gitblit/tests/com/gitblit/tests/PermissionsTest.java

/*
 * Copyright 2012 gitblit.com.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package com.gitblit.tests;

import java.util.Date;

import junit.framework.Assert;

import org.junit.Test;

import com.gitblit.Constants.AccessPermission;
import com.gitblit.Constants.AccessRestrictionType;
import com.gitblit.Constants.AuthorizationControl;
import com.gitblit.models.RepositoryModel;
import com.gitblit.models.TeamModel;
import com.gitblit.models.UserModel;

/**
 * Comprehensive, brute-force test of all permutations of discrete permissions.
 * 
 * @author James Moger
 *
 */
public class PermissionsTest extends Assert {

	/**
	 * Admin access rights/permissions
	 */
	@Test
	public void testAdmin() throws Exception {
		UserModel user = new UserModel("admin");
		user.canAdmin = true;
		
		for (AccessRestrictionType ar : AccessRestrictionType.values()) {
			RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
			repository.authorizationControl = AuthorizationControl.NAMED;
			repository.accessRestriction = ar;
				
			assertTrue("admin CAN NOT view!", user.canView(repository));
			assertTrue("admin CAN NOT clone!", user.canClone(repository));
			assertTrue("admin CAN NOT push!", user.canPush(repository));
			
			assertTrue("admin CAN NOT create ref!", user.canCreateRef(repository));
			assertTrue("admin CAN NOT delete ref!", user.canDeleteRef(repository));
			assertTrue("admin CAN NOT rewind ref!", user.canRewindRef(repository));
			
			assertTrue("admin CAN NOT fork!", user.canFork(repository));
			
			assertTrue("admin CAN NOT delete!", user.canDelete(repository));
			assertTrue("admin CAN NOT edit!", user.canEdit(repository));
		}
	}
	
	/**
	 * Anonymous access rights/permissions 
	 */
	@Test
	public void testAnonymous_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;
		
		UserModel user = UserModel.ANONYMOUS;
		
		// all permissions, except fork
		assertTrue("anonymous CAN NOT view!", user.canView(repository));
		assertTrue("anonymous CAN NOT clone!", user.canClone(repository));
		assertTrue("anonymous CAN NOT push!", user.canPush(repository));
		
		assertTrue("anonymous CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("anonymous CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("anonymous CAN NOT rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
		
		assertFalse("anonymous CAN delete!", user.canDelete(repository));
		assertFalse("anonymous CAN edit!", user.canEdit(repository));
	}
	
	@Test
	public void testAnonymous_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		UserModel user = UserModel.ANONYMOUS;

		assertTrue("anonymous CAN NOT view!", user.canView(repository));
		assertTrue("anonymous CAN NOT clone!", user.canClone(repository));
		assertFalse("anonymous CAN push!", user.canPush(repository));
		
		assertFalse("anonymous CAN create ref!", user.canCreateRef(repository));
		assertFalse("anonymous CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("anonymous CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
	}
	
	@Test
	public void testAnonymous_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		UserModel user = UserModel.ANONYMOUS;

		assertTrue("anonymous CAN NOT view!", user.canView(repository));
		assertFalse("anonymous CAN clone!", user.canClone(repository));
		assertFalse("anonymous CAN push!", user.canPush(repository));
		
		assertFalse("anonymous CAN create ref!", user.canCreateRef(repository));
		assertFalse("anonymous CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("anonymous CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
	}
	
	@Test
	public void testAnonymous_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = UserModel.ANONYMOUS;

		assertFalse("anonymous CAN view!", user.canView(repository));
		assertFalse("anonymous CAN clone!", user.canClone(repository));
		assertFalse("anonymous CAN push!", user.canPush(repository));
		
		assertFalse("anonymous CAN create ref!", user.canCreateRef(repository));
		assertFalse("anonymous CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("anonymous CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("anonymous CAN fork!", user.canFork(repository));
	}
	
	/**
	 * Authenticated access rights/permissions 
	 */
	@Test
	public void testAuthenticated_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.AUTHENTICATED;
		repository.accessRestriction = AccessRestrictionType.NONE;
		
