mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27803 Commits
59 Branches
Tree: db18af0468
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'db18af0468'
${ noResults }
sonarqube/server/sonar-server/src/test/java/org/sonar/server/permission/ws/template/SearchTemplatesActionTest.java

SearchTemplatesActionTest.java 17KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws.template;

  21. 

  22. import java.util.Date;

  23. import javax.annotation.Nullable;

  24. import org.junit.Before;

  25. import org.junit.Test;

  26. import org.sonar.api.resources.Qualifiers;

  27. import org.sonar.api.web.UserRole;

  28. import org.sonar.db.DbClient;

  29. import org.sonar.db.DbSession;

  30. import org.sonar.db.component.ResourceTypesRule;

  31. import org.sonar.db.organization.OrganizationDto;

  32. import org.sonar.db.permission.template.PermissionTemplateCharacteristicDto;

  33. import org.sonar.db.permission.template.PermissionTemplateDto;

  34. import org.sonar.db.user.GroupDto;

  35. import org.sonar.db.user.UserDto;

  36. import org.sonar.server.exceptions.UnauthorizedException;

  37. import org.sonar.server.l18n.I18nRule;

  38. import org.sonar.server.permission.PermissionService;

  39. import org.sonar.server.permission.PermissionServiceImpl;

  40. import org.sonar.server.permission.ws.BasePermissionWsTest;

  41. import org.sonar.server.ws.TestRequest;

  42. import org.sonar.server.ws.WsActionTester;

  43. import org.sonarqube.ws.Permissions;

  44. 

  45. import static org.assertj.core.api.Assertions.assertThat;

  46. import static org.sonar.api.server.ws.WebService.Param.TEXT_QUERY;

  47. import static org.sonar.core.util.Uuids.UUID_EXAMPLE_01;

  48. import static org.sonar.core.util.Uuids.UUID_EXAMPLE_02;

  49. import static org.sonar.core.util.Uuids.UUID_EXAMPLE_10;

  50. import static org.sonar.db.permission.OrganizationPermission.ADMINISTER;

  51. import static org.sonar.db.permission.template.PermissionTemplateTesting.newPermissionTemplateDto;

  52. import static org.sonar.test.JsonAssert.assertJson;

  53. 

  54. public class SearchTemplatesActionTest extends BasePermissionWsTest<SearchTemplatesAction> {

  55. 

  56.   private I18nRule i18n = new I18nRule();

  57.   private DbClient dbClient = db.getDbClient();

  58.   private DbSession dbSession = db.getSession();

  59.   private ResourceTypesRule resourceTypesWithViews = new ResourceTypesRule().setRootQualifiers(Qualifiers.PROJECT, Qualifiers.VIEW, Qualifiers.APP);

  60.   private ResourceTypesRule resourceTypesWithoutViews = new ResourceTypesRule().setRootQualifiers(Qualifiers.PROJECT);

  61.   private PermissionService permissionServiceWithViews = new PermissionServiceImpl(resourceTypesWithViews);

  62.   private PermissionService permissionServiceWithoutViews = new PermissionServiceImpl(resourceTypesWithoutViews);

  63.   private WsActionTester underTestWithoutViews;

  64. 

  65.   @Override

  66.   protected SearchTemplatesAction buildWsAction() {

  67.     DefaultTemplatesResolver defaultTemplatesResolverWithViews = new DefaultTemplatesResolverImpl(resourceTypesWithViews);

  68.     return new SearchTemplatesAction(dbClient, userSession, i18n, newPermissionWsSupport(), defaultTemplatesResolverWithViews, permissionServiceWithViews);

  69.   }

  70. 

  71.   @Before

  72.   public void setUp() {

  73.     DefaultTemplatesResolver defaultTemplatesResolverWithViews = new DefaultTemplatesResolverImpl(resourceTypesWithoutViews);

  74.     underTestWithoutViews = new WsActionTester(new SearchTemplatesAction(dbClient, userSession, i18n, newPermissionWsSupport(), defaultTemplatesResolverWithViews, permissionServiceWithoutViews));

  75.     i18n.setProjectPermissions();

  76.     userSession.logIn().addPermission(ADMINISTER, db.getDefaultOrganization());

  77.   }

  78. 

