haiwen/seahub
1
0
Fork 0
mirror of https://github.com/haiwen/seahub.git synced 2025-07-07 04:00:06 +00:00
Code Issues Releases Wiki Activity
94a15a6920
seahub/tests/api/endpoints/test_dir_shared_items.py

821 lines
31 KiB
Python
Raw Normal View History

share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
import os
Add permission check and quota check
2015-07-14 03:01:48 +00:00
import json
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
import pytest
check if is group member when share repo to group
2017-08-11 07:28:48 +00:00
from mock import patch
Add permission check and quota check
2015-07-14 03:01:48 +00:00
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
import seaserv
Add permission check and quota check
2015-07-14 03:01:48 +00:00
from seaserv import seafile_api
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
from tests.common.utils import randstring
Add preview related share perms Squashed commit of the following: commit 12f52311df704e48c282b2a47f59f7a283cfa5c5 Author: zhengxie <xiez1989@gmail.com> Date: Tue Sep 11 15:14:34 2018 +0800 [API] Update client sync and list dir items apis commit bc18d19dc0f648732c5933c6918d8e784fc0f910 Author: llj <lingjun.li1@gmail.com> Date: Tue Sep 4 12:22:10 2018 +0800 Add preview related share perms Squashed commit of the following: commit 658bdbdc7acf262f2c0abb0387cf3142b2d8ee37 Author: llj <lingjun.li1@gmail.com> Date: Tue Sep 4 12:17:47 2018 +0800 [library icon title] added title for 'admin' permission commit 51a088fd7987e2307e5666facb6627d42a7843ec Author: zhengxie <xiez1989@gmail.com> Date: Sat Sep 1 15:33:09 2018 +0800 Add preview related share perms Squashed commit of the following: commit 42fe21ef0ba3bad4fb68dc5283194cb34eb7775a Author: llj <lingjun.li1@gmail.com> Date: Sat Sep 1 13:33:59 2018 +0800 [icon tip] modified library/folder icon title commit 077fecdce80bce966296a1735896a24bf32c282f Author: zhengxie <xiez1989@gmail.com> Date: Mon Aug 27 11:05:34 2018 +0800 Add preview related share perms Squashed commit of the following: commit 5783325eb25d7298ea3db7f59595446d122889e5 Author: llj <lingjun.li1@gmail.com> Date: Fri Aug 24 21:14:59 2018 +0800 fixup commit 5f4f4025221f4026a4e7a9bc1c7bba5d6decf5a9 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 20:55:41 2018 +0800 Fix wopi perm commit 632744cd5e56f8812af0efe523cf5751bbf57b66 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 17:29:31 2018 +0800 Add preview related share perms Squashed commit of the following: commit 683296449601960d76a2d0245dab694ab16f67b2 Author: llj <lingjun.li1@gmail.com> Date: Fri Aug 24 15:54:59 2018 +0800 modification after adding 2 new permissions commit 3eff1ec06fc7566942b736261a1d5b613d706117 Author: llj <lingjun.li1@gmail.com> Date: Thu Aug 23 14:58:33 2018 +0800 [permission] added 2 new permissions for 'share' & 'folder permission' commit 73a0bfc6560860ac11e96a675fe789a984a194c8 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 16:34:47 2018 +0800 Add prevew related perms in history file view and text_diff commit 533b3ff0ca4aa5564ecc87456772b70eedfa816f Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 13:49:28 2018 +0800 Add prevew related perms on file views commit 03db78a841baddf6c042988358d20417f06be4ae Author: zhengxie <xiez1989@gmail.com> Date: Thu Aug 23 10:56:17 2018 +0800 [api2] Update repo perms and add is pro version check commit c025319fe56658da3a3dc077743ee016ac5acd4d Author: ilearnit <helloworld.c@outlook.com> Date: Wed Aug 22 11:09:27 2018 +0800 update perm copy/download/share commit ea19ab4c695c99c0c2817616f2177bebae0777a2 Author: zhengxie <xiez1989@gmail.com> Date: Mon Aug 20 16:00:11 2018 +0800 wip: add repo preview related perms. Updated APIs: 1. [api2] group libraries 2. [api2] dir shared items 3. [api2] share link zip tasks Updated Views: 1. wiki & wopi 2. ajax copy/download files/dirs
2018-09-14 03:21:25 +00:00
from seahub.constants import PERMISSION_PREVIEW, PERMISSION_PREVIEW_EDIT
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
from seahub.test_utils import BaseTestCase, TRAVIS
Add permission check and quota check
2015-07-14 03:01:48 +00:00
class DirSharedItemsTest(BaseTestCase):
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def setUp(self):
