Mercurial > hg > soundsoftware-site

annotate .svn/pristine/3f/3ff56ecaa90caa3fe6d5a6c1a603bc58a9ed2add.svn-base @ 1524:82fac3dcf466 redmine-2.5-integration

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix failure to interpret Javascript when autocompleting members for project
author Chris Cannam <chris.cannam@soundsoftware.ac.uk>
date Thu, 11 Sep 2014 10:24:38 +0100
parents dffacf8a6908
children
rev   line source
Chris@1517 1 # Redmine - project management software
Chris@1517 2 # Copyright (C) 2006-2014 Jean-Philippe Lang
Chris@1517 3 #
Chris@1517 4 # This program is free software; you can redistribute it and/or
Chris@1517 5 # modify it under the terms of the GNU General Public License
Chris@1517 6 # as published by the Free Software Foundation; either version 2
Chris@1517 7 # of the License, or (at your option) any later version.
Chris@1517 8 #
Chris@1517 9 # This program is distributed in the hope that it will be useful,
Chris@1517 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
Chris@1517 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
Chris@1517 12 # GNU General Public License for more details.
Chris@1517 13 #
Chris@1517 14 # You should have received a copy of the GNU General Public License
Chris@1517 15 # along with this program; if not, write to the Free Software
Chris@1517 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Chris@1517 17
Chris@1517 18 require File.expand_path('../../test_helper', __FILE__)
Chris@1517 19
Chris@1517 20 class UserTest < ActiveSupport::TestCase
Chris@1517 21 fixtures :users, :members, :projects, :roles, :member_roles, :auth_sources,
Chris@1517 22 :trackers, :issue_statuses,
Chris@1517 23 :projects_trackers,
Chris@1517 24 :watchers,
Chris@1517 25 :issue_categories, :enumerations, :issues,
Chris@1517 26 :journals, :journal_details,
Chris@1517 27 :groups_users,
Chris@1517 28 :enabled_modules
Chris@1517 29
Chris@1517 30 def setup
Chris@1517 31 @admin = User.find(1)
Chris@1517 32 @jsmith = User.find(2)
Chris@1517 33 @dlopper = User.find(3)
Chris@1517 34 end
Chris@1517 35
Chris@1517 36 def test_sorted_scope_should_sort_user_by_display_name
Chris@1517 37 assert_equal User.all.map(&:name).map(&:downcase).sort,
Chris@1517 38 User.sorted.map(&:name).map(&:downcase)
Chris@1517 39 end
Chris@1517 40
Chris@1517 41 def test_generate
Chris@1517 42 User.generate!(:firstname => 'Testing connection')
Chris@1517 43 User.generate!(:firstname => 'Testing connection')
Chris@1517 44 assert_equal 2, User.where(:firstname => 'Testing connection').count
Chris@1517 45 end
Chris@1517 46
Chris@1517 47 def test_truth
Chris@1517 48 assert_kind_of User, @jsmith
Chris@1517 49 end
Chris@1517 50
Chris@1517 51 def test_mail_should_be_stripped
Chris@1517 52 u = User.new
Chris@1517 53 u.mail = " foo@bar.com "
Chris@1517 54 assert_equal "foo@bar.com", u.mail
Chris@1517 55 end
Chris@1517 56
Chris@1517 57 def test_mail_validation
Chris@1517 58 u = User.new
Chris@1517 59 u.mail = ''
Chris@1517 60 assert !u.valid?
Chris@1517 61 assert_include I18n.translate('activerecord.errors.messages.blank'), u.errors[:mail]
Chris@1517 62 end
Chris@1517 63
Chris@1517 64 def test_login_length_validation
Chris@1517 65 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1517 66 user.login = "x" * (User::LOGIN_LENGTH_LIMIT+1)
Chris@1517 67 assert !user.valid?
Chris@1517 68
Chris@1517 69 user.login = "x" * (User::LOGIN_LENGTH_LIMIT)
Chris@1517 70 assert user.valid?
Chris@1517 71 assert user.save
Chris@1517 72 end
Chris@1517 73
Chris@1517 74 def test_generate_password_should_respect_minimum_password_length
Chris@1517 75 with_settings :password_min_length => 15 do
Chris@1517 76 user = User.generate!(:generate_password => true)
Chris@1517 77 assert user.password.length >= 15
Chris@1517 78 end
Chris@1517 79 end
Chris@1517 80
Chris@1517 81 def test_generate_password_should_not_generate_password_with_less_than_10_characters
Chris@1517 82 with_settings :password_min_length => 4 do
Chris@1517 83 user = User.generate!(:generate_password => true)
Chris@1517 84 assert user.password.length >= 10
Chris@1517 85 end
Chris@1517 86 end
Chris@1517 87
Chris@1517 88 def test_generate_password_on_create_should_set_password
Chris@1517 89 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1517 90 user.login = "newuser"
Chris@1517 91 user.generate_password = true
Chris@1517 92 assert user.save
Chris@1517 93
Chris@1517 94 password = user.password
Chris@1517 95 assert user.check_password?(password)
Chris@1517 96 end
Chris@1517 97
Chris@1517 98 def test_generate_password_on_update_should_update_password
Chris@1517 99 user = User.find(2)
Chris@1517 100 hash = user.hashed_password
Chris@1517 101 user.generate_password = true
Chris@1517 102 assert user.save
Chris@1517 103
Chris@1517 104 password = user.password
Chris@1517 105 assert user.check_password?(password)
Chris@1517 106 assert_not_equal hash, user.reload.hashed_password
Chris@1517 107 end
Chris@1517 108
Chris@1517 109 def test_create
Chris@1517 110 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1517 111
Chris@1517 112 user.login = "jsmith"
Chris@1517 113 user.password, user.password_confirmation = "password", "password"
Chris@1517 114 # login uniqueness
Chris@1517 115 assert !user.save
Chris@1517 116 assert_equal 1, user.errors.count
Chris@1517 117
Chris@1517 118 user.login = "newuser"
Chris@1517 119 user.password, user.password_confirmation = "password", "pass"
Chris@1517 120 # password confirmation
Chris@1517 121 assert !user.save
Chris@1517 122 assert_equal 1, user.errors.count
Chris@1517 123
Chris@1517 124 user.password, user.password_confirmation = "password", "password"
Chris@1517 125 assert user.save
Chris@1517 126 end
Chris@1517 127
Chris@1517 128 def test_user_before_create_should_set_the_mail_notification_to_the_default_setting
Chris@1517 129 @user1 = User.generate!
Chris@1517 130 assert_equal 'only_my_events', @user1.mail_notification
Chris@1517 131 with_settings :default_notification_option => 'all' do
Chris@1517 132 @user2 = User.generate!
