Changeset - 65d45e2fbc33
Parent rev.
Child rev.
[Not reviewed]
default
0 1 0
Mads Kiilerich - 7 years ago 2019-01-21 03:57:34
mads@kiilerich.com
Grafted from: 1135cd6c1e87
tests: verify in test_api_pull_remote that a pull from remote updates the tip cache
1 file changed with 6 insertions and 0 deletions:
kallithea/tests/api/api_base.py
6
0 comments (0 inline, 0 general)
kallithea/tests/api/api_base.py
Show inline comments
 
# -*- coding: utf-8 -*-
 
# This program is free software: you can redistribute it and/or modify
 
# it under the terms of the GNU General Public License as published by
 
# the Free Software Foundation, either version 3 of the License, or
 
# (at your option) any later version.
 
#
 
# This program is distributed in the hope that it will be useful,
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
# GNU General Public License for more details.
 
#
 
# You should have received a copy of the GNU General Public License
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 

			




	
	
	
		
 
"""

			




	
	
	
		
 
Tests for the JSON-RPC web api.

			




	
	
	
		
 
"""

			




	
	
	
		
 

			




	
	
	
		
 
import os

			




	
	
	
		
 
import random

			




	
	
	
		
 
import mock

			




	
	
	
		
 
import re

			




	
	
	
		
 

			




	
	
	
		
 
import pytest

			




	
	
	
		
 

			




	
	
	
		
 
from kallithea.tests.base import *

			




	
	
	
		
 
from kallithea.tests.fixture import Fixture

			




	
	
	
		
 
from kallithea.lib.compat import json

			




	
	
	
		
 
from kallithea.lib.auth import AuthUser

			




	
	
	
		
 
from kallithea.model.user import UserModel

			




	
	
	
		
 
from kallithea.model.user_group import UserGroupModel

			




	
	
	
		
 
from kallithea.model.repo import RepoModel

			




	
	
	
		
 
from kallithea.model.repo_group import RepoGroupModel

			




	
	
	
		
 
from kallithea.model.meta import Session

			




	
	
	
		
 
from kallithea.model.scm import ScmModel

			




	
	
	
		
 
from kallithea.model.gist import GistModel

			




	
	
	
		
 
from kallithea.model.changeset_status import ChangesetStatusModel

			




	
	
	
		
 
from kallithea.model.db import Repository, User, Setting, Ui, PullRequest, ChangesetStatus, RepoGroup

			




	
	
	
		
 
from kallithea.lib.utils2 import time_to_datetime

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
API_URL = '/_admin/api'

			




	
	
	
		
 
TEST_USER_GROUP = u'test_user_group'

			




	
	
	
		
 
TEST_REPO_GROUP = u'test_repo_group'

			




	
	
	
		
 

			




	
	
	
		
 
fixture = Fixture()

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def _build_data(apikey, method, **kw):

			




	
	
	
		
 
    """

			




	
	
	
		
 
    Builds API data with given random ID

			




	
	
	
		
 

			




	
	
	
		
 
    :param random_id:

			




	
	
	
		
 
    """

			




	
	
	
		
 
    random_id = random.randrange(1, 9999)

			




	
	
	
		
 
    return random_id, json.dumps({

			




	
	
	
		
 
        "id": random_id,

			




	
	
	
		
 
        "api_key": apikey,

			




	
	
	
		
 
        "method": method,

			




	
	
	
		
 
        "args": kw

			




	
	
	
		
 
    })

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
jsonify = lambda obj: json.loads(json.dumps(obj))

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def crash(*args, **kwargs):

			




	
	
	
		
 
    raise Exception('Total Crash !')

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def api_call(test_obj, params):

			




	
	
	
		
 
    response = test_obj.app.post(API_URL, content_type='application/json',

			




	
	
	
		
 
                                 params=params)

			




	
	
	
		
 
    return response

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
## helpers

			




	
	
	
		
 
def make_user_group(name=TEST_USER_GROUP):

			




	
	
	
		
 
    gr = fixture.create_user_group(name, cur_user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    UserGroupModel().add_user_to_group(user_group=gr,

			




	
	
	
		
 
                                       user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    Session().commit()

			




	
	
	
		
 
    return gr

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def make_repo_group(name=TEST_REPO_GROUP):

			




	
	
