mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 236 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30155 Commits
59 Branches
Tree: 4d8f0c4bf3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4d8f0c4bf3'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/test/java/org/sonar/server/user/ws/GroupsActionTest.java

GroupsActionTest.java 12KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.user.ws;

  21. 

  22. import org.junit.Rule;

  23. import org.junit.Test;

  24. import org.junit.rules.ExpectedException;

  25. import org.sonar.api.server.ws.WebService;

  26. import org.sonar.api.server.ws.WebService.Param;

  27. import org.sonar.db.DbTester;

  28. import org.sonar.db.user.GroupDto;

  29. import org.sonar.db.user.UserDto;

  30. import org.sonar.server.exceptions.ForbiddenException;

  31. import org.sonar.server.exceptions.NotFoundException;

  32. import org.sonar.server.tester.UserSessionRule;

  33. import org.sonar.server.usergroups.DefaultGroupFinder;

  34. import org.sonar.server.ws.TestRequest;

  35. import org.sonar.server.ws.WsActionTester;

  36. import org.sonarqube.ws.MediaTypes;

  37. import org.sonarqube.ws.Users.GroupsWsResponse;

  38. 

  39. import static java.util.Collections.singletonList;

  40. import static org.assertj.core.api.Assertions.assertThat;

  41. import static org.assertj.core.api.Assertions.tuple;

  42. import static org.sonar.api.server.ws.WebService.SelectionMode.ALL;

  43. import static org.sonar.api.server.ws.WebService.SelectionMode.DESELECTED;

  44. import static org.sonar.api.server.ws.WebService.SelectionMode.SELECTED;

  45. import static org.sonar.db.permission.OrganizationPermission.SCAN;

  46. import static org.sonar.db.user.GroupTesting.newGroupDto;

  47. import static org.sonar.db.user.UserTesting.newUserDto;

  48. import static org.sonar.test.JsonAssert.assertJson;

  49. 

  50. public class GroupsActionTest {

  51. 

  52.   private static final String USER_LOGIN = "john";

  53. 

  54.   @Rule

  55.   public ExpectedException expectedException = ExpectedException.none();

  56. 

  57.   @Rule

  58.   public DbTester db = DbTester.create();

  59. 

  60.   @Rule

  61.   public UserSessionRule userSession = UserSessionRule.standalone().logIn().setRoot();

  62. 

  63.   private WsActionTester ws = new WsActionTester(new GroupsAction(db.getDbClient(), userSession,

  64.     new DefaultGroupFinder(db.getDbClient())));

  65. 

  66.   @Test

  67.   public void empty_groups() {

  68.     insertUser();

  69.     insertDefaultGroup();

  70. 

  71.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN));

  72. 

  73.     assertThat(response.getGroupsList()).isEmpty();

  74.   }

  75. 

  76.   @Test

  77.   public void return_selected_groups_selected_param_is_set_to_all() {

  78.     UserDto user = insertUser();

  79.     GroupDto usersGroup = insertDefaultGroup();

  80.     GroupDto adminGroup = insertGroup("sonar-admins", "Sonar Admins");

  81.     addUserToGroup(user, usersGroup);

  82. 

  83.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN).setParam(Param.SELECTED, ALL.value()));

  84. 

  85.     assertThat(response.getGroupsList())

  86.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDescription, GroupsWsResponse.Group::getSelected)

  87.       .containsOnly(

  88.         tuple(usersGroup.getUuid(), usersGroup.getName(), usersGroup.getDescription(), true),

  89.         tuple(adminGroup.getUuid(), adminGroup.getName(), adminGroup.getDescription(), false));

  90.   }

  91. 

  92.   @Test

  93.   public void return_selected_groups_selected_param_is_set_to_selected() {

  94.     UserDto user = insertUser();

  95.     GroupDto usersGroup = insertDefaultGroup();

  96.     insertGroup("sonar-admins", "Sonar Admins");

  97.     addUserToGroup(user, usersGroup);

  98. 

  99.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN).setParam(Param.SELECTED, SELECTED.value()));

  100. 

  101.     assertThat(response.getGroupsList())

  102.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDescription, GroupsWsResponse.Group::getSelected)

  103.       .containsOnly(tuple(usersGroup.getUuid(), usersGroup.getName(), usersGroup.getDescription(), true));

  104.   }

  105. 

  106.   @Test

  107.   public void return_selected_groups_selected_param_is_not_set() {

  108.     UserDto user = insertUser();

  109.     GroupDto usersGroup = insertDefaultGroup();

  110.     insertGroup("sonar-admins", "Sonar Admins");

  111.     addUserToGroup(user, usersGroup);

  112. 

  113.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN));

  114. 

