mirrors
/
sonarqube
zrcadlo https://github.com/SonarSource/sonarqube.git
Sledovat 1
Oblíbit 0
Rozštěpit 0
Zdrojový kód Úkoly 0 Vydání 237 Wiki Aktivita
Nelze vybrat více než 25 témat Téma musí začínat písmenem nebo číslem, může obsahovat pomlčky („-“) a může být dlouhé až 35 znaků.
34710 Revize
59 Větve
Strom: b0ab2c391e
Větve Značky
${ item.name }
Vytvořit větev ${ searchTerm }
z „b0ab2c391e“
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/it/java/org/sonar/server/permission/ws/template/TemplateUsersActionIT.java

TemplateUsersActionIT.java 17KB
Surový Blame Historie

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws.template;

  21. 

  22. import java.util.stream.IntStream;

  23. import javax.annotation.Nullable;

  24. import org.junit.Test;

  25. import org.sonar.api.resources.Qualifiers;

  26. import org.sonar.api.resources.ResourceTypes;

  27. import org.sonar.api.server.ws.WebService;

  28. import org.sonar.api.web.UserRole;

  29. import org.sonar.db.component.ResourceTypesRule;

  30. import org.sonar.db.permission.GlobalPermission;

  31. import org.sonar.db.permission.template.PermissionTemplateDto;

  32. import org.sonar.db.permission.template.PermissionTemplateUserDto;

  33. import org.sonar.db.user.UserDto;

  34. import org.sonar.server.exceptions.BadRequestException;

  35. import org.sonar.server.exceptions.ForbiddenException;

  36. import org.sonar.server.exceptions.NotFoundException;

  37. import org.sonar.server.exceptions.UnauthorizedException;

  38. import org.sonar.server.common.avatar.AvatarResolverImpl;

  39. import org.sonar.server.permission.PermissionService;

  40. import org.sonar.server.permission.PermissionServiceImpl;

  41. import org.sonar.server.permission.RequestValidator;

  42. import org.sonar.server.permission.ws.BasePermissionWsIT;

  43. import org.sonar.server.permission.ws.WsParameters;

  44. import org.sonar.server.ws.TestRequest;

  45. import org.sonarqube.ws.Permissions;

  46. 

  47. import static org.assertj.core.api.Assertions.assertThat;

  48. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  49. import static org.sonar.api.web.UserRole.ADMIN;

  50. import static org.sonar.api.web.UserRole.CODEVIEWER;

  51. import static org.sonar.api.web.UserRole.ISSUE_ADMIN;

  52. import static org.sonar.api.web.UserRole.USER;

  53. import static org.sonar.db.permission.GlobalPermission.SCAN;

  54. import static org.sonar.db.permission.PermissionQuery.DEFAULT_PAGE_SIZE;

  55. import static org.sonar.db.permission.template.PermissionTemplateTesting.newPermissionTemplateUserDto;

  56. import static org.sonar.db.user.UserTesting.newUserDto;

  57. import static org.sonar.test.JsonAssert.assertJson;

  58. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PERMISSION;

  59. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_ID;

  60. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_NAME;

  61. 

  62. public class TemplateUsersActionIT extends BasePermissionWsIT<TemplateUsersAction> {

  63. 

  64.   private final ResourceTypes resourceTypes = new ResourceTypesRule().setRootQualifiers(Qualifiers.PROJECT);

  65.   private final PermissionService permissionService = new PermissionServiceImpl(resourceTypes);

  66.   private final WsParameters wsParameters = new WsParameters(permissionService);

  67.   private final RequestValidator requestValidator = new RequestValidator(permissionService);

  68. 

  69.   @Override

  70.   protected TemplateUsersAction buildWsAction() {

  71.     return new TemplateUsersAction(db.getDbClient(), userSession, newPermissionWsSupport(), new AvatarResolverImpl(), wsParameters, requestValidator);

  72.   }

  73. 

  74.   @Test

  75.   public void define_template_users() {

  76.     WebService.Action action = wsTester.getDef();

  77. 

