Mercurial > hg > soundsoftware-site

annotate .svn/pristine/f1/f1199dfe423f88fdce9cca22a1a32c938778b9cb.svn-base @ 1524:82fac3dcf466 redmine-2.5-integration

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix failure to interpret Javascript when autocompleting members for project
author Chris Cannam <chris.cannam@soundsoftware.ac.uk>
date Thu, 11 Sep 2014 10:24:38 +0100
parents e248c7af89ec
children
rev   line source
Chris@1494 1 # Redmine - project management software
Chris@1494 2 # Copyright (C) 2006-2014 Jean-Philippe Lang
Chris@1494 3 #
Chris@1494 4 # This program is free software; you can redistribute it and/or
Chris@1494 5 # modify it under the terms of the GNU General Public License
Chris@1494 6 # as published by the Free Software Foundation; either version 2
Chris@1494 7 # of the License, or (at your option) any later version.
Chris@1494 8 #
Chris@1494 9 # This program is distributed in the hope that it will be useful,
Chris@1494 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
Chris@1494 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
Chris@1494 12 # GNU General Public License for more details.
Chris@1494 13 #
Chris@1494 14 # You should have received a copy of the GNU General Public License
Chris@1494 15 # along with this program; if not, write to the Free Software
Chris@1494 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Chris@1494 17
Chris@1494 18 require File.expand_path('../../test_helper', __FILE__)
Chris@1494 19
Chris@1494 20 class UserTest < ActiveSupport::TestCase
Chris@1494 21 fixtures :users, :members, :projects, :roles, :member_roles, :auth_sources,
Chris@1494 22 :trackers, :issue_statuses,
Chris@1494 23 :projects_trackers,
Chris@1494 24 :watchers,
Chris@1494 25 :issue_categories, :enumerations, :issues,
Chris@1494 26 :journals, :journal_details,
Chris@1494 27 :groups_users,
Chris@1494 28 :enabled_modules
Chris@1494 29
Chris@1494 30 def setup
Chris@1494 31 @admin = User.find(1)
Chris@1494 32 @jsmith = User.find(2)
Chris@1494 33 @dlopper = User.find(3)
Chris@1494 34 end
Chris@1494 35
Chris@1494 36 def test_sorted_scope_should_sort_user_by_display_name
Chris@1494 37 assert_equal User.all.map(&:name).map(&:downcase).sort, User.sorted.all.map(&:name).map(&:downcase)
Chris@1494 38 end
Chris@1494 39
Chris@1494 40 def test_generate
Chris@1494 41 User.generate!(:firstname => 'Testing connection')
Chris@1494 42 User.generate!(:firstname => 'Testing connection')
Chris@1494 43 assert_equal 2, User.where(:firstname => 'Testing connection').count
Chris@1494 44 end
Chris@1494 45
Chris@1494 46 def test_truth
Chris@1494 47 assert_kind_of User, @jsmith
Chris@1494 48 end
Chris@1494 49
Chris@1494 50 def test_mail_should_be_stripped
Chris@1494 51 u = User.new
Chris@1494 52 u.mail = " foo@bar.com "
Chris@1494 53 assert_equal "foo@bar.com", u.mail
Chris@1494 54 end
Chris@1494 55
Chris@1494 56 def test_mail_validation
Chris@1494 57 u = User.new
Chris@1494 58 u.mail = ''
Chris@1494 59 assert !u.valid?
Chris@1494 60 assert_include I18n.translate('activerecord.errors.messages.blank'), u.errors[:mail]
Chris@1494 61 end
Chris@1494 62
Chris@1494 63 def test_login_length_validation
Chris@1494 64 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1494 65 user.login = "x" * (User::LOGIN_LENGTH_LIMIT+1)
Chris@1494 66 assert !user.valid?
Chris@1494 67
Chris@1494 68 user.login = "x" * (User::LOGIN_LENGTH_LIMIT)
Chris@1494 69 assert user.valid?
Chris@1494 70 assert user.save
Chris@1494 71 end
Chris@1494 72
Chris@1494 73 def test_generate_password_should_respect_minimum_password_length
Chris@1494 74 with_settings :password_min_length => 15 do
Chris@1494 75 user = User.generate!(:generate_password => true)
Chris@1494 76 assert user.password.length >= 15
Chris@1494 77 end
Chris@1494 78 end
Chris@1494 79
Chris@1494 80 def test_generate_password_should_not_generate_password_with_less_than_10_characters
Chris@1494 81 with_settings :password_min_length => 4 do
Chris@1494 82 user = User.generate!(:generate_password => true)
Chris@1494 83 assert user.password.length >= 10
Chris@1494 84 end
Chris@1494 85 end
Chris@1494 86
Chris@1494 87 def test_generate_password_on_create_should_set_password
Chris@1494 88 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1494 89 user.login = "newuser"
Chris@1494 90 user.generate_password = true
Chris@1494 91 assert user.save
Chris@1494 92
Chris@1494 93 password = user.password
Chris@1494 94 assert user.check_password?(password)
Chris@1494 95 end
Chris@1494 96
Chris@1494 97 def test_generate_password_on_update_should_update_password
Chris@1494 98 user = User.find(2)
Chris@1494 99 hash = user.hashed_password
Chris@1494 100 user.generate_password = true
Chris@1494 101 assert user.save
Chris@1494 102
Chris@1494 103 password = user.password
Chris@1494 104 assert user.check_password?(password)
Chris@1494 105 assert_not_equal hash, user.reload.hashed_password
Chris@1494 106 end
Chris@1494 107
Chris@1494 108 def test_create
Chris@1494 109 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1494 110
Chris@1494 111 user.login = "jsmith"
Chris@1494 112 user.password, user.password_confirmation = "password", "password"
Chris@1494 113 # login uniqueness
Chris@1494 114 assert !user.save
Chris@1494 115 assert_equal 1, user.errors.count
Chris@1494 116
Chris@1494 117 user.login = "newuser"
Chris@1494 118 user.password, user.password_confirmation = "password", "pass"
Chris@1494 119 # password confirmation
Chris@1494 120 assert !user.save
Chris@1494 121 assert_equal 1, user.errors.count
Chris@1494 122
Chris@1494 123 user.password, user.password_confirmation = "password", "password"
Chris@1494 124 assert user.save
Chris@1494 125 end
Chris@1494 126
Chris@1494 127 def test_user_before_create_should_set_the_mail_notification_to_the_default_setting
Chris@1494 128 @user1 = User.generate!
Chris@1494 129 assert_equal 'only_my_events', @user1.mail_notification
Chris@1494 130 with_settings :default_notification_option => 'all' do
Chris@1494 131 @user2 = User.generate!
