Merge branch 'master' into 3114-copy-to-project

[arvados.git] / services / api / test / unit / link_test.rb

require 'test_helper'

class LinkTest < ActiveSupport::TestCase
  fixtures :all

  setup do
    set_user_from_auth :admin_trustedclient
  end

  test 'name links with the same tail_uuid must be unique' do
    a = Link.create!(tail_uuid: groups(:aproject).uuid,
                     head_uuid: specimens(:owned_by_active_user).uuid,
                     link_class: 'name',
                     name: 'foo')
    assert a.valid?, a.errors.to_s
    assert_equal groups(:aproject).uuid, a.owner_uuid
    assert_raises ActiveRecord::RecordNotUnique do
      b = Link.create!(tail_uuid: groups(:aproject).uuid,
                       head_uuid: specimens(:owned_by_active_user).uuid,
                       link_class: 'name',
                       name: 'foo')
    end
  end

  test 'name links with different tail_uuid need not be unique' do
    a = Link.create!(tail_uuid: groups(:aproject).uuid,
                     head_uuid: specimens(:owned_by_active_user).uuid,
                     link_class: 'name',
                     name: 'foo')
    assert a.valid?, a.errors.to_s
    assert_equal groups(:aproject).uuid, a.owner_uuid
    b = Link.create!(tail_uuid: groups(:asubproject).uuid,
                     head_uuid: specimens(:owned_by_active_user).uuid,
                     link_class: 'name',
                     name: 'foo')
    assert b.valid?, b.errors.to_s
    assert_equal groups(:asubproject).uuid, b.owner_uuid
    assert_not_equal(a.uuid, b.uuid,
                     "created two links and got the same uuid back.")
  end

  [nil, '', false].each do |name|
    test "name links cannot have name=#{name.inspect}" do
      a = Link.create(tail_uuid: groups(:aproject).uuid,
                      head_uuid: specimens(:owned_by_active_user).uuid,
                      link_class: 'name',
                      name: name)
      assert a.invalid?, "invalid name was accepted as valid?"
    end
  end

  test "cannot delete an object referenced by links" do
    ob = Specimen.create
    link = Link.create(tail_uuid: users(:active).uuid,
                       head_uuid: ob.uuid,
                       link_class: 'test',
                       name: 'test')
    assert_equal users(:admin).uuid, link.owner_uuid
    assert_raises(ActiveRecord::DeleteRestrictionError,
                  "should not delete #{ob.uuid} with link #{link.uuid}") do
      ob.destroy
    end
  end

  def new_active_link_valid?(link_attrs)
    set_user_from_auth :active
    begin
      Link.
        create({link_class: "permission",
                 name: "can_read",
                 head_uuid: groups(:aproject).uuid,
               }.merge(link_attrs)).
        valid?
    rescue ArvadosModel::PermissionDeniedError
      false
    end
  end

  test "link granting permission to nonexistent user is invalid" do
    refute new_active_link_valid?(tail_uuid:
                                  users(:active).uuid.sub(/-\w+$/, "-#{'z' * 15}"))
  end

  test "link granting non-project permission to unreadable user is invalid" do
    refute new_active_link_valid?(tail_uuid: users(:admin).uuid,
                                  head_uuid: collections(:bar_file).uuid)
  end

  test "user can't add a Collection to a Project without permission" do
    refute new_active_link_valid?(link_class: "name",
                                  name: "Permission denied test name",
                                  tail_uuid: collections(:bar_file).uuid)
  end

  test "user can't add a User to a Project" do
    # Users *can* give other users permissions to projects.
    # This test helps ensure that that exception is specific to permissions.
    refute new_active_link_valid?(link_class: "name",
                                  name: "Permission denied test name",
                                  tail_uuid: users(:admin).uuid)
  end

  test "link granting project permissions to unreadable user is valid" do
    assert new_active_link_valid?(tail_uuid: users(:admin).uuid)
  end
end