Skip to content
Snippets Groups Projects
Normal view Permalink
test_user.py 18.5 KiB
Newer Older
  • Learn to ignore specific revisions
    • Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    1 2 3 4 5 6 7 8 9 10 11 12 13 14 
    import datetime
import unittest

from flask import url_for, session

# These imports are required, because otherwise we get circular imports?!
from uffd import ldap, user

from uffd.user.models import User
from uffd.role.models import Role
from uffd import create_app, db

from utils import dump, UffdTestCase
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    15
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    16 
    def get_user():
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    17 
    	return User.query.get('uid=testuser,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    18 19 
    
def get_admin():
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    20 
    	return User.query.get('uid=testadmin,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    21
    Julian's avatar
    Moved oauth/services permission checking into User.has_permission  
    Julian committed
    22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 
    class TestUserModel(UffdTestCase):
	def test_has_permission(self):
		user = get_user() # has 'users' and 'uffd_access' group
		admin = get_admin() # has 'users', 'uffd_access' and 'uffd_admin' group
		self.assertTrue(user.has_permission(None))
		self.assertTrue(admin.has_permission(None))
		self.assertTrue(user.has_permission('users'))
		self.assertTrue(admin.has_permission('users'))
		self.assertFalse(user.has_permission('notagroup'))
		self.assertFalse(admin.has_permission('notagroup'))
		self.assertFalse(user.has_permission('uffd_admin'))
		self.assertTrue(admin.has_permission('uffd_admin'))
		self.assertFalse(user.has_permission(['uffd_admin']))
		self.assertTrue(admin.has_permission(['uffd_admin']))
		self.assertFalse(user.has_permission(['uffd_admin', 'notagroup']))
		self.assertTrue(admin.has_permission(['uffd_admin', 'notagroup']))
		self.assertFalse(user.has_permission(['notagroup', 'uffd_admin']))
		self.assertTrue(admin.has_permission(['notagroup', 'uffd_admin']))
		self.assertTrue(user.has_permission(['uffd_admin', 'users']))
		self.assertTrue(admin.has_permission(['uffd_admin', 'users']))
		self.assertTrue(user.has_permission([['uffd_admin', 'users'], ['users', 'uffd_access']]))
		self.assertTrue(admin.has_permission([['uffd_admin', 'users'], ['users', 'uffd_access']]))
		self.assertFalse(user.has_permission(['uffd_admin', ['users', 'notagroup']]))
		self.assertTrue(admin.has_permission(['uffd_admin', ['users', 'notagroup']]))
    Julian's avatar
    Add OpenLDAP support in unit tests  
    Julian committed
    47 48 49 
    class TestUserModelOL(TestUserModel):
	use_openldap = True
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    50 51 52 53 54 55 56 57 
    class TestUserModelOLUser(TestUserModelOL):
	use_userconnection = True

	def setUp(self):
		super().setUp()
		self.client.post(path=url_for('session.login'),
			data={'loginname': 'testadmin', 'password': 'adminpassword'}, follow_redirects=True)
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    58 59 60 61 62 63 64 65 66 67 68 69 
    class TestUserViews(UffdTestCase):
	def setUp(self):
		super().setUp()
		self.client.post(path=url_for('session.login'),
			data={'loginname': 'testadmin', 'password': 'adminpassword'}, follow_redirects=True)

	def test_index(self):
		r = self.client.get(path=url_for('user.index'), follow_redirects=True)
		dump('user_index', r)
		self.assertEqual(r.status_code, 200)

