from wagtail.core.permission_policies.collections import (
CollectionOwnershipPermissionPolicy)
from wagtailvideos.models import Video
permission_policy = CollectionOwnershipPermissionPolicy(
Video,
auth_model=Video,
owner_field_name='uploaded_by_user'
)
from wagtail.core.permission_policies.collections import (
CollectionOwnershipPermissionPolicy)
from wagtailmedia.models import Media, get_media_model
permission_policy = CollectionOwnershipPermissionPolicy(
get_media_model(), auth_model=Media, owner_field_name='uploaded_by_user')
# -*- coding: utf-8 -*-
from wagtail.core.permission_policies.collections import (
CollectionOwnershipPermissionPolicy)
from wagtail_embed_videos.models import EmbedVideo, get_embed_video_model
permission_policy = CollectionOwnershipPermissionPolicy(
get_embed_video_model(),
auth_model=EmbedVideo,
owner_field_name='uploaded_by_user')
from wagtail.core.permission_policies.collections import CollectionOwnershipPermissionPolicy
from wagtail.documents.models import Document, get_document_model
permission_policy = CollectionOwnershipPermissionPolicy(
get_document_model(),
auth_model=Document,
owner_field_name='uploaded_by_user')
def setUp(self):
super().setUp()
self.policy = CollectionOwnershipPermissionPolicy(
Document,
owner_field_name='uploaded_by_user',
)
class TestCollectionOwnershipPermissionPolicy(PermissionPolicyTestCase):
def setUp(self):
super().setUp()
self.policy = CollectionOwnershipPermissionPolicy(
Document,
owner_field_name='uploaded_by_user',
)
def test_user_has_permission(self):
self.assertUserPermissionMatrix([
(self.superuser, True, True, True, True),
(self.inactive_superuser, False, False, False, False),
(self.doc_changer, False, True, True, False),
(self.inactive_doc_changer, False, False, False, False),
(self.report_changer, False, True, True, False),
(self.report_adder, True, True, True, False),
(self.useless_user, False, False, False, False),
(self.anonymous_user, False, False, False, False),
])
def test_user_has_any_permission(self):
self.assertTrue(
self.policy.user_has_any_permission(self.superuser,
['add', 'change']))
self.assertFalse(
self.policy.user_has_any_permission(self.inactive_superuser,
['add', 'change']))
self.assertTrue(
self.policy.user_has_any_permission(self.report_changer,
['add', 'delete']))
self.assertTrue(
self.policy.user_has_any_permission(self.report_adder,
['add', 'change']))
self.assertTrue(
self.policy.user_has_any_permission(self.report_adder,
['change', 'delete']))
self.assertFalse(
self.policy.user_has_any_permission(self.anonymous_user,
['add', 'change']))
def test_users_with_any_permission(self):
users_with_add_or_change_permission = self.policy.users_with_any_permission(
['add', 'change'])
self.assertResultSetEqual(users_with_add_or_change_permission, [
self.superuser,
self.doc_changer,
self.report_changer,
self.report_adder,
])
def test_users_with_permission(self):
users_with_change_permission = self.policy.users_with_permission(
'change')
self.assertResultSetEqual(users_with_change_permission, [
self.superuser,
self.doc_changer,
self.report_changer,
self.report_adder,
])
users_with_custom_permission = self.policy.users_with_permission(
'frobnicate')
self.assertResultSetEqual(users_with_custom_permission, [
self.superuser,
])
def test_user_has_permission_for_instance(self):
# document in the root is only editable by users with permissions
# on the root collection
self.assertUserInstancePermissionMatrix(self.changer_doc, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, False, False, False),
(self.report_adder, False, False, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
# document in 'reports' is editable by users with permissions
# on 'reports' or the root collection
self.assertUserInstancePermissionMatrix(self.useless_report, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, True, True, False),
(self.report_adder, False, False, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
# adder_report is editable by its owner (who only has 'add' permission)
self.assertUserInstancePermissionMatrix(self.adder_report, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, True, True, False),
(self.report_adder, True, True, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
def test_user_has_any_permission_for_instance(self):
self.assertTrue(
self.policy.user_has_any_permission_for_instance(
self.report_changer, ['change', 'delete'],
self.useless_report))
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.report_changer, ['change', 'delete'], self.changer_doc))
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.report_adder, ['change', 'delete'], self.changer_doc))
self.assertTrue(
self.policy.user_has_any_permission_for_instance(
self.report_adder, ['change', 'delete'], self.adder_report))
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.anonymous_user, ['change', 'delete'], self.changer_doc))
def test_instances_user_has_permission_for(self):
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.superuser,
'change',
), [
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.inactive_superuser,
'change',
), [])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.doc_changer,
'change',
), [
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.report_changer,
'change',
), [
self.changer_report, self.useless_report, self.adder_report,
self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.useless_user,
'change',
), [])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.anonymous_user,
'change',
), [])
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.report_adder,
'change',
), [
self.adder_report,
])
def test_instances_user_has_any_permission_for(self):
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.superuser, ['change', 'delete']), [
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.inactive_superuser, ['change', 'delete']), [])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.doc_changer, ['change', 'delete']), [
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.report_changer, ['change', 'delete']), [
