove_user_from_user_group_exception_occurred(self):
1532 1532 gr_name = 'test_group_3'
1533 1533 gr = fixture.create_user_group(gr_name)
1534 1534 UserGroupModel().add_user_to_group(gr, user=TEST_USER_ADMIN_LOGIN)
1535 1535 Session().commit()
1536 1536 id_, params = _build_data(self.apikey, 'remove_user_from_user_group',
1537 1537 usergroupid=gr_name,
1538 1538 userid=TEST_USER_ADMIN_LOGIN)
1539 1539 response = api_call(self, params)
1540 1540 try:
1541 1541 expected = 'failed to remove member from user group `%s`' % gr_name
1542 1542 self._compare_error(id_, expected, given=response.body)
1543 1543 finally:
1544 1544 fixture.destroy_user_group(gr_name)
1545 1545
1546 1546 def test_api_delete_user_group(self):
1547 1547 gr_name = 'test_group'
1548 1548 ugroup = fixture.create_user_group(gr_name)
1549 1549 gr_id = ugroup.users_group_id
1550 1550 id_, params = _build_data(self.apikey, 'delete_user_group',
1551 1551 usergroupid=gr_name,
1552 1552 userid=TEST_USER_ADMIN_LOGIN)
1553 1553 response = api_call(self, params)
1554 1554
1555 1555 try:
1556 1556 expected = {
1557 1557 'user_group': None,
1558 1558 'msg': 'deleted user group ID:%s %s' % (gr_id, gr_name)
1559 1559 }
1560 1560 self._compare_ok(id_, expected, given=response.body)
1561 1561 finally:
1562 1562 if UserGroupModel().get_by_name(gr_name):
1563 1563 fixture.destroy_user_group(gr_name)
1564 1564
1565 1565 def test_api_delete_user_group_that_is_assigned(self):
1566 1566 gr_name = 'test_group'
1567 1567 ugroup = fixture.create_user_group(gr_name)
1568 1568 gr_id = ugroup.users_group_id
1569 1569
1570 1570 ugr_to_perm = RepoModel().grant_user_group_permission(self.REPO, gr_name, 'repository.write')
1571 msg = 'RepoGroup assigned to [%s]' % (ugr_to_perm)
1571 msg = 'User Group assigned to %s' % ugr_to_perm.repository.repo_name
1572 1572
1573 1573 id_, params = _build_data(self.apikey, 'delete_user_group',
1574 1574 usergroupid=gr_name,
1575 1575 userid=TEST_USER_ADMIN_LOGIN)
1576 1576 response = api_call(self, params)
1577 1577
1578 1578 try:
1579 1579 expected = msg
1580 1580 self._compare_error(id_, expected, given=response.body)
1581 1581 finally:
1582 1582 if UserGroupModel().get_by_name(gr_name):
1583 1583 fixture.destroy_user_group(gr_name)
1584 1584
1585 1585 def test_api_delete_user_group_exception_occured(self):
1586 1586 gr_name = 'test_group'
1587 1587 ugroup = fixture.create_user_group(gr_name)
1588 1588 gr_id = ugroup.users_group_id
1589 1589 id_, params = _build_data(self.apikey, 'delete_user_group',
1590 1590 usergroupid=gr_name,
1591 1591 userid=TEST_USER_ADMIN_LOGIN)
1592 1592
1593 1593 try:
1594 1594 with mock.patch.object(UserGroupModel, 'delete', crash):
1595 1595 response = api_call(self, params)
1596 1596 expected = 'failed to delete user group ID:%s %s' % (gr_id, gr_name)
1597 1597 self._compare_error(id_, expected, given=response.body)
1598 1598 finally:
1599 1599 fixture.destroy_user_group(gr_name)
1600 1600
1601 1601 @parameterized.expand([('none', 'repository.none'),
1602 1602 ('read', 'repository.read'),
1603 1603 ('write', 'repository.write'),
1604 1604 ('admin', 'repository.admin')])
1605 1605 def test_api_grant_user_permission(self, name, perm):
1606 1606 id_, params = _build_data(self.apikey,
1607 1607 'grant_user_permission',
1608 1608 repoid=self.REPO,
1609 1609 userid=TEST_USER_ADMIN_LOGIN,
1610 1610 perm=perm)
1611 1611 response = api_call(self, params)
1612 1612
1613 1613 ret = {
1614 1614 'msg': 'Granted perm: `%s` for user: `%s` in repo: `%s`' % (
1615 1615 perm, TEST_USER_ADMIN_LOGIN, self.REPO
1616 1616 ),
1617 1617 'success': True
1618 1618 }
1619 1619 expected = ret
1620 1620 self._compare_ok(id_, expected, given=response.body)
1621 1621
1622 1622 def test_api_grant_user_permission_wrong_permission(self):
1623 1623 perm = 'haha.no.permission'
1624 1624 id_, params = _build_data(self.apikey,
1625 1625 'grant_user_permission',
1626 1626 repoid=self.REPO,
1627 1627 userid=TEST_USER_ADMIN_LOGIN,
1628 1628 perm=perm)
