@Before public void setup() { Visibility visibility = new Visibility(""); Authorizations authorizations = new InMemoryAuthorizations(); InMemoryGraphConfiguration config = new InMemoryGraphConfiguration(new HashMap()); idGenerator = new QueueIdGenerator(); graph = new InMemoryGraph(config, idGenerator, new DefaultSearchIndex(config.getConfig())); authorizationRepository = new InMemoryAuthorizationRepository(); Configuration lumifyConfiguration = new HashMapConfigurationLoader(new HashMap()).createConfiguration(); InMemoryUserRepository userRepository = new InMemoryUserRepository(lumifyConfiguration, userListenerUtil); user1 = (InMemoryUser) userRepository.addUser("user2", "user2", null, "none", new String[0]); graph.addVertex(user1.getUserId(), visibility, authorizations); user2 = (InMemoryUser) userRepository.addUser("user2", "user2", null, "none", new String[0]); graph.addVertex(user2.getUserId(), visibility, authorizations); when(ontologyRepository.getConceptByIRI(eq(OntologyRepository.ROOT_CONCEPT_IRI))) .thenReturn(rootConcept); when(ontologyRepository.getOrCreateConcept( (Concept) isNull(), eq(WorkspaceRepository.WORKSPACE_CONCEPT_NAME), anyString(), (java.io.File) anyObject())) .thenReturn(workspaceConcept); when(workspaceConcept.getTitle()).thenReturn(WorkspaceRepository.WORKSPACE_CONCEPT_NAME); when(workspaceToEntityRelationship.getIRI()).thenReturn("workspaceToEntityRelationshipId"); when(ontologyRepository.getOrCreateRelationshipType( eq(workspaceConcept), eq(rootConcept), eq(WorkspaceRepository.WORKSPACE_TO_ENTITY_RELATIONSHIP_NAME), anyString())) .thenReturn(workspaceToEntityRelationship); when(workspaceToUserRelationship.getIRI()).thenReturn("workspaceToUserRelationshipId"); when(ontologyRepository.getOrCreateRelationshipType( eq(workspaceConcept), eq(rootConcept), eq(WorkspaceRepository.WORKSPACE_TO_USER_RELATIONSHIP_NAME), anyString())) .thenReturn(workspaceToUserRelationship); workspaceRepository = new SecureGraphWorkspaceRepository( ontologyRepository, graph, userRepository, authorizationRepository, workspaceDiff); String entity1VertexId = "entity1Id"; entity1Vertex = graph.addVertex( entity1VertexId, new LumifyVisibility().getVisibility(), new InMemoryAuthorizations()); }
@Test public void testAddWorkspace() { int startingVertexCount = graph.getAllVertices().size(); int startingEdgeCount = graph.getAllEdges().size(); String workspaceId = "testWorkspaceId"; idGenerator.push(workspaceId); idGenerator.push(workspaceId + "_to_" + user1.getUserId()); Workspace workspace = workspaceRepository.add("workspace1", user1); assertTrue( authorizationRepository .getGraphAuthorizations() .contains(WorkspaceRepository.WORKSPACE_ID_PREFIX + workspaceId)); assertEquals( startingVertexCount + 1, graph.getAllVertices().size()); // +1 = the workspace vertex assertEquals( startingEdgeCount + 1, graph.getAllEdges().size()); // +1 = the edge between workspace and user1 assertNull( "Should not have access", graph.getVertex(workspace.getId(), new InMemoryAuthorizations())); InMemoryAuthorizations authorizations = new InMemoryAuthorizations(WorkspaceRepository.VISIBILITY_STRING, workspace.getId()); assertNotNull("Should have access", graph.getVertex(workspace.getId(), authorizations)); Workspace foundWorkspace = workspaceRepository.findById(workspace.getId(), user1); assertEquals(workspace.getId(), foundWorkspace.getId()); }