  115.     assertThat(response.getGroupsList())

  116.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDescription, GroupsWsResponse.Group::getSelected)

  117.       .containsOnly(tuple(usersGroup.getUuid(), usersGroup.getName(), usersGroup.getDescription(), true));

  118.   }

  119. 

  120.   @Test

  121.   public void return_not_selected_groups_selected_param_is_set_to_deselected() {

  122.     UserDto user = insertUser();

  123.     GroupDto usersGroup = insertDefaultGroup();

  124.     GroupDto adminGroup = insertGroup("sonar-admins", "Sonar Admins");

  125.     addUserToGroup(user, usersGroup);

  126. 

  127.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN).setParam(Param.SELECTED, DESELECTED.value()));

  128. 

  129.     assertThat(response.getGroupsList())

  130.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDescription, GroupsWsResponse.Group::getSelected)

  131.       .containsOnly(tuple(adminGroup.getUuid(), adminGroup.getName(), adminGroup.getDescription(), false));

  132.   }

  133. 

  134.   @Test

  135.   public void search_with_pagination() {

  136.     UserDto user = insertUser();

  137.     insertDefaultGroup();

  138.     for (int i = 1; i <= 9; i++) {

  139.       GroupDto groupDto = insertGroup("group-" + i, "group-" + i);

  140.       addUserToGroup(user, groupDto);

  141.     }

  142. 

  143.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN)

  144.       .setParam(Param.PAGE_SIZE, "3")

  145.       .setParam(Param.PAGE, "2")

  146.       .setParam(Param.SELECTED, ALL.value()));

  147. 

  148.     assertThat(response.getGroupsList()).extracting(GroupsWsResponse.Group::getName).containsOnly("group-4", "group-5", "group-6");

  149.     assertThat(response.getPaging().getPageSize()).isEqualTo(3);

  150.     assertThat(response.getPaging().getPageIndex()).isEqualTo(2);

  151.     assertThat(response.getPaging().getTotal()).isEqualTo(10);

  152.   }

  153. 

  154.   @Test

  155.   public void search_by_text_query() {

  156.     UserDto user = insertUser();

  157.     GroupDto usersGroup = insertDefaultGroup();

  158.     GroupDto adminGroup = insertGroup("sonar-admins", "Sonar Admins");

  159.     addUserToGroup(user, usersGroup);

  160. 

  161.     assertThat(call(ws.newRequest().setParam("login", USER_LOGIN).setParam("q", "admin").setParam(Param.SELECTED, ALL.value())).getGroupsList())

  162.       .extracting(GroupsWsResponse.Group::getName).containsOnly(adminGroup.getName());

  163.     assertThat(call(ws.newRequest().setParam("login", USER_LOGIN).setParam("q", "users").setParam(Param.SELECTED, ALL.value())).getGroupsList())

  164.       .extracting(GroupsWsResponse.Group::getName).containsOnly(usersGroup.getName());

  165.   }

  166. 

  167.   @Test

  168.   public void return_default_group_information() {

  169.     UserDto user = insertUser();

  170.     GroupDto usersGroup = insertDefaultGroup();

  171.     GroupDto adminGroup = insertGroup("sonar-admins", "Sonar Admins");

  172.     addUserToGroup(user, usersGroup);

  173. 

  174.     GroupsWsResponse response = call(ws.newRequest().setParam("login", USER_LOGIN).setParam(Param.SELECTED, ALL.value()));

  175. 

  176.     assertThat(response.getGroupsList())

  177.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDefault)

  178.       .containsOnly(

  179.         tuple(usersGroup.getUuid(), usersGroup.getName(), true),

  180.         tuple(adminGroup.getUuid(), adminGroup.getName(), false));

  181.   }

  182. 

  183.   @Test

  184.   public void return_groups() {

  185.     UserDto user = insertUser();

  186.     GroupDto group = db.users().insertDefaultGroup();

  187.     addUserToGroup(user, group);

  188. 

  189.     GroupsWsResponse response = call(ws.newRequest()

  190.       .setParam("login", USER_LOGIN)

  191.       .setParam(Param.SELECTED, ALL.value()));

  192. 

  193.     assertThat(response.getGroupsList())

  194.       .extracting(GroupsWsResponse.Group::getId, GroupsWsResponse.Group::getName, GroupsWsResponse.Group::getDescription, GroupsWsResponse.Group::getSelected,

  195.         GroupsWsResponse.Group::getDefault)

  196.       .containsOnly(tuple(group.getUuid(), group.getName(), group.getDescription(), true, true));

  197.   }

  198. 

  199.   @Test

  200.   public void fail_when_no_default_group() {

  201.     UserDto user = insertUser();

  202.     GroupDto group = db.users().insertGroup("group1");

  203.     addUserToGroup(user, group);

  204. 

