mirrors
/
sonarqube
spegling av https://github.com/SonarSource/sonarqube.git
Bevaka 1
Stjärnmärk 0
Förgrening 0
Kod Ärenden 0 Släpp 237 Wiki Aktiviteter
Du kan inte välja fler än 25 ämnen Ämnen måste starta med en bokstav eller siffra, kan innehålla bindestreck ('-') och vara max 35 tecken långa.
36211 Incheckningar
59 Grenar
Träd: 720d6dd5c4
Grenar Taggar
${ item.name }
Skapa branchen ${ searchTerm }
från '720d6dd5c4'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/it/java/org/sonar/server/setting/ws/SetActionIT.java

SetActionIT.java 46KB
Blame Historik

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2024 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.setting.ws;

  21. 

  22. import com.google.gson.Gson;

  23. import com.tngtech.java.junit.dataprovider.DataProvider;

  24. import com.tngtech.java.junit.dataprovider.DataProviderRunner;

  25. import com.tngtech.java.junit.dataprovider.UseDataProvider;

  26. import java.net.HttpURLConnection;

  27. import java.util.List;

  28. import java.util.Map;

  29. import java.util.concurrent.ThreadLocalRandom;

  30. import javax.annotation.Nullable;

  31. import org.junit.Before;

  32. import org.junit.Rule;

  33. import org.junit.Test;

  34. import org.junit.runner.RunWith;

  35. import org.sonar.api.PropertyType;

  36. import org.sonar.api.config.PropertyDefinition;

  37. import org.sonar.api.config.PropertyDefinitions;

  38. import org.sonar.api.config.PropertyFieldDefinition;

  39. import org.sonar.api.resources.Qualifiers;

  40. import org.sonar.api.server.ws.WebService;

  41. import org.sonar.api.server.ws.WebService.Param;

  42. import org.sonar.api.utils.System2;

  43. import org.sonar.api.web.UserRole;

  44. import org.sonar.db.DbClient;

  45. import org.sonar.db.DbSession;

  46. import org.sonar.db.DbTester;

  47. import org.sonar.db.component.ComponentDto;

  48. import org.sonar.db.component.ComponentTesting;

  49. import org.sonar.db.component.ProjectData;

  50. import org.sonar.db.portfolio.PortfolioDto;

  51. import org.sonar.db.project.ProjectDto;

  52. import org.sonar.db.property.PropertyDbTester;

  53. import org.sonar.db.property.PropertyDto;

  54. import org.sonar.db.property.PropertyQuery;

  55. import org.sonar.process.ProcessProperties;

  56. import org.sonar.scanner.protocol.GsonHelper;

  57. import org.sonar.server.exceptions.BadRequestException;

  58. import org.sonar.server.exceptions.ForbiddenException;

  59. import org.sonar.server.exceptions.NotFoundException;

  60. import org.sonar.server.l18n.I18nRule;

  61. import org.sonar.server.setting.SettingsChangeNotifier;

  62. import org.sonar.server.tester.UserSessionRule;

  63. import org.sonar.server.ws.TestRequest;

  64. import org.sonar.server.ws.TestResponse;

  65. import org.sonar.server.ws.WsActionTester;

  66. 

  67. import static java.lang.String.format;

  68. import static java.util.Collections.singletonList;

  69. import static org.assertj.core.api.Assertions.assertThat;

  70. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  71. import static org.assertj.core.groups.Tuple.tuple;

  72. import static org.sonar.db.property.PropertyTesting.newComponentPropertyDto;

  73. import static org.sonar.db.property.PropertyTesting.newGlobalPropertyDto;

  74. import static org.sonar.db.user.UserTesting.newUserDto;

  75. 

  76. @RunWith(DataProviderRunner.class)

  77. public class SetActionIT {

  78. 

  79.   private static final Gson GSON = GsonHelper.create();

  80. 

  81.   @Rule

  82.   public UserSessionRule userSession = UserSessionRule.standalone().logIn();

  83.   @Rule

  84.   public DbTester db = DbTester.create(System2.INSTANCE);

  85. 

  86.   private final PropertyDbTester propertyDb = new PropertyDbTester(db);

  87.   private final DbClient dbClient = db.getDbClient();

  88.   private final DbSession dbSession = db.getSession();

  89.   private final I18nRule i18n = new I18nRule();

  90.   private final PropertyDefinitions definitions = new PropertyDefinitions(System2.INSTANCE);

  91.   private final FakeSettingsNotifier settingsChangeNotifier = new FakeSettingsNotifier(dbClient);

  92.   private final SettingsUpdater settingsUpdater = new SettingsUpdater(dbClient, definitions);

  93.   private final SettingValidations validations = new SettingValidations(definitions, dbClient, i18n);

  94.   private final SetAction underTest = new SetAction(definitions, dbClient, userSession, settingsUpdater, settingsChangeNotifier, validations);

  95. 

  96.   private final WsActionTester ws = new WsActionTester(underTest);

  97. 

  98.   @Before

  99.   public void setUp() {

  100.     // by default test doesn't care about permissions

  101.     userSession.logIn().setSystemAdministrator();

  102.   }

  103. 

  104.   @DataProvider

  105.   public static Object[][] securityJsonProperties() {

  106.     return new Object[][] {

  107.       {"sonar.security.config.javasecurity"},

  108.       {"sonar.security.config.phpsecurity"},

  109.       {"sonar.security.config.pythonsecurity"},

  110.       {"sonar.security.config.roslyn.sonaranalyzer.security.cs"}

  111.     };

  112.   }

  113. 

  114.   @Test

  115.   public void empty_204_response() {

  116.     TestResponse result = ws.newRequest()

  117.       .setParam("key", "my.key")

  118.       .setParam("value", "my value")

  119.       .execute();

  120. 

  121.     assertThat(result.getStatus()).isEqualTo(HttpURLConnection.HTTP_NO_CONTENT);

  122.     assertThat(result.getInput()).isEmpty();

  123.   }

  124. 

  125.   @Test

  126.   public void persist_new_global_setting() {

  127.     callForGlobalSetting("my.key", "my,value");

  128. 

  129.     assertGlobalSetting("my.key", "my,value");

  130.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  131.   }

  132. 

  133.   @Test

  134.   public void update_existing_global_setting() {

  135.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my value"), null, null, null, null);

  136.     assertGlobalSetting("my.key", "my value");

  137. 

  138.     callForGlobalSetting("my.key", "my new value");

  139. 

  140.     assertGlobalSetting("my.key", "my new value");

  141.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  142.   }

  143. 

  144.   @Test

  145.   public void persist_new_project_setting() {

  146.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my global value"), null, null, null, null);

  147.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  148.     logInAsProjectAdministrator(project);

  149. 

  150.     callForProjectSettingByKey("my.key", "my project value", project.getKey());

  151. 

  152.     assertGlobalSetting("my.key", "my global value");

  153.     assertComponentSetting("my.key", "my project value", project.getUuid());

  154.     assertThat(settingsChangeNotifier.wasCalled).isFalse();

  155.   }

  156. 