		UserModel user = new UserModel("test");
		
		// all permissions, except fork
		assertTrue("authenticated CAN NOT view!", user.canView(repository));
		assertTrue("authenticated CAN NOT clone!", user.canClone(repository));
		assertTrue("authenticated CAN NOT push!", user.canPush(repository));
		
		assertTrue("authenticated CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("authenticated CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("authenticated CAN NOT rewind ref!", user.canRewindRef(repository));

		user.canFork = false;
		repository.allowForks = false;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertTrue("authenticated CAN NOT fork!", user.canFork(repository));
		
		assertFalse("authenticated CAN delete!", user.canDelete(repository));
		assertFalse("authenticated CAN edit!", user.canEdit(repository));
	}

	@Test
	public void testAuthenticated_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.AUTHENTICATED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");

		assertTrue("authenticated CAN NOT view!", user.canView(repository));
		assertTrue("authenticated CAN NOT clone!", user.canClone(repository));
		assertTrue("authenticated CAN NOT push!", user.canPush(repository));
		
		assertTrue("authenticated CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("authenticated CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("authenticated CAN NOT rewind ref!", user.canRewindRef(repository));

		user.canFork = false;
		repository.allowForks = false;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertTrue("authenticated CAN NOT fork!", user.canFork(repository));
	}
	
	@Test
	public void testAuthenticated_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.AUTHENTICATED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
			
		UserModel user = new UserModel("test");

		assertTrue("authenticated CAN NOT view!", user.canView(repository));
		assertTrue("authenticated CAN NOT clone!", user.canClone(repository));
		assertTrue("authenticated CAN NOT push!", user.canPush(repository));
		
		assertTrue("authenticated CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("authenticated CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("authenticated CAN NOT rewind ref!", user.canRewindRef(repository));

		user.canFork = false;
		repository.allowForks = false;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertTrue("authenticated CAN NOT fork!", user.canFork(repository));
	}
	
	@Test
	public void testAuthenticated_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.AUTHENTICATED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
			
		UserModel user = new UserModel("test");

		assertTrue("authenticated CAN NOT view!", user.canView(repository));
		assertTrue("authenticated CAN NOT clone!", user.canClone(repository));
		assertTrue("authenticated CAN NOT push!", user.canPush(repository));
		
		assertTrue("authenticated CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("authenticated CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("authenticated CAN NOT rewind ref!", user.canRewindRef(repository));

		user.canFork = false;
		repository.allowForks = false;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("authenticated CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertTrue("authenticated CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * NONE_NONE = NO access restriction, NO access permission
	 */
	@Test
	public void testNamed_NONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
		
		assertFalse("named CAN delete!", user.canDelete(repository));
		assertFalse("named CAN edit!", user.canEdit(repository));
	}
	
	/**
	 * PUSH_NONE = PUSH access restriction, NO access permission
	 */
	@Test
	public void testNamed_PUSH_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_NONE = CLONE access restriction, NO access permission
	 */
	@Test
	public void testNamed_CLONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertFalse("named CAN clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_NONE = VIEW access restriction, NO access permission
	 */
	@Test
	public void testNamed_VIEW_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		
		assertFalse("named CAN view!", user.canView(repository));
		assertFalse("named CAN clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("named CAN NOT fork!", user.canFork(repository));
	}

	
	/**
	 * NONE_VIEW = NO access restriction, VIEW access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_VIEW = PUSH access restriction, VIEW access permission
	 */
	@Test
	public void testNamed_PUSH_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_VIEW = CLONE access restriction, VIEW access permission
	 */
	@Test
	public void testNamed_CLONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.VIEW);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertFalse("named CAN clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_VIEW = VIEW access restriction, VIEW access permission
	 */
	@Test
	public void testNamed_VIEW_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.VIEW);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertFalse("named CAN clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertFalse("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * NONE_CLONE = NO access restriction, CLONE access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_CLONE = PUSH access restriction, CLONE access permission
	 */
	@Test
	public void testNamed_PUSH_READ() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_CLONE = CLONE access restriction, CLONE access permission
	 */
	@Test
	public void testNamed_CLONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CLONE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_CLONE = VIEW access restriction, CLONE access permission
	 */
	@Test
	public void testNamed_VIEW_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CLONE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertFalse("named CAN push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}	

