224 lines
6.7 KiB
Python
224 lines
6.7 KiB
Python
# authentic2 - versatile identity manager
|
|
# Copyright (C) 2010-2019 Entr'ouvert
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify it
|
|
# under the terms of the GNU Affero General Public License as published
|
|
# by the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Affero General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Affero General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
import random
|
|
import json
|
|
|
|
from django import VERSION
|
|
from django.core.exceptions import ValidationError
|
|
|
|
from django.utils import six
|
|
from django.utils.six.moves import builtins as __builtin__
|
|
from django.core import management
|
|
import pytest
|
|
|
|
from django_rbac.utils import get_role_model
|
|
|
|
Role = get_role_model()
|
|
|
|
|
|
@pytest.fixture
|
|
def json_fixture(tmpdir):
|
|
def f(content):
|
|
name = str(random.getrandbits(64))
|
|
outfile = tmpdir.join(name)
|
|
with outfile.open('w') as f:
|
|
f.write(json.dumps(content))
|
|
return outfile.strpath
|
|
return f
|
|
|
|
|
|
def dummy_export_site(*args):
|
|
return {'roles': [{'name': 'role1'}]}
|
|
|
|
|
|
def test_export_role_cmd_stdout(db, capsys, monkeypatch):
|
|
import authentic2.management.commands.export_site
|
|
monkeypatch.setattr(
|
|
authentic2.management.commands.export_site, 'export_site', dummy_export_site)
|
|
management.call_command('export_site')
|
|
out, err = capsys.readouterr()
|
|
assert json.loads(out) == dummy_export_site()
|
|
|
|
|
|
def test_export_role_cmd_to_file(db, monkeypatch, tmpdir):
|
|
import authentic2.management.commands.export_site
|
|
monkeypatch.setattr(
|
|
authentic2.management.commands.export_site, 'export_site', dummy_export_site)
|
|
outfile = tmpdir.join('export.json')
|
|
management.call_command('export_site', '--output', outfile.strpath)
|
|
with outfile.open('r') as f:
|
|
assert json.loads(f.read()) == dummy_export_site()
|
|
|
|
|
|
def test_import_site_cmd(db, monkeypatch, json_fixture):
|
|
management.call_command('import_site', json_fixture({'roles': []}))
|
|
|
|
|
|
def test_import_site_cmd_infos_on_stdout(db, monkeypatch, capsys, json_fixture):
|
|
content = {
|
|
'roles': [
|
|
{
|
|
'uuid': 'dqfewrvesvews2532',
|
|
'slug': 'role-slug',
|
|
'name': 'role-name',
|
|
'ou': None,
|
|
'service': None
|
|
}
|
|
]
|
|
}
|
|
|
|
management.call_command('import_site', json_fixture(content))
|
|
|
|
out, err = capsys.readouterr()
|
|
assert "Real run" in out
|
|
assert "1 roles created" in out
|
|
assert "0 roles updated" in out
|
|
|
|
|
|
def test_import_site_transaction_rollback_on_error(db, monkeypatch, capsys, json_fixture):
|
|
def exception_import_site(*args):
|
|
Role.objects.create(slug='role-slug')
|
|
raise Exception()
|
|
|
|
import authentic2.management.commands.import_site
|
|
monkeypatch.setattr(
|
|
authentic2.management.commands.import_site, 'import_site', exception_import_site)
|
|
|
|
with pytest.raises(Exception):
|
|
management.call_command('import_site', json_fixture({'roles': []}))
|
|
|
|
with pytest.raises(Role.DoesNotExist):
|
|