  79.   @Test

  80.   public void search_project_permissions_without_views() {

  81.     OrganizationDto organization = db.getDefaultOrganization();

  82.     PermissionTemplateDto projectTemplate = insertProjectTemplate(organization);

  83. 

  84.     UserDto user1 = db.users().insertUser();

  85.     UserDto user2 = db.users().insertUser();

  86.     UserDto user3 = db.users().insertUser();

  87. 

  88.     GroupDto group1 = db.users().insertGroup(organization);

  89.     GroupDto group2 = db.users().insertGroup(organization);

  90.     GroupDto group3 = db.users().insertGroup(organization);

  91. 

  92.     addUserToTemplate(projectTemplate.getId(), user1.getId(), UserRole.ISSUE_ADMIN);

  93.     addUserToTemplate(projectTemplate.getId(), user2.getId(), UserRole.ISSUE_ADMIN);

  94.     addUserToTemplate(projectTemplate.getId(), user3.getId(), UserRole.ISSUE_ADMIN);

  95.     addUserToTemplate(projectTemplate.getId(), user1.getId(), UserRole.CODEVIEWER);

  96.     addGroupToTemplate(projectTemplate.getId(), group1.getId(), UserRole.ADMIN);

  97.     addPermissionTemplateWithProjectCreator(projectTemplate.getId(), UserRole.ADMIN);

  98. 

  99.     db.organizations().setDefaultTemplates(projectTemplate, null, null);

  100. 

  101.     String result = newRequest(underTestWithoutViews).execute().getInput();

  102. 

  103.     assertJson(result)

  104.       .withStrictArrayOrder()

  105.       .isSimilarTo(getClass().getResource("search_templates-example-without-views.json"));

  106.   }

  107. 

  108.   @Test

  109.   public void search_project_permissions_with_views() {

  110.     OrganizationDto organization = db.getDefaultOrganization();

  111.     PermissionTemplateDto projectTemplate = insertProjectTemplate(organization);

  112.     PermissionTemplateDto portfoliosTemplate = insertPortfoliosTemplate(organization);

  113.     PermissionTemplateDto applicationsTemplate = insertApplicationsTemplate(organization);

  114. 

  115.     UserDto user1 = db.users().insertUser();

  116.     UserDto user2 = db.users().insertUser();

  117.     UserDto user3 = db.users().insertUser();

  118. 

  119.     GroupDto group1 = db.users().insertGroup(organization);

  120.     GroupDto group2 = db.users().insertGroup(organization);

  121.     GroupDto group3 = db.users().insertGroup(organization);

  122. 

  123.     addUserToTemplate(projectTemplate.getId(), user1.getId(), UserRole.ISSUE_ADMIN);

  124.     addUserToTemplate(projectTemplate.getId(), user2.getId(), UserRole.ISSUE_ADMIN);

  125.     addUserToTemplate(projectTemplate.getId(), user3.getId(), UserRole.ISSUE_ADMIN);

  126.     addUserToTemplate(projectTemplate.getId(), user1.getId(), UserRole.CODEVIEWER);

  127.     addGroupToTemplate(projectTemplate.getId(), group1.getId(), UserRole.ADMIN);

  128.     addPermissionTemplateWithProjectCreator(projectTemplate.getId(), UserRole.ADMIN);

  129. 

  130.     addUserToTemplate(portfoliosTemplate.getId(), user1.getId(), UserRole.USER);

  131.     addUserToTemplate(portfoliosTemplate.getId(), user2.getId(), UserRole.USER);

  132.     addGroupToTemplate(portfoliosTemplate.getId(), group1.getId(), UserRole.ISSUE_ADMIN);

  133.     addGroupToTemplate(portfoliosTemplate.getId(), group2.getId(), UserRole.ISSUE_ADMIN);

  134.     addGroupToTemplate(portfoliosTemplate.getId(), group3.getId(), UserRole.ISSUE_ADMIN);

  135. 

  136.     db.organizations().setDefaultTemplates(projectTemplate, applicationsTemplate, portfoliosTemplate);

  137. 

  138.     String result = newRequest().execute().getInput();

  139. 

  140.     assertJson(result)

  141.       .withStrictArrayOrder()

  142.       .isSimilarTo(getClass().getResource("search_templates-example-with-views.json"));

  143.   }

  144. 

