mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30152 Commits
59 Branches
Tree: 7de02f77f4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7de02f77f4'
${ noResults }
sonarqube/server/sonar-webserver-auth/src/test/java/org/sonar/server/user/UserUpdaterReactivateTest.java

UserUpdaterReactivateTest.java 12KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.user;

  21. 

  22. import com.google.common.collect.Multimap;

  23. import org.junit.Rule;

  24. import org.junit.Test;

  25. import org.junit.rules.ExpectedException;

  26. import org.sonar.api.config.internal.MapSettings;

  27. import org.sonar.api.impl.utils.AlwaysIncreasingSystem2;

  28. import org.sonar.api.utils.System2;

  29. import org.sonar.db.DbClient;

  30. import org.sonar.db.DbSession;

  31. import org.sonar.db.DbTester;

  32. import org.sonar.db.user.GroupDto;

  33. import org.sonar.db.user.GroupTesting;

  34. import org.sonar.db.user.UserDto;

  35. import org.sonar.server.authentication.CredentialsLocalAuthentication;

  36. import org.sonar.server.authentication.CredentialsLocalAuthentication.HashMethod;

  37. import org.sonar.server.es.EsTester;

  38. import org.sonar.server.organization.DefaultOrganizationProvider;

  39. import org.sonar.server.organization.TestDefaultOrganizationProvider;

  40. import org.sonar.server.user.index.UserIndexer;

  41. import org.sonar.server.usergroups.DefaultGroupFinder;

  42. 

  43. import static java.lang.String.format;

  44. import static java.util.Collections.singletonList;

  45. import static org.assertj.core.api.Assertions.assertThat;

  46. import static org.mockito.Mockito.mock;

  47. import static org.sonar.process.ProcessProperties.Property.ONBOARDING_TUTORIAL_SHOW_TO_NEW_USERS;

  48. 

  49. public class UserUpdaterReactivateTest {

  50. 

  51.   private System2 system2 = new AlwaysIncreasingSystem2();

  52. 

  53.   @Rule

  54.   public ExpectedException expectedException = ExpectedException.none();

  55.   @Rule

  56.   public EsTester es = EsTester.create();

  57.   @Rule

  58.   public DbTester db = DbTester.create(system2);

  59. 

  60.   private DbClient dbClient = db.getDbClient();

  61.   private NewUserNotifier newUserNotifier = mock(NewUserNotifier.class);

  62.   private DbSession session = db.getSession();

  63.   private UserIndexer userIndexer = new UserIndexer(dbClient, es.client());

  64.   private DefaultOrganizationProvider defaultOrganizationProvider = TestDefaultOrganizationProvider.from(db);

  65.   private MapSettings settings = new MapSettings();

  66.   private CredentialsLocalAuthentication localAuthentication = new CredentialsLocalAuthentication(db.getDbClient());

  67.   private UserUpdater underTest = new UserUpdater(newUserNotifier, dbClient, userIndexer, defaultOrganizationProvider,

  68.     new DefaultGroupFinder(dbClient, defaultOrganizationProvider),

  69.     settings.asConfig(), localAuthentication);

  70. 

  71.   @Test

  72.   public void reactivate_user() {

  73.     UserDto user = db.users().insertUser(u -> u.setActive(false));

  74.     createDefaultGroup();

  75. 

  76.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  77.       .setLogin("marius")

  78.       .setName("Marius2")

  79.       .setEmail("marius2@mail.com")

  80.       .setPassword("password2")

  81.       .build(),

  82.       u -> {

  83.       });

  84. 

  85.     UserDto reloaded = dbClient.userDao().selectByUuid(session, user.getUuid());

  86.     assertThat(reloaded.isActive()).isTrue();

  87.     assertThat(reloaded.getLogin()).isEqualTo("marius");

  88.     assertThat(reloaded.getName()).isEqualTo("Marius2");

  89.     assertThat(reloaded.getEmail()).isEqualTo("marius2@mail.com");

  90.     assertThat(reloaded.getScmAccounts()).isNull();

  91.     assertThat(reloaded.isLocal()).isTrue();

  92.     assertThat(reloaded.getSalt()).isNull();

  93.     assertThat(reloaded.getHashMethod()).isEqualTo(HashMethod.BCRYPT.name());

  94.     assertThat(reloaded.getCryptedPassword()).isNotNull().isNotEqualTo("650d2261c98361e2f67f90ce5c65a95e7d8ea2fg");

  95.     assertThat(reloaded.getCreatedAt()).isEqualTo(user.getCreatedAt());

  96.     assertThat(reloaded.getUpdatedAt()).isGreaterThan(user.getCreatedAt());

  97.   }

  98. 

  99.   @Test

  100.   public void reactivate_user_without_providing_login() {

  101.     UserDto user = db.users().insertUser(u -> u.setActive(false));

  102.     createDefaultGroup();

  103. 