  157.   @Test

  158.   public void persist_new_subportfolio_setting() {

  159.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my global value"), null, null, null, null);

  160.     ComponentDto portfolio = db.components().insertPrivatePortfolio();

  161.     ComponentDto subportfolio = db.components().insertSubportfolio(portfolio);

  162.     logInAsPortfolioAdministrator(db.components().getPortfolioDto(portfolio));

  163. 

  164.     callForProjectSettingByKey("my.key", "my project value", subportfolio.getKey());

  165. 

  166.     assertGlobalSetting("my.key", "my global value");

  167.     assertComponentSetting("my.key", "my project value", subportfolio.uuid());

  168.     assertThat(settingsChangeNotifier.wasCalled).isFalse();

  169.   }

  170. 

  171.   @Test

  172.   public void persist_project_property_with_project_admin_permission() {

  173.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  174.     logInAsProjectAdministrator(project);

  175. 

  176.     callForProjectSettingByKey("my.key", "my value", project.getKey());

  177. 

  178.     assertComponentSetting("my.key", "my value", project.getUuid());

  179.   }

  180. 

  181.   @Test

  182.   public void update_existing_project_setting() {

  183.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my global value"), null, null,

  184.       null, null);

  185.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  186.     propertyDb.insertProperty(newComponentPropertyDto("my.key", "my project value", project), project.getKey(),

  187.       project.getName(), null, null);

  188.     assertComponentSetting("my.key", "my project value", project.getUuid());

  189.     logInAsProjectAdministrator(project);

  190. 

  191.     callForProjectSettingByKey("my.key", "my new project value", project.getKey());

  192. 

  193.     assertComponentSetting("my.key", "my new project value", project.getUuid());

  194.   }

  195. 

  196.   @Test

  197.   public void persist_several_multi_value_setting() {

  198.     callForMultiValueGlobalSetting("my.key", List.of("first,Value", "second,Value", "third,Value"));

  199. 

  200.     String expectedValue = "first%2CValue,second%2CValue,third%2CValue";

  201.     assertGlobalSetting("my.key", expectedValue);

  202.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  203.   }

  204. 

  205.   @Test

  206.   public void persist_one_multi_value_setting() {

  207.     callForMultiValueGlobalSetting("my.key", List.of("first,Value"));

  208. 

  209.     assertGlobalSetting("my.key", "first%2CValue");

  210.   }

  211. 

  212.   @Test

  213.   public void persist_property_set_setting() {

  214.     definitions.addComponent(PropertyDefinition

  215.       .builder("my.key")

  216.       .name("foo")

  217.       .description("desc")

  218.       .category("cat")

  219.       .subCategory("subCat")

  220.       .type(PropertyType.PROPERTY_SET)

  221.       .defaultValue("default")

  222.       .fields(List.of(

  223.         PropertyFieldDefinition.build("firstField")

  224.           .name("First Field")

  225.           .type(PropertyType.STRING)

  226.           .build(),

  227.         PropertyFieldDefinition.build("secondField")

  228.           .name("Second Field")

  229.           .type(PropertyType.STRING)

  230.           .build()))

  231.       .build());

  232. 

  233.     callForGlobalPropertySet("my.key", List.of(

  234.       GSON.toJson(Map.of("firstField", "firstValue", "secondField", "secondValue")),

  235.       GSON.toJson(Map.of("firstField", "anotherFirstValue", "secondField", "anotherSecondValue")),

  236.       GSON.toJson(Map.of("firstField", "yetFirstValue", "secondField", "yetSecondValue"))));

  237. 

  238.     assertThat(dbClient.propertiesDao().selectGlobalProperties(dbSession)).hasSize(7);

  239.     assertGlobalSetting("my.key", "1,2,3");

  240.     assertGlobalSetting("my.key.1.firstField", "firstValue");

  241.     assertGlobalSetting("my.key.1.secondField", "secondValue");

  242.     assertGlobalSetting("my.key.2.firstField", "anotherFirstValue");

  243.     assertGlobalSetting("my.key.2.secondField", "anotherSecondValue");

  244.     assertGlobalSetting("my.key.3.firstField", "yetFirstValue");

  245.     assertGlobalSetting("my.key.3.secondField", "yetSecondValue");

  246.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  247.   }

  248. 

  249.   @Test

  250.   public void update_property_set_setting() {

  251.     definitions.addComponent(PropertyDefinition

  252.       .builder("my.key")

  253.       .name("foo")

  254.       .description("desc")

  255.       .category("cat")

  256.       .subCategory("subCat")

  257.       .type(PropertyType.PROPERTY_SET)

  258.       .defaultValue("default")

  259.       .fields(List.of(

  260.         PropertyFieldDefinition.build("firstField")

  261.           .name("First Field")

  262.           .type(PropertyType.STRING)

  263.           .build(),

  264.         PropertyFieldDefinition.build("secondField")

  265.           .name("Second Field")

  266.           .type(PropertyType.STRING)

  267.           .build()))

  268.       .build());

  269.     propertyDb.insertProperties(null, null, null, null,

  270.       newGlobalPropertyDto("my.key", "1,2,3,4"),

  271.       newGlobalPropertyDto("my.key.1.firstField", "oldFirstValue"),

  272.       newGlobalPropertyDto("my.key.1.secondField", "oldSecondValue"),

  273.       newGlobalPropertyDto("my.key.2.firstField", "anotherOldFirstValue"),

  274.       newGlobalPropertyDto("my.key.2.secondField", "anotherOldSecondValue"),

  275.       newGlobalPropertyDto("my.key.3.firstField", "oldFirstValue"),

  276.       newGlobalPropertyDto("my.key.3.secondField", "oldSecondValue"),

  277.       newGlobalPropertyDto("my.key.4.firstField", "anotherOldFirstValue"),

  278.       newGlobalPropertyDto("my.key.4.secondField", "anotherOldSecondValue"));

  279. 

  280.     callForGlobalPropertySet("my.key", List.of(

  281.       GSON.toJson(Map.of("firstField", "firstValue", "secondField", "secondValue")),

  282.       GSON.toJson(Map.of("firstField", "anotherFirstValue", "secondField", "anotherSecondValue")),

  283.       GSON.toJson(Map.of("firstField", "yetFirstValue", "secondField", "yetSecondValue"))));

  284. 

  285.     assertThat(dbClient.propertiesDao().selectGlobalProperties(dbSession)).hasSize(7);

  286.     assertGlobalSetting("my.key", "1,2,3");

  287.     assertGlobalSetting("my.key.1.firstField", "firstValue");

  288.     assertGlobalSetting("my.key.1.secondField", "secondValue");

  289.     assertGlobalSetting("my.key.2.firstField", "anotherFirstValue");

  290.     assertGlobalSetting("my.key.2.secondField", "anotherSecondValue");

  291.     assertGlobalSetting("my.key.3.firstField", "yetFirstValue");

  292.     assertGlobalSetting("my.key.3.secondField", "yetSecondValue");

  293.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  294.   }

  295. 