Chris@1517 133 assert_equal 'all', @user2.mail_notification
Chris@1517 134 end
Chris@1517 135 end
Chris@1517 136
Chris@1517 137 def test_user_login_should_be_case_insensitive
Chris@1517 138 u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1517 139 u.login = 'newuser'
Chris@1517 140 u.password, u.password_confirmation = "password", "password"
Chris@1517 141 assert u.save
Chris@1517 142 u = User.new(:firstname => "Similar", :lastname => "User",
Chris@1517 143 :mail => "similaruser@somenet.foo")
Chris@1517 144 u.login = 'NewUser'
Chris@1517 145 u.password, u.password_confirmation = "password", "password"
Chris@1517 146 assert !u.save
Chris@1517 147 assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:login]
Chris@1517 148 end
Chris@1517 149
Chris@1517 150 def test_mail_uniqueness_should_not_be_case_sensitive
Chris@1517 151 u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1517 152 u.login = 'newuser1'
Chris@1517 153 u.password, u.password_confirmation = "password", "password"
Chris@1517 154 assert u.save
Chris@1517 155
Chris@1517 156 u = User.new(:firstname => "new", :lastname => "user", :mail => "newUser@Somenet.foo")
Chris@1517 157 u.login = 'newuser2'
Chris@1517 158 u.password, u.password_confirmation = "password", "password"
Chris@1517 159 assert !u.save
Chris@1517 160 assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:mail]
Chris@1517 161 end
Chris@1517 162
Chris@1517 163 def test_update
Chris@1517 164 assert_equal "admin", @admin.login
Chris@1517 165 @admin.login = "john"
Chris@1517 166 assert @admin.save, @admin.errors.full_messages.join("; ")
Chris@1517 167 @admin.reload
Chris@1517 168 assert_equal "john", @admin.login
Chris@1517 169 end
Chris@1517 170
Chris@1517 171 def test_update_should_not_fail_for_legacy_user_with_different_case_logins
Chris@1517 172 u1 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser1@somenet.foo")
Chris@1517 173 u1.login = 'newuser1'
Chris@1517 174 assert u1.save
Chris@1517 175
Chris@1517 176 u2 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser2@somenet.foo")
Chris@1517 177 u2.login = 'newuser1'
Chris@1517 178 assert u2.save(:validate => false)
Chris@1517 179
Chris@1517 180 user = User.find(u2.id)
Chris@1517 181 user.firstname = "firstname"
Chris@1517 182 assert user.save, "Save failed"
Chris@1517 183 end
Chris@1517 184
Chris@1517 185 def test_destroy_should_delete_members_and_roles
Chris@1517 186 members = Member.where(:user_id => 2)
Chris@1517 187 ms = members.count
Chris@1517 188 rs = members.collect(&:roles).flatten.size
Chris@1517 189 assert ms > 0
Chris@1517 190 assert rs > 0
Chris@1517 191 assert_difference 'Member.count', - ms do
Chris@1517 192 assert_difference 'MemberRole.count', - rs do
Chris@1517 193 User.find(2).destroy
Chris@1517 194 end
Chris@1517 195 end
Chris@1517 196 assert_nil User.find_by_id(2)
Chris@1517 197 assert_equal 0, Member.where(:user_id => 2).count
Chris@1517 198 end
Chris@1517 199
Chris@1517 200 def test_destroy_should_update_attachments
Chris@1517 201 attachment = Attachment.create!(:container => Project.find(1),
Chris@1517 202 :file => uploaded_test_file("testfile.txt", "text/plain"),
Chris@1517 203 :author_id => 2)
Chris@1517 204
Chris@1517 205 User.find(2).destroy
Chris@1517 206 assert_nil User.find_by_id(2)
Chris@1517 207 assert_equal User.anonymous, attachment.reload.author
Chris@1517 208 end
Chris@1517 209
Chris@1517 210 def test_destroy_should_update_comments
Chris@1517 211 comment = Comment.create!(
Chris@1517 212 :commented => News.create!(:project_id => 1,
Chris@1517 213 :author_id => 1, :title => 'foo', :description => 'foo'),
Chris@1517 214 :author => User.find(2),
Chris@1517 215 :comments => 'foo'
Chris@1517 216 )
Chris@1517 217
Chris@1517 218 User.find(2).destroy
Chris@1517 219 assert_nil User.find_by_id(2)
Chris@1517 220 assert_equal User.anonymous, comment.reload.author
Chris@1517 221 end
Chris@1517 222
Chris@1517 223 def test_destroy_should_update_issues
Chris@1517 224 issue = Issue.create!(:project_id => 1, :author_id => 2,
Chris@1517 225 :tracker_id => 1, :subject => 'foo')
Chris@1517 226
Chris@1517 227 User.find(2).destroy
Chris@1517 228 assert_nil User.find_by_id(2)
Chris@1517 229 assert_equal User.anonymous, issue.reload.author
Chris@1517 230 end
Chris@1517 231
Chris@1517 232 def test_destroy_should_unassign_issues
Chris@1517 233 issue = Issue.create!(:project_id => 1, :author_id => 1,
Chris@1517 234 :tracker_id => 1, :subject => 'foo', :assigned_to_id => 2)
Chris@1517 235
Chris@1517 236 User.find(2).destroy
Chris@1517 237 assert_nil User.find_by_id(2)
Chris@1517 238 assert_nil issue.reload.assigned_to
Chris@1517 239 end
Chris@1517 240
Chris@1517 241 def test_destroy_should_update_journals
Chris@1517 242 issue = Issue.create!(:project_id => 1, :author_id => 2,
Chris@1517 243 :tracker_id => 1, :subject => 'foo')
Chris@1517 244 issue.init_journal(User.find(2), "update")
Chris@1517 245 issue.save!
Chris@1517 246
Chris@1517 247 User.find(2).destroy
Chris@1517 248 assert_nil User.find_by_id(2)
Chris@1517 249 assert_equal User.anonymous, issue.journals.first.reload.user
Chris@1517 250 end
Chris@1517 251
Chris@1517 252 def test_destroy_should_update_journal_details_old_value
Chris@1517 253 issue = Issue.create!(:project_id => 1, :author_id => 1,
Chris@1517 254 :tracker_id => 1, :subject => 'foo', :assigned_to_id => 2)
Chris@1517 255 issue.init_journal(User.find(1), "update")
Chris@1517 256 issue.assigned_to_id = nil
Chris@1517 257 assert_difference 'JournalDetail.count' do
Chris@1517 258 issue.save!
Chris@1517 259 end
Chris@1517 260 journal_detail = JournalDetail.order('id DESC').first
Chris@1517 261 assert_equal '2', journal_detail.old_value
Chris@1517 262
Chris@1517 263 User.find(2).destroy
Chris@1517 264 assert_nil User.find_by_id(2)
Chris@1517 265 assert_equal User.anonymous.id.to_s, journal_detail.reload.old_value
Chris@1517 266 end
Chris@1517 267
Chris@1517 268 def test_destroy_should_update_journal_details_value
Chris@1517 269 issue = Issue.create!(:project_id => 1, :author_id => 1,
Chris@1517 270 :tracker_id => 1, :subject => 'foo')
Chris@1517 271 issue.init_journal(User.find(1), "update")
Chris@1517 272 issue.assigned_to_id = 2
Chris@1517 273 assert_difference 'JournalDetail.count' do
Chris@1517 274 issue.save!