  78.     assertThat(action).isNotNull();

  79.     assertThat(action.key()).isEqualTo("template_users");

  80.     assertThat(action.isPost()).isFalse();

  81.     assertThat(action.isInternal()).isTrue();

  82.     assertThat(action.since()).isEqualTo("5.2");

  83.     WebService.Param permissionParam = action.param(PARAM_PERMISSION);

  84.     assertThat(permissionParam).isNotNull();

  85.     assertThat(permissionParam.isRequired()).isFalse();

  86.   }

  87. 

  88.   @Test

  89.   public void search_for_users_with_response_example() {

  90.     UserDto user1 = insertUser(newUserDto().setLogin("admin").setName("Administrator").setEmail("admin@admin.com"));

  91.     UserDto user2 = insertUser(newUserDto().setLogin("george.orwell").setName("George Orwell").setEmail("george.orwell@1984.net"));

  92. 

  93.     PermissionTemplateDto template1 = addTemplate();

  94.     addUserToTemplate(newPermissionTemplateUser(CODEVIEWER, template1, user1), template1.getName());

  95.     addUserToTemplate(newPermissionTemplateUser(CODEVIEWER, template1, user2), template1.getName());

  96.     addUserToTemplate(newPermissionTemplateUser(ADMIN, template1, user2), template1.getName());

  97.     loginAsAdmin();

  98. 

  99.     String result = newRequest(null, template1.getUuid()).execute().getInput();

  100.     assertJson(result).isSimilarTo(getClass().getResource("template_users-example.json"));

  101.   }

  102. 

  103.   @Test

  104.   public void search_for_users_by_template_name() {

  105.     loginAsAdmin();

  106. 

  107.     UserDto user1 = insertUser(newUserDto().setLogin("login-1").setName("name-1").setEmail("email-1"));

  108.     UserDto user2 = insertUser(newUserDto().setLogin("login-2").setName("name-2").setEmail("email-2"));

  109.     UserDto user3 = insertUser(newUserDto().setLogin("login-3").setName("name-3").setEmail("email-3"));

  110. 

  111.     PermissionTemplateDto template = addTemplate();

  112.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  113.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  114.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user1), template.getName());

  115.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user3), template.getName());

  116. 

  117.     PermissionTemplateDto anotherTemplate = addTemplate();

  118.     addUserToTemplate(newPermissionTemplateUser(USER, anotherTemplate, user1), anotherTemplate.getName());

  119. 

  120.     Permissions.UsersWsResponse response = newRequest(null, null)

  121.       .setParam(PARAM_TEMPLATE_NAME, template.getName())

  122.       .executeProtobuf(Permissions.UsersWsResponse.class);

  123. 

  124.     assertThat(response.getUsersList()).extracting("login").containsExactly("login-1", "login-2", "login-3");

  125.     assertThat(response.getUsers(0).getPermissionsList()).containsOnly("issueadmin", "user");

  126.     assertThat(response.getUsers(1).getPermissionsList()).containsOnly("user");

  127.     assertThat(response.getUsers(2).getPermissionsList()).containsOnly("issueadmin");

  128.   }

  129. 

  130.   @Test

  131.   public void search_using_text_query() {

  132.     loginAsAdmin();

  133. 

  134.     UserDto user1 = insertUser(newUserDto().setLogin("login-1").setName("name-1").setEmail("email-1"));

  135.     UserDto user2 = insertUser(newUserDto().setLogin("login-2").setName("name-2").setEmail("email-2"));

  136.     UserDto user3 = insertUser(newUserDto().setLogin("login-3").setName("name-3").setEmail("email-3"));

  137. 

  138.     PermissionTemplateDto template = addTemplate();

  139.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  140.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  141.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user1), template.getName());

  142.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user3), template.getName());

  143. 

  144.     PermissionTemplateDto anotherTemplate = addTemplate();

  145.     addUserToTemplate(newPermissionTemplateUser(USER, anotherTemplate, user1), anotherTemplate.getName());

  146. 