	def test_new(self):
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    70 71 
    		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    72 
    		db.session.add(role1)
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    73 
    		role2 = Role(name='role2')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    74 75 76 77 78 79 
    		db.session.add(role2)
		db.session.commit()
		role1_id = role1.id
		r = self.client.get(path=url_for('user.show'), follow_redirects=True)
		dump('user_new', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    80 
    		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    81 82 83 84 85 
    		r = self.client.post(path=url_for('user.update'),
			data={'loginname': 'newuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			f'role-{role1_id}': '1', 'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_submit', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    86 
    		user = User.query.get('uid=newuser,ou=users,dc=example,dc=com')
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    87 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    88 
    		self.assertIsNotNone(user)
    Julian's avatar
    Add service users, closes #55  
    Julian committed
    89 
    		self.assertFalse(user.is_service_user)
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    90 91 92 93 
    		self.assertEqual(user.loginname, 'newuser')
		self.assertEqual(user.displayname, 'New User')
		self.assertEqual(user.mail, 'newuser@example.com')
		self.assertTrue(user.uid)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    94 
    		role1 = Role(name='role1')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    95 
    		self.assertEqual(roles, ['base', 'role1'])
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    96 97 
    		# TODO: confirm Mail is send, login not yet possible
		#self.assertTrue(ldap.test_user_bind(user.dn, 'newpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    98
    Julian's avatar
    Add service users, closes #55  
    Julian committed
    99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 
    	def test_new_service(self):
		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
		db.session.add(role1)
		role2 = Role(name='role2')
		db.session.add(role2)
		db.session.commit()
		role1_id = role1.id
		r = self.client.get(path=url_for('user.show'), follow_redirects=True)
		dump('user_new_service', r)
		self.assertEqual(r.status_code, 200)
		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': 'newuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			f'role-{role1_id}': '1', 'password': 'newpassword', 'serviceaccount': '1'}, follow_redirects=True)
		dump('user_new_submit', r)
		self.assertEqual(r.status_code, 200)
		user = User.query.get('uid=newuser,ou=users,dc=example,dc=com')
		roles = sorted([r.name for r in user.roles])
		self.assertIsNotNone(user)
		self.assertTrue(user.is_service_user)
		self.assertEqual(user.loginname, 'newuser')
		self.assertEqual(user.displayname, 'New User')
		self.assertEqual(user.mail, 'newuser@example.com')
		self.assertTrue(user.uid)
		role1 = Role(name='role1')
		self.assertEqual(roles, ['role1'])
		# TODO: confirm Mail is send, login not yet possible
		#self.assertTrue(ldap.test_user_bind(user.dn, 'newpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    129 130 131 132 133 134 
    	def test_new_invalid_loginname(self):
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': '!newuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_invalid_loginname', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    135 
    		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    136 137 138 139 140 141 142 
    
	def test_new_empty_loginname(self):
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': '', 'mail': 'newuser@example.com', 'displayname': 'New User',
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_empty_loginname', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    143 
    		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    144 145 146 147 148 149 150 
    
	def test_new_empty_email(self):
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': 'newuser', 'mail': '', 'displayname': 'New User',
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_empty_email', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    151 
    		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    152 153 154 155 156 157 158 
    
	def test_new_invalid_display_name(self):
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': 'newuser', 'mail': 'newuser@example.com', 'displayname': 'A'*200,
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_invalid_display_name', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    159 
    		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    160 161 162 
    
	def test_update(self):
		user = get_user()
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    163 164 
    		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    165 
    		db.session.add(role1)
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    166 
    		role2 = Role(name='role2')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    167 
    		db.session.add(role2)
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    168 
    		role2.members.add(user)
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    169 170 171 172 173 174 175 176 177 178 179 
    		db.session.commit()
		role1_id = role1.id
		r = self.client.get(path=url_for('user.show', uid=user.uid), follow_redirects=True)
		dump('user_update', r)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user.uid),
			data={'loginname': 'testuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			f'role-{role1_id}': '1', 'password': ''}, follow_redirects=True)
		dump('user_update_submit', r)
		self.assertEqual(r.status_code, 200)
		_user = get_user()
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    180 
    		roles = sorted([r.name for r in _user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    181 182 183 184 
    		self.assertEqual(_user.displayname, 'New User')
		self.assertEqual(_user.mail, 'newuser@example.com')
		self.assertEqual(_user.uid, user.uid)
		self.assertEqual(_user.loginname, user.loginname)
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    185 
    		self.assertTrue(ldap.test_user_bind(user.dn, 'userpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 
    		self.assertEqual(roles, ['base', 'role1'])