Chris@1517 275 end
Chris@1517 276 journal_detail = JournalDetail.order('id DESC').first
Chris@1517 277 assert_equal '2', journal_detail.value
Chris@1517 278
Chris@1517 279 User.find(2).destroy
Chris@1517 280 assert_nil User.find_by_id(2)
Chris@1517 281 assert_equal User.anonymous.id.to_s, journal_detail.reload.value
Chris@1517 282 end
Chris@1517 283
Chris@1517 284 def test_destroy_should_update_messages
Chris@1517 285 board = Board.create!(:project_id => 1, :name => 'Board', :description => 'Board')
Chris@1517 286 message = Message.create!(:board_id => board.id, :author_id => 2,
Chris@1517 287 :subject => 'foo', :content => 'foo')
Chris@1517 288 User.find(2).destroy
Chris@1517 289 assert_nil User.find_by_id(2)
Chris@1517 290 assert_equal User.anonymous, message.reload.author
Chris@1517 291 end
Chris@1517 292
Chris@1517 293 def test_destroy_should_update_news
Chris@1517 294 news = News.create!(:project_id => 1, :author_id => 2,
Chris@1517 295 :title => 'foo', :description => 'foo')
Chris@1517 296 User.find(2).destroy
Chris@1517 297 assert_nil User.find_by_id(2)
Chris@1517 298 assert_equal User.anonymous, news.reload.author
Chris@1517 299 end
Chris@1517 300
Chris@1517 301 def test_destroy_should_delete_private_queries
Chris@1517 302 query = Query.new(:name => 'foo', :visibility => Query::VISIBILITY_PRIVATE)
Chris@1517 303 query.project_id = 1
Chris@1517 304 query.user_id = 2
Chris@1517 305 query.save!
Chris@1517 306
Chris@1517 307 User.find(2).destroy
Chris@1517 308 assert_nil User.find_by_id(2)
Chris@1517 309 assert_nil Query.find_by_id(query.id)
Chris@1517 310 end
Chris@1517 311
Chris@1517 312 def test_destroy_should_update_public_queries
Chris@1517 313 query = Query.new(:name => 'foo', :visibility => Query::VISIBILITY_PUBLIC)
Chris@1517 314 query.project_id = 1
Chris@1517 315 query.user_id = 2
Chris@1517 316 query.save!
Chris@1517 317
Chris@1517 318 User.find(2).destroy
Chris@1517 319 assert_nil User.find_by_id(2)
Chris@1517 320 assert_equal User.anonymous, query.reload.user
Chris@1517 321 end
Chris@1517 322
Chris@1517 323 def test_destroy_should_update_time_entries
Chris@1517 324 entry = TimeEntry.new(:hours => '2', :spent_on => Date.today,
Chris@1517 325 :activity => TimeEntryActivity.create!(:name => 'foo'))
Chris@1517 326 entry.project_id = 1
Chris@1517 327 entry.user_id = 2
Chris@1517 328 entry.save!
Chris@1517 329
Chris@1517 330 User.find(2).destroy
Chris@1517 331 assert_nil User.find_by_id(2)
Chris@1517 332 assert_equal User.anonymous, entry.reload.user
Chris@1517 333 end
Chris@1517 334
Chris@1517 335 def test_destroy_should_delete_tokens
Chris@1517 336 token = Token.create!(:user_id => 2, :value => 'foo')
Chris@1517 337
Chris@1517 338 User.find(2).destroy
Chris@1517 339 assert_nil User.find_by_id(2)
Chris@1517 340 assert_nil Token.find_by_id(token.id)
Chris@1517 341 end
Chris@1517 342
Chris@1517 343 def test_destroy_should_delete_watchers
Chris@1517 344 issue = Issue.create!(:project_id => 1, :author_id => 1,
Chris@1517 345 :tracker_id => 1, :subject => 'foo')
Chris@1517 346 watcher = Watcher.create!(:user_id => 2, :watchable => issue)
Chris@1517 347
Chris@1517 348 User.find(2).destroy
Chris@1517 349 assert_nil User.find_by_id(2)
Chris@1517 350 assert_nil Watcher.find_by_id(watcher.id)
Chris@1517 351 end
Chris@1517 352
Chris@1517 353 def test_destroy_should_update_wiki_contents
Chris@1517 354 wiki_content = WikiContent.create!(
Chris@1517 355 :text => 'foo',
Chris@1517 356 :author_id => 2,
Chris@1517 357 :page => WikiPage.create!(:title => 'Foo',
Chris@1517 358 :wiki => Wiki.create!(:project_id => 3,
Chris@1517 359 :start_page => 'Start'))
Chris@1517 360 )
Chris@1517 361 wiki_content.text = 'bar'
Chris@1517 362 assert_difference 'WikiContent::Version.count' do
Chris@1517 363 wiki_content.save!
Chris@1517 364 end
Chris@1517 365
Chris@1517 366 User.find(2).destroy
Chris@1517 367 assert_nil User.find_by_id(2)
Chris@1517 368 assert_equal User.anonymous, wiki_content.reload.author
Chris@1517 369 wiki_content.versions.each do |version|
Chris@1517 370 assert_equal User.anonymous, version.reload.author
Chris@1517 371 end
Chris@1517 372 end
Chris@1517 373
Chris@1517 374 def test_destroy_should_nullify_issue_categories
Chris@1517 375 category = IssueCategory.create!(:project_id => 1, :assigned_to_id => 2, :name => 'foo')
Chris@1517 376
Chris@1517 377 User.find(2).destroy
Chris@1517 378 assert_nil User.find_by_id(2)
Chris@1517 379 assert_nil category.reload.assigned_to_id
Chris@1517 380 end
Chris@1517 381
Chris@1517 382 def test_destroy_should_nullify_changesets
Chris@1517 383 changeset = Changeset.create!(
Chris@1517 384 :repository => Repository::Subversion.create!(
Chris@1517 385 :project_id => 1,
Chris@1517 386 :url => 'file:///tmp',
Chris@1517 387 :identifier => 'tmp'
Chris@1517 388 ),
Chris@1517 389 :revision => '12',
Chris@1517 390 :committed_on => Time.now,
Chris@1517 391 :committer => 'jsmith'
Chris@1517 392 )
Chris@1517 393 assert_equal 2, changeset.user_id
Chris@1517 394
Chris@1517 395 User.find(2).destroy
Chris@1517 396 assert_nil User.find_by_id(2)
Chris@1517 397 assert_nil changeset.reload.user_id
Chris@1517 398 end
Chris@1517 399
Chris@1517 400 def test_anonymous_user_should_not_be_destroyable
Chris@1517 401 assert_no_difference 'User.count' do
Chris@1517 402 assert_equal false, User.anonymous.destroy
Chris@1517 403 end
Chris@1517 404 end
Chris@1517 405
Chris@1517 406 def test_validate_login_presence
Chris@1517 407 @admin.login = ""
Chris@1517 408 assert !@admin.save
Chris@1517 409 assert_equal 1, @admin.errors.count
Chris@1517 410 end
Chris@1517 411
Chris@1517 412 def test_validate_mail_notification_inclusion
Chris@1517 413 u = User.new
Chris@1517 414 u.mail_notification = 'foo'
Chris@1517 415 u.save
Chris@1517 416 assert_not_equal [], u.errors[:mail_notification]
Chris@1517 417 end
Chris@1517 418
Chris@1517 419 def test_password
Chris@1517 420 user = User.try_to_login("admin", "admin")
Chris@1517 421 assert_kind_of User, user
Chris@1517 422 assert_equal "admin", user.login
Chris@1517 423 user.password = "hello123"
Chris@1517 424 assert user.save
Chris@1517 425
Chris@1517 426 user = User.try_to_login("admin", "hello123")
Chris@1517 427 assert_kind_of User, user
Chris@1517 428 assert_equal "admin", user.login
Chris@1517 429 end
Chris@1517 430
Chris@1517 431 def test_validate_password_length
Chris@1517 432 with_settings :password_min_length => '100' do
Chris@1517 433 user = User.new(:firstname => "new100",
Chris@1517 434 :lastname => "user100", :mail => "newuser100@somenet.foo")
Chris@1517 435 user.login = "newuser100"
Chris@1517 436 user.password, user.password_confirmation = "password100", "password100"
Chris@1517 437 assert !user.save
Chris@1517 438 assert_equal 1, user.errors.count
Chris@1517 439 end
Chris@1517 440 end
Chris@1517 441