	
		
 
    gr = fixture.create_repo_group(name, cur_user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    Session().commit()

			




	
	
	
		
 
    return gr

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class _BaseTestApi(object):

			




	
	
	
		
 
    REPO = None

			




	
	
	
		
 
    REPO_TYPE = None

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def setup_class(cls):

			




	
	
	
		
 
        cls.usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        cls.apikey = cls.usr.api_key

			




	
	
	
		
 
        cls.test_user = UserModel().create_or_update(

			




	
	
	
		
 
            username='test-api',

			




	
	
	
		
 
            password='test',

			




	
	
	
		
 
            email='test@example.com',

			




	
	
	
		
 
            firstname=u'first',

			




	
	
	
		
 
            lastname=u'last'

			




	
	
	
		
 
        )

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        cls.TEST_USER_LOGIN = cls.test_user.username

			




	
	
	
		
 
        cls.apikey_regular = cls.test_user.api_key

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def teardown_class(cls):

			




	
	
	
		
 
        pass

			




	
	
	
		
 

			




	
	
	
		
 
    def setup_method(self, method):

			




	
	
	
		
 
        make_user_group()

			




	
	
	
		
 
        make_repo_group()

			




	
	
	
		
 

			




	
	
	
		
 
    def teardown_method(self, method):

			




	
	
	
		
 
        fixture.destroy_user_group(TEST_USER_GROUP)

			




	
	
	
		
 
        fixture.destroy_gists()

			




	
	
	
		
 
        fixture.destroy_repo_group(TEST_REPO_GROUP)

			




	
	
	
		
 

			




	
	
	
		
 
    def _compare_ok(self, id_, expected, given):

			




	
	
	
		
 
        expected = jsonify({

			




	
	
	
		
 
            'id': id_,

			




	
	
	
		
 
            'error': None,

			




	
	
	
		
 
            'result': expected

			




	
	
	
		
 
        })

			




	
	
	
		
 
        given = json.loads(given)

			




	
	
	
		
 
        assert expected == given, (expected, given)

			




	
	
	
		
 

			




	
	
	
		
 
    def _compare_error(self, id_, expected, given):

			




	
	
	
		
 
        expected = jsonify({

			




	
	
	
		
 
            'id': id_,

			




	
	
	
		
 
            'error': expected,

			




	
	
	
		
 
            'result': None

			




	
	
	
		
 
        })

			




	
	
	
		
 
        given = json.loads(given)

			




	
	
	
		
 
        assert expected == given, (expected, given)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_Optional_object(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import Optional

			




	
	
	
		
 

			




	
	
	
		
 
        option1 = Optional(None)

			




	
	
	
		
 
        assert '<Optional:%s>' % None == repr(option1)

			




	
	
	
		
 
        assert option1() is None

			




	
	
	
		
 

			




	
	
	
		
 
        assert 1 == Optional.extract(Optional(1))

			




	
	
	
		
 
        assert 'trololo' == Optional.extract('trololo')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_Optional_OAttr(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import Optional, OAttr

			




	
	
	
		
 

			




	
	
	
		
 
        option1 = Optional(OAttr('apiuser'))

			




	
	
	
		
 
        assert 'apiuser' == Optional.extract(option1)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_OAttr_object(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import OAttr

			




	
	
	
		
 

			




	
	
	
		
 
        oattr1 = OAttr('apiuser')

			




	
	
	
		
 
        assert '<OptionalAttr:apiuser>' == repr(oattr1)

			




	
	
	
		
 
        assert oattr1() == oattr1

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_wrong_key(self):

			




	
	
	
		
 
        id_, params = _build_data('trololo', 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Invalid API key'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param_args_null(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": null')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param_args_bad(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": 1')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_is_null(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": null')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_is_bad(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": 1')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_different_args(self):

			




	
	
	
		
 
        import string

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'ascii_letters': string.ascii_letters,

			




	
	
	
		
 
            'ws': string.whitespace,

			




	
	
	
		
 
            'printables': string.printable

			




	
	
	
		
 
        }

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'test', args=expected)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 
        self._compare_ok(id_, expected, response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_users(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret_all = []

			




	
	
	
		
 
        _users = User.query().filter_by(is_default_user=False) \

			




	
	
	
		
 
            .order_by(User.username).all()

			




	
	
	
		
 
        for usr in _users:

			




	
	
