mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7791 Commits
17 Branches
Tree: 0ea4b786cb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0ea4b786cb'
${ noResults }
gitea/models/user_test.go

user_test.go 6.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"math/rand"

  9. 	"strings"

  10. 	"testing"

  11. 

  12. 	"code.gitea.io/gitea/modules/setting"

  13. 	"code.gitea.io/gitea/modules/util"

  14. 

  15. 	"github.com/stretchr/testify/assert"

  16. )

  17. 

  18. func TestGetUserEmailsByNames(t *testing.T) {

  19. 	assert.NoError(t, PrepareTestDatabase())

  20. 

  21. 	// ignore none active user email

  22. 	assert.Equal(t, []string{"user8@example.com"}, GetUserEmailsByNames([]string{"user8", "user9"}))

  23. 	assert.Equal(t, []string{"user8@example.com", "user5@example.com"}, GetUserEmailsByNames([]string{"user8", "user5"}))

  24. }

  25. 

  26. func TestUser_APIFormat(t *testing.T) {

  27. 

  28. 	user, err := GetUserByID(1)

  29. 	assert.NoError(t, err)

  30. 	assert.True(t, user.IsAdmin)

  31. 

  32. 	apiUser := user.APIFormat()

  33. 	assert.True(t, apiUser.IsAdmin)

  34. 

  35. 	user, err = GetUserByID(2)

  36. 	assert.NoError(t, err)

  37. 	assert.False(t, user.IsAdmin)

  38. 

  39. 	apiUser = user.APIFormat()

  40. 	assert.False(t, apiUser.IsAdmin)

  41. }

  42. 

  43. func TestCanCreateOrganization(t *testing.T) {

  44. 	assert.NoError(t, PrepareTestDatabase())

  45. 

  46. 	admin := AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  47. 	assert.True(t, admin.CanCreateOrganization())

  48. 

  49. 	user := AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  50. 	assert.True(t, user.CanCreateOrganization())

  51. 	// Disable user create organization permission.

  52. 	user.AllowCreateOrganization = false

  53. 	assert.False(t, user.CanCreateOrganization())

  54. 

  55. 	setting.Admin.DisableRegularOrgCreation = true

  56. 	user.AllowCreateOrganization = true

  57. 	assert.True(t, admin.CanCreateOrganization())

  58. 	assert.False(t, user.CanCreateOrganization())

  59. }

  60. 

  61. func TestSearchUsers(t *testing.T) {

  62. 	assert.NoError(t, PrepareTestDatabase())

  63. 	testSuccess := func(opts *SearchUserOptions, expectedUserOrOrgIDs []int64) {

  64. 		users, _, err := SearchUsers(opts)

  65. 		assert.NoError(t, err)

  66. 		if assert.Len(t, users, len(expectedUserOrOrgIDs)) {

  67. 			for i, expectedID := range expectedUserOrOrgIDs {

  68. 				assert.EqualValues(t, expectedID, users[i].ID)

  69. 			}

  70. 		}

  71. 	}

  72. 

  73. 	// test orgs

  74. 	testOrgSuccess := func(opts *SearchUserOptions, expectedOrgIDs []int64) {

  75. 		opts.Type = UserTypeOrganization

  76. 		testSuccess(opts, expectedOrgIDs)

  77. 	}

  78. 

  79. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1, PageSize: 2},

  80. 		[]int64{3, 6})

  81. 

  82. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 2, PageSize: 2},

  83. 		[]int64{7, 17})

  84. 

  85. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 3, PageSize: 2},

  86. 		[]int64{19})

  87. 

  88. 	testOrgSuccess(&SearchUserOptions{Page: 4, PageSize: 2},

  89. 		[]int64{})

  90. 

  91. 	// test users

  92. 	testUserSuccess := func(opts *SearchUserOptions, expectedUserIDs []int64) {

  93. 		opts.Type = UserTypeIndividual

  94. 		testSuccess(opts, expectedUserIDs)

  95. 	}

  96. 

  97. 	testUserSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1},

  98. 		[]int64{1, 2, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21})

  99. 

  100. 	testUserSuccess(&SearchUserOptions{Page: 1, IsActive: util.OptionalBoolFalse},

  101. 		[]int64{9})

  102. 

  103. 	testUserSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1, IsActive: util.OptionalBoolTrue},

  104. 		[]int64{1, 2, 4, 5, 8, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21})

  105. 

  106. 	testUserSuccess(&SearchUserOptions{Keyword: "user1", OrderBy: "id ASC", Page: 1, IsActive: util.OptionalBoolTrue},

  107. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  108. 

  109. 	// order by name asc default

  110. 	testUserSuccess(&SearchUserOptions{Keyword: "user1", Page: 1, IsActive: util.OptionalBoolTrue},

  111. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  112. }

  113. 

  114. func TestDeleteUser(t *testing.T) {

  115. 	test := func(userID int64) {

  116. 		assert.NoError(t, PrepareTestDatabase())

  117. 		user := AssertExistsAndLoadBean(t, &User{ID: userID}).(*User)

  118. 

  119. 		ownedRepos := make([]*Repository, 0, 10)

  120. 		assert.NoError(t, x.Find(&ownedRepos, &Repository{OwnerID: userID}))

  121. 		if len(ownedRepos) > 0 {

  122. 			err := DeleteUser(user)

  123. 			assert.Error(t, err)

  124. 			assert.True(t, IsErrUserOwnRepos(err))

  125. 			return

  126. 		}

  127. 