Chris@1517 442 def test_name_format
Chris@1517 443 assert_equal 'John S.', @jsmith.name(:firstname_lastinitial)
Chris@1517 444 assert_equal 'Smith, John', @jsmith.name(:lastname_coma_firstname)
Chris@1517 445 assert_equal 'J. Smith', @jsmith.name(:firstinitial_lastname)
Chris@1517 446 assert_equal 'J.-P. Lang', User.new(:firstname => 'Jean-Philippe', :lastname => 'Lang').name(:firstinitial_lastname)
Chris@1517 447 end
Chris@1517 448
Chris@1517 449 def test_name_should_use_setting_as_default_format
Chris@1517 450 with_settings :user_format => :firstname_lastname do
Chris@1517 451 assert_equal 'John Smith', @jsmith.reload.name
Chris@1517 452 end
Chris@1517 453 with_settings :user_format => :username do
Chris@1517 454 assert_equal 'jsmith', @jsmith.reload.name
Chris@1517 455 end
Chris@1517 456 with_settings :user_format => :lastname do
Chris@1517 457 assert_equal 'Smith', @jsmith.reload.name
Chris@1517 458 end
Chris@1517 459 end
Chris@1517 460
Chris@1517 461 def test_today_should_return_the_day_according_to_user_time_zone
Chris@1517 462 preference = User.find(1).pref
Chris@1517 463 date = Date.new(2012, 05, 15)
Chris@1517 464 time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
Chris@1517 465 Date.stubs(:today).returns(date)
Chris@1517 466 Time.stubs(:now).returns(time)
Chris@1517 467
Chris@1517 468 preference.update_attribute :time_zone, 'Baku' # UTC+4
Chris@1517 469 assert_equal '2012-05-16', User.find(1).today.to_s
Chris@1517 470
Chris@1517 471 preference.update_attribute :time_zone, 'La Paz' # UTC-4
Chris@1517 472 assert_equal '2012-05-15', User.find(1).today.to_s
Chris@1517 473
Chris@1517 474 preference.update_attribute :time_zone, ''
Chris@1517 475 assert_equal '2012-05-15', User.find(1).today.to_s
Chris@1517 476 end
Chris@1517 477
Chris@1517 478 def test_time_to_date_should_return_the_date_according_to_user_time_zone
Chris@1517 479 preference = User.find(1).pref
Chris@1517 480 time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
Chris@1517 481
Chris@1517 482 preference.update_attribute :time_zone, 'Baku' # UTC+4
Chris@1517 483 assert_equal '2012-05-16', User.find(1).time_to_date(time).to_s
Chris@1517 484
Chris@1517 485 preference.update_attribute :time_zone, 'La Paz' # UTC-4
Chris@1517 486 assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
Chris@1517 487
Chris@1517 488 preference.update_attribute :time_zone, ''
Chris@1517 489 assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
Chris@1517 490 end
Chris@1517 491
Chris@1517 492 def test_fields_for_order_statement_should_return_fields_according_user_format_setting
Chris@1517 493 with_settings :user_format => 'lastname_coma_firstname' do
Chris@1517 494 assert_equal ['users.lastname', 'users.firstname', 'users.id'],
Chris@1517 495 User.fields_for_order_statement
Chris@1517 496 end
Chris@1517 497 end
Chris@1517 498
Chris@1517 499 def test_fields_for_order_statement_width_table_name_should_prepend_table_name
Chris@1517 500 with_settings :user_format => 'lastname_firstname' do
Chris@1517 501 assert_equal ['authors.lastname', 'authors.firstname', 'authors.id'],
Chris@1517 502 User.fields_for_order_statement('authors')
Chris@1517 503 end
Chris@1517 504 end
Chris@1517 505
Chris@1517 506 def test_fields_for_order_statement_with_blank_format_should_return_default
Chris@1517 507 with_settings :user_format => '' do
Chris@1517 508 assert_equal ['users.firstname', 'users.lastname', 'users.id'],
Chris@1517 509 User.fields_for_order_statement
Chris@1517 510 end
Chris@1517 511 end
Chris@1517 512
Chris@1517 513 def test_fields_for_order_statement_with_invalid_format_should_return_default
Chris@1517 514 with_settings :user_format => 'foo' do
Chris@1517 515 assert_equal ['users.firstname', 'users.lastname', 'users.id'],
Chris@1517 516 User.fields_for_order_statement
Chris@1517 517 end
Chris@1517 518 end
Chris@1517 519
Chris@1517 520 test ".try_to_login with good credentials should return the user" do
Chris@1517 521 user = User.try_to_login("admin", "admin")
Chris@1517 522 assert_kind_of User, user
Chris@1517 523 assert_equal "admin", user.login
Chris@1517 524 end
Chris@1517 525
Chris@1517 526 test ".try_to_login with wrong credentials should return nil" do
Chris@1517 527 assert_nil User.try_to_login("admin", "foo")
Chris@1517 528 end
Chris@1517 529
Chris@1517 530 def test_try_to_login_with_locked_user_should_return_nil
Chris@1517 531 @jsmith.status = User::STATUS_LOCKED
Chris@1517 532 @jsmith.save!
Chris@1517 533
Chris@1517 534 user = User.try_to_login("jsmith", "jsmith")
Chris@1517 535 assert_equal nil, user
Chris@1517 536 end
Chris@1517 537
Chris@1517 538 def test_try_to_login_with_locked_user_and_not_active_only_should_return_user
Chris@1517 539 @jsmith.status = User::STATUS_LOCKED
Chris@1517 540 @jsmith.save!
Chris@1517 541
Chris@1517 542 user = User.try_to_login("jsmith", "jsmith", false)
Chris@1517 543 assert_equal @jsmith, user
Chris@1517 544 end
Chris@1517 545
Chris@1517 546 test ".try_to_login should fall-back to case-insensitive if user login is not found as-typed" do
Chris@1517 547 user = User.try_to_login("AdMin", "admin")
Chris@1517 548 assert_kind_of User, user
Chris@1517 549 assert_equal "admin", user.login
Chris@1517 550 end
Chris@1517 551
Chris@1517 552 test ".try_to_login should select the exact matching user first" do
Chris@1517 553 case_sensitive_user = User.generate! do |user|
Chris@1517 554 user.password = "admin123"
Chris@1517 555 end
Chris@1517 556 # bypass validations to make it appear like existing data
Chris@1517 557 case_sensitive_user.update_attribute(:login, 'ADMIN')
Chris@1517 558
Chris@1517 559 user = User.try_to_login("ADMIN", "admin123")
Chris@1517 560 assert_kind_of User, user
Chris@1517 561 assert_equal "ADMIN", user.login
Chris@1517 562 end
Chris@1517 563
Chris@1517 564 if ldap_configured?
Chris@1517 565 context "#try_to_login using LDAP" do
Chris@1517 566 context "with failed connection to the LDAP server" do
Chris@1517 567 should "return nil" do
Chris@1517 568 @auth_source = AuthSourceLdap.find(1)
Chris@1517 569 AuthSource.any_instance.stubs(:initialize_ldap_con).raises(Net::LDAP::LdapError, 'Cannot connect')
Chris@1517 570
Chris@1517 571 assert_equal nil, User.try_to_login('edavis', 'wrong')
Chris@1517 572 end
Chris@1517 573 end
Chris@1517 574
Chris@1517 575 context "with an unsuccessful authentication" do
Chris@1517 576 should "return nil" do
Chris@1517 577 assert_equal nil, User.try_to_login('edavis', 'wrong')
Chris@1517 578 end
Chris@1517 579 end
Chris@1517 580
Chris@1517 581 context "binding with user's account" do
Chris@1517 582 setup do
Chris@1517 583 @auth_source = AuthSourceLdap.find(1)
Chris@1517 584 @auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
Chris@1517 585 @auth_source.account_password = ''
Chris@1517 586 @auth_source.save!