self.user_name = self.user.username
self.admin_name = self.admin.username
self.repo_id = self.repo.id
self.folder_path = self.folder
self.group_id = self.group.id
Add permission check and quota check
2015-07-14 03:01:48 +00:00
def tearDown(self):
self.remove_repo()
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.remove_group()
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
if not TRAVIS:
self.remove_org_repo()
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def share_repo_to_user_and_group(self):
# share repo to user
seafile_api.share_repo(self.repo_id,
self.user_name, self.admin_name, 'rw')
# share repo to group
seafile_api.set_group_repo(self.repo_id,
self.group_id, self.user_name, 'rw')
Add permission check and quota check
2015-07-14 03:01:48 +00:00
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
def share_org_repo_to_org_user_and_org_group(self):
seaserv.seafserv_threaded_rpc.org_add_share(self.org.org_id, self.org_repo.repo_id,
self.org_user.username, self.org_admin.username,
'rw')
seafile_api.add_org_group_repo(self.org_repo.repo_id, self.org.org_id,
self.org_group.id, self.org_user.username, 'rw')
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def share_folder_to_user_and_group(self):
# share folder to user
seafile_api.share_subdir_to_user(self.repo_id,
self.folder_path, self.user_name, self.admin_name, 'rw')
# share folder to group
seafile_api.share_subdir_to_group(self.repo_id,
self.folder_path, self.user_name, self.group_id, 'rw')
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
def share_org_folder_to_org_user_and_org_group(self):
seafile_api.org_share_subdir_to_user(self.org.org_id,
self.org_repo.repo_id,
self.org_folder,
self.org_user.username,
self.org_admin.username,
'rw')
seafile_api.org_share_subdir_to_group(self.org.org_id, self.org_repo.repo_id,
self.org_folder, self.org_user.username,
self.org_group.id, 'rw')
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
# test get request
def test_can_list_repo_share_info(self):
self.share_repo_to_user_and_group()
self.login_as(self.user)
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=user,group' % self.repo_id)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp) == 2
def test_can_list_folder_share_info(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user,group' % (
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.repo_id, self.folder))
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp) == 2
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_list_with_invalid_user_permission(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.admin)
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user,group' % (
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.repo_id, self.folder))
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.assertEqual(403, resp.status_code)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_list_without_share_type_arg(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s' % (
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.repo_id, self.folder))
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp) == 2
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
# test put request
def test_can_share_repo_to_users(self):
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.put(
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
'/api2/repos/%s/dir/shared_items/?p=/' % self.repo_id,
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
"share_type=user&username=%s" % self.admin.email,
Add permission check and quota check
2015-07-14 03:01:48 +00:00
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
assert len(json_resp['success']) == 1
Add permission check and quota check
2015-07-14 03:01:48 +00:00
assert json_resp['success'][0]['permission'] == 'r'
update dir share item api test test share failed when share the same item to the same user/group
2017-04-25 08:12:56 +00:00
# test share failed when share the same item to the same user
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % self.repo_id,
"share_type=user&username=%s" % self.admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_share_repo_to_org_users(self):