  104.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  105.       .setName("Marius2")

  106.       .setEmail("marius2@mail.com")

  107.       .setPassword("password2")

  108.       .build(),

  109.       u -> {

  110.       });

  111. 

  112.     UserDto reloaded = dbClient.userDao().selectByUuid(session, user.getUuid());

  113.     assertThat(reloaded.isActive()).isTrue();

  114.     assertThat(reloaded.getLogin()).isEqualTo(user.getLogin());

  115.   }

  116. 

  117.   @Test

  118.   public void reactivate_user_not_having_password() {

  119.     UserDto user = db.users().insertDisabledUser(u -> u.setSalt(null).setCryptedPassword(null));

  120.     createDefaultGroup();

  121. 

  122.     UserDto dto = underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  123.       .setLogin(user.getLogin())

  124.       .setName(user.getName())

  125.       .build(),

  126.       u -> {

  127.       });

  128. 

  129.     assertThat(dto.isActive()).isTrue();

  130.     assertThat(dto.getName()).isEqualTo(user.getName());

  131.     assertThat(dto.getScmAccounts()).isNull();

  132.     assertThat(dto.getSalt()).isNull();

  133.     assertThat(dto.getCryptedPassword()).isNull();

  134.     assertThat(dto.getCreatedAt()).isEqualTo(user.getCreatedAt());

  135.     assertThat(dto.getUpdatedAt()).isGreaterThan(user.getCreatedAt());

  136.   }

  137. 

  138.   @Test

  139.   public void reactivate_user_with_external_provider() {

  140.     UserDto user = db.users().insertDisabledUser(u -> u.setLocal(true));

  141.     createDefaultGroup();

  142. 

  143.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  144.       .setLogin(user.getLogin())

  145.       .setName(user.getName())

  146.       .setExternalIdentity(new ExternalIdentity("github", "john", "ABCD"))

  147.       .build(), u -> {

  148.       });

  149.     session.commit();

  150. 

  151.     UserDto dto = dbClient.userDao().selectByUuid(session, user.getUuid());

  152.     assertThat(dto.isLocal()).isFalse();

  153.     assertThat(dto.getExternalId()).isEqualTo("ABCD");

  154.     assertThat(dto.getExternalLogin()).isEqualTo("john");

  155.     assertThat(dto.getExternalIdentityProvider()).isEqualTo("github");

  156.   }

  157. 

  158.   @Test

  159.   public void reactivate_user_using_same_external_info_but_was_local() {

  160.     UserDto user = db.users().insertDisabledUser(u -> u.setLocal(true)

  161.       .setExternalId("ABCD")

  162.       .setExternalLogin("john")

  163.       .setExternalIdentityProvider("github"));

  164.     createDefaultGroup();

  165. 

  166.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  167.       .setLogin(user.getLogin())

  168.       .setName(user.getName())

  169.       .setExternalIdentity(new ExternalIdentity("github", "john", "ABCD"))

  170.       .build(), u -> {

  171.       });

  172.     session.commit();

  173. 

  174.     UserDto dto = dbClient.userDao().selectByUuid(session, user.getUuid());

  175.     assertThat(dto.isLocal()).isFalse();

  176.     assertThat(dto.getExternalId()).isEqualTo("ABCD");

  177.     assertThat(dto.getExternalLogin()).isEqualTo("john");

  178.     assertThat(dto.getExternalIdentityProvider()).isEqualTo("github");

  179.   }

  180. 

  181.   @Test

  182.   public void reactivate_user_with_local_provider() {

  183.     UserDto user = db.users().insertDisabledUser(u -> u.setLocal(false)

  184.       .setExternalId("ABCD")

  185.       .setExternalLogin("john")

  186.       .setExternalIdentityProvider("github"));

  187.     createDefaultGroup();

  188. 

  189.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  190.       .setLogin(user.getLogin())

  191.       .setName(user.getName())

  192.       .build(), u -> {

  193.       });

  194.     session.commit();

  195. 

  196.     UserDto dto = dbClient.userDao().selectByUuid(session, user.getUuid());

  197.     assertThat(dto.isLocal()).isTrue();

  198.     assertThat(dto.getExternalId()).isEqualTo(user.getLogin());

  199.     assertThat(dto.getExternalLogin()).isEqualTo(user.getLogin());

  200.     assertThat(dto.getExternalIdentityProvider()).isEqualTo("sonarqube");

  201.   }

  202. 

  203.   @Test

  204.   public void fail_to_reactivate_user_if_active() {

  205.     UserDto user = db.users().insertUser();

  206.     createDefaultGroup();

  207. 

  208.     expectedException.expect(IllegalArgumentException.class);

  209.     expectedException.expectMessage(format("An active user with login '%s' already exists", user.getLogin()));

  210. 