	def test_update_password(self):
		user = get_user()
		r = self.client.get(path=url_for('user.show', uid=user.uid), follow_redirects=True)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user.uid),
			data={'loginname': 'testuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_update_password', r)
		self.assertEqual(r.status_code, 200)
		_user = get_user()
		self.assertEqual(_user.displayname, 'New User')
		self.assertEqual(_user.mail, 'newuser@example.com')
		self.assertEqual(_user.uid, user.uid)
		self.assertEqual(_user.loginname, user.loginname)
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    202 203 
    		self.assertTrue(ldap.test_user_bind(_user.dn, 'newpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    204 205 206 207 208 209 210 211 212 213 214 215 
    
	@unittest.skip('See #28')
	def test_update_invalid_password(self):
		user = get_user()
		r = self.client.get(path=url_for('user.show', uid=user.uid), follow_redirects=True)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user.uid),
			data={'loginname': 'testuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			'password': 'A'}, follow_redirects=True)
		dump('user_update_password', r)
		self.assertEqual(r.status_code, 200)
		_user = get_user()
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    216 
    		self.assertFalse(ldap.test_user_bind(_user.dn, 'A'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 
    		self.assertEqual(_user.displayname, user.displayname)
		self.assertEqual(_user.mail, user.mail)
		self.assertEqual(_user.loginname, user.loginname)

	def test_update_empty_email(self):
		user = get_user()
		r = self.client.get(path=url_for('user.show', uid=user.uid), follow_redirects=True)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user.uid),
			data={'loginname': 'testuser', 'mail': '', 'displayname': 'New User',
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_update_empty_mail', r)
		self.assertEqual(r.status_code, 200)
		_user = get_user()
		self.assertEqual(_user.displayname, user.displayname)
		self.assertEqual(_user.mail, user.mail)
		self.assertEqual(_user.loginname, user.loginname)
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    234 
    		self.assertFalse(ldap.test_user_bind(_user.dn, 'newpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    235 236 237 238 239 240 241 242 243 244 245 246 247 248 
    
	def test_update_invalid_display_name(self):
		user = get_user()
		r = self.client.get(path=url_for('user.show', uid=user.uid), follow_redirects=True)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user.uid),
			data={'loginname': 'testuser', 'mail': 'newuser@example.com', 'displayname': 'A'*200,
			'password': 'newpassword'}, follow_redirects=True)
		dump('user_update_invalid_display_name', r)
		self.assertEqual(r.status_code, 200)
		_user = get_user()
		self.assertEqual(_user.displayname, user.displayname)
		self.assertEqual(_user.mail, user.mail)
		self.assertEqual(_user.loginname, user.loginname)
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    249 
    		self.assertFalse(ldap.test_user_bind(_user.dn, 'newpassword'))
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    250 251 252 253 254 255 256 257 258 259 260 261 262 263 
    
	def test_show(self):
		r = self.client.get(path=url_for('user.show', uid=get_user().uid), follow_redirects=True)
		dump('user_show', r)
		self.assertEqual(r.status_code, 200)

	def test_delete(self):
		user = get_user()
		r = self.client.get(path=url_for('user.delete', uid=user.uid), follow_redirects=True)
		dump('user_delete', r)
		self.assertEqual(r.status_code, 200)
		self.assertIsNone(get_user())

	def test_csvimport(self):
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    264 265 
    		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    266 
    		db.session.add(role1)
    Julian's avatar
    Implemented db-to-ldap relations  
    Julian committed
    267 
    		role2 = Role(name='role2')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 
    		db.session.add(role2)
		db.session.commit()
		data = f'''\
newuser1,newuser1@example.com,
newuser2,newuser2@example.com,{role1.id}
newuser3,newuser3@example.com,{role1.id};{role2.id}
newuser4,newuser4@example.com,9999
newuser5,newuser5@example.com,notanumber
newuser6,newuser6@example.com,{role1.id};{role2.id};
newuser7,invalidmail,
newuser8,,
,newuser9@example.com,
,,