  296.   @Test

  297.   public void update_property_set_on_component_setting() {

  298.     definitions.addComponent(PropertyDefinition

  299.       .builder("my.key")

  300.       .name("foo")

  301.       .description("desc")

  302.       .category("cat")

  303.       .subCategory("subCat")

  304.       .type(PropertyType.PROPERTY_SET)

  305.       .defaultValue("default")

  306.       .onQualifiers(Qualifiers.PROJECT)

  307.       .fields(List.of(

  308.         PropertyFieldDefinition.build("firstField")

  309.           .name("First Field")

  310.           .type(PropertyType.STRING)

  311.           .build(),

  312.         PropertyFieldDefinition.build("secondField")

  313.           .name("Second Field")

  314.           .type(PropertyType.STRING)

  315.           .build()))

  316.       .build());

  317.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  318.     propertyDb.insertProperties(null, null, null, null,

  319.       newGlobalPropertyDto("my.key", "1"),

  320.       newGlobalPropertyDto("my.key.1.firstField", "oldFirstValue"),

  321.       newGlobalPropertyDto("my.key.1.secondField", "oldSecondValue"));

  322.     propertyDb.insertProperties(null, project.getKey(), project.getName(), project.getQualifier(),

  323.       newComponentPropertyDto("my.key", "1", project),

  324.       newComponentPropertyDto("my.key.1.firstField", "componentFirstValue", project),

  325.       newComponentPropertyDto("my.key.1.firstField", "componentSecondValue", project));

  326.     logInAsProjectAdministrator(project);

  327. 

  328.     callForComponentPropertySet("my.key", List.of(

  329.         GSON.toJson(Map.of("firstField", "firstValue", "secondField", "secondValue")),

  330.         GSON.toJson(Map.of("firstField", "anotherFirstValue", "secondField", "anotherSecondValue"))),

  331.       project.getKey());

  332. 

  333.     assertThat(dbClient.propertiesDao().selectGlobalProperties(dbSession)).hasSize(3);

  334.     assertThat(dbClient.propertiesDao().selectEntityProperties(dbSession, project.getUuid())).hasSize(5);

  335.     assertGlobalSetting("my.key", "1");

  336.     assertGlobalSetting("my.key.1.firstField", "oldFirstValue");

  337.     assertGlobalSetting("my.key.1.secondField", "oldSecondValue");

  338.     String projectUuid = project.getUuid();

  339.     assertComponentSetting("my.key", "1,2", projectUuid);

  340.     assertComponentSetting("my.key.1.firstField", "firstValue", projectUuid);

  341.     assertComponentSetting("my.key.1.secondField", "secondValue", projectUuid);

  342.     assertComponentSetting("my.key.2.firstField", "anotherFirstValue", projectUuid);

  343.     assertComponentSetting("my.key.2.secondField", "anotherSecondValue", projectUuid);

  344.     assertThat(settingsChangeNotifier.wasCalled).isFalse();

  345.   }

  346. 

  347.   @Test

  348.   public void persist_multi_value_with_type_logIn() {

  349.     definitions.addComponent(PropertyDefinition

  350.       .builder("my.key")

  351.       .name("foo")

  352.       .description("desc")

  353.       .category("cat")

  354.       .subCategory("subCat")

  355.       .type(PropertyType.USER_LOGIN)

  356.       .defaultValue("default")

  357.       .multiValues(true)

  358.       .build());

  359.     db.users().insertUser(newUserDto().setLogin("login.1"));

  360.     db.users().insertUser(newUserDto().setLogin("login.2"));

  361. 

  362.     callForMultiValueGlobalSetting("my.key", List.of("login.1", "login.2"));

  363. 

  364.     assertGlobalSetting("my.key", "login.1,login.2");

  365.   }

  366. 

  367.   @Test

  368.   public void user_setting_is_not_updated() {

  369.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my user value").setUserUuid("42"), null, null,

  370.       null, "user_login");

  371.     propertyDb.insertProperty(newGlobalPropertyDto("my.key", "my global value"), null, null, null, null);

  372. 

  373.     callForGlobalSetting("my.key", "my new global value");

  374. 

  375.     assertGlobalSetting("my.key", "my new global value");

  376.     assertUserSetting("my.key", "my user value", "42");

  377.   }

  378. 

  379.   @Test

  380.   public void persist_global_property_with_deprecated_key() {

  381.     definitions.addComponent(PropertyDefinition

  382.       .builder("my.key")

  383.       .deprecatedKey("my.old.key")

  384.       .name("foo")

  385.       .description("desc")

  386.       .category("cat")

  387.       .subCategory("subCat")

  388.       .type(PropertyType.STRING)

  389.       .defaultValue("default")

  390.       .build());

  391. 

  392.     callForGlobalSetting("my.old.key", "My Value");

  393. 

  394.     assertGlobalSetting("my.key", "My Value");

  395.   }

  396. 

  397.   @Test

  398.   public void persist_JSON_property() {

  399.     definitions.addComponent(PropertyDefinition

  400.       .builder("my.key")

  401.       .name("foo")

  402.       .description("desc")

  403.       .category("cat")

  404.       .subCategory("subCat")

  405.       .type(PropertyType.JSON)

  406.       .build());

  407. 

  408.     callForGlobalSetting("my.key", "{\"test\":\"value\"}");

  409. 

  410.     assertGlobalSetting("my.key", "{\"test\":\"value\"}");

  411.   }

  412. 

  413.   @Test

  414.   public void fail_if_JSON_invalid_for_JSON_property() {

  415.     definitions.addComponent(PropertyDefinition

  416.       .builder("my.key")

  417.       .name("foo")

  418.       .description("desc")

  419.       .category("cat")

  420.       .subCategory("subCat")

  421.       .type(PropertyType.JSON)

  422.       .build());

  423. 

  424.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "{\"test\":\"value\""))

  425.       .isInstanceOf(IllegalArgumentException.class)

  426.       .hasMessage("Provided JSON is invalid");

  427. 

  428.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "{\"test\":\"value\",}"))

  429.       .isInstanceOf(IllegalArgumentException.class)

  430.       .hasMessage("Provided JSON is invalid");

  431. 

  432.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "{\"test\":[\"value\",]}"))

  433.       .isInstanceOf(IllegalArgumentException.class)

  434.       .hasMessage("Provided JSON is invalid");

  435.   }

  436. 

  437.   @Test

  438.   @UseDataProvider("securityJsonProperties")

  439.   public void successfully_validate_json_schema(String securityPropertyKey) {

  440.     String security_custom_config = """

  441.       {

  442.         "S3649": {

  443.           "sources": [

  444.             {

  445.               "methodId": "My\\\\Namespace\\\\ClassName\\\\ServerRequest::getQuery"

  446.             }

  447.           ],

  448.           "sanitizers": [

  449.             {

  450.               "methodId": "str_replace",        "args": [

  451.                  0

  452.                ]

  453.             }

  454.           ],

  455.           "validators": [

  456.             {

  457.               "methodId": "is_valid",        "args": [

  458.                  1

  459.                ]

  460.             }

  461.           ],

  462.           "sinks": [

  463.             {

  464.               "methodId": "mysql_query",

  465.               "args": [1]

  466.             }

  467.           ]

  468.         }

  469.       }""";

  470.     definitions.addComponent(PropertyDefinition

  471.       .builder(securityPropertyKey)

  472.       .name("foo")

  473.       .description("desc")

  474.       .category("cat")

  475.       .subCategory("subCat")

  476.       .type(PropertyType.JSON)

  477.       .build());

  478. 