Chris@1517 587
Chris@1517 588 @ldap_user = User.new(:mail => 'example1@redmine.org', :firstname => 'LDAP', :lastname => 'user', :auth_source_id => 1)
Chris@1517 589 @ldap_user.login = 'example1'
Chris@1517 590 @ldap_user.save!
Chris@1517 591 end
Chris@1517 592
Chris@1517 593 context "with a successful authentication" do
Chris@1517 594 should "return the user" do
Chris@1517 595 assert_equal @ldap_user, User.try_to_login('example1', '123456')
Chris@1517 596 end
Chris@1517 597 end
Chris@1517 598
Chris@1517 599 context "with an unsuccessful authentication" do
Chris@1517 600 should "return nil" do
Chris@1517 601 assert_nil User.try_to_login('example1', '11111')
Chris@1517 602 end
Chris@1517 603 end
Chris@1517 604 end
Chris@1517 605
Chris@1517 606 context "on the fly registration" do
Chris@1517 607 setup do
Chris@1517 608 @auth_source = AuthSourceLdap.find(1)
Chris@1517 609 @auth_source.update_attribute :onthefly_register, true
Chris@1517 610 end
Chris@1517 611
Chris@1517 612 context "with a successful authentication" do
Chris@1517 613 should "create a new user account if it doesn't exist" do
Chris@1517 614 assert_difference('User.count') do
Chris@1517 615 user = User.try_to_login('edavis', '123456')
Chris@1517 616 assert !user.admin?
Chris@1517 617 end
Chris@1517 618 end
Chris@1517 619
Chris@1517 620 should "retrieve existing user" do
Chris@1517 621 user = User.try_to_login('edavis', '123456')
Chris@1517 622 user.admin = true
Chris@1517 623 user.save!
Chris@1517 624
Chris@1517 625 assert_no_difference('User.count') do
Chris@1517 626 user = User.try_to_login('edavis', '123456')
Chris@1517 627 assert user.admin?
Chris@1517 628 end
Chris@1517 629 end
Chris@1517 630 end
Chris@1517 631
Chris@1517 632 context "binding with user's account" do
Chris@1517 633 setup do
Chris@1517 634 @auth_source = AuthSourceLdap.find(1)
Chris@1517 635 @auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
Chris@1517 636 @auth_source.account_password = ''
Chris@1517 637 @auth_source.save!
Chris@1517 638 end
Chris@1517 639
Chris@1517 640 context "with a successful authentication" do
Chris@1517 641 should "create a new user account if it doesn't exist" do
Chris@1517 642 assert_difference('User.count') do
Chris@1517 643 user = User.try_to_login('example1', '123456')
Chris@1517 644 assert_kind_of User, user
Chris@1517 645 end
Chris@1517 646 end
Chris@1517 647 end
Chris@1517 648
Chris@1517 649 context "with an unsuccessful authentication" do
Chris@1517 650 should "return nil" do
Chris@1517 651 assert_nil User.try_to_login('example1', '11111')
Chris@1517 652 end
Chris@1517 653 end
Chris@1517 654 end
Chris@1517 655 end
Chris@1517 656 end
Chris@1517 657
Chris@1517 658 else
Chris@1517 659 puts "Skipping LDAP tests."
Chris@1517 660 end
Chris@1517 661
Chris@1517 662 def test_create_anonymous
Chris@1517 663 AnonymousUser.delete_all
Chris@1517 664 anon = User.anonymous
Chris@1517 665 assert !anon.new_record?
Chris@1517 666 assert_kind_of AnonymousUser, anon
Chris@1517 667 end
Chris@1517 668
Chris@1517 669 def test_ensure_single_anonymous_user
Chris@1517 670 AnonymousUser.delete_all
Chris@1517 671 anon1 = User.anonymous
Chris@1517 672 assert !anon1.new_record?
Chris@1517 673 assert_kind_of AnonymousUser, anon1
Chris@1517 674 anon2 = AnonymousUser.create(
Chris@1517 675 :lastname => 'Anonymous', :firstname => '',
Chris@1517 676 :mail => '', :login => '', :status => 0)
Chris@1517 677 assert_equal 1, anon2.errors.count
Chris@1517 678 end
Chris@1517 679
Chris@1517 680 def test_rss_key
Chris@1517 681 assert_nil @jsmith.rss_token
Chris@1517 682 key = @jsmith.rss_key
Chris@1517 683 assert_equal 40, key.length
Chris@1517 684
Chris@1517 685 @jsmith.reload
Chris@1517 686 assert_equal key, @jsmith.rss_key
Chris@1517 687 end
Chris@1517 688
Chris@1517 689 def test_rss_key_should_not_be_generated_twice
Chris@1517 690 assert_difference 'Token.count', 1 do
Chris@1517 691 key1 = @jsmith.rss_key
Chris@1517 692 key2 = @jsmith.rss_key
Chris@1517 693 assert_equal key1, key2
Chris@1517 694 end
Chris@1517 695 end
Chris@1517 696
Chris@1517 697 def test_api_key_should_not_be_generated_twice
Chris@1517 698 assert_difference 'Token.count', 1 do
Chris@1517 699 key1 = @jsmith.api_key
Chris@1517 700 key2 = @jsmith.api_key
Chris@1517 701 assert_equal key1, key2
Chris@1517 702 end
Chris@1517 703 end
Chris@1517 704
Chris@1517 705 test "#api_key should generate a new one if the user doesn't have one" do
Chris@1517 706 user = User.generate!(:api_token => nil)
Chris@1517 707 assert_nil user.api_token
Chris@1517 708
Chris@1517 709 key = user.api_key
Chris@1517 710 assert_equal 40, key.length
Chris@1517 711 user.reload
Chris@1517 712 assert_equal key, user.api_key
Chris@1517 713 end
Chris@1517 714
Chris@1517 715 test "#api_key should return the existing api token value" do
Chris@1517 716 user = User.generate!
Chris@1517 717 token = Token.create!(:action => 'api')
Chris@1517 718 user.api_token = token
Chris@1517 719 assert user.save
Chris@1517 720
Chris@1517 721 assert_equal token.value, user.api_key
Chris@1517 722 end
Chris@1517 723
Chris@1517 724 test "#find_by_api_key should return nil if no matching key is found" do
Chris@1517 725 assert_nil User.find_by_api_key('zzzzzzzzz')
Chris@1517 726 end
Chris@1517 727
Chris@1517 728 test "#find_by_api_key should return nil if the key is found for an inactive user" do
Chris@1517 729 user = User.generate!
Chris@1517 730 user.status = User::STATUS_LOCKED
Chris@1517 731 token = Token.create!(:action => 'api')
Chris@1517 732 user.api_token = token
Chris@1517 733 user.save
Chris@1517 734
Chris@1517 735 assert_nil User.find_by_api_key(token.value)
Chris@1517 736 end
Chris@1517 737
Chris@1517 738 test "#find_by_api_key should return the user if the key is found for an active user" do
Chris@1517 739 user = User.generate!
