mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12280 Commits
17 Branches
Tree: df64fa4865
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'df64fa4865'
${ noResults }
gitea/models/access_test.go

access_test.go 5.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"testing"

  9. 

  10. 	"code.gitea.io/gitea/models/db"

  11. 	"code.gitea.io/gitea/models/unittest"

  12. 	"github.com/stretchr/testify/assert"

  13. )

  14. 

  15. func TestAccessLevel(t *testing.T) {

  16. 	assert.NoError(t, unittest.PrepareTestDatabase())

  17. 

  18. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  19. 	user5 := db.AssertExistsAndLoadBean(t, &User{ID: 5}).(*User)

  20. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  21. 	// A public repository owned by User 2

  22. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 1}).(*Repository)

  23. 	assert.False(t, repo1.IsPrivate)

  24. 	// A private repository owned by Org 3

  25. 	repo3 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  26. 	assert.True(t, repo3.IsPrivate)

  27. 

  28. 	// Another public repository

  29. 	repo4 := db.AssertExistsAndLoadBean(t, &Repository{ID: 4}).(*Repository)

  30. 	assert.False(t, repo4.IsPrivate)

  31. 	// org. owned private repo

  32. 	repo24 := db.AssertExistsAndLoadBean(t, &Repository{ID: 24}).(*Repository)

  33. 

  34. 	level, err := AccessLevel(user2, repo1)

  35. 	assert.NoError(t, err)

  36. 	assert.Equal(t, AccessModeOwner, level)

  37. 

  38. 	level, err = AccessLevel(user2, repo3)

  39. 	assert.NoError(t, err)

  40. 	assert.Equal(t, AccessModeOwner, level)

  41. 

  42. 	level, err = AccessLevel(user5, repo1)

  43. 	assert.NoError(t, err)

  44. 	assert.Equal(t, AccessModeRead, level)

  45. 

  46. 	level, err = AccessLevel(user5, repo3)

  47. 	assert.NoError(t, err)

  48. 	assert.Equal(t, AccessModeNone, level)

  49. 

  50. 	// restricted user has no access to a public repo

  51. 	level, err = AccessLevel(user29, repo1)

  52. 	assert.NoError(t, err)

  53. 	assert.Equal(t, AccessModeNone, level)

  54. 

  55. 	// ... unless he's a collaborator

  56. 	level, err = AccessLevel(user29, repo4)

  57. 	assert.NoError(t, err)

  58. 	assert.Equal(t, AccessModeWrite, level)

  59. 

  60. 	// ... or a team member

  61. 	level, err = AccessLevel(user29, repo24)

  62. 	assert.NoError(t, err)

  63. 	assert.Equal(t, AccessModeRead, level)

  64. }

  65. 

  66. func TestHasAccess(t *testing.T) {

  67. 	assert.NoError(t, unittest.PrepareTestDatabase())

  68. 

  69. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  70. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 5}).(*User)

  71. 	// A public repository owned by User 2

  72. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 1}).(*Repository)

  73. 	assert.False(t, repo1.IsPrivate)

  74. 	// A private repository owned by Org 3

  75. 	repo2 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  76. 	assert.True(t, repo2.IsPrivate)

  77. 

  78. 	has, err := HasAccess(user1.ID, repo1)

  79. 	assert.NoError(t, err)

  80. 	assert.True(t, has)

  81. 

  82. 	_, err = HasAccess(user1.ID, repo2)

  83. 	assert.NoError(t, err)

  84. 

  85. 	_, err = HasAccess(user2.ID, repo1)

  86. 	assert.NoError(t, err)

  87. 

  88. 	_, err = HasAccess(user2.ID, repo2)

  89. 	assert.NoError(t, err)

  90. }

  91. 

  92. func TestUser_GetRepositoryAccesses(t *testing.T) {

  93. 	assert.NoError(t, unittest.PrepareTestDatabase())

  94. 

