haiwen/seahub
1
0
Fork 0
mirror of https://github.com/haiwen/seahub.git synced 2025-04-28 11:15:58 +00:00
Code Issues Releases Wiki Activity
d3eaf26773
seahub/tests/api/test_repo_user_folder_perm.py

256 lines
9.0 KiB
Python
Raw Normal View History

[api] add repo user/group folder perm api
2016-01-27 01:58:20 +00:00
"""seahub/api2/views.py::Repo api tests.
"""
import json
from tests.common.utils import randstring
from django.core.urlresolvers import reverse
from seaserv import seafile_api
from seahub.test_utils import BaseTestCase
try:
from seahub.settings import LOCAL_PRO_DEV_ENV
except ImportError:
LOCAL_PRO_DEV_ENV = False
class RepoUserFolderPermTest(BaseTestCase):
def setUp(self):
self.user_repo_id = self.repo.id
self.user_folder_path = self.folder
self.perm_r = 'r'
self.perm_rw = 'rw'
self.admin_email = self.admin.email
def tearDown(self):
self.remove_repo()
def test_can_get_folder_perm(self):
if not LOCAL_PRO_DEV_ENV:
return
seafile_api.add_folder_user_perm(self.user_repo_id,
self.user_folder_path, self.perm_r, self.admin_email)
self.login_as(self.user)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
self.assertEqual(200, resp.status_code)
json_resp = json.loads(resp.content)
assert json_resp[0]['user_email'] == self.admin_email
assert json_resp[0]['repo_id'] == self.user_repo_id
assert json_resp[0]['permission'] == self.perm_r
assert json_resp[0]['folder_path'] == self.user_folder_path
def test_can_not_get_if_not_repo_owner(self):
self.login_as(self.admin)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
self.assertEqual(403, resp.status_code)
def test_can_modify_folder_perm(self):
if not LOCAL_PRO_DEV_ENV:
return
seafile_api.add_folder_user_perm(self.user_repo_id,
self.user_folder_path, self.perm_r, self.admin_email)
self.login_as(self.user)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (self.admin_email,
self.user_folder_path, self.perm_rw)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(200, resp.status_code)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
json_resp = json.loads(resp.content)
assert json_resp[0]['permission'] == self.perm_rw
def test_can_not_modify_if_not_repo_owner(self):
self.login_as(self.admin)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (self.admin_email,
self.user_folder_path, self.perm_rw)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(403, resp.status_code)
def test_can_not_modify_if_folder_perm_not_exist(self):
if not LOCAL_PRO_DEV_ENV:
return
self.login_as(self.user)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (self.admin_email,
self.user_folder_path, self.perm_rw)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(404, resp.status_code)
def test_can_add_folder_perm(self):
if not LOCAL_PRO_DEV_ENV:
return
self.login_as(self.user)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": self.admin_email,
"path": self.user_folder_path,
"perm": self.perm_rw
}
resp = self.client.post(url, data)
self.assertEqual(200, resp.status_code)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
json_resp = json.loads(resp.content)
assert json_resp[0]['user_email'] == self.admin_email
assert json_resp[0]['repo_id'] == self.user_repo_id
assert json_resp[0]['permission'] == self.perm_rw
assert json_resp[0]['folder_path'] == self.user_folder_path
def test_can_not_add_if_not_repo_owner(self):
self.login_as(self.admin)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": self.admin_email,
"path": self.user_folder_path,
"perm": self.perm_rw
}
resp = self.client.post(url, data)
self.assertEqual(403, resp.status_code)
def test_can_not_add_if_folder_perm_already_exist(self):
if not LOCAL_PRO_DEV_ENV:
return
seafile_api.add_folder_user_perm(self.user_repo_id,
self.user_folder_path, self.perm_r, self.admin_email)
self.login_as(self.user)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": self.admin_email,
"path": self.user_folder_path,
"perm": self.perm_r
}
resp = self.client.post(url, data)
self.assertEqual(409, resp.status_code)
def test_can_delete_folder_perm(self):
if not LOCAL_PRO_DEV_ENV:
return
seafile_api.add_folder_user_perm(self.user_repo_id,
self.user_folder_path, self.perm_r, self.admin_email)
self.login_as(self.user)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
json_resp = json.loads(resp.content)
assert len(json_resp) == 1
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s' % (self.admin_email, self.user_folder_path)
resp = self.client.delete(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(200, resp.status_code)
resp = self.client.get(reverse("api2-repo-user-folder-perm", args=[self.user_repo_id]))
json_resp = json.loads(resp.content)
assert len(json_resp) == 0
def test_can_not_delete_if_not_repo_owner(self):
self.login_as(self.admin)
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s' % (self.admin_email, self.user_folder_path)
resp = self.client.delete(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(403, resp.status_code)
def test_invalid_path(self):
self.login_as(self.user)
invalid_path = randstring(6)
# test add
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": self.admin_email,
"path": invalid_path,
"perm": self.perm_rw
}
resp = self.client.post(url, data)
self.assertEqual(404, resp.status_code)
# test modify
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (self.admin_email, invalid_path, self.perm_rw)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(404, resp.status_code)
# test delete
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s' % (self.admin_email, invalid_path)
resp = self.client.delete(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(404, resp.status_code)
def test_invalid_user(self):
self.login_as(self.user)
invalid_user = randstring(6) + '@' + randstring(6) + '.com'
# test add
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": invalid_user,
"path": self.user_folder_path,
"perm": self.perm_rw
}
resp = self.client.post(url, data)
self.assertEqual(404, resp.status_code)
# test modify
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (invalid_user, self.user_folder_path, self.perm_rw)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(404, resp.status_code)
# test delete
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s' % (invalid_user, self.user_folder_path)
resp = self.client.delete(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(404, resp.status_code)
def test_invalid_perm(self):
self.login_as(self.user)
update seahub according to new seafile api
2016-01-27 07:52:33 +00:00
invalid_perm = 'a'
[api] add repo user/group folder perm api
2016-01-27 01:58:20 +00:00
# test add
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = {
"user": self.admin_email,
"path": self.user_folder_path,
"perm": invalid_perm
}
resp = self.client.post(url, data)
self.assertEqual(400, resp.status_code)
# test modify
url = reverse("api2-repo-user-folder-perm", args=[self.user_repo_id])
data = 'user=%s&path=%s&perm=%s' % (self.admin_email, self.user_folder_path, invalid_perm)
resp = self.client.put(url, data, 'application/x-www-form-urlencoded')
self.assertEqual(400, resp.status_code)
Reference in New Issue Copy Permalink