mirrors
/
redmine
mirror of https://github.com/redmine/redmine.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 199 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
18210 Commits
33 Branches
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
redmine/test/functional/roles_controller_test.rb

roles_controller_test.rb 11KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359 
  1. # frozen_string_literal: true

  2. 

  3. # Redmine - project management software

  4. # Copyright (C) 2006-  Jean-Philippe Lang

  5. #

  6. # This program is free software; you can redistribute it and/or

  7. # modify it under the terms of the GNU General Public License

  8. # as published by the Free Software Foundation; either version 2

  9. # of the License, or (at your option) any later version.

  10. #

  11. # This program is distributed in the hope that it will be useful,

  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  14. # GNU General Public License for more details.

  15. #

  16. # You should have received a copy of the GNU General Public License

  17. # along with this program; if not, write to the Free Software

  18. # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19. 

  20. require_relative '../test_helper'

  21. 

  22. class RolesControllerTest < Redmine::ControllerTest

  23.   fixtures :roles, :users, :members, :member_roles, :workflows, :trackers

  24. 

  25.   def setup

  26.     User.current = nil

  27.     @request.session[:user_id] = 1 # admin

  28.   end

  29. 

  30.   def test_index

  31.     get :index

  32.     assert_response :success

  33. 

  34.     assert_select 'table.roles tbody' do

  35.       assert_select 'tr', Role.count

  36.       assert_select 'a[href="/roles/1/edit"]', :text => 'Manager'

  37.     end

  38.   end

  39. 

  40.   def test_index_should_show_warning_when_no_workflow_is_defined

  41.     Role.find_by_name('Developer').workflow_rules.destroy_all

  42.     Role.find_by_name('Anonymous').workflow_rules.destroy_all

  43. 

  44.     get :index

  45.     assert_response :success

  46.     assert_select 'table.roles' do

  47.       # Manager

  48.       assert_select 'tr.givable:nth-of-type(1) span.icon-warning', :count => 0

  49.       # Developer

  50.       assert_select 'tr.givable:nth-of-type(2) span.icon-warning', :text => /#{I18n.t(:text_role_no_workflow)}/

  51.       # Reporter

  52.       assert_select 'tr.givable:nth-of-type(3) span.icon-warning', :count => 0

  53.       # No warnings for built-in roles such as Anonymous and Non-member

  54.       assert_select 'tr.builtin span.icon-warning', :count => 0

  55.     end

  56.   end

  57. 

  58.   def test_new

  59.     get :new

  60.     assert_response :success

  61.     assert_select 'input[name=?]', 'role[name]'

  62.     assert_select 'input[name=?]', 'role[permissions][]'

  63.   end

  64. 

  65.   def test_new_should_prefill_permissions_with_non_member_permissions

  66.     role = Role.non_member

  67.     role.permissions = [:view_issues, :view_documents]

  68.     role.save!

  69. 

  70.     get :new

  71.     assert_response :success

  72.     assert_equal(

  73.       %w(view_documents view_issues),

  74.       css_select('input[name="role[permissions][]"][checked=checked]').map {|e| e.attr(:value)}.sort

  75.     )

  76.   end

  77. 

  78.   def test_new_with_copy

  79.     copy_from = Role.find(2)

  80. 

  81.     get :new, :params => {:copy => copy_from.id.to_s}

  82.     assert_response :success

  83.     assert_select 'input[name=?]', 'role[name]'

  84. 

  85.     assert_select 'form' do

  86.       # blank name

  87.       assert_select 'input[name=?][value=""]', 'role[name]'

  88.       # edit_project permission checked

  89.       assert_select 'input[type=checkbox][name=?][value=edit_project][checked=checked]', 'role[permissions][]'

  90.       # add_project permission not checked

  91.       assert_select 'input[type=checkbox][name=?][value=add_project]', 'role[permissions][]'

  92.       assert_select 'input[type=checkbox][name=?][value=add_project][checked=checked]', 'role[permissions][]', 0

  93.       # workflow copy selected

  94.       assert_select 'select[name=?]', 'copy_workflow_from' do

  95.         assert_select 'option[value="2"][selected=selected]'

  96.       end

  97.     end

  98.   end

  99. 

  100.   def test_create_with_validaton_failure

  101.     post(

  102.       :create,

  103.       :params => {

  104.         :role => {

  105.           :name => '',

  106.           :permissions => ['add_issues', 'edit_issues', 'log_time', ''],

  107.           :assignable => '0'

  108.         }

  109.       }

  110.     )

  111.     assert_response :success

  112.     assert_select_error /Name cannot be blank/

  113.   end

  114. 