  205.     expectedException.expect(IllegalStateException.class);

  206.     expectedException.expectMessage("Default group cannot be found");

  207. 

  208.     call(ws.newRequest().setParam("login", USER_LOGIN));

  209.   }

  210. 

  211.   @Test

  212.   public void fail_on_unknown_user() {

  213.     insertDefaultGroup();

  214. 

  215.     expectedException.expect(NotFoundException.class);

  216.     expectedException.expectMessage("Unknown user: john");

  217. 

  218.     call(ws.newRequest().setParam("login", USER_LOGIN));

  219.   }

  220. 

  221.   @Test

  222.   public void fail_on_disabled_user() {

  223.     UserDto userDto = db.users().insertUser(user -> user.setLogin("disabled").setActive(false));

  224.     insertDefaultGroup();

  225. 

  226.     expectedException.expect(NotFoundException.class);

  227.     expectedException.expectMessage("Unknown user: disabled");

  228. 

  229.     call(ws.newRequest().setParam("login", userDto.getLogin()));

  230.   }

  231. 

  232.   @Test

  233.   public void fail_when_page_size_is_greater_than_500() {

  234.     UserDto user = insertUser();

  235.     insertDefaultGroup();

  236. 

  237.     expectedException.expect(IllegalArgumentException.class);

  238.     expectedException.expectMessage("The 'ps' parameter must be less than 500");

  239. 

  240.     call(ws.newRequest()

  241.       .setParam("login", user.getLogin())

  242.       .setParam(Param.PAGE_SIZE, "501"));

  243.   }

  244. 

  245.   @Test

  246.   public void fail_on_missing_permission() {

  247.     userSession.logIn().addPermission(SCAN);

  248. 

  249.     expectedException.expect(ForbiddenException.class);

  250. 

  251.     call(ws.newRequest().setParam("login", USER_LOGIN));

  252.   }

  253. 

  254.   @Test

  255.   public void fail_when_no_permission() {

  256.     userSession.logIn("not-admin");

  257. 

  258.     expectedException.expect(ForbiddenException.class);

  259. 

  260.     call(ws.newRequest().setParam("login", USER_LOGIN));

  261.   }

  262. 

  263.   @Test

  264.   public void test_json_example() {

  265.     UserDto user = insertUser();

  266.     GroupDto usersGroup = insertDefaultGroup();

  267.     insertGroup("sonar-admins", "Sonar Admins");

  268.     addUserToGroup(user, usersGroup);

  269. 

  270.     String response = ws.newRequest()

  271.       .setMediaType(MediaTypes.JSON)

  272.       .setParam("login", USER_LOGIN)

  273.       .setParam(Param.SELECTED, ALL.value())

  274.       .setParam(Param.PAGE_SIZE, "25")

  275.       .setParam(Param.PAGE, "1")

  276.       .execute().getInput();

  277.     assertJson(response).ignoreFields("id").isSimilarTo(ws.getDef().responseExampleAsString());

  278.   }

  279. 

  280.   @Test

  281.   public void verify_definition() {

  282.     WebService.Action action = ws.getDef();

  283. 

  284.     assertThat(action.since()).isEqualTo("5.2");

  285.     assertThat(action.isPost()).isFalse();

  286.     assertThat(action.isInternal()).isFalse();

  287.     assertThat(action.responseExampleAsString()).isNotEmpty();

  288. 

  289.     assertThat(action.params()).extracting(Param::key).containsOnly("p", "q", "ps", "login", "selected");

  290. 

  291.     WebService.Param qualifiers = action.param("login");

  292.     assertThat(qualifiers.isRequired()).isTrue();

  293.   }

  294. 

  295.   private GroupDto insertGroup(String name, String description) {

  296.     return db.users().insertGroup(newGroupDto().setName(name).setDescription(description));

  297.   }

  298. 

  299.   private GroupDto insertDefaultGroup() {

  300.     return db.users().insertDefaultGroup();

  301.   }

  302. 

  303.   private void addUserToGroup(UserDto user, GroupDto usersGroup) {

  304.     db.users().insertMember(usersGroup, user);

  305.   }

  306. 

  307.   private UserDto insertUser() {

  308.     return db.users().insertUser(newUserDto()

  309.       .setActive(true)

  310.       .setEmail("john@email.com")

  311.       .setLogin(USER_LOGIN)

  312.       .setName("John")

  313.       .setScmAccounts(singletonList("jn")));

  314.   }

  315. 

  316.   private GroupsWsResponse call(TestRequest request) {

  317.     return request.executeProtobuf(GroupsWsResponse.class);

  318.   }

  319. 

  320. }