def test_unauthenticated(self, app):
"""Methods is called as unautheticated user"""
logout(app)
transaction_begin(app)
app.get("/users/removeaccount/1", status=401)
app.get("/")
transaction_rollback(app)
def test_delete_POST_admin_confirm_yes(self, app):
"""Admin user can not delete himself. This triggers a circular
dependecy which is handled with the fix of #5"""
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/users/delete/1", params=values, status=200)
def test_POST_existing_group(self, app):
# FIXME: https://github.com/ringo-framework/ringo/issues/4 (ti) <2016-01-18 16:46>
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admins"}
app.post("/usergroups/create", params=values, status=200)
transaction_rollback(app)
def test_POST_existing_group(self, app):
# FIXME: https://github.com/ringo-framework/ringo/issues/4 (ti) <2016-01-18 16:46>
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admins"}
app.post("/usergroups/create", params=values, status=200)
transaction_rollback(app)
def test_delete_POST_admin_confirm_yes(self, app):
"""Admin user can not delete himself. This triggers a circular
dependecy which is handled with the fix of #5"""
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/users/delete/1", params=values, status=200)
def test_delete_POST_admin_confirm_yes(self, app):
# FIXME: https://github.com/ringo-framework/ringo/issues/5 (ti) <2016-01-18 16:46>
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/usergroups/delete/1", params=values, status=302)
transaction_rollback(app)
def test_update_POST_missing_label_plural(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "modules", "label": "Modul",
"label_plural": ""}
app.post("/modules/update/1", params=values, status=200)
transaction_rollback(app)
def test_unauthenticated(self, app):
"""Methods is called as unautheticated user"""
logout(app)
transaction_begin(app)
app.get("/users/removeaccount/1", status=401)
app.get("/")
transaction_rollback(app)
def test_change_password_tooshort(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******", "oldpassword": "******",
"password": "******",
"_retype_password": "******"}
result = app.post("/users/changepassword/1", params=values, status=200)
transaction_rollback(app)
def test_change_password_tooshort(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******", "oldpassword": "******",
"password": "******",
"_retype_password": "******"}
result = app.post("/users/changepassword/1", params=values, status=200)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
udata = search_data(app, "users", "login", "test")
gdata = search_data(app, "usergroups", "name", "test")
# Check that the default_gid is set to the users usergroup
assert gdata.get("id") == udata.get("default_gid")
transaction_rollback(app)
def test_delete_POST_admin_confirm_yes(self, app):
"""admin user group can not be deleted see
https://github.com/ringo-framework/ringo/issues/5 for more
details."""
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/usergroups/delete/1", params=values, status=200)
transaction_rollback(app)
def test_delete_POST_admin_confirm_yes(self, app):
"""admin user group can not be deleted see
https://github.com/ringo-framework/ringo/issues/5 for more
details."""
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/usergroups/delete/1", params=values, status=200)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
udata = search_data(app, "users", "login", "test")
gdata = search_data(app, "usergroups", "name", "test")
# Check that the default_gid is set to the users usergroup
assert gdata.get("id") == udata.get("default_gid")
transaction_rollback(app)
def test_update_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {
"name": "modules",
"label": "Modul",
"label_plural": "Modules"
}
app.post("/modules/update/1", params=values, status=302)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {
"title": "test",
"definiton":
'<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'
}
app.post("/forms/create", params=values, status=302)
transaction_rollback(app)
def test_POST_existing_user(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******",
"password": "******",
"_retype_password": "******",
"_first_name": u"Först", "_last_name": "Last",
"_email": "*****@*****.**"}
app.post("/users/create", params=values, status=200)
transaction_rollback(app)
def test_update_POST_missing_title(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {
"title": "",
"definiton":
'<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'
}
app.post("/forms/update/1", params=values, status=200)
transaction_rollback(app)
def test_POST_existing_user(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******",
"password": "******",
"_retype_password": "******",
"_first_name": u"Först", "_last_name": "Last",
"_email": "*****@*****.**"}
app.post("/users/create", params=values, status=200)
transaction_rollback(app)
