52 lines
2.0 KiB
Python
52 lines
2.0 KiB
Python
"""Test badger service."""
|
|
|
|
from common_test_class import AbstractPillarTest, TEST_EMAIL_ADDRESS
|
|
|
|
|
|
class BadgerServiceTest(AbstractPillarTest):
|
|
def setUp(self, **kwargs):
|
|
AbstractPillarTest.setUp(self, **kwargs)
|
|
|
|
from application.modules import service
|
|
|
|
with self.app.test_request_context():
|
|
self.badger, token_doc = service.create_service_account(
|
|
'serviceaccount@example.com', [u'badger'], {u'badger': [u'succubus']}
|
|
)
|
|
self.badger_token = token_doc['token']
|
|
|
|
self.user_id = self.create_user()
|
|
self.user_email = TEST_EMAIL_ADDRESS
|
|
|
|
def _post(self, data):
|
|
from application.utils import dumps
|
|
return self.client.post('/service/badger',
|
|
data=dumps(data),
|
|
headers={'Authorization': self.make_header(self.badger_token),
|
|
'Content-Type': 'application/json'})
|
|
|
|
def test_grant_revoke_badge(self):
|
|
# Grant the badge
|
|
resp = self._post({'action': 'grant', 'user_email': self.user_email, 'role': 'succubus'})
|
|
self.assertEqual(204, resp.status_code)
|
|
|
|
with self.app.test_request_context():
|
|
user = self.app.data.driver.db['users'].find_one(self.user_id)
|
|
self.assertIn(u'succubus', user['roles'])
|
|
|
|
# Aaaahhhw it's gone again
|
|
resp = self._post({'action': 'revoke', 'user_email': self.user_email, 'role': 'succubus'})
|
|
self.assertEqual(204, resp.status_code)
|
|
|
|
with self.app.test_request_context():
|
|
user = self.app.data.driver.db['users'].find_one(self.user_id)
|
|
self.assertNotIn(u'succubus', user['roles'])
|
|
|
|
def test_grant_not_allowed_badge(self):
|
|
resp = self._post({'action': 'grant', 'user_email': self.user_email, 'role': 'admin'})
|
|
self.assertEqual(403, resp.status_code)
|
|
|
|
with self.app.test_request_context():
|
|
user = self.app.data.driver.db['users'].find_one(self.user_id)
|
|
self.assertNotIn(u'admin', user['roles'])
|