📄 testpermissions.java
字号:
/*
* File : $Source: /usr/local/cvs/opencms/test/org/opencms/file/TestPermissions.java,v $
* Date : $Date: 2005/06/27 23:22:09 $
* Version: $Revision: 1.22 $
*
* This library is part of OpenCms -
* the Open Source Content Mananagement System
*
* Copyright (c) 2005 Alkacon Software GmbH (http://www.alkacon.com)
*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 2.1 of the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* For further information about Alkacon Software GmbH, please see the
* company website: http://www.alkacon.com
*
* For further information about OpenCms, please see the
* project website: http://www.opencms.org
*
* You should have received a copy of the GNU Lesser General Public
* License along with this library; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
package org.opencms.file;
import org.opencms.file.types.CmsResourceTypeFolder;
import org.opencms.file.types.CmsResourceTypeImage;
import org.opencms.file.types.CmsResourceTypePlain;
import org.opencms.main.OpenCms;
import org.opencms.security.CmsAccessControlEntry;
import org.opencms.security.CmsPermissionSet;
import org.opencms.security.I_CmsPrincipal;
import org.opencms.test.OpenCmsTestCase;
import org.opencms.test.OpenCmsTestProperties;
import org.opencms.util.CmsUUID;
import java.util.Collections;
import java.util.Iterator;
import java.util.List;
import junit.extensions.TestSetup;
import junit.framework.Test;
import junit.framework.TestSuite;
/**
* Unit tests for VFS permissions.<p>
*
* @author Alexander Kandzior
*
* @version $Revision: 1.22 $
*/
/**
* Comment for <code>TestPermissions</code>.<p>
*/
public class TestPermissions extends OpenCmsTestCase {
/**
* Default JUnit constructor.<p>
*
* @param arg0 JUnit parameters
*/
public TestPermissions(String arg0) {
super(arg0);
}
/**
* Test suite for this test class.<p>
*
* @return the test suite
*/
public static Test suite() {
OpenCmsTestProperties.initialize(org.opencms.test.AllTests.TEST_PROPERTIES_PATH);
TestSuite suite = new TestSuite();
suite.setName(TestPermissions.class.getName());
suite.addTest(new TestPermissions("testPublishPermissions"));
suite.addTest(new TestPermissions("testVisiblePermission"));
suite.addTest(new TestPermissions("testVisiblePermissionForFolder"));
suite.addTest(new TestPermissions("testFilterForFolder"));
suite.addTest(new TestPermissions("testDefaultPermissions"));
suite.addTest(new TestPermissions("testPermissionOverwrite"));
suite.addTest(new TestPermissions("testPermissionInheritance"));
suite.addTest(new TestPermissions("testUserDeletion"));
TestSetup wrapper = new TestSetup(suite) {
protected void setUp() {
setupOpenCms("simpletest", "/sites/default/");
}
protected void tearDown() {
removeOpenCms();
}
};
return wrapper;
}
/**
* Test the publish permisssions.<p>
*
* @throws Throwable if something goes wrong
*/
public void testPublishPermissions() throws Throwable {
CmsObject cms = getCmsObject();
echo("Testing publish permissions for a user");
String resource = "/folder1/page1.html";
cms.lockResource(resource);
// modify the resource permissions for the tests
// remove all "Users" group permissions
cms.chacc(resource, I_CmsPrincipal.PRINCIPAL_GROUP, OpenCms.getDefaultUsers().getGroupUsers(), 0, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE);
// allow read and write for user "test1"
cms.chacc(resource, I_CmsPrincipal.PRINCIPAL_USER, "test1", CmsPermissionSet.PERMISSION_READ + CmsPermissionSet.PERMISSION_WRITE, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE);
// allow read and write and direct publish for user "test2"
cms.chacc(resource, I_CmsPrincipal.PRINCIPAL_USER, "test2", CmsPermissionSet.PERMISSION_READ + CmsPermissionSet.PERMISSION_WRITE + CmsPermissionSet.PERMISSION_DIRECT_PUBLISH, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE);
cms.unlockResource(resource);
cms.loginUser("test1", "test1");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (cms.hasPublishPermissions(resource)) {
fail("Publish permissions available but should not be available for user test1");
}
cms.loginUser("test2", "test2");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (! cms.hasPublishPermissions(resource)) {
fail("Publish permissions unavailable but should be available for user test2");
}
cms.loginUser("Admin", "admin");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (! cms.hasPublishPermissions(resource)) {
fail("Publish permissions unavailable but should be available for user Admin");
}
// add user "test1" to project manager group
cms.addUserToGroup("test1", OpenCms.getDefaultUsers().getGroupProjectmanagers());
cms.loginUser("test1", "test1");
// first check in "online" project
assertEquals(CmsProject.ONLINE_PROJECT_ID, cms.getRequestContext().currentProject().getId());
