Changeset 4654 for projects/tgrepozewho/trunk
- Timestamp:
- 06/01/08 16:34:17 (7 months ago)
- Files:
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
projects/tgrepozewho/trunk/tgrepozewho/tests/databasesetup.py
r4652 r4654 27 27 user.user_name = u'asdf' 28 28 user.email = u"asdf@asdf.com" 29 # user.password = sha.new('asdf').hexdigest()30 29 user.password = u'asdf' 31 30 … … 34 33 35 34 read = Permission() 36 read. name = u'read'35 read.permission_name = u'read' 37 36 session.save(read) 38 37 39 38 write = Permission() 40 write. name = u'write'39 write.permission_name = u'write' 41 40 session.save(write) 42 41 … … 52 51 53 52 session.save(user) 53 54 user = User() 55 user.user_name = u'robert' 56 user.email = u"rob@asdf.com" 57 user.password = u'robert' 58 user.groups.append(reader) 59 session.save(user) 60 61 user = User() 62 user.user_name = u'wendy' 63 user.email = u"wendy@asdf.com" 64 user.password = u'wendy' 65 user.groups.append(writer) 66 user.groups.append(reader) 67 session.save(user) 68 54 69 session.commit() 55 70 projects/tgrepozewho/trunk/tgrepozewho/tests/test_controller_security.py
r4652 r4654 32 32 33 33 @expose() 34 @authorize.require(authorize.in_all_groups('admin', 'writer')) 35 def group_admin_and_writer(self): 36 return 'got to admin and writer' 34 @authorize.require(authorize.in_all_groups('reader', 'writer')) 35 def all_groups(self): 36 return 'got to all groups' 37 38 @expose() 39 @authorize.require(authorize.in_any_group('reader', 'writer')) 40 def any_groups(self): 41 return 'got to any groups' 37 42 38 43 @expose() … … 51 56 return 'got to read' 52 57 58 @expose() 59 @authorize.require(authorize.has_all_permissions('read', 'write')) 60 def all_perm(self): 61 return 'got to all perm' 62 63 @expose() 53 64 @authorize.require(authorize.not_anonymous()) 54 65 def not_anon(self): … … 71 82 def test_group_no_auth(self): 72 83 resp = self.app.get('/admin') 73 eq_(resp.body, '302 Found\r\nThe resource was found at /login?came_from=http%3A%2F%2Flocalhost%2Fadmin;\r\nyou should be redirected automatically.\r\n/login?came_from=http%3A%2F%2Flocalhost%2Fadmin\r\n\r\n') 74 75 76 def test_group_no_auth(self): 77 resp = self.app.get('/admin') 78 eq_(resp.body, '302 Found\r\nThe resource was found at /login?came_from=http%3A%2F%2Flocalhost%2Fadmin;\r\nyou should be redirected automatically.\r\n/login?came_from=http%3A%2F%2Flocalhost%2Fadmin\r\n\r\n') 84 assert resp.body.startswith('302 Found'), resp.body 79 85 80 86 def test_group_with_auth(self): … … 82 88 resp = self.app.get('/admin') 83 89 eq_(resp.body, 'got to admin') 90 91 def test_all_groups_no_auth(self): 92 resp = self.app.get('/login_handler?login=asdf&password=asdf') 93 resp = self.app.get('/all_groups') 94 assert resp.body.startswith('302 Found'), resp.body 95 96 def test_all_groups(self): 97 resp = self.app.get('/login_handler?login=wendy&password=wendy') 98 resp = self.app.get('/all_groups') 99 eq_(resp.body, 'got to all groups') 100 101 def test_any_groups_no_auth(self): 102 resp = self.app.get('/login_handler?login=asdf&password=asdf') 103 resp = self.app.get('/any_groups') 104 assert resp.body.startswith('302 Found'), resp.body 105 106 def test_any_groups(self): 107 resp = self.app.get('/login_handler?login=robert&password=robert') 108 resp = self.app.get('/any_groups') 109 eq_(resp.body, 'got to any groups') 110 111 def test_group_with_auth(self): 112 resp = self.app.get('/login_handler?login=asdf&password=asdf') 113 resp = self.app.get('/admin') 114 eq_(resp.body, 'got to admin') 115 116 def test_no_auth_not_anon(self): 117 resp = self.app.get('/not_anon') 118 assert resp.body.startswith('302 Found'), resp.body 119 120 def test_not_anon(self): 121 resp = self.app.get('/login_handler?login=asdf&password=asdf') 122 resp = self.app.get('/not_anon') 123 eq_(resp.body, 'got to not anon') 124 125 def test_no_auth_perm(self): 126 resp = self.app.get('/login_handler?login=robert&password=robert') 127 resp = self.app.get('/write_perm_only') 128 assert resp.body.startswith('302 Found'), resp.body 129 130 def test_perm(self): 131 resp = self.app.get('/login_handler?login=wendy&password=wendy') 132 resp = self.app.get('/write_perm_only') 133 eq_(resp.body, 'got to write') 134 135 def test_no_auth_any_perm(self): 136 resp = self.app.get('/login_handler?login=asdf&password=asdf') 137 resp = self.app.get('/read_perm') 138 assert resp.body.startswith('302 Found'), resp.body 139 140 def test_any_perm(self): 141 resp = self.app.get('/login_handler?login=wendy&password=wendy') 142 resp = self.app.get('/read_perm') 143 eq_(resp.body, 'got to read') 144 145 def test_no_auth_all_perm(self): 146 resp = self.app.get('/login_handler?login=asdf&password=asdf') 147 resp = self.app.get('/all_perm') 148 assert resp.body.startswith('302 Found'), resp.body 149 150 def test_all_perm(self): 151 resp = self.app.get('/login_handler?login=wendy&password=wendy') 152 resp = self.app.get('/all_perm') 153 eq_(resp.body, 'got to all perm')