Role.objects.get(slug='role-slug')
|
|
|
|
|
|
def test_import_site_transaction_rollback_on_dry_run(db, monkeypatch, capsys, json_fixture):
|
|
content = {
|
|
'roles': [
|
|
{
|
|
'uuid': 'dqfewrvesvews2532',
|
|
'slug': 'role-slug',
|
|
'name': 'role-name',
|
|
'ou': None,
|
|
'service': None
|
|
}
|
|
]
|
|
}
|
|
|
|
management.call_command('import_site', '--dry-run', json_fixture(content))
|
|
|
|
with pytest.raises(Role.DoesNotExist):
|
|
Role.objects.get(slug='role-slug')
|
|
|
|
|
|
def test_import_site_cmd_unhandled_context_option(db, monkeypatch, capsys, json_fixture):
|
|
content = {
|
|
'roles': [
|
|
{
|
|
'uuid': 'dqfewrvesvews2532',
|
|
'slug': 'role-slug',
|
|
'name': 'role-name',
|
|
'ou': None,
|
|
'service': None
|
|
}
|
|
]
|
|
}
|
|
|
|
Role.objects.create(uuid='dqfewrvesvews2532', slug='role-slug', name='role-name')
|
|
|
|
with pytest.raises(ValidationError):
|
|
management.call_command(
|
|
'import_site', '-o', 'role-delete-orphans', json_fixture(content))
|
|
|
|
|
|
def test_import_site_cmd_unknown_context_option(db, tmpdir, monkeypatch, capsys):
|
|
from django.core.management.base import CommandError
|
|
export_file = tmpdir.join('roles-export.json')
|
|
with pytest.raises(CommandError):
|
|
management.call_command('import_site', '-o', 'unknown-option', export_file.strpath)
|
|
|
|
|
|
@pytest.mark.skipif(
|
|
VERSION >= (2, 0),
|
|
reason="'stdin' command kwarg deprecated from django 2 onwards")
|
|
def test_import_site_confirm_prompt_yes(db, monkeypatch, json_fixture):
|
|
content = {
|
|
'roles': [
|
|
{
|
|
'uuid': 'dqfewrvesvews2532',
|
|
'slug': 'role-slug',
|
|
'name': 'role-name',
|
|
'ou': None,
|
|
'service': None
|
|
}
|
|
]
|
|
}
|
|
|
|
def yes_raw_input(*args, **kwargs):
|
|
return 'yes'
|
|
|
|
input_funcname = 'raw_input' if six.PY2 else 'input'
|
|
monkeypatch.setattr(__builtin__, input_funcname, yes_raw_input)
|
|
|
|
management.call_command('import_site', json_fixture(content), stdin='yes')
|
|
assert Role.objects.get(uuid='dqfewrvesvews2532')
|
|
|
|
|
|
def test_import_site_update_roles(db, json_fixture):
|
|
r1 = Role.objects.create(name='Role1', slug='role1')
|
|
r2 = Role.objects.create(name='Role2', slug='role2')
|
|
|
|
content = {
|
|
'roles': [
|
|
{
|
|
'ou': None,
|
|
'service': None,
|
|
'slug': r1.slug,
|
|
'name': 'Role first update',
|
|
}
|
|
]
|
|
}
|
|
|
|
management.call_command('import_site', json_fixture(content))
|
|
|
|
r1.refresh_from_db()
|
|
assert r1.name == 'Role first update'
|
|
|
|
content['roles'][0]['uuid'] = r1.uuid
|
|
content['roles'][0]['slug'] = 'slug-updated'
|
|
content['roles'][0]['name'] = 'Role second update'
|
|
|
|
management.call_command('import_site', json_fixture(content))
|
|
|
|
r1.refresh_from_db()
|
|
assert r1.slug == 'slug-updated'
|
|
assert r1.name == 'Role second update'
|
|
|
|
|
|
def test_import_site_empty_uuids(db, monkeypatch, json_fixture):
|
|
with pytest.raises(ValidationError):
|
|
management.call_command('import_site', json_fixture({
|
|
'roles': [
|
|
{
|
|
'uuid': '',
|
|
'slug': 'role-slug',
|
|
'name': 'role-name',
|
|
'ou': None,
|
|
'service': None
|
|
}
|
|
]
|
|
}))
|