Example 61 with EntityTypeIdentity
use of org.molgenis.data.security.EntityTypeIdentity in project molgenis by molgenis.
the class AttributeRepositorySecurityDecoratorTest method findAllIdsUser.
@WithMockUser(username = USERNAME)
@Test
public void findAllIdsUser() throws Exception {
String entityType0Name = "entity0";
EntityType entityType0 = when(mock(EntityType.class).getId()).thenReturn(entityType0Name).getMock();
String entityType1Name = "entity1";
EntityType entityType1 = when(mock(EntityType.class).getId()).thenReturn(entityType1Name).getMock();
String attr0Name = "entity0attr0";
Attribute attr0 = when(mock(Attribute.class).getName()).thenReturn(attr0Name).getMock();
when(attr0.getEntity()).thenReturn(entityType0);
String attr1Name = "entity1attr0";
Attribute attr1 = when(mock(Attribute.class).getName()).thenReturn(attr1Name).getMock();
when(attr1.getEntity()).thenReturn(entityType1);
Stream<Object> ids = Stream.of(mock(Object.class), mock(Object.class));
when(delegateRepository.findAll(ids)).thenReturn(Stream.of(attr0, attr1));
when(permissionService.hasPermission(new EntityTypeIdentity(entityType0Name), EntityTypePermission.COUNT)).thenReturn(false);
when(permissionService.hasPermission(new EntityTypeIdentity(entityType1Name), EntityTypePermission.COUNT)).thenReturn(true);
assertEquals(repo.findAll(ids).collect(toList()), singletonList(attr1));
}
Also used :
EntityType(org.molgenis.data.meta.model.EntityType)
EntityTypeIdentity(org.molgenis.data.security.EntityTypeIdentity)
Attribute(org.molgenis.data.meta.model.Attribute)
WithMockUser(org.springframework.security.test.context.support.WithMockUser)
Test(org.testng.annotations.Test)
Example 62 with EntityTypeIdentity
use of org.molgenis.data.security.EntityTypeIdentity in project molgenis by molgenis.
the class AttributeRepositorySecurityDecoratorTest method findOneByIdUserPermissionAllowed.
@WithMockUser(username = USERNAME)
@Test
public void findOneByIdUserPermissionAllowed() throws Exception {
String entityType0Name = "entity0";
EntityType entityType0 = when(mock(EntityType.class).getId()).thenReturn(entityType0Name).getMock();
String attr0Name = "entity0attr0";
Attribute attr0 = when(mock(Attribute.class).getName()).thenReturn(attr0Name).getMock();
when(attr0.getEntity()).thenReturn(entityType0);
Object id = mock(Object.class);
when(delegateRepository.findOneById(id)).thenReturn(attr0);
when(permissionService.hasPermission(new EntityTypeIdentity(entityType0Name), EntityTypePermission.COUNT)).thenReturn(true);
assertEquals(repo.findOneById(id), attr0);
}
Also used :
EntityType(org.molgenis.data.meta.model.EntityType)
EntityTypeIdentity(org.molgenis.data.security.EntityTypeIdentity)
Attribute(org.molgenis.data.meta.model.Attribute)
WithMockUser(org.springframework.security.test.context.support.WithMockUser)
Test(org.testng.annotations.Test)
Example 63 with EntityTypeIdentity
use of org.molgenis.data.security.EntityTypeIdentity in project molgenis by molgenis.
the class AttributeRepositorySecurityDecoratorTest method findAllIdsFetchUser.
@WithMockUser(username = USERNAME)
@Test
public void findAllIdsFetchUser() throws Exception {
String entityType0Name = "entity0";
EntityType entityType0 = when(mock(EntityType.class).getId()).thenReturn(entityType0Name).getMock();
String entityType1Name = "entity1";
EntityType entityType1 = when(mock(EntityType.class).getId()).thenReturn(entityType1Name).getMock();
String attr0Name = "entity0attr0";
Attribute attr0 = when(mock(Attribute.class).getName()).thenReturn(attr0Name).getMock();
when(attr0.getEntity()).thenReturn(entityType0);
String attr1Name = "entity1attr0";
Attribute attr1 = when(mock(Attribute.class).getName()).thenReturn(attr1Name).getMock();
when(attr1.getEntity()).thenReturn(entityType1);
Stream<Object> ids = Stream.of(mock(Object.class), mock(Object.class));
Fetch fetch = mock(Fetch.class);
when(delegateRepository.findAll(ids, fetch)).thenReturn(Stream.of(attr0, attr1));
when(permissionService.hasPermission(new EntityTypeIdentity(entityType0Name), EntityTypePermission.COUNT)).thenReturn(false);
when(permissionService.hasPermission(new EntityTypeIdentity(entityType1Name), EntityTypePermission.COUNT)).thenReturn(true);
assertEquals(repo.findAll(ids, fetch).collect(toList()), singletonList(attr1));
}
Also used :
EntityType(org.molgenis.data.meta.model.EntityType)
EntityTypeIdentity(org.molgenis.data.security.EntityTypeIdentity)
Attribute(org.molgenis.data.meta.model.Attribute)
WithMockUser(org.springframework.security.test.context.support.WithMockUser)
Test(org.testng.annotations.Test)
Example 64 with EntityTypeIdentity
use of org.molgenis.data.security.EntityTypeIdentity in project molgenis by molgenis.
