mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27477 Commits
59 Branches
Tree: c1caffa9fb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c1caffa9fb'
${ noResults }
sonarqube/server/sonar-server/src/test/java/org/sonar/server/permission/ws/template/ApplyTemplateActionTest.java

ApplyTemplateActionTest.java 9.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2018 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws.template;

  21. 

  22. import java.util.List;

  23. import javax.annotation.Nullable;

  24. import org.junit.Before;

  25. import org.junit.Rule;

  26. import org.junit.Test;

  27. import org.sonar.api.web.UserRole;

  28. import org.sonar.db.component.ComponentDto;

  29. import org.sonar.db.permission.PermissionQuery;

  30. import org.sonar.db.permission.template.PermissionTemplateDto;

  31. import org.sonar.db.user.GroupDto;

  32. import org.sonar.db.user.UserDto;

  33. import org.sonar.server.es.TestProjectIndexers;

  34. import org.sonar.server.exceptions.BadRequestException;

  35. import org.sonar.server.exceptions.ForbiddenException;

  36. import org.sonar.server.exceptions.NotFoundException;

  37. import org.sonar.server.permission.PermissionTemplateService;

  38. import org.sonar.server.permission.ws.BasePermissionWsTest;

  39. import org.sonar.server.ws.TestRequest;

  40. import org.sonar.server.ws.TestResponse;

  41. 

  42. import static org.assertj.core.api.Assertions.assertThat;

  43. import static org.sonar.db.permission.OrganizationPermission.ADMINISTER;

  44. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PROJECT_ID;

  45. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PROJECT_KEY;

  46. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_ID;

  47. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_NAME;

  48. 

  49. public class ApplyTemplateActionTest extends BasePermissionWsTest<ApplyTemplateAction> {

  50. 

  51.   @Rule

  52.   public DefaultTemplatesResolverRule defaultTemplatesResolver = DefaultTemplatesResolverRule.withoutGovernance();

  53.   private UserDto user1;

  54.   private UserDto user2;

  55.   private GroupDto group1;

  56.   private GroupDto group2;

  57.   private ComponentDto project;

  58.   private PermissionTemplateDto template1;

  59.   private PermissionTemplateDto template2;

  60. 

  61.   private PermissionTemplateService permissionTemplateService = new PermissionTemplateService(db.getDbClient(),

  62.      new TestProjectIndexers(), userSession, defaultTemplatesResolver);

  63. 

  64.   @Override

  65.   protected ApplyTemplateAction buildWsAction() {

  66.     return new ApplyTemplateAction(db.getDbClient(), userSession, permissionTemplateService, newPermissionWsSupport());

  67.   }

  68. 

  69.   @Before

  70.   public void setUp() {

  71.     user1 = db.users().insertUser();

  72.     db.organizations().addMember(db.getDefaultOrganization(), user1);

  73.     user2 = db.users().insertUser();

  74.     db.organizations().addMember(db.getDefaultOrganization(), user2);

  75.     group1 = db.users().insertGroup();

  76.     group2 = db.users().insertGroup();

  77. 

  78.     // template 1

  79.     template1 = db.permissionTemplates().insertTemplate(db.getDefaultOrganization());

  80.     addUserToTemplate(user1, template1, UserRole.CODEVIEWER);

  81.     addUserToTemplate(user2, template1, UserRole.ISSUE_ADMIN);

  82.     addGroupToTemplate(group1, template1, UserRole.ADMIN);

  83.     addGroupToTemplate(group2, template1, UserRole.USER);

  84.     // template 2

  85.     template2 = db.permissionTemplates().insertTemplate(db.getDefaultOrganization());

  86.     addUserToTemplate(user1, template2, UserRole.USER);

  87.     addUserToTemplate(user2, template2, UserRole.USER);

  88.     addGroupToTemplate(group1, template2, UserRole.USER);

  89.     addGroupToTemplate(group2, template2, UserRole.USER);

  90. 

  91.     project = db.components().insertPrivateProject();

  92.     db.users().insertProjectPermissionOnUser(user1, UserRole.ADMIN, project);

  93.     db.users().insertProjectPermissionOnUser(user2, UserRole.ADMIN, project);

  94.     db.users().insertProjectPermissionOnGroup(group1, UserRole.ADMIN, project);

  95.     db.users().insertProjectPermissionOnGroup(group2, UserRole.ADMIN, project);

  96.   }

  97. 

  98.   @Test

  99.   public void apply_template_with_project_uuid() {

  100.     loginAsAdmin(db.getDefaultOrganization());

  101. 

  102.     newRequest(template1.getUuid(), project.uuid(), null);

  103. 

  104.     assertTemplate1AppliedToProject();

  105.   }

  106. 

  107.   @Test

  108.   public void apply_template_with_project_uuid_by_template_name() {

  109.     loginAsAdmin(db.getDefaultOrganization());

  110. 

  111.     newRequest()

  112.       .setParam(PARAM_TEMPLATE_NAME, template1.getName().toUpperCase())

  113.       .setParam(PARAM_PROJECT_ID, project.uuid())

  114.       .execute();

  115. 

  116.     assertTemplate1AppliedToProject();

  117.   }

  118. 

  119.   @Test

  120.   public void apply_template_with_project_key() {

  121.     loginAsAdmin(db.getDefaultOrganization());

  122. 

