nielsperetzke
/
healthchecks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 32 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1543 Commits
2 Branches
15 MiB
Tree: b9abcbcdee
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b9abcbcdee'
${ noResults }
healthchecks/hc/accounts/tests/test_project.py

248 lines
9.2 KiB
Raw Normal View History

Move project-specific settings to a new "Project Settings" page
6 years ago
Rate limit team invites to 20/day
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Improved UI to invite users from account's other projects. Fixes #258. The team size limit is applied to the number of distinct users across all projects. Fixes #332.
5 years ago
Rate limit team invites to 20/day
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Simplify super() calls in tests
4 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Test cases for adding project, removing project and leaving project.
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Specify the read-write/read-only flag when inviting a team member.
4 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Source formatted with Black
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Specify the read-write/read-only flag when inviting a team member.
4 years ago
Don't create default projects for invited users.
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
In Account Settings > My Projects, indicate read-only memberships as read-only
4 years ago
Django 3.0
5 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Specify the read-write/read-only flag when inviting a team member.
4 years ago
Improved UI to invite users from account's other projects. Fixes #258. The team size limit is applied to the number of distinct users across all projects. Fixes #332.
5 years ago
Bugfix: don't allow duplicate team memberships
4 years ago
Handle excessively long email addresses in the team member invite form.
4 years ago
Rate limit team invites to 20/day
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Profile.current_project not used any more, remove last remaining references. cc: #336
5 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Show "Badges" and "Settings" in top navigation. Fixes #234
6 years ago
Check membership before removing project member.
6 years ago
Move project-specific settings to a new "Project Settings" page
6 years ago
Fix invite suggestions.
5 years ago
Read-only users cannot change project settings.
4 years ago
 
  1. from django.core import mail
  2. 

  3. from django.conf import settings
  4. from django.test.utils import override_settings
  5. from hc.test import BaseTestCase
  6. from hc.accounts.models import Member, Project
  7. from hc.api.models import TokenBucket
  8. 

  9. 

  10. class ProjectTestCase(BaseTestCase):
  11.     def setUp(self):
  12.         super().setUp()
  13. 

  14.         self.url = "/projects/%s/settings/" % self.project.code
  15. 

  16.     def test_it_checks_access(self):
  17.         self.client.login(username="[email protected]", password="password")
  18.         r = self.client.get(self.url)
  19.         self.assertEqual(r.status_code, 404)
  20. 

  21.     def test_it_allows_team_access(self):
  22.         self.client.login(username="[email protected]", password="password")
  23.         r = self.client.get(self.url)
  24.         self.assertContains(r, "Change Project Name")
  25. 

  26.     def test_it_shows_api_keys(self):
  27.         self.project.api_key_readonly = "R" * 32
  28.         self.project.save()
  29. 

  30.         self.client.login(username="[email protected]", password="password")
  31. 

  32.         form = {"show_api_keys": "1"}
  33.         r = self.client.post(self.url, form)
  34.         self.assertEqual(r.status_code, 200)
  35. 

  36.         self.assertContains(r, "X" * 32)
  37.         self.assertContains(r, "R" * 32)
  38. 

  39.     def test_it_creates_api_key(self):
  40.         self.client.login(username="[email protected]", password="password")
  41. 

  42.         form = {"create_api_keys": "1"}
  43.         r = self.client.post(self.url, form)
  44.         self.assertEqual(r.status_code, 200)
  45. 

  46.         self.project.refresh_from_db()
  47.         api_key = self.project.api_key
  48.         self.assertTrue(len(api_key) > 10)
  49.         self.assertFalse("b'" in api_key)
  50. 

  51.     def test_it_revokes_api_key(self):
  52.         self.project.api_key_readonly = "R" * 32
  53.         self.project.save()
  54. 

  55.         self.client.login(username="[email protected]", password="password")
  56. 

  57.         form = {"revoke_api_keys": "1"}
  58.         r = self.client.post(self.url, form)
  59.         self.assertEqual(r.status_code, 200)
  60. 

  61.         self.project.refresh_from_db()
  62.         self.assertEqual(self.project.api_key, "")
  63.         self.assertEqual(self.project.api_key_readonly, "")
  64. 

