mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
34710 Commits
59 Branches
Tree: b0ab2c391e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b0ab2c391e'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/it/java/org/sonar/server/qualitygate/ws/SearchUsersActionIT.java

SearchUsersActionIT.java 13KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.qualitygate.ws;

  21. 

  22. import org.junit.Rule;

  23. import org.junit.Test;

  24. import org.sonar.api.server.ws.WebService;

  25. import org.sonar.db.DbTester;

  26. import org.sonar.db.qualitygate.QualityGateDto;

  27. import org.sonar.db.user.UserDto;

  28. import org.sonar.server.component.TestComponentFinder;

  29. import org.sonar.server.exceptions.ForbiddenException;

  30. import org.sonar.server.exceptions.NotFoundException;

  31. import org.sonar.server.common.avatar.AvatarResolver;

  32. import org.sonar.server.common.avatar.AvatarResolverImpl;

  33. import org.sonar.server.issue.FakeAvatarResolver;

  34. import org.sonar.server.tester.UserSessionRule;

  35. import org.sonar.server.ws.TestRequest;

  36. import org.sonar.server.ws.WsActionTester;

  37. import org.sonarqube.ws.Qualitygates.SearchUsersResponse;

  38. 

  39. import static org.assertj.core.api.Assertions.assertThat;

  40. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  41. import static org.assertj.core.api.Assertions.tuple;

  42. import static org.sonar.api.server.ws.WebService.Param.PAGE;

  43. import static org.sonar.api.server.ws.WebService.Param.PAGE_SIZE;

  44. import static org.sonar.api.server.ws.WebService.Param.SELECTED;

  45. import static org.sonar.api.server.ws.WebService.Param.TEXT_QUERY;

  46. import static org.sonar.db.permission.GlobalPermission.ADMINISTER_QUALITY_GATES;

  47. import static org.sonar.server.qualitygate.ws.QualityGatesWsParameters.PARAM_GATE_NAME;

  48. import static org.sonar.test.JsonAssert.assertJson;

  49. import static org.sonarqube.ws.MediaTypes.JSON;

  50. 

  51. public class SearchUsersActionIT {

  52.   @Rule

  53.   public UserSessionRule userSession = UserSessionRule.standalone();

  54.   @Rule

  55.   public DbTester db = DbTester.create();

  56. 

  57.   private final QualityGatesWsSupport wsSupport = new QualityGatesWsSupport(db.getDbClient(), userSession, TestComponentFinder.from(db));

  58.   private AvatarResolver avatarResolver = new FakeAvatarResolver();

  59. 

  60.   private WsActionTester ws = new WsActionTester(new SearchUsersAction(db.getDbClient(), wsSupport, avatarResolver));

  61. 

  62.   @Test

  63.   public void test_definition() {

  64.     WebService.Action def = ws.getDef();

  65.     assertThat(def.key()).isEqualTo("search_users");

  66.     assertThat(def.isPost()).isFalse();

  67.     assertThat(def.params()).extracting(WebService.Param::key)

  68.       .containsExactlyInAnyOrder("gateName", "selected", "q", "p", "ps");

  69.   }

  70. 

  71.   @Test

  72.   public void test_example() {

  73.     avatarResolver = new AvatarResolverImpl();

  74.     ws = new WsActionTester(new SearchUsersAction(db.getDbClient(), wsSupport, avatarResolver));

  75.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  76.     UserDto user1 = db.users().insertUser(u -> u.setLogin("admin").setName("Administrator").setEmail("admin@email.com"));

  77.     UserDto user2 = db.users().insertUser(u -> u.setLogin("george.orwell").setName("George Orwell").setEmail("george@orwell.com"));

  78.     db.qualityGates().addUserPermission(gate, user1);

  79.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  80. 

  81.     String result = ws.newRequest()

  82.       .setParam(PARAM_GATE_NAME, gate.getName())

  83.       .setParam(SELECTED, "all")

  84.       .setMediaType(JSON)

  85.       .execute()

  86.       .getInput();

  87. 

  88.     assertJson(result).isSimilarTo(ws.getDef().responseExampleAsString());

  89.   }

  90. 

  91.   @Test

  92.   public void search_all_users() {

  93.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  94.     UserDto user1 = db.users().insertUser(u -> u.setEmail("user1@email.com"));

  95.     UserDto user2 = db.users().insertUser(u -> u.setEmail("user2@email.com"));

  96.     db.qualityGates().addUserPermission(gate, user1);

  97.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  98. 

  99.     SearchUsersResponse response = ws.newRequest()

  100.       .setParam(PARAM_GATE_NAME, gate.getName())

  101.       .setParam(SELECTED, "all")

  102.       .executeProtobuf(SearchUsersResponse.class);

  103. 

