soundsoftware-site: test/unit/user

comparison test/unit/user_test.rb @ 1115:433d4f72a19b redmine-2.2

Update to Redmine SVN revision 11137 on 2.2-stable branch

author	Chris Cannam
date	Mon, 07 Jan 2013 12:01:42 +0000
parents	5f33065ddc4b
children	622f24f53b42 261b3d9a4903

comparison

equal deleted inserted replaced

-:5f33065ddc4b
+:433d4f72a19b
 # Redmine - project management software
-# Copyright (C) 2006-2011  Jean-Philippe Lang
+# Copyright (C) 2006-2012  Jean-Philippe Lang
 #
 # This program is free software; you can redistribute it and/or
 # modify it under the terms of the GNU General Public License
 # as published by the Free Software Foundation; either version 2
 # of the License, or (at your option) any later version.
 @admin = User.find(1)
 @jsmith = User.find(2)
 @dlopper = User.find(3)
 end
-test 'object_daddy creation' do
+def test_generate
-User.generate_with_protected!(:firstname => 'Testing connection')
+User.generate!(:firstname => 'Testing connection')
-User.generate_with_protected!(:firstname => 'Testing connection')
+User.generate!(:firstname => 'Testing connection')
 assert_equal 2, User.count(:all, :conditions => {:firstname => 'Testing connection'})
 end
 def test_truth
 assert_kind_of User, @jsmith
 def test_mail_validation
 u = User.new
 u.mail = ''
 assert !u.valid?
-assert_equal I18n.translate('activerecord.errors.messages.blank'), u.errors.on(:mail)
+assert_include I18n.translate('activerecord.errors.messages.blank'), u.errors[:mail]
+end
+def test_login_length_validation
+user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
+user.login = "x" * (User::LOGIN_LENGTH_LIMIT+1)
+assert !user.valid?
+user.login = "x" * (User::LOGIN_LENGTH_LIMIT)
+assert user.valid?
+assert user.save
 end
 def test_create
 user = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
 # login uniqueness
 assert !user.save
 assert_equal 1, user.errors.count
 user.login = "newuser"
-user.password, user.password_confirmation = "passwd", "password"
+user.password, user.password_confirmation = "password", "pass"
 # password confirmation
 assert !user.save
 assert_equal 1, user.errors.count
 user.password, user.password_confirmation = "password", "password"
 assert user.save
 end
-context "User#before_create" do
+def test_user_before_create_should_set_the_mail_notification_to_the_default_setting
-should "set the mail_notification to the default Setting" do
+@user1 = User.generate!
-@user1 = User.generate_with_protected!
+assert_equal 'only_my_events', @user1.mail_notification
-assert_equal 'only_my_events', @user1.mail_notification
+with_settings :default_notification_option => 'all' do
+@user2 = User.generate!
-with_settings :default_notification_option => 'all' do
+assert_equal 'all', @user2.mail_notification
-@user2 = User.generate_with_protected!
+end
-assert_equal 'all', @user2.mail_notification
+end
-end
-end
+def test_user_login_should_be_case_insensitive
-end
+u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
+u.login = 'newuser'
-context "User.login" do
+u.password, u.password_confirmation = "password", "password"
-should "be case-insensitive." do
+assert u.save
-u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
+u = User.new(:firstname => "Similar", :lastname => "User", :mail => "similaruser@somenet.foo")
-u.login = 'newuser'
+u.login = 'NewUser'
 u.password, u.password_confirmation = "password", "password"
-assert u.save
+assert !u.save
+assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:login]
-u = User.new(:firstname => "Similar", :lastname => "User", :mail => "similaruser@somenet.foo")
-u.login = 'NewUser'
-u.password, u.password_confirmation = "password", "password"
-assert !u.save
-assert_equal I18n.translate('activerecord.errors.messages.taken'), u.errors.on(:login)
-end
 end
 def test_mail_uniqueness_should_not_be_case_sensitive
 u = User.new(:firstname => "new", :lastname => "user", :mail => "newuser@somenet.foo")
 u.login = 'newuser1'
 u = User.new(:firstname => "new", :lastname => "user", :mail => "newUser@Somenet.foo")
 u.login = 'newuser2'
 u.password, u.password_confirmation = "password", "password"
 assert !u.save
-assert_equal I18n.translate('activerecord.errors.messages.taken'), u.errors.on(:mail)
+assert_include I18n.translate('activerecord.errors.messages.taken'), u.errors[:mail]
