def test_remove_team_from_project(self): self._team_create() self._publish_xls_form_to_project() chuck_data = {'username': '******', 'email': '*****@*****.**'} chuck_profile = self._create_user_profile(chuck_data) user_chuck = chuck_profile.user tools.add_user_to_team(self.team, user_chuck) view = TeamViewSet.as_view({ 'post': 'share'}) self.assertFalse(EditorRole.user_has_role(user_chuck, self.project)) data = {'role': EditorRole.name, 'project': self.project.pk} request = self.factory.post( '/', data=json.dumps(data), content_type="application/json", **self.extra) response = view(request, pk=self.team.pk) self.assertEqual(response.status_code, 204) self.assertTrue(EditorRole.user_has_role(user_chuck, self.project)) data = {'role': EditorRole.name, 'project': self.project.pk, 'remove': True} request = self.factory.post( '/', data=json.dumps(data), content_type="application/json", **self.extra) response = view(request, pk=self.team.pk) self.assertEqual(response.status_code, 204) self.assertFalse(EditorRole.user_has_role(user_chuck, self.project)) self.assertFalse(EditorRole.user_has_role(user_chuck, self.xform))
def test_team_share_members(self): self._team_create() project = Project.objects.create(name="Test Project", organization=self.team.organization, created_by=self.user, metadata='{}') view = TeamViewSet.as_view({ 'get': 'list', 'post': 'share'}) get_data = {'org': 'denoinc'} request = self.factory.get('/', data=get_data, **self.extra) response = view(request) # get the members team self.assertEquals(response.data[1].get('name'), 'members') teamid = response.data[1].get('teamid') chuck_data = {'username': '******', 'email': '*****@*****.**'} chuck_profile = self._create_user_profile(chuck_data) user_chuck = chuck_profile.user self.team = Team.objects.get(pk=teamid) tools.add_user_to_team(self.team, user_chuck) self.assertFalse(EditorRole.user_has_role(user_chuck, project)) post_data = {'role': EditorRole.name, 'project': project.pk, 'remove': False, 'org': 'denoinc'} request = self.factory.post( '/', data=post_data, **self.extra) response = view(request, pk=self.team.pk) self.assertEqual(response.status_code, 204) self.assertTrue(EditorRole.user_has_role(user_chuck, project)) view = ProjectViewSet.as_view({ 'get': 'retrieve' }) request = self.factory.get('/', **self.extra) response = view(request, pk=project.pk) self.assertNotEqual(response.get('Cache-Control'), None) self.assertEqual(response.status_code, 200) self.assertEqual(len(response.data.get('users')), 2)
def test_team_members_meta_perms_restrictions(self): self._team_create() self._publish_xls_form_to_project() user_alice = self._create_user('alice', 'alice') members_team = Team.objects.get( name='%s#%s' % (self.organization.user.username, 'members')) # add alice to members team add_user_to_team(members_team, user_alice) # confirm that the team and members have no permissions on form self.assertFalse(get_perms(members_team, self.xform)) self.assertFalse(get_perms(user_alice, self.xform)) # share project to team view = TeamViewSet.as_view({ 'get': 'list', 'post': 'share'}) post_data = { 'role': EditorRole.name, 'project': self.project.pk, 'remove': False } request = self.factory.post('/', data=post_data, **self.extra) response = view(request, pk=members_team.pk) self.assertEqual(response.status_code, 204) # team members should have editor permissions now alice_perms = get_perms(user_alice, self.xform) alice_role = get_role(alice_perms, self.xform) self.assertEqual(EditorRole.name, alice_role) self.assertTrue(EditorRole.user_has_role(user_alice, self.xform)) # change meta permissions meta_view = MetaDataViewSet.as_view({ 'post': 'create', 'put': 'update' }) data = { 'data_type': XFORM_META_PERMS, 'data_value': 'editor-minor|dataentry', 'xform': self.xform.pk } request = self.factory.post('/', data, **self.extra) response = meta_view(request) self.assertEqual(response.status_code, 201) # members should now have EditorMinor role self.assertTrue(EditorMinorRole.user_has_role(user_alice, self.xform))
