Example 16 with AccessSectionInfo
use of com.google.gerrit.extensions.api.access.AccessSectionInfo in project gerrit by GerritCodeReview.
the class AccessIT method removeGlobalCapabilityAsUser.
@Test
public void removeGlobalCapabilityAsUser() throws Exception {
ProjectAccessInput accessInput = newProjectAccessInput();
AccessSectionInfo accessSectionInfo = createDefaultGlobalCapabilitiesAccessSectionInfo();
accessInput.remove.put(AccessSection.GLOBAL_CAPABILITIES, accessSectionInfo);
setApiUser(user);
exception.expect(AuthException.class);
gApi.projects().name(allProjects.get()).access(accessInput);
}
Also used :
AccessSectionInfo(com.google.gerrit.extensions.api.access.AccessSectionInfo)
ProjectAccessInput(com.google.gerrit.extensions.api.access.ProjectAccessInput)
Test(org.junit.Test)
AbstractDaemonTest(com.google.gerrit.acceptance.AbstractDaemonTest)
Example 17 with AccessSectionInfo
use of com.google.gerrit.extensions.api.access.AccessSectionInfo in project gerrit by GerritCodeReview.
the class AccessIT method removeGlobalCapabilityAsAdmin.
@Test
public void removeGlobalCapabilityAsAdmin() throws Exception {
AccountGroup adminGroup = groupCache.get(new AccountGroup.NameKey("Administrators"));
ProjectAccessInput accessInput = newProjectAccessInput();
AccessSectionInfo accessSectionInfo = newAccessSectionInfo();
PermissionInfo permissionInfo = newPermissionInfo();
permissionInfo.rules.put(adminGroup.getGroupUUID().get(), null);
accessSectionInfo.permissions.put(GlobalCapability.ACCESS_DATABASE, permissionInfo);
// Add and validate first as removing existing privileges such as
// administrateServer would break upcoming tests
accessInput.add.put(AccessSection.GLOBAL_CAPABILITIES, accessSectionInfo);
ProjectAccessInfo updatedProjectAccessInfo = gApi.projects().name(allProjects.get()).access(accessInput);
assertThat(updatedProjectAccessInfo.local.get(AccessSection.GLOBAL_CAPABILITIES).permissions.keySet()).containsAllIn(accessSectionInfo.permissions.keySet());
// Remove
accessInput.add.clear();
accessInput.remove.put(AccessSection.GLOBAL_CAPABILITIES, accessSectionInfo);
updatedProjectAccessInfo = gApi.projects().name(allProjects.get()).access(accessInput);
assertThat(updatedProjectAccessInfo.local.get(AccessSection.GLOBAL_CAPABILITIES).permissions.keySet()).containsNoneIn(accessSectionInfo.permissions.keySet());
}
Also used :
AccountGroup(com.google.gerrit.reviewdb.client.AccountGroup)
PermissionInfo(com.google.gerrit.extensions.api.access.PermissionInfo)
ProjectAccessInfo(com.google.gerrit.extensions.api.access.ProjectAccessInfo)
AccessSectionInfo(com.google.gerrit.extensions.api.access.AccessSectionInfo)
ProjectAccessInput(com.google.gerrit.extensions.api.access.ProjectAccessInput)
Test(org.junit.Test)
AbstractDaemonTest(com.google.gerrit.acceptance.AbstractDaemonTest)
Example 18 with AccessSectionInfo
use of com.google.gerrit.extensions.api.access.AccessSectionInfo in project gerrit by GerritCodeReview.
the class AccessIT method newAccessSectionInfo.
private AccessSectionInfo newAccessSectionInfo() {
AccessSectionInfo a = new AccessSectionInfo();
a.permissions = new HashMap<>();
return a;
}
Also used :
AccessSectionInfo(com.google.gerrit.extensions.api.access.AccessSectionInfo)
Example 19 with AccessSectionInfo
use of com.google.gerrit.extensions.api.access.AccessSectionInfo in project gerrit by GerritCodeReview.
the class SetAccess method getAccessSections.