	/**
	 * NONE_PUSH = NO access restriction, PUSH access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_PUSH = PUSH access restriction, PUSH access permission
	 */
	@Test
	public void testNamed_PUSH_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_PUSH = CLONE access restriction, PUSH access permission
	 */
	@Test
	public void testNamed_CLONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.PUSH);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete red!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_PUSH = VIEW access restriction, PUSH access permission
	 */
	@Test
	public void testNamed_VIEW_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.PUSH);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN not push!", user.canPush(repository));
		
		assertFalse("named CAN create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}

	/**
	 * NONE_CREATE = NO access restriction, CREATE access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_CREATE = PUSH access restriction, CREATE access permission
	 */
	@Test
	public void testNamed_PUSH_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_CREATE = CLONE access restriction, CREATE access permission
	 */
	@Test
	public void testNamed_CLONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CREATE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete red!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_CREATE = VIEW access restriction, CREATE access permission
	 */
	@Test
	public void testNamed_VIEW_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.CREATE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN not push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("named CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}

	/**
	 * NONE_DELETE = NO access restriction, DELETE access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_DELETE = PUSH access restriction, DELETE access permission
	 */
	@Test
	public void testNamed_PUSH_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_DELETE = CLONE access restriction, DELETE access permission
	 */
	@Test
	public void testNamed_CLONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.DELETE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete red!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_DELETE = VIEW access restriction, DELETE access permission
	 */
	@Test
	public void testNamed_VIEW_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.DELETE);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN not push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertFalse("named CAN rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * NONE_REWIND = NO access restriction, REWIND access permission.
	 * (not useful scenario)
	 */
	@Test
	public void testNamed_NONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * PUSH_REWIND = PUSH access restriction, REWIND access permission
	 */
	@Test
	public void testNamed_PUSH_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * CLONE_REWIND = CLONE access restriction, REWIND access permission
	 */
	@Test
	public void testNamed_CLONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.REWIND);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));

		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * VIEW_REWIND = VIEW access restriction, REWIND access permission
	 */
	@Test
	public void testNamed_VIEW_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;
		
		UserModel user = new UserModel("test");
		user.setRepositoryPermission(repository.name, AccessPermission.REWIND);

		assertTrue("named CAN NOT view!", user.canView(repository));
		assertTrue("named CAN NOT clone!", user.canClone(repository));
		assertTrue("named CAN NOT push!", user.canPush(repository));
		
		assertTrue("named CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("named CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("named CAN NOT rewind ref!", user.canRewindRef(repository));
		
		repository.allowForks = false;
		user.canFork = false;
		assertFalse("named CAN fork!", user.canFork(repository));
		user.canFork = true;
		assertFalse("named CAN fork!", user.canFork(repository));
		repository.allowForks = true;
		assertTrue("named CAN NOT fork!", user.canFork(repository));
	}
	