  104.     assertThat(response.getUsersList())

  105.       .extracting(SearchUsersResponse.User::getLogin, SearchUsersResponse.User::getName, SearchUsersResponse.User::getAvatar, SearchUsersResponse.User::getSelected)

  106.       .containsExactlyInAnyOrder(

  107.         tuple(user1.getLogin(), user1.getName(), "user1@email.com_avatar", true),

  108.         tuple(user2.getLogin(), user2.getName(), "user2@email.com_avatar", false));

  109.   }

  110. 

  111.   @Test

  112.   public void search_selected_users() {

  113.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  114.     UserDto user1 = db.users().insertUser();

  115.     UserDto user2 = db.users().insertUser();

  116.     db.qualityGates().addUserPermission(gate, user1);

  117.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  118. 

  119.     SearchUsersResponse response = ws.newRequest()

  120.       .setParam(PARAM_GATE_NAME, gate.getName())

  121.       .setParam(SELECTED, "selected")

  122.       .executeProtobuf(SearchUsersResponse.class);

  123. 

  124.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin, SearchUsersResponse.User::getName, SearchUsersResponse.User::getSelected)

  125.       .containsExactlyInAnyOrder(

  126.         tuple(user1.getLogin(), user1.getName(), true));

  127.   }

  128. 

  129.   @Test

  130.   public void search_deselected_users() {

  131.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  132.     UserDto user1 = db.users().insertUser();

  133.     UserDto user2 = db.users().insertUser();

  134.     db.qualityGates().addUserPermission(gate, user1);

  135.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  136. 

  137.     SearchUsersResponse response = ws.newRequest()

  138.       .setParam(PARAM_GATE_NAME, gate.getName())

  139.       .setParam(SELECTED, "deselected")

  140.       .executeProtobuf(SearchUsersResponse.class);

  141. 

  142.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin, SearchUsersResponse.User::getName, SearchUsersResponse.User::getSelected)

  143.       .containsExactlyInAnyOrder(

  144.         tuple(user2.getLogin(), user2.getName(), false));

  145.   }

  146. 

  147.   @Test

  148.   public void search_by_login() {

  149.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  150.     UserDto user1 = db.users().insertUser();

  151.     UserDto user2 = db.users().insertUser();

  152.     db.qualityGates().addUserPermission(gate, user1);

  153.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  154. 

  155.     SearchUsersResponse response = ws.newRequest()

  156.       .setParam(PARAM_GATE_NAME, gate.getName())

  157.       .setParam(TEXT_QUERY, user1.getLogin())

  158.       .setParam(SELECTED, "all")

  159.       .executeProtobuf(SearchUsersResponse.class);

  160. 

  161.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin)

  162.       .containsExactlyInAnyOrder(user1.getLogin());

  163.   }

  164. 

  165.   @Test

  166.   public void search_by_name() {

  167.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  168.     UserDto user1 = db.users().insertUser(u -> u.setName("John Doe"));

  169.     UserDto user2 = db.users().insertUser(u -> u.setName("Jane Doe"));

  170.     UserDto user3 = db.users().insertUser(u -> u.setName("John Smith"));

  171.     db.qualityGates().addUserPermission(gate, user1);

  172.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  173. 

  174.     SearchUsersResponse response = ws.newRequest()

  175.       .setParam(PARAM_GATE_NAME, gate.getName())

  176.       .setParam(TEXT_QUERY, "ohn")

  177.       .setParam(SELECTED, "all")

  178.       .executeProtobuf(SearchUsersResponse.class);

  179. 

  180.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin)

  181.       .containsExactlyInAnyOrder(user1.getLogin(), user3.getLogin());

  182.   }

  183. 

  184.   @Test

  185.   public void user_without_email() {

  186.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  187.     UserDto user = db.users().insertUser(u -> u.setEmail(null));

  188.     db.qualityGates().addUserPermission(gate, user);

  189.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  190. 

  191.     SearchUsersResponse response = ws.newRequest()

  192.       .setParam(PARAM_GATE_NAME, gate.getName())

  193.       .setParam(SELECTED, "all")

  194.       .executeProtobuf(SearchUsersResponse.class);

  195. 

  196.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin, SearchUsersResponse.User::hasAvatar)

  197.       .containsExactlyInAnyOrder(tuple(user.getLogin(), false));

  198.   }

  199. 

  200.   @Test

  201.   public void paging_search() {

  202.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  203.     UserDto user2 = db.users().insertUser(u -> u.setName("user2"));

  204.     UserDto user3 = db.users().insertUser(u -> u.setName("user3"));

  205.     UserDto user1 = db.users().insertUser(u -> u.setName("user1"));

  206.     db.qualityGates().addUserPermission(gate, user1);

  207.     db.qualityGates().addUserPermission(gate, user2);

  208.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  209. 