,,,
newuser10,newuser10@example.com,
newuser11,newuser11@example.com, {role1.id};{role2.id}
newuser12,newuser12@example.com,{role1.id};{role1.id}
<invalid tag-like thingy>'''
		r = self.client.post(path=url_for('user.csvimport'), data={'csv': data}, follow_redirects=True)
		dump('user_csvimport', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    290 
    		user = User.query.get('uid=newuser1,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    291 292 293 294 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser1')
		self.assertEqual(user.displayname, 'newuser1')
		self.assertEqual(user.mail, 'newuser1@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    295 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    296 
    		self.assertEqual(roles, ['base'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    297 
    		user = User.query.get('uid=newuser2,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    298 299 300 301 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser2')
		self.assertEqual(user.displayname, 'newuser2')
		self.assertEqual(user.mail, 'newuser2@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    302 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    303 
    		self.assertEqual(roles, ['base', 'role1'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    304 
    		user = User.query.get('uid=newuser3,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    305 306 307 308 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser3')
		self.assertEqual(user.displayname, 'newuser3')
		self.assertEqual(user.mail, 'newuser3@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    309 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    310 
    		self.assertEqual(roles, ['base', 'role1', 'role2'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    311 
    		user = User.query.get('uid=newuser4,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    312 313 314 315 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser4')
		self.assertEqual(user.displayname, 'newuser4')
		self.assertEqual(user.mail, 'newuser4@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    316 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    317 
    		self.assertEqual(roles, ['base'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    318 
    		user = User.query.get('uid=newuser5,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    319 320 321 322 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser5')
		self.assertEqual(user.displayname, 'newuser5')
		self.assertEqual(user.mail, 'newuser5@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    323 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    324 
    		self.assertEqual(roles, ['base'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    325 
    		user = User.query.get('uid=newuser6,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    326 327 328 329 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser6')
		self.assertEqual(user.displayname, 'newuser6')
		self.assertEqual(user.mail, 'newuser6@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    330 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    331 
    		self.assertEqual(roles, ['base', 'role1', 'role2'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    332 333 334 335 
    		self.assertIsNone(User.query.get('uid=newuser7,ou=users,dc=example,dc=com'))
		self.assertIsNone(User.query.get('uid=newuser8,ou=users,dc=example,dc=com'))
		self.assertIsNone(User.query.get('uid=newuser9,ou=users,dc=example,dc=com'))
		user = User.query.get('uid=newuser10,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    336 337 338 339 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser10')
		self.assertEqual(user.displayname, 'newuser10')
		self.assertEqual(user.mail, 'newuser10@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    340 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    341 
    		self.assertEqual(roles, ['base'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    342 
    		user = User.query.get('uid=newuser11,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    343 344 345 346 347 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser11')
		self.assertEqual(user.displayname, 'newuser11')
		self.assertEqual(user.mail, 'newuser11@example.com')
		# Currently the csv import is not very robust, imho newuser11 should have role1 and role2!
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    348 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    349 350 
    		#self.assertEqual(roles, ['base', 'role1', 'role2'])
		self.assertEqual(roles, ['base', 'role2'])
    Julian's avatar
    Ported uffd code to new ldap mapper  
    Julian committed
    351 
    		user = User.query.get('uid=newuser12,ou=users,dc=example,dc=com')
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    352 353 354 355 
    		self.assertIsNotNone(user)
		self.assertEqual(user.loginname, 'newuser12')
		self.assertEqual(user.displayname, 'newuser12')
		self.assertEqual(user.mail, 'newuser12@example.com')
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    356 
    		roles = sorted([r.name for r in user.roles])
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    357 358 
    		self.assertEqual(roles, ['base', 'role1'])
    Julian's avatar
    Add OpenLDAP support in unit tests  
    Julian committed
    359 360 361 
    class TestUserViewsOL(TestUserViews):
	use_openldap = True
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 
    class TestUserViewsOLUserAsAdmin(TestUserViewsOL):
	use_userconnection = True

class TestUserViewsOLUserAsUser(UffdTestCase):
	use_userconnection = True
	use_openldap = True

	def setUp(self):
		super().setUp()
		self.client.post(path=url_for('session.login'),
			data={'loginname': 'testuser', 'password': 'userpassword'}, follow_redirects=True)

