mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27803 Commits
59 Branches
Tree: db18af0468
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'db18af0468'
${ noResults }
sonarqube/server/sonar-server/src/test/java/org/sonar/server/permission/ws/template/RemoveUserFromTemplateActio...

RemoveUserFromTemplateActionTest.java 8.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws.template;

  21. 

  22. import java.util.List;

  23. import javax.annotation.Nullable;

  24. import org.junit.Before;

  25. import org.junit.Test;

  26. import org.sonar.api.resources.Qualifiers;

  27. import org.sonar.api.resources.ResourceTypes;

  28. import org.sonar.core.permission.GlobalPermissions;

  29. import org.sonar.db.component.ResourceTypesRule;

  30. import org.sonar.db.permission.PermissionQuery;

  31. import org.sonar.db.permission.template.PermissionTemplateDto;

  32. import org.sonar.db.user.UserDto;

  33. import org.sonar.server.exceptions.BadRequestException;

  34. import org.sonar.server.exceptions.ForbiddenException;

  35. import org.sonar.server.exceptions.NotFoundException;

  36. import org.sonar.server.exceptions.UnauthorizedException;

  37. import org.sonar.server.permission.PermissionService;

  38. import org.sonar.server.permission.PermissionServiceImpl;

  39. import org.sonar.server.permission.ws.BasePermissionWsTest;

  40. import org.sonar.server.permission.ws.RequestValidator;

  41. import org.sonar.server.permission.ws.WsParameters;

  42. import org.sonar.server.ws.TestRequest;

  43. 

  44. import static org.assertj.core.api.Assertions.assertThat;

  45. import static org.sonar.api.web.UserRole.CODEVIEWER;

  46. import static org.sonar.api.web.UserRole.ISSUE_ADMIN;

  47. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PERMISSION;

  48. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_NAME;

  49. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_USER_LOGIN;

  50. 

  51. public class RemoveUserFromTemplateActionTest extends BasePermissionWsTest<RemoveUserFromTemplateAction> {

  52. 

  53.   private static final String DEFAULT_PERMISSION = CODEVIEWER;

  54. 

  55.   private UserDto user;

  56.   private PermissionTemplateDto template;

  57.   private ResourceTypes resourceTypes = new ResourceTypesRule().setRootQualifiers(Qualifiers.PROJECT);

  58.   private PermissionService permissionService = new PermissionServiceImpl(resourceTypes);

  59.   private WsParameters wsParameters = new WsParameters(permissionService);

  60.   private RequestValidator requestValidator = new RequestValidator(permissionService);

  61. 

  62. 

  63.   @Override

  64.   protected RemoveUserFromTemplateAction buildWsAction() {

  65.     return new RemoveUserFromTemplateAction(db.getDbClient(), newPermissionWsSupport(), userSession, wsParameters, requestValidator);

  66.   }

  67. 

  68.   @Before

  69.   public void setUp() {

  70.     user = db.users().insertUser("user-login");

  71.     db.organizations().addMember(db.getDefaultOrganization(), user);

  72.     template = db.permissionTemplates().insertTemplate(db.getDefaultOrganization());

  73.     addUserToTemplate(user, template, DEFAULT_PERMISSION);

  74.   }

  75. 

  76.   @Test

  77.   public void remove_user_from_template() {

  78.     loginAsAdmin(db.getDefaultOrganization());

  79.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  80. 

  81.     assertThat(getLoginsInTemplateAndPermission(template, DEFAULT_PERMISSION)).isEmpty();

  82.   }

  83. 

  84.   @Test

  85.   public void remove_user_from_template_by_name_case_insensitive() {

  86.     loginAsAdmin(db.getDefaultOrganization());

  87.     newRequest()

  88.       .setParam(PARAM_USER_LOGIN, user.getLogin())

  89.       .setParam(PARAM_PERMISSION, DEFAULT_PERMISSION)

  90.       .setParam(PARAM_TEMPLATE_NAME, template.getName().toUpperCase())

  91.       .execute();

  92. 

  93.     assertThat(getLoginsInTemplateAndPermission(template, DEFAULT_PERMISSION)).isEmpty();

  94.   }

  95. 

  96.   @Test

  97.   public void remove_user_from_template_twice_without_failing() {

  98.     loginAsAdmin(db.getDefaultOrganization());

  99.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  100.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  101. 

  102.     assertThat(getLoginsInTemplateAndPermission(template, DEFAULT_PERMISSION)).isEmpty();

  103.   }

  104. 

  105.   @Test

  106.   public void keep_user_permission_not_removed() {

  107.     addUserToTemplate(user, template, ISSUE_ADMIN);

  108. 

  109.     loginAsAdmin(db.getDefaultOrganization());

  110.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  111. 