	
		
 
            ret = usr.get_api_data()

			




	
	
	
		
 
            ret_all.append(jsonify(ret))

			




	
	
	
		
 
        expected = ret_all

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_that_does_not_exist(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user',

			




	
	
	
		
 
                                  userid='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "user `%s` does not exist" % 'trololo'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_without_giving_userid(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_without_giving_userid_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_with_giving_userid_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_user',

			




	
	
	
		
 
                                  userid=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'userid is not the same as your user'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull_remote(self):

			




	
	
	
		
 
        # Note: pulling from local repos is a mis-feature - it will bypass access control

			




	
	
	
		
 
        # ... but ok, if the path already has been set in the database

			




	
	
	
		
 
        repo_name = u'test_pull'

			




	
	
	
		
 
        r = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)

			




	
	
	
		
 
        # hack around that clone_uri can't be set to to a local path

			




	
	
	
		
 
        # (as shown by test_api_create_repo_clone_uri_local)

			




	
	
	
		
 
        r.clone_uri = os.path.join(Ui.get_by_key('paths', '/').ui_value, self.REPO)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 

			




	
	
	
		
 
        pre_cached_tip = [repo.get_api_data()['last_changeset']['short_id'] for repo in Repository.query().filter(Repository.repo_name == repo_name)]

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=repo_name,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'msg': 'Pulled from `%s`' % repo_name,

			




	
	
	
		
 
                    'repository': repo_name}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
        post_cached_tip = [repo.get_api_data()['last_changeset']['short_id'] for repo in Repository.query().filter(Repository.repo_name == repo_name)]

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
        assert pre_cached_tip != post_cached_tip

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull_fork(self):

			




	
	
	
		
 
        fork_name = u'fork'

			




	
	
	
		
 
        fixture.create_fork(self.REPO, fork_name)

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=fork_name,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'msg': 'Pulled from `%s`' % fork_name,

			




	
	
	
		
 
                    'repository': fork_name}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo(fork_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull_error_no_remote_no_fork(self):

			




	
	
	
		
 
        # should fail because no clone_uri is set

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=self.REPO, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Unable to pull changes from `%s`' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull_custom_remote(self):

			




	
	
	
		
 
        repo_name = u'test_pull_custom_remote'

			




	
	
	
		
 
        fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)

			




	
	
	
		
 

			




	
	
	
		
 
        custom_remote_path = os.path.join(Ui.get_by_key('paths', '/').ui_value, self.REPO)

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=repo_name,

			




	
	
	
		
 
                                  clone_uri=custom_remote_path)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'msg': 'Pulled from `%s`' % repo_name,

			




	
	
	
		
 
                    'repository': repo_name}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_rescan_repos(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'rescan_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'added': [], 'removed': []}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(ScmModel, 'repo_scan', crash)

			




	
	
	
		
 
    def test_api_rescann_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'rescan_repos', )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Error occurred during rescan repositories action'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_invalidate_cache(self):

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        repo.scm_instance_cached()  # seed cache

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'msg': "Cache for repository `%s` was invalidated" % (self.REPO,),

			




	
	
	
		
 
            'repository': self.REPO

			




	
	
	
		
 
        }

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(ScmModel, 'mark_for_invalidation', crash)

			




	
	
	
		
 
    def test_api_invalidate_cache_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Error occurred during cache invalidation action'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_invalidate_cache_regular_user_no_permission(self):

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        repo.scm_instance_cached() # seed cache

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "repository `%s` does not exist" % (self.REPO,)

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_existing_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  email='test@example.com',

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "user `%s` already exist" % TEST_USER_ADMIN_LOGIN

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_with_existing_email(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=TEST_USER_ADMIN_LOGIN + 'new',

			




	
	
	
		
 
                                  email=TEST_USER_REGULAR_EMAIL,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "email `%s` already exist" % TEST_USER_REGULAR_EMAIL

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user(self):

			




	
	
	
		
 
        username = 'test_new_api_user'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_without_password(self):

			




	
	
	
		
 
        username = 'test_new_api_user_passwordless'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_with_extern_name(self):

			




	
	
	
		
 
        username = 'test_new_api_user_passwordless'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email, extern_name='internal')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'create_or_update', crash)

			




	
	
	
		
 
    def test_api_create_user_when_exception_happened(self):

			




	
	
	
		
 

			




