Merge pull request #3158 from quay/move-permissions-test
Move permissions test to pytest
This commit is contained in:
Joseph Schorr
GitHub
commit
d7b1efa7fb
2 changed files with 37 additions and 39 deletions
37
auth/test/test_permissions.py
Normal file
37
auth/test/test_permissions.py
Normal file
|
|
@ -0,0 +1,37 @@
|
||||||
|
import pytest
|
||||||
|
|
||||||
|
from auth import scopes
|
||||||
|
from auth.permissions import SuperUserPermission, QuayDeferredPermissionUser
|
||||||
|
from data import model
|
||||||
|
|
||||||
|
from test.fixtures import *
|
||||||
|
|
||||||
|
SUPER_USERNAME = 'devtable'
|
||||||
|
UNSUPER_USERNAME = 'freshuser'
|
||||||
|
|
||||||
|
@pytest.fixture()
|
||||||
|
def superuser(initialized_db):
|
||||||
|
return model.user.get_user(SUPER_USERNAME)
|
||||||
|
|
||||||
|
|
||||||
|
@pytest.fixture()
|
||||||
|
def normie(initialized_db):
|
||||||
|
return model.user.get_user(UNSUPER_USERNAME)
|
||||||
|
|
||||||
|
|
||||||
|
def test_superuser_matrix(superuser, normie):
|
||||||
|
test_cases = [
|
||||||
|
(superuser, {scopes.SUPERUSER}, True),
|
||||||
|
(superuser, {scopes.DIRECT_LOGIN}, True),
|
||||||
|
(superuser, {scopes.READ_USER, scopes.SUPERUSER}, True),
|
||||||
|
(superuser, {scopes.READ_USER}, False),
|
||||||
|
(normie, {scopes.SUPERUSER}, False),
|
||||||
|
(normie, {scopes.DIRECT_LOGIN}, False),
|
||||||
|
(normie, {scopes.READ_USER, scopes.SUPERUSER}, False),
|
||||||
|
(normie, {scopes.READ_USER}, False),
|
||||||
|
]
|
||||||
|
|
||||||
|
for user_obj, scope_set, expected in test_cases:
|
||||||
|
perm_user = QuayDeferredPermissionUser.for_user(user_obj, scope_set)
|
||||||
|
has_su = perm_user.can(SuperUserPermission())
|
||||||
|
assert has_su == expected
|
||||||
|
|
@ -1,39 +0,0 @@
|
||||||
import unittest
|
|
||||||
|
|
||||||
from app import app
|
|
||||||
|
|
||||||
from data import model
|
|
||||||
from auth import scopes
|
|
||||||
from auth.permissions import SuperUserPermission, QuayDeferredPermissionUser
|
|
||||||
from initdb import setup_database_for_testing, finished_database_for_testing
|
|
||||||
|
|
||||||
|
|
||||||
SUPER_USERNAME = 'devtable'
|
|
||||||
UNSUPER_USERNAME = 'freshuser'
|
|
||||||
|
|
||||||
|
|
||||||
class TestSuperUserOps(unittest.TestCase):
|
|
||||||
def setUp(self):
|
|
||||||
setup_database_for_testing(self)
|
|
||||||
self._su = model.user.get_user(SUPER_USERNAME)
|
|
||||||
self._normie = model.user.get_user(UNSUPER_USERNAME)
|
|
||||||
|
|
||||||
def tearDown(self):
|
|
||||||
finished_database_for_testing(self)
|
|
||||||
|
|
||||||
def test_superuser_matrix(self):
|
|
||||||
test_cases = [
|
|
||||||
(self._su, {scopes.SUPERUSER}, True),
|
|
||||||
(self._su, {scopes.DIRECT_LOGIN}, True),
|
|
||||||
(self._su, {scopes.READ_USER, scopes.SUPERUSER}, True),
|
|
||||||
(self._su, {scopes.READ_USER}, False),
|
|
||||||
(self._normie, {scopes.SUPERUSER}, False),
|
|
||||||
(self._normie, {scopes.DIRECT_LOGIN}, False),
|
|
||||||
(self._normie, {scopes.READ_USER, scopes.SUPERUSER}, False),
|
|
||||||
(self._normie, {scopes.READ_USER}, False),
|
|
||||||
]
|
|
||||||
|
|
||||||
for user_obj, scope_set, expected in test_cases:
|
|
||||||
perm_user = QuayDeferredPermissionUser.for_user(user_obj, scope_set)
|
|
||||||
has_su = perm_user.can(SuperUserPermission())
|
|
||||||
self.assertEquals(has_su, expected)
|
|
||||||
Reference in a new issue