def test_permission_hash_after_modification(self):
revoke_permission(self.user, 'permission3')
perm_hash = available_perm_status(self.user)
self.assertFalse(perm_hash['permission3'])
self.assertFalse(perm_hash['permission4'])
def test_permission_hash_after_modification(self):
revoke_permission(self.user, 'permission3')
perm_hash = available_perm_status(self.user)
self.assertFalse(perm_hash['permission3'])
self.assertFalse(perm_hash['permission4'])
def revoke(request):
if request.method == 'GET':
name = request.GET.get('name')
permission = request.GET.get('permission')
revoke_permission(User.objects.get(username=name), permission)
return HttpResponseRedirect('/home')
else:
return HttpResponseForbidden()
def revoke_all(request):
if request.method == 'GET':
role = request.GET.get('role')
permission = request.GET.get('permission')
All = User.objects.all()
for each in All:
if (has_role(each, role) and not each.is_superuser):
revoke_permission(each, permission)
return HttpResponseRedirect('/home')
else:
return HttpResponseForbidden()
def test_request_mass_rename_by_logged_staff_no_perm_client(self):
user = self.create_test_user(is_staff=True)
clear_roles(user)
assign_role(user, 'janitor')
revoke_permission(user, 'mass_rename')
self.assertFalse(has_permission(user, 'mass_rename'))
c = Client()
logged_in = c.login(username='******', password='******')
response = c.get('/staff_page/mass_rename')
self.assertEqual(302, response.status_code)
def test_remove_role_reinstates_permissions_correctly_scenario_4(self):
"""
Initial Roles:
Doctor
Surgeon
Actions:
Revoke permission: enter_surgery_room
Remove role: Doctor
Expected resulting permission:
enter_surgery_room = False
operate = True
"""
assign_role(self.user, self.Doctor)
assign_role(self.user, self.Surgeon)
revoke_permission(self.user, self.enter_surgery_room)
remove_role(self.user, self.Doctor)
self.assertFalse(has_permission(self.user, self.enter_surgery_room))
self.assertTrue(has_permission(self.user, self.operate))
def test_remove_role_reinstates_permissions_correctly_scenario_4(self):
"""
Initial Roles:
Doctor
Surgeon
Actions:
Revoke permission: enter_surgery_room
Remove role: Doctor
Expected resulting permission:
enter_surgery_room = False
operate = True
"""
assign_role(self.user, self.Doctor)
assign_role(self.user, self.Surgeon)
revoke_permission(self.user, self.enter_surgery_room)
remove_role(self.user, self.Doctor)
self.assertFalse(has_permission(self.user, self.enter_surgery_room))
self.assertTrue(has_permission(self.user, self.operate))
def test_permission_names_after_modification(self):
revoke_permission(self.user, 'permission3')
self.assert_available_perm_names_equals_available_perm_status()
def test_permission_names_after_modification(self):
revoke_permission(self.user, 'permission3')
self.assert_available_perm_names_equals_available_perm_status()
def test_revoke_revoked_permission(self):
user = self.user
revoke_permission(user, 'permission4')
self.assertFalse(has_permission(user, 'permission4'))
def test_not_allowed_permission_multiple_roles(self):
user = self.user
ShoRole3.assign_role_to_user(self.user)
with self.assertRaises(RolePermissionScopeException):
revoke_permission(user, 'permission1')
def test_not_allowed_permission(self):
user = self.user
with self.assertRaises(RolePermissionScopeException):
revoke_permission(user, 'permission1')
def test_revoke_revoked_permission(self):
user = self.user
revoke_permission(user, 'permission4')
self.assertFalse(has_permission(user, 'permission4'))
def test_not_allowed_permission(self):
user = self.user
with self.assertRaises(RolePermissionScopeException):
revoke_permission(user, 'permission1')
def test_not_allowed_permission_multiple_roles(self):
user = self.user
ShoRole3.assign_role_to_user(self.user)
with self.assertRaises(RolePermissionScopeException):
revoke_permission(user, 'permission1')
def revoke(name, perm):
revoke_permission(User.objects.get(username=name), perm)
def revoke_all(role, perm):
All = User.objects.all()
for each in All:
if (has_role(each, role) and not each.is_superuser):
revoke_permission(each, perm)