	
	
	
		
 
        username = 'test_new_api_user'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'failed to create user `%s`' % username

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_delete_user(self):

			




	
	
	
		
 
        usr = UserModel().create_or_update(username=u'test_user',

			




	
	
	
		
 
                                           password=u'qweqwe',

			




	
	
	
		
 
                                           email=u'u232@example.com',

			




	
	
	
		
 
                                           firstname=u'u1', lastname=u'u1')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        username = usr.username

			




	
	
	
		
 
        email = usr.email

			




	
	
	
		
 
        usr_id = usr.user_id

			




	
	
	
		
 
        ## DELETE THIS USER NOW

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'delete_user',

			




	
	
	
		
 
                                  userid=username, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = {'msg': 'deleted user ID:%s %s' % (usr_id, username),

			




	
	
	
		
 
               'user': None}

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'delete', crash)

			




	
	
	
		
 
    def test_api_delete_user_when_exception_happened(self):

			




	
	
	
		
 
        usr = UserModel().create_or_update(username=u'test_user',

			




	
	
	
		
 
                                           password=u'qweqwe',

			




	
	
	
		
 
                                           email=u'u232@example.com',

			




	
	
	
		
 
                                           firstname=u'u1', lastname=u'u1')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        username = usr.username

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'delete_user',

			




	
	
	
		
 
                                  userid=username, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = 'failed to delete user ID:%s %s' % (usr.user_id,

			




	
	
	
		
 
                                                  usr.username)

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('name,expected', [

			




	
	
	
		
 
        ('firstname', 'new_username'),

			




	
	
	
		
 
        ('lastname', 'new_username'),

			




	
	
	
		
 
        ('email', 'new_username'),

			




	
	
	
		
 
        ('admin', True),

			




	
	
	
		
 
        ('admin', False),

			




	
	
	
		
 
        ('extern_type', 'ldap'),

			




	
	
	
		
 
        ('extern_type', None),

			




	
	
	
		
 
        ('extern_name', 'test'),

			




	
	
	
		
 
        ('extern_name', None),

			




	
	
	
		
 
        ('active', False),

			




	
	
	
		
 
        ('active', True),

			




	
	
	
		
 
        ('password', 'newpass'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_update_user(self, name, expected):

			




	
	
	
		
 
        usr = User.get_by_username(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        kw = {name: expected,

			




	
	
	
		
 
              'userid': usr.user_id}

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user', **kw)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, self.TEST_USER_LOGIN),

			




	
	
	
		
 
            'user': jsonify(User \

			




	
	
	
		
 
                .get_by_username(self.TEST_USER_LOGIN) \

			




	
	
	
		
 
                .get_api_data())

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_no_changed_params(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, TEST_USER_ADMIN_LOGIN),

			




	
	
	
		
 
            'user': ret

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_by_user_id(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, TEST_USER_ADMIN_LOGIN),

			




	
	
	
		
 
            'user': ret

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_default_user(self):

			




	
	
	
		
 
        usr = User.get_default_user()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'editing default user is forbidden'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'update_user', crash)

			




	
	
	
		
 
    def test_api_update_user_when_exception_happens(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = 'failed to update user `%s`' % usr.user_id

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo(self):

			




	
	
	
		
 
        new_group = u'some_new_group'

			




	
	
	
		
 
        make_user_group(new_group)

			




	
	
	
		
 
        RepoModel().grant_user_group_permission(repo=self.REPO,

			




	
	
	
		
 
                                                group_name=new_group,

			




	
	
	
		
 
                                                perm='repository.read')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert u"tags" not in response.json[u'result']

			




	
	
	
		
 
        assert u'pull_requests' not in response.json[u'result']

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user = user.user

			




	
	
	
		
 
            user_data = {'name': user.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_user_group(new_group)

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo', repoid=self.REPO,

			




	
	
	
		
 
                                  with_revision_names=True,

			




	
	
	
		
 
                                  with_pullrequests=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert u"v0.2.0" in response.json[u'result'][u'tags']

			




	
	
	
		
 
        assert u'pull_requests' in response.json[u'result']

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('grant_perm', [

			




	
	
	
		
 
        ('repository.admin'),

			




	
	
	
		
 
        ('repository.write'),

			




	
	
	
		
 
        ('repository.read'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin(self, grant_perm):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm=grant_perm)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        assert 2 == len(repo.repo_to_perm)