	/**
	 * NONE_NONE = NO access restriction, NO access permission
	 */
	@Test
	public void testTeam_NONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * PUSH_NONE = PUSH access restriction, NO access permission
	 */
	@Test
	public void testTeam_PUSH_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * CLONE_NONE = CLONE access restriction, NO access permission
	 */
	@Test
	public void testTeam_CLONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertFalse("team CAN clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * VIEW_NONE = VIEW access restriction, NO access permission
	 */
	@Test
	public void testTeam_VIEW_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		
		assertFalse("team CAN view!", team.canView(repository));
		assertFalse("team CAN clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * NONE_PUSH = NO access restriction, PUSH access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * PUSH_PUSH = PUSH access restriction, PUSH access permission
	 */
	@Test
	public void testTeam_PUSH_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * CLONE_PUSH = CLONE access restriction, PUSH access permission
	 */
	@Test
	public void testTeam_CLONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_PUSH = VIEW access restriction, PUSH access permission
	 */
	@Test
	public void testTeam_VIEW_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * NONE_CREATE = NO access restriction, CREATE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * PUSH_CREATE = PUSH access restriction, CREATE access permission
	 */
	@Test
	public void testTeam_PUSH_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * CLONE_CREATE = CLONE access restriction, CREATE access permission
	 */
	@Test
	public void testTeam_CLONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_CREATE = VIEW access restriction, CREATE access permission
	 */
	@Test
	public void testTeam_VIEW_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * NONE_DELETE = NO access restriction, DELETE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * PUSH_DELETE = PUSH access restriction, DELETE access permission
	 */
	@Test
	public void testTeam_PUSH_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * CLONE_DELETE = CLONE access restriction, DELETE access permission
	 */
	@Test
	public void testTeam_CLONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_DELETE = VIEW access restriction, DELETE access permission
	 */
	@Test
	public void testTeam_VIEW_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * NONE_REWIND = NO access restriction, REWIND access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * PUSH_REWIND = PUSH access restriction, REWIND access permission
	 */
	@Test
	public void testTeam_PUSH_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * CLONE_REWIND = CLONE access restriction, REWIND access permission
	 */
	@Test
	public void testTeam_CLONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_REWIND = VIEW access restriction, REWIND access permission
	 */
	@Test
	public void testTeam_VIEW_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * NONE_CLONE = NO access restriction, CLONE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * PUSH_CLONE = PUSH access restriction, CLONE access permission
	 */
	@Test
	public void testTeam_PUSH_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * CLONE_CLONE = CLONE access restriction, CLONE access permission
	 */
	@Test
	public void testTeam_CLONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_CLONE = VIEW access restriction, CLONE access permission
	 */
	@Test
	public void testTeam_VIEW_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * NONE_VIEW = NO access restriction, VIEW access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeam_NONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertTrue("team CAN NOT push!", team.canPush(repository));
		
		assertTrue("team CAN NOT create ref!", team.canCreateRef(repository));
		assertTrue("team CAN NOT delete ref!", team.canDeleteRef(repository));
		assertTrue("team CAN NOT rewind ref!", team.canRewindRef(repository));
	}

	/**
	 * PUSH_VIEW = PUSH access restriction, VIEW access permission
	 */
	@Test
	public void testTeam_PUSH_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertTrue("team CAN NOT clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * CLONE_VIEW = CLONE access restriction, VIEW access permission
	 */
	@Test
	public void testTeam_CLONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertFalse("team CAN clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * VIEW_VIEW = VIEW access restriction, VIEW access permission
	 */
	@Test
	public void testTeam_VIEW_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		
		assertTrue("team CAN NOT view!", team.canView(repository));
		assertFalse("team CAN clone!", team.canClone(repository));
		assertFalse("team CAN push!", team.canPush(repository));
		
		assertFalse("team CAN create ref!", team.canCreateRef(repository));
		assertFalse("team CAN delete ref!", team.canDeleteRef(repository));
		assertFalse("team CAN rewind ref!", team.canRewindRef(repository));
	}
	
	/**
	 * NONE_NONE = NO access restriction, NO access permission
	 */
	@Test
	public void testTeamMember_NONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * PUSH_NONE = PUSH access restriction, NO access permission
	 */
	@Test
	public void testTeamMember_PUSH_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * CLONE_NONE = CLONE access restriction, NO access permission
	 */
	@Test
	public void testTeamMember_CLONE_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertFalse("team member CAN clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * VIEW_NONE = VIEW access restriction, NO access permission
	 */
	@Test
	public void testTeamMember_VIEW_NONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertFalse("team member CAN view!", user.canView(repository));
		assertFalse("team member CAN clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * NONE_PUSH = NO access restriction, PUSH access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * PUSH_PUSH = PUSH access restriction, PUSH access permission
	 */
	@Test
	public void testTeamMember_PUSH_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * CLONE_PUSH = CLONE access restriction, PUSH access permission
	 */
	@Test
	public void testTeamMember_CLONE_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_PUSH = VIEW access restriction, PUSH access permission
	 */
	@Test
	public void testTeamMember_VIEW_PUSH() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.PUSH);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * NONE_CREATE = NO access restriction, CREATE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * PUSH_CREATE = PUSH access restriction, CREATE access permission
	 */
	@Test
	public void testTeamMember_PUSH_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * CLONE_CREATE = CLONE access restriction, CREATE access permission
	 */
	@Test
	public void testTeamMember_CLONE_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_CREATE = VIEW access restriction, CREATE access permission
	 */
	@Test
	public void testTeamMember_VIEW_CREATE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CREATE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * NONE_DELETE = NO access restriction, DELETE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * PUSH_DELETE = PUSH access restriction, DELETE access permission
	 */
	@Test
	public void testTeamMember_PUSH_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * CLONE_DELETE = CLONE access restriction, DELETE access permission
	 */
	@Test
	public void testTeamMember_CLONE_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_DELETE = VIEW access restriction, DELETE access permission
	 */
	@Test
	public void testTeamMember_VIEW_DELETE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.DELETE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * NONE_REWIND = NO access restriction, REWIND access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		UserModel user = new UserModel("test");
		user.teams.add(team);
		