Chris@1517 740 token = Token.create!(:action => 'api')
Chris@1517 741 user.api_token = token
Chris@1517 742 user.save
Chris@1517 743
Chris@1517 744 assert_equal user, User.find_by_api_key(token.value)
Chris@1517 745 end
Chris@1517 746
Chris@1517 747 def test_default_admin_account_changed_should_return_false_if_account_was_not_changed
Chris@1517 748 user = User.find_by_login("admin")
Chris@1517 749 user.password = "admin"
Chris@1517 750 assert user.save(:validate => false)
Chris@1517 751
Chris@1517 752 assert_equal false, User.default_admin_account_changed?
Chris@1517 753 end
Chris@1517 754
Chris@1517 755 def test_default_admin_account_changed_should_return_true_if_password_was_changed
Chris@1517 756 user = User.find_by_login("admin")
Chris@1517 757 user.password = "newpassword"
Chris@1517 758 user.save!
Chris@1517 759
Chris@1517 760 assert_equal true, User.default_admin_account_changed?
Chris@1517 761 end
Chris@1517 762
Chris@1517 763 def test_default_admin_account_changed_should_return_true_if_account_is_disabled
Chris@1517 764 user = User.find_by_login("admin")
Chris@1517 765 user.password = "admin"
Chris@1517 766 user.status = User::STATUS_LOCKED
Chris@1517 767 assert user.save(:validate => false)
Chris@1517 768
Chris@1517 769 assert_equal true, User.default_admin_account_changed?
Chris@1517 770 end
Chris@1517 771
Chris@1517 772 def test_default_admin_account_changed_should_return_true_if_account_does_not_exist
Chris@1517 773 user = User.find_by_login("admin")
Chris@1517 774 user.destroy
Chris@1517 775
Chris@1517 776 assert_equal true, User.default_admin_account_changed?
Chris@1517 777 end
Chris@1517 778
Chris@1517 779 def test_membership_with_project_should_return_membership
Chris@1517 780 project = Project.find(1)
Chris@1517 781
Chris@1517 782 membership = @jsmith.membership(project)
Chris@1517 783 assert_kind_of Member, membership
Chris@1517 784 assert_equal @jsmith, membership.user
Chris@1517 785 assert_equal project, membership.project
Chris@1517 786 end
Chris@1517 787
Chris@1517 788 def test_membership_with_project_id_should_return_membership
Chris@1517 789 project = Project.find(1)
Chris@1517 790
Chris@1517 791 membership = @jsmith.membership(1)
Chris@1517 792 assert_kind_of Member, membership
Chris@1517 793 assert_equal @jsmith, membership.user
Chris@1517 794 assert_equal project, membership.project
Chris@1517 795 end
Chris@1517 796
Chris@1517 797 def test_membership_for_non_member_should_return_nil
Chris@1517 798 project = Project.find(1)
Chris@1517 799
Chris@1517 800 user = User.generate!
Chris@1517 801 membership = user.membership(1)
Chris@1517 802 assert_nil membership
Chris@1517 803 end
Chris@1517 804
Chris@1517 805 def test_roles_for_project
Chris@1517 806 # user with a role
Chris@1517 807 roles = @jsmith.roles_for_project(Project.find(1))
Chris@1517 808 assert_kind_of Role, roles.first
Chris@1517 809 assert_equal "Manager", roles.first.name
Chris@1517 810
Chris@1517 811 # user with no role
Chris@1517 812 assert_nil @dlopper.roles_for_project(Project.find(2)).detect {|role| role.member?}
Chris@1517 813 end
Chris@1517 814
Chris@1517 815 def test_projects_by_role_for_user_with_role
Chris@1517 816 user = User.find(2)
Chris@1517 817 assert_kind_of Hash, user.projects_by_role
Chris@1517 818 assert_equal 2, user.projects_by_role.size
Chris@1517 819 assert_equal [1,5], user.projects_by_role[Role.find(1)].collect(&:id).sort
Chris@1517 820 assert_equal [2], user.projects_by_role[Role.find(2)].collect(&:id).sort
Chris@1517 821 end
Chris@1517 822
Chris@1517 823 def test_accessing_projects_by_role_with_no_projects_should_return_an_empty_array
Chris@1517 824 user = User.find(2)
Chris@1517 825 assert_equal [], user.projects_by_role[Role.find(3)]
Chris@1517 826 # should not update the hash
Chris@1517 827 assert_nil user.projects_by_role.values.detect(&:blank?)
Chris@1517 828 end
Chris@1517 829
Chris@1517 830 def test_projects_by_role_for_user_with_no_role
Chris@1517 831 user = User.generate!
Chris@1517 832 assert_equal({}, user.projects_by_role)
Chris@1517 833 end
Chris@1517 834
Chris@1517 835 def test_projects_by_role_for_anonymous
Chris@1517 836 assert_equal({}, User.anonymous.projects_by_role)
Chris@1517 837 end
Chris@1517 838
Chris@1517 839 def test_valid_notification_options
Chris@1517 840 # without memberships
Chris@1517 841 assert_equal 5, User.find(7).valid_notification_options.size
Chris@1517 842 # with memberships
Chris@1517 843 assert_equal 6, User.find(2).valid_notification_options.size
Chris@1517 844 end
Chris@1517 845
Chris@1517 846 def test_valid_notification_options_class_method
Chris@1517 847 assert_equal 5, User.valid_notification_options.size
Chris@1517 848 assert_equal 5, User.valid_notification_options(User.find(7)).size
Chris@1517 849 assert_equal 6, User.valid_notification_options(User.find(2)).size
Chris@1517 850 end
Chris@1517 851
Chris@1517 852 def test_mail_notification_all
Chris@1517 853 @jsmith.mail_notification = 'all'
Chris@1517 854 @jsmith.notified_project_ids = []
Chris@1517 855 @jsmith.save
Chris@1517 856 @jsmith.reload
Chris@1517 857 assert @jsmith.projects.first.recipients.include?(@jsmith.mail)
Chris@1517 858 end
Chris@1517 859
Chris@1517 860 def test_mail_notification_selected
Chris@1517 861 @jsmith.mail_notification = 'selected'
Chris@1517 862 @jsmith.notified_project_ids = [1]
Chris@1517 863 @jsmith.save
Chris@1517 864 @jsmith.reload
Chris@1517 865 assert Project.find(1).recipients.include?(@jsmith.mail)
Chris@1517 866 end
Chris@1517 867
Chris@1517 868 def test_mail_notification_only_my_events
Chris@1517 869 @jsmith.mail_notification = 'only_my_events'
Chris@1517 870 @jsmith.notified_project_ids = []
Chris@1517 871 @jsmith.save
Chris@1517 872 @jsmith.reload
Chris@1517 873 assert !@jsmith.projects.first.recipients.include?(@jsmith.mail)
Chris@1517 874 end
Chris@1517 875
Chris@1517 876 def test_comments_sorting_preference
Chris@1517 877 assert !@jsmith.wants_comments_in_reverse_order?
Chris@1517 878 @jsmith.pref.comments_sorting = 'asc'
Chris@1517 879 assert !@jsmith.wants_comments_in_reverse_order?
Chris@1517 880 @jsmith.pref.comments_sorting = 'desc'
Chris@1517 881 assert @jsmith.wants_comments_in_reverse_order?