Chris@1494 132 assert_equal 'all', @user2.mail_notification
Chris@1494 133 end
Chris@1494 134 end
Chris@1494 135
Chris@1494 136 def test_user_login_should_be_case_insensitive
Chris@1494 137 u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1494 138 u.login = 'newuser'
Chris@1494 139 u.password, u.password_confirmation = "password", "password"
Chris@1494 140 assert u.save
Chris@1494 141 u = User.new(:firstname => "Similar", :lastname => "User", :mail => "similaruser@somenet.foo")
Chris@1494 142 u.login = 'NewUser'
Chris@1494 143 u.password, u.password_confirmation = "password", "password"
Chris@1494 144 assert !u.save
Chris@1494 145 assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:login]
Chris@1494 146 end
Chris@1494 147
Chris@1494 148 def test_mail_uniqueness_should_not_be_case_sensitive
Chris@1494 149 u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
Chris@1494 150 u.login = 'newuser1'
Chris@1494 151 u.password, u.password_confirmation = "password", "password"
Chris@1494 152 assert u.save
Chris@1494 153
Chris@1494 154 u = User.new(:firstname => "new", :lastname => "user", :mail => "newUser@Somenet.foo")
Chris@1494 155 u.login = 'newuser2'
Chris@1494 156 u.password, u.password_confirmation = "password", "password"
Chris@1494 157 assert !u.save
Chris@1494 158 assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:mail]
Chris@1494 159 end
Chris@1494 160
Chris@1494 161 def test_update
Chris@1494 162 assert_equal "admin", @admin.login
Chris@1494 163 @admin.login = "john"
Chris@1494 164 assert @admin.save, @admin.errors.full_messages.join("; ")
Chris@1494 165 @admin.reload
Chris@1494 166 assert_equal "john", @admin.login
Chris@1494 167 end
Chris@1494 168
Chris@1494 169 def test_update_should_not_fail_for_legacy_user_with_different_case_logins
Chris@1494 170 u1 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser1@somenet.foo")
Chris@1494 171 u1.login = 'newuser1'
Chris@1494 172 assert u1.save
Chris@1494 173
Chris@1494 174 u2 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser2@somenet.foo")
Chris@1494 175 u2.login = 'newuser1'
Chris@1494 176 assert u2.save(:validate => false)
Chris@1494 177
Chris@1494 178 user = User.find(u2.id)
Chris@1494 179 user.firstname = "firstname"
Chris@1494 180 assert user.save, "Save failed"
Chris@1494 181 end
Chris@1494 182
Chris@1494 183 def test_destroy_should_delete_members_and_roles
Chris@1494 184 members = Member.find_all_by_user_id(2)
Chris@1494 185 ms = members.size
Chris@1494 186 rs = members.collect(&:roles).flatten.size
Chris@1494 187
Chris@1494 188 assert_difference 'Member.count', - ms do
Chris@1494 189 assert_difference 'MemberRole.count', - rs do
Chris@1494 190 User.find(2).destroy
Chris@1494 191 end
Chris@1494 192 end
Chris@1494 193
Chris@1494 194 assert_nil User.find_by_id(2)
Chris@1494 195 assert Member.find_all_by_user_id(2).empty?
Chris@1494 196 end
Chris@1494 197
Chris@1494 198 def test_destroy_should_update_attachments
Chris@1494 199 attachment = Attachment.create!(:container => Project.find(1),
Chris@1494 200 :file => uploaded_test_file("testfile.txt", "text/plain"),
Chris@1494 201 :author_id => 2)
Chris@1494 202
Chris@1494 203 User.find(2).destroy
Chris@1494 204 assert_nil User.find_by_id(2)
Chris@1494 205 assert_equal User.anonymous, attachment.reload.author
Chris@1494 206 end
Chris@1494 207
Chris@1494 208 def test_destroy_should_update_comments
Chris@1494 209 comment = Comment.create!(
Chris@1494 210 :commented => News.create!(:project_id => 1, :author_id => 1, :title => 'foo', :description => 'foo'),
Chris@1494 211 :author => User.find(2),
Chris@1494 212 :comments => 'foo'
Chris@1494 213 )
Chris@1494 214
Chris@1494 215 User.find(2).destroy
Chris@1494 216 assert_nil User.find_by_id(2)
Chris@1494 217 assert_equal User.anonymous, comment.reload.author
Chris@1494 218 end
Chris@1494 219
Chris@1494 220 def test_destroy_should_update_issues
Chris@1494 221 issue = Issue.create!(:project_id => 1, :author_id => 2, :tracker_id => 1, :subject => 'foo')
Chris@1494 222
Chris@1494 223 User.find(2).destroy
Chris@1494 224 assert_nil User.find_by_id(2)
Chris@1494 225 assert_equal User.anonymous, issue.reload.author
Chris@1494 226 end
Chris@1494 227
Chris@1494 228 def test_destroy_should_unassign_issues
Chris@1494 229 issue = Issue.create!(:project_id => 1, :author_id => 1, :tracker_id => 1, :subject => 'foo', :assigned_to_id => 2)
Chris@1494 230
Chris@1494 231 User.find(2).destroy
Chris@1494 232 assert_nil User.find_by_id(2)
Chris@1494 233 assert_nil issue.reload.assigned_to
Chris@1494 234 end
Chris@1494 235
Chris@1494 236 def test_destroy_should_update_journals
Chris@1494 237 issue = Issue.create!(:project_id => 1, :author_id => 2, :tracker_id => 1, :subject => 'foo')
Chris@1494 238 issue.init_journal(User.find(2), "update")
Chris@1494 239 issue.save!
Chris@1494 240
Chris@1494 241 User.find(2).destroy
Chris@1494 242 assert_nil User.find_by_id(2)
Chris@1494 243 assert_equal User.anonymous, issue.journals.first.reload.user
Chris@1494 244 end
Chris@1494 245
Chris@1494 246 def test_destroy_should_update_journal_details_old_value
Chris@1494 247 issue = Issue.create!(:project_id => 1, :author_id => 1, :tracker_id => 1, :subject => 'foo', :assigned_to_id => 2)
Chris@1494 248 issue.init_journal(User.find(1), "update")
Chris@1494 249 issue.assigned_to_id = nil
Chris@1494 250 assert_difference 'JournalDetail.count' do
Chris@1494 251 issue.save!
Chris@1494 252 end
Chris@1494 253 journal_detail = JournalDetail.first(:order => 'id DESC')
Chris@1494 254 assert_equal '2', journal_detail.old_value
Chris@1494 255
Chris@1494 256 User.find(2).destroy
Chris@1494 257 assert_nil User.find_by_id(2)
Chris@1494 258 assert_equal User.anonymous.id.to_s, journal_detail.reload.old_value
Chris@1494 259 end
Chris@1494 260
Chris@1494 261 def test_destroy_should_update_journal_details_value
Chris@1494 262 issue = Issue.create!(:project_id => 1, :author_id => 1, :tracker_id => 1, :subject => 'foo')
Chris@1494 263 issue.init_journal(User.find(1), "update")
Chris@1494 264 issue.assigned_to_id = 2
Chris@1494 265 assert_difference 'JournalDetail.count' do
Chris@1494 266 issue.save!
Chris@1494 267 end
Chris@1494 268 journal_detail = JournalDetail.first(:order => 'id DESC')
Chris@1494 269 assert_equal '2', journal_detail.value
Chris@1494 270
Chris@1494 271 User.find(2).destroy
Chris@1494 272 assert_nil User.find_by_id(2)
Chris@1494 273 assert_equal User.anonymous.id.to_s, journal_detail.reload.value
Chris@1494 274 end
Chris@1494 275
Chris@1494 276 def test_destroy_should_update_messages
Chris@1494 277 board = Board.create!(:project_id => 1, :name => 'Board', :description => 'Board')
Chris@1494 278 message = Message.create!(:board_id => board.id, :author_id => 2, :subject => 'foo', :content => 'foo')
Chris@1494 279
Chris@1494 280 User.find(2).destroy
Chris@1494 281 assert_nil User.find_by_id(2)
Chris@1494 282 assert_equal User.anonymous, message.reload.author
Chris@1494 283 end
Chris@1494 284
Chris@1494 285 def test_destroy_should_update_news
Chris@1494 286 news = News.create!(:project_id => 1, :author_id => 2, :title => 'foo', :description => 'foo')
Chris@1494 287
Chris@1494 288 User.find(2).destroy
Chris@1494 289 assert_nil User.find_by_id(2)
Chris@1494 290 assert_equal User.anonymous, news.reload.author
Chris@1494 291 end
Chris@1494 292
Chris@1494 293 def test_destroy_should_delete_private_queries
Chris@1494 294 query = Query.new(:name => 'foo', :visibility => Query::VISIBILITY_PRIVATE)
Chris@1494 295 query.project_id = 1
Chris@1494 296 query.user_id = 2
Chris@1494 297 query.save!
