123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523 |
- # -*- coding: utf-8 -*-
- """
- (c) 2018 - Copyright Red Hat Inc
- Authors:
- Pierre-Yves Chibon <pingou@pingoured.fr>
- """
- from __future__ import unicode_literals, absolute_import
- import unittest
- import sys
- import os
- from mock import patch, MagicMock
- sys.path.insert(
- 0, os.path.join(os.path.dirname(os.path.abspath(__file__)), "..")
- )
- import pagure.lib.query
- import tests
- class PagureFlaskAppBrowsetests(tests.Modeltests):
- """Tests for the browse pages of flask app controller of pagure"""
- def setUp(self):
- """Set up the environnment, ran before every tests."""
- super(PagureFlaskAppBrowsetests, self).setUp()
- tests.create_projects(self.session)
- # Add a 3rd project with a long description
- item = pagure.lib.model.Project(
- user_id=2, # foo
- name="test3",
- description="test project #3 with a very long description",
- hook_token="aaabbbeeefff",
- private=True,
- )
- self.session.add(item)
- self.session.commit()
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_logged_in_private_project(self):
- """Test the browse project endpoint when logged in with a private
- project."""
- user = tests.FakeUser(username="foo")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">4</span></h3>',
- output_text,
- )
- self.assertIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 1)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_unauth_private_project(self):
- """Test the browse project endpoint when logged out with a private
- project."""
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_logged_in_no_access_private_project(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project."""
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_logged_in_ticket_private_project(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project."""
- # Add user 'pingou' with ticket access on repo
- repo = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_user_to_project(
- self.session, repo, new_user="pingou", user="foo", access="ticket"
- )
- self.assertEqual(msg, "User added")
- self.session.commit()
- # Ticket access level isn't sufficient to access private projects
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_logged_in_commit_private_project(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project."""
- # Add user 'pingou' with commit access on repo
- repo = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_user_to_project(
- self.session, repo, new_user="pingou", user="foo", access="commit"
- )
- self.assertEqual(msg, "User added")
- self.session.commit()
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">4</span></h3>',
- output_text,
- )
- self.assertIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 1)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_logged_in_admin_private_project(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project."""
- # Add user 'pingou' with admin access on repo
- repo = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_user_to_project(
- self.session, repo, new_user="pingou", user="foo", access="admin"
- )
- self.assertEqual(msg, "User added")
- self.session.commit()
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">4</span></h3>',
- output_text,
- )
- self.assertIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 1)
- class PagureFlaskAppBrowseGroupAdmintests(tests.Modeltests):
- """Tests for the browse pages of flask app controller of pagure"""
- def setUp(self):
- """Set up the environnment, ran before every tests."""
- super(PagureFlaskAppBrowseGroupAdmintests, self).setUp()
- tests.create_projects(self.session)
- # Add a 3rd project with a long description
- item = pagure.lib.model.Project(
- user_id=2, # foo
- name="test3",
- description="test project #3 with a very long description",
- hook_token="aaabbbeeefff",
- private=True,
- )
- self.session.add(item)
- self.session.commit()
- # Create a group
- msg = pagure.lib.query.add_group(
- self.session,
- group_name="JL",
- display_name="Justice League",
- description="Nope, it's not JLA anymore",
- group_type="user",
- user="foo",
- is_admin=False,
- blacklist=pagure.config.config.get("BLACKLISTED_PROJECTS"),
- )
- self.assertEqual(msg, "User `foo` added to the group `JL`.")
- # Add the group to project we just created, test3
- # Add it with admin ACL
- project = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_group_to_project(
- self.session,
- project=project,
- new_group="JL",
- user="foo",
- access="admin",
- )
- self.session.commit()
- self.assertEqual(msg, "Group added")
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_not_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- group = pagure.lib.query.search_groups(self.session, group_name="JL")
- pagure.lib.query.add_user_to_group(
- session=self.session,
- username="pingou",
- group=group,
- user="foo",
- is_admin=False,
- )
- self.session.commit()
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">4</span></h3>',
- output_text,
- )
- self.assertIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 1)
- class PagureFlaskAppBrowseGroupCommittests(tests.Modeltests):
- """Tests for the browse pages of flask app controller of pagure"""
- def setUp(self):
- """Set up the environnment, ran before every tests."""