self.login_as(self.org_user)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % self.org_repo.id,
"share_type=user&username=%s" % self.org_admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 1
assert json_resp['success'][0]['permission'] == 'r'
# test share failed when share the same item to the same user
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % self.org_repo.id,
"share_type=user&username=%s" % self.org_admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_share_folder_to_users(self):
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
self.login_as(self.user)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
"share_type=user&username=%s" % self.admin.email,
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
assert len(json_resp['success']) == 1
assert json_resp['success'][0]['permission'] == 'r'
[api2] Fix create dir shared item bug
2015-12-04 08:17:13 +00:00
update dir share item api test test share failed when share the same item to the same user/group
2017-04-25 08:12:56 +00:00
# test share failed when share the same item to the same user
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
"share_type=user&username=%s" % self.admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_share_folder_to_org_users(self):
self.login_as(self.org_user)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.org_repo.id,
self.org_folder),
"share_type=user&username=%s" % self.org_admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 1
assert json_resp['success'][0]['permission'] == 'r'
# test share failed when share the same item to the same user
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.org_repo.id,
self.org_folder),
"share_type=user&username=%s" % self.org_admin.email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_share_repo_to_groups(self):
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
grp1 = self.group
grp2 = self.create_group(group_name="test-grp2",
username=self.user.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.repo.id),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 2
assert json_resp['success'][0]['permission'] == 'rw'
update dir share item api test test share failed when share the same item to the same user/group
2017-04-25 08:12:56 +00:00
# test share failed when share the same item to the same group
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.repo.id),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
[test] Update tests
2018-12-06 07:53:27 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
Add preview related share perms Squashed commit of the following: commit 12f52311df704e48c282b2a47f59f7a283cfa5c5 Author: zhengxie <xiez1989@gmail.com> Date: Tue Sep 11 15:14:34 2018 +0800 [API] Update client sync and list dir items apis commit bc18d19dc0f648732c5933c6918d8e784fc0f910 Author: llj <lingjun.li1@gmail.com> Date: Tue Sep 4 12:22:10 2018 +0800 Add preview related share perms Squashed commit of the following: commit 658bdbdc7acf262f2c0abb0387cf3142b2d8ee37 Author: llj <lingjun.li1@gmail.com> Date: Tue Sep 4 12:17:47 2018 +0800 [library icon title] added title for 'admin' permission commit 51a088fd7987e2307e5666facb6627d42a7843ec Author: zhengxie <xiez1989@gmail.com> Date: Sat Sep 1 15:33:09 2018 +0800 Add preview related share perms Squashed commit of the following: commit 42fe21ef0ba3bad4fb68dc5283194cb34eb7775a Author: llj <lingjun.li1@gmail.com> Date: Sat Sep 1 13:33:59 2018 +0800 [icon tip] modified library/folder icon title commit 077fecdce80bce966296a1735896a24bf32c282f Author: zhengxie <xiez1989@gmail.com> Date: Mon Aug 27 11:05:34 2018 +0800 Add preview related share perms Squashed commit of the following: commit 5783325eb25d7298ea3db7f59595446d122889e5 Author: llj <lingjun.li1@gmail.com> Date: Fri Aug 24 21:14:59 2018 +0800 fixup commit 5f4f4025221f4026a4e7a9bc1c7bba5d6decf5a9 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 20:55:41 2018 +0800 Fix wopi perm commit 632744cd5e56f8812af0efe523cf5751bbf57b66 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 17:29:31 2018 +0800 Add preview related share perms Squashed commit of the following: commit 683296449601960d76a2d0245dab694ab16f67b2 Author: llj <lingjun.li1@gmail.com> Date: Fri