1629 1629 response = api_call(self, params)
1630 1630
1631 1631 expected = 'permission `%s` does not exist' % perm
1632 1632 self._compare_error(id_, expected, given=response.body)
1633 1633
1634 1634 @mock.patch.object(RepoModel, 'grant_user_permission', crash)
1635 1635 def test_api_grant_user_permission_exception_when_adding(self):
1636 1636 perm = 'repository.read'
1637 1637 id_, params = _build_data(self.apikey,
1638 1638 'grant_user_permission',
1639 1639 repoid=self.REPO,
1640 1640 userid=TEST_USER_ADMIN_LOGIN,
1641 1641 perm=perm)
1642 1642 response = api_call(self, params)
1643 1643
1644 1644 expected = 'failed to edit permission for user: `%s` in repo: `%s`' % (
1645 1645 TEST_USER_ADMIN_LOGIN, self.REPO
1646 1646 )
1647 1647 self._compare_error(id_, expected, given=response.body)
1648 1648
1649 1649 def test_api_revoke_user_permission(self):
1650 1650 id_, params = _build_data(self.apikey,
1651 1651 'revoke_user_permission',
1652 1652 repoid=self.REPO,
1653 1653 userid=TEST_USER_ADMIN_LOGIN, )
1654 1654 response = api_call(self, params)
1655 1655
1656 1656 expected = {
1657 1657 'msg': 'Revoked perm for user: `%s` in repo: `%s`' % (
1658 1658 TEST_USER_ADMIN_LOGIN, self.REPO
1659 1659 ),
1660 1660 'success': True
1661 1661 }
1662 1662 self._compare_ok(id_, expected, given=response.body)
1663 1663
1664 1664 @mock.patch.object(RepoModel, 'revoke_user_permission', crash)
1665 1665 def test_api_revoke_user_permission_exception_when_adding(self):
1666 1666 id_, params = _build_data(self.apikey,
1667 1667 'revoke_user_permission',
1668 1668 repoid=self.REPO,
1669 1669 userid=TEST_USER_ADMIN_LOGIN, )
1670 1670 response = api_call(self, params)
1671 1671
1672 1672 expected = 'failed to edit permission for user: `%s` in repo: `%s`' % (
1673 1673 TEST_USER_ADMIN_LOGIN, self.REPO
1674 1674 )
1675 1675 self._compare_error(id_, expected, given=response.body)
1676 1676
1677 1677 @parameterized.expand([('none', 'repository.none'),
1678 1678 ('read', 'repository.read'),
1679 1679 ('write', 'repository.write'),
1680 1680 ('admin', 'repository.admin')])
1681 1681 def test_api_grant_user_group_permission(self, name, perm):
1682 1682 id_, params = _build_data(self.apikey,
1683 1683 'grant_user_group_permission',
1684 1684 repoid=self.REPO,
1685 1685 usergroupid=TEST_USER_GROUP,
1686 1686 perm=perm)
1687 1687 response = api_call(self, params)
1688 1688
1689 1689 ret = {
1690 1690 'msg': 'Granted perm: `%s` for user group: `%s` in repo: `%s`' % (
1691 1691 perm, TEST_USER_GROUP, self.REPO
1692 1692 ),
1693 1693 'success': True
1694 1694 }
1695 1695 expected = ret
1696 1696 self._compare_ok(id_, expected, given=response.body)
1697 1697
1698 1698 def test_api_grant_user_group_permission_wrong_permission(self):
1699 1699 perm = 'haha.no.permission'
1700 1700 id_, params = _build_data(self.apikey,
1701 1701 'grant_user_group_permission',
1702 1702 repoid=self.REPO,
1703 1703 usergroupid=TEST_USER_GROUP,
1704 1704 perm=perm)
1705 1705 response = api_call(self, params)
1706 1706
1707 1707 expected = 'permission `%s` does not exist' % perm
1708 1708 self._compare_error(id_, expected, given=response.body)
1709 1709
1710 1710 @mock.patch.object(RepoModel, 'grant_user_group_permission', crash)
1711 1711 def test_api_grant_user_group_permission_exception_when_adding(self):
1712 1712 perm = 'repository.read'
1713 1713 id_, params = _build_data(self.apikey,
1714 1714 'grant_user_group_permission',
1715 1715 repoid=self.REPO,
1716 1716 usergroupid=TEST_USER_GROUP,
1717 1717 perm=perm)
1718 1718 response = api_call(self, params)
1719 1719
1720 1720 expected = 'failed to edit permission for user group: `%s` in repo: `%s`' % (
1721 1721 TEST_USER_GROUP, self.REPO
1722 1722 )
1723 1723 self._compare_error(id_, expected, given=response.body)
1724 1724
1725 1725 def test_api_revoke_user_group_permission(self):
1726 1726 RepoModel().grant_user_group_permission(repo=self.REPO,
1727 1727 group_name=TEST_USER_GROUP,
1728 1728 perm='repository.read')
1729 1729 Session().commit()