  145.   @Test

  146.   public void empty_result() {

  147.     db.organizations().setDefaultTemplates(db.getDefaultOrganization(), "AU-Tpxb--iU5OvuD2FLy", "AU-Tpxb--iU5OvuD2FLz", "AU-TpxcA-iU5OvuD2FLx");

  148.     String result = newRequest(wsTester).execute().getInput();

  149. 

  150.     assertJson(result)

  151.       .withStrictArrayOrder()

  152.       .ignoreFields("permissions")

  153.       .isSimilarTo("{" +

  154.         "  \"permissionTemplates\": []," +

  155.         "  \"defaultTemplates\": [" +

  156.         "    {" +

  157.         "      \"templateId\": \"AU-Tpxb--iU5OvuD2FLy\"," +

  158.         "      \"qualifier\": \"TRK\"" +

  159.         "    }," +

  160.         "    {" +

  161.         "      \"templateId\": \"AU-Tpxb--iU5OvuD2FLz\"," +

  162.         "      \"qualifier\": \"APP\"" +

  163.         "    }," +

  164.         "    {" +

  165.         "      \"templateId\": \"AU-TpxcA-iU5OvuD2FLx\"," +

  166.         "      \"qualifier\": \"VW\"" +

  167.         "    }" +

  168.         "  ]" +

  169.         "}");

  170.   }

  171. 

  172.   @Test

  173.   public void empty_result_without_views() {

  174.     db.organizations().setDefaultTemplates(db.getDefaultOrganization(), "AU-Tpxb--iU5OvuD2FLy", "AU-TpxcA-iU5OvuD2FLz", "AU-TpxcA-iU5OvuD2FLx");

  175.     String result = newRequest(underTestWithoutViews).execute().getInput();

  176. 

  177.     assertJson(result)

  178.       .withStrictArrayOrder()

  179.       .ignoreFields("permissions")

  180.       .isSimilarTo("{" +

  181.         "  \"permissionTemplates\": []," +

  182.         "  \"defaultTemplates\": [" +

  183.         "    {" +

  184.         "      \"templateId\": \"AU-Tpxb--iU5OvuD2FLy\"," +

  185.         "      \"qualifier\": \"TRK\"" +

  186.         "    }" +

  187.         "  ]" +

  188.         "}");

  189.   }

  190. 

  191.   @Test

  192.   public void search_by_name_in_default_organization() {

  193.     db.organizations().setDefaultTemplates(db.permissionTemplates().insertTemplate(db.getDefaultOrganization()), null, null);

  194.     insertProjectTemplate(db.getDefaultOrganization());

  195.     insertPortfoliosTemplate(db.getDefaultOrganization());

  196. 

  197.     String result = newRequest(wsTester)

  198.       .setParam(TEXT_QUERY, "portfolio")

  199.       .execute()

  200.       .getInput();

  201. 

  202.     assertThat(result).contains("Default template for Portfolios")

  203.       .doesNotContain("projects")

  204.       .doesNotContain("developers");

  205.   }

  206. 

  207.   @Test

  208.   public void search_in_organization() {

  209.     OrganizationDto org = db.organizations().insert();

  210.     PermissionTemplateDto projectDefaultTemplate = db.permissionTemplates().insertTemplate(org);

  211.     db.organizations().setDefaultTemplates(projectDefaultTemplate, null, null);

  212.     PermissionTemplateDto templateInOrg = insertProjectTemplate(org);

  213.     insertProjectTemplate(db.getDefaultOrganization());

  214.     db.commit();

  215.     userSession.addPermission(ADMINISTER, org);

  216. 

  217.     Permissions.SearchTemplatesWsResponse result = newRequest(underTestWithoutViews)

  218.       .setParam("organization", org.getKey())

  219.       .executeProtobuf(Permissions.SearchTemplatesWsResponse.class);

  220. 

  221.     assertThat(result.getPermissionTemplatesCount()).isEqualTo(2);

  222.     assertThat(result.getPermissionTemplatesList())

  223.       .extracting(Permissions.PermissionTemplate::getId)

  224.       .containsOnly(projectDefaultTemplate.getUuid(), templateInOrg.getUuid());

  225.   }

  226. 

  227.   @Test

  228.   public void fail_if_not_logged_in() {

  229.     expectedException.expect(UnauthorizedException.class);

  230.     userSession.anonymous();

  231. 

  232.     newRequest().execute();

  233.   }

  234. 