	def test_view_own(self):
		user_ = get_user()
		r = self.client.get(path=url_for('user.show', uid=user_.uid), follow_redirects=True)
		dump('user_view_own', r)
		self.assertEqual(r.status_code, 200)

	def test_view_others(self):
		admin = get_admin()
		r = self.client.get(path=url_for('user.show', uid=admin.uid), follow_redirects=True)
		dump('user_view_others', r)
		self.assertEqual(r.status_code, 200)

	def test_view_index(self):
		r = self.client.get(path=url_for('user.index'), follow_redirects=True)
		dump('user_index', r)
		self.assertEqual(r.status_code, 200)

	def test_update_other_user(self):
		user_ = get_admin()
		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
		db.session.add(role1)
		role2 = Role(name='role2')
		db.session.add(role2)
		role2.members.add(user_)
		db.session.commit()
		role1_id = role1.id
		r = self.client.get(path=url_for('user.show', uid=user_.uid), follow_redirects=True)
		dump('user_update', r)
		self.assertEqual(r.status_code, 200)
		r = self.client.post(path=url_for('user.update', uid=user_.uid),
			data={'loginname': user_.loginname, 'mail': user_.mail, 'displayname': user_.displayname + "12345",
			f'role-{role1_id}': '1', 'password': ''}, follow_redirects=True)
		dump('user_update_submit', r)
		self.assertEqual(r.status_code, 200)
		_user = get_admin()
		self.assertEqual(_user.displayname, user_.displayname)
		self.assertEqual(_user.mail, user_.mail)
		self.assertEqual(_user.uid, user_.uid)
		self.assertEqual(_user.loginname, user_.loginname)

	def test_new(self):
		db.session.add(Role(name='base'))
		role1 = Role(name='role1')
		db.session.add(role1)
		role2 = Role(name='role2')
		db.session.add(role2)
		db.session.commit()
		role1_id = role1.id
		r = self.client.get(path=url_for('user.show'), follow_redirects=True)
		dump('user_new', r)
		self.assertEqual(r.status_code, 200)
		self.assertIsNone(User.query.get('uid=newuser,ou=users,dc=example,dc=com'))
		r = self.client.post(path=url_for('user.update'),
			data={'loginname': 'newuser', 'mail': 'newuser@example.com', 'displayname': 'New User',
			f'role-{role1_id}': '1', 'password': 'newpassword'}, follow_redirects=True)
		dump('user_new_submit', r)
		self.assertEqual(r.status_code, 200)
		user = User.query.get('uid=newuser,ou=users,dc=example,dc=com')
		self.assertIsNone(user)

	def test_delete(self):
		user = get_admin()
		r = self.client.get(path=url_for('user.delete', uid=user.uid), follow_redirects=True)
		dump('user_delete', r)
		self.assertEqual(r.status_code, 200)
		self.assertIsNotNone(get_admin())
    Julian's avatar
    Add a few unit tests as well as integration tests that cover almost all views....
    Julian committed
    443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 
    class TestGroupViews(UffdTestCase):
	def setUp(self):
		super().setUp()
		self.client.post(path=url_for('session.login'),
			data={'loginname': 'testadmin', 'password': 'adminpassword'}, follow_redirects=True)

	def test_index(self):
		r = self.client.get(path=url_for('group.index'), follow_redirects=True)
		dump('group_index', r)
		self.assertEqual(r.status_code, 200)

	def test_show(self):
		r = self.client.get(path=url_for('group.show', gid=20001), follow_redirects=True)
		dump('group_show', r)
		self.assertEqual(r.status_code, 200)
    Julian's avatar
    Add OpenLDAP support in unit tests  
    Julian committed
    459 460 
    class TestGroupViewsOL(TestGroupViews):
	use_openldap = True
    sistason's avatar
    Add user-connection and proper connection teardowns  
    sistason committed
    461 462 463 
    
class TestGroupViewsOLUser(TestGroupViewsOL):
	use_userconnection = True

    Impressum - Datenschutzerklärung