X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/51e50928acce5640e69e0918e282735bae216fdb..620a10bed55b85294baad9dba965ea8dad59e884:/services/api/test/functional/arvados/v1/groups_controller_test.rb diff --git a/services/api/test/functional/arvados/v1/groups_controller_test.rb b/services/api/test/functional/arvados/v1/groups_controller_test.rb index 6530181b68..f8f9eaeb0d 100644 --- a/services/api/test/functional/arvados/v1/groups_controller_test.rb +++ b/services/api/test/functional/arvados/v1/groups_controller_test.rb @@ -2,10 +2,245 @@ require 'test_helper' class Arvados::V1::GroupsControllerTest < ActionController::TestCase + test "attempt to delete group without read or write access" do + authorize_with :active + post :destroy, id: groups(:empty_lonely_group).uuid + assert_response 404 + end + test "attempt to delete group without write access" do authorize_with :active - post :destroy, id: groups(:public).uuid + post :destroy, id: groups(:all_users).uuid assert_response 403 end + test "get list of folders" do + authorize_with :active + get :index, filters: [['group_class', '=', 'folder']], format: :json + assert_response :success + group_uuids = [] + json_response['items'].each do |group| + assert_equal 'folder', group['group_class'] + group_uuids << group['uuid'] + end + assert_includes group_uuids, groups(:afolder).uuid + assert_includes group_uuids, groups(:asubfolder).uuid + assert_not_includes group_uuids, groups(:system_group).uuid + assert_not_includes group_uuids, groups(:private).uuid + end + + test "get list of groups that are not folders" do + authorize_with :active + get :index, filters: [['group_class', '=', nil]], format: :json + assert_response :success + group_uuids = [] + json_response['items'].each do |group| + assert_equal nil, group['group_class'] + group_uuids << group['uuid'] + end + assert_not_includes group_uuids, groups(:afolder).uuid + assert_not_includes group_uuids, groups(:asubfolder).uuid + assert_includes group_uuids, groups(:private).uuid + end + + test "get list of groups with bogus group_class" do + authorize_with :active + get :index, { + filters: [['group_class', '=', 'nogrouphasthislittleclass']], + format: :json, + } + assert_response :success + assert_equal [], json_response['items'] + assert_equal 0, json_response['items_available'] + end + + test 'get group-owned objects' do + authorize_with :active + get :contents, { + id: groups(:afolder).uuid, + format: :json, + include_linked: true, + } + assert_response :success + assert_operator 2, :<=, json_response['items_available'] + assert_operator 2, :<=, json_response['items'].count + kinds = json_response['items'].collect { |i| i['kind'] }.uniq + expect_kinds = %w'arvados#group arvados#specimen arvados#pipelineTemplate arvados#job' + assert_equal expect_kinds, (expect_kinds & kinds) + end + + test 'get group-owned objects with limit' do + authorize_with :active + get :contents, { + id: groups(:afolder).uuid, + limit: 1, + format: :json, + } + assert_response :success + assert_operator 1, :<, json_response['items_available'] + assert_equal 1, json_response['items'].count + end + + test 'get group-owned objects with limit and offset' do + authorize_with :active + get :contents, { + id: groups(:afolder).uuid, + limit: 1, + offset: 12345, + format: :json, + } + assert_response :success + assert_operator 1, :<, json_response['items_available'] + assert_equal 0, json_response['items'].count + end + + test 'get group-owned objects with additional filter matching nothing' do + authorize_with :active + get :contents, { + id: groups(:afolder).uuid, + filters: [['uuid', 'in', ['foo_not_a_uuid','bar_not_a_uuid']]], + format: :json, + } + assert_response :success + assert_equal [], json_response['items'] + assert_equal 0, json_response['items_available'] + end + + test 'get group-owned objects without include_linked' do + unexpected_uuid = specimens(:in_afolder_linked_from_asubfolder).uuid + authorize_with :active + get :contents, { + id: groups(:asubfolder).uuid, + format: :json, + } + assert_response :success + uuids = json_response['items'].collect { |i| i['uuid'] } + assert_equal nil, uuids.index(unexpected_uuid) + end + + test 'get group-owned objects with include_linked' do + expected_uuid = specimens(:in_afolder_linked_from_asubfolder).uuid + authorize_with :active + get :contents, { + id: groups(:asubfolder).uuid, + include_linked: true, + format: :json, + } + assert_response :success + uuids = json_response['items'].collect { |i| i['uuid'] } + assert_includes uuids, expected_uuid, "Did not get #{expected_uuid}" + + expected_name = links(:specimen_is_in_two_folders).name + found_specimen_name = false + assert(json_response['links'].any?, + "Expected a non-empty array of links in response") + json_response['links'].each do |link| + if link['head_uuid'] == expected_uuid + if link['name'] == expected_name + found_specimen_name = true + end + end + end + assert(found_specimen_name, + "Expected to find name '#{expected_name}' in response") + end + + [false, true].each do |inc_ind| + test "get all pages of group-owned #{'and -linked ' if inc_ind}objects" do + authorize_with :active + limit = 5 + offset = 0 + items_available = nil + uuid_received = {} + owner_received = {} + while true + # Behaving badly here, using the same controller multiple + # times within a test. + @json_response = nil + get :contents, { + id: groups(:afolder).uuid, + include_linked: inc_ind, + limit: limit, + offset: offset, + format: :json, + } + assert_response :success + assert_operator(0, :<, json_response['items'].count, + "items_available=#{items_available} but received 0 "\ + "items with offset=#{offset}") + items_available ||= json_response['items_available'] + assert_equal(items_available, json_response['items_available'], + "items_available changed between page #{offset/limit} "\ + "and page #{1+offset/limit}") + json_response['items'].each do |item| + uuid = item['uuid'] + assert_equal(nil, uuid_received[uuid], + "Received '#{uuid}' again on page #{1+offset/limit}") + uuid_received[uuid] = true + owner_received[item['owner_uuid']] = true + offset += 1 + if not inc_ind + assert_equal groups(:afolder).uuid, item['owner_uuid'] + end + end + break if offset >= items_available + end + if inc_ind + assert_operator 0, :<, (json_response.keys - [users(:active).uuid]).count, + "Set include_linked=true but did not receive any non-owned items" + end + end + end + + %w(offset limit).each do |arg| + ['foo', '', '1234five', '0x10', '-8'].each do |val| + test "Raise error on bogus #{arg} parameter #{val.inspect}" do + authorize_with :active + get :contents, { + :id => groups(:afolder).uuid, + :format => :json, + arg => val, + } + assert_response 422 + end + end + end + + test 'get writable_by list for owned group' do + authorize_with :active + get :show, { + id: groups(:afolder).uuid, + format: :json + } + assert_response :success + assert_not_nil(json_response['writable_by'], + "Should receive uuid list in 'writable_by' field") + assert_includes(json_response['writable_by'], users(:active).uuid, + "owner should be included in writable_by list") + end + + test 'no writable_by list for group with read-only access' do + authorize_with :rominiadmin + get :show, { + id: groups(:testusergroup_admins).uuid, + format: :json + } + assert_response :success + assert_nil(json_response['writable_by'], + "Should not receive uuid list in 'writable_by' field") + end + + test 'get writable_by list by admin user' do + authorize_with :admin + get :show, { + id: groups(:testusergroup_admins).uuid, + format: :json + } + assert_response :success + assert_not_nil(json_response['writable_by'], + "Should receive uuid list in 'writable_by' field") + assert_includes(json_response['writable_by'], + users(:admin).uuid, + "Current user should be included in 'writable_by' field") + end end