diff options
| author | Sébastien Lesaint <sebastien.lesaint@sonarsource.com> | 2017-04-19 15:29:35 +0200 |
|---|---|---|
| committer | Sébastien Lesaint <sebastien.lesaint@sonarsource.com> | 2017-04-27 14:25:54 +0200 |
| commit | 0317f5d0998eefdc953fc00aa9030559b40a4aad (patch) | |
| tree | 2e2b9c9138a233149e6c2025545cc96eebd217b5 | |
| parent | 9e32fa79bee373f2180a8ac5ce6d89b5db5e8839 (diff) | |
| download | sonarqube-0317f5d0998eefdc953fc00aa9030559b40a4aad.tar.gz sonarqube-0317f5d0998eefdc953fc00aa9030559b40a4aad.zip | |
SONAR-9140 enforce in UT that public project can't have public perms
10 files changed, 79 insertions, 88 deletions
diff --git a/server/sonar-db-dao/src/test/java/org/sonar/db/permission/AuthorizationDaoTest.java b/server/sonar-db-dao/src/test/java/org/sonar/db/permission/AuthorizationDaoTest.java index 897681039b5..d7fffb1e3ca 100644 --- a/server/sonar-db-dao/src/test/java/org/sonar/db/permission/AuthorizationDaoTest.java +++ b/server/sonar-db-dao/src/test/java/org/sonar/db/permission/AuthorizationDaoTest.java @@ -422,9 +422,9 @@ public class AuthorizationDaoTest { @Test public void user_should_be_authorized() { - ComponentDto project1 = db.components().insertPublicProject(organization); - ComponentDto project2 = db.components().insertPublicProject(organization); - ComponentDto project3 = db.components().insertPublicProject(organization); + ComponentDto project1 = db.components().insertPrivateProject(organization); + ComponentDto project2 = db.components().insertPrivateProject(organization); + ComponentDto project3 = db.components().insertPrivateProject(organization); UserDto user = db.users().insertUser("u1"); GroupDto group = db.users().insertGroup(organization); db.users().insertProjectPermissionOnUser(user, UserRole.USER, project2); @@ -445,9 +445,9 @@ public class AuthorizationDaoTest { @Test public void group_should_be_authorized() { - ComponentDto project1 = db.components().insertPublicProject(organization); - ComponentDto project2 = db.components().insertPublicProject(organization); - ComponentDto project3 = db.components().insertPublicProject(organization); + ComponentDto project1 = db.components().insertPrivateProject(organization); + ComponentDto project2 = db.components().insertPrivateProject(organization); + ComponentDto project3 = db.components().insertPrivateProject(organization); UserDto user1 = db.users().insertUser("u1"); GroupDto group = db.users().insertGroup(organization); db.users().insertMembers(group, user1); @@ -470,8 +470,6 @@ public class AuthorizationDaoTest { UserDto user1 = db.users().insertUser("u1"); GroupDto group = db.users().insertGroup(organization); db.users().insertMembers(group, user1); - db.users().insertProjectPermissionOnAnyone(UserRole.USER, project1); - db.users().insertProjectPermissionOnAnyone(UserRole.USER, project2); assertThat(underTest.keepAuthorizedProjectIds(dbSession, newHashSet(project1.getId(), project2.getId()), null, UserRole.USER)) .containsOnly(project1.getId(), project2.getId()); @@ -644,9 +642,9 @@ public class AuthorizationDaoTest { @Test public void keep_authorized_users_returns_empty_list_for_role_and_project_for_anonymous() { - ComponentDto project1 = db.components().insertPublicProject(organization); - ComponentDto project2 = db.components().insertPublicProject(organization); - ComponentDto project3 = db.components().insertPublicProject(organization); + ComponentDto project1 = db.components().insertPrivateProject(organization); + ComponentDto project2 = db.components().insertPrivateProject(organization); + ComponentDto project3 = db.components().insertPrivateProject(organization); UserDto user1 = db.users().insertUser("u1"); UserDto user2 = db.users().insertUser("u2"); UserDto