Changeset - d55626d8c933
Parent rev.
Child rev.
[Not reviewed]
default
0 2 0
Mads Kiilerich - 9 years ago 2016-12-19 02:52:01
mads@kiilerich.com
tests: remove unused maxDiff
2 files changed with 0 insertions and 2 deletions:
kallithea/tests/api/api_base.py
1
kallithea/tests/base.py
1
0 comments (0 inline, 0 general)
kallithea/tests/api/api_base.py
Show inline comments
 
# -*- coding: utf-8 -*-
 
# This program is free software: you can redistribute it and/or modify
 
# it under the terms of the GNU General Public License as published by
 
# the Free Software Foundation, either version 3 of the License, or
 
# (at your option) any later version.
 
#
 
# This program is distributed in the hope that it will be useful,
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
# GNU General Public License for more details.
 
#
 
# You should have received a copy of the GNU General Public License
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 

			




	
	
	
		
 
"""

			




	
	
	
		
 
Tests for the JSON-RPC web api.

			




	
	
	
		
 
"""

			




	
	
	
		
 

			




	
	
	
		
 
import os

			




	
	
	
		
 
import random

			




	
	
	
		
 
import mock

			




	
	
	
		
 

			




	
	
	
		
 
from kallithea.tests.base import *

			




	
	
	
		
 
from kallithea.tests.fixture import Fixture

			




	
	
	
		
 
from kallithea.lib.compat import json

			




	
	
	
		
 
from kallithea.lib.auth import AuthUser

			




	
	
	
		
 
from kallithea.model.user import UserModel

			




	
	
	
		
 
from kallithea.model.user_group import UserGroupModel

			




	
	
	
		
 
from kallithea.model.repo import RepoModel

			




	
	
	
		
 
from kallithea.model.repo_group import RepoGroupModel

			




	
	
	
		
 
from kallithea.model.meta import Session

			




	
	
	
		
 
from kallithea.model.scm import ScmModel

			




	
	
	
		
 
from kallithea.model.gist import GistModel

			




	
	
	
		
 
from kallithea.model.db import Repository, User, Setting, Ui

			




	
	
	
		
 
from kallithea.lib.utils2 import time_to_datetime

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
API_URL = '/_admin/api'

			




	
	
	
		
 
TEST_USER_GROUP = u'test_user_group'

			




	
	
	
		
 
TEST_REPO_GROUP = u'test_repo_group'

			




	
	
	
		
 

			




	
	
	
		
 
fixture = Fixture()

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def _build_data(apikey, method, **kw):

			




	
	
	
		
 
    """

			




	
	
	
		
 
    Builds API data with given random ID

			




	
	
	
		
 

			




	
	
	
		
 
    :param random_id:

			




	
	
	
		
 
    """

			




	
	
	
		
 
    random_id = random.randrange(1, 9999)

			




	
	
	
		
 
    return random_id, json.dumps({

			




	
	
	
		
 
        "id": random_id,

			




	
	
	
		
 
        "api_key": apikey,

			




	
	
	
		
 
        "method": method,

			




	
	
	
		
 
        "args": kw

			




	
	
	
		
 
    })

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
jsonify = lambda obj: json.loads(json.dumps(obj))

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def crash(*args, **kwargs):

			




	
	
	
		
 
    raise Exception('Total Crash !')

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def api_call(test_obj, params):

			




	
	
	
		
 
    response = test_obj.app.post(API_URL, content_type='application/json',

			




	
	
	
		
 
                                 params=params)

			




	
	
	
		
 
    return response

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
## helpers

			




	
	
	
		
 
def make_user_group(name=TEST_USER_GROUP):

			




	
	
	
		
 
    gr = fixture.create_user_group(name, cur_user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    UserGroupModel().add_user_to_group(user_group=gr,

			




	
	
	
		
 
                                       user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    Session().commit()

			




	
	
	
		
 
    return gr

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
def make_repo_group(name=TEST_REPO_GROUP):

			




	
	
	
		
 
    gr = fixture.create_repo_group(name, cur_user=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
    Session().commit()

			




	
	
	
		
 
    return gr

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class _BaseTestApi(object):

			




	
	
	
		
 
    REPO = None

			




	
	
	
		
 
    REPO_TYPE = None

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def setup_class(cls):

			




	
	
	
		
 
        cls.usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        cls.apikey = cls.usr.api_key

			




	
	
	
		
 
        cls.test_user = UserModel().create_or_update(

			




	
	
	
		
 
            username='test-api',

			




	
	
	
		
 
            password='test',

			




	
	
	
		
 
            email='test@example.com',

			




	
	
	
		
 
            firstname=u'first',

			




	
	
	
		
 
            lastname=u'last'

			




	
	
	
		
 
        )

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        cls.TEST_USER_LOGIN = cls.test_user.username

			




	
	
	
		
 
        cls.apikey_regular = cls.test_user.api_key

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def teardown_class(cls):

			




	
	
	
		
 
        pass

			




	
	
	
		
 

			




	
	
	
		
 
    def setup_method(self, method):

			




	
	
	
		
 
        self.maxDiff = None

			




	
	
	
		
 
        make_user_group()