  479.     callForGlobalSetting(securityPropertyKey, security_custom_config);

  480. 

  481.     assertGlobalSetting(securityPropertyKey, security_custom_config);

  482.   }

  483. 

  484.   @Test

  485.   @UseDataProvider("securityJsonProperties")

  486.   public void fail_json_schema_validation_when_property_has_incorrect_type(String securityPropertyKey) {

  487.     String security_custom_config = """

  488.       {

  489.         "S3649": {

  490.           "sources": [

  491.             {

  492.               "methodId": "My\\\\Namespace\\\\ClassName\\\\ServerRequest::getQuery"

  493.             }

  494.           ],

  495.           "sinks": [

  496.             {

  497.               "methodId": 12345,

  498.               "args": [1]

  499.             }

  500.           ]

  501.         }

  502.       }""";

  503.     definitions.addComponent(PropertyDefinition

  504.       .builder(securityPropertyKey)

  505.       .name("foo")

  506.       .description("desc")

  507.       .category("cat")

  508.       .subCategory("subCat")

  509.       .type(PropertyType.JSON)

  510.       .build());

  511. 

  512.     assertThatThrownBy(() -> callForGlobalSetting(securityPropertyKey, security_custom_config))

  513.       .isInstanceOf(IllegalArgumentException.class)

  514.       .hasMessageContaining("expected type: string, actual: integer at line 10, character 21, pointer: #/S3649/sinks/0/methodId");

  515.   }

  516. 

  517.   @Test

  518.   @UseDataProvider("securityJsonProperties")

  519.   public void fail_json_schema_validation_when_sanitizers_have_no_args(String securityPropertyKey) {

  520.     String security_custom_config = """

  521.       {

  522.         "S3649": {

  523.           "sources": [

  524.             {

  525.               "methodId": "My\\\\Namespace\\\\ClassName\\\\ServerRequest::getQuery"

  526.             }

  527.           ],

  528.           "sanitizers": [

  529.              {

  530.                "methodId": "SomeSanitizer"

  531.              }

  532.           ]

  533.         }

  534.       }""";

  535.     definitions.addComponent(PropertyDefinition

  536.       .builder(securityPropertyKey)

  537.       .name("foo")

  538.       .description("desc")

  539.       .category("cat")

  540.       .subCategory("subCat")

  541.       .type(PropertyType.JSON)

  542.       .build());

  543. 

  544.     assertThatThrownBy(() -> callForGlobalSetting(securityPropertyKey, security_custom_config))

  545.       .isInstanceOf(IllegalArgumentException.class)

  546.       .hasMessageContaining("required properties are missing: args at line 9, character 8, pointer: #/S3649/sanitizers/0");

  547.   }

  548. 

  549.   @Test

  550.   @UseDataProvider("securityJsonProperties")

  551.   public void fail_json_schema_validation_when_validators_have_empty_args_array(String securityPropertyKey) {

  552.     String security_custom_config = """

  553.       {

  554.         "S3649": {

  555.           "sources": [

  556.             {

  557.               "methodId": "My\\\\Namespace\\\\ClassName\\\\ServerRequest::getQuery"

  558.             }

  559.           ],

  560.           "validators": [

  561.              {

  562.                "methodId": "SomeValidator",

  563.                "args": []

  564.              }

  565.           ]

  566.         }

  567.       }""";

  568.     definitions.addComponent(PropertyDefinition

  569.       .builder(securityPropertyKey)

  570.       .name("foo")

  571.       .description("desc")

  572.       .category("cat")

  573.       .subCategory("subCat")

  574.       .type(PropertyType.JSON)

  575.       .build());

  576. 

  577.     assertThatThrownBy(() -> callForGlobalSetting(securityPropertyKey, security_custom_config))

  578.       .isInstanceOf(IllegalArgumentException.class)

  579.       .hasMessageContaining("expected minimum items: 1, found only 0 at line 11, character 18, pointer: #/S3649/validators/0/args");

  580.   }

  581. 

  582.   @Test

  583.   @UseDataProvider("securityJsonProperties")

  584.   public void fail_json_schema_validation_when_property_has_unknown_attribute(String securityPropertyKey) {

  585.     String security_custom_config = """

  586.       {

  587.         "S3649": {

  588.           "sources": [

  589.             {

  590.               "methodId": "My\\\\Namespace\\\\ClassName\\\\ServerRequest::getQuery"

  591.             }

  592.           ],

  593.           "unknown": [

  594.             {

  595.               "methodId": 12345,

  596.               "args": [1]

  597.             }

  598.           ]

  599.         }

  600.       }""";

  601.     definitions.addComponent(PropertyDefinition

  602.       .builder(securityPropertyKey)

  603.       .name("foo")

  604.       .description("desc")

  605.       .category("cat")

  606.       .subCategory("subCat")

  607.       .type(PropertyType.JSON)

  608.       .build());

  609. 

  610.     assertThatThrownBy(() -> callForGlobalSetting(securityPropertyKey, security_custom_config))

  611.       .isInstanceOf(IllegalArgumentException.class)

  612.       .hasMessageContaining("false schema always fails at line 8, character 16, pointer: #/S3649/unknown");

  613.   }

  614. 

  615.   @Test

  616.   public void persist_global_setting_with_non_ascii_characters() {

  617.     callForGlobalSetting("my.key", "fi±∞…");

  618. 

  619.     assertGlobalSetting("my.key", "fi±∞…");

  620.     assertThat(settingsChangeNotifier.wasCalled).isTrue();

  621.   }

  622. 

  623.   @Test

  624.   public void fail_when_no_key() {

  625.     assertThatThrownBy(() -> callForGlobalSetting(null, "my value"))

  626.       .isInstanceOf(IllegalArgumentException.class);

  627.   }

  628. 

  629.   @Test

  630.   public void fail_when_empty_key_value() {

  631.     assertThatThrownBy(() -> callForGlobalSetting("  ", "my value"))

  632.       .isInstanceOf(IllegalArgumentException.class)

  633.       .hasMessage("The 'key' parameter is missing");

  634.   }

  635. 

  636.   @Test

  637.   public void fail_when_no_value() {

  638.     assertThatThrownBy(() -> callForGlobalSetting("my.key", null))

  639.       .isInstanceOf(BadRequestException.class)

  640.       .hasMessage("Either 'value', 'values' or 'fieldValues' must be provided");

  641.   }

  642. 

  643.   @Test

  644.   public void fail_when_empty_value() {

  645.     assertThatThrownBy(() -> callForGlobalSetting("my.key", ""))

  646.       .isInstanceOf(BadRequestException.class)

  647.       .hasMessage("A non empty value must be provided");

  648.   }

  649. 