user3 = db.users().insertUser("u3"); @@ -657,7 +655,6 @@ public class AuthorizationDaoTest { db.users().insertProjectPermissionOnUser(user1, UserRole.USER, project1); db.users().insertProjectPermissionOnUser(user2, UserRole.USER, project1); db.users().insertProjectPermissionOnUser(user3, UserRole.USER, project1); - db.users().insertProjectPermissionOnAnyone(UserRole.USER, project2); db.users().insertProjectPermissionOnGroup(group2, UserRole.USER, project3); assertThat(underTest.keepAuthorizedUsersForRoleAndProject(dbSession, @@ -792,12 +789,12 @@ public class AuthorizationDaoTest { @Test public void selectProjectPermissionsOfAnonymous_returns_permissions_of_anonymous_user_on_specified_public_project() { ComponentDto project = db.components().insertPublicProject(organization); - db.users().insertProjectPermissionOnAnyone(UserRole.CODEVIEWER, project); - db.users().insertProjectPermissionOnUser(db.users().insertUser(), UserRole.USER, project); + db.users().insertProjectPermissionOnAnyone("p1", project); + db.users().insertProjectPermissionOnUser(db.users().insertUser(), "p2", project); ComponentDto otherProject = db.components().insertPublicProject(); - db.users().insertProjectPermissionOnAnyone(UserRole.ISSUE_ADMIN, otherProject); + db.users().insertProjectPermissionOnAnyone("p3", otherProject); - assertThat(underTest.selectProjectPermissionsOfAnonymous(dbSession, project.uuid())).containsOnly(UserRole.CODEVIEWER); + assertThat(underTest.selectProjectPermissionsOfAnonymous(dbSession, project.uuid())).containsOnly("p1"); } @Test @@ -813,10 +810,10 @@ public class AuthorizationDaoTest { @Test public void selectProjectPermissions_returns_permissions_of_logged_in_user_on_specified_public_project_through_anonymous_permissions() { ComponentDto project = db.components().insertPublicProject(organization); - db.users().insertProjectPermissionOnAnyone(UserRole.CODEVIEWER, project); - db.users().insertProjectPermissionOnAnyone(UserRole.ISSUE_ADMIN, project); + db.users().insertProjectPermissionOnAnyone("p1", project); + db.users().insertProjectPermissionOnAnyone("p2", project); - assertThat(underTest.selectProjectPermissions(dbSession, project.uuid(), user.getId())).containsOnly(UserRole.CODEVIEWER, UserRole.ISSUE_ADMIN); + assertThat(underTest.selectProjectPermissions(dbSession, project.uuid(), user.getId())).containsOnly("p1", "p2"); } @Test @@ -851,11 +848,11 @@ public class AuthorizationDaoTest { @Test public void selectProjectPermissions_returns_permissions_of_logged_in_user_on_specified_public_project_through_all_possible_configurations() { ComponentDto project = db.components().insertPublicProject(organization); - db.users().insertProjectPermissionOnUser(user, UserRole.CODEVIEWER, project); - db.users().insertProjectPermissionOnAnyone(UserRole.ISSUE_ADMIN, project); - db.users().insertProjectPermissionOnGroup(group1, UserRole.USER, project); + db.users().insertProjectPermissionOnUser(user, "p1", project); + db.users().insertProjectPermissionOnAnyone("p2", project); + db.users().insertProjectPermissionOnGroup(group1, "p3", project); db.users().insertMember(group1, user); - assertThat(underTest.selectProjectPermissions(dbSession, project.uuid(), user.getId())).containsOnly(UserRole.CODEVIEWER, UserRole.ISSUE_ADMIN, UserRole.USER); + assertThat(underTest.selectProjectPermissions(dbSession, project.uuid(), user.getId())).containsOnly("p1", "p2", "p3"); } } diff --git a/server/sonar-db-dao/src/test/java/org/sonar/db/permission/GroupPermissionDaoTest.java b/server/sonar-db-dao/src/test/java/org/sonar/db/permission/GroupPermissionDaoTest.java index 4248603a803..dea92218fe0 100644 --- a/server/sonar-db-dao/src/test/java/org/sonar/db/permission/GroupPermissionDaoTest.java +++ b/server/sonar-db-dao/src/test/java/org/sonar/db/permission/GroupPermissionDaoTest.java @@ -102,21 +102,21 @@ public class GroupPermissionDaoTest { ComponentDto project2 = db.components().insertPublicProject(); ComponentDto project3 = db.components().insertPublicProject(); - db.users().insertProjectPermissionOnGroup(group1, ISSUE_ADMIN, project1); - db.users().insertProjectPermissionOnGroup(group1, ADMIN, project2); - db.users().insertProjectPermissionOnGroup(group2, ADMIN, project2); - db.users().insertProjectPermissionOnGroup(group3, ADMIN, project2); + db.users().insertProjectPermissionOnGroup(group1, "p1", project1); + db.users().insertProjectPermissionOnGroup(group1, "p2", project2); + db.users().insertProjectPermissionOnGroup(group2, "p2", project2); + db.users().insertProjectPermissionOnGroup(group3, "p2", project2); // anyone group - db.users().insertProjectPermissionOnAnyone(ADMIN, project2); - db.users().insertProjectPermissionOnGroup(group1, USER, project2); - db.users().insertProjectPermissionOnGroup(group1, USER, project3); + db.users().insertProjectPermissionOnAnyone("p2", project2); + db.users().insertProjectPermissionOnGroup(group1, "p3", project2); + db.users().insertProjectPermissionOnGroup(group1, "p3", project3); final List<CountPerProjectPermission> result = new ArrayList<>(); underTest.groupsCountByComponentIdAndPermission(dbSession, asList(project2.getId(), project3.getId(), 789L), context -> result.add((CountPerProjectPermission) context.getResultObject())); assertThat(result).hasSize(3); - assertThat(result).extracting("permission").containsOnly(ADMIN, USER); + assertThat(result).extracting("permission").containsOnly("p2", "p3"); assertThat(result).extracting("componentId").containsOnly(project2.getId(), project3.getId()); assertThat(result).extracting("count").containsOnly(4, 1); } @@ -188,22 +188,22 @@ public class GroupPermissionDaoTest { ComponentDto project = db.components().insertPublicProject(); ComponentDto anotherProject = db.components().insertPublicProject(); - db.users().insertProjectPermissionOnGroup(group1, SCAN_EXECUTION, project); - db.users().insertProjectPermissionOnGroup(group1, PROVISIONING, project); - db.users().insertProjectPermissionOnAnyone(USER, project); + db.users().insertProjectPermissionOnGroup(group1, "p1", project); + db.users().insertProjectPermissionOnGroup(group1, "p2", project); + db.users().insertProjectPermissionOnAnyone("p3", project); - db.users().insertProjectPermissionOnGroup(group1, SYSTEM_ADMIN, anotherProject); - db.users().insertProjectPermissionOnAnyone(SYSTEM_ADMIN, anotherProject); - db.users().insertProjectPermissionOnGroup(group3, SCAN_EXECUTION, anotherProject); - db.users().insertPermissionOnGroup(group2, SCAN); + db.users().insertProjectPermissionOnGroup(group1, "p4", anotherProject); + db.users().insertProjectPermissionOnAnyone("p4", anotherProject); + db.users().insertProjectPermissionOnGroup(group3, "p1", anotherProject); + db.users().insertPermissionOnGroup(group2, "p5"); PermissionQuery.Builder builderOnComponent = newQuery().setComponentUuid(project.uuid()); assertThat(underTest.selectGroupNamesByQuery(dbSession, builderOnComponent.withAtLeastOnePermission().build())).containsOnlyOnce(group1.getName()); assertThat(underTest.selectGroupNamesByQuery(dbSession, - builderOnComponent.setPermission(SCAN_EXECUTION).build())).containsOnlyOnce(group1.getName()); + builderOnComponent.setPermission("p1").build())).containsOnlyOnce(group1.getName()); assertThat(underTest.selectGroupNamesByQuery(dbSession, - builderOnComponent.setPermission(USER).build())).containsOnlyOnce(ANYONE); + builderOnComponent.setPermission("p3").build())).containsOnlyOnce(ANYONE); } @Test @@ -303,32 +303,32 @@ public class GroupPermissionDaoTest { public void selectByGroupIds_on_public_projects() { OrganizationDto org = db.organizations().insert(); GroupDto group1 = db.users().insertGroup(org, "Group-1"); - db.users().insertPermissionOnGroup(group1, PROVISION_PROJECTS); + db.users().insertPermissionOnGroup(group1, "p1"); GroupDto group2 = db.users().insertGroup(org, "Group-2"); ComponentDto project = db.components().insertPublicProject(org); - db.users().insertProjectPermissionOnGroup(group2, USER, project); + db.users().insertProjectPermissionOnGroup(group2, "p2", project); GroupDto group3 = db.users().insertGroup(org, "Group-3"); - db.users().insertProjectPermissionOnGroup(group3, USER, project); + db.users().insertProjectPermissionOnGroup(group3, "p2", project); // Anyone group - db.users().insertPermissionOnAnyone(org, SCAN); - db.users().insertProjectPermissionOnAnyone(PROVISIONING, project); + db.users().insertPermissionOnAnyone(org, "p3"); + db.users().insertProjectPermissionOnAnyone("p4", project); assertThat(underTest.selectByGroupIds(dbSession, defaultOrganizationUuid, singletonList(group1.getId()), project.getId())).isEmpty(); assertThat(underTest.selectByGroupIds(dbSession, org.getUuid(), singletonList(group2.getId()), project.getId())) .extracting(GroupPermissionDto::getGroupId, GroupPermissionDto::getRole, GroupPermissionDto::getResourceId) - .containsOnly(tuple(group2.getId(), USER, project.getId())); + .containsOnly(tuple(group2.getId(), "p2", project.getId())); assertThat(underTest.selectByGroupIds(dbSession, org.getUuid(), singletonList(group3.getId()), project.getId())) .extracting(GroupPermissionDto::getGroupId, GroupPermissionDto::getRole, GroupPermissionDto::getResourceId) - .containsOnly(tuple(group3.getId(), USER, project.getId())); + .containsOnly(tuple(group3.getId(), "p2", project.getId())); assertThat(underTest.selectByGroupIds(dbSession, org.getUuid(), singletonList(ANYONE_ID), project.getId())) .extracting(GroupPermissionDto::getGroupId, GroupPermissionDto::getRole, GroupPermissionDto::getResourceId) - .containsOnly(tuple(0, PROVISIONING, project.getId())); + .containsOnly(tuple(0, "p4", project.getId())); assertThat(underTest.selectByGroupIds(dbSession, org.getUuid(), asList(group1.getId(), group2.getId(), ANYONE_ID), project.getId())).hasSize(2); assertThat(underTest.selectByGroupIds(dbSession, org.getUuid(), singletonList(MISSING_ID), project.getId())).isEmpty(); diff --git a/server/sonar-db-dao/src/test/java/org/sonar/db/user/UserDbTester.java b/server/sonar-db-dao/src/test/java/org/sonar/db/user/UserDbTester.java index 31d3741c31a..87c6adfd101 100644 --- a/server/sonar-db-dao/src/test/java/org/sonar/db/user/UserDbTester.java +++ b/server/sonar-db-dao/src/test/java/org/sonar/db/user/UserDbTester.java @@ -25,6 +25,7 @@ import java.util.Optional; import java.util.function.Consumer; import javax.annotation.CheckForNull; import javax.annotation.Nullable; +import org.sonar.core.permission.ProjectPermissions; import org.sonar.core.util.stream.MoreCollectors; import org.sonar.db.DbClient; import org.sonar.db.DbTester; @@ -214,6 +215,8 @@ public class UserDbTester { public GroupPermissionDto insertProjectPermissionOnAnyone(String permission, ComponentDto project) { checkArgument(!project.isPrivate(), "No permission to group AnyOne can be granted on a private project"); + checkArgument(!ProjectPermissions.PUBLIC_PERMISSIONS.contains(permission), + "permission %s can't be granted on a public project", permission); GroupPermissionDto dto = new GroupPermissionDto() .setOrganizationUuid(project.getOrganizationUuid()) .setGroupId(null) @@ -231,6 +234,8 @@ public class UserDbTester { public