1 // Copyright (C) The Arvados Authors. All rights reserved.
3 // SPDX-License-Identifier: AGPL-3.0
14 "git.arvados.org/arvados.git/sdk/go/arvados"
15 "git.arvados.org/arvados.git/sdk/go/arvadostest"
19 // Gocheck boilerplate
20 func Test(t *testing.T) {
24 type TestSuite struct {
26 users map[string]arvados.User
29 func (s *TestSuite) SetUpSuite(c *C) {
30 arvadostest.StartAPI()
33 func (s *TestSuite) TearDownSuite(c *C) {
37 func (s *TestSuite) SetUpTest(c *C) {
38 ac := arvados.NewClientFromEnv()
39 u, err := ac.CurrentUser()
41 // Check that the parent group doesn't exist
42 sysUserUUID := u.UUID[:12] + "000000000000000"
43 gl := arvados.GroupList{}
44 params := arvados.ResourceListParams{
45 Filters: []arvados.Filter{{
52 Operand: "Externally synchronized groups",
55 ac.RequestAndDecode(&gl, "GET", "/arvados/v1/groups", nil, params)
56 c.Assert(gl.ItemsAvailable, Equals, 0)
58 os.Args = []string{"cmd", "somefile.csv"}
59 config, err := GetConfig()
61 // Confirm that the parent group was created
62 gl = arvados.GroupList{}
63 ac.RequestAndDecode(&gl, "GET", "/arvados/v1/groups", nil, params)
64 c.Assert(gl.ItemsAvailable, Equals, 1)
65 // Config set up complete, save config for further testing
68 // Fetch current user list
69 ul := arvados.UserList{}
70 params = arvados.ResourceListParams{
71 Filters: []arvados.Filter{{
74 Operand: s.cfg.SysUserUUID,
77 ac.RequestAndDecode(&ul, "GET", "/arvados/v1/users", nil, params)
78 c.Assert(ul.ItemsAvailable, Not(Equals), 0)
79 s.users = make(map[string]arvados.User)
80 for _, u := range ul.Items {
83 c.Assert(len(s.users), Not(Equals), 0)
86 func (s *TestSuite) TearDownTest(c *C) {
88 // Reset database to fixture state after every test run.
89 err := s.cfg.Client.RequestAndDecode(&dst, "POST", "/database/reset", nil, nil)
93 var _ = Suite(&TestSuite{})
95 // MakeTempCSVFile creates a temp file with data as comma separated values
96 func MakeTempCSVFile(data [][]string) (f *os.File, err error) {
97 f, err = ioutil.TempFile("", "test_sync_remote_groups")
101 for _, line := range data {
102 fmt.Fprintf(f, "%s\n", strings.Join(line, ","))
108 // GroupMembershipExists checks that both needed links exist between user and group
109 func GroupMembershipExists(ac *arvados.Client, userUUID string, groupUUID string) bool {
111 // Check Group -> User can_read permission
112 params := arvados.ResourceListParams{
113 Filters: []arvados.Filter{{
116 Operand: "permission",
131 ac.RequestAndDecode(&ll, "GET", "/arvados/v1/links", nil, params)
135 // Check User -> Group can_write permission
136 params = arvados.ResourceListParams{
137 Filters: []arvados.Filter{{
140 Operand: "permission",
148 Operand: "can_write",
155 ac.RequestAndDecode(&ll, "GET", "/arvados/v1/links", nil, params)
162 // If named group exists, return its UUID
163 func RemoteGroupExists(cfg *ConfigParams, groupName string) (uuid string, err error) {
164 gl := arvados.GroupList{}
165 params := arvados.ResourceListParams{
166 Filters: []arvados.Filter{{
173 Operand: cfg.ParentGroupUUID,
180 err = cfg.Client.RequestAndDecode(&gl, "GET", "/arvados/v1/groups", nil, params)
184 if gl.ItemsAvailable == 0 {
185 // No group with this name
187 } else if gl.ItemsAvailable == 1 {
189 uuid = gl.Items[0].UUID
191 // This should never happen
193 err = fmt.Errorf("more than 1 group found with the same name and parent")
198 func (s *TestSuite) TestParseFlagsWithPositionalArgument(c *C) {
199 cfg := ConfigParams{}
200 os.Args = []string{"cmd", "-verbose", "/tmp/somefile.csv"}
201 err := ParseFlags(&cfg)
203 c.Check(cfg.Path, Equals, "/tmp/somefile.csv")
204 c.Check(cfg.Verbose, Equals, true)
207 func (s *TestSuite) TestParseFlagsWithoutPositionalArgument(c *C) {
208 os.Args = []string{"cmd", "-verbose"}
