Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
path: root/test/functional/glsa_controller_test.rb
blob: e68c570358ff44d46c9e65af6e2101c5490738e8 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

require 'test_helper'

class GlsaControllerTest < ActionController::TestCase
  fixtures :glsas

  def setup
    @actions = [:show, :edit, :update, :diff, :prepare_release, :release, :import_references]
  end

  # Basic tests for the four permission groups
  test "should apply contributor permissions for restricted advisories correctly" do
    @actions.each do |action|
      log_in_as :contributor
      get action, :id => glsas(:restricted_glsa).id
      assert_access_denied "Failed action: #{action.to_s}"
    end
  end

  test "should apply padawan permissions for restricted advisories correctly" do
    @actions.each do |action|
      log_in_as :padawan
      get action, :id => glsas(:restricted_glsa).id
      assert_access_denied "Failed action: #{action.to_s}"
    end
  end

  test "should apply regular member permissions for restricted advisories correctly" do
    @actions.each do |action|
      log_in_as :full_member
      get action, :id => glsas(:restricted_glsa).id
      assert_access_denied "Failed action: #{action.to_s}"
    end
  end

  test "should apply confidential member permissions for restricted advisories correctly" do
    @actions.each do |action|
      next if action == :update # TODO
      next if action == :diff # TODO

      next if action == :prepare_release # Confidential drafts cannot be released
      next if action == :release         # ditto
      
      log_in_as :confidential_member
      get action, :id => glsas(:restricted_glsa).id
      assert_response :success, "Failed action: #{action.to_s}"
    end
  end

  # Specific tests for contributors
  test "should apply contributor permissions for their own drafts correctly" do
    @actions.each do |action|
      next if action == :update # TODO
      next if action == :diff # TODO

      next if action == :prepare_release # Off-limits for contributors
      next if action == :release         # ditto

      log_in_as :contributor
      get action, :id => glsas(:contributor_draft).id
      assert_response :success, "Failed action: #{action.to_s}"
    end
  end

  test "should apply contributor permissions for other drafts correctly" do
    @actions.each do |action|
      log_in_as :contributor
      get action, :id => glsas(:glsa_one).id
      assert_access_denied "Failed action #{action.to_s}"
    end
  end

  test "should not allow padawans to release advisories" do
    log_in_as :padawan
    get :prepare_release, :id => glsas(:glsa_one).id
    assert_access_denied "Prepare release test failed"

    log_in_as :padawan
    get :release, :id => glsas(:glsa_one).id
    assert_access_denied "Release tes failed"
  end

  # TODO: listing pages
end