1730 1730 id_, params = _build_data(self.apikey,
1731 1731 'revoke_user_group_permission',
1732 1732 repoid=self.REPO,
1733 1733 usergroupid=TEST_USER_GROUP, )
1734 1734 response = api_call(self, params)
1735 1735
1736 1736 expected = {
1737 1737 'msg': 'Revoked perm for user group: `%s` in repo: `%s`' % (
1738 1738 TEST_USER_GROUP, self.REPO
1739 1739 ),
1740 1740 'success': True
1741 1741 }
1742 1742 self._compare_ok(id_, expected, given=response.body)
1743 1743
1744 1744 @mock.patch.object(RepoModel, 'revoke_user_group_permission', crash)
1745 1745 def test_api_revoke_user_group_permission_exception_when_adding(self):
1746 1746 id_, params = _build_data(self.apikey,
1747 1747 'revoke_user_group_permission',
1748 1748 repoid=self.REPO,
1749 1749 usergroupid=TEST_USER_GROUP, )
1750 1750 response = api_call(self, params)
1751 1751
1752 1752 expected = 'failed to edit permission for user group: `%s` in repo: `%s`' % (
1753 1753 TEST_USER_GROUP, self.REPO
1754 1754 )
1755 1755 self._compare_error(id_, expected, given=response.body)
1756 1756
1757 1757 @parameterized.expand([
1758 1758 ('none', 'group.none', 'none'),
1759 1759 ('read', 'group.read', 'none'),
1760 1760 ('write', 'group.write', 'none'),
1761 1761 ('admin', 'group.admin', 'none'),
1762 1762
1763 1763 ('none', 'group.none', 'all'),
1764 1764 ('read', 'group.read', 'all'),
1765 1765 ('write', 'group.write', 'all'),
1766 1766 ('admin', 'group.admin', 'all'),
1767 1767
1768 1768 ('none', 'group.none', 'repos'),
1769 1769 ('read', 'group.read', 'repos'),
1770 1770 ('write', 'group.write', 'repos'),
1771 1771 ('admin', 'group.admin', 'repos'),
1772 1772
1773 1773 ('none', 'group.none', 'groups'),
1774 1774 ('read', 'group.read', 'groups'),
1775 1775 ('write', 'group.write', 'groups'),
1776 1776 ('admin', 'group.admin', 'groups'),
1777 1777 ])
1778 1778 def test_api_grant_user_permission_to_repo_group(self, name, perm, apply_to_children):
1779 1779 id_, params = _build_data(self.apikey,
1780 1780 'grant_user_permission_to_repo_group',
1781 1781 repogroupid=TEST_REPO_GROUP,
1782 1782 userid=TEST_USER_ADMIN_LOGIN,
1783 1783 perm=perm, apply_to_children=apply_to_children)
1784 1784 response = api_call(self, params)
1785 1785
1786 1786 ret = {
1787 1787 'msg': 'Granted perm: `%s` (recursive:%s) for user: `%s` in repo group: `%s`' % (
1788 1788 perm, apply_to_children, TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1789 1789 ),
1790 1790 'success': True
1791 1791 }
1792 1792 expected = ret
1793 1793 self._compare_ok(id_, expected, given=response.body)
1794 1794
1795 1795 @parameterized.expand([
1796 1796 ('none_fails', 'group.none', 'none', False, False),
1797 1797 ('read_fails', 'group.read', 'none', False, False),
1798 1798 ('write_fails', 'group.write', 'none', False, False),
1799 1799 ('admin_fails', 'group.admin', 'none', False, False),
1800 1800
1801 1801 # with granted perms
1802 1802 ('none_ok', 'group.none', 'none', True, True),
1803 1803 ('read_ok', 'group.read', 'none', True, True),
1804 1804 ('write_ok', 'group.write', 'none', True, True),
1805 1805 ('admin_ok', 'group.admin', 'none', True, True),
1806 1806 ])
1807 1807 def test_api_grant_user_permission_to_repo_group_by_regular_user(
1808 1808 self, name, perm, apply_to_children, grant_admin, access_ok):
1809 1809 if grant_admin:
1810 1810 RepoGroupModel().grant_user_permission(TEST_REPO_GROUP,
1811 1811 self.TEST_USER_LOGIN,
1812 1812 'group.admin')
1813 1813 Session().commit()
1814 1814
1815 1815 id_, params = _build_data(self.apikey_regular,
1816 1816 'grant_user_permission_to_repo_group',
1817 1817 repogroupid=TEST_REPO_GROUP,
1818 1818 userid=TEST_USER_ADMIN_LOGIN,
1819 1819 perm=perm, apply_to_children=apply_to_children)
1820 1820 response = api_call(self, params)
1821 1821 if access_ok:
1822 1822 ret = {
1823 1823 'msg': 'Granted perm: `%s` (recursive:%s) for user: `%s` in repo group: `%s`' % (
1824 1824 perm, apply_to_children, TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1825 1825 ),