			




	
	
	
		
 
        make_repo_group()

			




	
	
	
		
 

			




	
	
	
		
 
    def teardown_method(self, method):

			




	
	
	
		
 
        fixture.destroy_user_group(TEST_USER_GROUP)

			




	
	
	
		
 
        fixture.destroy_gists()

			




	
	
	
		
 
        fixture.destroy_repo_group(TEST_REPO_GROUP)

			




	
	
	
		
 

			




	
	
	
		
 
    def _compare_ok(self, id_, expected, given):

			




	
	
	
		
 
        expected = jsonify({

			




	
	
	
		
 
            'id': id_,

			




	
	
	
		
 
            'error': None,

			




	
	
	
		
 
            'result': expected

			




	
	
	
		
 
        })

			




	
	
	
		
 
        given = json.loads(given)

			




	
	
	
		
 
        assert expected == given

			




	
	
	
		
 

			




	
	
	
		
 
    def _compare_error(self, id_, expected, given):

			




	
	
	
		
 
        expected = jsonify({

			




	
	
	
		
 
            'id': id_,

			




	
	
	
		
 
            'error': expected,

			




	
	
	
		
 
            'result': None

			




	
	
	
		
 
        })

			




	
	
	
		
 
        given = json.loads(given)

			




	
	
	
		
 
        assert expected == given

			




	
	
	
		
 

			




	
	
	
		
 
    def test_Optional_object(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import Optional

			




	
	
	
		
 

			




	
	
	
		
 
        option1 = Optional(None)

			




	
	
	
		
 
        assert '<Optional:%s>' % None == repr(option1)

			




	
	
	
		
 
        assert option1() == None

			




	
	
	
		
 

			




	
	
	
		
 
        assert 1 == Optional.extract(Optional(1))

			




	
	
	
		
 
        assert 'trololo' == Optional.extract('trololo')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_Optional_OAttr(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import Optional, OAttr

			




	
	
	
		
 

			




	
	
	
		
 
        option1 = Optional(OAttr('apiuser'))

			




	
	
	
		
 
        assert 'apiuser' == Optional.extract(option1)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_OAttr_object(self):

			




	
	
	
		
 
        from kallithea.controllers.api.api import OAttr

			




	
	
	
		
 

			




	
	
	
		
 
        oattr1 = OAttr('apiuser')

			




	
	
	
		
 
        assert '<OptionalAttr:apiuser>' == repr(oattr1)

			




	
	
	
		
 
        assert oattr1() == oattr1

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_wrong_key(self):

			




	
	
	
		
 
        id_, params = _build_data('trololo', 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Invalid API key'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param_args_null(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": null')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_missing_non_optional_param_args_bad(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo')

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": 1')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Missing non optional `repoid` arg in JSON DATA'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_is_null(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": null')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_is_bad(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        params = params.replace('"args": {}', '"args": 1')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_args_different_args(self):

			




	
	
	
		
 
        import string

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'ascii_letters': string.ascii_letters,

			




	
	
	
		
 
            'ws': string.whitespace,

			




	
	
	
		
 
            'printables': string.printable

			




	
	
	
		
 
        }

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'test', args=expected)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        assert response.status == '200 OK'

			




	
	
	
		
 
        self._compare_ok(id_, expected, response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_users(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_users', )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret_all = []

			




	
	
	
		
 
        _users = User.query().filter(User.username != User.DEFAULT_USER) \

			




	
	
	
		
 
            .order_by(User.username).all()

			




	
	
	
		
 
        for usr in _users:

			




	
	
	
		
 
            ret = usr.get_api_data()

			




	
	
	
		
 
            ret_all.append(jsonify(ret))

			




	
	
	
		
 
        expected = ret_all

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_that_does_not_exist(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user',

			




	
	
	
		
 
                                  userid='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "user `%s` does not exist" % 'trololo'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_without_giving_userid(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_without_giving_userid_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_user')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        ret = usr.get_api_data()

			




	
	
	
		
 
        ret['permissions'] = AuthUser(dbuser=usr).permissions

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_user_with_giving_userid_non_admin(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_user',

			




	
	
	
		
 
                                  userid=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'userid is not the same as your user'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull(self):

			




	
	
	
		
 
        repo_name = u'test_pull'

			




	
	
	
		
 
        r = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE)

			




	
	
	
		
 
        r.clone_uri = os.path.join(Ui.get_by_key('paths', '/').ui_value, self.REPO)

			




	
	
	
		
 
        Session.commit()

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=repo_name,)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'msg': 'Pulled from `%s`' % repo_name,

			




	
	
	
		
 
                    'repository': repo_name}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
        fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_pull_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'pull',

			




	
	
	
		
 
                                  repoid=self.REPO, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Unable to pull changes from `%s`' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_rescan_repos(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'rescan_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {'added': [], 'removed': []}

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(ScmModel, 'repo_scan', crash)

			




	
	
	
		
 
    def test_api_rescann_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'rescan_repos', )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Error occurred during rescan repositories action'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_invalidate_cache(self):

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        repo.scm_instance_cached()  # seed cache

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'msg': "Cache for repository `%s` was invalidated" % (self.REPO,),

