mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
29336 Commits
59 Branches
Tree: 97fd4b10e7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97fd4b10e7'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/test/java/org/sonar/server/issue/ws/DeleteCommentActionTest.java

DeleteCommentActionTest.java 7.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.issue.ws;

  21. 

  22. import javax.annotation.Nullable;

  23. import org.junit.Rule;

  24. import org.junit.Test;

  25. import org.junit.rules.ExpectedException;

  26. import org.mockito.ArgumentCaptor;

  27. import org.sonar.api.rules.RuleType;

  28. import org.sonar.api.server.ws.Request;

  29. import org.sonar.api.server.ws.Response;

  30. import org.sonar.api.server.ws.WebService;

  31. import org.sonar.db.DbClient;

  32. import org.sonar.db.DbTester;

  33. import org.sonar.db.issue.IssueChangeDto;

  34. import org.sonar.db.issue.IssueDbTester;

  35. import org.sonar.db.issue.IssueDto;

  36. import org.sonar.db.user.UserDto;

  37. import org.sonar.server.exceptions.ForbiddenException;

  38. import org.sonar.server.exceptions.NotFoundException;

  39. import org.sonar.server.exceptions.UnauthorizedException;

  40. import org.sonar.server.issue.IssueFinder;

  41. import org.sonar.server.tester.UserSessionRule;

  42. import org.sonar.server.ws.TestRequest;

  43. import org.sonar.server.ws.TestResponse;

  44. import org.sonar.server.ws.WsActionTester;

  45. 

  46. import static java.util.Optional.ofNullable;

  47. import static org.assertj.core.api.Assertions.assertThat;

  48. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  49. import static org.mockito.ArgumentMatchers.any;

  50. import static org.mockito.ArgumentMatchers.eq;

  51. import static org.mockito.Mockito.mock;

  52. import static org.mockito.Mockito.verify;

  53. import static org.sonar.api.web.UserRole.CODEVIEWER;

  54. import static org.sonar.api.web.UserRole.USER;

  55. 

  56. public class DeleteCommentActionTest {

  57. 

  58.   @Rule

  59.   public ExpectedException expectedException = ExpectedException.none();

  60.   @Rule

  61.   public DbTester dbTester = DbTester.create();

  62.   @Rule

  63.   public UserSessionRule userSession = UserSessionRule.standalone();

  64. 

  65.   private DbClient dbClient = dbTester.getDbClient();

  66.   private IssueDbTester issueDbTester = new IssueDbTester(dbTester);

  67.   private OperationResponseWriter responseWriter = mock(OperationResponseWriter.class);

  68.   private ArgumentCaptor<SearchResponseData> preloadedSearchResponseDataCaptor = ArgumentCaptor.forClass(SearchResponseData.class);

  69. 

  70.   private WsActionTester tester = new WsActionTester(

  71.     new DeleteCommentAction(userSession, dbClient, new IssueFinder(dbClient, userSession), responseWriter));

  72. 

  73.   @Test

  74.   public void delete_comment() {

  75.     IssueDto issueDto = issueDbTester.insertIssue();

  76.     UserDto user = dbTester.users().insertUser();

  77.     IssueChangeDto commentDto = issueDbTester.insertComment(issueDto, user, "please fix it");

  78.     loginAndAddProjectPermission(user, issueDto, USER);

  79. 

  80.     call(commentDto.getKey());

  81. 

  82.     verify(responseWriter).write(eq(issueDto.getKey()), preloadedSearchResponseDataCaptor.capture(), any(Request.class), any(Response.class));

  83.     assertThat(dbClient.issueChangeDao().selectCommentByKey(dbTester.getSession(), commentDto.getKey())).isNotPresent();

  84.     verifyContentOfPreloadedSearchResponseData(issueDto);

  85.   }

  86. 

  87.   @Test

  88.   public void delete_comment_using_deprecated_key_parameter() {

  89.     IssueDto issueDto = issueDbTester.insertIssue();

  90.     UserDto user = dbTester.users().insertUser();

  91.     IssueChangeDto commentDto = issueDbTester.insertComment(issueDto, user, "please fix it");

  92.     loginAndAddProjectPermission(user, issueDto, USER);

  93. 

  94.     tester.newRequest().setParam("key", commentDto.getKey()).setParam("text", "please have a look").execute();

  95. 

  96.     verify(responseWriter).write(eq(issueDto.getKey()), preloadedSearchResponseDataCaptor.capture(), any(Request.class), any(Response.class));

  97.     assertThat(dbClient.issueChangeDao().selectCommentByKey(dbTester.getSession(), commentDto.getKey())).isNotPresent();

  98.     verifyContentOfPreloadedSearchResponseData(issueDto);

  99.   }

  100. 