the class HasPermissionDirectiveTest method executeWithPermission.
@Test
public void executeWithPermission() throws TemplateException, IOException {
when(permissionService.hasPermission(new EntityTypeIdentity("entity"), EntityTypePermission.COUNT)).thenReturn(true);
Map<String, Object> params = Maps.newHashMap();
params.put("entityTypeId", "entity");
params.put("permission", "COUNT");
directive.execute(new Environment(fakeTemplate, null, envWriter), params, new TemplateModel[0], out -> out.write("PERMISSION"));
assertEquals(envWriter.toString(), "PERMISSION");
}
Also used :
EntityTypeIdentity(org.molgenis.data.security.EntityTypeIdentity)
Environment(freemarker.core.Environment)
Test(org.testng.annotations.Test)
Example 65 with EntityTypeIdentity
use of org.molgenis.data.security.EntityTypeIdentity in project molgenis by molgenis.
the class PermissionSystemServiceImplTest method giveUserEntityPermissions.
@Test
@WithMockUser(username = "user")
public void giveUserEntityPermissions() {
String entityTypeId = "entityTypeId";
EntityType entityType = when(mock(EntityType.class).getId()).thenReturn(entityTypeId).getMock();
MutableAcl acl = mock(MutableAcl.class);
when(mutableAclService.readAclById(new EntityTypeIdentity(entityTypeId))).thenReturn(acl);
permissionSystemServiceImpl.giveUserWriteMetaPermissions(entityType);
verify(mutableAclService).updateAcl(acl);
verify(acl).insertAce(0, new CumulativePermission().set(EntityTypePermission.WRITEMETA).set(EntityTypePermission.WRITE).set(EntityTypePermission.READ).set(EntityTypePermission.COUNT), new PrincipalSid("user"), true);
}
Also used :
EntityType(org.molgenis.data.meta.model.EntityType)
EntityTypeIdentity(org.molgenis.data.security.EntityTypeIdentity)
CumulativePermission(org.springframework.security.acls.domain.CumulativePermission)
MutableAcl(org.springframework.security.acls.model.MutableAcl)
PrincipalSid(org.springframework.security.acls.domain.PrincipalSid)
WithMockUser(org.springframework.security.test.context.support.WithMockUser)
Test(org.testng.annotations.Test)
Aggregations
EntityTypeIdentity (org.molgenis.data.security.EntityTypeIdentity)75
Test (org.testng.annotations.Test)57
EntityType (org.molgenis.data.meta.model.EntityType)40
WithMockUser (org.springframework.security.test.context.support.WithMockUser)39
Attribute (org.molgenis.data.meta.model.Attribute)16
AggregateQuery (org.molgenis.data.aggregation.AggregateQuery)8
MutableAcl (org.springframework.security.acls.model.MutableAcl)8
EntityTypePermission (org.molgenis.data.security.EntityTypePermission)6
AbstractMockitoTest (org.molgenis.test.AbstractMockitoTest)6
PrincipalSid (org.springframework.security.acls.domain.PrincipalSid)6
Sid (org.springframework.security.acls.model.Sid)6
Entity (org.molgenis.data.Entity)5
Package (org.molgenis.data.meta.model.Package)5
EntityTypePermissionUtils.getCumulativePermission (org.molgenis.data.security.EntityTypePermissionUtils.getCumulativePermission)4
QueryImpl (org.molgenis.data.support.QueryImpl)4
ImmutableMap (com.google.common.collect.ImmutableMap)3
File (java.io.File)3
Map (java.util.Map)3
ADD (org.molgenis.data.DatabaseAction.ADD)3
FileRepositoryCollection (org.molgenis.data.file.support.FileRepositoryCollection)3
