@all_users = User.find(:all)
@all_users.each do |user|
- if user.is_admin && user.is_active
+ if user.is_admin && user.is_active
@admin_user = user
elsif user.is_active && !user.is_admin
@active_user = user
- elsif !user.is_active && !user.is_invited
+ elsif !user.is_active && !user.is_invited
@uninvited_user = user
end
end
assert_equal found_user.identity_url, user.identity_url
end
- test "create new user" do
+ test "create new user" do
Thread.current[:user] = @admin_user # set admin user as the current user
user = User.new
assert_equal(user.first_name, 'first_name_for_newly_created_user_updated')
end
- test "update existing user" do
+ test "update existing user" do
Thread.current[:user] = @active_user # set active user as current user
@active_user.first_name = "first_name_changed"
@active_user.save
@active_user = User.find(@active_user.id) # get the user back
assert_equal(@active_user.first_name, 'first_name_changed_by_admin_for_active_user')
end
-
- test "delete a user and verify" do
+
+ test "delete a user and verify" do
active_user_uuid = @active_user.uuid
- Thread.current[:user] = @admin_user
+ Thread.current[:user] = @admin_user
@active_user.delete
found_deleted_user = false
- User.find(:all).each do |user|
- if user.uuid == active_user_uuid
+ User.find(:all).each do |user|
+ if user.uuid == active_user_uuid
found_deleted_user = true
break
- end
+ end
end
assert !found_deleted_user, "found deleted user: "+active_user_uuid
-
+
end
test "create new user as non-admin user" do
'Expected PermissionDeniedError'
end
- test "setup new user as non-admin user" do
- Thread.current[:user] = @active_user
+ test "setup new user" do
+ Thread.current[:user] = @admin_user
- begin
- user = User.new
- user.email = 'abc@xyz.com'
-
- User.setup user, 'http://openid/prefix'
- rescue ArvadosModel::PermissionDeniedError => e
- end
+ email = 'foo@example.com'
+ openid_prefix = 'http://openid/prefix'
- assert (e.message.include? 'PermissionDeniedError'),
- 'Expected PermissionDeniedError'
- end
+ user = User.new
+ user.email = email
+ user.uuid = 'abcdefghijklmnop'
- test "setup new user with no email" do
- Thread.current[:user] = @admin_user
+ vm = VirtualMachine.create
- begin
- user = User.new
-
- User.setup user, 'http://openid/prefix'
- rescue ArvadosModel::RuntimeError => e
- end
+ response = User.setup user, openid_prefix, 'test_repo', vm.uuid
- assert (e.message.include? 'No email found'),
- 'Expected RuntimeError'
- end
+ resp_user = find_obj_in_resp response, 'User'
+ verify_user resp_user, email
- test "setup new user with email but no openid_prefix" do
- Thread.current[:user] = @admin_user
+ oid_login_perm = find_obj_in_resp response, 'Link', 'arvados#user'
+ verify_link oid_login_perm, 'permission', 'can_login', resp_user[:email],
+ resp_user[:uuid]
+ assert_equal openid_prefix, oid_login_perm[:properties][:identity_url_prefix],
+ 'expected identity_url_prefix not found for oid_login_perm'
- begin
- user = User.new
- user.email = 'abc@xyz.com'
-
- User.setup user
+ group_perm = find_obj_in_resp response, 'Link', 'arvados#group'
+ verify_link group_perm, 'permission', 'can_read', resp_user[:uuid], nil
- rescue ArvadosModel::ArgumentError => e
- end
- assert (e.message.include? 'wrong number of arguments'),
- 'Expected ArgumentError'
+ repo_perm = find_obj_in_resp response, 'Link', 'arvados#repository'
+ verify_link repo_perm, 'permission', 'can_write', resp_user[:uuid], nil
+
+ vm_perm = find_obj_in_resp response, 'Link', 'arvados#virtualMachine'
+ verify_link vm_perm, 'permission', 'can_login', resp_user[:uuid], vm.uuid
end
- test "setup new user with email and openid_prefix" do
+ test "setup new user in multiple steps" do
Thread.current[:user] = @admin_user
- email = 'abc@xyz.com'
+ email = 'foo@example.com'
openid_prefix = 'http://openid/prefix'
user = User.new
user.email = email
+ user.uuid = 'abcdefghijklmnop'
response = User.setup user, openid_prefix
- resp_user = response[:user]
+ resp_user = find_obj_in_resp response, 'User'
verify_user resp_user, email
- oid_login_perm = response[:oid_login_perm]
+ oid_login_perm = find_obj_in_resp response, 'Link', 'arvados#user'
verify_link oid_login_perm, 'permission', 'can_login', resp_user[:email],
resp_user[:uuid]
assert_equal openid_prefix, oid_login_perm[:properties][:identity_url_prefix],