def test_remove_team_from_project(self): self._team_create() project = Project.objects.create(name="Test Project", organization=self.team.organization, created_by=self.user, metadata='{}') chuck_data = {'username': '******', 'email': '*****@*****.**'} chuck_profile = self._create_user_profile(chuck_data) user_chuck = chuck_profile.user tools.add_user_to_team(self.team, user_chuck) view = TeamViewSet.as_view({ 'post': 'share'}) self.assertFalse(EditorRole.user_has_role(user_chuck, project)) data = {'role': EditorRole.name, 'project': project.pk} request = self.factory.post( '/', data=json.dumps(data), content_type="application/json", **self.extra) response = view(request, pk=self.team.pk) self.assertEqual(response.status_code, 204) self.assertTrue(EditorRole.user_has_role(user_chuck, project)) data = {'role': EditorRole.name, 'project': project.pk, 'remove': True} request = self.factory.post( '/', data=json.dumps(data), content_type="application/json", **self.extra) response = view(request, pk=self.team.pk) self.assertEqual(response.status_code, 204) self.assertFalse(EditorRole.user_has_role(user_chuck, project))
def test_role_update_xform_meta_perms(self): alice_data = {'username': '******', 'email': '*****@*****.**'} alice_profile = self._create_user_profile(alice_data) EditorRole.add(alice_profile.user, self.xform) view = MetaDataViewSet.as_view({ 'post': 'create', 'put': 'update' }) data = { 'data_type': XFORM_META_PERMS, 'data_value': 'editor-minor|dataentry', 'xform': self.xform.pk } request = self.factory.post('/', data, **self.extra) response = view(request) self.assertEqual(response.status_code, 201) self.assertFalse( EditorRole.user_has_role(alice_profile.user, self.xform)) self.assertTrue( EditorMinorRole.user_has_role(alice_profile.user, self.xform)) meta = MetaData.xform_meta_permission(self.xform) DataEntryRole.add(alice_profile.user, self.xform) data = { 'data_type': XFORM_META_PERMS, 'data_value': 'editor|dataentry-only', 'xform': self.xform.pk } request = self.factory.put('/', data, **self.extra) response = view(request, pk=meta.pk) self.assertEqual(response.status_code, 200) self.assertFalse( DataEntryRole.user_has_role(alice_profile.user, self.xform)) self.assertTrue( DataEntryOnlyRole.user_has_role(alice_profile.user, self.xform))
def test_reassign_role_owner_to_editor(self): self._publish_transportation_form() alice = self._create_user('alice', 'alice') self.assertFalse(OwnerRole.user_has_role(alice, self.xform)) OwnerRole.add(alice, self.xform) self.assertTrue(OwnerRole.user_has_role(alice, self.xform)) self.assertTrue( OwnerRole.has_role(perms_for(alice, self.xform), self.xform)) EditorRole.add(alice, self.xform) self.assertFalse(OwnerRole.user_has_role(alice, self.xform)) self.assertTrue(EditorRole.user_has_role(alice, self.xform)) self.assertFalse( OwnerRole.has_role(perms_for(alice, self.xform), self.xform)) self.assertTrue( EditorRole.has_role(perms_for(alice, self.xform), self.xform))
def test_reassign_role_owner_to_editor(self): self._publish_transportation_form() alice = self._create_user('alice', 'alice') self.assertFalse(OwnerRole.user_has_role(alice, self.xform)) OwnerRole.add(alice, self.xform) self.assertTrue(OwnerRole.user_has_role(alice, self.xform)) self.assertTrue(OwnerRole.has_role( perms_for(alice, self.xform), self.xform)) EditorRole.add(alice, self.xform) self.assertFalse(OwnerRole.user_has_role(alice, self.xform)) self.assertTrue(EditorRole.user_has_role(alice, self.xform)) self.assertFalse(OwnerRole.has_role( perms_for(alice, self.xform), self.xform)) self.assertTrue(EditorRole.has_role( perms_for(alice, self.xform), self.xform))