 end
 def test_update
 assert_equal "admin", @admin.login
 @admin.login = "john"
 assert @admin.save, @admin.errors.full_messages.join("; ")
 @admin.reload
 assert_equal "john", @admin.login
+end
+def test_update_should_not_fail_for_legacy_user_with_different_case_logins
+u1 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser1@somenet.foo")
+u1.login = 'newuser1'
+assert u1.save
+u2 = User.new(:firstname => "new", :lastname => "user", :mail => "newuser2@somenet.foo")
+u2.login = 'newuser1'
+assert u2.save(:validate => false)
+user = User.find(u2.id)
+user.firstname = "firstname"
+assert user.save, "Save failed"
 end
 def test_destroy_should_delete_members_and_roles
 members = Member.find_all_by_user_id(2)
 ms = members.size
 def test_destroy_should_nullify_changesets
 changeset = Changeset.create!(
 :repository => Repository::Subversion.create!(
 :project_id => 1,
-:url => 'file:///var/svn'
+:url => 'file:///tmp',
+:identifier => 'tmp'
 ),
 :revision => '12',
 :committed_on => Time.now,
 :committer => 'jsmith'
 )
 assert_kind_of User, user
 assert_equal "admin", user.login
 end
 should "select the exact matching user first" do
-case_sensitive_user = User.generate_with_protected!(
+case_sensitive_user = User.generate! do |user|
-:login => 'changed', :password => 'admin',
+user.password = "admin123"
-:password_confirmation => 'admin')
+end
 # bypass validations to make it appear like existing data
 case_sensitive_user.update_attribute(:login, 'ADMIN')
-user = User.try_to_login("ADMIN", "admin")
+user = User.try_to_login("ADMIN", "admin123")
 assert_kind_of User, user
 assert_equal "ADMIN", user.login
 end
 end
 def test_password
 user = User.try_to_login("admin", "admin")
 assert_kind_of User, user
 assert_equal "admin", user.login
-user.password = "hello"
+user.password = "hello123"
 assert user.save
-user = User.try_to_login("admin", "hello")
+user = User.try_to_login("admin", "hello123")
 assert_kind_of User, user
 assert_equal "admin", user.login
 end
 def test_validate_password_length
 assert_equal 1, user.errors.count
 end
 end
 def test_name_format
+assert_equal 'John S.', @jsmith.name(:firstname_lastinitial)
 assert_equal 'Smith, John', @jsmith.name(:lastname_coma_firstname)
-Setting.user_format = :firstname_lastname
+with_settings :user_format => :firstname_lastname do
 assert_equal 'John Smith', @jsmith.reload.name
-Setting.user_format = :username
+end
-assert_equal 'jsmith', @jsmith.reload.name
+with_settings :user_format => :username do
-end
+assert_equal 'jsmith', @jsmith.reload.name
+end
+with_settings :user_format => :lastname do
+assert_equal 'Smith', @jsmith.reload.name
+end
+end
+def test_today_should_return_the_day_according_to_user_time_zone
+preference = User.find(1).pref
+date = Date.new(2012, 05, 15)
+time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
+Date.stubs(:today).returns(date)
+Time.stubs(:now).returns(time)
+preference.update_attribute :time_zone, 'Baku' # UTC+4
+assert_equal '2012-05-16', User.find(1).today.to_s
+preference.update_attribute :time_zone, 'La Paz' # UTC-4
+assert_equal '2012-05-15', User.find(1).today.to_s
+preference.update_attribute :time_zone, ''
+assert_equal '2012-05-15', User.find(1).today.to_s
+end
+def test_time_to_date_should_return_the_date_according_to_user_time_zone
+preference = User.find(1).pref
+time = Time.gm(2012, 05, 15, 23, 30).utc # 2012-05-15 23:30 UTC
+preference.update_attribute :time_zone, 'Baku' # UTC+4
+assert_equal '2012-05-16', User.find(1).time_to_date(time).to_s
+preference.update_attribute :time_zone, 'La Paz' # UTC-4
+assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
+preference.update_attribute :time_zone, ''
+assert_equal '2012-05-15', User.find(1).time_to_date(time).to_s
+end
 def test_fields_for_order_statement_should_return_fields_according_user_format_setting
 with_settings :user_format => 'lastname_coma_firstname' do
 assert_equal ['users.lastname', 'users.firstname', 'users.id'], User.fields_for_order_statement
 end
 end
 should "return nil" do
 assert_equal nil, User.try_to_login('edavis', 'wrong')
 end
 end
+context "binding with user's account" do
+setup do
+@auth_source = AuthSourceLdap.find(1)
+@auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
+@auth_source.account_password = ''
+@auth_source.save!