'expected identity_url_prefix not found for oid_login_perm'
- verify_link response[:group_perm], 'permission', 'can_read',
- resp_user[:uuid], nil
+ group_perm = find_obj_in_resp response, 'Link', 'arvados#group'
+ verify_link group_perm, 'permission', 'can_read', resp_user[:uuid], nil
# invoke setup again with repo_name
- user = User.new
- user.uuid = resp_user[:uuid]
-
response = User.setup user, openid_prefix, 'test_repo'
-
- resp_user = response[:user]
+ resp_user = find_obj_in_resp response, 'User', nil
verify_user resp_user, email
assert_equal user.uuid, resp_user[:uuid], 'expected uuid not found'
- oid_login_perm = response[:oid_login_perm]
- verify_link oid_login_perm, 'permission', 'can_login', resp_user[:email],
- resp_user[:uuid]
- assert_equal openid_prefix, oid_login_perm[:properties][:identity_url_prefix],
- 'expected identity_url_prefix not found for oid_login_perm'
-
- verify_link response[:group_perm], 'permission', 'can_read',
- resp_user[:uuid], nil
+ group_perm = find_obj_in_resp response, 'Link', 'arvados#group'
+ verify_link group_perm, 'permission', 'can_read', resp_user[:uuid], nil
- verify_link response[:repo_perm], 'permission', 'can_write',
- resp_user[:uuid], nil
+ repo_perm = find_obj_in_resp response, 'Link', 'arvados#repository'
+ verify_link repo_perm, 'permission', 'can_write', resp_user[:uuid], nil
# invoke setup again with a vm_uuid
vm = VirtualMachine.create
response = User.setup user, openid_prefix, 'test_repo', vm.uuid
- resp_user = response[:user]
+ resp_user = find_obj_in_resp response, 'User', nil
verify_user resp_user, email
assert_equal user.uuid, resp_user[:uuid], 'expected uuid not found'
- oid_login_perm = response[:oid_login_perm]
- verify_link oid_login_perm, 'permission', 'can_login', resp_user[:email],
- resp_user[:uuid]
- assert_equal openid_prefix, oid_login_perm[:properties][:identity_url_prefix],
- 'expected identity_url_prefix not found for oid_login_perm'
+ group_perm = find_obj_in_resp response, 'Link', 'arvados#group'
+ verify_link group_perm, 'permission', 'can_read', resp_user[:uuid], nil
- verify_link response[:group_perm], 'permission', 'can_read',
- resp_user[:uuid], nil
+ repo_perm = find_obj_in_resp response, 'Link', 'arvados#repository'
+ verify_link repo_perm, 'permission', 'can_write', resp_user[:uuid], nil
- verify_link response[:repo_perm], 'permission', 'can_write',
- resp_user[:uuid], nil
+ vm_perm = find_obj_in_resp response, 'Link', 'arvados#virtualMachine'
+ verify_link vm_perm, 'permission', 'can_login', resp_user[:uuid], vm.uuid
+ end
- verify_link response[:vm_login_perm], 'permission', 'can_login',
- resp_user[:uuid], vm.uuid
+ def find_obj_in_resp (response, object_type, head_kind=nil)
+ return_obj = nil
+ response.each { |x|
+ if x.class.name == object_type
+ if head_kind
+ if x.head_kind == head_kind
+ return_obj = x
+ break
+ end
+ else
+ return_obj = x
+ break
+ end
+ end
+ }
+ return return_obj
end
- def verify_user resp_user, email
+ def verify_user (resp_user, email)
assert_not_nil resp_user, 'expected user object'
- assert_not_nil resp_user[:uuid], 'expected user object'
- assert_equal email, resp_user[:email], 'expected email not found'
+ assert_not_nil resp_user['uuid'], 'expected user object'
+ assert_equal email, resp_user['email'], 'expected email not found'
end
assert_not_nil link_object, 'expected link for #{link_class} #{link_name}'
assert_not_nil link_object[:uuid],
'expected non-nil uuid for link for #{link_class} #{link_name}'
- assert_equal link_class, link_object[:link_class],
+ assert_equal link_class, link_object[:link_class],
'expected link_class not found for #{link_class} #{link_name}'
- assert_equal link_name, link_object[:name],
+ assert_equal link_name, link_object[:name],
'expected link_name not found for #{link_class} #{link_name}'
- assert_equal tail_uuid, link_object[:tail_uuid],
- 'expected tail_uuid not found for group_perm'
+ assert_equal tail_uuid, link_object[:tail_uuid],
+ 'expected tail_uuid not found for #{link_class} #{link_name}'
if head_uuid
- assert_equal tail_uuid, link_object[:tail_uuid],
- 'expected tail_uuid not found for group_perm'
+ assert_equal head_uuid, link_object[:head_uuid],
+ 'expected head_uuid not found for #{link_class} #{link_name}'
end
end
projects / arvados.git / blobdiff