  112.     assertThat(getLoginsInTemplateAndPermission(template, DEFAULT_PERMISSION)).isEmpty();

  113.     assertThat(getLoginsInTemplateAndPermission(template, ISSUE_ADMIN)).containsExactly(user.getLogin());

  114.   }

  115. 

  116.   @Test

  117.   public void keep_other_users_when_one_user_removed() {

  118.     UserDto newUser = db.users().insertUser("new-login");

  119.     db.organizations().addMember(db.getDefaultOrganization(), newUser);

  120.     addUserToTemplate(newUser, template, DEFAULT_PERMISSION);

  121. 

  122.     loginAsAdmin(db.getDefaultOrganization());

  123.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  124. 

  125.     assertThat(getLoginsInTemplateAndPermission(template, DEFAULT_PERMISSION)).containsExactly("new-login");

  126.   }

  127. 

  128.   @Test

  129.   public void fail_if_not_a_project_permission() {

  130.     loginAsAdmin(db.getDefaultOrganization());

  131. 

  132.     expectedException.expect(IllegalArgumentException.class);

  133. 

  134.     newRequest(user.getLogin(), template.getUuid(), GlobalPermissions.PROVISIONING);

  135.   }

  136. 

  137.   @Test

  138.   public void fail_if_insufficient_privileges() {

  139.     userSession.logIn();

  140. 

  141.     expectedException.expect(ForbiddenException.class);

  142. 

  143.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  144.   }

  145. 

  146.   @Test

  147.   public void fail_if_not_logged_in() {

  148.     userSession.anonymous();

  149. 

  150.     expectedException.expect(UnauthorizedException.class);

  151. 

  152.     newRequest(user.getLogin(), template.getUuid(), DEFAULT_PERMISSION);

  153.   }

  154. 

  155.   @Test

  156.   public void fail_if_user_missing() {

  157.     loginAsAdmin(db.getDefaultOrganization());

  158. 

  159.     expectedException.expect(IllegalArgumentException.class);

  160. 

  161.     newRequest(null, template.getUuid(), DEFAULT_PERMISSION);

  162.   }

  163. 

  164.   @Test

  165.   public void fail_if_permission_missing() {

  166.     loginAsAdmin(db.getDefaultOrganization());

  167. 

  168.     expectedException.expect(IllegalArgumentException.class);

  169. 

  170.     newRequest(user.getLogin(), template.getUuid(), null);

  171.   }

  172. 

  173.   @Test

  174.   public void fail_if_template_missing() {

  175.     loginAsAdmin(db.getDefaultOrganization());

  176. 

  177.     expectedException.expect(BadRequestException.class);

  178. 

  179.     newRequest(user.getLogin(), null, DEFAULT_PERMISSION);

  180.   }

  181. 

  182.   @Test

  183.   public void fail_if_user_does_not_exist() {

  184.     loginAsAdmin(db.getDefaultOrganization());

  185. 

  186.     expectedException.expect(NotFoundException.class);

  187.     expectedException.expectMessage("User with login 'unknown-login' is not found");

  188. 

  189.     newRequest("unknown-login", template.getUuid(), DEFAULT_PERMISSION);

  190.   }

  191. 

  192.   @Test

  193.   public void fail_if_template_key_does_not_exist() {

  194.     loginAsAdmin(db.getDefaultOrganization());

  195. 

  196.     expectedException.expect(NotFoundException.class);

  197.     expectedException.expectMessage("Permission template with id 'unknown-key' is not found");

  198. 

  199.     newRequest(user.getLogin(), "unknown-key", DEFAULT_PERMISSION);

  200.   }

  201. 

  202.   private void newRequest(@Nullable String userLogin, @Nullable String templateKey, @Nullable String permission) {

  203.     TestRequest request = newRequest();

  204.     if (userLogin != null) {

  205.       request.setParam(PARAM_USER_LOGIN, userLogin);

  206.     }

  207.     if (templateKey != null) {

  208.       request.setParam(org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_TEMPLATE_ID, templateKey);

  209.     }

  210.     if (permission != null) {

  211.       request.setParam(PARAM_PERMISSION, permission);

  212.     }

  213. 

  214.     request.execute();

  215.   }

  216. 

  217.   private List<String> getLoginsInTemplateAndPermission(PermissionTemplateDto template, String permission) {

  218.     PermissionQuery permissionQuery = PermissionQuery.builder().setOrganizationUuid(template.getOrganizationUuid()).setPermission(permission).build();

  219.     return db.getDbClient().permissionTemplateDao()

  220.       .selectUserLoginsByQueryAndTemplate(db.getSession(), permissionQuery, template.getId());

  221.   }

  222. 

  223.   private void addUserToTemplate(UserDto user, PermissionTemplateDto template, String permission) {

  224.     db.getDbClient().permissionTemplateDao().insertUserPermission(db.getSession(), template.getId(), user.getId(), permission);

  225.     db.commit();

  226.   }

  227. 

  228. }