Aug 24 15:54:59 2018 +0800 modification after adding 2 new permissions commit 3eff1ec06fc7566942b736261a1d5b613d706117 Author: llj <lingjun.li1@gmail.com> Date: Thu Aug 23 14:58:33 2018 +0800 [permission] added 2 new permissions for 'share' & 'folder permission' commit 73a0bfc6560860ac11e96a675fe789a984a194c8 Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 16:34:47 2018 +0800 Add prevew related perms in history file view and text_diff commit 533b3ff0ca4aa5564ecc87456772b70eedfa816f Author: zhengxie <xiez1989@gmail.com> Date: Fri Aug 24 13:49:28 2018 +0800 Add prevew related perms on file views commit 03db78a841baddf6c042988358d20417f06be4ae Author: zhengxie <xiez1989@gmail.com> Date: Thu Aug 23 10:56:17 2018 +0800 [api2] Update repo perms and add is pro version check commit c025319fe56658da3a3dc077743ee016ac5acd4d Author: ilearnit <helloworld.c@outlook.com> Date: Wed Aug 22 11:09:27 2018 +0800 update perm copy/download/share commit ea19ab4c695c99c0c2817616f2177bebae0777a2 Author: zhengxie <xiez1989@gmail.com> Date: Mon Aug 20 16:00:11 2018 +0800 wip: add repo preview related perms. Updated APIs: 1. [api2] group libraries 2. [api2] dir shared items 3. [api2] share link zip tasks Updated Views: 1. wiki & wopi 2. ajax copy/download files/dirs
2018-09-14 03:21:25 +00:00
def test_can_share_repo_to_groups_with_perms(self):
self.login_as(self.user)
grp1 = self.group
grp2 = self.create_group(group_name="test-grp2",
username=self.user.username)
for g, perm in [(grp1, PERMISSION_PREVIEW), (grp2, PERMISSION_PREVIEW_EDIT)]:
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.repo.id),
"share_type=group&&group_id=%d&permission=%s" % (g.id, perm),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 1
assert json_resp['success'][0]['permission'] == perm
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_share_repo_to_org_groups(self):
self.login_as(self.org_user)
grp1 = self.org_group
grp2 = self.create_org_group(group_name='test-org-grp2',
username=self.org_user.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.org_repo.id),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 2
assert json_resp['success'][0]['permission'] == 'rw'
# test share failed when share the same item to the same group
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.org_repo.id),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
Add permission check and quota check
2015-07-14 03:01:48 +00:00
def test_can_share_folder_to_groups(self):
self.login_as(self.user)
grp1 = self.group
grp2 = self.create_group(group_name="test-grp2",
username=self.user.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 2
assert json_resp['success'][0]['permission'] == 'rw'
update dir share item api test test share failed when share the same item to the same user/group
2017-04-25 08:12:56 +00:00
# test share failed when share the same item to the same group
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert 'has been shared to' in json_resp['failed'][0]['error_msg']
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_share_folder_to_org_groups(self):
self.login_as(self.org_user)
grp1 = self.org_group
grp2 = self.create_org_group(group_name="test-org-grp2",
username=self.org_user.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.org_repo.id,
self.org_folder),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['success']) == 2
assert json_resp['success'][0]['permission'] == 'rw'
# test share failed when share the same item to the same group
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.org_repo.id,
self.org_folder),
"share_type=group&group_id=%d&group_id=%d&permission=rw" % (grp1.id, grp2.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
check if is group member when share repo to group
2017-08-11 07:28:48 +00:00
def test_share_to_group_if_not_group_member(self):
self.login_as(self.user)
grp = self.create_group(group_name="test-grp2",
username=self.admin.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.repo.id),
"share_type=group&group_id=%d&permission=rw" % (grp.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['failed']) == 1
assert len(json_resp['success']) == 0
assert json_resp['failed'][0]['error_msg'] == 'Permission denied.'
