def test_remove_team_from_project(self):
self._team_create()
self._publish_xls_form_to_project()
chuck_data = {'username': '******', 'email': '*****@*****.**'}
chuck_profile = self._create_user_profile(chuck_data)
user_chuck = chuck_profile.user
tools.add_user_to_team(self.team, user_chuck)
view = TeamViewSet.as_view({
'post': 'share'})
self.assertFalse(EditorRole.user_has_role(user_chuck,
self.project))
data = {'role': EditorRole.name,
'project': self.project.pk}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertTrue(EditorRole.user_has_role(user_chuck, self.project))
data = {'role': EditorRole.name,
'project': self.project.pk,
'remove': True}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertFalse(EditorRole.user_has_role(user_chuck, self.project))
self.assertFalse(EditorRole.user_has_role(user_chuck, self.xform))
def test_remove_team_from_project(self):
self._team_create()
self._publish_xls_form_to_project()
chuck_data = {'username': '******', 'email': '*****@*****.**'}
chuck_profile = self._create_user_profile(chuck_data)
user_chuck = chuck_profile.user
tools.add_user_to_team(self.team, user_chuck)
view = TeamViewSet.as_view({
'post': 'share'})
self.assertFalse(EditorRole.user_has_role(user_chuck,
self.project))
data = {'role': EditorRole.name,
'project': self.project.pk}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertTrue(EditorRole.user_has_role(user_chuck, self.project))
data = {'role': EditorRole.name,
'project': self.project.pk,
'remove': True}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertFalse(EditorRole.user_has_role(user_chuck, self.project))
self.assertFalse(EditorRole.user_has_role(user_chuck, self.xform))
def test_team_share_members(self):
self._team_create()
project = Project.objects.create(name="Test Project",
organization=self.team.organization,
created_by=self.user,
metadata='{}')
view = TeamViewSet.as_view({
'get': 'list',
'post': 'share'})
get_data = {'org': 'denoinc'}
request = self.factory.get('/', data=get_data, **self.extra)
response = view(request)
# get the members team
self.assertEquals(response.data[1].get('name'), 'members')
teamid = response.data[1].get('teamid')
chuck_data = {'username': '******', 'email': '*****@*****.**'}
chuck_profile = self._create_user_profile(chuck_data)
user_chuck = chuck_profile.user
self.team = Team.objects.get(pk=teamid)
tools.add_user_to_team(self.team, user_chuck)
self.assertFalse(EditorRole.user_has_role(user_chuck,
project))
post_data = {'role': EditorRole.name,
'project': project.pk,
'remove': False,
'org': 'denoinc'}
request = self.factory.post(
'/', data=post_data, **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertTrue(EditorRole.user_has_role(user_chuck, project))
view = ProjectViewSet.as_view({
'get': 'retrieve'
})
request = self.factory.get('/', **self.extra)
response = view(request, pk=project.pk)
self.assertNotEqual(response.get('Cache-Control'), None)
self.assertEqual(response.status_code, 200)
self.assertEqual(len(response.data.get('users')), 2)
def test_team_share_members(self):
self._team_create()
project = Project.objects.create(name="Test Project",
organization=self.team.organization,
created_by=self.user,
metadata='{}')
view = TeamViewSet.as_view({
'get': 'list',
'post': 'share'})
get_data = {'org': 'denoinc'}
request = self.factory.get('/', data=get_data, **self.extra)
response = view(request)
# get the members team
self.assertEquals(response.data[1].get('name'), 'members')
teamid = response.data[1].get('teamid')
chuck_data = {'username': '******', 'email': '*****@*****.**'}
chuck_profile = self._create_user_profile(chuck_data)
user_chuck = chuck_profile.user
self.team = Team.objects.get(pk=teamid)
tools.add_user_to_team(self.team, user_chuck)
self.assertFalse(EditorRole.user_has_role(user_chuck,
project))
post_data = {'role': EditorRole.name,
'project': project.pk,
'remove': False,
'org': 'denoinc'}
request = self.factory.post(
'/', data=post_data, **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertTrue(EditorRole.user_has_role(user_chuck, project))
view = ProjectViewSet.as_view({
'get': 'retrieve'
})
request = self.factory.get('/', **self.extra)
response = view(request, pk=project.pk)
self.assertNotEqual(response.get('Cache-Control'), None)
self.assertEqual(response.status_code, 200)
self.assertEqual(len(response.data.get('users')), 2)
def test_team_members_meta_perms_restrictions(self):
self._team_create()
self._publish_xls_form_to_project()
user_alice = self._create_user('alice', 'alice')
members_team = Team.objects.get(
name='%s#%s' % (self.organization.user.username, 'members'))
# add alice to members team
add_user_to_team(members_team, user_alice)
# confirm that the team and members have no permissions on form
self.assertFalse(get_perms(members_team, self.xform))
self.assertFalse(get_perms(user_alice, self.xform))
# share project to team
view = TeamViewSet.as_view({
'get': 'list',
'post': 'share'})
post_data = {
'role': EditorRole.name,
'project': self.project.pk,
'remove': False
}
request = self.factory.post('/', data=post_data, **self.extra)
response = view(request, pk=members_team.pk)
self.assertEqual(response.status_code, 204)
# team members should have editor permissions now
alice_perms = get_perms(user_alice, self.xform)
alice_role = get_role(alice_perms, self.xform)
self.assertEqual(EditorRole.name, alice_role)
self.assertTrue(EditorRole.user_has_role(user_alice, self.xform))
# change meta permissions
meta_view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = meta_view(request)
self.assertEqual(response.status_code, 201)