		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * PUSH_REWIND = PUSH access restriction, REWIND access permission
	 */
	@Test
	public void testTeamMember_PUSH_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * CLONE_REWIND = CLONE access restriction, REWIND access permission
	 */
	@Test
	public void testTeamMember_CLONE_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_REWIND = VIEW access restriction, REWIND access permission
	 */
	@Test
	public void testTeamMember_VIEW_REWIND() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.REWIND);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * NONE_CLONE = NO access restriction, CLONE access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * PUSH_CLONE = PUSH access restriction, CLONE access permission
	 */
	@Test
	public void testTeamMember_PUSH_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * CLONE_CLONE = CLONE access restriction, CLONE access permission
	 */
	@Test
	public void testTeamMember_CLONE_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_CLONE = VIEW access restriction, CLONE access permission
	 */
	@Test
	public void testTeamMember_VIEW_CLONE() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.CLONE);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * NONE_VIEW = NO access restriction, VIEW access permission
	 * (not useful scenario)
	 */
	@Test
	public void testTeamMember_NONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.NONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertTrue("team member CAN NOT push!", user.canPush(repository));
		
		assertTrue("team member CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("team member CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("team member CAN NOT rewind ref!", user.canRewindRef(repository));
	}

	/**
	 * PUSH_VIEW = PUSH access restriction, VIEW access permission
	 */
	@Test
	public void testTeamMember_PUSH_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.PUSH;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertTrue("team member CAN NOT clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * CLONE_VIEW = CLONE access restriction, VIEW access permission
	 */
	@Test
	public void testTeamMember_CLONE_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.CLONE;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertFalse("team member CAN clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	/**
	 * VIEW_VIEW = VIEW access restriction, VIEW access permission
	 */
	@Test
	public void testTeamMember_VIEW_VIEW() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		TeamModel team = new TeamModel("test");
		team.setRepositoryPermission(repository.name, AccessPermission.VIEW);
		UserModel user = new UserModel("test");
		user.teams.add(team);

		assertTrue("team member CAN NOT view!", user.canView(repository));
		assertFalse("team member CAN clone!", user.canClone(repository));
		assertFalse("team member CAN push!", user.canPush(repository));
		
		assertFalse("team member CAN create ref!", user.canCreateRef(repository));
		assertFalse("team member CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("team member CAN rewind ref!", user.canRewindRef(repository));
	}
	
	@Test
	public void testOwner() throws Exception {
		RepositoryModel repository = new RepositoryModel("myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		UserModel user = new UserModel("test");
		repository.owner = user.username;

		assertFalse("user SHOULD NOT HAVE a repository permission!", user.hasRepositoryPermission(repository.name));
		assertTrue("owner CAN NOT view!", user.canView(repository));
		assertTrue("owner CAN NOT clone!", user.canClone(repository));
		assertTrue("owner CAN NOT push!", user.canPush(repository));
		
		assertTrue("owner CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("owner CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("owner CAN NOT rewind ref!", user.canRewindRef(repository));

		assertTrue("owner CAN NOT fork!", user.canFork(repository));
		
		assertFalse("owner CAN NOT delete!", user.canDelete(repository));
		assertTrue("owner CAN NOT edit!", user.canEdit(repository));
	}
	