  211.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  212.       .setLogin(user.getLogin())

  213.       .setName(user.getName())

  214.       .build(), u -> {

  215.       });

  216.   }

  217. 

  218.   @Test

  219.   public void associate_default_groups_when_reactivating_user() {

  220.     UserDto userDto = db.users().insertDisabledUser();

  221.     GroupDto groupDto = db.users().insertGroup(GroupTesting.newGroupDto().setName("sonar-devs"));

  222.     db.users().insertMember(groupDto, userDto);

  223.     GroupDto defaultGroup = createDefaultGroup();

  224. 

  225.     underTest.reactivateAndCommit(db.getSession(), userDto, NewUser.builder()

  226.       .setLogin(userDto.getLogin())

  227.       .setName(userDto.getName())

  228.       .build(), u -> {

  229.       });

  230.     session.commit();

  231. 

  232.     Multimap<String, String> groups = dbClient.groupMembershipDao().selectGroupsByLogins(session, singletonList(userDto.getLogin()));

  233.     assertThat(groups.get(userDto.getLogin()).stream().anyMatch(g -> g.equals(defaultGroup.getName()))).isTrue();

  234.   }

  235. 

  236.   @Test

  237.   public void reactivate_not_onboarded_user_if_onboarding_setting_is_set_to_false() {

  238.     settings.setProperty(ONBOARDING_TUTORIAL_SHOW_TO_NEW_USERS.getKey(), false);

  239.     UserDto user = db.users().insertDisabledUser(u -> u.setOnboarded(false));

  240.     createDefaultGroup();

  241. 

  242.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  243.       .setLogin(user.getLogin())

  244.       .setName(user.getName())

  245.       .build(), u -> {

  246.       });

  247. 

  248.     assertThat(dbClient.userDao().selectByLogin(session, user.getLogin()).isOnboarded()).isTrue();

  249.   }

  250. 

  251.   @Test

  252.   public void reactivate_onboarded_user_if_onboarding_setting_is_set_to_true() {

  253.     settings.setProperty(ONBOARDING_TUTORIAL_SHOW_TO_NEW_USERS.getKey(), true);

  254.     UserDto user = db.users().insertDisabledUser(u -> u.setOnboarded(true));

  255.     createDefaultGroup();

  256. 

  257.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  258.       .setLogin(user.getLogin())

  259.       .setName(user.getName())

  260.       .build(), u -> {

  261.       });

  262. 

  263.     assertThat(dbClient.userDao().selectByLogin(session, user.getLogin()).isOnboarded()).isFalse();

  264.   }

  265. 

  266.   @Test

  267.   public void does_not_set_notifications_readDate_setting_when_reactivating_user() {

  268.     createDefaultGroup();

  269.     UserDto user = db.users().insertDisabledUser();

  270. 

  271.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  272.       .setLogin(user.getLogin())

  273.       .setName(user.getName())

  274.       .build(), u -> {

  275.       });

  276. 

  277.     assertThat(dbClient.userPropertiesDao().selectByUser(session, user)).isEmpty();

  278.   }

  279. 

  280.   @Test

  281.   public void fail_to_reactivate_user_when_login_already_exists() {

  282.     createDefaultGroup();

  283.     UserDto user = db.users().insertUser(u -> u.setActive(false));

  284.     UserDto existingUser = db.users().insertUser(u -> u.setLogin("existing_login"));

  285. 

  286.     expectedException.expect(IllegalArgumentException.class);

  287.     expectedException.expectMessage("A user with login 'existing_login' already exists");

  288. 

  289.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  290.       .setLogin(existingUser.getLogin())

  291.       .setName("Marius2")

  292.       .setPassword("password2")

  293.       .build(),

  294.       u -> {

  295.       });

  296.   }

  297. 

  298.   @Test

  299.   public void fail_to_reactivate_user_when_external_id_and_external_provider_already_exists() {

  300.     createDefaultGroup();

  301.     UserDto user = db.users().insertUser(u -> u.setActive(false));

  302.     UserDto existingUser = db.users().insertUser(u -> u.setExternalId("existing_external_id").setExternalIdentityProvider("existing_external_provider"));

  303. 

  304.     expectedException.expect(IllegalArgumentException.class);

  305.     expectedException.expectMessage("A user with provider id 'existing_external_id' and identity provider 'existing_external_provider' already exists");

  306. 

  307.     underTest.reactivateAndCommit(db.getSession(), user, NewUser.builder()

  308.       .setLogin(user.getLogin())

  309.       .setName("Marius2")

  310.       .setExternalIdentity(new ExternalIdentity(existingUser.getExternalIdentityProvider(), existingUser.getExternalLogin(), existingUser.getExternalId()))

  311.       .build(),

  312.       u -> {

  313.       });

  314.   }

  315. 

  316.   private GroupDto createDefaultGroup() {

  317.     return db.users().insertDefaultGroup();

  318.   }

  319. 

  320. }