  650.   @Test

  651.   public void fail_when_one_empty_value_on_multi_value() {

  652.     List<String> values = List.of("oneValue", "  ", "anotherValue");

  653.     assertThatThrownBy(() -> callForMultiValueGlobalSetting("my.key", values))

  654.       .isInstanceOf(BadRequestException.class)

  655.       .hasMessage("A non empty value must be provided");

  656.   }

  657. 

  658.   @Test

  659.   public void throw_ForbiddenException_if_not_system_administrator() {

  660.     userSession.logIn().setNonSystemAdministrator();

  661. 

  662.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "my value"))

  663.       .isInstanceOf(ForbiddenException.class)

  664.       .hasMessage("Insufficient privileges");

  665.   }

  666. 

  667.   @Test

  668.   public void fail_when_data_and_type_do_not_match() {

  669.     definitions.addComponent(PropertyDefinition

  670.       .builder("my.key")

  671.       .name("foo")

  672.       .description("desc")

  673.       .category("cat")

  674.       .subCategory("subCat")

  675.       .type(PropertyType.INTEGER)

  676.       .defaultValue("default")

  677.       .build());

  678.     i18n.put("property.error.notInteger", "Not an integer error message");

  679. 

  680.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "My Value"))

  681.       .isInstanceOf(BadRequestException.class)

  682.       .hasMessage("Not an integer error message");

  683.   }

  684. 

  685.   @Test

  686.   public void fail_when_data_and_login_type_with_invalid_logIn() {

  687.     definitions.addComponent(PropertyDefinition

  688.       .builder("my.key")

  689.       .name("foo")

  690.       .description("desc")

  691.       .category("cat")

  692.       .subCategory("subCat")

  693.       .type(PropertyType.USER_LOGIN)

  694.       .defaultValue("default")

  695.       .multiValues(true)

  696.       .build());

  697.     db.users().insertUser(newUserDto().setLogin("login.1"));

  698.     db.users().insertUser(newUserDto().setLogin("login.2").setActive(false));

  699. 

  700.     List<String> values = List.of("login.1", "login.2");

  701.     assertThatThrownBy(() -> callForMultiValueGlobalSetting("my.key", values))

  702.       .isInstanceOf(BadRequestException.class)

  703.       .hasMessage("Error when validating login setting with key 'my.key' and values [login.1, login.2]. A value is not a valid login.");

  704.   }

  705. 

  706.   @Test

  707.   public void fail_when_data_and_type_do_not_match_with_unknown_error_key() {

  708.     definitions.addComponent(PropertyDefinition

  709.       .builder("my.key")

  710.       .name("foo")

  711.       .description("desc")

  712.       .category("cat")

  713.       .subCategory("subCat")

  714.       .type(PropertyType.INTEGER)

  715.       .defaultValue("default")

  716.       .build());

  717. 

  718.     List<String> values = List.of("My Value", "My Other Value");

  719.     assertThatThrownBy(() -> callForMultiValueGlobalSetting("my.key", values))

  720.       .isInstanceOf(BadRequestException.class)

  721.       .hasMessage("Error when validating setting with key 'my.key' and value [My Value, My Other Value]");

  722.   }

  723. 

  724.   @Test

  725.   public void fail_when_global_with_property_only_on_projects() {

  726.     definitions.addComponent(PropertyDefinition

  727.       .builder("my.key")

  728.       .name("foo")

  729.       .description("desc")

  730.       .category("cat")

  731.       .subCategory("subCat")

  732.       .type(PropertyType.INTEGER)

  733.       .defaultValue("default")

  734.       .onlyOnQualifiers(Qualifiers.PROJECT)

  735.       .build());

  736. 

  737.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "42"))

  738.       .isInstanceOf(BadRequestException.class)

  739.       .hasMessage("Setting 'my.key' cannot be global");

  740.   }

  741. 

  742.   @Test

  743.   public void fail_when_view_property_when_on_projects_only() {

  744.     definitions.addComponent(PropertyDefinition

  745.       .builder("my.key")

  746.       .name("foo")

  747.       .description("desc")

  748.       .category("cat")

  749.       .subCategory("subCat")

  750.       .type(PropertyType.STRING)

  751.       .defaultValue("default")

  752.       .onQualifiers(Qualifiers.PROJECT)

  753.       .build());

  754.     ComponentDto view = db.components().insertPublicPortfolio();

  755.     i18n.put("qualifier." + Qualifiers.VIEW, "View");

  756. 

  757.     assertThatThrownBy(() -> {

  758.       logInAsPortfolioAdministrator(db.components().getPortfolioDto(view));

  759.       callForProjectSettingByKey("my.key", "My Value", view.getKey());

  760.     })

  761.       .isInstanceOf(BadRequestException.class)

  762.       .hasMessage("Setting 'my.key' cannot be set on a View");

  763.   }

  764. 

  765.   @Test

  766.   public void fail_when_property_with_definition_when_component_qualifier_does_not_match() {

  767.     PortfolioDto portfolio = db.components().insertPrivatePortfolioDto();

  768.     definitions.addComponent(PropertyDefinition

  769.       .builder("my.key")

  770.       .name("foo")

  771.       .description("desc")

  772.       .category("cat")

  773.       .subCategory("subCat")

  774.       .type(PropertyType.STRING)

  775.       .defaultValue("default")

  776.       .onQualifiers(Qualifiers.PROJECT)

  777.       .build());

  778.     i18n.put("qualifier." + portfolio.getQualifier(), "CptLabel");

  779.     logInAsPortfolioAdministrator(portfolio);

  780. 

  781.     assertThatThrownBy(() -> callForProjectSettingByKey("my.key", "My Value", portfolio.getKey()))

  782.       .isInstanceOf(BadRequestException.class)

  783.       .hasMessage("Setting 'my.key' cannot be set on a CptLabel");

  784.   }

  785. 

  786.   @Test

  787.   public void succeed_for_property_without_definition_when_set_on_project_component() {

  788.     ProjectDto project = randomPublicOrPrivateProject().getProjectDto();

  789.     succeedForPropertyWithoutDefinitionAndValidComponent(project);

  790.   }

  791. 

  792.   @Test

  793.   public void fail_for_property_without_definition_when_set_on_directory_component() {

  794.     ProjectData projectData = randomPublicOrPrivateProject();

  795.     ComponentDto directory = db.components().insertComponent(ComponentTesting.newDirectory(projectData.getMainBranchComponent(), "A/B"));

  796.     failForPropertyWithoutDefinitionOnUnsupportedComponent(projectData.getProjectDto(), directory);

  797.   }

  798. 

  799.   @Test

  800.   public void fail_for_property_without_definition_when_set_on_file_component() {

  801.     ProjectData projectData = randomPublicOrPrivateProject();

  802.     ComponentDto file = db.components().insertComponent(ComponentTesting.newFileDto(projectData.getMainBranchComponent()));

  803.     failForPropertyWithoutDefinitionOnUnsupportedComponent(projectData.getProjectDto(), file);

  804.   }

  805. 