	@Test
	public void testOwnerPersonalRepository() throws Exception {
		RepositoryModel repository = new RepositoryModel("~test/myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		UserModel user = new UserModel("test");
		repository.owner = user.username;

		assertFalse("user SHOULD NOT HAVE a repository permission!", user.hasRepositoryPermission(repository.name));
		assertTrue("user CAN NOT view!", user.canView(repository));
		assertTrue("user CAN NOT clone!", user.canClone(repository));
		assertTrue("user CAN NOT push!", user.canPush(repository));
		
		assertTrue("user CAN NOT create ref!", user.canCreateRef(repository));
		assertTrue("user CAN NOT delete ref!", user.canDeleteRef(repository));
		assertTrue("user CAN NOT rewind ref!", user.canRewindRef(repository));

		assertFalse("user CAN fork!", user.canFork(repository));
		
		assertTrue("user CAN NOT delete!", user.canDelete(repository));
		assertTrue("user CAN NOT edit!", user.canEdit(repository));
	}

	@Test
	public void testVisitorPersonalRepository() throws Exception {
		RepositoryModel repository = new RepositoryModel("~test/myrepo.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		UserModel user = new UserModel("visitor");
		repository.owner = "test";

		assertFalse("user HAS a repository permission!", user.hasRepositoryPermission(repository.name));
		assertFalse("user CAN view!", user.canView(repository));
		assertFalse("user CAN clone!", user.canClone(repository));
		assertFalse("user CAN push!", user.canPush(repository));
		
		assertFalse("user CAN create ref!", user.canCreateRef(repository));
		assertFalse("user CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("user CAN rewind ref!", user.canRewindRef(repository));

		assertFalse("user CAN fork!", user.canFork(repository));
		
		assertFalse("user CAN delete!", user.canDelete(repository));
		assertFalse("user CAN edit!", user.canEdit(repository));
	}
	
	@Test
	public void testWildcardMatching() throws Exception {
		RepositoryModel repository = new RepositoryModel("ubercool/_my-r/e~po.git", null, null, new Date());
		repository.authorizationControl = AuthorizationControl.NAMED;
		repository.accessRestriction = AccessRestrictionType.VIEW;

		UserModel user = new UserModel("test");
		user.setRepositoryPermission("ubercool/[A-Z0-9-~_\\./]+", AccessPermission.CLONE);

		assertTrue("user DOES NOT HAVE a repository permission!", user.hasRepositoryPermission(repository.name));
		assertTrue("user CAN NOT view!", user.canView(repository));
		assertTrue("user CAN NOT clone!", user.canClone(repository));
		assertFalse("user CAN push!", user.canPush(repository));
		
		assertFalse("user CAN create ref!", user.canCreateRef(repository));
		assertFalse("user CAN delete ref!", user.canDeleteRef(repository));
		assertFalse("user CAN rewind ref!", user.canRewindRef(repository));

		assertFalse("user CAN fork!", user.canFork(repository));
		
		assertFalse("user CAN delete!", user.canDelete(repository));
		assertFalse("user CAN edit!", user.canEdit(repository));
	}
	
	@Test
	public void testAdminTeamInheritance() throws Exception {
		UserModel user = new UserModel("test");
		TeamModel team = new TeamModel("team");
		team.canAdmin = true;
		user.teams.add(team);
		assertTrue("User did not inherit admin privileges", user.canAdmin());
	}
	
	@Test
	public void testForkTeamInheritance() throws Exception {
		UserModel user = new UserModel("test");
		TeamModel team = new TeamModel("team");
		team.canFork = true;
		user.teams.add(team);
		assertTrue("User did not inherit fork privileges", user.canFork());
	}

	@Test
	public void testCreateTeamInheritance() throws Exception {
		UserModel user = new UserModel("test");
		TeamModel team = new TeamModel("team");
		team.canCreate= true;
		user.teams.add(team);
		assertTrue("User did not inherit create privileges", user.canCreate());
	}

}