  147.     Permissions.UsersWsResponse response = newRequest(null, null)

  148.       .setParam(PARAM_TEMPLATE_NAME, template.getName())

  149.       .setParam(WebService.Param.TEXT_QUERY, "ame-1")

  150.       .executeProtobuf(Permissions.UsersWsResponse.class);

  151. 

  152.     assertThat(response.getUsersList()).extracting("login").containsOnly("login-1");

  153.   }

  154. 

  155.   @Test

  156.   public void search_using_text_query_with_email() {

  157.     loginAsAdmin();

  158. 

  159.     UserDto user1 = insertUser(newUserDto().setLogin("orange").setName("name-1").setEmail("email-1"));

  160.     UserDto user2 = insertUser(newUserDto().setLogin("crANBerry").setName("name-2").setEmail("email-2"));

  161.     UserDto user3 = insertUser(newUserDto().setLogin("apple").setName("name-3").setEmail("email-3"));

  162. 

  163.     String templateName = addUsersToSomeTemplate(user1, user2, user3);

  164. 

  165.     Permissions.UsersWsResponse response = newRequest(null, null)

  166.       .setParam(PARAM_TEMPLATE_NAME, templateName)

  167.       .setParam(WebService.Param.TEXT_QUERY, "ran")

  168.       .executeProtobuf(Permissions.UsersWsResponse.class);

  169. 

  170.     assertThat(response.getUsersList()).hasSize(2);

  171.     assertThat(response.getUsersList()).extracting("login").containsExactlyInAnyOrder("orange", "crANBerry");

  172.   }

  173. 

  174.   @Test

  175.   public void search_using_text_query_with_login() {

  176.     loginAsAdmin();

  177. 

  178.     UserDto user1 = insertUser(newUserDto().setLogin("login-1").setName("name-1").setEmail("xYZ@1984.com"));

  179.     UserDto user2 = insertUser(newUserDto().setLogin("login-2").setName("name-2").setEmail("xyz2@1984.com"));

  180.     UserDto user3 = insertUser(newUserDto().setLogin("login-3").setName("name-3").setEmail("hello@1984.com"));

  181. 

  182.     String templateName = addUsersToSomeTemplate(user1, user2, user3);

  183. 

  184.     Permissions.UsersWsResponse response = newRequest(null, null)

  185.       .setParam(PARAM_TEMPLATE_NAME, templateName)

  186.       .setParam(WebService.Param.TEXT_QUERY, "xyz")

  187.       .executeProtobuf(Permissions.UsersWsResponse.class);

  188. 

  189.     assertThat(response.getUsersList()).hasSize(2);

  190.     assertThat(response.getUsersList()).extracting("email").containsExactlyInAnyOrder("xYZ@1984.com", "xyz2@1984.com");

  191.   }

  192. 

  193.   private String addUsersToSomeTemplate(UserDto user1, UserDto user2, UserDto user3) {

  194.     PermissionTemplateDto template = addTemplate();

  195.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  196.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  197.     addUserToTemplate(newPermissionTemplateUser(USER, template, user3), template.getName());

  198.     return template.getName();

  199.   }

  200. 

  201.   @Test

  202.   public void search_using_permission() {

  203.     UserDto user1 = insertUser(newUserDto().setLogin("login-1").setName("name-1").setEmail("email-1"));

  204.     UserDto user2 = insertUser(newUserDto().setLogin("login-2").setName("name-2").setEmail("email-2"));

  205.     UserDto user3 = insertUser(newUserDto().setLogin("login-3").setName("name-3").setEmail("email-3"));

  206. 

  207.     PermissionTemplateDto template = addTemplate();

  208.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  209.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  210.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user1), template.getName());

  211.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user3), template.getName());

  212. 

  213.     PermissionTemplateDto anotherTemplate = addTemplate();

  214.     addUserToTemplate(newPermissionTemplateUser(USER, anotherTemplate, user1), anotherTemplate.getName());

  215. 