self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.useless_user, ['change', 'delete']), [])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.anonymous_user, ['change', 'delete']), [])
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.report_adder,
['change', 'delete'],
), [
self.adder_report,
])
def test_users_with_permission_for_instance(self):
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance(
'change', self.changer_doc),
[self.superuser, self.doc_changer])
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance(
'change', self.changer_report),
[self.superuser, self.doc_changer, self.report_changer])
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance(
'change', self.adder_report), [
self.superuser, self.doc_changer, self.report_changer,
self.report_adder
])
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance(
'change', self.useless_report),
[self.superuser, self.doc_changer, self.report_changer])
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance(
'change', self.anonymous_report),
[self.superuser, self.doc_changer, self.report_changer])
def test_users_with_any_permission_for_instance(self):
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.changer_doc),
[self.superuser, self.doc_changer])
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.adder_report), [
self.superuser, self.doc_changer, self.report_changer,
self.report_adder
])
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.useless_report),
[self.superuser, self.doc_changer, self.report_changer])
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['delete', 'frobnicate'], self.useless_report),
[self.superuser, self.doc_changer, self.report_changer])
def test_collections_user_has_permission_for(self):
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.superuser,
'change',
), [self.root_collection, self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.inactive_superuser,
'change',
), [])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.doc_changer,
'change',
), [self.root_collection, self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_changer,
'change',
), [self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_adder,
'change',
), [self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_adder,
'add',
), [self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.useless_user,
'change',
), [])
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.anonymous_user,
'change',
), [])
def test_collections_user_has_any_permission_for(self):
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.superuser, ['change', 'delete']),
[self.root_collection, self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.inactive_superuser, ['change', 'delete']), [])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.doc_changer, ['change', 'delete']),
[self.root_collection, self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_changer, ['change', 'delete']),
[self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_adder, ['change', 'delete']),
[self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_adder, ['add', 'delete']),
[self.reports_collection])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.useless_user, ['change', 'delete']), [])
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.anonymous_user, ['change', 'delete']), [])
from wagtail.core.permission_policies.collections import CollectionOwnershipPermissionPolicy
from wagtail.images import get_image_model
from wagtail.images.models import Image
permission_policy = CollectionOwnershipPermissionPolicy(
get_image_model(), auth_model=Image, owner_field_name='uploaded_by_user')
def setUp(self):
super().setUp()
self.policy = CollectionOwnershipPermissionPolicy(
Document, owner_field_name='uploaded_by_user',
)
class TestCollectionOwnershipPermissionPolicy(PermissionPolicyTestCase):
def setUp(self):
super().setUp()
self.policy = CollectionOwnershipPermissionPolicy(
Document, owner_field_name='uploaded_by_user',
)
def test_user_has_permission(self):
self.assertUserPermissionMatrix([
(self.superuser, True, True, True, True),
(self.inactive_superuser, False, False, False, False),
(self.doc_changer, False, True, True, False),
(self.inactive_doc_changer, False, False, False, False),
(self.report_changer, False, True, True, False),
(self.report_adder, True, True, True, False),
(self.useless_user, False, False, False, False),
(self.anonymous_user, False, False, False, False),
])
def test_user_has_any_permission(self):
self.assertTrue(
self.policy.user_has_any_permission(self.superuser, ['add', 'change'])
)
self.assertFalse(
self.policy.user_has_any_permission(self.inactive_superuser, ['add', 'change'])
)
self.assertTrue(
self.policy.user_has_any_permission(self.report_changer, ['add', 'delete'])
)
self.assertTrue(
self.policy.user_has_any_permission(self.report_adder, ['add', 'change'])
)
self.assertTrue(
self.policy.user_has_any_permission(self.report_adder, ['change', 'delete'])
)
self.assertFalse(
self.policy.user_has_any_permission(self.anonymous_user, ['add', 'change'])
)
def test_users_with_any_permission(self):
users_with_add_or_change_permission = self.policy.users_with_any_permission(
['add', 'change']
)
self.assertResultSetEqual(users_with_add_or_change_permission, [
self.superuser,
self.doc_changer,
self.report_changer,
self.report_adder,
])
def test_users_with_permission(self):
users_with_change_permission = self.policy.users_with_permission('change')
self.assertResultSetEqual(users_with_change_permission, [
self.superuser,
self.doc_changer,
self.report_changer,
self.report_adder,
])
users_with_custom_permission = self.policy.users_with_permission('frobnicate')
self.assertResultSetEqual(users_with_custom_permission, [
self.superuser,
])
def test_user_has_permission_for_instance(self):
# document in the root is only editable by users with permissions
# on the root collection
self.assertUserInstancePermissionMatrix(self.changer_doc, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, False, False, False),
(self.report_adder, False, False, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