  235.   @Test

  236.   public void display_all_project_permissions() {

  237.     db.organizations().setDefaultTemplates(db.permissionTemplates().insertTemplate(db.getDefaultOrganization()), null, null);

  238. 

  239.     String result = newRequest(underTestWithoutViews).execute().getInput();

  240. 

  241.     assertJson(result)

  242.       .withStrictArrayOrder()

  243.       .ignoreFields("defaultTemplates", "permissionTemplates")

  244.       .isSimilarTo(

  245.         "{" +

  246.           "  \"permissions\": [" +

  247.           "    {" +

  248.           "      \"key\": \"admin\"," +

  249.           "      \"name\": \"Administer\"," +

  250.           "      \"description\": \"Ability to access project settings and perform administration tasks. (Users will also need \\\"Browse\\\" permission)\"" +

  251.           "    }," +

  252.           "    {" +

  253.           "      \"key\": \"codeviewer\"," +

  254.           "      \"name\": \"See Source Code\"," +

  255.           "      \"description\": \"Ability to view the project\\u0027s source code. (Users will also need \\\"Browse\\\" permission)\"" +

  256.           "    }," +

  257.           "    {" +

  258.           "      \"key\": \"issueadmin\"," +

  259.           "      \"name\": \"Administer Issues\"," +

  260.           "      \"description\": \"Grants the permission to perform advanced editing on issues: marking an issue False Positive / Won\\u0027t Fix or changing an Issue\\u0027s severity. (Users will also need \\\"Browse\\\" permission)\""

  261.           +

  262.           "    }," +

  263.           "    {" +

  264.           "      \"key\": \"securityhotspotadmin\"," +

  265.           "      \"name\": \"Administer Security Hotspots\"," +

  266.           "      \"description\": \"Detect a Vulnerability from a \\\"Security Hotspot\\\". Reject, clear, accept, reopen a \\\"Security Hotspot\\\" (users also need \\\"Browse\\\" permissions).\"" +

  267.           "    }," +

  268.           "    {" +

  269.           "      \"key\": \"scan\"," +

  270.           "      \"name\": \"Execute Analysis\"," +

  271.           "      \"description\": \"Ability to execute analyses, and to get all settings required to perform the analysis, even the secured ones like the scm account password, the jira account password, and so on.\""

  272.           +

  273.           "    }," +

  274.           "    {" +

  275.           "      \"key\": \"user\"," +

  276.           "      \"name\": \"Browse\"," +

  277.           "      \"description\": \"Ability to access a project, browse its measures, and create/edit issues for it.\"" +

  278.           "    }" +

  279.           "  ]" +

  280.           "}");

  281.    }

  282. 

  283.   @Test

  284.   public void display_all_project_permissions_with_views() {

  285.     db.organizations().setDefaultTemplates(db.permissionTemplates().insertTemplate(db.getDefaultOrganization()), null, null);

  286. 

  287.     String result = newRequest().execute().getInput();

  288. 

  289.     assertJson(result)

  290.       .withStrictArrayOrder()

  291.       .ignoreFields("defaultTemplates", "permissionTemplates")

  292.       .isSimilarTo(

  293.         "{" +

  294.           "  \"permissions\": [" +

  295.           "    {" +

  296.           "      \"key\": \"admin\"," +

  297.           "      \"name\": \"Administer\"," +

  298.           "      \"description\": \"Ability to access project settings and perform administration tasks. (Users will also need \\\"Browse\\\" permission)\"" +

  299.           "    }," +

  300.           "    {" +

  301.           "      \"key\": \"codeviewer\"," +

  302.           "      \"name\": \"See Source Code\"," +

  303.           "      \"description\": \"Ability to view the project\\u0027s source code. (Users will also need \\\"Browse\\\" permission)\"" +

  304.           "    }," +

  305.           "    {" +

  306.           "      \"key\": \"issueadmin\"," +

  307.           "      \"name\": \"Administer Issues\"," +

  308.           "      \"description\": \"Grants the permission to perform advanced editing on issues: marking an issue False Positive / Won\\u0027t Fix or changing an Issue\\u0027s severity. (Users will also need \\\"Browse\\\" permission)\""