1826 1826 'success': True
1827 1827 }
1828 1828 expected = ret
1829 1829 self._compare_ok(id_, expected, given=response.body)
1830 1830 else:
1831 1831 expected = 'repository group `%s` does not exist' % TEST_REPO_GROUP
1832 1832 self._compare_error(id_, expected, given=response.body)
1833 1833
1834 1834 def test_api_grant_user_permission_to_repo_group_wrong_permission(self):
1835 1835 perm = 'haha.no.permission'
1836 1836 id_, params = _build_data(self.apikey,
1837 1837 'grant_user_permission_to_repo_group',
1838 1838 repogroupid=TEST_REPO_GROUP,
1839 1839 userid=TEST_USER_ADMIN_LOGIN,
1840 1840 perm=perm)
1841 1841 response = api_call(self, params)
1842 1842
1843 1843 expected = 'permission `%s` does not exist' % perm
1844 1844 self._compare_error(id_, expected, given=response.body)
1845 1845
1846 1846 @mock.patch.object(RepoGroupModel, 'grant_user_permission', crash)
1847 1847 def test_api_grant_user_permission_to_repo_group_exception_when_adding(self):
1848 1848 perm = 'group.read'
1849 1849 id_, params = _build_data(self.apikey,
1850 1850 'grant_user_permission_to_repo_group',
1851 1851 repogroupid=TEST_REPO_GROUP,
1852 1852 userid=TEST_USER_ADMIN_LOGIN,
1853 1853 perm=perm)
1854 1854 response = api_call(self, params)
1855 1855
1856 1856 expected = 'failed to edit permission for user: `%s` in repo group: `%s`' % (
1857 1857 TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1858 1858 )
1859 1859 self._compare_error(id_, expected, given=response.body)
1860 1860
1861 1861 @parameterized.expand([
1862 1862 ('none', 'none'),
1863 1863 ('all', 'all'),
1864 1864 ('repos', 'repos'),
1865 1865 ('groups', 'groups'),
1866 1866 ])
1867 1867 def test_api_revoke_user_permission_from_repo_group(self, name, apply_to_children):
1868 1868 RepoGroupModel().grant_user_permission(repo_group=TEST_REPO_GROUP,
1869 1869 user=TEST_USER_ADMIN_LOGIN,
1870 1870 perm='group.read',)
1871 1871 Session().commit()
1872 1872
1873 1873 id_, params = _build_data(self.apikey,
1874 1874 'revoke_user_permission_from_repo_group',
1875 1875 repogroupid=TEST_REPO_GROUP,
1876 1876 userid=TEST_USER_ADMIN_LOGIN,
1877 1877 apply_to_children=apply_to_children,)
1878 1878 response = api_call(self, params)
1879 1879
1880 1880 expected = {
1881 1881 'msg': 'Revoked perm (recursive:%s) for user: `%s` in repo group: `%s`' % (
1882 1882 apply_to_children, TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1883 1883 ),
1884 1884 'success': True
1885 1885 }
1886 1886 self._compare_ok(id_, expected, given=response.body)
1887 1887
1888 1888 @parameterized.expand([
1889 1889 ('none', 'none', False, False),
1890 1890 ('all', 'all', False, False),
1891 1891 ('repos', 'repos', False, False),
1892 1892 ('groups', 'groups', False, False),
1893 1893
1894 1894 # after granting admin rights
1895 1895 ('none', 'none', False, False),
1896 1896 ('all', 'all', False, False),
1897 1897 ('repos', 'repos', False, False),
1898 1898 ('groups', 'groups', False, False),
1899 1899 ])
1900 1900 def test_api_revoke_user_permission_from_repo_group_by_regular_user(
1901 1901 self, name, apply_to_children, grant_admin, access_ok):
1902 1902 RepoGroupModel().grant_user_permission(repo_group=TEST_REPO_GROUP,
1903 1903 user=TEST_USER_ADMIN_LOGIN,
1904 1904 perm='group.read',)
1905 1905 Session().commit()
1906 1906
1907 1907 if grant_admin:
1908 1908 RepoGroupModel().grant_user_permission(TEST_REPO_GROUP,
1909 1909 self.TEST_USER_LOGIN,
1910 1910 'group.admin')
1911 1911 Session().commit()
1912 1912
1913 1913 id_, params = _build_data(self.apikey_regular,
1914 1914 'revoke_user_permission_from_repo_group',
1915 1915 repogroupid=TEST_REPO_GROUP,
1916 1916 userid=TEST_USER_ADMIN_LOGIN,
1917 1917 apply_to_children=apply_to_children,)
1918 1918 response = api_call(self, params)
1919 1919 if access_ok:
1920 1920 expected = {
1921 1921 'msg': 'Revoked perm (recursive:%s) for user: `%s` in repo group: `%s`' % (
1922 1922 apply_to_children, TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1923 1923 ),
