1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
|
# #
# Test GroupUserFolder #
# #
# #
# (c)2002 Ingeniweb #
import os, sys
if __name__ == '__main__':
execfile(os.path.join(sys.path[0], 'framework.py'))
# Load fixture
from Testing import ZopeTestCase
# Permissions / security
from AccessControl.Permissions import access_contents_information, view, add_documents_images_and_files, change_images_and_files, view_management_screens
from AccessControl.SecurityManagement import newSecurityManager, noSecurityManager, getSecurityManager
from AccessControl import Unauthorized
#from Products.CMFCore.CMFCorePermissions import *
from AccessControl.User import UnrestrictedUser
import urllib
# Create the error_log object
app = ZopeTestCase.app()
ZopeTestCase.utils.setupSiteErrorLog(app)
ZopeTestCase.close(app)
# Start the web server
host, port = ZopeTestCase.utils.startZServer(4)
base = 'http://%s:%d/%s' %(host, port, ZopeTestCase._folder_name)
from AccessControl import getSecurityManager
# Get global vars
from Products.GroupUserFolder.global_symbols import *
# Install our product
ZopeTestCase.installProduct('GroupUserFolder')
# Set log options if Log module is available
# This is done to set LOG_PROCESSORs to file logs instead of Zope logs
try:
import Log
Log.LOG_LEVEL = Log.LOG_DEBUG
Log.LOG_PROCESSOR = {
Log.LOG_NONE: Log.logFile,
Log.LOG_CRITICAL: Log.logFile,
Log.LOG_ERROR: Log.logFile,
Log.LOG_WARNING: Log.logFile,
Log.LOG_NOTICE: Log.logFile,
Log.LOG_DEBUG: Log.logFile,
}
from Log import *
Log(LOG_NOTICE, "Starting %s at %d debug level" % (os.path.dirname(__file__), LOG_LEVEL, ))
except:
print "Log module not available"
LOG_DEBUG = None
LOG_NOTICE = None
LOG_WARNING = None
LOG_ERROR = None
LOG_CRITICAL = None
def Log(*args, **kw):
pass
raise
class ManagementOpener(urllib.FancyURLopener):
def prompt_user_passwd(self, host, realm):
return ('manager', 'secret')
class UnauthorizedOpener(urllib.FancyURLopener):
def prompt_user_passwd(self, host, realm):
raise Unauthorized, 'The URLopener was asked for authentication'
class TestMultipleSources(ZopeTestCase.ZopeTestCase):
def afterSetUp(self,):
"""
afterSetUp(self) => This method is called to create Folder with a GRUF inside.
"""
# Replace default acl_user by a GRUF one
self.folder.manage_delObjects(['acl_users'])
self.folder.manage_addProduct['GroupUserFolder'].manage_addGroupUserFolder()
# Put back the default user inside
self._setupUser()
# Create a few roles
self.folder._addRole("r1")
self.folder._addRole("r2")
self.folder._addRole("r3")
# Create a few groups
self.folder.acl_users._doAddGroup('g1', ())
self.folder.acl_users._doAddGroup('g2', ('r1', ))
self.folder.acl_users._doAddGroup('g3', ('r2', ))
self.folder.acl_users._doAddGroup('g4', ('r2', 'r3', ))
# Create nested groups
self.folder.acl_users._doAddGroup('ng1', (), ('g1', ))
self.folder.acl_users._doAddGroup('ng2', (), ('g2', 'g3', ))
self.folder.acl_users._doAddGroup('ng3', (), ('g2', 'ng2', ))
self.folder.acl_users._doAddGroup('ng4', ('r3', ), ('g2', 'ng2', ))
self.folder.acl_users._doAddGroup('ng5', (), ('g2', 'ng4', ))
## self.folder.acl_users._doAddGroup('ng6', (), ('ng5', 'ng6', ))
# Create a manager and a few users
self.folder.acl_users._doAddUser('manager', 'secret', ('Manager',), (), (), )
self.folder.acl_users._doAddUser('u1', 'secret', (), (), (), )
self.folder.acl_users._doAddUser('u2', 'secret', (), (), ('g1', ), )
self.folder.acl_users._doAddUser('u3', 'secret', (), (), ('g1', 'g2'), )
