def test_get_action_permissions(users, user_action): user_id = users[0].id action_id = user_action.id # by default, only the user who created an action has access to it assert action_permissions.get_action_permissions_for_users( action_id=action_id) == { users[1].id: Permissions.GRANT } assert not action_permissions.action_is_public(action_id) action_permissions.set_action_public(action_id) assert action_permissions.get_action_permissions_for_users( action_id=action_id) == { users[1].id: Permissions.GRANT } assert action_permissions.action_is_public(action_id) sampledb.db.session.add( UserActionPermissions(user_id=user_id, action_id=action_id, permissions=Permissions.WRITE)) sampledb.db.session.commit() assert action_permissions.get_action_permissions_for_users( action_id=action_id) == { user_id: Permissions.WRITE, users[1].id: Permissions.GRANT } assert action_permissions.action_is_public(action_id)
def test_update_action_permissions(users, user_action): user_id = users[0].id action_id = user_action.id assert action_permissions.get_user_action_permissions( user_id=user_id, action_id=action_id) == Permissions.NONE action_permissions.set_user_action_permissions( action_id=action_id, user_id=user_id, permissions=Permissions.WRITE) assert action_permissions.get_user_action_permissions( user_id=user_id, action_id=action_id) == Permissions.WRITE action_permissions.set_user_action_permissions( action_id=action_id, user_id=user_id, permissions=Permissions.READ) assert action_permissions.get_user_action_permissions( user_id=user_id, action_id=action_id) == Permissions.READ action_permissions.set_user_action_permissions( action_id=action_id, user_id=user_id, permissions=Permissions.NONE) assert action_permissions.get_user_action_permissions( user_id=user_id, action_id=action_id) == Permissions.NONE assert action_permissions.get_action_permissions_for_users( action_id=action_id) == { users[1].id: Permissions.GRANT } assert not action_permissions.action_is_public(action_id)
def test_get_action_permissions_with_projects(users, user_action): user_id = users[0].id action_id = user_action.id assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { users[1].id: Permissions.GRANT } project_id = sampledb.logic.projects.create_project("Example Project", "", users[1].id).id action_permissions.set_project_action_permissions(action_id=action_id, project_id=project_id, permissions=Permissions.WRITE) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { users[1].id: Permissions.GRANT } sampledb.logic.projects.add_user_to_project(project_id, user_id, Permissions.READ) assert action_permissions.get_action_permissions_for_users(action_id=action_id, include_projects=False) == { users[1].id: Permissions.GRANT } assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { user_id: Permissions.READ, users[1].id: Permissions.GRANT } group_id = sampledb.logic.groups.create_group("Example Group", "", users[1].id).id sampledb.logic.projects.add_group_to_project(project_id=project_id, group_id=group_id, permissions=Permissions.WRITE) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { user_id: Permissions.READ, users[1].id: Permissions.GRANT } sampledb.logic.groups.add_user_to_group(group_id=group_id, user_id=user_id) assert action_permissions.get_action_permissions_for_users(action_id=action_id, include_groups=False) == { user_id: Permissions.READ, users[1].id: Permissions.GRANT } assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { user_id: Permissions.WRITE, users[1].id: Permissions.GRANT } sampledb.logic.groups.remove_user_from_group(group_id=group_id, user_id=user_id) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { user_id: Permissions.READ, users[1].id: Permissions.GRANT }
def test_group_permissions(users, user_action): user, creator = users action_id = user_action.id group_id = groups.create_group("Example Group", "", creator.id).id assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.NONE action_permissions.set_group_action_permissions(action_id=action_id, group_id=group_id, permissions=Permissions.WRITE) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.NONE groups.add_user_to_group(group_id=group_id, user_id=user.id) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT, user.id: Permissions.WRITE } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.WRITE action_permissions.set_user_action_permissions(action_id=action_id, user_id=user.id, permissions=Permissions.READ) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT, user.id: Permissions.WRITE } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.WRITE action_permissions.set_group_action_permissions(action_id=action_id, group_id=group_id, permissions=Permissions.READ) action_permissions.set_user_action_permissions(action_id=action_id, user_id=user.id, permissions=Permissions.WRITE) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT, user.id: Permissions.WRITE } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.WRITE action_permissions.set_user_action_permissions(action_id=action_id, user_id=user.id, permissions=Permissions.READ) action_permissions.set_group_action_permissions(action_id=action_id, group_id=group_id, permissions=Permissions.GRANT) groups.remove_user_from_group(group_id=group_id, user_id=user.id) assert action_permissions.get_action_permissions_for_users(action_id=action_id) == { creator.id: Permissions.GRANT, user.id: Permissions.READ } assert not action_permissions.action_is_public(action_id) assert action_permissions.get_user_action_permissions(action_id=action_id, user_id=user.id) == Permissions.READ