mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7919 Commits
17 Branches
Tree: f1c414882c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f1c414882c'
${ noResults }
gitea/models/user_test.go

user_test.go 10KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"fmt"

  9. 	"math/rand"

  10. 	"strings"

  11. 	"testing"

  12. 

  13. 	"code.gitea.io/gitea/modules/setting"

  14. 	"code.gitea.io/gitea/modules/util"

  15. 

  16. 	"github.com/stretchr/testify/assert"

  17. )

  18. 

  19. func TestUserIsPublicMember(t *testing.T) {

  20. 	assert.NoError(t, PrepareTestDatabase())

  21. 

  22. 	tt := []struct {

  23. 		uid      int64

  24. 		orgid    int64

  25. 		expected bool

  26. 	}{

  27. 		{2, 3, true},

  28. 		{4, 3, false},

  29. 		{5, 6, true},

  30. 		{5, 7, false},

  31. 	}

  32. 	for _, v := range tt {

  33. 		t.Run(fmt.Sprintf("UserId%dIsPublicMemberOf%d", v.uid, v.orgid), func(t *testing.T) {

  34. 			testUserIsPublicMember(t, v.uid, v.orgid, v.expected)

  35. 		})

  36. 	}

  37. }

  38. 

  39. func testUserIsPublicMember(t *testing.T, uid int64, orgID int64, expected bool) {

  40. 	user, err := GetUserByID(uid)

  41. 	assert.NoError(t, err)

  42. 	assert.Equal(t, expected, user.IsPublicMember(orgID))

  43. }

  44. 

  45. func TestIsUserOrgOwner(t *testing.T) {

  46. 	assert.NoError(t, PrepareTestDatabase())

  47. 

  48. 	tt := []struct {

  49. 		uid      int64

  50. 		orgid    int64

  51. 		expected bool

  52. 	}{

  53. 		{2, 3, true},

  54. 		{4, 3, false},

  55. 		{5, 6, true},

  56. 		{5, 7, true},

  57. 	}

  58. 	for _, v := range tt {

  59. 		t.Run(fmt.Sprintf("UserId%dIsOrgOwnerOf%d", v.uid, v.orgid), func(t *testing.T) {

  60. 			testIsUserOrgOwner(t, v.uid, v.orgid, v.expected)

  61. 		})

  62. 	}

  63. }

  64. 

  65. func testIsUserOrgOwner(t *testing.T, uid int64, orgID int64, expected bool) {

  66. 	user, err := GetUserByID(uid)

  67. 	assert.NoError(t, err)

  68. 	assert.Equal(t, expected, user.IsUserOrgOwner(orgID))

  69. }

  70. 

  71. func TestGetUserEmailsByNames(t *testing.T) {

  72. 	assert.NoError(t, PrepareTestDatabase())

  73. 

  74. 	// ignore none active user email

  75. 	assert.Equal(t, []string{"user8@example.com"}, GetUserEmailsByNames([]string{"user8", "user9"}))

  76. 	assert.Equal(t, []string{"user8@example.com", "user5@example.com"}, GetUserEmailsByNames([]string{"user8", "user5"}))

  77. 

  78. 	assert.Equal(t, []string{"user8@example.com"}, GetUserEmailsByNames([]string{"user8", "user7"}))

  79. }

  80. 

  81. func TestUser_APIFormat(t *testing.T) {

  82. 

  83. 	user, err := GetUserByID(1)

  84. 	assert.NoError(t, err)

  85. 	assert.True(t, user.IsAdmin)

  86. 

  87. 	apiUser := user.APIFormat()

  88. 	assert.True(t, apiUser.IsAdmin)

  89. 

  90. 	user, err = GetUserByID(2)

  91. 	assert.NoError(t, err)

  92. 	assert.False(t, user.IsAdmin)

  93. 

  94. 	apiUser = user.APIFormat()

  95. 	assert.False(t, apiUser.IsAdmin)

  96. }

  97. 

  98. func TestCanCreateOrganization(t *testing.T) {

  99. 	assert.NoError(t, PrepareTestDatabase())

  100. 

  101. 	admin := AssertExistsAndLoadBean(t, &User{ID: 1}).(*User)

  102. 	assert.True(t, admin.CanCreateOrganization())

  103. 