  128. 		orgUsers := make([]*OrgUser, 0, 10)

  129. 		assert.NoError(t, x.Find(&orgUsers, &OrgUser{UID: userID}))

  130. 		for _, orgUser := range orgUsers {

  131. 			if err := RemoveOrgUser(orgUser.OrgID, orgUser.UID); err != nil {

  132. 				assert.True(t, IsErrLastOrgOwner(err))

  133. 				return

  134. 			}

  135. 		}

  136. 		assert.NoError(t, DeleteUser(user))

  137. 		AssertNotExistsBean(t, &User{ID: userID})

  138. 		CheckConsistencyFor(t, &User{}, &Repository{})

  139. 	}

  140. 	test(2)

  141. 	test(4)

  142. 	test(8)

  143. 	test(11)

  144. }

  145. 

  146. func TestHashPasswordDeterministic(t *testing.T) {

  147. 	b := make([]byte, 16)

  148. 	rand.Read(b)

  149. 	u := &User{Salt: string(b)}

  150. 	for i := 0; i < 50; i++ {

  151. 		// generate a random password

  152. 		rand.Read(b)

  153. 		pass := string(b)

  154. 

  155. 		// save the current password in the user - hash it and store the result

  156. 		u.HashPassword(pass)

  157. 		r1 := u.Passwd

  158. 

  159. 		// run again

  160. 		u.HashPassword(pass)

  161. 		r2 := u.Passwd

  162. 

  163. 		// assert equal (given the same salt+pass, the same result is produced)

  164. 		assert.Equal(t, r1, r2)

  165. 	}

  166. }

  167. 

  168. func BenchmarkHashPassword(b *testing.B) {

  169. 	// BenchmarkHashPassword ensures that it takes a reasonable amount of time

  170. 	// to hash a password - in order to protect from brute-force attacks.

  171. 	pass := "password1337"

  172. 	bs := make([]byte, 16)

  173. 	rand.Read(bs)

  174. 	u := &User{Salt: string(bs), Passwd: pass}

  175. 	b.ResetTimer()

  176. 	for i := 0; i < b.N; i++ {

  177. 		u.HashPassword(pass)

  178. 	}

  179. }

  180. 

  181. func TestNewGitSig(t *testing.T) {

  182. 	users := make([]*User, 0, 20)

  183. 	sess := x.NewSession()

  184. 	defer sess.Close()

  185. 	sess.Find(&users)

  186. 

  187. 	for _, user := range users {

  188. 		sig := user.NewGitSig()

  189. 		assert.NotContains(t, sig.Name, "<")

  190. 		assert.NotContains(t, sig.Name, ">")

  191. 		assert.NotContains(t, sig.Name, "\n")

  192. 		assert.NotEqual(t, len(strings.TrimSpace(sig.Name)), 0)

  193. 	}

  194. }

  195. 

  196. func TestDisplayName(t *testing.T) {

  197. 	users := make([]*User, 0, 20)

  198. 	sess := x.NewSession()

  199. 	defer sess.Close()

  200. 	sess.Find(&users)

  201. 

  202. 	for _, user := range users {

  203. 		displayName := user.DisplayName()

  204. 		assert.Equal(t, strings.TrimSpace(displayName), displayName)

  205. 		if len(strings.TrimSpace(user.FullName)) == 0 {

  206. 			assert.Equal(t, user.Name, displayName)

  207. 		}

  208. 		assert.NotEqual(t, len(strings.TrimSpace(displayName)), 0)

  209. 	}

  210. }

  211. 

  212. func TestCreateUser(t *testing.T) {

  213. 	user := &User{

  214. 		Name:               "GiteaBot",

  215. 		Email:              "GiteaBot@gitea.io",

  216. 		Passwd:             ";p['////..-++']",

  217. 		IsAdmin:            false,

  218. 		Theme:              setting.UI.DefaultTheme,

  219. 		MustChangePassword: false,

  220. 	}

  221. 

  222. 	assert.NoError(t, CreateUser(user))

  223. 

  224. 	assert.NoError(t, DeleteUser(user))

  225. }

  226. 

  227. func TestCreateUser_Issue5882(t *testing.T) {

  228. 

  229. 	// Init settings

  230. 	_ = setting.Admin

  231. 

  232. 	passwd := ".//.;1;;//.,-=_"

  233. 

  234. 	tt := []struct {

  235. 		user               *User

  236. 		disableOrgCreation bool

  237. 	}{

  238. 		{&User{Name: "GiteaBot", Email: "GiteaBot@gitea.io", Passwd: passwd, MustChangePassword: false}, false},

  239. 		{&User{Name: "GiteaBot2", Email: "GiteaBot2@gitea.io", Passwd: passwd, MustChangePassword: false}, true},

  240. 	}

  241. 

  242. 	setting.Service.DefaultAllowCreateOrganization = true

  243. 

  244. 	for _, v := range tt {

  245. 		setting.Admin.DisableRegularOrgCreation = v.disableOrgCreation

  246. 

  247. 		assert.NoError(t, CreateUser(v.user))

  248. 

  249. 		u, err := GetUserByEmail(v.user.Email)

  250. 		assert.NoError(t, err)

  251. 

  252. 		assert.Equal(t, !u.AllowCreateOrganization, v.disableOrgCreation)

  253. 

  254. 		assert.NoError(t, DeleteUser(v.user))

  255. 	}

  256. }