  115.   def test_create_without_workflow_copy

  116.     post(

  117.       :create,

  118.       :params => {

  119.         :role => {

  120.           :name => 'RoleWithoutWorkflowCopy',

  121.           :permissions => ['add_issues', 'edit_issues', 'log_time', ''],

  122.           :assignable => '0'

  123.         }

  124.       }

  125.     )

  126.     assert_redirected_to '/roles'

  127.     role = Role.find_by_name('RoleWithoutWorkflowCopy')

  128.     assert_not_nil role

  129.     assert_equal [:add_issues, :edit_issues, :log_time], role.permissions

  130.     assert !role.assignable?

  131.   end

  132. 

  133.   def test_create_with_workflow_copy

  134.     post(

  135.       :create,

  136.       :params => {

  137.         :role => {

  138.           :name => 'RoleWithWorkflowCopy',

  139.           :permissions => ['add_issues', 'edit_issues', 'log_time', ''],

  140.           :assignable => '0'

  141.         },

  142.         :copy_workflow_from => '1'

  143.       }

  144.     )

  145.     assert_redirected_to '/roles'

  146.     role = Role.find_by_name('RoleWithWorkflowCopy')

  147.     assert_not_nil role

  148.     assert_equal Role.find(1).workflow_rules.size, role.workflow_rules.size

  149.   end

  150. 

  151.   def test_create_with_managed_roles

  152.     role = new_record(Role) do

  153.       post(

  154.         :create,

  155.         :params => {

  156.           :role => {

  157.             :name => 'Role',

  158.             :all_roles_managed => '0',

  159.             :managed_role_ids => ['2', '3', '']

  160.           }

  161.         }

  162.       )

  163.       assert_response 302

  164.     end

  165.     assert_equal false, role.all_roles_managed

  166.     assert_equal [2, 3], role.managed_role_ids.sort

  167.   end

  168. 

  169.   def test_edit

  170.     get :edit, :params => {:id => 1}

  171.     assert_response :success

  172. 

  173.     assert_select 'input[name=?][value=?]', 'role[name]', 'Manager'

  174.     assert_select 'select[name=?]', 'role[issues_visibility]'

  175.     assert_select '#role-permissions-trackers table .delete_issues_shown'

  176.   end

  177. 

  178.   def test_edit_anonymous

  179.     get :edit, :params => {:id => Role.anonymous.id}

  180.     assert_response :success

  181. 

  182.     assert_select 'input[name=?]', 'role[name]', 0

  183.     assert_select 'select[name=?]', 'role[issues_visibility]', 0

  184.     assert_select '#role-permissions-trackers table .delete_issues_shown', 0

  185.   end

  186. 

  187.   def test_edit_invalid_should_respond_with_404

  188.     get :edit, :params => {:id => 999}

  189.     assert_response 404

  190.   end

  191. 

  192.   def test_update

  193.     put(

  194.       :update,

  195.       :params => {

  196.         :id => 1,

  197.         :role => {

  198.           :name => 'Manager',

  199.           :permissions => ['edit_project', ''],

  200.           :assignable => '0'

  201.         }

  202.       }

  203.     )

  204.     assert_redirected_to '/roles'

  205.     role = Role.find(1)

  206.     assert_equal [:edit_project], role.permissions

  207.   end

  208. 

  209.   def test_update_trackers_permissions

  210.     put(

  211.       :update,

  212.       :params => {

  213.         :id => 1,

  214.         :role => {

  215.           :permissions_all_trackers => {'add_issues' => '0'},

  216.           :permissions_tracker_ids => {'add_issues' => ['1', '3', '']}

  217.         }

  218.       }

  219.     )

  220.     assert_redirected_to '/roles'

  221.     role = Role.find(1)

  222. 

  223.     assert_equal({'add_issues' => '0'}, role.permissions_all_trackers)

  224.     assert_equal({'add_issues' => ['1', '3']}, role.permissions_tracker_ids)

  225. 

  226.     assert_equal false, role.permissions_all_trackers?(:add_issues)

  227.     assert_equal [1, 3], role.permissions_tracker_ids(:add_issues).sort

  228.   end

  229. 

  230.   def test_update_with_failure

  231.     put :update, :params => {:id => 1, :role => {:name => ''}}

  232.     assert_response :success

  233.     assert_select_error /Name cannot be blank/

  234.   end

  235. 

  236.   def test_destroy

  237.     r = Role.create!(:name => 'ToBeDestroyed', :permissions => [:view_wiki_pages])

  238. 

  239.     delete :destroy, :params => {:id => r}

  240.     assert_redirected_to '/roles'

  241.     assert_nil Role.find_by_id(r.id)

  242.   end

  243. 