  104. 	user := AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  105. 	assert.True(t, user.CanCreateOrganization())

  106. 	// Disable user create organization permission.

  107. 	user.AllowCreateOrganization = false

  108. 	assert.False(t, user.CanCreateOrganization())

  109. 

  110. 	setting.Admin.DisableRegularOrgCreation = true

  111. 	user.AllowCreateOrganization = true

  112. 	assert.True(t, admin.CanCreateOrganization())

  113. 	assert.False(t, user.CanCreateOrganization())

  114. }

  115. 

  116. func TestSearchUsers(t *testing.T) {

  117. 	assert.NoError(t, PrepareTestDatabase())

  118. 	testSuccess := func(opts *SearchUserOptions, expectedUserOrOrgIDs []int64) {

  119. 		users, _, err := SearchUsers(opts)

  120. 		assert.NoError(t, err)

  121. 		if assert.Len(t, users, len(expectedUserOrOrgIDs)) {

  122. 			for i, expectedID := range expectedUserOrOrgIDs {

  123. 				assert.EqualValues(t, expectedID, users[i].ID)

  124. 			}

  125. 		}

  126. 	}

  127. 

  128. 	// test orgs

  129. 	testOrgSuccess := func(opts *SearchUserOptions, expectedOrgIDs []int64) {

  130. 		opts.Type = UserTypeOrganization

  131. 		testSuccess(opts, expectedOrgIDs)

  132. 	}

  133. 

  134. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1, PageSize: 2},

  135. 		[]int64{3, 6})

  136. 

  137. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 2, PageSize: 2},

  138. 		[]int64{7, 17})

  139. 

  140. 	testOrgSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 3, PageSize: 2},

  141. 		[]int64{19, 25})

  142. 

  143. 	testOrgSuccess(&SearchUserOptions{Page: 4, PageSize: 2},

  144. 		[]int64{})

  145. 

  146. 	// test users

  147. 	testUserSuccess := func(opts *SearchUserOptions, expectedUserIDs []int64) {

  148. 		opts.Type = UserTypeIndividual

  149. 		testSuccess(opts, expectedUserIDs)

  150. 	}

  151. 

  152. 	testUserSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1},

  153. 		[]int64{1, 2, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21, 24})

  154. 

  155. 	testUserSuccess(&SearchUserOptions{Page: 1, IsActive: util.OptionalBoolFalse},

  156. 		[]int64{9})

  157. 

  158. 	testUserSuccess(&SearchUserOptions{OrderBy: "id ASC", Page: 1, IsActive: util.OptionalBoolTrue},

  159. 		[]int64{1, 2, 4, 5, 8, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21, 24})

  160. 

  161. 	testUserSuccess(&SearchUserOptions{Keyword: "user1", OrderBy: "id ASC", Page: 1, IsActive: util.OptionalBoolTrue},

  162. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  163. 

  164. 	// order by name asc default

  165. 	testUserSuccess(&SearchUserOptions{Keyword: "user1", Page: 1, IsActive: util.OptionalBoolTrue},

  166. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  167. }

  168. 

  169. func TestDeleteUser(t *testing.T) {

  170. 	test := func(userID int64) {

  171. 		assert.NoError(t, PrepareTestDatabase())

  172. 		user := AssertExistsAndLoadBean(t, &User{ID: userID}).(*User)

  173. 

  174. 		ownedRepos := make([]*Repository, 0, 10)

  175. 		assert.NoError(t, x.Find(&ownedRepos, &Repository{OwnerID: userID}))

  176. 		if len(ownedRepos) > 0 {

  177. 			err := DeleteUser(user)

  178. 			assert.Error(t, err)

  179. 			assert.True(t, IsErrUserOwnRepos(err))

  180. 			return

  181. 		}

  182. 

  183. 		orgUsers := make([]*OrgUser, 0, 10)

  184. 		assert.NoError(t, x.Find(&orgUsers, &OrgUser{UID: userID}))

  185. 		for _, orgUser := range orgUsers {

  186. 			if err := RemoveOrgUser(orgUser.OrgID, orgUser.UID); err != nil {

  187. 				assert.True(t, IsErrLastOrgOwner(err))

  188. 				return

  189. 			}

  190. 		}

  191. 		assert.NoError(t, DeleteUser(user))

  192. 		AssertNotExistsBean(t, &User{ID: userID})

  193. 		CheckConsistencyFor(t, &User{}, &Repository{})

  194. 	}

  195. 	test(2)

  196. 	test(4)

  197. 	test(8)

  198. 	test(11)

  199. }

  200. 