			




	
	
	
		
 
            'repository': self.REPO

			




	
	
	
		
 
        }

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(ScmModel, 'mark_for_invalidation', crash)

			




	
	
	
		
 
    def test_api_invalidate_cache_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Error occurred during cache invalidation action'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_invalidate_cache_regular_user_no_permission(self):

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        repo.scm_instance_cached() # seed cache

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'invalidate_cache',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "repository `%s` does not exist" % (self.REPO,)

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_acquire(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repoid=self.REPO,

			




	
	
	
		
 
                                  locked=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'repo': self.REPO, 'locked': True,

			




	
	
	
		
 
            'locked_since': response.json['result']['locked_since'],

			




	
	
	
		
 
            'locked_by': TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
            'lock_state_changed': True,

			




	
	
	
		
 
            'msg': ('User `%s` set lock state for repo `%s` to `%s`'

			




	
	
	
		
 
                    % (TEST_USER_ADMIN_LOGIN, self.REPO, True))

			




	
	
	
		
 
        }

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_acquire_by_non_admin(self):

			




	
	
	
		
 
        repo_name = u'api_delete_me'

			




	
	
	
		
 
        fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                            cur_user=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey_regular, 'lock',

			




	
	
	
		
 
                                      repoid=repo_name,

			




	
	
	
		
 
                                      locked=True)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            expected = {

			




	
	
	
		
 
                'repo': repo_name,

			




	
	
	
		
 
                'locked': True,

			




	
	
	
		
 
                'locked_since': response.json['result']['locked_since'],

			




	
	
	
		
 
                'locked_by': self.TEST_USER_LOGIN,

			




	
	
	
		
 
                'lock_state_changed': True,

			




	
	
	
		
 
                'msg': ('User `%s` set lock state for repo `%s` to `%s`'

			




	
	
	
		
 
                        % (self.TEST_USER_LOGIN, repo_name, True))

			




	
	
	
		
 
            }

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_acquire_non_admin_with_userid(self):

			




	
	
	
		
 
        repo_name = u'api_delete_me'

			




	
	
	
		
 
        fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                            cur_user=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey_regular, 'lock',

			




	
	
	
		
 
                                      userid=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                      repoid=repo_name,

			




	
	
	
		
 
                                      locked=True)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            expected = 'userid is not the same as your user'

			




	
	
	
		
 
            self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_acquire_non_admin_not_his_repo(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'lock',

			




	
	
	
		
 
                                  repoid=self.REPO,

			




	
	
	
		
 
                                  locked=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'repository `%s` does not exist' % (self.REPO)

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_release(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repoid=self.REPO,

			




	
	
	
		
 
                                  locked=False)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'repo': self.REPO,

			




	
	
	
		
 
            'locked': False,

			




	
	
	
		
 
            'locked_since': None,

			




	
	
	
		
 
            'locked_by': TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
            'lock_state_changed': True,

			




	
	
	
		
 
            'msg': ('User `%s` set lock state for repo `%s` to `%s`'

			




	
	
	
		
 
                    % (TEST_USER_ADMIN_LOGIN, self.REPO, False))

			




	
	
	
		
 
        }

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_acquire_optional_userid(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                  repoid=self.REPO,

			




	
	
	
		
 
                                  locked=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        time_ = response.json['result']['locked_since']

			




	
	
	
		
 
        expected = {

			




	
	
	
		
 
            'repo': self.REPO,

			




	
	
	
		
 
            'locked': True,

			




	
	
	
		
 
            'locked_since': time_,

			




	
	
	
		
 
            'locked_by': TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
            'lock_state_changed': True,

			




	
	
	
		
 
            'msg': ('User `%s` set lock state for repo `%s` to `%s`'

			




	
	
	
		
 
                    % (TEST_USER_ADMIN_LOGIN, self.REPO, True))

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_optional_locked(self):

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                      repoid=self.REPO)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            time_ = response.json['result']['locked_since']

			




	
	
	
		
 
            expected = {

			




	
	
	
		
 
                'repo': self.REPO,

			




	
	
	
		
 
                'locked': True,

			




	
	
	
		
 
                'locked_since': time_,

			




	
	
	
		
 
                'locked_by': TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                'lock_state_changed': False,

			




	
	
	
		
 
                'msg': ('Repo `%s` locked by `%s` on `%s`.'

			




	
	
	
		
 
                        % (self.REPO, TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                           json.dumps(time_to_datetime(time_))))

			




	
	
	
		
 
            }

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            # cleanup

			




	
	
	
		
 
            Repository.unlock(RepoModel().get_by_repo_name(self.REPO))

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_lock_repo_lock_optional_not_locked(self):

			




	
	
	
		
 
        repo_name = u'api_not_locked'

			




	
	
	
		
 
        repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                            cur_user=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        assert repo.locked == [None, None]

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                      repoid=repo.repo_id)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            expected = {

			




	
	
	
		
 
                'repo': repo_name,

			




	
	
	
		
 
                'locked': False,

			




	
	
	
		
 
                'locked_since': None,

			




	
	
	
		
 
                'locked_by': None,

			




	
	
	
		
 
                'lock_state_changed': False,

			