Chris@1494 298
Chris@1494 299 User.find(2).destroy
Chris@1494 300 assert_nil User.find_by_id(2)
Chris@1494 301 assert_nil Query.find_by_id(query.id)
Chris@1494 302 end
Chris@1494 303
Chris@1494 304 def test_destroy_should_update_public_queries
Chris@1494 305 query = Query.new(:name => 'foo', :visibility => Query::VISIBILITY_PUBLIC)
Chris@1494 306 query.project_id = 1
Chris@1494 307 query.user_id = 2
Chris@1494 308 query.save!
Chris@1494 309
Chris@1494 310 User.find(2).destroy
Chris@1494 311 assert_nil User.find_by_id(2)
Chris@1494 312 assert_equal User.anonymous, query.reload.user
Chris@1494 313 end
Chris@1494 314
Chris@1494 315 def test_destroy_should_update_time_entries
Chris@1494 316 entry = TimeEntry.new(:hours => '2', :spent_on => Date.today, :activity => TimeEntryActivity.create!(:name => 'foo'))
Chris@1494 317 entry.project_id = 1
Chris@1494 318 entry.user_id = 2
Chris@1494 319 entry.save!
Chris@1494 320
Chris@1494 321 User.find(2).destroy
Chris@1494 322 assert_nil User.find_by_id(2)
Chris@1494 323 assert_equal User.anonymous, entry.reload.user
Chris@1494 324 end
Chris@1494 325
Chris@1494 326 def test_destroy_should_delete_tokens
Chris@1494 327 token = Token.create!(:user_id => 2, :value => 'foo')
Chris@1494 328
Chris@1494 329 User.find(2).destroy
Chris@1494 330 assert_nil User.find_by_id(2)
Chris@1494 331 assert_nil Token.find_by_id(token.id)
Chris@1494 332 end
Chris@1494 333
Chris@1494 334 def test_destroy_should_delete_watchers
Chris@1494 335 issue = Issue.create!(:project_id => 1, :author_id => 1, :tracker_id => 1, :subject => 'foo')
Chris@1494 336 watcher = Watcher.create!(:user_id => 2, :watchable => issue)
Chris@1494 337
Chris@1494 338 User.find(2).destroy
Chris@1494 339 assert_nil User.find_by_id(2)
Chris@1494 340 assert_nil Watcher.find_by_id(watcher.id)
Chris@1494 341 end
Chris@1494 342
Chris@1494 343 def test_destroy_should_update_wiki_contents
Chris@1494 344 wiki_content = WikiContent.create!(
Chris@1494 345 :text => 'foo',
Chris@1494 346 :author_id => 2,
Chris@1494 347 :page => WikiPage.create!(:title => 'Foo', :wiki => Wiki.create!(:project_id => 1, :start_page => 'Start'))
Chris@1494 348 )
Chris@1494 349 wiki_content.text = 'bar'
Chris@1494 350 assert_difference 'WikiContent::Version.count' do
Chris@1494 351 wiki_content.save!
Chris@1494 352 end
Chris@1494 353
Chris@1494 354 User.find(2).destroy
Chris@1494 355 assert_nil User.find_by_id(2)
Chris@1494 356 assert_equal User.anonymous, wiki_content.reload.author
Chris@1494 357 wiki_content.versions.each do |version|
Chris@1494 358 assert_equal User.anonymous, version.reload.author
Chris@1494 359 end
Chris@1494 360 end
Chris@1494 361
Chris@1494 362 def test_destroy_should_nullify_issue_categories
Chris@1494 363 category = IssueCategory.create!(:project_id => 1, :assigned_to_id => 2, :name => 'foo')
Chris@1494 364
Chris@1494 365 User.find(2).destroy
Chris@1494 366 assert_nil User.find_by_id(2)
Chris@1494 367 assert_nil category.reload.assigned_to_id
Chris@1494 368 end
Chris@1494 369
Chris@1494 370 def test_destroy_should_nullify_changesets
Chris@1494 371 changeset = Changeset.create!(
Chris@1494 372 :repository => Repository::Subversion.create!(
Chris@1494 373 :project_id => 1,
Chris@1494 374 :url => 'file:///tmp',
Chris@1494 375 :identifier => 'tmp'
Chris@1494 376 ),
Chris@1494 377 :revision => '12',
Chris@1494 378 :committed_on => Time.now,
Chris@1494 379 :committer => 'jsmith'
Chris@1494 380 )
Chris@1494 381 assert_equal 2, changeset.user_id
Chris@1494 382
Chris@1494 383 User.find(2).destroy
Chris@1494 384 assert_nil User.find_by_id(2)
Chris@1494 385 assert_nil changeset.reload.user_id
Chris@1494 386 end
Chris@1494 387
Chris@1494 388 def test_anonymous_user_should_not_be_destroyable
Chris@1494 389 assert_no_difference 'User.count' do
Chris@1494 390 assert_equal false, User.anonymous.destroy
Chris@1494 391 end
Chris@1494 392 end
Chris@1494 393
Chris@1494 394 def test_validate_login_presence
Chris@1494 395 @admin.login = ""
Chris@1494 396 assert !@admin.save
Chris@1494 397 assert_equal 1, @admin.errors.count
Chris@1494 398 end
Chris@1494 399
Chris@1494 400 def test_validate_mail_notification_inclusion
Chris@1494 401 u = User.new
Chris@1494 402 u.mail_notification = 'foo'
Chris@1494 403 u.save
Chris@1494 404 assert_not_equal [], u.errors[:mail_notification]
Chris@1494 405 end
Chris@1494 406
Chris@1494 407 def test_password
Chris@1494 408 user = User.try_to_login("admin", "admin")
Chris@1494 409 assert_kind_of User, user
Chris@1494 410 assert_equal "admin", user.login
Chris@1494 411 user.password = "hello123"
Chris@1494 412 assert user.save
Chris@1494 413
Chris@1494 414 user = User.try_to_login("admin", "hello123")
Chris@1494 415 assert_kind_of User, user
Chris@1494 416 assert_equal "admin", user.login
Chris@1494 417 end
Chris@1494 418
Chris@1494 419 def test_validate_password_length
Chris@1494 420 with_settings :password_min_length => '100' do
Chris@1494 421 user = User.new(:firstname => "new100", :lastname => "user100", :mail => "newuser100@somenet.foo")
Chris@1494 422 user.login = "newuser100"
Chris@1494 423 user.password, user.password_confirmation = "password100", "password100"
Chris@1494 424 assert !user.save
Chris@1494 425 assert_equal 1, user.errors.count
Chris@1494 426 end
Chris@1494 427 end
Chris@1494 428
Chris@1494 429 def test_name_format
Chris@1494 430 assert_equal 'John S.', @jsmith.name(:firstname_lastinitial)
Chris@1494 431 assert_equal 'Smith, John', @jsmith.name(:lastname_coma_firstname)
Chris@1494 432 with_settings :user_format => :firstname_lastname do
Chris@1494 433 assert_equal 'John Smith', @jsmith.reload.name
Chris@1494 434 end
Chris@1494 435 with_settings :user_format => :username do
Chris@1494 436 assert_equal 'jsmith', @jsmith.reload.name
Chris@1494 437 end
Chris@1494 438 with_settings :user_format => :lastname do