209 err := ParseFlags(&ConfigParams{})
210 c.Assert(err, NotNil)
213 func (s *TestSuite) TestGetUserID(c *C) {
215 Email: "testuser@example.com",
216 Username: "Testuser",
218 email, err := GetUserID(u, "email")
220 c.Check(email, Equals, "testuser@example.com")
221 _, err = GetUserID(u, "bogus")
222 c.Assert(err, NotNil)
225 func (s *TestSuite) TestGetConfig(c *C) {
226 os.Args = []string{"cmd", "/tmp/somefile.csv"}
227 cfg, err := GetConfig()
229 c.Check(cfg.SysUserUUID, NotNil)
230 c.Check(cfg.Client, NotNil)
231 c.Check(cfg.ParentGroupUUID, NotNil)
232 c.Check(cfg.ParentGroupName, Equals, "Externally synchronized groups")
235 // Ignore leading & trailing spaces on group & users names
236 func (s *TestSuite) TestIgnoreSpaces(c *C) {
237 activeUserEmail := s.users[arvadostest.ActiveUserUUID].Email
238 activeUserUUID := s.users[arvadostest.ActiveUserUUID].UUID
239 // Confirm that the groups don't exist
240 for _, groupName := range []string{"TestGroup1", "TestGroup2", "Test Group 3"} {
241 groupUUID, err := RemoteGroupExists(s.cfg, groupName)
243 c.Assert(groupUUID, Equals, "")
246 {" TestGroup1", activeUserEmail},
247 {"TestGroup2 ", " " + activeUserEmail},
248 {" Test Group 3 ", activeUserEmail + " "},
250 tmpfile, err := MakeTempCSVFile(data)
252 defer os.Remove(tmpfile.Name()) // clean up
253 s.cfg.Path = tmpfile.Name()
256 // Check that 3 groups were created correctly, and have the active user as
258 for _, groupName := range []string{"TestGroup1", "TestGroup2", "Test Group 3"} {
259 groupUUID, err := RemoteGroupExists(s.cfg, groupName)
261 c.Assert(groupUUID, Not(Equals), "")
262 c.Assert(GroupMembershipExists(s.cfg.Client, activeUserUUID, groupUUID), Equals, true)
266 // Error out when records have <2 or >3 records
267 func (s *TestSuite) TestWrongNumberOfFields(c *C) {
268 for _, testCase := range [][][]string{
270 {{"field1", "field2", "field3", "field4"}},
271 {{"field1", "field2", "field3", "field4", "field5"}},
273 tmpfile, err := MakeTempCSVFile(testCase)
275 defer os.Remove(tmpfile.Name())
276 s.cfg.Path = tmpfile.Name()
278 c.Assert(err, Not(IsNil))
282 // The absence of a user membership on the CSV file implies its removal
283 func (s *TestSuite) TestMembershipRemoval(c *C) {
284 localUserEmail := s.users[arvadostest.ActiveUserUUID].Email
285 localUserUUID := s.users[arvadostest.ActiveUserUUID].UUID
286 remoteUserEmail := s.users[arvadostest.FederatedActiveUserUUID].Email
287 remoteUserUUID := s.users[arvadostest.FederatedActiveUserUUID].UUID
289 {"TestGroup1", localUserEmail},
290 {"TestGroup1", remoteUserEmail},
291 {"TestGroup2", localUserEmail},
292 {"TestGroup2", remoteUserEmail},
294 tmpfile, err := MakeTempCSVFile(data)
296 defer os.Remove(tmpfile.Name()) // clean up
297 s.cfg.Path = tmpfile.Name()
300 // Confirm that memberships exist
301 for _, groupName := range []string{"TestGroup1", "TestGroup2"} {
302 groupUUID, err := RemoteGroupExists(s.cfg, groupName)
304 c.Assert(groupUUID, Not(Equals), "")
305 c.Assert(GroupMembershipExists(s.cfg.Client, localUserUUID, groupUUID), Equals, true)
306 c.Assert(GroupMembershipExists(s.cfg.Client, remoteUserUUID, groupUUID), Equals, true)
308 // New CSV with some previous membership missing
310 {"TestGroup1", localUserEmail},
311 {"TestGroup2", remoteUserEmail},
313 tmpfile2, err := MakeTempCSVFile(data)
315 defer os.Remove(tmpfile2.Name()) // clean up
316 s.cfg.Path = tmpfile2.Name()
319 // Confirm TestGroup1 memberships
320 groupUUID, err := RemoteGroupExists(s.cfg, "TestGroup1")
322 c.Assert(groupUUID, Not(Equals), "")
323 c.Assert(GroupMembershipExists(s.cfg.Client, localUserUUID, groupUUID), Equals, true)
324 c.Assert(GroupMembershipExists(s.cfg.Client, remoteUserUUID, groupUUID), Equals, false)
325 // Confirm TestGroup1 memberships