self.folder.acl_users._doAddUser('u4', 'secret', (), (), ('g1', 'g2', 'g3'), )
self.folder.acl_users._doAddUser('u5', 'secret', ('r1', ), (), ('g2', 'g3'), )
self.folder.acl_users._doAddUser('u6', 'secret', ('r1', ), (), ('g3', ), )
self.folder.acl_users._doAddUser('u7', 'secret', ('r1', ), (), ('g4', ), )
# Create nested-groups users
self.folder.acl_users._doAddUser('u8', 'secret', (), (), ('ng1', ), )
self.folder.acl_users._doAddUser('u9', 'secret', (), (), ('g1', 'ng2', ), )
self.folder.acl_users._doAddUser('u10', 'secret', (), (), ('ng2', 'ng3', ), )
self.folder.acl_users._doAddUser('u11', 'secret', ('r3', ), (), ('ng2', 'ng3', ), )
## self.folder.acl_users._doAddUser('u12', 'secret', (), (), ('ng5', 'ng6', ), )
## # Create a few folders to play with
self.folder.manage_addProduct['OFSP'].manage_addFolder('lr')
self.folder.lr.manage_addLocalRoles("group_g1", ("r3", ))
self.folder.lr.manage_addLocalRoles("u3", ("r3", ))
self.folder.lr.manage_addLocalRoles("u6", ("r3", ))
# Special case of nesting
self.folder.acl_users._doAddGroup('extranet', (), ())
self.folder.acl_users._doAddGroup('intranet', (), ('extranet', ))
self.folder.acl_users._doAddGroup('compta', (), ('intranet', 'extranet' ))
# #
# Basic Multi-Sources API #
# #
def build(self,):
self.folder.acl_users.addUserSource("manage_addProduct/OFSP/manage_addUserFolder")
def test01addSources(self,):
"""Add a few user sources"""
self.folder.acl_users.addUserSource("manage_addProduct/OFSP/manage_addUserFolder")
self.failUnless('Users01' in self.folder.acl_users.objectIds())
self.failUnless(self.folder.acl_users.Users01.getId() == 'Users01')
self.failUnless('acl_users' in self.folder.acl_users.Users01.objectIds())
self.failUnless(not self.folder.acl_users.listUserSources()[-1].getUserNames())
def test02getDefaultSource(self,):
"Test default source retreiving"
self.build()
#Log(LOG_DEBUG, self.getDefaultUserSource().getId())
self.failUnless(self.folder.acl_users.getDefaultUserSource().getId() == 'acl_users')
def test03userFetching(self,):
"Test user creation & fetching"
self.build()
self.failUnless(self.folder.acl_users.listUserSources()[-1].aq_parent.id == 'Users01')
self.failUnless(self.folder.acl_users.listUserSources()[-1].meta_type == 'User Folder')
self.folder.acl_users.listUserSources()[-1]._doAddUser('U1_01', 'secret', (), (), )
self.failUnless(self.folder.acl_users.listUserSources()[-1].getUserNames() == ['U1_01'])
U1 = self.folder.acl_users.getUser('U1_01')
self.folder.acl_users.getUser('u1')
self.failUnless(self.folder.acl_users.getUser('U1_01').getUserSourceId() == 'Users01')
self.failUnless(self.folder.acl_users.getUnwrappedUser("U1_01").name == 'U1_01')
def test04ChangeUserRole(self,):
"Test if it possible to change a user's role using the sources API"
self.setRoles(["Manager"])
user = getSecurityManager().getUser()
Log(LOG_DEBUG, user.getRoles())
self.failUnless(user.has_role("Manager"))
def test05AvailableTypes(self,):
"test available user folders"
self.setRoles(["Manager"])
self.failUnless(getSecurityManager().getUser().has_role("Manager"))
sources = self.folder.acl_users.listAvailableUserSources(filter_permissions = 0, filter_classes = 1)
self.failUnless(
('User Folder', "manage_addProduct/OFSP/manage_addUserFolder") in sources,
"There should only have one UF, not %s" % (sources, ))
if __name__ == '__main__':
framework(descriptions=1, verbosity=1)
else:
import unittest
def test_suite():
suite = unittest.TestSuite()
suite.addTest(unittest.makeSuite(TestMultipleSources))
return suite
|