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user_obj = user.user

			




	
	
	
		
 
            user_data = {'name': user_obj.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group_obj = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group_obj.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin_no_permission_to_repo(self):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm='repository.none')

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'repository `%s` does not exist' % (self.REPO)

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_that_doesn_not_exist(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid='no-such-repo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = 'repository `%s` does not exist' % 'no-such-repo'

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repos(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = jsonify([

			




	
	
	
		
 
            repo.get_api_data()

			




	
	
	
		
 
            for repo in Repository.query()

			




	
	
	
		
 
        ])

			




	
	
	
		
 

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repos_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = jsonify([

			




	
	
	
		
 
            repo.get_api_data()

			




	
	
	
		
 
            for repo in RepoModel().get_all_user_repos(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        ])

			




	
	
	
		
 

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('name,ret_type', [

			




	
	
	
		
 
        ('all', 'all'),

			




	
	
	
		
 
        ('dirs', 'dirs'),

			




	
	
	
		
 
        ('files', 'files'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_nodes(self, name, ret_type):

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path,

			




	
	
	
		
 
                                  ret_type=ret_type)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        # we don't the actual return types here since it's tested somewhere

			




	
	
	
		
 
        # else

			




	
	
	
		
 
        expected = response.json['result']

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_nodes_bad_revisions(self):

			




	
	
	
		
 
        rev = 'i-dont-exist'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'failed to get repo: `%s` nodes' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_nodes_bad_path(self):

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/idontexits'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'failed to get repo: `%s` nodes' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_nodes_bad_ret_type(self):

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        ret_type = 'error'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path,

			




	
	
	
		
 
                                  ret_type=ret_type)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ('ret_type must be one of %s'

			




	
	
	
		
 
                    % (','.join(['files', 'dirs', 'all'])))

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('name,ret_type,grant_perm', [

			




	
	
	
		
 
        ('all', 'all', 'repository.write'),

			




	
	
	
		
 
        ('dirs', 'dirs', 'repository.admin'),

			




	
	
	
		
 
        ('files', 'files', 'repository.read'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_nodes_by_regular_user(self, name, ret_type, grant_perm):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm=grant_perm)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path,

			




	
	
	
		
 
                                  ret_type=ret_type)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        # we don't the actual return types here since it's tested somewhere

			




	
	
	
		
 
        # else

			




	
	
	
		
 
        expected = response.json['result']

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(repo_name)

			




	
	
	
		
 
        assert repo is not None

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'Created new repository `%s`' % repo_name,

			




	
	
	
		
 
            'success': True,

			




	
	
	
		
 
            'task': None,

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('repo_name', [

			




	
	
	
		
 
        u'',

			




	
	
	
		
 
        u'.',

			




	
	
	
		
 
        u'..',

			




	
	
	
		
 
        u':',

			




	
	
	
		
 
        u'/',

			




	
	
	
		
 
        u'<test>',

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_create_repo_bad_names(self, repo_name):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        if repo_name == '/':

			




	
	
	
		
 
            expected = "repo group `` not found"

			




	
	
	
		
 
            self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            expected = "failed to create repository `%s`" % repo_name

			




	
	
	
		
 
            self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_clone_uri_local(self):

			




	
	
	
		
 
        # cloning from local repos was a mis-feature - it would bypass access control

			




	
	
	
		
 
        # TODO: introduce other test coverage of actual remote cloning

			




	
	
	
		
 
        clone_uri = os.path.join(TESTS_TMP_PATH, self.REPO)

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                                  clone_uri=clone_uri,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = "failed to create repository `%s`" % repo_name

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_and_repo_group(self):

			




	
	
	
		
 
        repo_group_name = u'my_gr'

			




	
	
	
		
 
        repo_name = u'%s/api-repo' % repo_group_name

			




	
	
	
		
 

			




	
	
	
		
 
        # repo creation can no longer also create repo group

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = u'repo group `%s` not found' % repo_group_name

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        assert RepoModel().get_by_repo_name(repo_name) is None

			




	
	
	
		
 

			




	
	
	
		
 
        # create group before creating repo

			




	
	
	
		
 
        rg = fixture.create_repo_group(repo_group_name)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'msg': 'Created new repository `%s`' % repo_name,

			




	
	
	
		
