Have the fetch tag dialog show a warning for robot accounts without access

Before this change, we'd show the squash pulling command with the proper credentials, but it then 403s on the end user.
2015-07-01 11:39:12 +03:00 · 2015-07-01 11:39:12 +03:00 · b535e222b8
commit b535e222b8
parent 7aeaf2344e
5 changed files with 108 additions and 2 deletions
--- a/test/test_api_security.py
+++ b/test/test_api_security.py
@ -43,7 +43,8 @@ from endpoints.api.organization import (OrganizationList, OrganizationMember,
                                        OrganizationApplicationResetClientSecret)
 from endpoints.api.repository import RepositoryList, RepositoryVisibility, Repository
 from endpoints.api.permission import (RepositoryUserPermission, RepositoryTeamPermission,
-                                      RepositoryTeamPermissionList, RepositoryUserPermissionList)
+                                      RepositoryTeamPermissionList, RepositoryUserPermissionList,
+                                      RepositoryUserTransitivePermission)
 from endpoints.api.superuser import (SuperUserLogs, SuperUserList, SuperUserManagement,
                                     SuperUserSendRecoveryEmail, ChangeLog,
                                     SuperUserOrganizationManagement, SuperUserOrganizationList)
@ -728,6 +729,58 @@ class TestTeamMemberListBuynlargeOwners(ApiTestCase):
    self._run_test('GET', 200, 'devtable', None)


+class TestRepositoryUserTransitivePermissionA2o9PublicPublicrepo(ApiTestCase):
+  def setUp(self):
+    ApiTestCase.setUp(self)
+    self._set_url(RepositoryUserTransitivePermission, username="A2O9", repository="public/publicrepo")
+
+  def test_get_anonymous(self):
+    self._run_test('GET', 401, None, None)
+
+  def test_get_freshuser(self):
+    self._run_test('GET', 403, 'freshuser', None)
+
+  def test_get_reader(self):
+    self._run_test('GET', 403, 'reader', None)
+
+  def test_get_devtable(self):
+    self._run_test('GET', 403, 'devtable', None)
+
+class TestRepositoryUserTransitivePermissionA2o9DevtableShared(ApiTestCase):
+  def setUp(self):
+    ApiTestCase.setUp(self)
+    self._set_url(RepositoryUserTransitivePermission, username="A2O9", repository="devtable/shared")
+
+  def test_get_anonymous(self):
+    self._run_test('GET', 401, None, None)
+
+  def test_get_freshuser(self):
+    self._run_test('GET', 403, 'freshuser', None)
+
+  def test_get_reader(self):
+    self._run_test('GET', 403, 'reader', None)
+
+  def test_get_devtable(self):
+    self._run_test('GET', 404, 'devtable', None)
+
+class TestRepositoryUserTransitivePermissionA2o9BuynlargeOrgrepo(ApiTestCase):
+  def setUp(self):
+    ApiTestCase.setUp(self)
+    self._set_url(RepositoryUserTransitivePermission, username="A2O9", repository="buynlarge/orgrepo")
+
+  def test_get_anonymous(self):
+    self._run_test('GET', 401, None, None)
+
+  def test_get_freshuser(self):
+    self._run_test('GET', 403, 'freshuser', None)
+
+  def test_get_reader(self):
+    self._run_test('GET', 403, 'reader', None)
+
+  def test_get_devtable(self):
+    self._run_test('GET', 404, 'devtable', None)
+
+
 class TestRepositoryUserPermissionA2o9PublicPublicrepo(ApiTestCase):
  def setUp(self):
    ApiTestCase.setUp(self)