Chris@1494 439 assert_equal 'Smith', @jsmith.reload.name
Chris@1494 440 end
Chris@1494 441 end
Chris@1494 442
Chris@1494 443 def test_today_should_return_the_day_according_to_user_time_zone
Chris@1494 444 preference = User.find(1).pref
Chris@1494 445 date = Date.new(2012, 05, 15)
Chris@1494 446 time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
Chris@1494 447 Date.stubs(:today).returns(date)
Chris@1494 448 Time.stubs(:now).returns(time)
Chris@1494 449
Chris@1494 450 preference.update_attribute :time_zone, 'Baku' # UTC+4
Chris@1494 451 assert_equal '2012-05-16', User.find(1).today.to_s
Chris@1494 452
Chris@1494 453 preference.update_attribute :time_zone, 'La Paz' # UTC-4
Chris@1494 454 assert_equal '2012-05-15', User.find(1).today.to_s
Chris@1494 455
Chris@1494 456 preference.update_attribute :time_zone, ''
Chris@1494 457 assert_equal '2012-05-15', User.find(1).today.to_s
Chris@1494 458 end
Chris@1494 459
Chris@1494 460 def test_time_to_date_should_return_the_date_according_to_user_time_zone
Chris@1494 461 preference = User.find(1).pref
Chris@1494 462 time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
Chris@1494 463
Chris@1494 464 preference.update_attribute :time_zone, 'Baku' # UTC+4
Chris@1494 465 assert_equal '2012-05-16', User.find(1).time_to_date(time).to_s
Chris@1494 466
Chris@1494 467 preference.update_attribute :time_zone, 'La Paz' # UTC-4
Chris@1494 468 assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
Chris@1494 469
Chris@1494 470 preference.update_attribute :time_zone, ''
Chris@1494 471 assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
Chris@1494 472 end
Chris@1494 473
Chris@1494 474 def test_fields_for_order_statement_should_return_fields_according_user_format_setting
Chris@1494 475 with_settings :user_format => 'lastname_coma_firstname' do
Chris@1494 476 assert_equal ['users.lastname', 'users.firstname', 'users.id'], User.fields_for_order_statement
Chris@1494 477 end
Chris@1494 478 end
Chris@1494 479
Chris@1494 480 def test_fields_for_order_statement_width_table_name_should_prepend_table_name
Chris@1494 481 with_settings :user_format => 'lastname_firstname' do
Chris@1494 482 assert_equal ['authors.lastname', 'authors.firstname', 'authors.id'], User.fields_for_order_statement('authors')
Chris@1494 483 end
Chris@1494 484 end
Chris@1494 485
Chris@1494 486 def test_fields_for_order_statement_with_blank_format_should_return_default
Chris@1494 487 with_settings :user_format => '' do
Chris@1494 488 assert_equal ['users.firstname', 'users.lastname', 'users.id'], User.fields_for_order_statement
Chris@1494 489 end
Chris@1494 490 end
Chris@1494 491
Chris@1494 492 def test_fields_for_order_statement_with_invalid_format_should_return_default
Chris@1494 493 with_settings :user_format => 'foo' do
Chris@1494 494 assert_equal ['users.firstname', 'users.lastname', 'users.id'], User.fields_for_order_statement
Chris@1494 495 end
Chris@1494 496 end
Chris@1494 497
Chris@1494 498 test ".try_to_login with good credentials should return the user" do
Chris@1494 499 user = User.try_to_login("admin", "admin")
Chris@1494 500 assert_kind_of User, user
Chris@1494 501 assert_equal "admin", user.login
Chris@1494 502 end
Chris@1494 503
Chris@1494 504 test ".try_to_login with wrong credentials should return nil" do
Chris@1494 505 assert_nil User.try_to_login("admin", "foo")
Chris@1494 506 end
Chris@1494 507
Chris@1494 508 def test_try_to_login_with_locked_user_should_return_nil
Chris@1494 509 @jsmith.status = User::STATUS_LOCKED
Chris@1494 510 @jsmith.save!
Chris@1494 511
Chris@1494 512 user = User.try_to_login("jsmith", "jsmith")
Chris@1494 513 assert_equal nil, user
Chris@1494 514 end
Chris@1494 515
Chris@1494 516 def test_try_to_login_with_locked_user_and_not_active_only_should_return_user
Chris@1494 517 @jsmith.status = User::STATUS_LOCKED
Chris@1494 518 @jsmith.save!
Chris@1494 519
Chris@1494 520 user = User.try_to_login("jsmith", "jsmith", false)
Chris@1494 521 assert_equal @jsmith, user
Chris@1494 522 end
Chris@1494 523
Chris@1494 524 test ".try_to_login should fall-back to case-insensitive if user login is not found as-typed" do
Chris@1494 525 user = User.try_to_login("AdMin", "admin")
Chris@1494 526 assert_kind_of User, user
Chris@1494 527 assert_equal "admin", user.login
Chris@1494 528 end
Chris@1494 529
Chris@1494 530 test ".try_to_login should select the exact matching user first" do
Chris@1494 531 case_sensitive_user = User.generate! do |user|
Chris@1494 532 user.password = "admin123"
Chris@1494 533 end
Chris@1494 534 # bypass validations to make it appear like existing data
Chris@1494 535 case_sensitive_user.update_attribute(:login, 'ADMIN')
Chris@1494 536
Chris@1494 537 user = User.try_to_login("ADMIN", "admin123")
Chris@1494 538 assert_kind_of User, user
Chris@1494 539 assert_equal "ADMIN", user.login
Chris@1494 540 end
Chris@1494 541
Chris@1494 542 if ldap_configured?
Chris@1494 543 context "#try_to_login using LDAP" do
Chris@1494 544 context "with failed connection to the LDAP server" do
Chris@1494 545 should "return nil" do
Chris@1494 546 @auth_source = AuthSourceLdap.find(1)
Chris@1494 547 AuthSource.any_instance.stubs(:initialize_ldap_con).raises(Net::LDAP::LdapError, 'Cannot connect')
Chris@1494 548
Chris@1494 549 assert_equal nil, User.try_to_login('edavis', 'wrong')
Chris@1494 550 end
Chris@1494 551 end
Chris@1494 552
Chris@1494 553 context "with an unsuccessful authentication" do
Chris@1494 554 should "return nil" do
Chris@1494 555 assert_equal nil, User.try_to_login('edavis', 'wrong')
Chris@1494 556 end
Chris@1494 557 end
Chris@1494 558
Chris@1494 559 context "binding with user's account" do
Chris@1494 560 setup do
Chris@1494 561 @auth_source = AuthSourceLdap.find(1)
Chris@1494 562 @auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
Chris@1494 563 @auth_source.account_password = ''
Chris@1494 564 @auth_source.save!