	
	
	
		
 
                'msg': ('Repo `%s` not locked.' % (repo_name,))

			




	
	
	
		
 
            }

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(Repository, 'lock', crash)

			




	
	
	
		
 
    def test_api_lock_error(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'lock',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  repoid=self.REPO,

			




	
	
	
		
 
                                  locked=True)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'Error occurred locking repository `%s`' % self.REPO

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks_regular_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_locks')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = []

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks_with_userid_regular_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_locks',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'userid is not the same as your user'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_locks')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = []

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks_with_one_locked_repo(self):

			




	
	
	
		
 
        repo_name = u'api_delete_me'

			




	
	
	
		
 
        repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                                   cur_user=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        Repository.lock(repo, User.get_by_username(self.TEST_USER_LOGIN).user_id)

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey, 'get_locks')

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            expected = [repo.get_api_data()]

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks_with_one_locked_repo_for_specific_user(self):

			




	
	
	
		
 
        repo_name = u'api_delete_me'

			




	
	
	
		
 
        repo = fixture.create_repo(repo_name, repo_type=self.REPO_TYPE,

			




	
	
	
		
 
                                   cur_user=self.TEST_USER_LOGIN)

			




	
	
	
		
 
        Repository.lock(repo, User.get_by_username(self.TEST_USER_LOGIN).user_id)

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            id_, params = _build_data(self.apikey, 'get_locks',

			




	
	
	
		
 
                                      userid=self.TEST_USER_LOGIN)

			




	
	
	
		
 
            response = api_call(self, params)

			




	
	
	
		
 
            expected = [repo.get_api_data()]

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_repo(repo_name)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_locks_with_userid(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_locks',

			




	
	
	
		
 
                                  userid=TEST_USER_REGULAR_LOGIN)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = []

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_existing_user(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                                  email='test@example.com',

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "user `%s` already exist" % TEST_USER_ADMIN_LOGIN

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_with_existing_email(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=TEST_USER_ADMIN_LOGIN + 'new',

			




	
	
	
		
 
                                  email=TEST_USER_REGULAR_EMAIL,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = "email `%s` already exist" % TEST_USER_REGULAR_EMAIL

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user(self):

			




	
	
	
		
 
        username = 'test_new_api_user'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_without_password(self):

			




	
	
	
		
 
        username = 'test_new_api_user_passwordless'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_create_user_with_extern_name(self):

			




	
	
	
		
 
        username = 'test_new_api_user_passwordless'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email, extern_name='internal')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        usr = User.get_by_username(username)

			




	
	
	
		
 
        ret = dict(

			




	
	
	
		
 
            msg='created new user `%s`' % username,

			




	
	
	
		
 
            user=jsonify(usr.get_api_data())

			




	
	
	
		
 
        )

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            expected = ret

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            fixture.destroy_user(usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'create_or_update', crash)

			




	
	
	
		
 
    def test_api_create_user_when_exception_happened(self):

			




	
	
	
		
 

			




	
	
	
		
 
        username = 'test_new_api_user'

			




	
	
	
		
 
        email = username + "@example.com"

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'create_user',

			




	
	
	
		
 
                                  username=username,

			




	
	
	
		
 
                                  email=email,

			




	
	
	
		
 
                                  password='trololo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'failed to create user `%s`' % username

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_delete_user(self):

			




	
	
	
		
 
        usr = UserModel().create_or_update(username=u'test_user',

			




	
	
	
		
 
                                           password=u'qweqwe',

			




	
	
	
		
 
                                           email=u'u232@example.com',

			




	
	
	
		
 
                                           firstname=u'u1', lastname=u'u1')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        username = usr.username

			




	
	
	
		
 
        email = usr.email

			




	
	
	
		
 
        usr_id = usr.user_id

			




	
	
	
		
 
        ## DELETE THIS USER NOW

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'delete_user',

			




	
	
	
		
 
                                  userid=username, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = {'msg': 'deleted user ID:%s %s' % (usr_id, username),

			




	
	
	
		
 
               'user': None}

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'delete', crash)

			




	
	
	
		
 
    def test_api_delete_user_when_exception_happened(self):

			




	
	
	
		
 
        usr = UserModel().create_or_update(username=u'test_user',

			




	
	
	
		
 
                                           password=u'qweqwe',

			




	
	
	
		
 
                                           email=u'u232@example.com',

			




	
	
	
		
 
                                           firstname=u'u1', lastname=u'u1')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        username = usr.username

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'delete_user',

			




	
	
	
		
 
                                  userid=username, )

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = 'failed to delete user ID:%s %s' % (usr.user_id,

			




	
	
	
		
 
                                                  usr.username)

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('name,expected', [

			




	
	
	
		
 
        ('firstname', 'new_username'),

			




	
	
	
		
 
        ('lastname', 'new_username'),

			




	
	
	
		
 
        ('email', 'new_username'),

			




	
	
	
		
 
        ('admin', True),

			




	
	
	
		
 
        ('admin', False),

			




	
	
	
		
 
        ('extern_type', 'ldap'),

			




	
	
	
		
 
        ('extern_type', None),

			




	
	
