Exemple #1
0
    def test_org_permission_required(self):
        view_func = Mock(return_value='success')
        request = self.mk_request('get', '/')
        user = self.mk_user()
        request.user = user

        # test login redirect
        wrapped_view_func = org_permission_required(
            perm='organizations.change_organization',
            login_url='/login/')(view_func)
        response = wrapped_view_func(request)
        self.assertEqual(response.status_code, 302)
        self.assertEqual(response.url, '/login/?next=http%3A//testserver/')

        # test that we can pass a list of perms
        wrapped_view_func = org_permission_required(
            perm=[
                'organizations.change_organization',
                'organizations.add_organization'
            ],
            raise_exception=True)(view_func)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        # test exception is raised
        wrapped_view_func = org_permission_required(
            perm='organizations.change_organization',
            raise_exception=True)(view_func)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        self.grant_perms(user, 'organizations.change_organization')
        User = get_user_model()
        request.user = User.objects.get(id=user.pk)
        self.assertEqual(wrapped_view_func(request), 'success')

        self.revoke_perms(user, 'organizations.change_organization')
        request.user = User.objects.get(id=user.pk)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        organization = self.mk_organization(users=[user])
        self.assertEqual(wrapped_view_func(request), 'success')

        request.session[ORGANIZATION_SESSION_KEY] = organization.pk
        self.assertEqual(wrapped_view_func(request), 'success')

        organization.organizationuserrelation_set.filter(user=user).update(
            is_admin=False)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)
Exemple #2
0
    def test_org_permission_required(self):
        view_func = Mock(return_value='success')
        request = self.mk_request('get', '/')
        user = self.mk_user()
        request.user = user

        # test login redirect
        wrapped_view_func = org_permission_required(
            perm='organizations.change_organization',
            login_url='/login/')(view_func)
        response = wrapped_view_func(request)
        self.assertEqual(response.status_code, 302)
        self.assertEqual(response.url, '/login/?next=http%3A//testserver/')

        # test that we can pass a list of perms
        wrapped_view_func = org_permission_required(
            perm=['organizations.change_organization',
                  'organizations.add_organization'],
            raise_exception=True)(view_func)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        # test exception is raised
        wrapped_view_func = org_permission_required(
            perm='organizations.change_organization',
            raise_exception=True)(view_func)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        self.grant_perms(user, 'organizations.change_organization')
        User = get_user_model()
        request.user = User.objects.get(id=user.pk)
        self.assertEqual(wrapped_view_func(request), 'success')

        self.revoke_perms(user, 'organizations.change_organization')
        request.user = User.objects.get(id=user.pk)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)

        organization = self.mk_organization(users=[user])
        self.assertEqual(wrapped_view_func(request), 'success')

        request.session[ORGANIZATION_SESSION_KEY] = organization.pk
        self.assertEqual(wrapped_view_func(request), 'success')

        organization.organizationuserrelation_set.filter(
            user=user).update(is_admin=False)
        self.assertRaises(PermissionDenied, wrapped_view_func, request)
Exemple #3
0
    def as_view(cls):
        view = super(ControllerViewMixin, cls).as_view()

        if cls.social_auth:
            view = user_passes_test(
                lambda u: u.social_auth.filter(
                    provider=cls.social_auth).exists(),
                login_url=reverse_lazy(
                    'social:begin', args=(cls.social_auth,)))(view)

        if cls.permissions:
            view = org_permission_required(cls.permissions)(view)

        return login_required(view)
Exemple #4
0
    def as_view(cls):
        view = super(ControllerViewMixin, cls).as_view()

        if cls.social_auth:
            view = user_passes_test(lambda u: u.social_auth.filter(
                provider=cls.social_auth).exists(),
                                    login_url=reverse_lazy(
                                        'social:begin',
                                        args=(cls.social_auth, )))(view)

        if cls.permissions:
            view = org_permission_required(cls.permissions)(view)

        return login_required(view)