def test_has_perm(self):
# superuser has all rights to what he wants
self.assertTrue(
security.has_perm(self.superuser, '%s.%s' % (APP_NAME, CODE_NAME)),
"Superuser always should have all permissions")
# common user, should not have rights
self.assertFalse(
security.has_perm(self.user, '%s.%s' % (APP_NAME, CODE_NAME)),
"If user doesn't have that role, this should be False")
def test_has_perm(self):
# superuser has all rights to what he wants
self.assertTrue(
security.has_perm(self.superuser, '%s.%s' % (APP_NAME, CODE_NAME)),
"Superuser always should have all permissions"
)
# common user, should not have rights
self.assertFalse(
security.has_perm(self.user, '%s.%s' % (APP_NAME, CODE_NAME)),
"If user doesn't have that role, this should be False"
)
def test_has_perm_for_book(self):
# let's create a book and set it to the role
# so we can scope permissions just for that book
book = factory_models.BookFactory()
self.bookrole.book = book
# also put user as member of that role
self.bookrole.members.add(self.user)
self.bookrole.save()
permission = '%s.%s' % (APP_NAME, CODE_NAME)
self.assertTrue(security.has_perm(self.user, permission, book=book),
"Member of a book's role should have permissions")
def test_has_perm_for_book(self):
# let's create a book and set it to the role
# so we can scope permissions just for that book
book = factory_models.BookFactory()
self.bookrole.book = book
# also put user as member of that role
self.bookrole.members.add(self.user)
self.bookrole.save()
permission = '%s.%s' % (APP_NAME, CODE_NAME)
self.assertTrue(
security.has_perm(
self.user, permission, book=book
),
"Member of a book's role should have permissions"
)