  806.   @Test

  807.   public void succeed_for_property_without_definition_when_set_on_view_component() {

  808.     PortfolioDto view = db.components().insertPrivatePortfolioDto();

  809.     succeedForPropertyWithoutDefinitionAndValidComponent(view);

  810.   }

  811. 

  812.   @Test

  813.   public void succeed_for_property_without_definition_when_set_on_subview_component() {

  814.     ComponentDto view = db.components().insertPrivatePortfolio();

  815.     ComponentDto subview = db.components().insertComponent(ComponentTesting.newSubPortfolio(view));

  816.     failForPropertyWithoutDefinitionOnUnsupportedComponent(db.components().getPortfolioDto(view), subview);

  817.   }

  818. 

  819.   @Test

  820.   public void fail_for_property_without_definition_when_set_on_projectCopy_component() {

  821.     ComponentDto view = db.components().insertPrivatePortfolio();

  822.     ComponentDto projectCopy = db.components().insertComponent(ComponentTesting.newProjectCopy("a", db.components().insertPrivateProject().getMainBranchComponent(), view));

  823. 

  824.     failForPropertyWithoutDefinitionOnUnsupportedComponent(db.components().getPortfolioDto(view), projectCopy);

  825.   }

  826. 

  827.   private void succeedForPropertyWithoutDefinitionAndValidComponent(ProjectDto project) {

  828.     logInAsProjectAdministrator(project);

  829. 

  830.     callForProjectSettingByKey("my.key", "My Value", project.getKey());

  831. 

  832.     assertComponentSetting("my.key", "My Value", project.getUuid());

  833.   }

  834. 

  835.   private void succeedForPropertyWithoutDefinitionAndValidComponent(PortfolioDto portfolioDto) {

  836.     logInAsPortfolioAdministrator(portfolioDto);

  837. 

  838.     callForProjectSettingByKey("my.key", "My Value", portfolioDto.getKey());

  839. 

  840.     assertComponentSetting("my.key", "My Value", portfolioDto.getUuid());

  841.   }

  842. 

  843.   private void failForPropertyWithoutDefinitionOnUnsupportedComponent(ProjectDto project, ComponentDto component) {

  844.     i18n.put("qualifier." + component.qualifier(), "QualifierLabel");

  845.     logInAsProjectAdministrator(project);

  846. 

  847.     assertThatThrownBy(() -> callForProjectSettingByKey("my.key", "My Value", component.getKey()))

  848.       .isInstanceOf(NotFoundException.class)

  849.       .hasMessage(String.format("Component key '%s' not found", component.getKey()));

  850.   }

  851. 

  852.   private void failForPropertyWithoutDefinitionOnUnsupportedComponent(PortfolioDto portfolio, ComponentDto component) {

  853.     i18n.put("qualifier." + component.qualifier(), "QualifierLabel");

  854.     logInAsPortfolioAdministrator(portfolio);

  855. 

  856.     assertThatThrownBy(() -> callForProjectSettingByKey("my.key", "My Value", component.getKey()))

  857.       .isInstanceOf(NotFoundException.class)

  858.       .hasMessage(String.format("Component key '%s' not found", component.getKey()));

  859.   }

  860. 

  861.   @Test

  862.   public void fail_when_single_and_multi_value_provided() {

  863.     List<String> value = List.of("Another Value");

  864.     assertThatThrownBy(() -> call("my.key", "My Value", value, null, null))

  865.       .isInstanceOf(BadRequestException.class)

  866.       .hasMessage("Either 'value', 'values' or 'fieldValues' must be provided");

  867.   }

  868. 

  869.   @Test

  870.   public void fail_when_multi_definition_and_single_value_provided() {

  871.     definitions.addComponent(PropertyDefinition

  872.       .builder("my.key")

  873.       .name("foo")

  874.       .description("desc")

  875.       .category("cat")

  876.       .type(PropertyType.STRING)

  877.       .multiValues(true)

  878.       .build());

  879. 

  880.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "My Value"))

  881.       .isInstanceOf(BadRequestException.class)

  882.       .hasMessage("Parameter 'value' must be used for single value setting. Parameter 'values' must be used for multi value setting.");

  883.   }

  884. 

  885.   @Test

  886.   public void fail_when_single_definition_and_multi_value_provided() {

  887.     definitions.addComponent(PropertyDefinition

  888.       .builder("my.key")

  889.       .name("foo")

  890.       .description("desc")

  891.       .category("cat")

  892.       .type(PropertyType.STRING)

  893.       .multiValues(false)

  894.       .build());

  895. 

  896.     assertThatThrownBy(() -> callForMultiValueGlobalSetting("my.key", List.of("My Value")))

  897.       .isInstanceOf(BadRequestException.class)

  898.       .hasMessage("Parameter 'value' must be used for single value setting. Parameter 'values' must be used for multi value setting.");

  899.   }

  900. 

  901.   @Test

  902.   public void fail_when_empty_values_on_one_property_set() {

  903.     definitions.addComponent(PropertyDefinition

  904.       .builder("my.key")

  905.       .name("foo")

  906.       .description("desc")

  907.       .category("cat")

  908.       .subCategory("subCat")

  909.       .type(PropertyType.PROPERTY_SET)

  910.       .defaultValue("default")

  911.       .fields(List.of(

  912.         PropertyFieldDefinition.build("firstField")

  913.           .name("First Field")

  914.           .type(PropertyType.STRING)

  915.           .build(),

  916.         PropertyFieldDefinition.build("secondField")

  917.           .name("Second Field")

  918.           .type(PropertyType.STRING)

  919.           .build()))

  920.       .build());

  921. 

  922.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", List.of(

  923.       GSON.toJson(Map.of("firstField", "firstValue", "secondField", "secondValue")),

  924.       GSON.toJson(Map.of("firstField", "", "secondField", "")),

  925.       GSON.toJson(Map.of("firstField", "yetFirstValue", "secondField", "yetSecondValue")))))

  926.       .isInstanceOf(BadRequestException.class)

  927.       .hasMessage("A non empty value must be provided");

  928.   }

  929. 

  930.   @Test

  931.   public void do_not_fail_when_only_one_empty_value_on_one_property_set() {

  932.     definitions.addComponent(PropertyDefinition

  933.       .builder("my.key")

  934.       .name("foo")

  935.       .description("desc")

  936.       .category("cat")

  937.       .subCategory("subCat")

  938.       .type(PropertyType.PROPERTY_SET)

  939.       .defaultValue("default")

  940.       .fields(List.of(

  941.         PropertyFieldDefinition.build("firstField")

  942.           .name("First Field")

  943.           .type(PropertyType.STRING)

  944.           .build(),

  945.         PropertyFieldDefinition.build("secondField")

  946.           .name("Second Field")

  947.           .type(PropertyType.STRING)

  948.           .build()))

  949.       .build());

  950. 

  951.     callForGlobalPropertySet("my.key", List.of(

  952.       GSON.toJson(Map.of("firstField", "firstValue", "secondField", "secondValue")),

  953.       GSON.toJson(Map.of("firstField", "anotherFirstValue", "secondField", "")),

  954.       GSON.toJson(Map.of("firstField", "yetFirstValue", "secondField", "yetSecondValue"))));

  955. 