Chris@1517 882 end
Chris@1517 883
Chris@1517 884 def test_find_by_mail_should_be_case_insensitive
Chris@1517 885 u = User.find_by_mail('JSmith@somenet.foo')
Chris@1517 886 assert_not_nil u
Chris@1517 887 assert_equal 'jsmith@somenet.foo', u.mail
Chris@1517 888 end
Chris@1517 889
Chris@1517 890 def test_random_password
Chris@1517 891 u = User.new
Chris@1517 892 u.random_password
Chris@1517 893 assert !u.password.blank?
Chris@1517 894 assert !u.password_confirmation.blank?
Chris@1517 895 end
Chris@1517 896
Chris@1517 897 test "#change_password_allowed? should be allowed if no auth source is set" do
Chris@1517 898 user = User.generate!
Chris@1517 899 assert user.change_password_allowed?
Chris@1517 900 end
Chris@1517 901
Chris@1517 902 test "#change_password_allowed? should delegate to the auth source" do
Chris@1517 903 user = User.generate!
Chris@1517 904
Chris@1517 905 allowed_auth_source = AuthSource.generate!
Chris@1517 906 def allowed_auth_source.allow_password_changes?; true; end
Chris@1517 907
Chris@1517 908 denied_auth_source = AuthSource.generate!
Chris@1517 909 def denied_auth_source.allow_password_changes?; false; end
Chris@1517 910
Chris@1517 911 assert user.change_password_allowed?
Chris@1517 912
Chris@1517 913 user.auth_source = allowed_auth_source
Chris@1517 914 assert user.change_password_allowed?, "User not allowed to change password, though auth source does"
Chris@1517 915
Chris@1517 916 user.auth_source = denied_auth_source
Chris@1517 917 assert !user.change_password_allowed?, "User allowed to change password, though auth source does not"
Chris@1517 918 end
Chris@1517 919
Chris@1517 920 def test_own_account_deletable_should_be_true_with_unsubscrive_enabled
Chris@1517 921 with_settings :unsubscribe => '1' do
Chris@1517 922 assert_equal true, User.find(2).own_account_deletable?
Chris@1517 923 end
Chris@1517 924 end
Chris@1517 925
Chris@1517 926 def test_own_account_deletable_should_be_false_with_unsubscrive_disabled
Chris@1517 927 with_settings :unsubscribe => '0' do
Chris@1517 928 assert_equal false, User.find(2).own_account_deletable?
Chris@1517 929 end
Chris@1517 930 end
Chris@1517 931
Chris@1517 932 def test_own_account_deletable_should_be_false_for_a_single_admin
Chris@1517 933 User.delete_all(["admin = ? AND id <> ?", true, 1])
Chris@1517 934
Chris@1517 935 with_settings :unsubscribe => '1' do
Chris@1517 936 assert_equal false, User.find(1).own_account_deletable?
Chris@1517 937 end
Chris@1517 938 end
Chris@1517 939
Chris@1517 940 def test_own_account_deletable_should_be_true_for_an_admin_if_other_admin_exists
Chris@1517 941 User.generate! do |user|
Chris@1517 942 user.admin = true
Chris@1517 943 end
Chris@1517 944
Chris@1517 945 with_settings :unsubscribe => '1' do
Chris@1517 946 assert_equal true, User.find(1).own_account_deletable?
Chris@1517 947 end
Chris@1517 948 end
Chris@1517 949
Chris@1517 950 context "#allowed_to?" do
Chris@1517 951 context "with a unique project" do
Chris@1517 952 should "return false if project is archived" do
Chris@1517 953 project = Project.find(1)
Chris@1517 954 Project.any_instance.stubs(:status).returns(Project::STATUS_ARCHIVED)
Chris@1517 955 assert_equal false, @admin.allowed_to?(:view_issues, Project.find(1))
Chris@1517 956 end
Chris@1517 957
Chris@1517 958 should "return false for write action if project is closed" do
Chris@1517 959 project = Project.find(1)
Chris@1517 960 Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
Chris@1517 961 assert_equal false, @admin.allowed_to?(:edit_project, Project.find(1))
Chris@1517 962 end
Chris@1517 963
Chris@1517 964 should "return true for read action if project is closed" do
Chris@1517 965 project = Project.find(1)
Chris@1517 966 Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
Chris@1517 967 assert_equal true, @admin.allowed_to?(:view_project, Project.find(1))
Chris@1517 968 end
Chris@1517 969
Chris@1517 970 should "return false if related module is disabled" do
Chris@1517 971 project = Project.find(1)
Chris@1517 972 project.enabled_module_names = ["issue_tracking"]
Chris@1517 973 assert_equal true, @admin.allowed_to?(:add_issues, project)
Chris@1517 974 assert_equal false, @admin.allowed_to?(:view_wiki_pages, project)
Chris@1517 975 end
Chris@1517 976
Chris@1517 977 should "authorize nearly everything for admin users" do
Chris@1517 978 project = Project.find(1)
Chris@1517 979 assert ! @admin.member_of?(project)
Chris@1517 980 %w(edit_issues delete_issues manage_news add_documents manage_wiki).each do |p|
Chris@1517 981 assert_equal true, @admin.allowed_to?(p.to_sym, project)
Chris@1517 982 end
Chris@1517 983 end
Chris@1517 984
Chris@1517 985 should "authorize normal users depending on their roles" do
Chris@1517 986 project = Project.find(1)
Chris@1517 987 assert_equal true, @jsmith.allowed_to?(:delete_messages, project) #Manager
Chris@1517 988 assert_equal false, @dlopper.allowed_to?(:delete_messages, project) #Developper
Chris@1517 989 end
Chris@1517 990 end
Chris@1517 991
Chris@1517 992 context "with multiple projects" do
Chris@1517 993 should "return false if array is empty" do
Chris@1517 994 assert_equal false, @admin.allowed_to?(:view_project, [])
Chris@1517 995 end
Chris@1517 996
Chris@1517 997 should "return true only if user has permission on all these projects" do
Chris@1517 998 assert_equal true, @admin.allowed_to?(:view_project, Project.all)
Chris@1517 999 assert_equal false, @dlopper.allowed_to?(:view_project, Project.all) #cannot see Project(2)
Chris@1517 1000 assert_equal true, @jsmith.allowed_to?(:edit_issues, @jsmith.projects) #Manager or Developer everywhere
Chris@1517 1001 assert_equal false, @jsmith.allowed_to?(:delete_issue_watchers, @jsmith.projects) #Dev cannot delete_issue_watchers
Chris@1517 1002 end
Chris@1517 1003
Chris@1517 1004 should "behave correctly with arrays of 1 project" do
Chris@1517 1005 assert_equal false, User.anonymous.allowed_to?(:delete_issues, [Project.first])
Chris@1517 1006 end
Chris@1517 1007 end
Chris@1517 1008
Chris@1517 1009 context "with options[:global]" do
Chris@1517 1010 should "authorize if user has at least one role that has this permission" do
Chris@1517 1011 @dlopper2 = User.find(5) #only Developper on a project, not Manager anywhere
Chris@1517 1012 @anonymous = User.find(6)
Chris@1517 1013 assert_equal true, @jsmith.allowed_to?(:delete_issue_watchers, nil, :global => true)
Chris@1517 1014 assert_equal false, @dlopper2.allowed_to?(:delete_issue_watchers, nil, :global => true)
Chris@1517 1015 assert_equal true, @dlopper2.allowed_to?(:add_issues, nil, :global => true)
Chris@1517 1016 assert_equal false, @anonymous.allowed_to?(:add_issues, nil, :global => true)
Chris@1517 1017 assert_equal true, @anonymous.allowed_to?(:view_issues, nil, :global => true)
Chris@1517 1018 end
Chris@1517 1019 end
Chris@1517 1020 end
Chris@1517 1021
Chris@1517 1022 context "User#notify_about?" do
Chris@1517 1023 context "Issues" do
Chris@1517 1024 setup do
Chris@1517 1025 @project = Project.find(1)
Chris@1517 1026 @author = User.generate!