- super(PagureFlaskAppBrowseGroupCommittests, self).setUp()
- tests.create_projects(self.session)
- # Add a 3rd project with a long description
- item = pagure.lib.model.Project(
- user_id=2, # foo
- name="test3",
- description="test project #3 with a very long description",
- hook_token="aaabbbeeefff",
- private=True,
- )
- self.session.add(item)
- self.session.commit()
- # Create a group
- msg = pagure.lib.query.add_group(
- self.session,
- group_name="JL",
- display_name="Justice League",
- description="Nope, it's not JLA anymore",
- group_type="user",
- user="foo",
- is_admin=False,
- blacklist=pagure.config.config.get("BLACKLISTED_PROJECTS"),
- )
- self.assertEqual(msg, "User `foo` added to the group `JL`.")
- # Add the group to project we just created, test3
- # Add it with commit ACL
- project = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_group_to_project(
- self.session,
- project=project,
- new_group="JL",
- user="foo",
- access="commit",
- )
- self.session.commit()
- self.assertEqual(msg, "Group added")
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_not_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- group = pagure.lib.query.search_groups(self.session, group_name="JL")
- pagure.lib.query.add_user_to_group(
- session=self.session,
- username="pingou",
- group=group,
- user="foo",
- is_admin=False,
- )
- self.session.commit()
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">4</span></h3>',
- output_text,
- )
- self.assertIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 1)
- class PagureFlaskAppBrowseGroupTickettests(tests.Modeltests):
- """Tests for the browse pages of flask app controller of pagure"""
- def setUp(self):
- """Set up the environnment, ran before every tests."""
- super(PagureFlaskAppBrowseGroupTickettests, self).setUp()
- tests.create_projects(self.session)
- # Add a 3rd project with a long description
- item = pagure.lib.model.Project(
- user_id=2, # foo
- name="test3",
- description="test project #3 with a very long description",
- hook_token="aaabbbeeefff",
- private=True,
- )
- self.session.add(item)
- self.session.commit()
- # Create a group
- msg = pagure.lib.query.add_group(
- self.session,
- group_name="JL",
- display_name="Justice League",
- description="Nope, it's not JLA anymore",
- group_type="user",
- user="foo",
- is_admin=False,
- blacklist=pagure.config.config.get("BLACKLISTED_PROJECTS"),
- )
- self.assertEqual(msg, "User `foo` added to the group `JL`.")
- # Add the group to project we just created, test3
- # Add it with ticket ACL
- project = pagure.lib.query._get_project(self.session, "test3")
- msg = pagure.lib.query.add_group_to_project(
- self.session,
- project=project,
- new_group="JL",
- user="foo",
- access="ticket",
- )
- self.session.commit()
- self.assertEqual(msg, "Group added")
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_not_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 0)
- @patch.dict("pagure.config.config", {"PRIVATE_PROJECTS": True})
- def test_browse_project_user_in_group(self):
- """Test the browse project endpoint when logged in as an user that
- has no access to the private project via a group as admin."""
- group = pagure.lib.query.search_groups(self.session, group_name="JL")
- pagure.lib.query.add_user_to_group(
- session=self.session,
- username="pingou",
- group=group,
- user="foo",
- is_admin=False,
- )
- self.session.commit()
- # Ticket ACL isn't enough to grant you access
- user = tests.FakeUser(username="pingou")
- with tests.user_set(self.app.application, user):
- output = self.app.get("/browse/projects/")
- self.assertEqual(output.status_code, 200)
- output_text = output.get_data(as_text=True)
- self.assertIn("<title>Home - Pagure</title>\n", output_text)
- self.assertIn(
- '<h3 class="m-0 font-weight-bold">All Projects '
- '<span class="badge badge-secondary">3</span></h3>',
- output_text,
- )
- self.assertNotIn(
- '<span title="Private Project" class="text-danger '
- 'fa fa-fw fa-lock"></span>',
- output_text,
- )
- self.assertEqual(output_text.count('title="Private Project"'), 0)
- if __name__ == "__main__":
- unittest.main(verbosity=2)
|