mirror of
https://github.com/OCA/server-backend.git
synced 2025-02-18 09:52:42 +02:00
1d433f1099
self._ids is expected to be a tuple instance, using that on SQL queries will raise a `psycopg2.ProgrammingError: syntax error at or near "ARRAY"`. Add test.
77 lines
3.4 KiB
Python
77 lines
3.4 KiB
Python
# © 2015 Therp BV <http://therp.nl>
|
|
# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html).
|
|
from odoo import exceptions
|
|
from odoo.tests.common import TransactionCase
|
|
from ..base_suspend_security import BaseSuspendSecurityUid
|
|
|
|
|
|
class TestBaseSuspendSecurity(TransactionCase):
|
|
def test_base_suspend_security(self):
|
|
user_id = self.env.ref('base.user_demo').id
|
|
other_company = self.env['res.company'].create({
|
|
'name': 'other company',
|
|
# without this, a partner is created and mail's constraint on
|
|
# notify_email kicks in
|
|
'partner_id': self.env.ref('base.partner_demo').id,
|
|
})
|
|
# be sure what we try is forbidden
|
|
with self.assertRaises(exceptions.AccessError):
|
|
self.env.ref('base.user_root').sudo(user_id).name = 'test'
|
|
with self.assertRaises(exceptions.AccessError):
|
|
other_company.sudo(user_id).name = 'test'
|
|
# this tests ir.model.access
|
|
self.env.ref('base.user_root').sudo(user_id).suspend_security().write({
|
|
'name': 'test'})
|
|
self.assertEqual(self.env.ref('base.user_root').name, 'test')
|
|
self.assertEqual(self.env.ref('base.user_root').write_uid.id, user_id)
|
|
# this tests ir.rule
|
|
other_company.sudo(user_id).suspend_security().write({'name': 'test'})
|
|
self.assertEqual(other_company.name, 'test')
|
|
self.assertEqual(other_company.write_uid.id, user_id)
|
|
# this tests if _normalize_args conversion works
|
|
user = self.env['res.users'].browse(
|
|
self.env['res.users'].suspend_security().env.uid)
|
|
self.assertIsInstance(user._ids, tuple)
|
|
|
|
def test_base_suspend_security_uid(self):
|
|
""" Test corner cases of dunder functions """
|
|
uid = BaseSuspendSecurityUid(42)
|
|
self.assertFalse(uid == 42)
|
|
self.assertEqual(uid[0], 42)
|
|
self.assertFalse(uid[1:])
|
|
with self.assertRaises(IndexError):
|
|
self.env['res.users'].browse(uid[1])
|
|
|
|
def test_suspend_security_on_search(self):
|
|
user_without_access = self.env["res.users"].create(
|
|
dict(
|
|
name="Testing Suspend Security",
|
|
login="nogroups",
|
|
email="nogroups@suspendsecurity.com",
|
|
groups_id=[(5,)],
|
|
)
|
|
)
|
|
model = self.env["ir.config_parameter"]
|
|
# the search is forbidden
|
|
with self.assertRaises(exceptions.AccessError):
|
|
model.sudo(user_without_access).search([])
|
|
# this tests the search
|
|
model.sudo(user_without_access).suspend_security().search([])
|
|
# be sure we can search suspended uids like ints
|
|
partners = self.env['res.partner'].with_context(
|
|
active_test=False,
|
|
).search([
|
|
('user_ids', '=', user_without_access.suspend_security().env.uid),
|
|
])
|
|
self.assertTrue(partners)
|
|
|
|
def test_envs(self):
|
|
""" Test that we get the same env when suspending from the same env """
|
|
partner = self.env.ref('base.partner_demo')
|
|
user = self.env.ref('base.user_demo')
|
|
self.assertEqual(partner.env.args, user.env.args)
|
|
partner_suspended = partner.suspend_security()
|
|
user_suspended = user.suspend_security()
|
|
self.assertNotEqual(partner.env.args, partner_suspended.env.args)
|
|
self.assertEqual(user_suspended.env.args, partner_suspended.env.args)
|