  65.     def test_it_adds_team_member(self):
  66.         self.client.login(username="[email protected]", password="password")
  67. 

  68.         form = {"invite_team_member": "1", "email": "[email protected]", "rw": "1"}
  69.         r = self.client.post(self.url, form)
  70.         self.assertEqual(r.status_code, 200)
  71. 

  72.         members = self.project.member_set.all()
  73.         self.assertEqual(members.count(), 2)
  74. 

  75.         member = Member.objects.get(
  76.             project=self.project, user__email="[email protected]"
  77.         )
  78. 

  79.         # The read-write flag should be set
  80.         self.assertTrue(member.rw)
  81. 

  82.         # The new user should not have their own project
  83.         self.assertFalse(member.user.project_set.exists())
  84. 

  85.         # And an email should have been sent
  86.         subj = f"You have been invited to join Alices Project on {settings.SITE_NAME}"
  87.         self.assertHTMLEqual(mail.outbox[0].subject, subj)
  88. 

  89.     def test_it_adds_readonly_team_member(self):
  90.         self.client.login(username="[email protected]", password="password")
  91. 

  92.         form = {"invite_team_member": "1", "email": "[email protected]"}
  93.         r = self.client.post(self.url, form)
  94.         self.assertEqual(r.status_code, 200)
  95. 

  96.         member = Member.objects.get(
  97.             project=self.project, user__email="[email protected]"
  98.         )
  99. 

  100.         # The new user should not have their own project
  101.         self.assertFalse(member.rw)
  102. 

  103.     def test_it_adds_member_from_another_team(self):
  104.         # With team limit at zero, we should not be able to invite any new users
  105.         self.profile.team_limit = 0
  106.         self.profile.save()
  107. 

  108.         # But Charlie will have an existing membership in another Alice's project
  109.         # so Alice *should* be able to invite Charlie:
  110.         p2 = Project.objects.create(owner=self.alice)
  111.         Member.objects.create(user=self.charlie, project=p2)
  112. 

  113.         self.client.login(username="[email protected]", password="password")
  114.         form = {"invite_team_member": "1", "email": "[email protected]"}
  115.         r = self.client.post(self.url, form)
  116.         self.assertEqual(r.status_code, 200)
  117. 

  118.         q = Member.objects.filter(project=self.project, user=self.charlie)
  119.         self.assertEqual(q.count(), 1)
  120. 

  121.         # And this should not have affected the rate limit:
  122.         q = TokenBucket.objects.filter(value="invite-%d" % self.alice.id)
  123.         self.assertFalse(q.exists())
  124. 

  125.     def test_it_rejects_duplicate_membership(self):
  126.         self.client.login(username="[email protected]", password="password")
  127. 

  128.         form = {"invite_team_member": "1", "email": "[email protected]"}
  129.         r = self.client.post(self.url, form)
  130.         self.assertContains(r, "[email protected] is already a member")
  131. 

  132.         # The number of memberships should have not increased
  133.         self.assertEqual(self.project.member_set.count(), 1)
  134. 

  135.     def test_it_rejects_owner_as_a_member(self):
  136.         self.client.login(username="[email protected]", password="password")
  137. 

  138.         form = {"invite_team_member": "1", "email": "[email protected]"}
  139.         r = self.client.post(self.url, form)
  140.         self.assertContains(r, "[email protected] is already a member")
  141. 

  142.         # The number of memberships should have not increased
  143.         self.assertEqual(self.project.member_set.count(), 1)
  144. 

  145.     def test_it_rejects_too_long_email_addresses(self):
  146.         self.client.login(username="[email protected]", password="password")
  147. 

  148.         aaa = "a" * 300
  149.         form = {"invite_team_member": "1", "email": f"frank+{aaa}@example.org"}
  150.         r = self.client.post(self.url, form)
  151.         self.assertEqual(r.status_code, 200)
  152. 

  153.         # No email should have been sent
  154.         self.assertEqual(len(mail.outbox), 0)
  155. 