326 groupUUID, err = RemoteGroupExists(s.cfg, "TestGroup2")
328 c.Assert(groupUUID, Not(Equals), "")
329 c.Assert(GroupMembershipExists(s.cfg.Client, localUserUUID, groupUUID), Equals, false)
330 c.Assert(GroupMembershipExists(s.cfg.Client, remoteUserUUID, groupUUID), Equals, true)
333 // If a group doesn't exist on the system, create it before adding users
334 func (s *TestSuite) TestAutoCreateGroupWhenNotExisting(c *C) {
335 groupName := "Testers"
336 // Confirm that group doesn't exist
337 groupUUID, err := RemoteGroupExists(s.cfg, groupName)
339 c.Assert(groupUUID, Equals, "")
340 // Make a tmp CSV file
342 {groupName, s.users[arvadostest.ActiveUserUUID].Email},
344 tmpfile, err := MakeTempCSVFile(data)
346 defer os.Remove(tmpfile.Name()) // clean up
347 s.cfg.Path = tmpfile.Name()
350 // "Testers" group should now exist
351 groupUUID, err = RemoteGroupExists(s.cfg, groupName)
353 c.Assert(groupUUID, Not(Equals), "")
354 // active user should be a member
355 c.Assert(GroupMembershipExists(s.cfg.Client, arvadostest.ActiveUserUUID, groupUUID), Equals, true)
358 // Users listed on the file that don't exist on the system are ignored
359 func (s *TestSuite) TestIgnoreNonexistantUsers(c *C) {
360 activeUserEmail := s.users[arvadostest.ActiveUserUUID].Email
361 activeUserUUID := s.users[arvadostest.ActiveUserUUID].UUID
362 // Confirm that group doesn't exist
363 groupUUID, err := RemoteGroupExists(s.cfg, "TestGroup4")
365 c.Assert(groupUUID, Equals, "")
366 // Create file & run command
368 {"TestGroup4", "nonexistantuser@unknowndomain.com"}, // Processed first
369 {"TestGroup4", activeUserEmail},
371 tmpfile, err := MakeTempCSVFile(data)
373 defer os.Remove(tmpfile.Name()) // clean up
374 s.cfg.Path = tmpfile.Name()
377 // Confirm that memberships exist
378 groupUUID, err = RemoteGroupExists(s.cfg, "TestGroup4")
380 c.Assert(groupUUID, Not(Equals), "")
381 c.Assert(GroupMembershipExists(s.cfg.Client, activeUserUUID, groupUUID), Equals, true)
384 // Users listed on the file that don't exist on the system are ignored
385 func (s *TestSuite) TestIgnoreEmptyFields(c *C) {
386 activeUserEmail := s.users[arvadostest.ActiveUserUUID].Email
387 activeUserUUID := s.users[arvadostest.ActiveUserUUID].UUID
388 // Confirm that group doesn't exist
389 groupUUID, err := RemoteGroupExists(s.cfg, "TestGroup4")
391 c.Assert(groupUUID, Equals, "")
392 // Create file & run command
394 {"", activeUserEmail}, // Empty field
395 {"TestGroup5", ""}, // Empty field
396 {"TestGroup4", activeUserEmail},
398 tmpfile, err := MakeTempCSVFile(data)
400 defer os.Remove(tmpfile.Name()) // clean up
401 s.cfg.Path = tmpfile.Name()
404 // Confirm that memberships exist
405 groupUUID, err = RemoteGroupExists(s.cfg, "TestGroup4")
407 c.Assert(groupUUID, Not(Equals), "")
408 c.Assert(GroupMembershipExists(s.cfg.Client, activeUserUUID, groupUUID), Equals, true)
411 // Instead of emails, use username as identifier
412 func (s *TestSuite) TestUseUsernames(c *C) {
413 activeUserName := s.users[arvadostest.ActiveUserUUID].Username
414 activeUserUUID := s.users[arvadostest.ActiveUserUUID].UUID
415 // Confirm that group doesn't exist
416 groupUUID, err := RemoteGroupExists(s.cfg, "TestGroup1")
418 c.Assert(groupUUID, Equals, "")
419 // Create file & run command
421 {"TestGroup1", activeUserName},
423 tmpfile, err := MakeTempCSVFile(data)
425 defer os.Remove(tmpfile.Name()) // clean up
426 s.cfg.Path = tmpfile.Name()
427 s.cfg.UserID = "username"
429 s.cfg.UserID = "email"
431 // Confirm that memberships exist
432 groupUUID, err = RemoteGroupExists(s.cfg, "TestGroup1")
434 c.Assert(groupUUID, Not(Equals), "")
435 c.Assert(GroupMembershipExists(s.cfg.Client, activeUserUUID, groupUUID), Equals, true)
projects / arvados.git / blob