Chris@1517 1027 @assignee = User.generate!
Chris@1517 1028 @issue = Issue.generate!(:project => @project, :assigned_to => @assignee, :author => @author)
Chris@1517 1029 end
Chris@1517 1030
Chris@1517 1031 should "be true for a user with :all" do
Chris@1517 1032 @author.update_attribute(:mail_notification, 'all')
Chris@1517 1033 assert @author.notify_about?(@issue)
Chris@1517 1034 end
Chris@1517 1035
Chris@1517 1036 should "be false for a user with :none" do
Chris@1517 1037 @author.update_attribute(:mail_notification, 'none')
Chris@1517 1038 assert ! @author.notify_about?(@issue)
Chris@1517 1039 end
Chris@1517 1040
Chris@1517 1041 should "be false for a user with :only_my_events and isn't an author, creator, or assignee" do
Chris@1517 1042 @user = User.generate!(:mail_notification => 'only_my_events')
Chris@1517 1043 Member.create!(:user => @user, :project => @project, :role_ids => [1])
Chris@1517 1044 assert ! @user.notify_about?(@issue)
Chris@1517 1045 end
Chris@1517 1046
Chris@1517 1047 should "be true for a user with :only_my_events and is the author" do
Chris@1517 1048 @author.update_attribute(:mail_notification, 'only_my_events')
Chris@1517 1049 assert @author.notify_about?(@issue)
Chris@1517 1050 end
Chris@1517 1051
Chris@1517 1052 should "be true for a user with :only_my_events and is the assignee" do
Chris@1517 1053 @assignee.update_attribute(:mail_notification, 'only_my_events')
Chris@1517 1054 assert @assignee.notify_about?(@issue)
Chris@1517 1055 end
Chris@1517 1056
Chris@1517 1057 should "be true for a user with :only_assigned and is the assignee" do
Chris@1517 1058 @assignee.update_attribute(:mail_notification, 'only_assigned')
Chris@1517 1059 assert @assignee.notify_about?(@issue)
Chris@1517 1060 end
Chris@1517 1061
Chris@1517 1062 should "be false for a user with :only_assigned and is not the assignee" do
Chris@1517 1063 @author.update_attribute(:mail_notification, 'only_assigned')
Chris@1517 1064 assert ! @author.notify_about?(@issue)
Chris@1517 1065 end
Chris@1517 1066
Chris@1517 1067 should "be true for a user with :only_owner and is the author" do
Chris@1517 1068 @author.update_attribute(:mail_notification, 'only_owner')
Chris@1517 1069 assert @author.notify_about?(@issue)
Chris@1517 1070 end
Chris@1517 1071
Chris@1517 1072 should "be false for a user with :only_owner and is not the author" do
Chris@1517 1073 @assignee.update_attribute(:mail_notification, 'only_owner')
Chris@1517 1074 assert ! @assignee.notify_about?(@issue)
Chris@1517 1075 end
Chris@1517 1076
Chris@1517 1077 should "be true for a user with :selected and is the author" do
Chris@1517 1078 @author.update_attribute(:mail_notification, 'selected')
Chris@1517 1079 assert @author.notify_about?(@issue)
Chris@1517 1080 end
Chris@1517 1081
Chris@1517 1082 should "be true for a user with :selected and is the assignee" do
Chris@1517 1083 @assignee.update_attribute(:mail_notification, 'selected')
Chris@1517 1084 assert @assignee.notify_about?(@issue)
Chris@1517 1085 end
Chris@1517 1086
Chris@1517 1087 should "be false for a user with :selected and is not the author or assignee" do
Chris@1517 1088 @user = User.generate!(:mail_notification => 'selected')
Chris@1517 1089 Member.create!(:user => @user, :project => @project, :role_ids => [1])
Chris@1517 1090 assert ! @user.notify_about?(@issue)
Chris@1517 1091 end
Chris@1517 1092 end
Chris@1517 1093 end
Chris@1517 1094
Chris@1517 1095 def test_notify_about_news
Chris@1517 1096 user = User.generate!
Chris@1517 1097 news = News.new
Chris@1517 1098
Chris@1517 1099 User::MAIL_NOTIFICATION_OPTIONS.map(&:first).each do |option|
Chris@1517 1100 user.mail_notification = option
Chris@1517 1101 assert_equal (option != 'none'), user.notify_about?(news)
Chris@1517 1102 end
Chris@1517 1103 end
Chris@1517 1104
Chris@1517 1105 def test_salt_unsalted_passwords
Chris@1517 1106 # Restore a user with an unsalted password
Chris@1517 1107 user = User.find(1)
Chris@1517 1108 user.salt = nil
Chris@1517 1109 user.hashed_password = User.hash_password("unsalted")
Chris@1517 1110 user.save!
Chris@1517 1111
Chris@1517 1112 User.salt_unsalted_passwords!
Chris@1517 1113
Chris@1517 1114 user.reload
Chris@1517 1115 # Salt added
Chris@1517 1116 assert !user.salt.blank?
Chris@1517 1117 # Password still valid
Chris@1517 1118 assert user.check_password?("unsalted")
Chris@1517 1119 assert_equal user, User.try_to_login(user.login, "unsalted")
Chris@1517 1120 end
Chris@1517 1121
Chris@1517 1122 if Object.const_defined?(:OpenID)
Chris@1517 1123 def test_setting_identity_url
Chris@1517 1124 normalized_open_id_url = 'http://example.com/'
Chris@1517 1125 u = User.new( :identity_url => 'http://example.com/' )
Chris@1517 1126 assert_equal normalized_open_id_url, u.identity_url
Chris@1517 1127 end
Chris@1517 1128
Chris@1517 1129 def test_setting_identity_url_without_trailing_slash
Chris@1517 1130 normalized_open_id_url = 'http://example.com/'
Chris@1517 1131 u = User.new( :identity_url => 'http://example.com' )
Chris@1517 1132 assert_equal normalized_open_id_url, u.identity_url
Chris@1517 1133 end
Chris@1517 1134
Chris@1517 1135 def test_setting_identity_url_without_protocol
Chris@1517 1136 normalized_open_id_url = 'http://example.com/'
Chris@1517 1137 u = User.new( :identity_url => 'example.com' )
Chris@1517 1138 assert_equal normalized_open_id_url, u.identity_url
Chris@1517 1139 end
Chris@1517 1140
Chris@1517 1141 def test_setting_blank_identity_url
Chris@1517 1142 u = User.new( :identity_url => 'example.com' )
Chris@1517 1143 u.identity_url = ''
Chris@1517 1144 assert u.identity_url.blank?
Chris@1517 1145 end
Chris@1517 1146
Chris@1517 1147 def test_setting_invalid_identity_url
Chris@1517 1148 u = User.new( :identity_url => 'this is not an openid url' )
Chris@1517 1149 assert u.identity_url.blank?
Chris@1517 1150 end
Chris@1517 1151 else
Chris@1517 1152 puts "Skipping openid tests."
Chris@1517 1153 end
Chris@1517 1154 end