mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12238 Commits
17 Branches
Tree: 12938dd35f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '12938dd35f'
${ noResults }
gitea/models/access_test.go

access_test.go 5.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"testing"

  9. 

  10. 	"code.gitea.io/gitea/models/db"

  11. 	"github.com/stretchr/testify/assert"

  12. )

  13. 

  14. func TestAccessLevel(t *testing.T) {

  15. 	assert.NoError(t, db.PrepareTestDatabase())

  16. 

  17. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  18. 	user5 := db.AssertExistsAndLoadBean(t, &User{ID: 5}).(*User)

  19. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  20. 	// A public repository owned by User 2

  21. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 1}).(*Repository)

  22. 	assert.False(t, repo1.IsPrivate)

  23. 	// A private repository owned by Org 3

  24. 	repo3 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  25. 	assert.True(t, repo3.IsPrivate)

  26. 

  27. 	// Another public repository

  28. 	repo4 := db.AssertExistsAndLoadBean(t, &Repository{ID: 4}).(*Repository)

  29. 	assert.False(t, repo4.IsPrivate)

  30. 	// org. owned private repo

  31. 	repo24 := db.AssertExistsAndLoadBean(t, &Repository{ID: 24}).(*Repository)

  32. 

  33. 	level, err := AccessLevel(user2, repo1)

  34. 	assert.NoError(t, err)

  35. 	assert.Equal(t, AccessModeOwner, level)

  36. 

  37. 	level, err = AccessLevel(user2, repo3)

  38. 	assert.NoError(t, err)

  39. 	assert.Equal(t, AccessModeOwner, level)

  40. 

  41. 	level, err = AccessLevel(user5, repo1)

  42. 	assert.NoError(t, err)

  43. 	assert.Equal(t, AccessModeRead, level)

  44. 

  45. 	level, err = AccessLevel(user5, repo3)

  46. 	assert.NoError(t, err)

  47. 	assert.Equal(t, AccessModeNone, level)

  48. 

  49. 	// restricted user has no access to a public repo

  50. 	level, err = AccessLevel(user29, repo1)

  51. 	assert.NoError(t, err)

  52. 	assert.Equal(t, AccessModeNone, level)

  53. 

  54. 	// ... unless he's a collaborator

  55. 	level, err = AccessLevel(user29, repo4)

  56. 	assert.NoError(t, err)

  57. 	assert.Equal(t, AccessModeWrite, level)

  58. 

  59. 	// ... or a team member

  60. 	level, err = AccessLevel(user29, repo24)

  61. 	assert.NoError(t, err)

  62. 	assert.Equal(t, AccessModeRead, level)

  63. }

  64. 

  65. func TestHasAccess(t *testing.T) {

  66. 	assert.NoError(t, db.PrepareTestDatabase())

  67. 

  68. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  69. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 5}).(*User)

  70. 	// A public repository owned by User 2

  71. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 1}).(*Repository)

  72. 	assert.False(t, repo1.IsPrivate)

  73. 	// A private repository owned by Org 3

  74. 	repo2 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  75. 	assert.True(t, repo2.IsPrivate)

  76. 

  77. 	has, err := HasAccess(user1.ID, repo1)

  78. 	assert.NoError(t, err)

  79. 	assert.True(t, has)

  80. 

  81. 	_, err = HasAccess(user1.ID, repo2)

  82. 	assert.NoError(t, err)

  83. 

  84. 	_, err = HasAccess(user2.ID, repo1)

  85. 	assert.NoError(t, err)

  86. 

  87. 	_, err = HasAccess(user2.ID, repo2)

  88. 	assert.NoError(t, err)

  89. }

  90. 

  91. func TestUser_GetRepositoryAccesses(t *testing.T) {

  92. 	assert.NoError(t, db.PrepareTestDatabase())

  93. 

  94. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  95. 	accesses, err := user1.GetRepositoryAccesses()

  96. 	assert.NoError(t, err)

  97. 	assert.Len(t, accesses, 0)

  98. 

  99. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  100. 	accesses, err = user29.GetRepositoryAccesses()

  101. 	assert.NoError(t, err)

  102. 	assert.Len(t, accesses, 2)

  103. }

  104. 

  105. func TestUser_GetAccessibleRepositories(t *testing.T) {

  106. 	assert.NoError(t, db.PrepareTestDatabase())

  107. 

  108. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  109. 	repos, err := user1.GetAccessibleRepositories(0)

  110. 	assert.NoError(t, err)

  111. 	assert.Len(t, repos, 0)

  112. 

  113. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  114. 	repos, err = user2.GetAccessibleRepositories(0)

  115. 	assert.NoError(t, err)

  116. 	assert.Len(t, repos, 4)

  117. 

  118. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  119. 	repos, err = user29.GetAccessibleRepositories(0)

  120. 	assert.NoError(t, err)

  121. 	assert.Len(t, repos, 2)

  122. }

  123. 

  124. func TestRepository_RecalculateAccesses(t *testing.T) {

  125. 	// test with organization repo

  126. 	assert.NoError(t, db.PrepareTestDatabase())

  127. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  128. 	assert.NoError(t, repo1.GetOwner())

  129. 

  130. 	_, err := db.GetEngine(db.DefaultContext).Delete(&Collaboration{UserID: 2, RepoID: 3})

  131. 	assert.NoError(t, err)

  132. 	assert.NoError(t, repo1.RecalculateAccesses())

  133. 

  134. 	access := &Access{UserID: 2, RepoID: 3}

  135. 	has, err := db.GetEngine(db.DefaultContext).Get(access)

  136. 	assert.NoError(t, err)

  137. 	assert.True(t, has)

  138. 	assert.Equal(t, AccessModeOwner, access.Mode)

  139. }

  140. 

  141. func TestRepository_RecalculateAccesses2(t *testing.T) {

  142. 	// test with non-organization repo

  143. 	assert.NoError(t, db.PrepareTestDatabase())

  144. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 4}).(*Repository)

  145. 	assert.NoError(t, repo1.GetOwner())

  146. 

  147. 	_, err := db.GetEngine(db.DefaultContext).Delete(&Collaboration{UserID: 4, RepoID: 4})

  148. 	assert.NoError(t, err)

  149. 	assert.NoError(t, repo1.RecalculateAccesses())

  150. 

  151. 	has, err := db.GetEngine(db.DefaultContext).Get(&Access{UserID: 4, RepoID: 4})

  152. 	assert.NoError(t, err)

  153. 	assert.False(t, has)

  154. }

  155. 

  156. func TestRepository_RecalculateAccesses3(t *testing.T) {

  157. 	assert.NoError(t, db.PrepareTestDatabase())

  158. 	team5 := db.AssertExistsAndLoadBean(t, &Team{ID: 5}).(*Team)

  159. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  160. 

  161. 	has, err := db.GetEngine(db.DefaultContext).Get(&Access{UserID: 29, RepoID: 23})

  162. 	assert.NoError(t, err)

  163. 	assert.False(t, has)

  164. 

  165. 	// adding user29 to team5 should add an explicit access row for repo 23

  166. 	// even though repo 23 is public

  167. 	assert.NoError(t, AddTeamMember(team5, user29.ID))

  168. 

  169. 	has, err = db.GetEngine(db.DefaultContext).Get(&Access{UserID: 29, RepoID: 23})

  170. 	assert.NoError(t, err)

  171. 	assert.True(t, has)

  172. }