  201. func TestEmailNotificationPreferences(t *testing.T) {

  202. 	assert.NoError(t, PrepareTestDatabase())

  203. 	for _, test := range []struct {

  204. 		expected string

  205. 		userID   int64

  206. 	}{

  207. 		{EmailNotificationsEnabled, 1},

  208. 		{EmailNotificationsEnabled, 2},

  209. 		{EmailNotificationsOnMention, 3},

  210. 		{EmailNotificationsOnMention, 4},

  211. 		{EmailNotificationsEnabled, 5},

  212. 		{EmailNotificationsEnabled, 6},

  213. 		{EmailNotificationsDisabled, 7},

  214. 		{EmailNotificationsEnabled, 8},

  215. 		{EmailNotificationsOnMention, 9},

  216. 	} {

  217. 		user := AssertExistsAndLoadBean(t, &User{ID: test.userID}).(*User)

  218. 		assert.Equal(t, test.expected, user.EmailNotifications())

  219. 

  220. 		// Try all possible settings

  221. 		assert.NoError(t, user.SetEmailNotifications(EmailNotificationsEnabled))

  222. 		assert.Equal(t, EmailNotificationsEnabled, user.EmailNotifications())

  223. 

  224. 		assert.NoError(t, user.SetEmailNotifications(EmailNotificationsOnMention))

  225. 		assert.Equal(t, EmailNotificationsOnMention, user.EmailNotifications())

  226. 

  227. 		assert.NoError(t, user.SetEmailNotifications(EmailNotificationsDisabled))

  228. 		assert.Equal(t, EmailNotificationsDisabled, user.EmailNotifications())

  229. 	}

  230. }

  231. 

  232. func TestHashPasswordDeterministic(t *testing.T) {

  233. 	b := make([]byte, 16)

  234. 	rand.Read(b)

  235. 	u := &User{Salt: string(b)}

  236. 	algos := []string{"pbkdf2", "argon2", "scrypt", "bcrypt"}

  237. 	for j := 0; j < len(algos); j++ {

  238. 		u.PasswdHashAlgo = algos[j]

  239. 		for i := 0; i < 50; i++ {

  240. 			// generate a random password

  241. 			rand.Read(b)

  242. 			pass := string(b)

  243. 

  244. 			// save the current password in the user - hash it and store the result

  245. 			u.HashPassword(pass)

  246. 			r1 := u.Passwd

  247. 

  248. 			// run again

  249. 			u.HashPassword(pass)

  250. 			r2 := u.Passwd

  251. 

  252. 			// assert equal (given the same salt+pass, the same result is produced) except bcrypt

  253. 			if u.PasswdHashAlgo == "bcrypt" {

  254. 				assert.NotEqual(t, r1, r2)

  255. 			} else {

  256. 				assert.Equal(t, r1, r2)

  257. 			}

  258. 		}

  259. 	}

  260. }

  261. 

  262. func BenchmarkHashPassword(b *testing.B) {

  263. 	// BenchmarkHashPassword ensures that it takes a reasonable amount of time

  264. 	// to hash a password - in order to protect from brute-force attacks.

  265. 	pass := "password1337"

  266. 	bs := make([]byte, 16)

  267. 	rand.Read(bs)

  268. 	u := &User{Salt: string(bs), Passwd: pass}

  269. 	b.ResetTimer()

  270. 	for i := 0; i < b.N; i++ {

  271. 		u.HashPassword(pass)

  272. 	}

  273. }

  274. 

  275. func TestGetOrgRepositoryIDs(t *testing.T) {

  276. 	assert.NoError(t, PrepareTestDatabase())

  277. 	user2 := AssertExistsAndLoadBean(t, &User{ID: 2}).(*User)

  278. 	user4 := AssertExistsAndLoadBean(t, &User{ID: 4}).(*User)

  279. 	user5 := AssertExistsAndLoadBean(t, &User{ID: 5}).(*User)

  280. 

