@Test
public void select_groups_by_query_with_project_permissions() {
GroupDto group1 = groupDb.insertGroup();
GroupDto group2 = groupDb.insertGroup();
GroupDto group3 = groupDb.insertGroup();
ComponentDto project = componentDb.insertComponent(newProjectDto());
ComponentDto anotherProject = componentDb.insertComponent(newProjectDto());
permissionDb.addProjectPermissionToGroup(SCAN_EXECUTION, group1.getId(), project.getId());
permissionDb.addProjectPermissionToGroup(PROVISIONING, group1.getId(), project.getId());
permissionDb.addProjectPermissionToGroup(USER, null, project.getId());
permissionDb.addProjectPermissionToGroup(SYSTEM_ADMIN, group1.getId(), anotherProject.getId());
permissionDb.addProjectPermissionToGroup(SYSTEM_ADMIN, null, anotherProject.getId());
permissionDb.addProjectPermissionToGroup(
SCAN_EXECUTION, group3.getId(), anotherProject.getId());
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, group2.getId());
PermissionQuery.Builder builderOnComponent =
PermissionQuery.builder().setComponentUuid(project.uuid());
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, builderOnComponent.withPermissionOnly().build()))
.containsOnlyOnce(group1.getName());
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, builderOnComponent.setPermission(SCAN_EXECUTION).build()))
.containsOnlyOnce(group1.getName());
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, builderOnComponent.setPermission(USER).build()))
.containsOnlyOnce(ANYONE);
}
@Test
public void count_groups_by_query() {
GroupDto group1 = groupDb.insertGroup(newGroupDto().setName("Group-1"));
GroupDto group2 = groupDb.insertGroup(newGroupDto().setName("Group-2"));
GroupDto group3 = groupDb.insertGroup(newGroupDto().setName("Group-3"));
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, null);
permissionDb.addGlobalPermissionToGroup(PROVISIONING, group1.getId());
assertThat(underTest.countGroupsByPermissionQuery(dbSession, PermissionQuery.builder().build()))
.isEqualTo(4);
assertThat(
underTest.countGroupsByPermissionQuery(
dbSession, PermissionQuery.builder().setPermission(PROVISIONING).build()))
.isEqualTo(1);
assertThat(
underTest.countGroupsByPermissionQuery(
dbSession, PermissionQuery.builder().withPermissionOnly().build()))
.isEqualTo(2);
assertThat(
underTest.countGroupsByPermissionQuery(
dbSession, PermissionQuery.builder().setSearchQuery("Group-").build()))
.isEqualTo(3);
assertThat(
underTest.countGroupsByPermissionQuery(
dbSession, PermissionQuery.builder().setSearchQuery("Any").build()))
.isEqualTo(1);
}
@Test
public void select_groups_by_query_with_global_permission() {
GroupDto group1 = groupDb.insertGroup(newGroupDto().setName("Group-1"));
GroupDto group2 = groupDb.insertGroup(newGroupDto().setName("Group-2"));
GroupDto group3 = groupDb.insertGroup(newGroupDto().setName("Group-3"));
ComponentDto project = componentDb.insertComponent(newProjectDto());
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, null);
permissionDb.addGlobalPermissionToGroup(PROVISIONING, null);
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, group1.getId());
permissionDb.addGlobalPermissionToGroup(SYSTEM_ADMIN, group3.getId());
permissionDb.addProjectPermissionToGroup(UserRole.ADMIN, group2.getId(), project.getId());
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().setPermission(SCAN_EXECUTION).build()))
.containsExactly(ANYONE, "Group-1");
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().setPermission(SYSTEM_ADMIN).build()))
.containsExactly("Group-3");
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().setPermission(PROVISIONING).build()))
.containsExactly(ANYONE);
}
@Test
public void group_count_by_permission_and_component_id() {
GroupDto group1 = groupDb.insertGroup();
GroupDto group2 = groupDb.insertGroup();
GroupDto group3 = groupDb.insertGroup();
permissionDb.addProjectPermissionToGroup(ISSUE_ADMIN, group1.getId(), 42L);
permissionDb.addProjectPermissionToGroup(ADMIN, group1.getId(), 123L);
permissionDb.addProjectPermissionToGroup(ADMIN, group2.getId(), 123L);
permissionDb.addProjectPermissionToGroup(ADMIN, group3.getId(), 123L);
// anyone group
permissionDb.addProjectPermissionToGroup(ADMIN, null, 123L);
permissionDb.addProjectPermissionToGroup(USER, group1.getId(), 123L);
permissionDb.addProjectPermissionToGroup(USER, group1.getId(), 456L);
final List<CountByProjectAndPermissionDto> result = new ArrayList<>();
underTest.groupsCountByComponentIdAndPermission(
dbSession,
asList(123L, 456L, 789L),
context -> result.add((CountByProjectAndPermissionDto) context.getResultObject()));
assertThat(result).hasSize(3);
assertThat(result).extracting("permission").containsOnly(ADMIN, USER);
assertThat(result).extracting("componentId").containsOnly(123L, 456L);
assertThat(result).extracting("count").containsOnly(4, 1);
}
@Test
public void select_group_permissions_by_group_names_on_project_permissions() {
GroupDto group1 = groupDb.insertGroup(newGroupDto().setName("Group-1"));
permissionDb.addGlobalPermissionToGroup(PROVISIONING, group1.getId());