Chris@1494 565
Chris@1494 566 @ldap_user = User.new(:mail => 'example1@redmine.org', :firstname => 'LDAP', :lastname => 'user', :auth_source_id => 1)
Chris@1494 567 @ldap_user.login = 'example1'
Chris@1494 568 @ldap_user.save!
Chris@1494 569 end
Chris@1494 570
Chris@1494 571 context "with a successful authentication" do
Chris@1494 572 should "return the user" do
Chris@1494 573 assert_equal @ldap_user, User.try_to_login('example1', '123456')
Chris@1494 574 end
Chris@1494 575 end
Chris@1494 576
Chris@1494 577 context "with an unsuccessful authentication" do
Chris@1494 578 should "return nil" do
Chris@1494 579 assert_nil User.try_to_login('example1', '11111')
Chris@1494 580 end
Chris@1494 581 end
Chris@1494 582 end
Chris@1494 583
Chris@1494 584 context "on the fly registration" do
Chris@1494 585 setup do
Chris@1494 586 @auth_source = AuthSourceLdap.find(1)
Chris@1494 587 @auth_source.update_attribute :onthefly_register, true
Chris@1494 588 end
Chris@1494 589
Chris@1494 590 context "with a successful authentication" do
Chris@1494 591 should "create a new user account if it doesn't exist" do
Chris@1494 592 assert_difference('User.count') do
Chris@1494 593 user = User.try_to_login('edavis', '123456')
Chris@1494 594 assert !user.admin?
Chris@1494 595 end
Chris@1494 596 end
Chris@1494 597
Chris@1494 598 should "retrieve existing user" do
Chris@1494 599 user = User.try_to_login('edavis', '123456')
Chris@1494 600 user.admin = true
Chris@1494 601 user.save!
Chris@1494 602
Chris@1494 603 assert_no_difference('User.count') do
Chris@1494 604 user = User.try_to_login('edavis', '123456')
Chris@1494 605 assert user.admin?
Chris@1494 606 end
Chris@1494 607 end
Chris@1494 608 end
Chris@1494 609
Chris@1494 610 context "binding with user's account" do
Chris@1494 611 setup do
Chris@1494 612 @auth_source = AuthSourceLdap.find(1)
Chris@1494 613 @auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
Chris@1494 614 @auth_source.account_password = ''
Chris@1494 615 @auth_source.save!
Chris@1494 616 end
Chris@1494 617
Chris@1494 618 context "with a successful authentication" do
Chris@1494 619 should "create a new user account if it doesn't exist" do
Chris@1494 620 assert_difference('User.count') do
Chris@1494 621 user = User.try_to_login('example1', '123456')
Chris@1494 622 assert_kind_of User, user
Chris@1494 623 end
Chris@1494 624 end
Chris@1494 625 end
Chris@1494 626
Chris@1494 627 context "with an unsuccessful authentication" do
Chris@1494 628 should "return nil" do
Chris@1494 629 assert_nil User.try_to_login('example1', '11111')
Chris@1494 630 end
Chris@1494 631 end
Chris@1494 632 end
Chris@1494 633 end
Chris@1494 634 end
Chris@1494 635
Chris@1494 636 else
Chris@1494 637 puts "Skipping LDAP tests."
Chris@1494 638 end
Chris@1494 639
Chris@1494 640 def test_create_anonymous
Chris@1494 641 AnonymousUser.delete_all
Chris@1494 642 anon = User.anonymous
Chris@1494 643 assert !anon.new_record?
Chris@1494 644 assert_kind_of AnonymousUser, anon
Chris@1494 645 end
Chris@1494 646
Chris@1494 647 def test_ensure_single_anonymous_user
Chris@1494 648 AnonymousUser.delete_all
Chris@1494 649 anon1 = User.anonymous
Chris@1494 650 assert !anon1.new_record?
Chris@1494 651 assert_kind_of AnonymousUser, anon1
Chris@1494 652 anon2 = AnonymousUser.create(
Chris@1494 653 :lastname => 'Anonymous', :firstname => '',
Chris@1494 654 :mail => '', :login => '', :status => 0)
Chris@1494 655 assert_equal 1, anon2.errors.count
Chris@1494 656 end
Chris@1494 657
Chris@1494 658 def test_rss_key
Chris@1494 659 assert_nil @jsmith.rss_token
Chris@1494 660 key = @jsmith.rss_key
Chris@1494 661 assert_equal 40, key.length
Chris@1494 662
Chris@1494 663 @jsmith.reload
Chris@1494 664 assert_equal key, @jsmith.rss_key
Chris@1494 665 end
Chris@1494 666
Chris@1494 667 def test_rss_key_should_not_be_generated_twice
Chris@1494 668 assert_difference 'Token.count', 1 do
Chris@1494 669 key1 = @jsmith.rss_key
Chris@1494 670 key2 = @jsmith.rss_key
Chris@1494 671 assert_equal key1, key2
Chris@1494 672 end
Chris@1494 673 end
Chris@1494 674
Chris@1494 675 def test_api_key_should_not_be_generated_twice
Chris@1494 676 assert_difference 'Token.count', 1 do
Chris@1494 677 key1 = @jsmith.api_key
Chris@1494 678 key2 = @jsmith.api_key
Chris@1494 679 assert_equal key1, key2
Chris@1494 680 end
Chris@1494 681 end
Chris@1494 682
Chris@1494 683 test "#api_key should generate a new one if the user doesn't have one" do
Chris@1494 684 user = User.generate!(:api_token => nil)
Chris@1494 685 assert_nil user.api_token
Chris@1494 686
Chris@1494 687 key = user.api_key
Chris@1494 688 assert_equal 40, key.length
Chris@1494 689 user.reload
Chris@1494 690 assert_equal key, user.api_key
Chris@1494 691 end
Chris@1494 692
Chris@1494 693 test "#api_key should return the existing api token value" do
Chris@1494 694 user = User.generate!
Chris@1494 695 token = Token.create!(:action => 'api')
Chris@1494 696 user.api_token = token
Chris@1494 697 assert user.save
Chris@1494 698
Chris@1494 699 assert_equal token.value, user.api_key
Chris@1494 700 end
Chris@1494 701
Chris@1494 702 test "#find_by_api_key should return nil if no matching key is found" do
Chris@1494 703 assert_nil User.find_by_api_key('zzzzzzzzz')
Chris@1494 704 end
Chris@1494 705
Chris@1494 706 test "#find_by_api_key should return nil if the key is found for an inactive user" do
Chris@1494 707 user = User.generate!
Chris@1494 708 user.status = User::STATUS_LOCKED
Chris@1494 709 token = Token.create!(:action => 'api')
Chris@1494 710 user.api_token = token
Chris@1494 711 user.save
Chris@1494 712
Chris@1494 713 assert_nil User.find_by_api_key(token.value)
Chris@1494 714 end
Chris@1494 715
Chris@1494 716 test "#find_by_api_key should return the user if the key is found for an active user" do
Chris@1494 717 user = User.generate!