  123.     newRequest(template1.getUuid(), null, project.getDbKey());

  124. 

  125.     assertTemplate1AppliedToProject();

  126.   }

  127. 

  128.   @Test

  129.   public void fail_when_unknown_template() {

  130.     loginAsAdmin(db.getDefaultOrganization());

  131. 

  132.     expectedException.expect(NotFoundException.class);

  133.     expectedException.expectMessage("Permission template with id 'unknown-template-uuid' is not found");

  134. 

  135.     newRequest("unknown-template-uuid", project.uuid(), null);

  136.   }

  137. 

  138.   @Test

  139.   public void fail_when_unknown_project_uuid() {

  140.     loginAsAdmin(db.getDefaultOrganization());

  141. 

  142.     expectedException.expect(NotFoundException.class);

  143.     expectedException.expectMessage("Project id 'unknown-project-uuid' not found");

  144. 

  145.     newRequest(template1.getUuid(), "unknown-project-uuid", null);

  146.   }

  147. 

  148.   @Test

  149.   public void fail_when_unknown_project_key() {

  150.     loginAsAdmin(db.getDefaultOrganization());

  151. 

  152.     expectedException.expect(NotFoundException.class);

  153.     expectedException.expectMessage("Project key 'unknown-project-key' not found");

  154. 

  155.     newRequest(template1.getUuid(), null, "unknown-project-key");

  156.   }

  157. 

  158.   @Test

  159.   public void fail_when_template_is_not_provided() {

  160.     loginAsAdmin(db.getDefaultOrganization());

  161. 

  162.     expectedException.expect(BadRequestException.class);

  163. 

  164.     newRequest(null, project.uuid(), null);

  165.   }

  166. 

  167.   @Test

  168.   public void fail_when_project_uuid_and_key_not_provided() {

  169.     loginAsAdmin(db.getDefaultOrganization());

  170. 

  171.     expectedException.expect(BadRequestException.class);

  172.     expectedException.expectMessage("Project id or project key can be provided, not both.");

  173. 

  174.     newRequest(template1.getUuid(), null, null);

  175.   }

  176. 

  177.   @Test

  178.   public void fail_when_not_admin_of_organization() {

  179.     userSession.logIn().addPermission(ADMINISTER, "otherOrg");

  180. 

  181.     expectedException.expect(ForbiddenException.class);

  182. 

  183.     newRequest(template1.getUuid(), project.uuid(), null);

  184.   }

  185. 

  186.   private void assertTemplate1AppliedToProject() {

  187.     assertThat(selectProjectPermissionGroups(project, UserRole.ADMIN)).containsExactly(group1.getName());

  188.     assertThat(selectProjectPermissionGroups(project, UserRole.USER)).containsExactly(group2.getName());

  189.     assertThat(selectProjectPermissionUsers(project, UserRole.ADMIN)).isEmpty();

  190.     assertThat(selectProjectPermissionUsers(project, UserRole.CODEVIEWER)).containsExactly(user1.getId());

  191.     assertThat(selectProjectPermissionUsers(project, UserRole.ISSUE_ADMIN)).containsExactly(user2.getId());

  192.   }

  193. 

  194.   private TestResponse newRequest(@Nullable String templateUuid, @Nullable String projectUuid, @Nullable String projectKey) {

  195.     TestRequest request = newRequest();

  196.     if (templateUuid != null) {

  197.       request.setParam(PARAM_TEMPLATE_ID, templateUuid);

  198.     }

  199.     if (projectUuid != null) {

  200.       request.setParam(PARAM_PROJECT_ID, projectUuid);

  201.     }

  202.     if (projectKey != null) {

  203.       request.setParam(PARAM_PROJECT_KEY, projectKey);

  204.     }

  205. 

  206.     return request.execute();

  207.   }

  208. 

  209.   private void addUserToTemplate(UserDto user, PermissionTemplateDto permissionTemplate, String permission) {

  210.     db.getDbClient().permissionTemplateDao().insertUserPermission(db.getSession(), permissionTemplate.getId(), user.getId(), permission);

  211.     db.commit();

  212.   }

  213. 

  214.   private void addGroupToTemplate(GroupDto group, PermissionTemplateDto permissionTemplate, String permission) {

  215.     db.getDbClient().permissionTemplateDao().insertGroupPermission(db.getSession(), permissionTemplate.getId(), group.getId(), permission);

  216.     db.commit();

  217.   }

  218. 

  219.   private List<String> selectProjectPermissionGroups(ComponentDto project, String permission) {

  220.     PermissionQuery query = PermissionQuery.builder().setOrganizationUuid(project.getOrganizationUuid()).setPermission(permission).setComponentUuid(project.uuid()).build();

  221.     return db.getDbClient().groupPermissionDao().selectGroupNamesByQuery(db.getSession(), query);

  222.   }

  223. 

  224.   private List<Integer> selectProjectPermissionUsers(ComponentDto project, String permission) {

  225.     PermissionQuery query = PermissionQuery.builder().setOrganizationUuid(project.getOrganizationUuid()).setPermission(permission).setComponentUuid(project.uuid()).build();

  226.     return db.getDbClient().userPermissionDao().selectUserIdsByQuery(db.getSession(), query);

  227.   }

  228. }