  156.     @override_settings(SECRET_KEY="test-secret")
  157.     def test_it_rate_limits_invites(self):
  158.         obj = TokenBucket(value="invite-%d" % self.alice.id)
  159.         obj.tokens = 0
  160.         obj.save()
  161. 

  162.         self.client.login(username="[email protected]", password="password")
  163. 

  164.         form = {"invite_team_member": "1", "email": "[email protected]"}
  165.         r = self.client.post(self.url, form)
  166.         self.assertContains(r, "Too Many Requests")
  167. 

  168.         self.assertEqual(len(mail.outbox), 0)
  169. 

  170.     def test_it_requires_owner_to_add_team_member(self):
  171.         self.client.login(username="[email protected]", password="password")
  172. 

  173.         form = {"invite_team_member": "1", "email": "[email protected]"}
  174.         r = self.client.post(self.url, form)
  175.         self.assertEqual(r.status_code, 403)
  176. 

  177.     def test_it_checks_team_size(self):
  178.         self.profile.team_limit = 0
  179.         self.profile.save()
  180. 

  181.         self.client.login(username="[email protected]", password="password")
  182. 

  183.         form = {"invite_team_member": "1", "email": "[email protected]"}
  184.         r = self.client.post(self.url, form)
  185.         self.assertEqual(r.status_code, 403)
  186. 

  187.     def test_it_removes_team_member(self):
  188.         self.client.login(username="[email protected]", password="password")
  189. 

  190.         form = {"remove_team_member": "1", "email": "[email protected]"}
  191.         r = self.client.post(self.url, form)
  192.         self.assertEqual(r.status_code, 200)
  193. 

  194.         self.assertFalse(Member.objects.exists())
  195. 

  196.     def test_it_requires_owner_to_remove_team_member(self):
  197.         self.client.login(username="[email protected]", password="password")
  198. 

  199.         form = {"remove_team_member": "1", "email": "[email protected]"}
  200.         r = self.client.post(self.url, form)
  201.         self.assertEqual(r.status_code, 403)
  202. 

  203.     def test_it_checks_membership_when_removing_team_member(self):
  204.         self.client.login(username="[email protected]", password="password")
  205. 

  206.         url = "/projects/%s/settings/" % self.charlies_project.code
  207.         form = {"remove_team_member": "1", "email": "[email protected]"}
  208.         r = self.client.post(url, form)
  209.         self.assertEqual(r.status_code, 400)
  210. 

  211.     def test_it_sets_project_name(self):
  212.         self.client.login(username="[email protected]", password="password")
  213. 

  214.         form = {"set_project_name": "1", "name": "Alpha Team"}
  215.         r = self.client.post(self.url, form)
  216.         self.assertEqual(r.status_code, 200)
  217. 

  218.         self.project.refresh_from_db()
  219.         self.assertEqual(self.project.name, "Alpha Team")
  220. 

  221.     def test_it_shows_invite_suggestions(self):
  222.         p2 = Project.objects.create(owner=self.alice)
  223. 

  224.         self.client.login(username="[email protected]", password="password")
  225. 

  226.         r = self.client.get("/projects/%s/settings/" % p2.code)
  227.         self.assertContains(r, "Add Users from Other Teams")
  228.         self.assertContains(r, "[email protected]")
  229. 

  230.     def test_it_checks_rw_access_when_updating_project_name(self):
  231.         self.bobs_membership.rw = False
  232.         self.bobs_membership.save()
  233. 

  234.         self.client.login(username="[email protected]", password="password")
  235. 

  236.         form = {"set_project_name": "1", "name": "Alpha Team"}
  237.         r = self.client.post(self.url, form)
  238.         self.assertEqual(r.status_code, 403)
  239. 

  240.     def test_it_hides_actions_for_readonly_users(self):
  241.         self.bobs_membership.rw = False
  242.         self.bobs_membership.save()
  243. 

  244.         self.client.login(username="[email protected]", password="password")
  245. 

  246.         r = self.client.get(self.url)
  247.         self.assertNotContains(r, "#set-project-name-modal", status_code=200)
  248.         self.assertNotContains(r, "Show API Keys")