  216.     loginAsAdmin();

  217.     Permissions.UsersWsResponse response = newRequest(USER, template.getUuid())

  218.       .executeProtobuf(Permissions.UsersWsResponse.class);

  219.     assertThat(response.getUsersList()).extracting("login").containsExactly("login-1", "login-2");

  220.     assertThat(response.getUsers(0).getPermissionsList()).containsOnly("issueadmin", "user");

  221.     assertThat(response.getUsers(1).getPermissionsList()).containsOnly("user");

  222.   }

  223. 

  224.   @Test

  225.   public void search_with_pagination() {

  226.     UserDto user1 = insertUser(newUserDto().setLogin("login-1").setName("name-1").setEmail("email-1"));

  227.     UserDto user2 = insertUser(newUserDto().setLogin("login-2").setName("name-2").setEmail("email-2"));

  228.     UserDto user3 = insertUser(newUserDto().setLogin("login-3").setName("name-3").setEmail("email-3"));

  229. 

  230.     PermissionTemplateDto template = addTemplate();

  231.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  232.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  233.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user1), template.getName());

  234.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user3), template.getName());

  235. 

  236.     PermissionTemplateDto anotherTemplate = addTemplate();

  237.     addUserToTemplate(newPermissionTemplateUser(USER, anotherTemplate, user1), anotherTemplate.getName());

  238. 

  239.     loginAsAdmin();

  240.     Permissions.UsersWsResponse response = newRequest(USER, null)

  241.       .setParam(PARAM_TEMPLATE_NAME, template.getName())

  242.       .setParam(WebService.Param.SELECTED, "all")

  243.       .setParam(WebService.Param.PAGE, "2")

  244.       .setParam(WebService.Param.PAGE_SIZE, "1")

  245.       .executeProtobuf(Permissions.UsersWsResponse.class);

  246. 

  247.     assertThat(response.getUsersList()).extracting("login").containsOnly("login-2");

  248.   }

  249. 

  250.   @Test

  251.   public void users_are_sorted_by_name() {

  252.     UserDto user1 = insertUser(newUserDto().setLogin("login-2").setName("name-2"));

  253.     UserDto user2 = insertUser(newUserDto().setLogin("login-3").setName("name-3"));

  254.     UserDto user3 = insertUser(newUserDto().setLogin("login-1").setName("name-1"));

  255. 

  256.     PermissionTemplateDto template = addTemplate();

  257.     addUserToTemplate(newPermissionTemplateUser(USER, template, user1), template.getName());

  258.     addUserToTemplate(newPermissionTemplateUser(USER, template, user2), template.getName());

  259.     addUserToTemplate(newPermissionTemplateUser(ISSUE_ADMIN, template, user3), template.getName());

  260. 

  261.     loginAsAdmin();

  262.     Permissions.UsersWsResponse response = newRequest(null, null)

  263.       .setParam(PARAM_TEMPLATE_NAME, template.getName())

  264.       .executeProtobuf(Permissions.UsersWsResponse.class);

  265. 

  266.     assertThat(response.getUsersList()).extracting("login").containsExactly("login-1", "login-2", "login-3");

  267.   }

  268. 

  269.   @Test

  270.   public void search_ignores_other_template_and_is_ordered_by_users_with_permission_when_many_users() {

  271.     PermissionTemplateDto template = addTemplate();

  272.     // Add another template having some users with permission to make sure it's correctly ignored

  273.     PermissionTemplateDto otherTemplate = db.permissionTemplates().insertTemplate();

  274.     IntStream.rangeClosed(1, DEFAULT_PAGE_SIZE + 1).forEach(i -> {

  275.       UserDto user = db.users().insertUser("User-" + i);

  276.       db.permissionTemplates().addUserToTemplate(otherTemplate, user, UserRole.USER);

  277.     });

  278.     String lastLogin = "User-" + (DEFAULT_PAGE_SIZE + 1);

  279.     db.permissionTemplates().addUserToTemplate(template, db.users().selectUserByLogin(lastLogin).get(), UserRole.USER);

  280.     loginAsAdmin();

  281. 

  282.     Permissions.UsersWsResponse response = newRequest(null, null)

  283.       .setParam(PARAM_TEMPLATE_NAME, template.getName())

  284.       .executeProtobuf(Permissions.UsersWsResponse.class);

  285. 