  956.     assertGlobalSetting("my.key", "1,2,3");

  957.   }

  958. 

  959.   @Test

  960.   public void fail_when_property_set_setting_is_not_defined() {

  961.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", singletonList("{\"field\":\"value\"}")))

  962.       .isInstanceOf(BadRequestException.class)

  963.       .hasMessage("Setting 'my.key' is undefined");

  964.   }

  965. 

  966.   @Test

  967.   public void fail_when_property_set_with_unknown_field() {

  968.     definitions.addComponent(PropertyDefinition

  969.       .builder("my.key")

  970.       .name("foo")

  971.       .description("desc")

  972.       .category("cat")

  973.       .subCategory("subCat")

  974.       .type(PropertyType.PROPERTY_SET)

  975.       .defaultValue("default")

  976.       .fields(List.of(

  977.         PropertyFieldDefinition.build("field")

  978.           .name("Field")

  979.           .type(PropertyType.STRING)

  980.           .build()))

  981.       .build());

  982. 

  983.     List<String> values = List.of(GSON.toJson(Map.of("field", "value", "unknownField", "anotherValue")));

  984.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", values))

  985.       .isInstanceOf(BadRequestException.class)

  986.       .hasMessage("Unknown field key 'unknownField' for setting 'my.key'");

  987.   }

  988. 

  989.   @Test

  990.   public void fail_when_property_set_has_field_with_incorrect_type() {

  991.     definitions.addComponent(PropertyDefinition

  992.       .builder("my.key")

  993.       .name("foo")

  994.       .description("desc")

  995.       .category("cat")

  996.       .subCategory("subCat")

  997.       .type(PropertyType.PROPERTY_SET)

  998.       .defaultValue("default")

  999.       .fields(List.of(

  1000.         PropertyFieldDefinition.build("field")

  1001.           .name("Field")

  1002.           .type(PropertyType.INTEGER)

  1003.           .build()))

  1004.       .build());

  1005. 

  1006.     List<String> values = List.of(GSON.toJson(Map.of("field", "notAnInt")));

  1007.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", values))

  1008.       .isInstanceOf(BadRequestException.class)

  1009.       .hasMessage("Error when validating setting with key 'my.key'. Field 'field' has incorrect value 'notAnInt'.");

  1010.   }

  1011. 

  1012.   @Test

  1013.   public void fail_when_property_set_has_a_null_field_value() {

  1014.     definitions.addComponent(PropertyDefinition

  1015.       .builder("my.key")

  1016.       .name("foo")

  1017.       .description("desc")

  1018.       .category("cat")

  1019.       .subCategory("subCat")

  1020.       .type(PropertyType.PROPERTY_SET)

  1021.       .defaultValue("default")

  1022.       .fields(List.of(

  1023.         PropertyFieldDefinition.build("field")

  1024.           .name("Field")

  1025.           .type(PropertyType.STRING)

  1026.           .build()))

  1027.       .build());

  1028. 

  1029.     List<String> values = List.of("{\"field\": null}");

  1030.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", values))

  1031.       .isInstanceOf(BadRequestException.class)

  1032.       .hasMessage("A non empty value must be provided");

  1033.   }

  1034. 

  1035.   @Test

  1036.   public void fail_when_property_set_with_invalid_json() {

  1037.     definitions.addComponent(PropertyDefinition

  1038.       .builder("my.key")

  1039.       .name("foo")

  1040.       .description("desc")

  1041.       .category("cat")

  1042.       .subCategory("subCat")

  1043.       .type(PropertyType.PROPERTY_SET)

  1044.       .defaultValue("default")

  1045.       .fields(List.of(

  1046.         PropertyFieldDefinition.build("field")

  1047.           .name("Field")

  1048.           .type(PropertyType.STRING)

  1049.           .build()))

  1050.       .build());

  1051. 

  1052.     List<String> values = List.of("incorrectJson:incorrectJson");

  1053.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", values))

  1054.       .isInstanceOf(BadRequestException.class)

  1055.       .hasMessage("JSON 'incorrectJson:incorrectJson' does not respect expected format for setting 'my.key'. " +

  1056.         "Ex: {\"field1\":\"value1\", \"field2\":\"value2\"}");

  1057.   }

  1058. 

  1059.   @Test

  1060.   public void fail_when_property_set_with_json_of_the_wrong_format() {

  1061.     definitions.addComponent(PropertyDefinition

  1062.       .builder("my.key")

  1063.       .name("foo")

  1064.       .description("desc")

  1065.       .category("cat")

  1066.       .subCategory("subCat")

  1067.       .type(PropertyType.PROPERTY_SET)

  1068.       .defaultValue("default")

  1069.       .fields(List.of(

  1070.         PropertyFieldDefinition.build("field")

  1071.           .name("Field")

  1072.           .type(PropertyType.STRING)

  1073.           .build()))

  1074.       .build());

  1075. 

  1076.     List<String> values = List.of("[{\"field\":\"v1\"}, {\"field\":\"v2\"}]");

  1077.     assertThatThrownBy(() -> callForGlobalPropertySet("my.key", values))

  1078.       .isInstanceOf(BadRequestException.class)

  1079.       .hasMessage("JSON '[{\"field\":\"v1\"}, {\"field\":\"v2\"}]' does not respect expected format for setting 'my.key'. " +

  1080.         "Ex: {\"field1\":\"value1\", \"field2\":\"value2\"}");

  1081.   }

  1082. 

  1083.   @Test

  1084.   public void fail_when_property_set_on_component_of_global_setting() {

  1085.     definitions.addComponent(PropertyDefinition

  1086.       .builder("my.key")

  1087.       .name("foo")

  1088.       .description("desc")

  1089.       .category("cat")

  1090.       .subCategory("subCat")

  1091.       .type(PropertyType.PROPERTY_SET)

  1092.       .defaultValue("default")

  1093.       .fields(List.of(PropertyFieldDefinition.build("firstField").name("First Field").type(PropertyType.STRING).build()))

  1094.       .build());

  1095.     i18n.put("qualifier." + Qualifiers.PROJECT, "Project");

  1096.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  1097.     logInAsProjectAdministrator(project);

  1098. 

  1099.     List<String> values = List.of(GSON.toJson(Map.of("firstField", "firstValue")));

  1100.     assertThatThrownBy(() -> callForComponentPropertySet("my.key", values, project.getKey()))

  1101.       .isInstanceOf(BadRequestException.class)

  1102.       .hasMessage("Setting 'my.key' cannot be set on a Project");

  1103.   }

  1104. 

  1105.   @Test

  1106.   public void fail_when_component_not_found() {

  1107.     TestRequest testRequest = ws.newRequest()

  1108.       .setParam("key", "foo")

  1109.       .setParam("value", "2")

  1110.       .setParam("component", "unknown");

  1111.     assertThatThrownBy(testRequest::execute)

  1112.       .isInstanceOf(NotFoundException.class)

  1113.       .hasMessage("Component key 'unknown' not found");

  1114.   }

  1115. 