if (cms.hasPublishPermissions(resource)) {
fail("Publish permissions available but should not be available for user test1 in online project");
}
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (! cms.hasPublishPermissions(resource)) {
fail("Publish permissions unavailable but should be available for user test1 because he is a project manager");
}
// create a new folder
String folder = "/newfolder/";
cms.loginUser("Admin", "admin");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
// create a new folder
cms.createResource(folder, CmsResourceTypeFolder.getStaticTypeId());
// apply permissions to folder
cms.lockResource(folder);
// modify the resource permissions for the tests
// remove all "Users" group permissions
cms.chacc(folder, I_CmsPrincipal.PRINCIPAL_GROUP, OpenCms.getDefaultUsers().getGroupUsers(), 0, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE + CmsAccessControlEntry.ACCESS_FLAGS_INHERIT);
// also for "Project managers" to avoid conflicts with other tests in this suite
cms.chacc(folder, I_CmsPrincipal.PRINCIPAL_GROUP, OpenCms.getDefaultUsers().getGroupProjectmanagers(), 0, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE + CmsAccessControlEntry.ACCESS_FLAGS_INHERIT);
// allow only read and write for user "test1"
cms.chacc(folder, I_CmsPrincipal.PRINCIPAL_USER, "test1", CmsPermissionSet.PERMISSION_READ + CmsPermissionSet.PERMISSION_WRITE, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE + CmsAccessControlEntry.ACCESS_FLAGS_INHERIT);
// allow read, write and and direct publish for user "test2"
cms.chacc(folder, I_CmsPrincipal.PRINCIPAL_USER, "test2", CmsPermissionSet.PERMISSION_READ + CmsPermissionSet.PERMISSION_WRITE + CmsPermissionSet.PERMISSION_DIRECT_PUBLISH, 0, CmsAccessControlEntry.ACCESS_FLAGS_OVERWRITE + CmsAccessControlEntry.ACCESS_FLAGS_INHERIT);
cms.unlockResource(folder);
resource = "/newfolder/newpage.html";
cms.createResource(resource, CmsResourceTypePlain.getStaticTypeId(), "This is a test".getBytes(), Collections.EMPTY_LIST);
cms.unlockResource(resource);
cms.loginUser("test1", "test1");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (cms.hasPublishPermissions(resource)) {
fail("Publish permissions available but should not be available for user test1");
}
cms.loginUser("test2", "test2");
cms.getRequestContext().setCurrentProject(cms.readProject("Offline"));
if (cms.hasPublishPermissions(resource)) {
fail("Publish permissions available but should be unavailable for user test2 because the parent folder is new");
}
if (! cms.hasPublishPermissions(folder)) {
fail("Publish permissions on new folder unavailable but should be available for user test2");
}
cms.publishResource(folder);
if (! cms.hasPublishPermissions(resource)) {
fail("Publish permissions unavailable but should be available for user test2 because the parent folder is now published");
}
}
/**
* @throws Throwable if something goes wrong
*/
public void testDefaultPermissions() throws Throwable {
CmsObject cms = getCmsObject();
echo("Testing default permissions");
String resourcename = "testDefaultPermissions.txt";
cms.createResource(resourcename, CmsResourceTypePlain.getStaticTypeId());
cms.createUser("testAdmin", "secret", "", null);
cms.addUserToGroup("testAdmin", OpenCms.getDefaultUsers().getGroupAdministrators());
cms.createUser("testProjectmanager", "secret", "", null);
cms.addUserToGroup("testProjectmanager", OpenCms.getDefaultUsers().getGroupProjectmanagers());
cms.createUser("testUser", "secret", "", null);
cms.addUserToGroup("testUser", OpenCms.getDefaultUsers().getGroupUsers());
cms.createUser("testGuest", "secret", "", null);
cms.addUserToGroup("testGuest", OpenCms.getDefaultUsers().getGroupGuests());
assertEquals("+r+w+v+c+d", cms.getPermissions(resourcename, "testAdmin").getPermissionString());
assertEquals("+r+w+v+c+d", cms.getPermissions(resourcename, "testProjectmanager").getPermissionString());
assertEquals("+r+w+v+c", cms.getPermissions(resourcename, "testUser").getPermissionString());
assertEquals("+r+v", cms.getPermissions(resourcename, "testGuest").getPermissionString());
}
/**
* @throws Throwable if something goes wrong
*/
public void testUserDeletion() throws Throwable {
CmsObject cms = getCmsObject();
echo("Testing permissions after deleting a user");
String resourcename = "userDelete.txt";
String username = "deleteUser";
// create a resource
cms.createResource(resourcename, CmsResourceTypePlain.getStaticTypeId());
// create a user
cms.createUser(username, "deleteMe", "", null);
// add a permission for this user
cms.chacc(resourcename, I_CmsPrincipal.PRINCIPAL_USER, username, "+r+w+v+c+d");
// now delete the user again
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -