mirror of
https://github.com/haiwen/seahub.git
synced 2025-09-16 07:08:55 +00:00
sysadmin can share repo with admin permission
This commit is contained in:
zming
@@ -5,6 +5,7 @@ from django.core.urlresolvers import reverse
|
||||
from seaserv import seafile_api
|
||||
|
||||
from seahub.test_utils import BaseTestCase
|
||||
from seahub.share.models import ExtraSharePermission
|
||||
|
||||
class Shares(BaseTestCase):
|
||||
|
||||
@@ -41,6 +42,23 @@ class Shares(BaseTestCase):
|
||||
assert json_resp[0]['user_email'] == self.admin_name
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
|
||||
def test_can_get_user_shared_with_admin(self):
|
||||
|
||||
self.share_repo_to_admin_with_admin_permission()
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
resp = self.client.get(self.url + self.para + '&share_type=user')
|
||||
json_resp = json.loads(resp.content)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
assert json_resp[0]['repo_id'] == self.repo_id
|
||||
assert json_resp[0]['path'] == '/'
|
||||
assert json_resp[0]['share_type'] == 'user'
|
||||
assert json_resp[0]['user_email'] == self.admin_name
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
assert json_resp[0]['is_admin'] == True
|
||||
|
||||
def test_can_get_group_shared(self):
|
||||
|
||||
self.share_repo_to_group_with_rw_permission()
|
||||
@@ -57,6 +75,23 @@ class Shares(BaseTestCase):
|
||||
assert json_resp[0]['group_id'] == self.group_id
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
|
||||
def test_can_get_group_shared_with_admin(self):
|
||||
|
||||
self.share_repo_to_group_with_admin_permission()
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
resp = self.client.get(self.url + self.para + '&share_type=group')
|
||||
json_resp = json.loads(resp.content)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
assert json_resp[0]['repo_id'] == self.repo_id
|
||||
assert json_resp[0]['path'] == '/'
|
||||
assert json_resp[0]['share_type'] == 'group'
|
||||
assert json_resp[0]['group_id'] == self.group_id
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
assert json_resp[0]['is_admin'] == True
|
||||
|
||||
def test_get_with_invalid_permission(self):
|
||||
|
||||
self.login_as(self.user)
|
||||
@@ -85,6 +120,28 @@ class Shares(BaseTestCase):
|
||||
assert json_resp['success'][0]['user_email'] == self.tmp_user_email
|
||||
assert json_resp['success'][0]['permission'] == permission
|
||||
|
||||
def test_share_repo_to_user_with_admin_permission(self):
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
invalid_email = 'invalid@email.com'
|
||||
permission = 'admin'
|
||||
|
||||
data = {
|
||||
'repo_id': self.repo_id,
|
||||
'share_type': 'user',
|
||||
'permission': permission,
|
||||
'share_to': [invalid_email, self.tmp_user_email]
|
||||
}
|
||||
resp = self.client.post(self.url, data)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
json_resp = json.loads(resp.content)
|
||||
assert json_resp['failed'][0]['user_email'] == invalid_email
|
||||
assert json_resp['success'][0]['user_email'] == self.tmp_user_email
|
||||
assert json_resp['success'][0]['permission'] == 'rw'
|
||||
assert json_resp['success'][0]['is_admin'] == True
|
||||
|
||||
def test_share_repo_to_group(self):
|
||||
|
||||
self.login_as(self.admin)
|
||||
@@ -106,6 +163,28 @@ class Shares(BaseTestCase):
|
||||
assert json_resp['success'][0]['group_id'] == self.group_id
|
||||
assert json_resp['success'][0]['permission'] == permission
|
||||
|
||||
def test_share_repo_to_group_with_admin_permission(self):
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
invalid_group_id = 'invalid_group_id'
|
||||
permission = 'admin'
|
||||
|
||||
data = {
|
||||
'repo_id': self.repo_id,
|
||||
'share_type': 'group',
|
||||
'permission': permission,
|
||||
'share_to': [invalid_group_id, self.group_id]
|
||||
}
|
||||
resp = self.client.post(self.url, data)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
json_resp = json.loads(resp.content)
|
||||
assert json_resp['failed'][0]['group_id'] == invalid_group_id
|
||||
assert json_resp['success'][0]['group_id'] == self.group_id
|
||||
assert json_resp['success'][0]['permission'] == 'rw'
|
||||
assert json_resp['success'][0]['is_admin'] == True
|
||||
|
||||
def test_share_repo_with_invalid_user_permission(self):
|
||||
|
||||
self.login_as(self.user)
|
||||
@@ -143,6 +222,29 @@ class Shares(BaseTestCase):
|
||||
assert seafile_api.check_permission_by_path(self.repo_id, \
|
||||
'/', self.tmp_user_email) == modified_perm
|
||||
|
||||
def test_modify_repo_user_share_permission_to_admin(self):
|
||||
|
||||
# user share repo to tmp user
|
||||
init_permission = 'rw'
|
||||
seafile_api.share_repo(self.repo_id,
|
||||
self.user_name, self.tmp_user_email, init_permission)
|
||||
|
||||
assert seafile_api.check_permission_by_path(self.repo_id, \
|
||||
'/', self.tmp_user_email) == init_permission
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
modified_perm = 'admin'
|
||||
data = 'repo_id=%s&share_type=%s&permission=%s&share_to=%s' % \
|
||||
(self.repo_id, 'user', modified_perm, self.tmp_user_email)
|
||||
resp = self.client.put(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
json_resp = json.loads(resp.content)
|
||||
assert json_resp['permission'] == 'rw'
|
||||
assert json_resp['is_admin'] == True
|
||||
assert json_resp['user_email'] == self.tmp_user_email
|
||||
|
||||
def test_modify_repo_group_share_permission(self):
|
||||
|
||||
# user share repo to tmp user
|
||||
@@ -176,6 +278,34 @@ class Shares(BaseTestCase):
|
||||
|
||||
assert permission == modified_perm
|
||||
|
||||
def test_modify_repo_group_share_permission_to_admin(self):
|
||||
|
||||
# user share repo to tmp user
|
||||
self.share_repo_to_group_with_rw_permission()
|
||||
|
||||
shared_groups = seafile_api.list_repo_shared_group(
|
||||
self.user_name, self.repo_id)
|
||||
|
||||
for e in shared_groups:
|
||||
if e.group_id == self.group_id:
|
||||
permission = e.perm
|
||||
break
|
||||
|
||||
assert permission == 'rw'
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
modified_perm = 'admin'
|
||||
data = 'repo_id=%s&share_type=%s&permission=%s&share_to=%s' % \
|
||||
(self.repo_id, 'group', modified_perm, self.group_id)
|
||||
resp = self.client.put(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
json_resp = json.loads(resp.content)
|
||||
assert json_resp['permission'] == 'rw'
|
||||
assert json_resp['is_admin'] == True
|
||||
assert json_resp['group_id'] == self.group_id
|
||||
|
||||
def test_modify_with_invalid_user_permission(self):
|
||||
self.login_as(self.user)
|
||||
|
||||
@@ -202,6 +332,44 @@ class Shares(BaseTestCase):
|
||||
assert seafile_api.check_permission_by_path(self.repo_id, \
|
||||
'/', self.tmp_user_email) is None
|
||||
|
||||
def test_delete_repo_user_share_admin_permission(self):
|
||||
|
||||
# user share repo to tmp user
|
||||
init_permission = 'rw'
|
||||
seafile_api.share_repo(self.repo_id,
|
||||
self.user_name, self.tmp_user_email, init_permission)
|
||||
|
||||
ExtraSharePermission.objects.create_share_permission(self.repo.id, self.tmp_user_email, 'admin')
|
||||
|
||||
assert seafile_api.check_permission_by_path(self.repo_id, \