private List<AccessSection> getAccessSections(Map<String, AccessSectionInfo> sectionInfos) throws UnprocessableEntityException {
if (sectionInfos == null) {
return Collections.emptyList();
}
List<AccessSection> sections = new ArrayList<>(sectionInfos.size());
for (Map.Entry<String, AccessSectionInfo> entry : sectionInfos.entrySet()) {
AccessSection accessSection = new AccessSection(entry.getKey());
if (entry.getValue().permissions == null) {
continue;
}
for (Map.Entry<String, PermissionInfo> permissionEntry : entry.getValue().permissions.entrySet()) {
Permission p = new Permission(permissionEntry.getKey());
if (permissionEntry.getValue().exclusive != null) {
p.setExclusiveGroup(permissionEntry.getValue().exclusive);
}
if (permissionEntry.getValue().rules == null) {
continue;
}
for (Map.Entry<String, PermissionRuleInfo> permissionRuleInfoEntry : permissionEntry.getValue().rules.entrySet()) {
PermissionRuleInfo pri = permissionRuleInfoEntry.getValue();
GroupDescription.Basic group = groupsCollection.parseId(permissionRuleInfoEntry.getKey());
if (group == null) {
throw new UnprocessableEntityException(permissionRuleInfoEntry.getKey() + " is not a valid group ID");
}
PermissionRule r = new PermissionRule(GroupReference.forGroup(group));
if (pri != null) {
if (pri.max != null) {
r.setMax(pri.max);
}
if (pri.min != null) {
r.setMin(pri.min);
}
r.setAction(GetAccess.ACTION_TYPE.inverse().get(pri.action));
if (pri.force != null) {
r.setForce(pri.force);
}
}
p.add(r);
}
accessSection.getPermissions().add(p);
}
sections.add(accessSection);
}
return sections;
}
Also used :
UnprocessableEntityException(com.google.gerrit.extensions.restapi.UnprocessableEntityException)
PermissionRule(com.google.gerrit.common.data.PermissionRule)
ArrayList(java.util.ArrayList)
AccessSection(com.google.gerrit.common.data.AccessSection)
GroupDescription(com.google.gerrit.common.data.GroupDescription)
PermissionInfo(com.google.gerrit.extensions.api.access.PermissionInfo)
GlobalPermission(com.google.gerrit.server.permissions.GlobalPermission)
Permission(com.google.gerrit.common.data.Permission)
PermissionRuleInfo(com.google.gerrit.extensions.api.access.PermissionRuleInfo)
AccessSectionInfo(com.google.gerrit.extensions.api.access.AccessSectionInfo)
Map(java.util.Map)
Aggregations
AccessSectionInfo (com.google.gerrit.extensions.api.access.AccessSectionInfo)19
AbstractDaemonTest (com.google.gerrit.acceptance.AbstractDaemonTest)13
ProjectAccessInput (com.google.gerrit.extensions.api.access.ProjectAccessInput)13
Test (org.junit.Test)13
PermissionInfo (com.google.gerrit.extensions.api.access.PermissionInfo)9
PermissionRuleInfo (com.google.gerrit.extensions.api.access.PermissionRuleInfo)7
AccountGroup (com.google.gerrit.reviewdb.client.AccountGroup)3
Permission (com.google.gerrit.common.data.Permission)2
PermissionRule (com.google.gerrit.common.data.PermissionRule)2
ProjectAccessInfo (com.google.gerrit.extensions.api.access.ProjectAccessInfo)2
PushOneCommit (com.google.gerrit.acceptance.PushOneCommit)1
AccessSection (com.google.gerrit.common.data.AccessSection)1
GroupDescription (com.google.gerrit.common.data.GroupDescription)1
UnprocessableEntityException (com.google.gerrit.extensions.restapi.UnprocessableEntityException)1
Project (com.google.gerrit.reviewdb.client.Project)1
GlobalPermission (com.google.gerrit.server.permissions.GlobalPermission)1
ArrayList (java.util.ArrayList)1
Map (java.util.Map)1
InMemoryRepository (org.eclipse.jgit.internal.storage.dfs.InMemoryRepository)1
Config (org.eclipse.jgit.lib.Config)1