+@ldap_user = User.new(:mail => 'example1@redmine.org', :firstname => 'LDAP', :lastname => 'user', :auth_source_id => 1)
+@ldap_user.login = 'example1'
+@ldap_user.save!
+end
+context "with a successful authentication" do
+should "return the user" do
+assert_equal @ldap_user, User.try_to_login('example1', '123456')
+end
+end
+context "with an unsuccessful authentication" do
+should "return nil" do
+assert_nil User.try_to_login('example1', '11111')
+end
+end
+end
 context "on the fly registration" do
 setup do
 @auth_source = AuthSourceLdap.find(1)
+@auth_source.update_attribute :onthefly_register, true
 end
 context "with a successful authentication" do
 should "create a new user account if it doesn't exist" do
 assert_difference('User.count') do
 user.save!
 assert_no_difference('User.count') do
 user = User.try_to_login('edavis', '123456')
 assert user.admin?
+end
+end
+end
+context "binding with user's account" do
+setup do
+@auth_source = AuthSourceLdap.find(1)
+@auth_source.account = "uid=$login,ou=Person,dc=redmine,dc=org"
+@auth_source.account_password = ''
+@auth_source.save!
+end
+context "with a successful authentication" do
+should "create a new user account if it doesn't exist" do
+assert_difference('User.count') do
+user = User.try_to_login('example1', '123456')
+assert_kind_of User, user
+end
+end
+end
+context "with an unsuccessful authentication" do
+should "return nil" do
+assert_nil User.try_to_login('example1', '11111')
 end
 end
 end
 end
 end
 :lastname => 'Anonymous', :firstname => '',
 :mail => '', :login => '', :status => 0)
 assert_equal 1, anon2.errors.count
 end
-should_have_one :rss_token
 def test_rss_key
 assert_nil @jsmith.rss_token
 key = @jsmith.rss_key
 assert_equal 40, key.length
 @jsmith.reload
 assert_equal key, @jsmith.rss_key
 end
+def test_rss_key_should_not_be_generated_twice
-should_have_one :api_token
+assert_difference 'Token.count', 1 do
+key1 = @jsmith.rss_key
+key2 = @jsmith.rss_key
+assert_equal key1, key2
+end
+end
+def test_api_key_should_not_be_generated_twice
+assert_difference 'Token.count', 1 do
+key1 = @jsmith.api_key
+key2 = @jsmith.api_key
+assert_equal key1, key2
+end
+end
 context "User#api_key" do
 should "generate a new one if the user doesn't have one" do
-user = User.generate_with_protected!(:api_token => nil)
+user = User.generate!(:api_token => nil)
 assert_nil user.api_token
 key = user.api_key
 assert_equal 40, key.length
 user.reload
 assert_equal key, user.api_key
 end
 should "return the existing api token value" do
-user = User.generate_with_protected!
+user = User.generate!
-token = Token.generate!(:action => 'api')
+token = Token.create!(:action => 'api')
 user.api_token = token
 assert user.save
 assert_equal token.value, user.api_key
 end
 should "return nil if no matching key is found" do
 assert_nil User.find_by_api_key('zzzzzzzzz')
 end
 should "return nil if the key is found for an inactive user" do
-user = User.generate_with_protected!(:status => User::STATUS_LOCKED)
+user = User.generate!
-token = Token.generate!(:action => 'api')
+user.status = User::STATUS_LOCKED
+token = Token.create!(:action => 'api')
 user.api_token = token
 user.save
 assert_nil User.find_by_api_key(token.value)
 end
 should "return the user if the key is found for an active user" do
-user = User.generate_with_protected!(:status => User::STATUS_ACTIVE)
+user = User.generate!
-token = Token.generate!(:action => 'api')
+token = Token.create!(:action => 'api')
 user.api_token = token
 user.save
 assert_equal user, User.find_by_api_key(token.value)
 end
 end
 def test_default_admin_account_changed_should_return_false_if_account_was_not_changed
 user = User.find_by_login("admin")
 user.password = "admin"
-user.save!
