Produits Entr'ouvert » Authentic 2

from django.core.management import call_command

from authentic2.a2_rbac.utils import get_default_ou

def test_no_managed_ct(transactional_db, settings):

    from django.core.management.sql import emit_post_migrate_signal

    call_command('flush', verbosity=0, interactive=False,

                 database='default', reset_sequences=False)

    assert Role.objects.count() == 5

    OU.objects.create(name='OU1', slug='ou1')

    emit_post_migrate_signal(verbosity=0, interactive=False, db='default')

    assert Role.objects.count() == 5 + 4 + 4

    settings.A2_RBAC_MANAGED_CONTENT_TYPES = ()

    call_command('flush', verbosity=0, interactive=False,

                 database='default', reset_sequences=False)

    assert Role.objects.count() == 0

    # create ou

    OU.objects.create(name='OU1', slug='ou1')

    emit_post_migrate_signal(verbosity=0, interactive=False, db='default')

    assert Role.objects.count() == 0

def test_global_manager_roles(db):

    manager = Role.objects.get(ou__isnull=True, slug='_a2-manager')

    ou_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-organizational-units')

    user_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-users')

    role_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-roles')

    service_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-services')

    assert ou_manager in manager.parents()

    assert user_manager in manager.parents()

    assert role_manager in manager.parents()

    assert service_manager in manager.parents()

    assert manager.parents(include_self=False).count() == 4

    assert Role.objects.count() == 5

    assert OU.objects.count() == 1

def test_manager_roles_multi_ou(db, ou1):

    manager = Role.objects.get(ou__isnull=True, slug='_a2-manager')

    ou_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-organizational-units')

    user_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-users')

    role_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-roles')

    service_manager = Role.objects.get(ou__isnull=True, slug='_a2-manager-of-services')

    assert ou_manager in manager.parents()

    assert user_manager in manager.parents()

    assert role_manager in manager.parents()

    assert service_manager in manager.parents()

    assert manager.parents(include_self=False).count() == 4

    for ou in [get_default_ou(), ou1]:

        manager = Role.objects.get(ou__isnull=True,

                                   slug='_a2-managers-of-{ou.slug}'.format(ou=ou))

        user_manager = Role.objects.get(ou=ou,

                                        slug='_a2-manager-of-users-{ou.slug}'.format(ou=ou))

        role_manager = Role.objects.get(ou=ou,

                                        slug='_a2-manager-of-roles-{ou.slug}'.format(ou=ou))

        service_manager = Role.objects.get(ou=ou,

                                           slug='_a2-manager-of-services-{ou.slug}'.format(ou=ou))

        assert user_manager in manager.parents()

        assert role_manager in manager.parents()

        assert service_manager in manager.parents()

        assert manager.parents(include_self=False).count() == 3

    # 5 global roles and 4 ou roles for both ous

    assert Role.objects.count() == 5 + 4 + 4