Chris@1494 718 token = Token.create!(:action => 'api')
Chris@1494 719 user.api_token = token
Chris@1494 720 user.save
Chris@1494 721
Chris@1494 722 assert_equal user, User.find_by_api_key(token.value)
Chris@1494 723 end
Chris@1494 724
Chris@1494 725 def test_default_admin_account_changed_should_return_false_if_account_was_not_changed
Chris@1494 726 user = User.find_by_login("admin")
Chris@1494 727 user.password = "admin"
Chris@1494 728 assert user.save(:validate => false)
Chris@1494 729
Chris@1494 730 assert_equal false, User.default_admin_account_changed?
Chris@1494 731 end
Chris@1494 732
Chris@1494 733 def test_default_admin_account_changed_should_return_true_if_password_was_changed
Chris@1494 734 user = User.find_by_login("admin")
Chris@1494 735 user.password = "newpassword"
Chris@1494 736 user.save!
Chris@1494 737
Chris@1494 738 assert_equal true, User.default_admin_account_changed?
Chris@1494 739 end
Chris@1494 740
Chris@1494 741 def test_default_admin_account_changed_should_return_true_if_account_is_disabled
Chris@1494 742 user = User.find_by_login("admin")
Chris@1494 743 user.password = "admin"
Chris@1494 744 user.status = User::STATUS_LOCKED
Chris@1494 745 assert user.save(:validate => false)
Chris@1494 746
Chris@1494 747 assert_equal true, User.default_admin_account_changed?
Chris@1494 748 end
Chris@1494 749
Chris@1494 750 def test_default_admin_account_changed_should_return_true_if_account_does_not_exist
Chris@1494 751 user = User.find_by_login("admin")
Chris@1494 752 user.destroy
Chris@1494 753
Chris@1494 754 assert_equal true, User.default_admin_account_changed?
Chris@1494 755 end
Chris@1494 756
Chris@1494 757 def test_membership_with_project_should_return_membership
Chris@1494 758 project = Project.find(1)
Chris@1494 759
Chris@1494 760 membership = @jsmith.membership(project)
Chris@1494 761 assert_kind_of Member, membership
Chris@1494 762 assert_equal @jsmith, membership.user
Chris@1494 763 assert_equal project, membership.project
Chris@1494 764 end
Chris@1494 765
Chris@1494 766 def test_membership_with_project_id_should_return_membership
Chris@1494 767 project = Project.find(1)
Chris@1494 768
Chris@1494 769 membership = @jsmith.membership(1)
Chris@1494 770 assert_kind_of Member, membership
Chris@1494 771 assert_equal @jsmith, membership.user
Chris@1494 772 assert_equal project, membership.project
Chris@1494 773 end
Chris@1494 774
Chris@1494 775 def test_membership_for_non_member_should_return_nil
Chris@1494 776 project = Project.find(1)
Chris@1494 777
Chris@1494 778 user = User.generate!
Chris@1494 779 membership = user.membership(1)
Chris@1494 780 assert_nil membership
Chris@1494 781 end
Chris@1494 782
Chris@1494 783 def test_roles_for_project
Chris@1494 784 # user with a role
Chris@1494 785 roles = @jsmith.roles_for_project(Project.find(1))
Chris@1494 786 assert_kind_of Role, roles.first
Chris@1494 787 assert_equal "Manager", roles.first.name
Chris@1494 788
Chris@1494 789 # user with no role
Chris@1494 790 assert_nil @dlopper.roles_for_project(Project.find(2)).detect {|role| role.member?}
Chris@1494 791 end
Chris@1494 792
Chris@1494 793 def test_projects_by_role_for_user_with_role
Chris@1494 794 user = User.find(2)
Chris@1494 795 assert_kind_of Hash, user.projects_by_role
Chris@1494 796 assert_equal 2, user.projects_by_role.size
Chris@1494 797 assert_equal [1,5], user.projects_by_role[Role.find(1)].collect(&:id).sort
Chris@1494 798 assert_equal [2], user.projects_by_role[Role.find(2)].collect(&:id).sort
Chris@1494 799 end
Chris@1494 800
Chris@1494 801 def test_accessing_projects_by_role_with_no_projects_should_return_an_empty_array
Chris@1494 802 user = User.find(2)
Chris@1494 803 assert_equal [], user.projects_by_role[Role.find(3)]
Chris@1494 804 # should not update the hash
Chris@1494 805 assert_nil user.projects_by_role.values.detect(&:blank?)
Chris@1494 806 end
Chris@1494 807
Chris@1494 808 def test_projects_by_role_for_user_with_no_role
Chris@1494 809 user = User.generate!
Chris@1494 810 assert_equal({}, user.projects_by_role)
Chris@1494 811 end
Chris@1494 812
Chris@1494 813 def test_projects_by_role_for_anonymous
Chris@1494 814 assert_equal({}, User.anonymous.projects_by_role)
Chris@1494 815 end
Chris@1494 816
Chris@1494 817 def test_valid_notification_options
Chris@1494 818 # without memberships
Chris@1494 819 assert_equal 5, User.find(7).valid_notification_options.size
Chris@1494 820 # with memberships
Chris@1494 821 assert_equal 6, User.find(2).valid_notification_options.size
Chris@1494 822 end
Chris@1494 823
Chris@1494 824 def test_valid_notification_options_class_method
Chris@1494 825 assert_equal 5, User.valid_notification_options.size
Chris@1494 826 assert_equal 5, User.valid_notification_options(User.find(7)).size
Chris@1494 827 assert_equal 6, User.valid_notification_options(User.find(2)).size
Chris@1494 828 end
Chris@1494 829
Chris@1494 830 def test_mail_notification_all
Chris@1494 831 @jsmith.mail_notification = 'all'
Chris@1494 832 @jsmith.notified_project_ids = []
Chris@1494 833 @jsmith.save
Chris@1494 834 @jsmith.reload
Chris@1494 835 assert @jsmith.projects.first.recipients.include?(@jsmith.mail)
Chris@1494 836 end
Chris@1494 837
Chris@1494 838 def test_mail_notification_selected
Chris@1494 839 @jsmith.mail_notification = 'selected'
Chris@1494 840 @jsmith.notified_project_ids = [1]
Chris@1494 841 @jsmith.save
Chris@1494 842 @jsmith.reload
Chris@1494 843 assert Project.find(1).recipients.include?(@jsmith.mail)
Chris@1494 844 end
Chris@1494 845
Chris@1494 846 def test_mail_notification_only_my_events
Chris@1494 847 @jsmith.mail_notification = 'only_my_events'
Chris@1494 848 @jsmith.notified_project_ids = []
Chris@1494 849 @jsmith.save
Chris@1494 850 @jsmith.reload
Chris@1494 851 assert !@jsmith.projects.first.recipients.include?(@jsmith.mail)
Chris@1494 852 end
Chris@1494 853
Chris@1494 854 def test_comments_sorting_preference
Chris@1494 855 assert !@jsmith.wants_comments_in_reverse_order?
Chris@1494 856 @jsmith.pref.comments_sorting = 'asc'
Chris@1494 857 assert !@jsmith.wants_comments_in_reverse_order?
Chris@1494 858 @jsmith.pref.comments_sorting = 'desc'
Chris@1494 859 assert @jsmith.wants_comments_in_reverse_order?
Chris@1494 860 end
Chris@1494 861
Chris@1494 862 def test_find_by_mail_should_be_case_insensitive
Chris@1494 863 u = User.find_by_mail('JSmith@somenet.foo')
Chris@1494 864 assert_not_nil u
Chris@1494 865 assert_equal 'jsmith@somenet.foo', u.mail
Chris@1494 866 end
Chris@1494 867
Chris@1494 868 def test_random_password
Chris@1494 869 u = User.new
Chris@1494 870 u.random_password
Chris@1494 871 assert !u.password.blank?