  95. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  96. 	accesses, err := user1.GetRepositoryAccesses()

  97. 	assert.NoError(t, err)

  98. 	assert.Len(t, accesses, 0)

  99. 

  100. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  101. 	accesses, err = user29.GetRepositoryAccesses()

  102. 	assert.NoError(t, err)

  103. 	assert.Len(t, accesses, 2)

  104. }

  105. 

  106. func TestUser_GetAccessibleRepositories(t *testing.T) {

  107. 	assert.NoError(t, unittest.PrepareTestDatabase())

  108. 

  109. 	user1 := db.AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  110. 	repos, err := user1.GetAccessibleRepositories(0)

  111. 	assert.NoError(t, err)

  112. 	assert.Len(t, repos, 0)

  113. 

  114. 	user2 := db.AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  115. 	repos, err = user2.GetAccessibleRepositories(0)

  116. 	assert.NoError(t, err)

  117. 	assert.Len(t, repos, 4)

  118. 

  119. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  120. 	repos, err = user29.GetAccessibleRepositories(0)

  121. 	assert.NoError(t, err)

  122. 	assert.Len(t, repos, 2)

  123. }

  124. 

  125. func TestRepository_RecalculateAccesses(t *testing.T) {

  126. 	// test with organization repo

  127. 	assert.NoError(t, unittest.PrepareTestDatabase())

  128. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 3}).(*Repository)

  129. 	assert.NoError(t, repo1.GetOwner())

  130. 

  131. 	_, err := db.GetEngine(db.DefaultContext).Delete(&Collaboration{UserID: 2, RepoID: 3})

  132. 	assert.NoError(t, err)

  133. 	assert.NoError(t, repo1.RecalculateAccesses())

  134. 

  135. 	access := &Access{UserID: 2, RepoID: 3}

  136. 	has, err := db.GetEngine(db.DefaultContext).Get(access)

  137. 	assert.NoError(t, err)

  138. 	assert.True(t, has)

  139. 	assert.Equal(t, AccessModeOwner, access.Mode)

  140. }

  141. 

  142. func TestRepository_RecalculateAccesses2(t *testing.T) {

  143. 	// test with non-organization repo

  144. 	assert.NoError(t, unittest.PrepareTestDatabase())

  145. 	repo1 := db.AssertExistsAndLoadBean(t, &Repository{ID: 4}).(*Repository)

  146. 	assert.NoError(t, repo1.GetOwner())

  147. 

  148. 	_, err := db.GetEngine(db.DefaultContext).Delete(&Collaboration{UserID: 4, RepoID: 4})

  149. 	assert.NoError(t, err)

  150. 	assert.NoError(t, repo1.RecalculateAccesses())

  151. 

  152. 	has, err := db.GetEngine(db.DefaultContext).Get(&Access{UserID: 4, RepoID: 4})

  153. 	assert.NoError(t, err)

  154. 	assert.False(t, has)

  155. }

  156. 

  157. func TestRepository_RecalculateAccesses3(t *testing.T) {

  158. 	assert.NoError(t, unittest.PrepareTestDatabase())

  159. 	team5 := db.AssertExistsAndLoadBean(t, &Team{ID: 5}).(*Team)

  160. 	user29 := db.AssertExistsAndLoadBean(t, &User{ID: 29}).(*User)

  161. 

  162. 	has, err := db.GetEngine(db.DefaultContext).Get(&Access{UserID: 29, RepoID: 23})

  163. 	assert.NoError(t, err)

  164. 	assert.False(t, has)

  165. 

  166. 	// adding user29 to team5 should add an explicit access row for repo 23

  167. 	// even though repo 23 is public

  168. 	assert.NoError(t, AddTeamMember(team5, user29.ID))

  169. 

  170. 	has, err = db.GetEngine(db.DefaultContext).Get(&Access{UserID: 29, RepoID: 23})

  171. 	assert.NoError(t, err)

  172. 	assert.True(t, has)

  173. }