@patch('seahub.api2.endpoints.dir_shared_items.config')
def test_share_to_group_if_not_group_member_2(self, mock_settings):
mock_settings.ENABLE_SHARE_TO_ALL_GROUPS.return_value = True
self.login_as(self.user)
grp = self.create_group(group_name="test-grp2",
username=self.admin.username)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % (self.repo.id),
"share_type=group&group_id=%d&permission=rw" % (grp.id),
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['failed']) == 0
assert len(json_resp['success']) == 1
assert json_resp['success'][0]['group_info']['id'] == grp.id
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_share_with_invalid_email(self):
self.login_as(self.user)
invalid_email = '%s' % randstring(6)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
"share_type=user&username=%s" % invalid_email,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['failed']) == 1
assert invalid_email in json_resp['failed'][0]['email']
def test_share_with_unregistered_user(self):
self.login_as(self.user)
unregistered_user = '%s@%s.com' % (randstring(6), randstring(6))
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=%s' % (self.repo.id,
self.folder),
"share_type=user&username=%s" % unregistered_user,
'application/x-www-form-urlencoded',
)
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert len(json_resp['failed']) == 1
assert unregistered_user in json_resp['failed'][0]['email']
def test_share_with_invalid_ownership(self):
self.share_repo_to_user_and_group()
# admin can visit user sub-folder with 'rw' permission
assert seafile_api.check_permission_by_path(self.repo.id,
'/', self.admin.username) == 'rw'
self.login_as(self.admin)
resp = self.client.put(
'/api2/repos/%s/dir/shared_items/?p=/' % self.repo.id,
"share_type=user&username=%s" % self.admin.username,
'application/x-www-form-urlencoded',
)
self.assertEqual(403, resp.status_code)
# test post request
def test_can_modify_user_repo_share_perm(self):
self.share_repo_to_user_and_group()
self.login_as(self.user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.repo.id,
self.admin.username), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=user' % self.repo_id)
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_modify_org_user_repo_share_perm(self):
self.share_org_repo_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.org_repo.id,
self.org_admin.username), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=user' % self.org_repo.repo_id)
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_modify_user_folder_share_perm(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
self.admin.username), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user' % (
self.repo.id,
self.folder))
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_modify_org_user_folder_share_perm(self):
self.share_org_folder_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.org_repo.id,
self.org_folder,
self.org_admin.username), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user' % (
self.org_repo.id,
self.org_folder))
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_modify_group_repo_share_perm(self):
self.share_repo_to_user_and_group()
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
self.login_as(self.user)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=/&share_type=group&group_id=%d' % (
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
self.repo.id,
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.group.id), {
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
'permission': 'r'
}
)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=group' % self.repo_id)
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_modify_org_group_repo_share_perm(self):
self.share_org_repo_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=/&share_type=group&group_id=%d' % (
self.org_repo.id,
self.org_group.id), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=group' % self.org_repo.id)
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_modify_group_folder_share_perm(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group&group_id=%d' % (
self.repo.id,
self.folder,
self.group.id), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group' %
(self.repo_id, self.folder))
Add permission check and quota check
2015-07-14 03:01:48 +00:00
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_modify_org_group_folder_share_perm(self):
self.share_org_folder_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group&group_id=%d' % (
self.org_repo.id,
self.org_folder,
self.org_group.id), {
'permission': 'r'
}
)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group' %
(self.org_repo.id, self.org_folder))
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == 'r'
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_modify_with_invalid_email(self):
self.share_folder_to_user_and_group()
self.login_as(self.user)
invalid_email = '%s' % randstring(6)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
invalid_email), {
'permission': 'r'
}
)
self.assertEqual(400, resp.status_code)
def test_modify_with_unregistered_user(self):
self.share_folder_to_user_and_group()
self.login_as(self.user)
unregistered_user = '%s@%s.com' % (randstring(6), randstring(6))
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
unregistered_user), {
'permission': 'r'
}
)
self.assertEqual(400, resp.status_code)