+assert user.save(:validate => false)
 assert_equal false, User.default_admin_account_changed?
 end
 def test_default_admin_account_changed_should_return_true_if_password_was_changed
 def test_default_admin_account_changed_should_return_true_if_account_is_disabled
 user = User.find_by_login("admin")
 user.password = "admin"
 user.status = User::STATUS_LOCKED
-user.save!
+assert user.save(:validate => false)
 assert_equal true, User.default_admin_account_changed?
 end
 def test_default_admin_account_changed_should_return_true_if_account_does_not_exist
 assert_equal 2, user.projects_by_role.size
 assert_equal [1,5], user.projects_by_role[Role.find(1)].collect(&:id).sort
 assert_equal [2], user.projects_by_role[Role.find(2)].collect(&:id).sort
 end
+def test_accessing_projects_by_role_with_no_projects_should_return_an_empty_array
+user = User.find(2)
+assert_equal [], user.projects_by_role[Role.find(3)]
+# should not update the hash
+assert_nil user.projects_by_role.values.detect(&:blank?)
+end
 def test_projects_by_role_for_user_with_no_role
 user = User.generate!
 assert_equal({}, user.projects_by_role)
 end
 assert !u.password_confirmation.blank?
 end
 context "#change_password_allowed?" do
 should "be allowed if no auth source is set" do
-user = User.generate_with_protected!
+user = User.generate!
 assert user.change_password_allowed?
 end
 should "delegate to the auth source" do
-user = User.generate_with_protected!
+user = User.generate!
 allowed_auth_source = AuthSource.generate!
 def allowed_auth_source.allow_password_changes?; true; end
 denied_auth_source = AuthSource.generate!
 assert user.change_password_allowed?, "User not allowed to change password, though auth source does"
 user.auth_source = denied_auth_source
 assert !user.change_password_allowed?, "User allowed to change password, though auth source does not"
 end
+end
+def test_own_account_deletable_should_be_true_with_unsubscrive_enabled
+with_settings :unsubscribe => '1' do
+assert_equal true, User.find(2).own_account_deletable?
+end
+end
+def test_own_account_deletable_should_be_false_with_unsubscrive_disabled
+with_settings :unsubscribe => '0' do
+assert_equal false, User.find(2).own_account_deletable?
+end
+end
+def test_own_account_deletable_should_be_false_for_a_single_admin
+User.delete_all(["admin = ? AND id <> ?", true, 1])
+with_settings :unsubscribe => '1' do
+assert_equal false, User.find(1).own_account_deletable?
+end
+end
+def test_own_account_deletable_should_be_true_for_an_admin_if_other_admin_exists
+User.generate! do |user|
+user.admin = true
+end
+with_settings :unsubscribe => '1' do
+assert_equal true, User.find(1).own_account_deletable?
+end
 end
 context "#allowed_to?" do
 context "with a unique project" do
 should "return false if project is archived" do
 project = Project.find(1)
 Project.any_instance.stubs(:status).returns(Project::STATUS_ARCHIVED)
-assert ! @admin.allowed_to?(:view_issues, Project.find(1))
+assert_equal false, @admin.allowed_to?(:view_issues, Project.find(1))
+end
+should "return false for write action if project is closed" do
+project = Project.find(1)
+Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
+assert_equal false, @admin.allowed_to?(:edit_project, Project.find(1))
+end
+should "return true for read action if project is closed" do
+project = Project.find(1)
+Project.any_instance.stubs(:status).returns(Project::STATUS_CLOSED)
+assert_equal true, @admin.allowed_to?(:view_project, Project.find(1))
 end
 should "return false if related module is disabled" do
 project = Project.find(1)
 project.enabled_module_names = ["issue_tracking"]
-assert @admin.allowed_to?(:add_issues, project)
+assert_equal true, @admin.allowed_to?(:add_issues, project)
-assert ! @admin.allowed_to?(:view_wiki_pages, project)
+assert_equal false, @admin.allowed_to?(:view_wiki_pages, project)
 end
 should "authorize nearly everything for admin users" do
 project = Project.find(1)
 assert ! @admin.member_of?(project)
 %w(edit_issues delete_issues manage_news manage_documents manage_wiki).each do |p|
-assert @admin.allowed_to?(p.to_sym, project)
+assert_equal true, @admin.allowed_to?(p.to_sym, project)
 end
 end