@Test public void testEntities() { int startingVertexCount = graph.getAllVertices().size(); int startingEdgeCount = graph.getAllEdges().size(); String workspaceId = "testWorkspaceId"; idGenerator.push(workspaceId); idGenerator.push(workspaceId + "_to_" + user1.getUserId()); Workspace workspace = workspaceRepository.add("workspace1", user1); assertEquals( startingVertexCount + 1, graph.getAllVertices().size()); // +1 = the workspace vertex assertEquals( startingEdgeCount + 1, graph.getAllEdges().size()); // +1 = the edges between workspaces and users try { workspaceRepository.updateEntityOnWorkspace( workspace, entity1Vertex.getId(), true, 100, 100, user2); fail("user2 should not have write access to workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user2, ex.getUser()); assertEquals(workspace.getId(), ex.getResourceId()); } idGenerator.push(workspaceId + "_to_" + entity1Vertex.getId()); workspaceRepository.updateEntityOnWorkspace( workspace, entity1Vertex.getId(), true, 100, 200, user1); assertEquals( startingVertexCount + 1, graph.getAllVertices().size()); // +1 = the workspace vertex assertEquals( startingEdgeCount + 2, graph.getAllEdges().size()); // +2 = the edges between workspaces, users, and entities workspaceRepository.updateEntityOnWorkspace( workspace, entity1Vertex.getId(), true, 200, 300, user1); assertEquals( startingVertexCount + 1, graph.getAllVertices().size()); // +1 = the workspace vertex assertEquals( startingEdgeCount + 2, graph.getAllEdges().size()); // +2 = the edges between workspaces, users, and entities List<WorkspaceEntity> entities = workspaceRepository.findEntities(workspace, user1); assertEquals(1, entities.size()); assertEquals(entity1Vertex.getId(), entities.get(0).getEntityVertexId()); assertEquals(200, entities.get(0).getGraphPositionX().intValue()); assertEquals(300, entities.get(0).getGraphPositionY().intValue()); try { workspaceRepository.findEntities(workspace, user2); fail("user2 should not have read access to workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user2, ex.getUser()); assertEquals(workspace.getId(), ex.getResourceId()); } try { workspaceRepository.softDeleteEntityFromWorkspace(workspace, entity1Vertex.getId(), user2); fail("user2 should not have write access to workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user2, ex.getUser()); assertEquals(workspace.getId(), ex.getResourceId()); } workspaceRepository.softDeleteEntityFromWorkspace(workspace, entity1Vertex.getId(), user1); assertEquals( startingVertexCount + 1, graph.getAllVertices().size()); // +1 = the workspace vertex Map<String, InMemoryEdge> edgesAfterDelete = graph.getAllEdges(); assertEquals( startingEdgeCount + 2, edgesAfterDelete.size()); // +1 = the edges between workspaces, users boolean foundRemovedEdge = false; for (InMemoryEdge edge : edgesAfterDelete.values()) { if (edge.getLabel().equals(workspaceToEntityRelationship.getIRI())) { assertEquals( false, WorkspaceLumifyProperties.WORKSPACE_TO_ENTITY_VISIBLE.getPropertyValue(edge)); foundRemovedEdge = true; } } assertTrue(foundRemovedEdge); }
@Test public void testAccessControl() { int startingVertexCount = graph.getAllVertices().size(); int startingEdgeCount = graph.getAllEdges().size(); String workspace1Id = "testWorkspace1Id"; String workspace1Title = "workspace1"; idGenerator.push(workspace1Id); idGenerator.push(workspace1Id + "_to_" + user1.getUserId()); workspaceRepository.add(workspace1Title, user1); String workspace2Id = "testWorkspace2Id"; String workspace2Title = "workspace2"; idGenerator.push(workspace2Id); idGenerator.push(workspace2Id + "_to_" + user1.getUserId()); workspaceRepository.add(workspace2Title, user1); String workspace3Id = "testWorkspace3Id"; String workspace3Title = "workspace3"; idGenerator.push(workspace3Id); idGenerator.push(workspace3Id + "_to_" + user2.getUserId()); workspaceRepository.add(workspace3Title, user2); assertEquals( startingVertexCount + 3, graph.getAllVertices().size()); // +3 = the workspace vertices