# members should now have EditorMinor role
self.assertTrue(EditorMinorRole.user_has_role(user_alice, self.xform))
def test_team_members_meta_perms_restrictions(self):
self._team_create()
self._publish_xls_form_to_project()
user_alice = self._create_user('alice', 'alice')
members_team = Team.objects.get(
name='%s#%s' % (self.organization.user.username, 'members'))
# add alice to members team
add_user_to_team(members_team, user_alice)
# confirm that the team and members have no permissions on form
self.assertFalse(get_perms(members_team, self.xform))
self.assertFalse(get_perms(user_alice, self.xform))
# share project to team
view = TeamViewSet.as_view({
'get': 'list',
'post': 'share'})
post_data = {
'role': EditorRole.name,
'project': self.project.pk,
'remove': False
}
request = self.factory.post('/', data=post_data, **self.extra)
response = view(request, pk=members_team.pk)
self.assertEqual(response.status_code, 204)
# team members should have editor permissions now
alice_perms = get_perms(user_alice, self.xform)
alice_role = get_role(alice_perms, self.xform)
self.assertEqual(EditorRole.name, alice_role)
self.assertTrue(EditorRole.user_has_role(user_alice, self.xform))
# change meta permissions
meta_view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = meta_view(request)
self.assertEqual(response.status_code, 201)
# members should now have EditorMinor role
self.assertTrue(EditorMinorRole.user_has_role(user_alice, self.xform))
def test_remove_team_from_project(self):
self._team_create()
project = Project.objects.create(name="Test Project",
organization=self.team.organization,
created_by=self.user,
metadata='{}')
chuck_data = {'username': '******', 'email': '*****@*****.**'}
chuck_profile = self._create_user_profile(chuck_data)
user_chuck = chuck_profile.user
tools.add_user_to_team(self.team, user_chuck)
view = TeamViewSet.as_view({
'post': 'share'})
self.assertFalse(EditorRole.user_has_role(user_chuck,
project))
data = {'role': EditorRole.name,
'project': project.pk}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertTrue(EditorRole.user_has_role(user_chuck, project))
data = {'role': EditorRole.name,
'project': project.pk,
'remove': True}
request = self.factory.post(
'/', data=json.dumps(data),
content_type="application/json", **self.extra)
response = view(request, pk=self.team.pk)
self.assertEqual(response.status_code, 204)
self.assertFalse(EditorRole.user_has_role(user_chuck, project))
def test_role_update_xform_meta_perms(self):
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
EditorRole.add(alice_profile.user, self.xform)
view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = view(request)
self.assertEqual(response.status_code, 201)
self.assertFalse(
EditorRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
EditorMinorRole.user_has_role(alice_profile.user, self.xform))
meta = MetaData.xform_meta_permission(self.xform)
DataEntryRole.add(alice_profile.user, self.xform)
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor|dataentry-only',
'xform': self.xform.pk
}
request = self.factory.put('/', data, **self.extra)
response = view(request, pk=meta.pk)
self.assertEqual(response.status_code, 200)
self.assertFalse(
DataEntryRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
DataEntryOnlyRole.user_has_role(alice_profile.user, self.xform))
def test_role_update_xform_meta_perms(self):
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
EditorRole.add(alice_profile.user, self.xform)
view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = view(request)
self.assertEqual(response.status_code, 201)
self.assertFalse(
EditorRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
EditorMinorRole.user_has_role(alice_profile.user, self.xform))
meta = MetaData.xform_meta_permission(self.xform)
DataEntryRole.add(alice_profile.user, self.xform)
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor|dataentry-only',
'xform': self.xform.pk
}
request = self.factory.put('/', data, **self.extra)
response = view(request, pk=meta.pk)
self.assertEqual(response.status_code, 200)
self.assertFalse(
DataEntryRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
DataEntryOnlyRole.user_has_role(alice_profile.user, self.xform))
def test_reassign_role_owner_to_editor(self):
self._publish_transportation_form()
alice = self._create_user('alice', 'alice')
self.assertFalse(OwnerRole.user_has_role(alice, self.xform))
OwnerRole.add(alice, self.xform)
self.assertTrue(OwnerRole.user_has_role(alice, self.xform))
self.assertTrue(
OwnerRole.has_role(perms_for(alice, self.xform), self.xform))
EditorRole.add(alice, self.xform)
self.assertFalse(OwnerRole.user_has_role(alice, self.xform))
self.assertTrue(EditorRole.user_has_role(alice, self.xform))
self.assertFalse(
OwnerRole.has_role(perms_for(alice, self.xform), self.xform))
self.assertTrue(
EditorRole.has_role(perms_for(alice, self.xform), self.xform))
def test_reassign_role_owner_to_editor(self):
self._publish_transportation_form()
alice = self._create_user('alice', 'alice')
self.assertFalse(OwnerRole.user_has_role(alice, self.xform))
OwnerRole.add(alice, self.xform)
self.assertTrue(OwnerRole.user_has_role(alice, self.xform))
self.assertTrue(OwnerRole.has_role(
perms_for(alice, self.xform), self.xform))
EditorRole.add(alice, self.xform)
self.assertFalse(OwnerRole.user_has_role(alice, self.xform))
self.assertTrue(EditorRole.user_has_role(alice, self.xform))
self.assertFalse(OwnerRole.has_role(
perms_for(alice, self.xform), self.xform))
self.assertTrue(EditorRole.has_role(
perms_for(alice, self.xform), self.xform))
