Changeset - a893d2ce599c
Parent rev.
Child rev.
[Not reviewed]
stable
0 1 0
Mads Kiilerich - 6 years ago 2020-04-30 15:35:51
mads@kiilerich.com
tests: fix test_api_get_repo_by_non_admin dependency on other users having repo permissions
1 file changed with 7 insertions and 7 deletions:
kallithea/tests/api/api_base.py
7
7
0 comments (0 inline, 0 general)
kallithea/tests/api/api_base.py
Show inline comments
 
@@ -545,218 +545,218 @@ class _BaseTestApi(object):
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, base.TEST_USER_ADMIN_LOGIN),

			




	
	
	
		
 
            'user': ret

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_default_user(self):

			




	
	
	
		
 
        usr = User.get_default_user()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'editing default user is forbidden'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'update_user', crash)

			




	
	
	
		
 
    def test_api_update_user_when_exception_happens(self):

			




	
	
	
		
 
        usr = User.get_by_username(base.TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = 'failed to update user `%s`' % usr.user_id

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo(self):

			




	
	
	
		
 
        new_group = 'some_new_group'

			




	
	
	
		
 
        make_user_group(new_group)

			




	
	
	
		
 
        RepoModel().grant_user_group_permission(repo=self.REPO,

			




	
	
	
		
 
                                                group_name=new_group,

			




	
	
	
		
 
                                                perm='repository.read')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert "tags" not in response.json['result']

			




	
	
	
		
 
        assert 'pull_requests' not in response.json['result']

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user = user.user

			




	
	
	
		
 
            user_data = {'name': user.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_user_group(new_group)

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo', repoid=self.REPO,

			




	
	
	
		
 
                                  with_revision_names=True,

			




	
	
	
		
 
                                  with_pullrequests=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert "v0.2.0" in response.json['result']['tags']

			




	
	
	
		
 
        assert 'pull_requests' in response.json['result']

			




	
	
	
		
 

			




	
	
	
		
 
    @base.parametrize('grant_perm', [

			




	
	
	
		
 
        ('repository.admin'),

			




	
	
	
		
 
        ('repository.write'),

			




	
	
	
		
 
        ('repository.read'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin(self, grant_perm):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm=grant_perm)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 
        assert len(repo.repo_to_perm) >= 2  # make sure we actually are testing something - probably the default 2 permissions, possibly more

			




	
	
	
		
 

			




	
	
	
		
 
        expected = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        assert 2 == len(repo.repo_to_perm)

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user_obj = user.user

			




	
	
	
		
 
            user_data = {'name': user_obj.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group_obj = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group_obj.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 
        expected['members'] = members

			




	
	
	
		
 

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 
        expected['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin_no_permission_to_repo(self):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=User.DEFAULT_USER_NAME,

			




	
	
	
		
 
                                          perm='repository.none')

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                              user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                              perm='repository.none')

			




	
	
	
		
 

			




	
	
	
		
 
            id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                      repoid=self.REPO)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
            expected = 'repository `%s` does not exist' % (self.REPO)

			




	
	
	
		
 
            self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                              user=User.DEFAULT_USER_NAME,

			




	
	
	
		
 
                                              perm='repository.read')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_that_doesn_not_exist(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid='no-such-repo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = 'repository `%s` does not exist' % 'no-such-repo'

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repos(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = jsonify([

			




	
	
	
		
 
            repo.get_api_data()

			




	
	
	
		
 
            for repo in Repository.query()

			




	
	
	
		
 
        ])

			




	
	
	
		
 

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repos_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = jsonify([

			




	
	
	
		
 
            repo.get_api_data()

			




	
	
	
		
 
            for repo in RepoModel().get_all_user_repos(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        ])

			




	
	
	
		
 

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @base.parametrize('name,ret_type', [

			




	
	
	
		
 
        ('all', 'all'),

			




	
	
	
		
 
        ('dirs', 'dirs'),

			




	
	
	
		
 
        ('files', 'files'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_nodes(self, name, ret_type):

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path,

			




	
	
	
		
 
                                  ret_type=ret_type)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        # we don't the actual return types here since it's tested somewhere

			




	
	
	
		
 
        # else

			




	
	
	
		
 
        expected = response.json['result']

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_nodes_bad_revisions(self):

			




	
	
	
		
 
        rev = 'i-dont-exist'

			




	
	
	
		
 
        path = '/'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'failed to get repo: `%s` nodes' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_nodes_bad_path(self):

			




	
	
	
		
 
        rev = 'tip'

			




	
	
	
		
 
        path = '/idontexits'

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo_nodes',

			




	
	
	
		
 
                                  repoid=self.REPO, revision=rev,

			




	
	
	
		
 
                                  root_path=path, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'failed to get repo: `%s` nodes' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.