Chris@1494 872 assert !u.password_confirmation.blank?
Chris@1494 873 end
Chris@1494 874
Chris@1494 875 test "#change_password_allowed? should be allowed if no auth source is set" do
Chris@1494 876 user = User.generate!
Chris@1494 877 assert user.change_password_allowed?
Chris@1494 878 end
Chris@1494 879
Chris@1494 880 test "#change_password_allowed? should delegate to the auth source" do
Chris@1494 881 user = User.generate!
Chris@1494 882
Chris@1494 883 allowed_auth_source = AuthSource.generate!
Chris@1494 884 def allowed_auth_source.allow_password_changes?; true; end
Chris@1494 885
Chris@1494 886 denied_auth_source = AuthSource.generate!
Chris@1494 887 def denied_auth_source.allow_password_changes?; false; end
Chris@1494 888
Chris@1494 889 assert user.change_password_allowed?
Chris@1494 890
Chris@1494 891 user.auth_source = allowed_auth_source
Chris@1494 892 assert user.change_password_allowed?, "User not allowed to change password, though auth source does"
Chris@1494 893
Chris@1494 894 user.auth_source = denied_auth_source
Chris@1494 895 assert !user.change_password_allowed?, "User allowed to change password, though auth source does not"
Chris@1494 896 end
Chris@1494 897
Chris@1494 898 def test_own_account_deletable_should_be_true_with_unsubscrive_enabled
Chris@1494 899 with_settings :unsubscribe => '1' do
Chris@1494 900 assert_equal true, User.find(2).own_account_deletable?
Chris@1494 901 end
Chris@1494 902 end
Chris@1494 903
Chris@1494 904 def test_own_account_deletable_should_be_false_with_unsubscrive_disabled
Chris@1494 905 with_settings :unsubscribe => '0' do
Chris@1494 906 assert_equal false, User.find(2).own_account_deletable?
Chris@1494 907 end
Chris@1494 908 end
Chris@1494 909
Chris@1494 910 def test_own_account_deletable_should_be_false_for_a_single_admin
Chris@1494 911 User.delete_all(["admin = ? AND id <> ?", true, 1])
Chris@1494 912
Chris@1494 913 with_settings :unsubscribe => '1' do
Chris@1494 914 assert_equal false, User.find(1).own_account_deletable?
Chris@1494 915 end
Chris@1494 916 end
Chris@1494 917
Chris@1494 918 def test_own_account_deletable_should_be_true_for_an_admin_if_other_admin_exists
Chris@1494 919 User.generate! do |user|
Chris@1494 920 user.admin = true
Chris@1494 921 end
Chris@1494 922
Chris@1494 923 with_settings :unsubscribe => '1' do
Chris@1494 924 assert_equal true, User.find(1).own_account_deletable?
Chris@1494 925 end
Chris@1494 926 end
Chris@1494 927
Chris@1494 928 context "#allowed_to?" do
Chris@1494 929 context "with a unique project" do
Chris@1494 930 should "return false if project is archived" do
Chris@1494 931 project = Project.find(1)
Chris@1494 932 Project.any_instance.stubs(:status).returns(Project::STATUS_ARCHIVED)
Chris@1494 933 assert_equal false, @admin.allowed_to?(:view_issues, Project.find(1))
Chris@1494 934 end
Chris@1494 935
Chris@1494 936 should "return false for write action if project is closed" do
Chris@1494 937 project = Project.find(1)
Chris@1494 938 Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
Chris@1494 939 assert_equal false, @admin.allowed_to?(:edit_project, Project.find(1))
Chris@1494 940 end
Chris@1494 941
Chris@1494 942 should "return true for read action if project is closed" do
Chris@1494 943 project = Project.find(1)
Chris@1494 944 Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
Chris@1494 945 assert_equal true, @admin.allowed_to?(:view_project, Project.find(1))
Chris@1494 946 end
Chris@1494 947
Chris@1494 948 should "return false if related module is disabled" do
Chris@1494 949 project = Project.find(1)
Chris@1494 950 project.enabled_module_names = ["issue_tracking"]
Chris@1494 951 assert_equal true, @admin.allowed_to?(:add_issues, project)
Chris@1494 952 assert_equal false, @admin.allowed_to?(:view_wiki_pages, project)
Chris@1494 953 end
Chris@1494 954
Chris@1494 955 should "authorize nearly everything for admin users" do
Chris@1494 956 project = Project.find(1)
Chris@1494 957 assert ! @admin.member_of?(project)
Chris@1494 958 %w(edit_issues delete_issues manage_news add_documents manage_wiki).each do |p|
Chris@1494 959 assert_equal true, @admin.allowed_to?(p.to_sym, project)
Chris@1494 960 end
Chris@1494 961 end
Chris@1494 962
Chris@1494 963 should "authorize normal users depending on their roles" do
Chris@1494 964 project = Project.find(1)
Chris@1494 965 assert_equal true, @jsmith.allowed_to?(:delete_messages, project) #Manager
Chris@1494 966 assert_equal false, @dlopper.allowed_to?(:delete_messages, project) #Developper
Chris@1494 967 end
Chris@1494 968 end
Chris@1494 969
Chris@1494 970 context "with multiple projects" do
Chris@1494 971 should "return false if array is empty" do
Chris@1494 972 assert_equal false, @admin.allowed_to?(:view_project, [])
Chris@1494 973 end
Chris@1494 974
Chris@1494 975 should "return true only if user has permission on all these projects" do
Chris@1494 976 assert_equal true, @admin.allowed_to?(:view_project, Project.all)
Chris@1494 977 assert_equal false, @dlopper.allowed_to?(:view_project, Project.all) #cannot see Project(2)
Chris@1494 978 assert_equal true, @jsmith.allowed_to?(:edit_issues, @jsmith.projects) #Manager or Developer everywhere
Chris@1494 979 assert_equal false, @jsmith.allowed_to?(:delete_issue_watchers, @jsmith.projects) #Dev cannot delete_issue_watchers
Chris@1494 980 end
Chris@1494 981
Chris@1494 982 should "behave correctly with arrays of 1 project" do
Chris@1494 983 assert_equal false, User.anonymous.allowed_to?(:delete_issues, [Project.first])
Chris@1494 984 end
Chris@1494 985 end
Chris@1494 986
Chris@1494 987 context "with options[:global]" do
Chris@1494 988 should "authorize if user has at least one role that has this permission" do
Chris@1494 989 @dlopper2 = User.find(5) #only Developper on a project, not Manager anywhere
Chris@1494 990 @anonymous = User.find(6)
Chris@1494 991 assert_equal true, @jsmith.allowed_to?(:delete_issue_watchers, nil, :global => true)
Chris@1494 992 assert_equal false, @dlopper2.allowed_to?(:delete_issue_watchers, nil, :global => true)
Chris@1494 993 assert_equal true, @dlopper2.allowed_to?(:add_issues, nil, :global => true)
Chris@1494 994 assert_equal false, @anonymous.allowed_to?(:add_issues, nil, :global => true)
Chris@1494 995 assert_equal true, @anonymous.allowed_to?(:view_issues, nil, :global => true)
Chris@1494 996 end
Chris@1494 997 end
Chris@1494 998 end
Chris@1494 999
Chris@1494 1000 context "User#notify_about?" do
Chris@1494 1001 context "Issues" do
Chris@1494 1002 setup do
Chris@1494 1003 @project = Project.find(1)
Chris@1494 1004 @author = User.generate!