|
||||
'/', self.tmp_user_email) == init_permission
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
resp = self.client.get(self.url + self.para + '&share_type=user')
|
||||
json_resp = json.loads(resp.content)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
assert json_resp[0]['repo_id'] == self.repo_id
|
||||
assert json_resp[0]['path'] == '/'
|
||||
assert json_resp[0]['share_type'] == 'user'
|
||||
assert json_resp[0]['user_email'] == self.tmp_user_email
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
assert json_resp[0]['is_admin'] == True
|
||||
|
||||
data = 'repo_id=%s&share_type=%s&share_to=%s' % \
|
||||
(self.repo_id, 'user', self.tmp_user_email)
|
||||
resp = self.client.delete(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
assert seafile_api.check_permission_by_path(self.repo_id, \
|
||||
'/', self.tmp_user_email) is None
|
||||
|
||||
resp = self.client.get(self.url + self.para + '&share_type=user')
|
||||
json_resp = json.loads(resp.content)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
assert not json_resp
|
||||
|
||||
def test_delete_repo_group_share_permission(self):
|
||||
|
||||
self.share_repo_to_group_with_rw_permission()
|
||||
@@ -218,7 +386,38 @@ class Shares(BaseTestCase):
|
||||
self.login_as(self.admin)
|
||||
|
||||
data = 'repo_id=%s&share_type=%s&share_to=%s' % \
|
||||
(self.repo_id, 'user', self.tmp_user_email)
|
||||
(self.repo_id, 'group', self.group_id)
|
||||
resp = self.client.delete(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
def test_delete_repo_group_share_admin_permission(self):
|
||||
|
||||
self.share_repo_to_group_with_admin_permission()
|
||||
|
||||
shared_groups = seafile_api.list_repo_shared_group(
|
||||
self.user_name, self.repo_id)
|
||||
for e in shared_groups:
|
||||
if e.group_id == self.group_id:
|
||||
permission = e.perm
|
||||
break
|
||||
|
||||
assert permission == 'rw'
|
||||
|
||||
self.login_as(self.admin)
|
||||
|
||||
resp = self.client.get(self.url + self.para + '&share_type=group')
|
||||
json_resp = json.loads(resp.content)
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
assert json_resp[0]['repo_id'] == self.repo_id
|
||||
assert json_resp[0]['path'] == '/'
|
||||
assert json_resp[0]['share_type'] == 'group'
|
||||
assert json_resp[0]['group_id'] == self.group_id
|
||||
assert json_resp[0]['permission'] == 'rw'
|
||||
assert json_resp[0]['is_admin'] == True
|
||||
|
||||
data = 'repo_id=%s&share_type=%s&share_to=%s' % \
|
||||
(self.repo_id, 'group', self.group_id)
|
||||
resp = self.client.delete(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(200, resp.status_code)
|
||||
|
||||
@@ -227,3 +426,21 @@ class Shares(BaseTestCase):
|
||||
self.login_as(self.user)
|
||||
resp = self.client.delete(self.url, {}, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(403, resp.status_code)
|
||||
|
||||
def test_delete_with_unshared_group(self):
|
||||
|
||||
self.login_as(self.admin)
|
||||
data = 'repo_id=%s&share_type=%s&share_to=%s' % \
|
||||
(self.repo_id, 'group', self.group_id)
|
||||
resp = self.client.delete(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(404, resp.status_code)
|
||||
|
||||
|
||||
def test_delete_with_unshared_user(self):
|
||||
|
||||
self.login_as(self.admin)
|
||||
data = 'repo_id=%s&share_type=%s&share_to=%s' % \
|
||||
(self.repo_id, 'user', self.tmp_user_email)
|
||||
resp = self.client.delete(self.url, data, 'application/x-www-form-urlencoded')
|
||||
self.assertEqual(404, resp.status_code)
|
||||
|
||||
|
||||
Reference in New Issue
Block a user