1924 1924 'success': True
1925 1925 }
1926 1926 self._compare_ok(id_, expected, given=response.body)
1927 1927 else:
1928 1928 expected = 'repository group `%s` does not exist' % TEST_REPO_GROUP
1929 1929 self._compare_error(id_, expected, given=response.body)
1930 1930
1931 1931 @mock.patch.object(RepoGroupModel, 'revoke_user_permission', crash)
1932 1932 def test_api_revoke_user_permission_from_repo_group_exception_when_adding(self):
1933 1933 id_, params = _build_data(self.apikey,
1934 1934 'revoke_user_permission_from_repo_group',
1935 1935 repogroupid=TEST_REPO_GROUP,
1936 1936 userid=TEST_USER_ADMIN_LOGIN, )
1937 1937 response = api_call(self, params)
1938 1938
1939 1939 expected = 'failed to edit permission for user: `%s` in repo group: `%s`' % (
1940 1940 TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
1941 1941 )
1942 1942 self._compare_error(id_, expected, given=response.body)
1943 1943
1944 1944 @parameterized.expand([
1945 1945 ('none', 'group.none', 'none'),
1946 1946 ('read', 'group.read', 'none'),
1947 1947 ('write', 'group.write', 'none'),
1948 1948 ('admin', 'group.admin', 'none'),
1949 1949
1950 1950 ('none', 'group.none', 'all'),
1951 1951 ('read', 'group.read', 'all'),
1952 1952 ('write', 'group.write', 'all'),
1953 1953 ('admin', 'group.admin', 'all'),
1954 1954
1955 1955 ('none', 'group.none', 'repos'),
1956 1956 ('read', 'group.read', 'repos'),
1957 1957 ('write', 'group.write', 'repos'),
1958 1958 ('admin', 'group.admin', 'repos'),
1959 1959
1960 1960 ('none', 'group.none', 'groups'),
1961 1961 ('read', 'group.read', 'groups'),
1962 1962 ('write', 'group.write', 'groups'),
1963 1963 ('admin', 'group.admin', 'groups'),
1964 1964 ])
1965 1965 def test_api_grant_user_group_permission_to_repo_group(self, name, perm, apply_to_children):
1966 1966 id_, params = _build_data(self.apikey,
1967 1967 'grant_user_group_permission_to_repo_group',
1968 1968 repogroupid=TEST_REPO_GROUP,
1969 1969 usergroupid=TEST_USER_GROUP,
1970 1970 perm=perm,
1971 1971 apply_to_children=apply_to_children,)
1972 1972 response = api_call(self, params)
1973 1973
1974 1974 ret = {
1975 1975 'msg': 'Granted perm: `%s` (recursive:%s) for user group: `%s` in repo group: `%s`' % (
1976 1976 perm, apply_to_children, TEST_USER_GROUP, TEST_REPO_GROUP
1977 1977 ),
1978 1978 'success': True
1979 1979 }
1980 1980 expected = ret
1981 1981 self._compare_ok(id_, expected, given=response.body)
1982 1982
1983 1983 @parameterized.expand([
1984 1984 ('none_fails', 'group.none', 'none', False, False),
1985 1985 ('read_fails', 'group.read', 'none', False, False),
1986 1986 ('write_fails', 'group.write', 'none', False, False),
1987 1987 ('admin_fails', 'group.admin', 'none', False, False),
1988 1988
1989 1989 # with granted perms
1990 1990 ('none_ok', 'group.none', 'none', True, True),
1991 1991 ('read_ok', 'group.read', 'none', True, True),
1992 1992 ('write_ok', 'group.write', 'none', True, True),
1993 1993 ('admin_ok', 'group.admin', 'none', True, True),
1994 1994 ])
1995 1995 def test_api_grant_user_group_permission_to_repo_group_by_regular_user(
1996 1996 self, name, perm, apply_to_children, grant_admin, access_ok):
1997 1997 if grant_admin:
1998 1998 RepoGroupModel().grant_user_permission(TEST_REPO_GROUP,
1999 1999 self.TEST_USER_LOGIN,
2000 2000 'group.admin')
2001 2001 Session().commit()
2002 2002
2003 2003 id_, params = _build_data(self.apikey_regular,
2004 2004 'grant_user_group_permission_to_repo_group',
2005 2005 repogroupid=TEST_REPO_GROUP,
2006 2006 usergroupid=TEST_USER_GROUP,
2007 2007 perm=perm,
2008 2008 apply_to_children=apply_to_children,)
2009 2009 response = api_call(self, params)
2010 2010 if access_ok:
2011 2011 ret = {
2012 2012 'msg': 'Granted perm: `%s` (recursive:%s) for user group: `%s` in repo group: `%s`' % (
2013 2013 perm, apply_to_children, TEST_USER_GROUP, TEST_REPO_GROUP
2014 2014 ),
2015 2015 'success': True
2016 2016 }
2017 2017 expected = ret
2018 2018 self._compare_ok(id_, expected, given=response.body)