GroupPermissionDto insertProjectPermissionOnGroup(GroupDto group, String permission, ComponentDto project) { checkArgument(group.getOrganizationUuid().equals(project.getOrganizationUuid()), "Different organizations"); + checkArgument(project.isPrivate() || !ProjectPermissions.PUBLIC_PERMISSIONS.contains(permission), + "%s can't be granted on a public project", permission); GroupPermissionDto dto = new GroupPermissionDto() .setOrganizationUuid(group.getOrganizationUuid()) .setGroupId(group.getId()) @@ -301,6 +306,8 @@ public class UserDbTester { * Grant permission on given project */ public UserPermissionDto insertProjectPermissionOnUser(UserDto user, String permission, ComponentDto project) { + checkArgument(project.isPrivate() || !ProjectPermissions.PUBLIC_PERMISSIONS.contains(permission), + "%s can't be granted on a public project", permission); UserPermissionDto dto = new UserPermissionDto(project.getOrganizationUuid(), permission, user.getId(), project.getId()); db.getDbClient().userPermissionDao().insert(db.getSession(), dto); db.commit(); diff --git a/server/sonar-server/src/test/java/org/sonar/server/measure/ws/SearchActionTest.java b/server/sonar-server/src/test/java/org/sonar/server/measure/ws/SearchActionTest.java index e3d2f73f7ef..120234b0eaf 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/measure/ws/SearchActionTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/measure/ws/SearchActionTest.java @@ -178,7 +178,6 @@ public class SearchActionTest { public void return_measures_on_view() throws Exception { ComponentDto view = newView(db.getDefaultOrganization()); SnapshotDto viewSnapshot = db.components().insertProjectAndSnapshot(view); - setBrowsePermissionOnUser(view); MetricDto coverage = insertCoverageMetric(); dbClient.measureDao().insert(dbSession, newMeasureDto(coverage, view, viewSnapshot).setValue(15.5d)); db.commit(); @@ -197,7 +196,6 @@ public class SearchActionTest { ComponentDto view = newView(db.getDefaultOrganization()); SnapshotDto viewSnapshot = db.components().insertProjectAndSnapshot(view); ComponentDto subView = db.components().insertComponent(newSubView(view)); - setBrowsePermissionOnUser(view); MetricDto coverage = insertCoverageMetric(); dbClient.measureDao().insert(dbSession, newMeasureDto(coverage, subView, viewSnapshot).setValue(15.5d)); db.commit(); diff --git a/server/sonar-server/src/test/java/org/sonar/server/permission/index/PermissionIndexerTest.java b/server/sonar-server/src/test/java/org/sonar/server/permission/index/PermissionIndexerTest.java index 04091ada770..ff5edb6ad07 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/permission/index/PermissionIndexerTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/permission/index/PermissionIndexerTest.java @@ -59,6 +59,19 @@ public class PermissionIndexerTest { private PermissionIndexer underTest = new PermissionIndexer(dbTester.getDbClient(), esTester.client(), fooIndexer); @Test + public void initalizeOnStartup_grants_access_to_any_user_and_to_group_Anyone_on_public_projects() { + ComponentDto project = createAndIndexPublicProject(); + UserDto user1 = userDbTester.insertUser(); + UserDto user2 = userDbTester.insertUser(); + + indexOnStartup(); + + verifyAnyoneAuthorized(project); + verifyAuthorized(project, user1); + verifyAuthorized(project, user2); + } + + @Test public void initializeOnStartup_grants_access_to_user() { ComponentDto project = createAndIndexPrivateProject(); UserDto user1 = userDbTester.insertUser(); @@ -79,7 +92,7 @@ public class PermissionIndexerTest { } @Test - public void initializeOnStartup_grants_access_to_group() { + public void initializeOnStartup_grants_access_to_group_on_private_project() { ComponentDto project = createAndIndexPrivateProject(); UserDto user1 = userDbTester.insertUser(); UserDto user2 = userDbTester.insertUser(); @@ -189,8 +202,6 @@ public class PermissionIndexerTest { public void deleteProject_deletes_the_documents_related_to_the_project() { ComponentDto project1 = createAndIndexPublicProject(); ComponentDto project2 = createAndIndexPublicProject(); - userDbTester.insertProjectPermissionOnAnyone(USER, project1); - userDbTester.insertProjectPermissionOnAnyone(USER, project2); indexOnStartup(); assertThat(esTester.countDocuments(INDEX_TYPE_FOO_AUTH)).isEqualTo(2); @@ -201,7 +212,6 @@ public class PermissionIndexerTest { @Test public void indexProject_does_nothing_because_authorizations_are_triggered_outside_standard_indexer_lifecycle() { ComponentDto project = createAndIndexPublicProject(); - userDbTester.insertProjectPermissionOnAnyone(USER, project); underTest.indexProject(project.uuid(), ProjectIndexer.Cause.NEW_ANALYSIS); underTest.indexProject(project.uuid(), ProjectIndexer.Cause.PROJECT_CREATION); @@ -215,8 +225,6 @@ public class PermissionIndexerTest { ComponentDto projectOnOrg1 = createAndIndexPublicProject(dbTester.organizations().insert()); ComponentDto projectOnOrg2 = createAndIndexPublicProject(dbTester.organizations().insert()); UserDto user = userDbTester.insertUser(); - userDbTester.insertProjectPermissionOnAnyone(USER, projectOnOrg1); - userDbTester.insertProjectPermissionOnUser(user, USER, projectOnOrg2); indexOnStartup(); diff --git a/server/sonar-server/src/test/java/org/sonar/server/permission/ws/RemoveUserActionTest.java b/server/sonar-server/src/test/java/org/sonar/server/permission/ws/RemoveUserActionTest.java index 2b75b50ab4e..45c3d039abc 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/permission/ws/RemoveUserActionTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/permission/ws/RemoveUserActionTest.java @@ -130,7 +130,7 @@ public class RemoveUserActionTest extends BasePermissionWsTest<RemoveUserAction> public void remove_with_view_uuid() throws Exception { ComponentDto view = db.components().insertComponent(newView(db.organizations().insert(), "view-uuid").setKey("view-key")); db.users().insertProjectPermissionOnUser(user, ISSUE_ADMIN, view); - db.users().insertProjectPermissionOnUser(user, CODEVIEWER, view); + db.users().insertProjectPermissionOnUser(user, ADMIN, view); loginAsAdmin(db.getDefaultOrganization()); newRequest() @@ -139,7 +139,7 @@ public class RemoveUserActionTest extends BasePermissionWsTest<RemoveUserAction> .setParam(PARAM_PERMISSION, ISSUE_ADMIN) .execute(); - assertThat(db.users().selectProjectPermissionsOfUser(user, view)).containsOnly(CODEVIEWER); + assertThat(db.users().selectProjectPermissionsOfUser(user, view)).containsOnly(ADMIN); } @Test diff --git a/server/sonar-server/src/test/java/org/sonar/server/qualitygate/QgateProjectFinderTest.java b/server/sonar-server/src/test/java/org/sonar/server/qualitygate/QgateProjectFinderTest.java index aaa33da1888..9f019ba0987 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/qualitygate/QgateProjectFinderTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/qualitygate/QgateProjectFinderTest.java @@ -89,8 +89,8 @@ public class QgateProjectFinderTest { @Test public void return_all_projects() throws Exception { OrganizationDto org = dbTester.organizations().insert(); - ComponentDto associatedProject = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); - ComponentDto unassociatedProject = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); + ComponentDto associatedProject = insertProject(ComponentTesting.newPublicProjectDto(org)); + ComponentDto unassociatedProject = insertProject(ComponentTesting.newPublicProjectDto(org)); associateProjectToQualitGate(associatedProject.getId()); Association