	
		
 
        ('extern_name', 'test'),

			




	
	
	
		
 
        ('extern_name', None),

			




	
	
	
		
 
        ('active', False),

			




	
	
	
		
 
        ('active', True),

			




	
	
	
		
 
        ('password', 'newpass'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_update_user(self, name, expected):

			




	
	
	
		
 
        usr = User.get_by_username(self.TEST_USER_LOGIN)

			




	
	
	
		
 
        kw = {name: expected,

			




	
	
	
		
 
              'userid': usr.user_id}

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user', **kw)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, self.TEST_USER_LOGIN),

			




	
	
	
		
 
            'user': jsonify(User \

			




	
	
	
		
 
                .get_by_username(self.TEST_USER_LOGIN) \

			




	
	
	
		
 
                .get_api_data())

			




	
	
	
		
 
        }

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_no_changed_params(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, TEST_USER_ADMIN_LOGIN),

			




	
	
	
		
 
            'user': ret

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_by_user_id(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = {

			




	
	
	
		
 
            'msg': 'updated user ID:%s %s' % (

			




	
	
	
		
 
                usr.user_id, TEST_USER_ADMIN_LOGIN),

			




	
	
	
		
 
            'user': ret

			




	
	
	
		
 
        }

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_update_user_default_user(self):

			




	
	
	
		
 
        usr = User.get_default_user()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        expected = 'editing default user is forbidden'

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    @mock.patch.object(UserModel, 'update_user', crash)

			




	
	
	
		
 
    def test_api_update_user_when_exception_happens(self):

			




	
	
	
		
 
        usr = User.get_by_username(TEST_USER_ADMIN_LOGIN)

			




	
	
	
		
 
        ret = jsonify(usr.get_api_data())

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'update_user',

			




	
	
	
		
 
                                  userid=usr.user_id)

			




	
	
	
		
 

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 
        ret = 'failed to update user `%s`' % usr.user_id

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo(self):

			




	
	
	
		
 
        new_group = u'some_new_group'

			




	
	
	
		
 
        make_user_group(new_group)

			




	
	
	
		
 
        RepoModel().grant_user_group_permission(repo=self.REPO,

			




	
	
	
		
 
                                                group_name=new_group,

			




	
	
	
		
 
                                                perm='repository.read')

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user = user.user

			




	
	
	
		
 
            user_data = {'name': user.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        fixture.destroy_user_group(new_group)

			




	
	
	
		
 

			




	
	
	
		
 
    @parametrize('grant_perm', [

			




	
	
	
		
 
        ('repository.admin'),

			




	
	
	
		
 
        ('repository.write'),

			




	
	
	
		
 
        ('repository.read'),

			




	
	
	
		
 
    ])

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin(self, grant_perm):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm=grant_perm)

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        repo = RepoModel().get_by_repo_name(self.REPO)

			




	
	
	
		
 
        ret = repo.get_api_data()

			




	
	
	
		
 

			




	
	
	
		
 
        members = []

			




	
	
	
		
 
        followers = []

			




	
	
	
		
 
        assert 2 == len(repo.repo_to_perm)

			




	
	
	
		
 
        for user in repo.repo_to_perm:

			




	
	
	
		
 
            perm = user.permission.permission_name

			




	
	
	
		
 
            user_obj = user.user

			




	
	
	
		
 
            user_data = {'name': user_obj.username, 'type': "user",

			




	
	
	
		
 
                         'permission': perm}

			




	
	
	
		
 
            members.append(user_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user_group in repo.users_group_to_perm:

			




	
	
	
		
 
            perm = user_group.permission.permission_name

			




	
	
	
		
 
            user_group_obj = user_group.users_group

			




	
	
	
		
 
            user_group_data = {'name': user_group_obj.users_group_name,

			




	
	
	
		
 
                               'type': "user_group", 'permission': perm}

			




	
	
	
		
 
            members.append(user_group_data)

			




	
	
	
		
 

			




	
	
	
		
 
        for user in repo.followers:

			




	
	
	
		
 
            followers.append(user.user.get_api_data())

			




	
	
	
		
 

			




	
	
	
		
 
        ret['members'] = members

			




	
	
	
		
 
        ret['followers'] = followers

			




	
	
	
		
 

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            self._compare_ok(id_, expected, given=response.body)

			




	
	
	
		
 
        finally:

			




	
	
	
		
 
            RepoModel().revoke_user_permission(self.REPO, self.TEST_USER_LOGIN)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_by_non_admin_no_permission_to_repo(self):

			




	
	
	
		
 
        RepoModel().grant_user_permission(repo=self.REPO,

			




	
	
	
		
 
                                          user=self.TEST_USER_LOGIN,

			




	
	
	
		
 
                                          perm='repository.none')

			




	
	
	
		
 

			




	
	
	
		
 
        id_, params = _build_data(self.apikey_regular, 'get_repo',

			




	
	
	
		
 
                                  repoid=self.REPO)

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        expected = 'repository `%s` does not exist' % (self.REPO)

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repo_that_doesn_not_exist(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repo',

			




	
	
	
		
 
                                  repoid='no-such-repo')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




	
	