2019 2019 else:
2020 2020 expected = 'repository group `%s` does not exist' % TEST_REPO_GROUP
2021 2021 self._compare_error(id_, expected, given=response.body)
2022 2022
2023 2023 def test_api_grant_user_group_permission_to_repo_group_wrong_permission(self):
2024 2024 perm = 'haha.no.permission'
2025 2025 id_, params = _build_data(self.apikey,
2026 2026 'grant_user_group_permission_to_repo_group',
2027 2027 repogroupid=TEST_REPO_GROUP,
2028 2028 usergroupid=TEST_USER_GROUP,
2029 2029 perm=perm)
2030 2030 response = api_call(self, params)
2031 2031
2032 2032 expected = 'permission `%s` does not exist' % perm
2033 2033 self._compare_error(id_, expected, given=response.body)
2034 2034
2035 2035 @mock.patch.object(RepoGroupModel, 'grant_user_group_permission', crash)
2036 2036 def test_api_grant_user_group_permission_exception_when_adding(self):
2037 2037 perm = 'group.read'
2038 2038 id_, params = _build_data(self.apikey,
2039 2039 'grant_user_group_permission_to_repo_group',
2040 2040 repogroupid=TEST_REPO_GROUP,
2041 2041 usergroupid=TEST_USER_GROUP,
2042 2042 perm=perm)
2043 2043 response = api_call(self, params)
2044 2044
2045 2045 expected = 'failed to edit permission for user group: `%s` in repo group: `%s`' % (
2046 2046 TEST_USER_GROUP, TEST_REPO_GROUP
2047 2047 )
2048 2048 self._compare_error(id_, expected, given=response.body)
2049 2049
2050 2050 @parameterized.expand([
2051 2051 ('none', 'none'),
2052 2052 ('all', 'all'),
2053 2053 ('repos', 'repos'),
2054 2054 ('groups', 'groups'),
2055 2055 ])
2056 2056 def test_api_revoke_user_group_permission_from_repo_group(self, name, apply_to_children):
2057 2057 RepoGroupModel().grant_user_group_permission(repo_group=TEST_REPO_GROUP,
2058 2058 group_name=TEST_USER_GROUP,
2059 2059 perm='group.read',)
2060 2060 Session().commit()
2061 2061 id_, params = _build_data(self.apikey,
2062 2062 'revoke_user_group_permission_from_repo_group',
2063 2063 repogroupid=TEST_REPO_GROUP,
2064 2064 usergroupid=TEST_USER_GROUP,
2065 2065 apply_to_children=apply_to_children,)
2066 2066 response = api_call(self, params)
2067 2067
2068 2068 expected = {
2069 2069 'msg': 'Revoked perm (recursive:%s) for user group: `%s` in repo group: `%s`' % (
2070 2070 apply_to_children, TEST_USER_GROUP, TEST_REPO_GROUP
2071 2071 ),
2072 2072 'success': True
2073 2073 }
2074 2074 self._compare_ok(id_, expected, given=response.body)
2075 2075
2076 2076 @parameterized.expand([
2077 2077 ('none', 'none', False, False),
2078 2078 ('all', 'all', False, False),
2079 2079 ('repos', 'repos', False, False),
2080 2080 ('groups', 'groups', False, False),
2081 2081
2082 2082 # after granting admin rights
2083 2083 ('none', 'none', False, False),
2084 2084 ('all', 'all', False, False),
2085 2085 ('repos', 'repos', False, False),
2086 2086 ('groups', 'groups', False, False),
2087 2087 ])
2088 2088 def test_api_revoke_user_group_permission_from_repo_group_by_regular_user(
2089 2089 self, name, apply_to_children, grant_admin, access_ok):
2090 2090 RepoGroupModel().grant_user_permission(repo_group=TEST_REPO_GROUP,
2091 2091 user=TEST_USER_ADMIN_LOGIN,
2092 2092 perm='group.read',)
2093 2093 Session().commit()
2094 2094
2095 2095 if grant_admin:
2096 2096 RepoGroupModel().grant_user_permission(TEST_REPO_GROUP,
2097 2097 self.TEST_USER_LOGIN,
2098 2098 'group.admin')
2099 2099 Session().commit()
2100 2100
2101 2101 id_, params = _build_data(self.apikey_regular,
2102 2102 'revoke_user_group_permission_from_repo_group',
2103 2103 repogroupid=TEST_REPO_GROUP,
2104 2104 usergroupid=TEST_USER_GROUP,
2105 2105 apply_to_children=apply_to_children,)
2106 2106 response = api_call(self, params)
2107 2107 if access_ok:
2108 2108 expected = {
2109 2109 'msg': 'Revoked perm (recursive:%s) for user group: `%s` in repo group: `%s`' % (
2110 2110 apply_to_children, TEST_USER_ADMIN_LOGIN, TEST_REPO_GROUP
2111 2111 ),
2112 2112 'success': True
2113 2113 }
2114 2114 self._compare_ok(id_, expected, given=response.body)
2115 2115 else:
2116 2116 expected = 'repository group `%s` does not exist' % TEST_REPO_GROUP
2117 2117 self._compare_error(id_, expected, given=response.body)
2118 2118
2119 2119 @mock.patch.object(RepoGroupModel, 'revoke_user_group_permission', crash)
2120 2120 def test_api_revoke_user_group_permission_from_repo_group_exception_when_adding(self):
2121 2121 id_, params = _build_data(self.apikey, 'revoke_user_group_permission_from_repo_group',
2122 2122 repogroupid=TEST_REPO_GROUP,
2123 2123 usergroupid=TEST_USER_GROUP,)
2124 2124 response = api_call(self, params)
2125 2125
2126 2126 expected = 'failed to edit permission for user group: `%s` in repo group: `%s`' % (
2127 2127 TEST_USER_GROUP, TEST_REPO_GROUP
2128 2128 )
2129 2129 self._compare_error(id_, expected, given=response.body)
2130 2130
2131 2131 def test_api_get_gist(self):
2132 2132 gist = fixture.create_gist()
2133 2133 gist_id = gist.gist_access_id
2134 2134 gist_created_on = gist.created_on
2135 2135 id_, params = _build_data(self.apikey, 'get_gist',
2136 2136 gistid=gist_id, )
2137 2137 response = api_call(self, params)
2138 2138
2139 2139 expected = {
2140 2140 'access_id': gist_id,
2141 2141 'created_on': gist_created_on,
2142 2142 'description': 'new-gist',
2143 2143 'expires': -1.0,
2144 2144 'gist_id': int(gist_id),
2145 2145 'type': 'public',
2146 2146 'url': 'http://localhost:80/_admin/gists/%s' % gist_id
2147 2147 }
2148 2148
2149 2149 self._compare_ok(id_, expected, given=response.body)
2150 2150
2151 2151 def test_api_get_gist_that_does_not_exist(self):
2152 2152 id_, params = _build_data(self.apikey_regular, 'get_gist',
2153 2153 gistid='12345', )
2154 2154 response = api_call(self, params)
2155 2155 expected = 'gist `%s` does not exist' % ('12345',)
2156 2156 self._compare_error(id_, expected, given=response.body)
2157 2157
2158 2158 def test_api_get_gist_private_gist_without_permission(self):
2159 2159 gist = fixture.create_gist()
2160 2160 gist_id = gist.gist_access_id
2161 2161 gist_created_on = gist.created_on
2162 2162 id_, params = _build_data(self.apikey_regular, 'get_gist',
2163 2163 gistid=gist_id, )
2164 2164 response = api_call(self, params)
2165 2165
2166 2166 expected = 'gist `%s` does not exist' % gist_id
2167 2167 self._compare_error(id_, expected, given=response.body)
2168 2168
2169 2169 def test_api_get_gists(self):
2170 2170 fixture.create_gist()
2171 2171 fixture.create_gist()
2172 2172
2173 2173 id_, params = _build_data(self.apikey, 'get_gists')
2174 2174 response = api_call(self, params)
2175 2175 expected = response.json
2176 2176 self.assertEqual(len(response.json['result']), 2)
2177 2177 #self._compare_ok(id_, expected, given=response.body)
2178 2178
2179 2179 def test_api_get_gists_regular_user(self):
2180 2180 # by admin
2181 2181 fixture.create_gist()
2182 2182 fixture.create_gist()
2183 2183
2184 2184 # by reg user
2185 2185 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2186 2186 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2187 2187 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2188 2188
2189 2189 id_, params = _build_data(self.apikey_regular, 'get_gists')
2190 2190 response = api_call(self, params)
2191 2191 expected = response.json
2192 2192 self.assertEqual(len(response.json['result']), 3)
2193 2193 #self._compare_ok(id_, expected, given=response.body)
2194 2194
2195 2195 def test_api_get_gists_only_for_regular_user(self):
2196 2196 # by admin
2197 2197 fixture.create_gist()
2198 2198 fixture.create_gist()
2199 2199
2200 2200 # by reg user
2201 2201 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2202 2202 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2203 2203 fixture.create_gist(owner=self.TEST_USER_LOGIN)
2204 2204
2205 2205 id_, params = _build_data(self.apikey, 'get_gists',
2206 2206 userid=self.TEST_USER_LOGIN)
2207 2207 response = api_call(self, params)
2208 2208 expected = response.json
2209 2209 self.assertEqual(len(response.json['result']), 3)
2210 2210 #self._compare_ok(id_, expected, given=response.body)