 should "authorize normal users depending on their roles" do
 project = Project.find(1)
-assert @jsmith.allowed_to?(:delete_messages, project)    #Manager
+assert_equal true, @jsmith.allowed_to?(:delete_messages, project)    #Manager
-assert ! @dlopper.allowed_to?(:delete_messages, project) #Developper
+assert_equal false, @dlopper.allowed_to?(:delete_messages, project) #Developper
 end
 end
 context "with multiple projects" do
 should "return false if array is empty" do
-assert ! @admin.allowed_to?(:view_project, [])
+assert_equal false, @admin.allowed_to?(:view_project, [])
 end
 should "return true only if user has permission on all these projects" do
-assert @admin.allowed_to?(:view_project, Project.all)
+assert_equal true, @admin.allowed_to?(:view_project, Project.all)
-assert ! @dlopper.allowed_to?(:view_project, Project.all) #cannot see Project(2)
+assert_equal false, @dlopper.allowed_to?(:view_project, Project.all) #cannot see Project(2)
-assert @jsmith.allowed_to?(:edit_issues, @jsmith.projects) #Manager or Developer everywhere
+assert_equal true, @jsmith.allowed_to?(:edit_issues, @jsmith.projects) #Manager or Developer everywhere
-assert ! @jsmith.allowed_to?(:delete_issue_watchers, @jsmith.projects) #Dev cannot delete_issue_watchers
+assert_equal false, @jsmith.allowed_to?(:delete_issue_watchers, @jsmith.projects) #Dev cannot delete_issue_watchers
 end
 should "behave correctly with arrays of 1 project" do
-assert ! User.anonymous.allowed_to?(:delete_issues, [Project.first])
+assert_equal false, User.anonymous.allowed_to?(:delete_issues, [Project.first])
 end
 end
 context "with options[:global]" do
 should "authorize if user has at least one role that has this permission" do
 @dlopper2 = User.find(5) #only Developper on a project, not Manager anywhere
 @anonymous = User.find(6)
-assert @jsmith.allowed_to?(:delete_issue_watchers, nil, :global => true)
+assert_equal true, @jsmith.allowed_to?(:delete_issue_watchers, nil, :global => true)
-assert ! @dlopper2.allowed_to?(:delete_issue_watchers, nil, :global => true)
+assert_equal false, @dlopper2.allowed_to?(:delete_issue_watchers, nil, :global => true)
-assert @dlopper2.allowed_to?(:add_issues, nil, :global => true)
+assert_equal true, @dlopper2.allowed_to?(:add_issues, nil, :global => true)
-assert ! @anonymous.allowed_to?(:add_issues, nil, :global => true)
+assert_equal false, @anonymous.allowed_to?(:add_issues, nil, :global => true)
-assert @anonymous.allowed_to?(:view_issues, nil, :global => true)
+assert_equal true, @anonymous.allowed_to?(:view_issues, nil, :global => true)
 end
 end
 end
 context "User#notify_about?" do
 context "Issues" do
 setup do
 @project = Project.find(1)
-@author = User.generate_with_protected!
+@author = User.generate!
-@assignee = User.generate_with_protected!
+@assignee = User.generate!
-@issue = Issue.generate_for_project!(@project, :assigned_to => @assignee, :author => @author)
+@issue = Issue.generate!(:project => @project, :assigned_to => @assignee, :author => @author)
 end
 should "be true for a user with :all" do
 @author.update_attribute(:mail_notification, 'all')
 assert @author.notify_about?(@issue)
 @author.update_attribute(:mail_notification, 'none')
 assert ! @author.notify_about?(@issue)
 end
 should "be false for a user with :only_my_events and isn't an author, creator, or assignee" do
-@user = User.generate_with_protected!(:mail_notification => 'only_my_events')
+@user = User.generate!(:mail_notification => 'only_my_events')
 Member.create!(:user => @user, :project => @project, :role_ids => [1])
 assert ! @user.notify_about?(@issue)
 end
 should "be true for a user with :only_my_events and is the author" do
 @assignee.update_attribute(:mail_notification, 'selected')
 assert @assignee.notify_about?(@issue)
 end
 should "be false for a user with :selected and is not the author or assignee" do
-@user = User.generate_with_protected!(:mail_notification => 'selected')
+@user = User.generate!(:mail_notification => 'selected')
 Member.create!(:user => @user, :project => @project, :role_ids => [1])
 assert ! @user.notify_about?(@issue)
 end
 end

Mercurial > hg > soundsoftware-site

comparison test/unit/user_test.rb @ 1115:433d4f72a19b redmine-2.2