	
		
 
        ret = 'repository `%s` does not exist' % 'no-such-repo'

			




	
	
	
		
 
        expected = ret

			




	
	
	
		
 
        self._compare_error(id_, expected, given=response.body)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_api_get_repos(self):

			




	
	
	
		
 
        id_, params = _build_data(self.apikey, 'get_repos')

			




	
	
	
		
 
        response = api_call(self, params)

			




	
	
	
		
 

			




        

    


    
    

    

        

                

                    kallithea/tests/base.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
	
		
 
# -*- coding: utf-8 -*-

			




	
	
	
		
 
# This program is free software: you can redistribute it and/or modify

			




	
	
	
		
 
# it under the terms of the GNU General Public License as published by

			




	
	
	
		
 
# the Free Software Foundation, either version 3 of the License, or

			




	
	
	
		
 
# (at your option) any later version.

			




	
	
	
		
 
#

			




	
	
	
		
 
# This program is distributed in the hope that it will be useful,

			




	
	
	
		
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of

			




	
	
	
		
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

			




	
	
	
		
 
# GNU General Public License for more details.

			




	
	
	
		
 
#

			




	
	
	
		
 
# You should have received a copy of the GNU General Public License

			




	
	
	
		
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

			




	
	
	
		
 

			




	
	
	
		
 
import datetime

			




	
	
	
		
 
import logging

			




	
	
	
		
 
import os

			




	
	
	
		
 
import pytest

			




	
	
	
		
 
import re

			




	
	
	
		
 
import tempfile

			




	
	
	
		
 
import time

			




	
	
	
		
 

			




	
	
	
		
 
import pylons

			




	
	
	
		
 
from pylons import config, url

			




	
	
	
		
 
from pylons.i18n.translation import _get_translator

			




	
	
	
		
 
from pylons.util import ContextObj

			




	
	
	
		
 
from routes.util import URLGenerator

			




	
	
	
		
 
from webtest import TestApp

			




	
	
	
		
 

			




	
	
	
		
 
from kallithea import is_windows

			




	
	
	
		
 
from kallithea.model.db import Notification, User, UserNotification

			




	
	
	
		
 
from kallithea.model.meta import Session

			




	
	
	
		
 
from kallithea.lib.utils2 import safe_str

			




	
	
	
		
 

			




	
	
	
		
 
os.environ['TZ'] = 'UTC'

			




	
	
	
		
 
if not is_windows:

			




	
	
	
		
 
    time.tzset()

			




	
	
	
		
 

			




	
	
	
		
 
log = logging.getLogger(__name__)

			




	
	
	
		
 

			




	
	
	
		
 
skipif = pytest.mark.skipif

			




	
	
	
		
 
parametrize = pytest.mark.parametrize

			




	
	
	
		
 

			




	
	
	
		
 
__all__ = [

			




	
	
	
		
 
    'skipif', 'parametrize', 'environ', 'url', 'TestController',

			




	
	
	
		
 
    'ldap_lib_installed', 'pam_lib_installed', 'invalidate_all_caches',

			




	
	
	
		
 
    'TESTS_TMP_PATH', 'HG_REPO', 'GIT_REPO', 'NEW_HG_REPO', 'NEW_GIT_REPO',

			




	
	
	
		
 
    'HG_FORK', 'GIT_FORK', 'TEST_USER_ADMIN_LOGIN', 'TEST_USER_ADMIN_PASS',

			




	
	
	
		
 
    'TEST_USER_ADMIN_EMAIL', 'TEST_USER_REGULAR_LOGIN', 'TEST_USER_REGULAR_PASS',

			




	
	
	
		
 
    'TEST_USER_REGULAR_EMAIL', 'TEST_USER_REGULAR2_LOGIN',

			




	
	
	
		
 
    'TEST_USER_REGULAR2_PASS', 'TEST_USER_REGULAR2_EMAIL', 'TEST_HG_REPO',

			




	
	
	
		
 
    'TEST_HG_REPO_CLONE', 'TEST_HG_REPO_PULL', 'TEST_GIT_REPO',

			




	
	
	
		
 
    'TEST_GIT_REPO_CLONE', 'TEST_GIT_REPO_PULL', 'HG_REMOTE_REPO',

			




	
	
	
		
 
    'GIT_REMOTE_REPO', 'SCM_TESTS',

			




	
	
	
		
 
]

			




	
	
	
		
 

			




	
	
	
		
 
# Invoke websetup with the current config file

			




	
	
	
		
 
# SetupCommand('setup-app').run([config_file])

			




	
	
	
		
 

			




	
	
	
		
 
environ = {}

			




	
	
	
		
 

			




	
	
	
		
 
#SOME GLOBALS FOR TESTS

			




	
	
	
		
 

			




	
	
	
		
 
TESTS_TMP_PATH = os.path.join(tempfile.gettempdir(), 'rc_test_%s' % tempfile._RandomNameSequence().next())

			




	
	
	
		
 
TEST_USER_ADMIN_LOGIN = 'test_admin'

			




	
	
	
		
 
TEST_USER_ADMIN_PASS = 'test12'

			




	
	
	
		
 
TEST_USER_ADMIN_EMAIL = 'test_admin@example.com'

