# -*- coding: utf-8 -*- """ (c) 2015-2016 - Copyright Red Hat Inc Authors: Pierre-Yves Chibon """ __requires__ = ['SQLAlchemy >= 0.8'] import pkg_resources import unittest import shutil import sys import os import json from mock import patch sys.path.insert(0, os.path.join(os.path.dirname( os.path.abspath(__file__)), '..')) import pagure.lib import tests class PagureFlaskGroupstests(tests.Modeltests): """ Tests for flask groups controller of pagure """ def test_group_lists(self): """ Test the group_lists endpoint. """ output = self.app.get('/groups') self.assertIn( '

\n' ' Groups 0', output.data) def test_add_group_index_auth(self): """ Test the presence of the add group button on the front page. """ user = tests.FakeUser(username='foo') with tests.user_set(self.app.application, user): output = self.app.get('/') self.assertEqual(output.status_code, 200) self.assertIn( 'title="Create New Group" aria-hidden="true">', output.data) @patch.dict('pagure.config.config', {'ENABLE_GROUP_MNGT': False}) def test_not_add_group_index_auth(self): """ Test the presence of the add group button on the front page. """ user = tests.FakeUser(username='foo') with tests.user_set(self.app.application, user): output = self.app.get('/') self.assertEqual(output.status_code, 200) self.assertNotIn( 'title="Create New Group" aria-hidden="true">', output.data) def test_add_group(self): """ Test the add_group endpoint. """ output = self.app.get('/group/add') self.assertEqual(output.status_code, 302) user = tests.FakeUser() with tests.user_set(self.app.application, user): output = self.app.get('/group/add') self.assertEqual(output.status_code, 403) user.username = 'pingou' with tests.user_set(self.app.application, user): output = self.app.get('/group/add') self.assertEqual(output.status_code, 200) self.assertIn('Create new group', output.data) self.assertNotIn( '', output.data) csrf_token = output.data.split( 'name="csrf_token" type="hidden" value="')[1].split('">')[0] data = { } # Insufficient input output = self.app.post('/group/add', data=data) self.assertEqual(output.status_code, 200) self.assertIn('Create new group', output.data) self.assertEqual(output.data.count( 'This field is required.'), 3) data = { 'group_name': 'test_group', 'display_name': 'Test Group', 'description': 'This is a group for the tests', } # Missing CSRF output = self.app.post('/group/add', data=data) self.assertEqual(output.status_code, 200) self.assertIn('Create new group', output.data) self.assertEqual(output.data.count( 'This field is required.'), 0) data['csrf_token'] = csrf_token # All good output = self.app.post( '/group/add', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n User `pingou` added to ' 'the group `test_group`.', output.data) self.assertIn( '\n Group `test_group` created.', output.data) self.assertIn( '

\n' ' Groups 1', output.data) user = tests.FakeUser( username='pingou', groups=pagure.config.config['ADMIN_GROUP']) with tests.user_set(self.app.application, user): output = self.app.get('/group/add') self.assertEqual(output.status_code, 200) self.assertIn('Create new group', output.data) self.assertIn('', output.data) data = { 'group_name': 'test_admin_group', 'group_type': 'admin', 'display_name': 'Test Admin Group', 'description': 'This is another group for the tests', 'csrf_token': csrf_token, } # All good output = self.app.post( '/group/add', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n User `pingou` added to ' 'the group `test_admin_group`.', output.data) self.assertIn( '\n Group `test_admin_group` ' 'created.',output.data) self.assertIn( '

\n' ' Groups 2', output.data) def test_edit_group(self): """ Test the edit_group endpoint. """ output = self.app.get('/group/test_group/edit') self.assertEqual(output.status_code, 302) user = tests.FakeUser() with tests.user_set(self.app.application, user): output = self.app.get('/group/test_group/edit') self.assertEqual(output.status_code, 404) self.assertIn('

Group not found

', output.data) self.test_add_group() user.username = 'foo' with tests.user_set(self.app.application, user): output = self.app.get('/group/foo/edit') self.assertEqual(output.status_code, 404) self.assertIn('

Group not found

', output.data) output = self.app.get('/group/test_group/edit') self.assertEqual(output.status_code, 200) self.assertIn( 'Edit group: test_group - Pagure', output.data) self.assertIn( '
', output.data) self.assertIn( '', output.data) csrf_token = output.data.split( 'name="csrf_token" type="hidden" value="')[1].split('">')[0] # Missing CSRF data = { 'group_name': 'test_group', 'display_name': 'Test Group edited', 'description': 'This is a group for the tests edited', } output = self.app.post( '/group/test_group/edit', data=data, follow_redirects=True) #print output.data self.assertEqual(output.status_code, 200) self.assertIn( 'Edit group: test_group - Pagure', output.data) self.assertIn( '', output.data) self.assertIn( '', output.data) # User not allowed data['csrf_token'] = csrf_token output = self.app.post( '/group/test_group/edit', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( 'Group test_group - Pagure', output.data) self.assertIn( '\n You are not ' 'allowed to edit this group', output.data) self.assertIn( ' ' ' Test Group', output.data) user.username = 'pingou' with tests.user_set(self.app.application, user): # Invalid repo output = self.app.post( '/group/bar/edit', data=data, follow_redirects=True) self.assertEqual(output.status_code, 404) self.assertIn('

Group not found

', output.data) output = self.app.post( '/group/test_group/edit', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( 'Group test_group - Pagure', output.data) self.assertIn( ' ' ' Test Group', output.data) self.assertIn( 'Group "Test Group edited" (test_group) edited', output.data) def test_group_delete(self): """ Test the group_delete endpoint. """ output = self.app.post('/group/foo/delete') self.assertEqual(output.status_code, 302) user = tests.FakeUser() with tests.user_set(self.app.application, user): output = self.app.post('/group/foo/delete', follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '

No groups have been created on this pagure instance ' 'yet

', output.data) self.assertIn( '

\n' ' Groups 0', output.data) self.test_add_group() with tests.user_set(self.app.application, user): output = self.app.post('/group/foo/delete', follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '

\n' ' Groups 1', output.data) output = self.app.get('/new/') csrf_token = output.data.split( 'name="csrf_token" type="hidden" value="')[1].split('">')[0] user.username = 'foo' with tests.user_set(self.app.application, user): data = { 'csrf_token': csrf_token, } output = self.app.post( '/group/bar/delete', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n No group `bar` found', output.data) self.assertIn( '

\n' ' Groups 1', output.data) output = self.app.post( '/group/test_group/delete', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n You are not allowed to ' 'delete the group test_group', output.data) self.assertIn( '

\n' ' Groups 1', output.data) user.username = 'bar' with tests.user_set(self.app.application, user): output = self.app.post( '/group/test_group/delete', data=data, follow_redirects=True) self.assertEqual(output.status_code, 404) user.username = 'pingou' with tests.user_set(self.app.application, user): output = self.app.post( '/group/test_group/delete', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n Group `test_group` has ' 'been deleted', output.data) self.assertIn( '

\n' ' Groups 0', output.data) def test_view_group(self): """ Test the view_group endpoint. """ output = self.app.get('/group/foo') self.assertEqual(output.status_code, 404) self.test_add_group() user = tests.FakeUser() with tests.user_set(self.app.application, user): output = self.app.get('/group/test_group') self.assertEqual(output.status_code, 200) self.assertIn( '  ' 'Test Group', output.data) output = self.app.get('/group/test_admin_group') self.assertEqual(output.status_code, 404) user = tests.FakeUser( username='pingou', groups=pagure.config.config['ADMIN_GROUP']) with tests.user_set(self.app.application, user): # Admin can see group of type admins output = self.app.get('/group/test_admin_group') self.assertEqual(output.status_code, 200) self.assertIn( '  ' 'Test Admin Group', output.data) self.assertEqual(output.data.count('')[0] # No CSRF data = { 'user': 'bar' } output = self.app.post('/group/test_admin_group', data=data) self.assertEqual(output.status_code, 200) self.assertIn( '  ' 'Test Admin Group', output.data) self.assertEqual(output.data.count('  ' 'Test Admin Group', output.data) self.assertEqual(output.data.count('  ' 'Test Admin Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('')[0] data = {'csrf_token': csrf_token} output = self.app.post( '/group/test_group/bar/delete', data=data, follow_redirects=True) self.assertEqual(output.status_code, 200) self.assertIn( '\n No user `bar` found', output.data) self.assertIn( '  ' 'Test Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('  ' 'Test Group', output.data) self.assertEqual(output.data.count('