  1116.   @Test

  1117.   public void fail_when_setting_key_is_defined_in_sonar_properties() {

  1118.     ProjectDto project = db.components().insertPrivateProject().getProjectDto();

  1119.     logInAsProjectAdministrator(project);

  1120.     String settingKey = ProcessProperties.Property.JDBC_URL.getKey();

  1121. 

  1122.     TestRequest testRequest = ws.newRequest()

  1123.       .setParam("key", settingKey)

  1124.       .setParam("value", "any value")

  1125.       .setParam("component", project.getKey());

  1126.     assertThatThrownBy(testRequest::execute)

  1127.       .isInstanceOf(IllegalArgumentException.class)

  1128.       .hasMessage(format("Setting '%s' can only be used in sonar.properties", settingKey));

  1129.   }

  1130. 

  1131.   @Test

  1132.   public void definition() {

  1133.     WebService.Action definition = ws.getDef();

  1134. 

  1135.     assertThat(definition.key()).isEqualTo("set");

  1136.     assertThat(definition.isPost()).isTrue();

  1137.     assertThat(definition.isInternal()).isFalse();

  1138.     assertThat(definition.since()).isEqualTo("6.1");

  1139.     assertThat(definition.params()).extracting(Param::key)

  1140.       .containsOnly("key", "value", "values", "fieldValues", "component");

  1141.   }

  1142. 

  1143.   @Test

  1144.   public void call_whenEmailPropertyValid_shouldSucceed() {

  1145.     definitions.addComponent(PropertyDefinition

  1146.       .builder("my.key")

  1147.       .name("foo")

  1148.       .description("desc")

  1149.       .type(PropertyType.EMAIL)

  1150.       .build());

  1151. 

  1152.     callForGlobalSetting("my.key", "test@sonarsource.com");

  1153.     assertGlobalSetting("my.key", "test@sonarsource.com");

  1154.   }

  1155. 

  1156.   @Test

  1157.   public void call_whenEmailPropertyInvalid_shouldFail() {

  1158.     definitions.addComponent(PropertyDefinition

  1159.       .builder("my.key")

  1160.       .name("foo")

  1161.       .description("desc")

  1162.       .type(PropertyType.EMAIL)

  1163.       .build());

  1164.     i18n.put("property.error.notEmail", "Not a valid email address");

  1165. 

  1166.     assertThatThrownBy(() -> callForGlobalSetting("my.key", "test1@sonarsource.com,test2@sonarsource.com"))

  1167.       .isInstanceOf(BadRequestException.class)

  1168.       .hasMessage("Not a valid email address");

  1169.   }

  1170. 

  1171.   private void assertGlobalSetting(String key, String value) {

  1172.     PropertyDto result = dbClient.propertiesDao().selectGlobalProperty(key);

  1173. 

  1174.     assertThat(result)

  1175.       .extracting(PropertyDto::getKey, PropertyDto::getValue, PropertyDto::getEntityUuid)

  1176.       .containsExactly(key, value, null);

  1177.   }

  1178. 

  1179.   private void assertUserSetting(String key, String value, String userUuid) {

  1180.     List<PropertyDto> result = dbClient.propertiesDao().selectByQuery(PropertyQuery.builder().setKey(key).setUserUuid(userUuid).build(), dbSession);

  1181. 

  1182.     assertThat(result).hasSize(1)

  1183.       .extracting(PropertyDto::getKey, PropertyDto::getValue, PropertyDto::getUserUuid)

  1184.       .containsExactly(tuple(key, value, userUuid));

  1185.   }

  1186. 

  1187.   private void assertComponentSetting(String key, String value, String entityUuid) {

  1188.     PropertyDto result = dbClient.propertiesDao().selectProjectProperty(db.getSession(), entityUuid, key);

  1189. 

  1190.     assertThat(result)

  1191.       .isNotNull()

  1192.       .extracting(PropertyDto::getKey, PropertyDto::getValue, PropertyDto::getEntityUuid)

  1193.       .containsExactly(key, value, entityUuid);

  1194.   }

  1195. 

  1196.   private void callForGlobalSetting(@Nullable String key, @Nullable String value) {

  1197.     call(key, value, null, null, null);

  1198.   }

  1199. 

  1200.   private void callForMultiValueGlobalSetting(@Nullable String key, @Nullable List<String> values) {

  1201.     call(key, null, values, null, null);

  1202.   }

  1203. 

  1204.   private void callForGlobalPropertySet(@Nullable String key, @Nullable List<String> fieldValues) {

  1205.     call(key, null, null, fieldValues, null);

  1206.   }

  1207. 

  1208.   private void callForComponentPropertySet(@Nullable String key, @Nullable List<String> fieldValues, @Nullable String componentKey) {

  1209.     call(key, null, null, fieldValues, componentKey);

  1210.   }

  1211. 

  1212.   private void callForProjectSettingByKey(@Nullable String key, @Nullable String value, @Nullable String componentKey) {

  1213.     call(key, value, null, null, componentKey);

  1214.   }

  1215. 

  1216.   private void call(@Nullable String key, @Nullable String value, @Nullable List<String> values, @Nullable List<String> fieldValues, @Nullable String componentKey) {

  1217.     TestRequest request = ws.newRequest();

  1218.     if (key != null) {

  1219.       request.setParam("key", key);

  1220.     }

  1221.     if (value != null) {

  1222.       request.setParam("value", value);

  1223.     }

  1224.     if (values != null) {

  1225.       request.setMultiParam("values", values);

  1226.     }

  1227.     if (fieldValues != null) {

  1228.       request.setMultiParam("fieldValues", fieldValues);

  1229.     }

  1230.     if (componentKey != null) {

  1231.       request.setParam("component", componentKey);

  1232.     }

  1233.     request.execute();

  1234.   }

  1235. 

  1236.   private static class FakeSettingsNotifier extends SettingsChangeNotifier {

  1237. 

  1238.     private final DbClient dbClient;

  1239.     private boolean wasCalled = false;

  1240. 

  1241.     private FakeSettingsNotifier(DbClient dbClient) {

  1242.       this.dbClient = dbClient;

  1243.     }

  1244. 

  1245.     @Override

  1246.     public void onGlobalPropertyChange(String key, @Nullable String value) {

  1247.       wasCalled = true;

  1248.       PropertyDto property = dbClient.propertiesDao().selectGlobalProperty(key);

  1249. 

  1250.       assertThat(property.getValue()).isEqualTo(value);

  1251.     }

  1252.   }

  1253. 

  1254.   private void logInAsPortfolioAdministrator(PortfolioDto portfolio) {

  1255.     userSession.logIn().addPortfolioPermission(UserRole.ADMIN, portfolio);

  1256.   }

  1257. 

  1258.   private void logInAsProjectAdministrator(ProjectDto project) {

  1259.     userSession.logIn().addProjectPermission(UserRole.ADMIN, project);

  1260.   }

  1261. 

  1262.   private ProjectData randomPublicOrPrivateProject() {

  1263.     return ThreadLocalRandom.current().nextBoolean() ? db.components().insertPrivateProject() : db.components().insertPublicProject();

  1264.   }

  1265. }