			




	
	
	
		
 

			




	
	
	
		
 
TEST_USER_REGULAR_LOGIN = 'test_regular'

			




	
	
	
		
 
TEST_USER_REGULAR_PASS = 'test12'

			




	
	
	
		
 
TEST_USER_REGULAR_EMAIL = 'test_regular@example.com'

			




	
	
	
		
 

			




	
	
	
		
 
TEST_USER_REGULAR2_LOGIN = 'test_regular2'

			




	
	
	
		
 
TEST_USER_REGULAR2_PASS = 'test12'

			




	
	
	
		
 
TEST_USER_REGULAR2_EMAIL = 'test_regular2@example.com'

			




	
	
	
		
 

			




	
	
	
		
 
HG_REPO = u'vcs_test_hg'

			




	
	
	
		
 
GIT_REPO = u'vcs_test_git'

			




	
	
	
		
 

			




	
	
	
		
 
NEW_HG_REPO = u'vcs_test_hg_new'

			




	
	
	
		
 
NEW_GIT_REPO = u'vcs_test_git_new'

			




	
	
	
		
 

			




	
	
	
		
 
HG_FORK = u'vcs_test_hg_fork'

			




	
	
	
		
 
GIT_FORK = u'vcs_test_git_fork'

			




	
	
	
		
 

			




	
	
	
		
 
## VCS

			




	
	
	
		
 
SCM_TESTS = ['hg', 'git']

			




	
	
	
		
 
uniq_suffix = str(int(time.mktime(datetime.datetime.now().timetuple())))

			




	
	
	
		
 

			




	
	
	
		
 
GIT_REMOTE_REPO = 'git://github.com/codeinn/vcs.git'

			




	
	
	
		
 

			




	
	
	
		
 
TEST_GIT_REPO = os.path.join(TESTS_TMP_PATH, GIT_REPO)

			




	
	
	
		
 
TEST_GIT_REPO_CLONE = os.path.join(TESTS_TMP_PATH, 'vcsgitclone%s' % uniq_suffix)

			




	
	
	
		
 
TEST_GIT_REPO_PULL = os.path.join(TESTS_TMP_PATH, 'vcsgitpull%s' % uniq_suffix)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
HG_REMOTE_REPO = 'http://bitbucket.org/marcinkuzminski/vcs'

			




	
	
	
		
 

			




	
	
	
		
 
TEST_HG_REPO = os.path.join(TESTS_TMP_PATH, HG_REPO)

			




	
	
	
		
 
TEST_HG_REPO_CLONE = os.path.join(TESTS_TMP_PATH, 'vcshgclone%s' % uniq_suffix)

			




	
	
	
		
 
TEST_HG_REPO_PULL = os.path.join(TESTS_TMP_PATH, 'vcshgpull%s' % uniq_suffix)

			




	
	
	
		
 

			




	
	
	
		
 
TEST_DIR = tempfile.gettempdir()

			




	
	
	
		
 
TEST_REPO_PREFIX = 'vcs-test'

			




	
	
	
		
 

			




	
	
	
		
 
# cached repos if any !

			




	
	
	
		
 
# comment out to get some other repos from bb or github

			




	
	
	
		
 
GIT_REMOTE_REPO = os.path.join(TESTS_TMP_PATH, GIT_REPO)

			




	
	
	
		
 
HG_REMOTE_REPO = os.path.join(TESTS_TMP_PATH, HG_REPO)

			




	
	
	
		
 

			




	
	
	
		
 
#skip ldap tests if LDAP lib is not installed

			




	
	
	
		
 
ldap_lib_installed = False

			




	
	
	
		
 
try:

			




	
	
	
		
 
    import ldap

			




	
	
	
		
 
    ldap.API_VERSION

			




	
	
	
		
 
    ldap_lib_installed = True

			




	
	
	
		
 
except ImportError:

			




	
	
	
		
 
    # means that python-ldap is not installed

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 
try:

			




	
	
	
		
 
    import pam

			




	
	
	
		
 
    pam.PAM_TEXT_INFO

			




	
	
	
		
 
    pam_lib_installed = True

			




	
	
	
		
 
except ImportError:

			




	
	
	
		
 
    pam_lib_installed = False

			




	
	
	
		
 

			




	
	
	
		
 
def invalidate_all_caches():

			




	
	
	
		
 
    """Invalidate all beaker caches currently configured.

			




	
	
	
		
 
    Useful when manipulating IP permissions in a test and changes need to take

			




	
	
	
		
 
    effect immediately.

			




	
	
	
		
 
    Note: Any use of this function is probably a workaround - it should be

			




	
	
	
		
 
    replaced with a more specific cache invalidation in code or test."""