def test_create(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
# Regression test for Issue1201 in Intevation waskiq tracker. If
# the login is changed calling the setstandin page failed for
# admin users.
user = search_data(app, "users", "login", "test")
user["login"] = "******"
app.post("/users/update/%s" % user["id"], params=user, status=302)
def test_create(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
user = search_data(app, "users", "login", "test")
user["login"] = "******"
app.post("/users/update/%s" % user["id"], params=user, status=302)
usergroup = search_data(app, "usergroups", "name", user["login"])
assert usergroup
app.get("/")
transaction_rollback(app)
def test_remove_permission(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"label": "Users", "name": "user", "permissions": [21,30],
"admin": "False"}
app.post("/roles/update/1", params=values, status=302)
values = {"label": "Users", "name": "user", "permissions": [21],
"admin": "False"}
app.post("/roles/update/1", params=values, status=302)
transaction_rollback(app)
def test_create(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
# Regression test for Issue1201 in Intevation waskiq tracker. If
# the login is changed calling the setstandin page failed for
# admin users.
user = search_data(app, "users", "login", "test")
user["login"] = "******"
app.post("/users/update/%s" % user["id"], params=user, status=302)
def test_create(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
user = search_data(app, "users", "login", "test")
user["login"] = "******"
app.post("/users/update/%s" % user["id"], params=user, status=302)
usergroup = search_data(app, "usergroups", "name", user["login"])
assert usergroup
app.get("/")
transaction_rollback(app)
def test_unauthorized(self, app):
"""Method is called with a different uid than the id uf the
current user. This is not allowed the users are only allowed to
delete their own account."""
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
user = search_data(app, "users", "login", "test")
app.get("/users/removeaccount/%s" % user["id"], params=user, status=403)
app.get("/")
transaction_rollback(app)
def test_unauthorized(self, app):
"""Method is called with a different uid than the id uf the
current user. This is not allowed the users are only allowed to
delete their own account."""
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
user = search_data(app, "users", "login", "test")
app.get("/users/removeaccount/%s" % user["id"], params=user, status=403)
app.get("/")
transaction_rollback(app)
def test_delete(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******",
"password": "******",
"_retype_password": "******",
"_first_name": u"Först", "_last_name": "Last",
"_email": "*****@*****.**"}
result = app.post("/users/create", params=values, status=302)
id = result.headers["Location"].split("/")[-1]
app.get("/users/delete/%s" % id)
app.get("/users/list")
transaction_rollback(app)
def test_delete(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******",
"password": "******",
"_retype_password": "******",
"_first_name": u"Först", "_last_name": "Last",
"_email": "*****@*****.**"}
result = app.post("/users/create", params=values, status=302)
id = result.headers["Location"].split("/")[-1]
app.get("/users/delete/%s" % id)
app.get("/users/list")
transaction_rollback(app)
def test_confirmed(self, app):
"""User must confirm the deletion twice"""
transaction_begin(app)
login(app, "admin", "secret")
create_user(app, "test")
user = search_data(app, "users", "login", "test")
login(app, "test", "123123123qwe")
app.get("/users/removeaccount/%s" % user["id"], status=200)
params = {"_confirm_remove_account2": ["1"], "_confirm_remove_account": ["1"]}
app.post("/users/removeaccount/%s" % user["id"], params=params, status=302)
app.get("/")
transaction_rollback(app)
def test_confirmed(self, app):
"""User must confirm the deletion twice"""
transaction_begin(app)
login(app, "admin", "secret")
create_user(app, "test")
user = search_data(app, "users", "login", "test")
login(app, "test", "123123123qwe")
app.get("/users/removeaccount/%s" % user["id"], status=200)
params = {"_confirm_remove_account2": ["1"], "_confirm_remove_account": ["1"]}
app.post("/users/removeaccount/%s" % user["id"], params=params, status=302)
app.get("/")
transaction_rollback(app)
def test_remove_permission(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {
"label": "Users",
"name": "user",
"permissions": [21, 30],
"admin": "False"
}
app.post("/roles/update/1", params=values, status=302)
values = {
"label": "Users",
"name": "user",