  309.           +

  310.           "    }," +

  311.           "    {" +

  312.           "      \"key\": \"securityhotspotadmin\"," +

  313.           "      \"name\": \"Administer Security Hotspots\"," +

  314.           "      \"description\": \"Detect a Vulnerability from a \\\"Security Hotspot\\\". Reject, clear, accept, reopen a \\\"Security Hotspot\\\" (users also need \\\"Browse\\\" permissions).\"" +

  315.           "    }," +

  316.           "    {" +

  317.           "      \"key\": \"scan\"," +

  318.           "      \"name\": \"Execute Analysis\"," +

  319.           "      \"description\": \"Ability to execute analyses, and to get all settings required to perform the analysis, even the secured ones like the scm account password, the jira account password, and so on.\""

  320.           +

  321.           "    }," +

  322.           "    {" +

  323.           "      \"key\": \"user\"," +

  324.           "      \"name\": \"Browse\"," +

  325.           "      \"description\": \"Ability to access a project, browse its measures, and create/edit issues for it.\"" +

  326.           "    }" +

  327.           "  ]" +

  328.           "}");

  329.   }

  330. 

  331.   private PermissionTemplateDto insertProjectTemplate(OrganizationDto org) {

  332.     return insertTemplate(newPermissionTemplateDto()

  333.       .setOrganizationUuid(org.getUuid())

  334.       .setUuid(UUID_EXAMPLE_01)

  335.       .setName("Default template for Projects")

  336.       .setDescription("Template for new projects")

  337.       .setKeyPattern(null)

  338.       .setCreatedAt(new Date(1_000_000_000_000L))

  339.       .setUpdatedAt(new Date(1_000_000_000_000L)));

  340.   }

  341. 

  342.   private PermissionTemplateDto insertPortfoliosTemplate(OrganizationDto organization) {

  343.     return insertTemplate(newPermissionTemplateDto()

  344.       .setOrganizationUuid(organization.getUuid())

  345.       .setUuid(UUID_EXAMPLE_02)

  346.       .setName("Default template for Portfolios")

  347.       .setDescription("Template for new portfolios")

  348.       .setKeyPattern(".*sonar.views.*")

  349.       .setCreatedAt(new Date(1_000_000_000_000L))

  350.       .setUpdatedAt(new Date(1_100_000_000_000L)));

  351.   }

  352. 

  353.   private PermissionTemplateDto insertApplicationsTemplate(OrganizationDto organization) {

  354.     return insertTemplate(newPermissionTemplateDto()

  355.       .setOrganizationUuid(organization.getUuid())

  356.       .setUuid(UUID_EXAMPLE_10)

  357.       .setName("Default template for Applications")

  358.       .setDescription("Template for new applications")

  359.       .setKeyPattern(".*sonar.views.*")

  360.       .setCreatedAt(new Date(1_000_000_000_000L))

  361.       .setUpdatedAt(new Date(1_100_000_000_000L)));

  362.   }

  363. 

  364.   private PermissionTemplateDto insertTemplate(PermissionTemplateDto template) {

  365.     PermissionTemplateDto insert = dbClient.permissionTemplateDao().insert(db.getSession(), template);

  366.     db.getSession().commit();

  367.     return insert;

  368.   }

  369. 

  370.   private void addGroupToTemplate(long templateId, @Nullable Integer groupId, String permission) {

  371.     dbClient.permissionTemplateDao().insertGroupPermission(db.getSession(), templateId, groupId, permission);

  372.     db.getSession().commit();

  373.   }

  374. 

  375.   private void addUserToTemplate(long templateId, int userId, String permission) {

  376.     dbClient.permissionTemplateDao().insertUserPermission(db.getSession(), templateId, userId, permission);

  377.     db.getSession().commit();

  378.   }

  379. 

  380.   private void addPermissionTemplateWithProjectCreator(long templateId, String permission) {

  381.     dbClient.permissionTemplateCharacteristicDao().insert(dbSession, new PermissionTemplateCharacteristicDto()

  382.       .setWithProjectCreator(true)

  383.       .setTemplateId(templateId)

  384.       .setPermission(permission)

  385.       .setCreatedAt(1_000_000_000L)

  386.       .setUpdatedAt(2_000_000_000L));

  387.     db.commit();

  388.   }

  389. 

  390.   private TestRequest newRequest(WsActionTester underTest) {

  391.     return underTest.newRequest().setMethod("POST");

  392.   }

  393. }