  210.     assertThat(ws.newRequest()

  211.       .setParam(PARAM_GATE_NAME, gate.getName())

  212.       .setParam(SELECTED, "all")

  213.       .setParam(PAGE, "1")

  214.       .setParam(PAGE_SIZE, "1")

  215.       .executeProtobuf(SearchUsersResponse.class).getUsersList())

  216.       .extracting(SearchUsersResponse.User::getLogin)

  217.       .containsExactly(user1.getLogin());

  218. 

  219.     assertThat(ws.newRequest()

  220.       .setParam(PARAM_GATE_NAME, gate.getName())

  221.       .setParam(SELECTED, "all")

  222.       .setParam(PAGE, "3")

  223.       .setParam(PAGE_SIZE, "1")

  224.       .executeProtobuf(SearchUsersResponse.class).getUsersList())

  225.       .extracting(SearchUsersResponse.User::getLogin)

  226.       .containsExactly(user3.getLogin());

  227. 

  228.     assertThat(ws.newRequest()

  229.       .setParam(PARAM_GATE_NAME, gate.getName())

  230.       .setParam(SELECTED, "all")

  231.       .setParam(PAGE, "1")

  232.       .setParam(PAGE_SIZE, "10")

  233.       .executeProtobuf(SearchUsersResponse.class).getUsersList())

  234.       .extracting(SearchUsersResponse.User::getLogin)

  235.       .containsExactly(user1.getLogin(), user2.getLogin(), user3.getLogin());

  236.   }

  237. 

  238.   @Test

  239.   public void uses_global_permission() {

  240.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  241.     UserDto user1 = db.users().insertUser();

  242.     db.qualityGates().addUserPermission(gate, user1);

  243.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  244. 

  245.     SearchUsersResponse response = ws.newRequest()

  246.       .setParam(PARAM_GATE_NAME, gate.getName())

  247.       .setParam(SELECTED, "all")

  248.       .executeProtobuf(SearchUsersResponse.class);

  249. 

  250.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin).containsExactlyInAnyOrder(user1.getLogin());

  251.   }

  252. 

  253.   @Test

  254.   public void qp_administers_can_search_users() {

  255.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  256.     UserDto user = db.users().insertUser();

  257.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  258. 

  259.     SearchUsersResponse response = ws.newRequest()

  260.       .setParam(PARAM_GATE_NAME, gate.getName())

  261.       .setParam(SELECTED, "all")

  262.       .executeProtobuf(SearchUsersResponse.class);

  263. 

  264.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin).containsExactlyInAnyOrder(user.getLogin());

  265.   }

  266. 

  267.   @Test

  268.   public void qp_editors_can_search_users() {

  269.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  270.     UserDto user = db.users().insertUser();

  271.     UserDto userAllowedToEditProfile = db.users().insertUser();

  272.     db.qualityGates().addUserPermission(gate, userAllowedToEditProfile);

  273.     userSession.logIn(userAllowedToEditProfile);

  274. 

  275.     SearchUsersResponse response = ws.newRequest()

  276.       .setParam(PARAM_GATE_NAME, gate.getName())

  277.       .setParam(SELECTED, "all")

  278.       .executeProtobuf(SearchUsersResponse.class);

  279. 

  280.     assertThat(response.getUsersList()).extracting(SearchUsersResponse.User::getLogin).containsExactlyInAnyOrder(user.getLogin(), userAllowedToEditProfile.getLogin());

  281.   }

  282. 

  283.   @Test

  284.   public void fail_when_quality_gate_does_not_exist() {

  285.     UserDto user = db.users().insertUser();

  286.     userSession.logIn().addPermission(ADMINISTER_QUALITY_GATES);

  287. 

  288.     TestRequest request = ws.newRequest().setParam(PARAM_GATE_NAME, "unknown");

  289. 

  290.     assertThatThrownBy(request::execute)

  291.       .isInstanceOf(NotFoundException.class)

  292.       .hasMessage("No quality gate has been found for name unknown");

  293.   }

  294. 

  295. 

  296.   @Test

  297.   public void fail_when_not_enough_permission() {

  298.     QualityGateDto gate = db.qualityGates().insertQualityGate();

  299.     UserDto user = db.users().insertUser();

  300.     userSession.logIn(db.users().insertUser());

  301. 

  302.     TestRequest request = ws.newRequest().setParam(PARAM_GATE_NAME, gate.getName());

  303. 

  304.     assertThatThrownBy(request::execute)

  305.       .isInstanceOf(ForbiddenException.class);

  306.   }

  307. }