GroupDto group2 = groupDb.insertGroup(newGroupDto().setName("Group-2"));
ComponentDto project = componentDb.insertComponent(newProjectDto());
permissionDb.addProjectPermissionToGroup(USER, group2.getId(), project.getId());
GroupDto group3 = groupDb.insertGroup(newGroupDto().setName("Group-3"));
permissionDb.addProjectPermissionToGroup(USER, group3.getId(), project.getId());
// Anyone group
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, null);
permissionDb.addProjectPermissionToGroup(PROVISIONING, null, project.getId());
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Group-1"), project.getId()))
.isEmpty();
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Group-2"), project.getId()))
.extracting(GroupRoleDto::getGroupId, GroupRoleDto::getRole, GroupRoleDto::getResourceId)
.containsOnly(tuple(group2.getId(), USER, project.getId()));
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Group-3"), project.getId()))
.extracting(GroupRoleDto::getGroupId, GroupRoleDto::getRole, GroupRoleDto::getResourceId)
.containsOnly(tuple(group3.getId(), USER, project.getId()));
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Anyone"), project.getId()))
.extracting(GroupRoleDto::getGroupId, GroupRoleDto::getRole, GroupRoleDto::getResourceId)
.containsOnly(tuple(0L, PROVISIONING, project.getId()));
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Group-1", "Group-2", "Anyone"), project.getId()))
.hasSize(2);
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Unknown"), project.getId()))
.isEmpty();
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, asList("Group-1"), 123L))
.isEmpty();
assertThat(
underTest.selectGroupPermissionsByGroupNamesAndProject(
dbSession, Collections.emptyList(), project.getId()))
.isEmpty();
}
@Test
public void select_groups_by_query_with_search_query() {
GroupDto group = groupDb.insertGroup(newGroupDto().setName("group-anyone"));
groupDb.insertGroup(newGroupDto().setName("unknown"));
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, group.getId());
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().setSearchQuery("any").build()))
.containsOnlyOnce(ANYONE, "group-anyone");
}
@Test
public void select_groups_by_query_is_ordered_by_group_names() {
groupDb.insertGroup(newGroupDto().setName("Group-2"));
groupDb.insertGroup(newGroupDto().setName("Group-3"));
groupDb.insertGroup(newGroupDto().setName("Group-1"));
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, null);
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().build()))
.containsExactly("Anyone", "Group-1", "Group-2", "Group-3");
}
@Test
public void select_groups_by_query() {
GroupDto group1 = groupDb.insertGroup(newGroupDto());
GroupDto group2 = groupDb.insertGroup(newGroupDto());
GroupDto group3 = groupDb.insertGroup(newGroupDto());
permissionDb.addGlobalPermissionToGroup(SCAN_EXECUTION, null);
List<String> groupNames =
underTest.selectGroupNamesByPermissionQuery(dbSession, PermissionQuery.builder().build());
assertThat(groupNames)
.containsOnly("Anyone", group1.getName(), group2.getName(), group3.getName());
}
@Test
public void admin_via_groups() {
ComponentDto jdk7 = insertJdk7();
ComponentDto cLang = insertClang();
GroupDto group = groupDb.insertGroup(newGroupDto());
groupDb.addUserToGroup(user.getId(), group.getId());
insertGroupPermission(UserRole.ADMIN, group.getId(), jdk7.getId());
insertGroupPermission(UserRole.USER, group.getId(), cLang.getId());
SearchMyProjectsWsResponse result = call_ws();
assertThat(result.getProjectsCount()).isEqualTo(1);
assertThat(result.getProjects(0).getId()).isEqualTo(jdk7.uuid());
}
@Test
public void select_groups_by_query_does_not_return_anyone_when_group_roles_is_empty() {
GroupDto group = groupDb.insertGroup();
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().build()))
.doesNotContain(ANYONE)
.containsExactly(group.getName());
}
@Test
public void select_groups_by_query_paginated() {
IntStream.rangeClosed(0, 9)
.forEach(i -> groupDb.insertGroup(newGroupDto().setName(i + "-name")));
assertThat(
underTest.selectGroupNamesByPermissionQuery(
dbSession, PermissionQuery.builder().setPageIndex(2).setPageSize(3).build()))
.containsExactly("3-name", "4-name", "5-name");
}
@Test
public void admin_via_groups_and_users() {
ComponentDto jdk7 = insertJdk7();
ComponentDto cLang = insertClang();
ComponentDto sonarqube = componentDb.insertComponent(newProjectDto());
GroupDto group = groupDb.insertGroup(newGroupDto());
groupDb.addUserToGroup(user.getId(), group.getId());
insertUserPermission(UserRole.ADMIN, user.getId(), jdk7.getId());
insertGroupPermission(UserRole.ADMIN, group.getId(), cLang.getId());
// admin via group and user
insertUserPermission(UserRole.ADMIN, user.getId(), sonarqube.getId());
insertGroupPermission(UserRole.ADMIN, group.getId(), sonarqube.getId());
SearchMyProjectsWsResponse result = call_ws();
assertThat(result.getProjectsCount()).isEqualTo(3);
assertThat(result.getProjectsList())
.extracting(Project::getId)
.containsOnly(jdk7.uuid(), cLang.uuid(), sonarqube.uuid());
}