			




	
	
	
		
 
    from beaker.cache import cache_managers

			




	
	
	
		
 
    for cache in cache_managers.values():

			




	
	
	
		
 
        cache.clear()

			




	
	
	
		
 

			




	
	
	
		
 
class NullHandler(logging.Handler):

			




	
	
	
		
 
    def emit(self, record):

			




	
	
	
		
 
        pass

			




	
	
	
		
 

			




	
	
	
		
 
class TestController(object):

			




	
	
	
		
 
    """Pytest-style test controller"""

			




	
	
	
		
 

			




	
	
	
		
 
    # Note: pytest base classes cannot have an __init__ method

			




	
	
	
		
 

			




	
	
	
		
 
    @pytest.fixture(autouse=True)

			




	
	
	
		
 
    def app_fixture(self):

			




	
	
	
		
 
        self.wsgiapp = pylons.test.pylonsapp

			




	
	
	
		
 
        self.init_stack(self.wsgiapp.config)

			




	
	
	
		
 
        self.app = TestApp(self.wsgiapp)

			




	
	
	
		
 
        self.maxDiff = None

			




	
	
	
		
 
        self.index_location = config['app_conf']['index_dir']

			




	
	
	
		
 
        return self.app

			




	
	
	
		
 

			




	
	
	
		
 
    def init_stack(self, config=None):

			




	
	
	
		
 
        if not config:

			




	
	
	
		
 
            config = pylons.test.pylonsapp.config

			




	
	
	
		
 
        url._push_object(URLGenerator(config['routes.map'], environ))

			




	
	
	
		
 
        pylons.app_globals._push_object(config['pylons.app_globals'])

			




	
	
	
		
 
        pylons.config._push_object(config)

			




	
	
	
		
 
        pylons.tmpl_context._push_object(ContextObj())

			




	
	
	
		
 
        # Initialize a translator for tests that utilize i18n

			




	
	
	
		
 
        translator = _get_translator(pylons.config.get('lang'))

			




	
	
	
		
 
        pylons.translator._push_object(translator)

			




	
	
	
		
 
        h = NullHandler()

			




	
	
	
		
 
        logging.getLogger("kallithea").addHandler(h)

			




	
	
	
		
 

			




	
	
	
		
 
    def remove_all_notifications(self):

			




	
	
	
		
 
        # query().delete() does not (by default) trigger cascades

			




	
	
	
		
 
        # ( http://docs.sqlalchemy.org/en/rel_0_7/orm/collections.html#passive-deletes )

			




	
	
	
		
 
        # so delete the UserNotification first to ensure referential integrity.

			




	
	
	
		
 
        UserNotification.query().delete()

			




	
	
	
		
 

			




	
	
	
		
 
        Notification.query().delete()

			




	
	
	
		
 
        Session().commit()

			




	
	
	
		
 

			




	
	
	
		
 
    def log_user(self, username=TEST_USER_ADMIN_LOGIN,

			




	
	
	
		
 
                 password=TEST_USER_ADMIN_PASS):

			




	
	
	
		
 
        self._logged_username = username

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='index'),

			




	
	
	
		
 
                                 {'username': username,

			




	
	
	
		
 
                                  'password': password})

			




	
	
	
		
 

			




	
	
	
		
 
        if 'Invalid username or password' in response.body:

			




	
	
	
		
 
            pytest.fail('could not login using %s %s' % (username, password))

			




	
	
	
		
 

			




	
	
	
		
 
        assert response.status == '302 Found'

			




	
	
	
		
 
        self.assert_authenticated_user(response, username)

			




	
	
	
		
 

			




	
	
	
		
 
        response = response.follow()

			




	
	
	
		
 
        return response.session['authuser']

			




	
	
	
		
 

			




	
	
	
		
 
    def _get_logged_user(self):

			




	
	
	
		
 
        return User.get_by_username(self._logged_username)

			




	
	
	
		
 

			




	
	
	
		
 
    def assert_authenticated_user(self, response, expected_username):

			




	
	
	
		
 
        cookie = response.session.get('authuser')

			




	
	
	
		
 
        user = cookie and cookie.get('user_id')

			




	
	
	
		
 
        user = user and User.get(user)

			




	
	
	
		
 
        user = user and user.username

			




	
	
	
		
 
        assert user == expected_username

			




	
	
	
		
 

			




	
	
	
		
 
    def authentication_token(self):

			




	
	
	
		
 
        return self.app.get(url('authentication_token')).body

			




	
	
	
		
 

			




	
	
	
		
 
    def checkSessionFlash(self, response, msg=None, skip=0, _matcher=lambda msg, m: msg in m):

			




	
	
	
		
 
        if 'flash' not in response.session:

			




	
	
	
		
 
            pytest.fail(safe_str(u'msg `%s` not found - session has no flash:\n%s' % (msg, response)))

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            level, m = response.session['flash'][-1 - skip]

			




	
	
	
		
 
            if _matcher(msg, m):

			




	
	
	
		
 
                return

			




	
	
	
		
 
        except IndexError:

			




	
	
	
		
 
            pass

			




	
	
	
		
 
        pytest.fail(safe_str(u'msg `%s` not found in session flash (skipping %s): %s' %

			




	
	
	
		
 
                           (msg, skip,

			




	
	
	
		
 
                            ', '.join('`%s`' % m for level, m in response.session['flash']))))

			




	
	
	
		
 

			




	
	
	
		
 
    def checkSessionFlashRegex(self, response, regex, skip=0):

			




	
	
	
		
 
        self.checkSessionFlash(response, regex, skip=skip, _matcher=re.search)

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.