 
            'success': True,

			




	
	
	
		
 
            'task': None,

			




	
	
	
		
 
        }

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(repo_name)

			




	
	
	
		
 
        assert repo is not None

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 
        fixture.destroy_repo_group(repo_group_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_in_repo_group_without_permission(self):

			




	
	
	
		
 
        repo_group_basename = u'api-repo-repo'

			




	
	
	
		
 
        repo_group_name = u'%s/%s' % (TEST_REPO_GROUP, repo_group_basename)

			




	
	
	
		
 
        repo_name = u'%s/api-repo' % repo_group_name

			




	
	
	
		
 

			




	
	
	
		
 
        top_group = RepoGroup.get_by_group_name(TEST_REPO_GROUP)

			




	
	
	
		
 
        assert top_group

			




	
	
	
		
 
        rg = fixture.create_repo_group(repo_group_basename, parent_group_id=top_group)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        RepoGroupModel().grant_user_permission(repo_group_name,

			




	
	
	
		
 
                                               self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                               'group.none')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        # Current result when API access control is different from Web:

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'Created new repository `%s`' % repo_name,

			




	
	
	
		
 
            'success': True,

			




	
	
	
		
 
            'task': None,

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
        # Expected and arguably more correct result:

			




	
	
	
		
 
        #expected = 'failed to create repository `%s`' % repo_name

			




	
	
	
		
 
        #self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo_group(repo_group_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_unknown_owner(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        owner = 'i-dont-exist'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=owner,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'user `%s` does not exist' % owner

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_dont_specify_owner(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        owner = 'i-dont-exist'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(repo_name)

			




	
	
	
		
 
        assert repo is not None

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'Created new repository `%s`' % repo_name,

			




	
	
	
		
 
            'success': True,

			




	
	
	
		
 
            'task': None,

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_by_non_admin(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        owner = 'i-dont-exist'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
        )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(repo_name)

			




	
	
	
		
 
        assert repo is not None

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'Created new repository `%s`' % repo_name,

			




	
	
	
		
 
            'success': True,

			




	
	
	
		
 
            'task': None,

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_by_non_admin_specify_owner(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        owner = 'i-dont-exist'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                                  owner=owner)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Only Kallithea admin can specify `owner` param'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_exists(self):

			




	
	
	
		
 
        repo_name = self.REPO

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = "repo `%s` already exist" % repo_name

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_repo_dot_dot(self):

			




	
	
	
		
 
        # it is only possible to create repositories in existing repo groups - and '..' can't be used

			




	
	
	
		
 
        group_name = '%s/..' % TEST_REPO_GROUP

			




	
	
	
		
 
        repo_name = '%s/%s' % (group_name, 'could-be-outside')

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = u'repo group `%s` not found' % group_name

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(RepoModel, 'create', crash)

			




	
	
	
		
 
    def test_api_create_repo_exception_occurred(self):

			




	
	
	
		
 
        repo_name = u'api-repo'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_repo',

			




	
	
	
		
 
                                  repo_name=repo_name,

			




	
	
	
		
 
                                  owner=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repo_type=self.REPO_TYPE,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'failed to create repository `%s`' % repo_name

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('changing_attr,updates', [

			




	
	
	
		
 
        ('owner', {'owner': TEST_USER_REGULAR_LOGIN}),

			




	
	
	
		
 
        ('description', {'description': u'new description'}),

			




	
	
	
		
 
        ('clone_uri', {'clone_uri': 'http://example.com/repo'}), # will fail - pulling from non-existing repo should fail

			




	
	
	
		
 
        ('clone_uri', {'clone_uri': '/repo'}), # will fail - pulling from local repo was a mis-feature - it would bypass access control

			




	
	
	
		
 
        ('clone_uri', {'clone_uri': None}),

			




	
	
	
		
 
        ('landing_rev', {'landing_rev': 'branch:master'}),

			




	
	
	
		
 
        ('enable_statistics', {'enable_statistics': True}),

			




	
	
	
		
 
        ('enable_downloads', {'enable_downloads': True}),

			




	
	
	
		
 
        ('name', {'name': u'new_repo_name'}),

			




	
	
	
		
 
        ('repo_group', {'group': u'test_group_for_update'}),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_update_repo(self, changing_attr, updates):

			




	
	
	
		
 
        repo_name = u'api_update_me'

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.