  101.   @Test

  102.   public void fail_when_comment_does_not_belong_to_current_user() {

  103.     IssueDto issueDto = issueDbTester.insertIssue();

  104.     UserDto user = dbTester.users().insertUser();

  105.     IssueChangeDto commentDto = issueDbTester.insertComment(issueDto, user, "please fix it");

  106.     UserDto another = dbTester.users().insertUser();

  107.     loginAndAddProjectPermission(another, issueDto, USER);

  108. 

  109.     expectedException.expect(IllegalArgumentException.class);

  110.     expectedException.expectMessage("You can only delete your own comments");

  111.     call(commentDto.getKey());

  112.   }

  113. 

  114.   @Test

  115.   public void fail_when_comment_has_not_user() {

  116.     IssueDto issueDto = issueDbTester.insertIssue();

  117.     UserDto user = dbTester.users().insertUser();

  118.     IssueChangeDto commentDto = issueDbTester.insertComment(issueDto, null, "please fix it");

  119.     loginAndAddProjectPermission(user, issueDto, USER);

  120. 

  121.     expectedException.expect(IllegalArgumentException.class);

  122.     expectedException.expectMessage("You can only delete your own comments");

  123.     call(commentDto.getKey());

  124.   }

  125. 

  126.   @Test

  127.   public void fail_when_missing_comment_key() {

  128.     userSession.logIn("john");

  129. 

  130.     expectedException.expect(IllegalArgumentException.class);

  131.     call(null);

  132.   }

  133. 

  134.   @Test

  135.   public void fail_when_comment_does_not_exist() {

  136.     userSession.logIn("john");

  137. 

  138.     expectedException.expect(NotFoundException.class);

  139.     call("ABCD");

  140.   }

  141. 

  142.   @Test

  143.   public void fail_when_not_authenticated() {

  144.     expectedException.expect(UnauthorizedException.class);

  145.     call("ABCD");

  146.   }

  147. 

  148.   @Test

  149.   public void fail_when_not_enough_permission() {

  150.     IssueDto issueDto = issueDbTester.insertIssue();

  151.     UserDto user = dbTester.users().insertUser();

  152.     IssueChangeDto commentDto = issueDbTester.insertComment(issueDto, user, "please fix it");

  153.     loginAndAddProjectPermission(user, issueDto, CODEVIEWER);

  154. 

  155.     expectedException.expect(ForbiddenException.class);

  156.     call(commentDto.getKey());

  157.   }

  158. 

  159.   @Test

  160.   public void fail_when_hotspot() {

  161.     IssueDto hotspot = issueDbTester.insertHotspot();

  162.     UserDto user = dbTester.users().insertUser();

  163.     IssueChangeDto commentDto = issueDbTester.insertComment(hotspot, user, "please fix it");

  164.     loginAndAddProjectPermission(user, hotspot, USER);

  165. 

  166.     assertThatThrownBy(() -> call(commentDto.getKey()))

  167.     .isInstanceOf(NotFoundException.class)

  168.     .hasMessage("Issue with key '%s' does not exist", hotspot.getKey());

  169.   }

  170. 

  171.   @Test

  172.   public void test_definition() {

  173.     WebService.Action action = tester.getDef();

  174.     assertThat(action.key()).isEqualTo("delete_comment");

  175.     assertThat(action.isPost()).isTrue();

  176.     assertThat(action.isInternal()).isFalse();

  177.     assertThat(action.params()).hasSize(1);

  178.     assertThat(action.responseExample()).isNotNull();

  179.   }

  180. 

  181.   private void verifyContentOfPreloadedSearchResponseData(IssueDto issue) {

  182.     SearchResponseData preloadedSearchResponseData = preloadedSearchResponseDataCaptor.getValue();

  183.     assertThat(preloadedSearchResponseData.getIssues())

  184.       .extracting(IssueDto::getKey)

  185.       .containsOnly(issue.getKey());

  186.     assertThat(preloadedSearchResponseData.getRules()).isNullOrEmpty();

  187.     assertThat(preloadedSearchResponseData.getComponents()).isNullOrEmpty();

  188.   }

  189. 

  190.   private TestResponse call(@Nullable String commentKey) {

  191.     TestRequest request = tester.newRequest();

  192.     ofNullable(commentKey).ifPresent(comment -> request.setParam("comment", comment));

  193.     return request.execute();

  194.   }

  195. 

  196.   private void loginAndAddProjectPermission(UserDto user, IssueDto issueDto, String permission) {

  197.     userSession.logIn(user).addProjectPermission(permission, dbClient.componentDao().selectByUuid(dbTester.getSession(), issueDto.getProjectUuid()).get());

  198.   }

  199. 

  200. }