"permissions": [21],
"admin": "False"
}
app.post("/roles/update/1", params=values, status=302)
transaction_rollback(app)
def test_update_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"email": "*****@*****.**"}
app.post("/profiles/update/1", params=values, status=302)
transaction_rollback(app)
def test_update_POST_missing_email(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"email": ""}
app.post("/profiles/update/1", params=values, status=200)
transaction_rollback(app)
def test_update_POST_missing_name(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": ""}
app.post("/usergroups/update/1", params=values, status=200)
transaction_rollback(app)
def test_update_POST_missing_defintion(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"title": "test", "definiton": ''}
app.post("/forms/update/1", params=values, status=200)
transaction_rollback(app)
def test_POST_existing_group(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admin", "label": "admin"}
app.post("/roles/create", params=values, status=200)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"title": "test", "definiton": '<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'}
app.post("/forms/create", params=values, status=302)
transaction_rollback(app)
def test_update_POST_missing_name(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": ""}
app.post("/usergroups/update/1", params=values, status=200)
transaction_rollback(app)
def test_update_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"email": "*****@*****.**"}
app.post("/profiles/update/1", params=values, status=302)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "test"}
app.post("/usergroups/create", params=values, status=302)
transaction_rollback(app)
def test_POST_existing_group(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admin", "label": "admin"}
app.post("/roles/create", params=values, status=200)
transaction_rollback(app)
def test_update_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******"}
app.post("/users/update/1", params=values, status=302)
transaction_rollback(app)
def test_update_POST_notunique(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admin", "label": "admintest"}
app.post("/roles/update/1", params=values, status=200)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
create_user(app, "test")
transaction_rollback(app)
def test_delete(self, app):
"""Deleting of modules is not supported in the webinterface"""
login(app, "admin", "secret")
transaction_begin(app)
app.get("/modules/delete/1", status=404)
transaction_rollback(app)
def test_delete(self, app):
"""Deletion of profiles is not supported in the webinterface"""
login(app, "admin", "secret")
transaction_begin(app)
app.get("/profiles/delete/1", status=404)
transaction_rollback(app)
def test_delete(self, app):
login(app, "admin", "secret")
transaction_begin(app)
app.get("/usergroups/delete/2")
transaction_rollback(app)
def test_update_POST_notunique(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "admin", "label": "admintest"}
app.post("/roles/update/1", params=values, status=200)
transaction_rollback(app)
def test_update_POST_missing_email(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"email": ""}
app.post("/profiles/update/1", params=values, status=200)
transaction_rollback(app)
def test_update_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"login": "******"}
app.post("/users/update/1", params=values, status=302)
transaction_rollback(app)
def test_delete_POST_admin_confirm_yes(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/forms/delete/1", params=values, status=302)
transaction_rollback(app)
def test_delete_POST_usergroup_confirm_yes(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"confirmed": 1}
app.post("/usergroups/delete/2", params=values, status=302)
transaction_rollback(app)
def test_update_POST_missing_title(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"title": "", "definiton": '<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'}
app.post("/forms/update/1", params=values, status=200)
transaction_rollback(app)
def test_POST(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"name": "test"}
app.post("/usergroups/create", params=values, status=302)
transaction_rollback(app)
def test_delete(self, app):
login(app, "admin", "secret")
transaction_begin(app)
app.get("/forms/delete/2")
transaction_rollback(app)
def test_update_POST_missing_defintion(self, app):
login(app, "admin", "secret")
transaction_begin(app)
values = {"title": "test", "definiton": ''}
app.post("/forms/update/1", params=values, status=200)
transaction_rollback(app)