# document in 'reports' is editable by users with permissions
# on 'reports' or the root collection
self.assertUserInstancePermissionMatrix(self.useless_report, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, True, True, False),
(self.report_adder, False, False, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
# adder_report is editable by its owner (who only has 'add' permission)
self.assertUserInstancePermissionMatrix(self.adder_report, [
(self.superuser, True, True, True),
(self.inactive_superuser, False, False, False),
(self.doc_changer, True, True, False),
(self.inactive_doc_changer, False, False, False),
(self.report_changer, True, True, False),
(self.report_adder, True, True, False),
(self.useless_user, False, False, False),
(self.anonymous_user, False, False, False),
])
def test_user_has_any_permission_for_instance(self):
self.assertTrue(
self.policy.user_has_any_permission_for_instance(
self.report_changer, ['change', 'delete'], self.useless_report
)
)
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.report_changer, ['change', 'delete'], self.changer_doc
)
)
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.report_adder, ['change', 'delete'], self.changer_doc
)
)
self.assertTrue(
self.policy.user_has_any_permission_for_instance(
self.report_adder, ['change', 'delete'], self.adder_report
)
)
self.assertFalse(
self.policy.user_has_any_permission_for_instance(
self.anonymous_user, ['change', 'delete'], self.changer_doc
)
)
def test_instances_user_has_permission_for(self):
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.superuser, 'change',
),
[
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.inactive_superuser, 'change',
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.doc_changer, 'change',
),
[
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.report_changer, 'change',
),
[
self.changer_report, self.useless_report, self.adder_report,
self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.useless_user, 'change',
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.anonymous_user, 'change',
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_permission_for(
self.report_adder, 'change',
),
[
self.adder_report,
]
)
def test_instances_user_has_any_permission_for(self):
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.superuser, ['change', 'delete']
),
[
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.inactive_superuser, ['change', 'delete']
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.doc_changer, ['change', 'delete']
),
[
self.changer_doc, self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.report_changer, ['change', 'delete']
),
[
self.changer_report, self.adder_report,
self.useless_report, self.anonymous_report
]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.useless_user, ['change', 'delete']
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.anonymous_user, ['change', 'delete']
),
[]
)
self.assertResultSetEqual(
self.policy.instances_user_has_any_permission_for(
self.report_adder, ['change', 'delete'],
),
[
self.adder_report,
]
)
def test_users_with_permission_for_instance(self):
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance('change', self.changer_doc),
[
self.superuser, self.doc_changer
]
)
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance('change', self.changer_report),
[
self.superuser, self.doc_changer, self.report_changer
]
)
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance('change', self.adder_report),
[
self.superuser, self.doc_changer, self.report_changer, self.report_adder
]
)
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance('change', self.useless_report),
[
self.superuser, self.doc_changer, self.report_changer
]
)
self.assertResultSetEqual(
self.policy.users_with_permission_for_instance('change', self.anonymous_report),
[
self.superuser, self.doc_changer, self.report_changer
]
)
def test_users_with_any_permission_for_instance(self):
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.changer_doc
),
[
self.superuser, self.doc_changer
]
)
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.adder_report
),
[
self.superuser, self.doc_changer, self.report_changer, self.report_adder
]
)
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['change', 'delete'], self.useless_report
),
[
self.superuser, self.doc_changer, self.report_changer
]
)
self.assertResultSetEqual(
self.policy.users_with_any_permission_for_instance(
['delete', 'frobnicate'], self.useless_report
),
[self.superuser, self.doc_changer, self.report_changer]
)
def test_collections_user_has_permission_for(self):
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.superuser, 'change',
),
[self.root_collection, self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.inactive_superuser, 'change',
),
[]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.doc_changer, 'change',
),
[self.root_collection, self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_changer, 'change',
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_adder, 'change',
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.report_adder, 'add',
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.useless_user, 'change',
),
[]
)
self.assertResultSetEqual(
self.policy.collections_user_has_permission_for(
self.anonymous_user, 'change',
),
[]
)
def test_collections_user_has_any_permission_for(self):
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.superuser, ['change', 'delete']
),
[self.root_collection, self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.inactive_superuser, ['change', 'delete']
),
[]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.doc_changer, ['change', 'delete']
),
[self.root_collection, self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_changer, ['change', 'delete']
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_adder, ['change', 'delete']
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.report_adder, ['add', 'delete']
),
[self.reports_collection]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.useless_user, ['change', 'delete']
),
[]
)
self.assertResultSetEqual(
self.policy.collections_user_has_any_permission_for(
self.anonymous_user, ['change', 'delete']
),
[]
)