2211 2211
2212 2212 def test_api_get_gists_regular_user_with_different_userid(self):
2213 2213 id_, params = _build_data(self.apikey_regular, 'get_gists',
2214 2214 userid=TEST_USER_ADMIN_LOGIN)
2215 2215 response = api_call(self, params)
2216 2216 expected = 'userid is not the same as your user'
2217 2217 self._compare_error(id_, expected, given=response.body)
2218 2218
2219 2219 def test_api_create_gist(self):
2220 2220 id_, params = _build_data(self.apikey_regular, 'create_gist',
2221 2221 lifetime=10,
2222 2222 description='foobar-gist',
2223 2223 gist_type='public',
2224 2224 files={'foobar': {'content': 'foo'}})
2225 2225 response = api_call(self, params)
2226 2226 response_json = response.json
2227 2227 expected = {
2228 2228 'gist': {
2229 2229 'access_id': response_json['result']['gist']['access_id'],
2230 2230 'created_on': response_json['result']['gist']['created_on'],
2231 2231 'description': 'foobar-gist',
2232 2232 'expires': response_json['result']['gist']['expires'],
2233 2233 'gist_id': response_json['result']['gist']['gist_id'],
2234 2234 'type': 'public',
2235 2235 'url': response_json['result']['gist']['url']
2236 2236 },
2237 2237 'msg': 'created new gist'
2238 2238 }
2239 2239 self._compare_ok(id_, expected, given=response.body)
2240 2240
2241 2241 @mock.patch.object(GistModel, 'create', crash)
2242 2242 def test_api_create_gist_exception_occured(self):
2243 2243 id_, params = _build_data(self.apikey_regular, 'create_gist',
2244 2244 files={})
2245 2245 response = api_call(self, params)
2246 2246 expected = 'failed to create gist'
2247 2247 self._compare_error(id_, expected, given=response.body)
2248 2248
2249 2249 def test_api_delete_gist(self):
2250 2250 gist_id = fixture.create_gist().gist_access_id
2251 2251 id_, params = _build_data(self.apikey, 'delete_gist',
2252 2252 gistid=gist_id)
2253 2253 response = api_call(self, params)
2254 2254 expected = {'gist': None, 'msg': 'deleted gist ID:%s' % gist_id}
2255 2255 self._compare_ok(id_, expected, given=response.body)
2256 2256
2257 2257 def test_api_delete_gist_regular_user(self):
2258 2258 gist_id = fixture.create_gist(owner=self.TEST_USER_LOGIN).gist_access_id
2259 2259 id_, params = _build_data(self.apikey_regular, 'delete_gist',
2260 2260 gistid=gist_id)
2261 2261 response = api_call(self, params)
2262 2262 expected = {'gist': None, 'msg': 'deleted gist ID:%s' % gist_id}
2263 2263 self._compare_ok(id_, expected, given=response.body)
2264 2264
2265 2265 def test_api_delete_gist_regular_user_no_permission(self):
2266 2266 gist_id = fixture.create_gist().gist_access_id
2267 2267 id_, params = _build_data(self.apikey_regular, 'delete_gist',
2268 2268 gistid=gist_id)
2269 2269 response = api_call(self, params)
2270 2270 expected = 'gist `%s` does not exist' % (gist_id,)
2271 2271 self._compare_error(id_, expected, given=response.body)
2272 2272
2273 2273 @mock.patch.object(GistModel, 'delete', crash)
2274 2274 def test_api_delete_gist_exception_occured(self):
2275 2275 gist_id = fixture.create_gist().gist_access_id
2276 2276 id_, params = _build_data(self.apikey, 'delete_gist',
2277 2277 gistid=gist_id)
2278 2278 response = api_call(self, params)
2279 2279 expected = 'failed to delete gist ID:%s' % (gist_id,)
2280 2280 self._compare_error(id_, expected, given=response.body)
2281 2281
2282 2282 def test_api_get_ip(self):
2283 2283 id_, params = _build_data(self.apikey, 'get_ip')
2284 2284 response = api_call(self, params)
2285 2285 expected = {
2286 2286 'server_ip_addr': '0.0.0.0',
2287 2287 'user_ips': []
2288 2288 }
2289 2289 self._compare_ok(id_, expected, given=response.body)
2290 2290
2291 2291 def test_api_get_server_info(self):
2292 2292 id_, params = _build_data(self.apikey, 'get_server_info')
2293 2293 response = api_call(self, params)
2294 2294 expected = Setting.get_server_info()
2295 2295 self._compare_ok(id_, expected, given=response.body)
General Comments 0
You need to be logged in to leave comments. Login now