Chris@1494 1005 @assignee = User.generate!
Chris@1494 1006 @issue = Issue.generate!(:project => @project, :assigned_to => @assignee, :author => @author)
Chris@1494 1007 end
Chris@1494 1008
Chris@1494 1009 should "be true for a user with :all" do
Chris@1494 1010 @author.update_attribute(:mail_notification, 'all')
Chris@1494 1011 assert @author.notify_about?(@issue)
Chris@1494 1012 end
Chris@1494 1013
Chris@1494 1014 should "be false for a user with :none" do
Chris@1494 1015 @author.update_attribute(:mail_notification, 'none')
Chris@1494 1016 assert ! @author.notify_about?(@issue)
Chris@1494 1017 end
Chris@1494 1018
Chris@1494 1019 should "be false for a user with :only_my_events and isn't an author, creator, or assignee" do
Chris@1494 1020 @user = User.generate!(:mail_notification => 'only_my_events')
Chris@1494 1021 Member.create!(:user => @user, :project => @project, :role_ids => [1])
Chris@1494 1022 assert ! @user.notify_about?(@issue)
Chris@1494 1023 end
Chris@1494 1024
Chris@1494 1025 should "be true for a user with :only_my_events and is the author" do
Chris@1494 1026 @author.update_attribute(:mail_notification, 'only_my_events')
Chris@1494 1027 assert @author.notify_about?(@issue)
Chris@1494 1028 end
Chris@1494 1029
Chris@1494 1030 should "be true for a user with :only_my_events and is the assignee" do
Chris@1494 1031 @assignee.update_attribute(:mail_notification, 'only_my_events')
Chris@1494 1032 assert @assignee.notify_about?(@issue)
Chris@1494 1033 end
Chris@1494 1034
Chris@1494 1035 should "be true for a user with :only_assigned and is the assignee" do
Chris@1494 1036 @assignee.update_attribute(:mail_notification, 'only_assigned')
Chris@1494 1037 assert @assignee.notify_about?(@issue)
Chris@1494 1038 end
Chris@1494 1039
Chris@1494 1040 should "be false for a user with :only_assigned and is not the assignee" do
Chris@1494 1041 @author.update_attribute(:mail_notification, 'only_assigned')
Chris@1494 1042 assert ! @author.notify_about?(@issue)
Chris@1494 1043 end
Chris@1494 1044
Chris@1494 1045 should "be true for a user with :only_owner and is the author" do
Chris@1494 1046 @author.update_attribute(:mail_notification, 'only_owner')
Chris@1494 1047 assert @author.notify_about?(@issue)
Chris@1494 1048 end
Chris@1494 1049
Chris@1494 1050 should "be false for a user with :only_owner and is not the author" do
Chris@1494 1051 @assignee.update_attribute(:mail_notification, 'only_owner')
Chris@1494 1052 assert ! @assignee.notify_about?(@issue)
Chris@1494 1053 end
Chris@1494 1054
Chris@1494 1055 should "be true for a user with :selected and is the author" do
Chris@1494 1056 @author.update_attribute(:mail_notification, 'selected')
Chris@1494 1057 assert @author.notify_about?(@issue)
Chris@1494 1058 end
Chris@1494 1059
Chris@1494 1060 should "be true for a user with :selected and is the assignee" do
Chris@1494 1061 @assignee.update_attribute(:mail_notification, 'selected')
Chris@1494 1062 assert @assignee.notify_about?(@issue)
Chris@1494 1063 end
Chris@1494 1064
Chris@1494 1065 should "be false for a user with :selected and is not the author or assignee" do
Chris@1494 1066 @user = User.generate!(:mail_notification => 'selected')
Chris@1494 1067 Member.create!(:user => @user, :project => @project, :role_ids => [1])
Chris@1494 1068 assert ! @user.notify_about?(@issue)
Chris@1494 1069 end
Chris@1494 1070 end
Chris@1494 1071 end
Chris@1494 1072
Chris@1494 1073 def test_notify_about_news
Chris@1494 1074 user = User.generate!
Chris@1494 1075 news = News.new
Chris@1494 1076
Chris@1494 1077 User::MAIL_NOTIFICATION_OPTIONS.map(&:first).each do |option|
Chris@1494 1078 user.mail_notification = option
Chris@1494 1079 assert_equal (option != 'none'), user.notify_about?(news)
Chris@1494 1080 end
Chris@1494 1081 end
Chris@1494 1082
Chris@1494 1083 def test_salt_unsalted_passwords
Chris@1494 1084 # Restore a user with an unsalted password
Chris@1494 1085 user = User.find(1)
Chris@1494 1086 user.salt = nil
Chris@1494 1087 user.hashed_password = User.hash_password("unsalted")
Chris@1494 1088 user.save!
Chris@1494 1089
Chris@1494 1090 User.salt_unsalted_passwords!
Chris@1494 1091
Chris@1494 1092 user.reload
Chris@1494 1093 # Salt added
Chris@1494 1094 assert !user.salt.blank?
Chris@1494 1095 # Password still valid
Chris@1494 1096 assert user.check_password?("unsalted")
Chris@1494 1097 assert_equal user, User.try_to_login(user.login, "unsalted")
Chris@1494 1098 end
Chris@1494 1099
Chris@1494 1100 if Object.const_defined?(:OpenID)
Chris@1494 1101
Chris@1494 1102 def test_setting_identity_url
Chris@1494 1103 normalized_open_id_url = 'http://example.com/'
Chris@1494 1104 u = User.new( :identity_url => 'http://example.com/' )
Chris@1494 1105 assert_equal normalized_open_id_url, u.identity_url
Chris@1494 1106 end
Chris@1494 1107
Chris@1494 1108 def test_setting_identity_url_without_trailing_slash
Chris@1494 1109 normalized_open_id_url = 'http://example.com/'
Chris@1494 1110 u = User.new( :identity_url => 'http://example.com' )
Chris@1494 1111 assert_equal normalized_open_id_url, u.identity_url
Chris@1494 1112 end
Chris@1494 1113
Chris@1494 1114 def test_setting_identity_url_without_protocol
Chris@1494 1115 normalized_open_id_url = 'http://example.com/'
Chris@1494 1116 u = User.new( :identity_url => 'example.com' )
Chris@1494 1117 assert_equal normalized_open_id_url, u.identity_url
Chris@1494 1118 end
Chris@1494 1119
Chris@1494 1120 def test_setting_blank_identity_url
Chris@1494 1121 u = User.new( :identity_url => 'example.com' )
Chris@1494 1122 u.identity_url = ''
Chris@1494 1123 assert u.identity_url.blank?
Chris@1494 1124 end
Chris@1494 1125
Chris@1494 1126 def test_setting_invalid_identity_url
Chris@1494 1127 u = User.new( :identity_url => 'this is not an openid url' )
Chris@1494 1128 assert u.identity_url.blank?
Chris@1494 1129 end
Chris@1494 1130
Chris@1494 1131 else
Chris@1494 1132 puts "Skipping openid tests."
Chris@1494 1133 end
Chris@1494 1134
Chris@1494 1135 end