  281. 	accessibleRepos, err := user2.GetOrgRepositoryIDs()

  282. 	assert.NoError(t, err)

  283. 	// User 2's team has access to private repos 3, 5, repo 32 is a public repo of the organization

  284. 	assert.Equal(t, []int64{3, 5, 23, 24, 32}, accessibleRepos)

  285. 

  286. 	accessibleRepos, err = user4.GetOrgRepositoryIDs()

  287. 	assert.NoError(t, err)

  288. 	// User 4's team has access to private repo 3, repo 32 is a public repo of the organization

  289. 	assert.Equal(t, []int64{3, 32}, accessibleRepos)

  290. 

  291. 	accessibleRepos, err = user5.GetOrgRepositoryIDs()

  292. 	assert.NoError(t, err)

  293. 	// User 5's team has no access to any repo

  294. 	assert.Len(t, accessibleRepos, 0)

  295. }

  296. 

  297. func TestNewGitSig(t *testing.T) {

  298. 	users := make([]*User, 0, 20)

  299. 	sess := x.NewSession()

  300. 	defer sess.Close()

  301. 	sess.Find(&users)

  302. 

  303. 	for _, user := range users {

  304. 		sig := user.NewGitSig()

  305. 		assert.NotContains(t, sig.Name, "<")

  306. 		assert.NotContains(t, sig.Name, ">")

  307. 		assert.NotContains(t, sig.Name, "\n")

  308. 		assert.NotEqual(t, len(strings.TrimSpace(sig.Name)), 0)

  309. 	}

  310. }

  311. 

  312. func TestDisplayName(t *testing.T) {

  313. 	users := make([]*User, 0, 20)

  314. 	sess := x.NewSession()

  315. 	defer sess.Close()

  316. 	sess.Find(&users)

  317. 

  318. 	for _, user := range users {

  319. 		displayName := user.DisplayName()

  320. 		assert.Equal(t, strings.TrimSpace(displayName), displayName)

  321. 		if len(strings.TrimSpace(user.FullName)) == 0 {

  322. 			assert.Equal(t, user.Name, displayName)

  323. 		}

  324. 		assert.NotEqual(t, len(strings.TrimSpace(displayName)), 0)

  325. 	}

  326. }

  327. 

  328. func TestCreateUser(t *testing.T) {

  329. 	user := &User{

  330. 		Name:               "GiteaBot",

  331. 		Email:              "GiteaBot@gitea.io",

  332. 		Passwd:             ";p['////..-++']",

  333. 		IsAdmin:            false,

  334. 		Theme:              setting.UI.DefaultTheme,

  335. 		MustChangePassword: false,

  336. 	}

  337. 

  338. 	assert.NoError(t, CreateUser(user))

  339. 

  340. 	assert.NoError(t, DeleteUser(user))

  341. }

  342. 

  343. func TestCreateUser_Issue5882(t *testing.T) {

  344. 

  345. 	// Init settings

  346. 	_ = setting.Admin

  347. 

  348. 	passwd := ".//.;1;;//.,-=_"

  349. 

  350. 	tt := []struct {

  351. 		user               *User

  352. 		disableOrgCreation bool

  353. 	}{

  354. 		{&User{Name: "GiteaBot", Email: "GiteaBot@gitea.io", Passwd: passwd, MustChangePassword: false}, false},

  355. 		{&User{Name: "GiteaBot2", Email: "GiteaBot2@gitea.io", Passwd: passwd, MustChangePassword: false}, true},

  356. 	}

  357. 

  358. 	setting.Service.DefaultAllowCreateOrganization = true

  359. 

  360. 	for _, v := range tt {

  361. 		setting.Admin.DisableRegularOrgCreation = v.disableOrgCreation

  362. 

  363. 		assert.NoError(t, CreateUser(v.user))

  364. 

  365. 		u, err := GetUserByEmail(v.user.Email)

  366. 		assert.NoError(t, err)

  367. 

  368. 		assert.Equal(t, !u.AllowCreateOrganization, v.disableOrgCreation)

  369. 

  370. 		assert.NoError(t, DeleteUser(v.user))

  371. 	}

  372. }