assertEquals( startingEdgeCount + 3, graph.getAllEdges().size()); // +3 = the edges between workspaces and users List<Workspace> user1Workspaces = toList(workspaceRepository.findAll(user1)); assertEquals(2, user1Workspaces.size()); boolean foundWorkspace1 = false; boolean foundWorkspace2 = false; for (Workspace workspace : user1Workspaces) { if (workspace.getDisplayTitle().equals(workspace1Title)) { foundWorkspace1 = true; } else if (workspace.getDisplayTitle().equals(workspace2Title)) { foundWorkspace2 = true; } } assertTrue("foundWorkspace1", foundWorkspace1); assertTrue("foundWorkspace2", foundWorkspace2); List<Workspace> user2Workspaces = toList(workspaceRepository.findAll(user2)); assertEquals(1, user2Workspaces.size()); assertEquals(workspace3Title, user2Workspaces.get(0).getDisplayTitle()); try { workspaceRepository.updateUserOnWorkspace( user2Workspaces.get(0), user1.getUserId(), WorkspaceAccess.READ, user1); fail("user1 should not have access to user2's workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user1, ex.getUser()); assertEquals(user2Workspaces.get(0).getId(), ex.getResourceId()); } idGenerator.push(workspace3Id + "to" + user2.getUserId()); workspaceRepository.updateUserOnWorkspace( user2Workspaces.get(0), user1.getUserId(), WorkspaceAccess.READ, user2); assertEquals( startingVertexCount + 3, graph.getAllVertices().size()); // +3 = the workspace vertices assertEquals( startingEdgeCount + 4, graph.getAllEdges().size()); // +4 = the edges between workspaces and users List<WorkspaceUser> usersWithAccess = workspaceRepository.findUsersWithAccess(user2Workspaces.get(0).getId(), user2); boolean foundUser1 = false; boolean foundUser2 = false; for (WorkspaceUser userWithAccess : usersWithAccess) { if (userWithAccess.getUserId().equals(user1.getUserId())) { assertEquals(WorkspaceAccess.READ, userWithAccess.getWorkspaceAccess()); foundUser1 = true; } else if (userWithAccess.getUserId().equals(user2.getUserId())) { assertEquals(WorkspaceAccess.WRITE, userWithAccess.getWorkspaceAccess()); foundUser2 = true; } else { fail("Unexpected user " + userWithAccess.getUserId()); } } assertTrue("could not find user1", foundUser1); assertTrue("could not find user2", foundUser2); try { workspaceRepository.deleteUserFromWorkspace(user2Workspaces.get(0), user1.getUserId(), user1); fail("user1 should not have write access to user2's workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user1, ex.getUser()); assertEquals(user2Workspaces.get(0).getId(), ex.getResourceId()); } try { workspaceRepository.delete(user2Workspaces.get(0), user1); fail("user1 should not have write access to user2's workspace"); } catch (LumifyAccessDeniedException ex) { assertEquals(user1, ex.getUser()); assertEquals(user2Workspaces.get(0).getId(), ex.getResourceId()); } workspaceRepository.updateUserOnWorkspace( user2Workspaces.get(0), user1.getUserId(), WorkspaceAccess.WRITE, user2); assertEquals( startingVertexCount + 3, graph.getAllVertices().size()); // +3 = the workspace vertices assertEquals( startingEdgeCount + 4, graph.getAllEdges().size()); // +4 = the edges between workspaces and users workspaceRepository.deleteUserFromWorkspace(user2Workspaces.get(0), user1.getUserId(), user2); assertEquals( startingVertexCount + 3, graph.getAllVertices().size()); // +3 = the workspace vertices assertEquals( startingEdgeCount + 3, graph.getAllEdges().size()); // +3 = the edges between workspaces and users workspaceRepository.delete(user2Workspaces.get(0), user2); assertEquals( startingVertexCount + 2, graph.getAllVertices().size()); // +2 = the workspace vertices assertEquals( startingEdgeCount + 2, graph.getAllEdges().size()); // +2 = the edges between workspaces and users }