  244.   def test_destroy_role_in_use

  245.     delete :destroy, :params => {:id => 1}

  246.     assert_redirected_to '/roles'

  247.     assert_equal 'This role is in use and cannot be deleted.', flash[:error]

  248.     assert_not_nil Role.find_by_id(1)

  249.   end

  250. 

  251.   def test_permissions

  252.     get :permissions

  253.     assert_response :success

  254. 

  255.     assert_select 'input[name=?][type=checkbox][value=add_issues][checked=checked]', 'permissions[3][]'

  256.     assert_select 'input[name=?][type=checkbox][value=delete_issues]:not([checked])', 'permissions[3][]'

  257.   end

  258. 

  259.   def test_permissions_with_filter

  260.     get(

  261.       :permissions,

  262.       :params => {

  263.         :ids => ['2', '3']

  264.       }

  265.     )

  266.     assert_response :success

  267. 

  268.     assert_select 'table.permissions thead th', 3

  269.     assert_select 'input[name=?][type=checkbox][value=add_issues][checked=checked]', 'permissions[3][]'

  270.     assert_select 'input[name=?][type=checkbox][value=delete_issues]:not([checked])', 'permissions[3][]'

  271.   end

  272. 

  273.   def test_permissions_csv_export

  274.     get(

  275.       :permissions,

  276.       :params => {

  277.         :format => 'csv'

  278.       }

  279.     )

  280.     assert_response :success

  281. 

  282.     assert_equal 'text/csv; header=present', @response.media_type

  283.     lines = @response.body.chomp.split("\n")

  284.     # Number of lines

  285.     permissions = Redmine::AccessControl.permissions - Redmine::AccessControl.public_permissions

  286.     permissions = permissions.group_by{|p| p.project_module.to_s}.sort.collect(&:last).flatten

  287.     assert_equal permissions.size + 1, lines.size

  288.     # Header

  289.     assert_equal 'Module,Permissions,Manager,Developer,Reporter,Non member,Anonymous', lines.first

  290.     # Details

  291.     to_test = {

  292.       :add_project => '"",Create project,Yes,No,No,No,""',

  293.       :add_issue_notes => 'Issue tracking,Add notes,Yes,Yes,Yes,Yes,Yes',

  294.       :manage_wiki => 'Wiki,Manage wiki,Yes,No,No,"",""'

  295.     }

  296.     to_test.each do |name, expected|

  297.       index = permissions.find_index {|p| p.name == name}

  298.       assert_not_nil index

  299.       assert_equal expected, lines[index + 1]

  300.     end

  301.   end

  302. 

  303.   def test_update_permissions

  304.     post(

  305.       :update_permissions,

  306.       :params => {

  307.         :permissions => {

  308.           '1' => ['edit_issues'],

  309.           '3' => ['add_issues', 'delete_issues']

  310.         }

  311.       }

  312.     )

  313.     assert_redirected_to '/roles'

  314. 

  315.     assert_equal [:edit_issues], Role.find(1).permissions

  316.     assert_equal [:add_issues, :delete_issues], Role.find(3).permissions

  317.   end

  318. 

  319.   def test_update_permissions_should_not_update_other_roles

  320.     assert_no_changes lambda {Role.find(2).permissions} do

  321.       assert_changes lambda {Role.find(1).permissions} do

  322.         post(

  323.           :update_permissions,

  324.           :params => {

  325.             :permissions => {

  326.               '1' => ['edit_issues']

  327.             }

  328.           }

  329.         )

  330.       end

  331.     end

  332.   end

  333. 

  334.   def test_move_highest

  335.     put :update, :params => {:id => 3, :role => {:position => 1}}

  336.     assert_redirected_to '/roles'

  337.     assert_equal 1, Role.find(3).position

  338.   end

  339. 

  340.   def test_move_higher

  341.     position = Role.find(3).position

  342.     put :update, :params => {:id => 3, :role => {:position => position - 1}}

  343.     assert_redirected_to '/roles'

  344.     assert_equal position - 1, Role.find(3).position

  345.   end

  346. 

  347.   def test_move_lower

  348.     position = Role.find(2).position

  349.     put :update, :params => {:id => 2, :role => {:position => position + 1}}

  350.     assert_redirected_to '/roles'

  351.     assert_equal position + 1, Role.find(2).position

  352.   end

  353. 

  354.   def test_move_lowest

  355.     put :update, :params => {:id => 2, :role => {:position => Role.givable.count}}

  356.     assert_redirected_to '/roles'

  357.     assert_equal Role.givable.count, Role.find(2).position

  358.   end

  359. end