  286.     assertThat(response.getUsersList())

  287.       .extracting("login")

  288.       .hasSize(DEFAULT_PAGE_SIZE)

  289.       .startsWith(lastLogin);

  290.   }

  291. 

  292.   @Test

  293.   public void fail_if_not_a_project_permission() {

  294.     PermissionTemplateDto template = addTemplate();

  295.     loginAsAdmin();

  296. 

  297.     assertThatThrownBy(() ->  {

  298.       newRequest(GlobalPermission.PROVISION_PROJECTS.getKey(), template.getUuid())

  299.         .execute();

  300.     })

  301.       .isInstanceOf(IllegalArgumentException.class);

  302.   }

  303. 

  304.   @Test

  305.   public void fail_if_no_template_param() {

  306.     loginAsAdmin();

  307. 

  308.     assertThatThrownBy(() ->  {

  309.       newRequest(null, null)

  310.         .execute();

  311.     })

  312.       .isInstanceOf(BadRequestException.class);

  313.   }

  314. 

  315.   @Test

  316.   public void fail_if_template_does_not_exist() {

  317.     loginAsAdmin();

  318. 

  319.     assertThatThrownBy(() ->  {

  320.       newRequest(null, "unknown-template-uuid")

  321.         .execute();

  322.     })

  323.       .isInstanceOf(NotFoundException.class);

  324.   }

  325. 

  326.   @Test

  327.   public void fail_if_template_uuid_and_name_provided() {

  328.     PermissionTemplateDto template = addTemplate();

  329.     loginAsAdmin();

  330. 

  331.     assertThatThrownBy(() ->  {

  332.       newRequest(null, template.getUuid())

  333.         .setParam(PARAM_TEMPLATE_NAME, template.getName())

  334.         .execute();

  335.     })

  336.       .isInstanceOf(BadRequestException.class);

  337.   }

  338. 

  339.   @Test

  340.   public void fail_if_not_logged_in() {

  341.     PermissionTemplateDto template = addTemplate();

  342.     userSession.anonymous();

  343. 

  344.     assertThatThrownBy(() ->  {

  345.       newRequest(null, template.getUuid()).execute();

  346.     })

  347.       .isInstanceOf(UnauthorizedException.class);

  348.   }

  349. 

  350.   @Test

  351.   public void fail_if_insufficient_privileges() {

  352.     PermissionTemplateDto template = addTemplate();

  353.     userSession.logIn().addPermission(SCAN);

  354. 

  355.     assertThatThrownBy(() ->  {

  356.       newRequest(null, template.getUuid()).execute();

  357.     })

  358.       .isInstanceOf(ForbiddenException.class);

  359.   }

  360. 

  361.   private UserDto insertUser(UserDto userDto) {

  362.     db.users().insertUser(userDto);

  363.     return userDto;

  364.   }

  365. 

  366.   private void addUserToTemplate(PermissionTemplateUserDto dto, String templateName) {

  367.     db.getDbClient().permissionTemplateDao().insertUserPermission(db.getSession(), dto.getTemplateUuid(), dto.getUserUuid(),

  368.       dto.getPermission(), templateName, dto.getUserLogin());

  369.     db.commit();

  370.   }

  371. 

  372.   private static PermissionTemplateUserDto newPermissionTemplateUser(String permission, PermissionTemplateDto template, UserDto user) {

  373.     return newPermissionTemplateUserDto()

  374.       .setPermission(permission)

  375.       .setTemplateUuid(template.getUuid())

  376.       .setUserUuid(user.getUuid());

  377.   }

  378. 

  379.   private TestRequest newRequest(@Nullable String permission, @Nullable String templateUuid) {

  380.     TestRequest request = newRequest();

  381.     if (permission != null) {

  382.       request.setParam(PARAM_PERMISSION, permission);

  383.     }

  384.     if (templateUuid != null) {

  385.       request.setParam(PARAM_TEMPLATE_ID, templateUuid);

  386.     }

  387.     return request;

  388.   }

  389. 

  390. }