def test_modify_with_invalid_ownership(self):
self.share_repo_to_user_and_group()
# admin can visit user sub-folder with 'rw' permission
assert seafile_api.check_permission_by_path(self.repo.id,
'/', self.admin.username) == 'rw'
self.login_as(self.admin)
resp = self.client.post('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.repo.id,
self.admin.username), {
'permission': 'r'
}
)
self.assertEqual(403, resp.status_code)
# test delete request
Add permission check and quota check
2015-07-14 03:01:48 +00:00
def test_can_unshare_repo_to_user(self):
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.share_repo_to_user_and_group()
self.login_as(self.user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.repo.id, self.admin.username))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=user' % self.repo_id)
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_unshare_org_repo_to_org_user(self):
self.share_org_repo_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.org_repo.id, self.org_admin.username))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=user' % self.org_repo.id)
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_unshare_folder_to_user(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
self.admin.username
))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user' % (
self.repo.id,
self.folder))
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_unshare_org_folder_to_org_user(self):
self.share_org_folder_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.org_repo.id,
self.org_folder,
self.org_admin.username
))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user' % (
self.org_repo.id,
self.org_folder))
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_unshare_repo_to_group(self):
self.share_repo_to_user_and_group()
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
self.login_as(self.user)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=/&share_type=group&group_id=%d' % (
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
self.repo.id,
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.group.id
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
))
[test] Update dir_shared_items
2016-06-13 02:50:26 +00:00
self.assertEqual(200, resp.status_code)
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
[api] update share dir item api 1. update perm check when share repo/dir 2. check if user registered when share repo/dir
2015-12-09 07:10:40 +00:00
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=group' % self.repo.id)
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_unshare_org_repo_to_org_group(self):
self.share_org_repo_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=/&share_type=group&group_id=%d' % (
self.org_repo.id,
self.org_group.id
))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=/&share_type=group' % self.org_repo.id)
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_can_unshare_folder_to_group(self):
self.share_folder_to_user_and_group()
Add permission check and quota check
2015-07-14 03:01:48 +00:00
self.login_as(self.user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group&group_id=%d' % (
self.repo.id,
self.folder,
self.group.id
))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group' % (
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
self.repo.id, self.folder))
Add permission check and quota check
2015-07-14 03:01:48 +00:00
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
share permission refactor (#1843) * rebuild * share admin * use seafile_api * rebase 6.2 * complete test * api changed * some error * break up to two method * review * js review
2017-11-01 10:13:51 +00:00
@pytest.mark.skipif(TRAVIS, reason="") # pylint: disable=E1101
def test_can_unshare_org_folder_to_org_group(self):
self.share_org_folder_to_org_user_and_org_group()
self.login_as(self.org_user)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group&group_id=%d' % (
self.org_repo.id,
self.org_folder,
self.org_group.id
))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp['success'] is True
resp = self.client.get('/api2/repos/%s/dir/shared_items/?p=%s&share_type=group' % (
self.org_repo.id, self.org_folder))
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
[api] rm virtual repo related code (#1279)
2016-07-13 09:34:16 +00:00
def test_unshare_with_invalid_email(self):
self.share_folder_to_user_and_group()
self.login_as(self.user)
invalid_email = '%s' % randstring(6)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
invalid_email
))
self.assertEqual(400, resp.status_code)
def test_unshare_with_unregistered_user(self):
self.share_folder_to_user_and_group()
self.login_as(self.user)
unregistered_user = '%s@%s.com' % (randstring(6), randstring(6))
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=%s&share_type=user&username=%s' % (
self.repo.id,
self.folder,
unregistered_user
))
self.assertEqual(200, resp.status_code)
def test_unshare_with_invalid_ownership(self):
self.share_repo_to_user_and_group()
# admin can visit user sub-folder with 'rw' permission
assert seafile_api.check_permission_by_path(self.repo.id,
'/', self.admin.username) == 'rw'
self.login_as(self.admin)
resp = self.client.delete('/api2/repos/%s/dir/shared_items/?p=/&share_type=user&username=%s' % (
self.repo.id,
self.admin.username
))
self.assertEqual(403, resp.status_code)
Reference in New Issue Copy Permalink