result = underTest.find( @@ -108,8 +108,8 @@ public class QgateProjectFinderTest { @Test public void return_only_associated_project() throws Exception { OrganizationDto org = dbTester.organizations().insert(); - ComponentDto associatedProject = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); - insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); + ComponentDto associatedProject = insertProject(ComponentTesting.newPublicProjectDto(org)); + insertProject(ComponentTesting.newPublicProjectDto(org)); associateProjectToQualitGate(associatedProject.getId()); Association result = underTest.find( @@ -126,8 +126,8 @@ public class QgateProjectFinderTest { @Test public void return_only_unassociated_project() throws Exception { OrganizationDto org = dbTester.organizations().insert(); - ComponentDto associatedProject = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); - ComponentDto unassociatedProject = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org)); + ComponentDto associatedProject = insertProject(ComponentTesting.newPublicProjectDto(org)); + ComponentDto unassociatedProject = insertProject(ComponentTesting.newPublicProjectDto(org)); associateProjectToQualitGate(associatedProject.getId()); Association result = underTest.find( @@ -178,9 +178,9 @@ public class QgateProjectFinderTest { @Test public void test_paging() throws Exception { OrganizationDto org = dbTester.organizations().insert(); - ComponentDto project1 = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org).setName("Project 1")); - ComponentDto project2 = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org).setName("Project 2")); - ComponentDto project3 = insertProjectAuthorizedToAnyone(ComponentTesting.newPublicProjectDto(org).setName("Project 3")); + ComponentDto project1 = insertProject(ComponentTesting.newPublicProjectDto(org).setName("Project 1")); + ComponentDto project2 = insertProject(ComponentTesting.newPublicProjectDto(org).setName("Project 2")); + ComponentDto project3 = insertProject(ComponentTesting.newPublicProjectDto(org).setName("Project 3")); associateProjectToQualitGate(project1.getId()); // Return partial result on first page @@ -252,9 +252,8 @@ public class QgateProjectFinderTest { dbTester.commit(); } - private ComponentDto insertProjectAuthorizedToAnyone(ComponentDto project) { + private ComponentDto insertProject(ComponentDto project) { dbTester.components().insertComponent(project); - dbTester.users().insertProjectPermissionOnAnyone(UserRole.USER, project); return project; } diff --git a/server/sonar-server/src/test/java/org/sonar/server/qualityprofile/ws/ProjectsActionTest.java b/server/sonar-server/src/test/java/org/sonar/server/qualityprofile/ws/ProjectsActionTest.java index 822fb57d9eb..4999ce35372 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/qualityprofile/ws/ProjectsActionTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/qualityprofile/ws/ProjectsActionTest.java @@ -97,8 +97,6 @@ public class ProjectsActionTest { project4 = newPublicProject("DEFA", "Project Four"); dbClient.componentDao().insert(dbSession, project1, project2, project3, project4); - addBrowsePermissionToAnyone(project1, project2, project3, project4); - associateProjectsWithProfile(dbSession, xooP1, project1, project2, project3, project4); dbSession.commit(); @@ -128,8 +126,6 @@ public class ProjectsActionTest { project4 = newPublicProject("DEFA", "Project Four"); dbClient.componentDao().insert(dbSession, project1, project2, project3, project4); - addBrowsePermissionToAnyone(project1, project2, project3, project4); - associateProjectsWithProfile(dbSession, xooP1, project1, project2); dbSession.commit(); @@ -145,8 +141,6 @@ public class ProjectsActionTest { project4 = newPublicProject("DEFA", "Project Four"); dbClient.componentDao().insert(dbSession, project1, project2, project3, project4); - addBrowsePermissionToAnyone(project1, project2, project3, project4); - associateProjectsWithProfile(dbSession, xooP1, project1, project2); // project3 is associated with P2, must appear as not associated with xooP1 associateProjectsWithProfile(dbSession, xooP2, project3); @@ -164,8 +158,6 @@ public class ProjectsActionTest { project4 = newPublicProject("DEFA", "Project Four"); dbClient.componentDao().insert(dbSession, project1, project2, project3, project4); - addBrowsePermissionToAnyone(project1, project2, project3, project4); - associateProjectsWithProfile(dbSession, xooP1, project1, project2); dbSession.commit(); @@ -186,8 +178,6 @@ public class ProjectsActionTest { project4 = newPublicProject("DEFA", "Project Four"); dbClient.componentDao().insert(dbSession, project1, project2, project3, project4); - addBrowsePermissionToAnyone(project1, project2, project3, project4); - associateProjectsWithProfile(dbSession, xooP1, project1, project2); // project3 is associated with P2, must appear as not associated with xooP1 associateProjectsWithProfile(dbSession, xooP2, project3); @@ -215,12 +205,6 @@ public class ProjectsActionTest { return ComponentTesting.newPrivateProjectDto(organizationDto, uuid).setName(name); } - private void addBrowsePermissionToAnyone(ComponentDto... projects) { - for (ComponentDto project : projects) { - db.users().insertProjectPermissionOnAnyone(UserRole.USER, project); - } - } - private void associateProjectsWithProfile(DbSession session, QualityProfileDto profile, ComponentDto... projects) { for (ComponentDto project : projects) { dbClient.qualityProfileDao().insertProjectProfileAssociation(project.uuid(), profile.getKey(), session); diff --git a/server/sonar-server/src/test/java/org/sonar/server/user/ServerUserSessionTest.java b/server/sonar-server/src/test/java/org/sonar/server/user/ServerUserSessionTest.java index d781a3a93de..73531b048d3 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/user/ServerUserSessionTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/user/ServerUserSessionTest.java @@ -156,7 +156,7 @@ public class ServerUserSessionTest { @Test public void checkComponentUuidPermission_fails_with_FE_when_user_has_not_permission_for_specified_uuid_in_db() { - addProjectPermissions(publicProject, UserRole.USER); + addProjectPermissions(privateProject, UserRole.USER); UserSession session = newUserSession(user); expectInsufficientPrivilegesForbiddenException(); diff --git a/server/sonar-server/src/test/java/org/sonar/server/view/index/ViewIndexerTest.java b/server/sonar-server/src/test/java/org/sonar/server/view/index/ViewIndexerTest.java index e97151a52a5..f763ecb7074 100644 --- a/server/sonar-server/src/test/java/org/sonar/server/view/index/ViewIndexerTest.java +++ b/server/sonar-server/src/test/java/org/sonar/server/view/index/ViewIndexerTest.java @@ -26,7 +26,6 @@ import org.junit.Rule; import org.junit.Test; import org.sonar.api.config.MapSettings; import org.sonar.api.utils.System2; -import org.sonar.api.web.UserRole; import org.sonar.db.DbClient; import org.sonar.db.DbSession; import org.sonar.db.DbTester; @@ -168,7 +167,6 @@ public class ViewIndexerTest { ComponentDto project = ComponentTesting.newPublicProjectDto(org); ComponentDto file = ComponentTesting.newFileDto(project, null); dbTester.components().insertComponents(project, file); - dbTester.users().insertProjectPermissionOnAnyone(UserRole.USER, project); IssueDto issue = IssueTesting.newDto(rule, file, project); dbClient.issueDao().insert(dbSession, issue); |