scm-it/src/test/java/sonia/scm/it/UserITCase.java

package sonia.scm.it;

import org.junit.Assert;
import org.junit.Before;
import org.junit.Test;
import sonia.scm.it.utils.ScmRequests;
import sonia.scm.it.utils.TestData;

import static org.assertj.core.api.Assertions.assertThat;

public class UserITCase {

  @Before
  public void init(){
    TestData.cleanup();
  }

  @Test
  public void adminShouldChangeOwnPassword() {
    String newUser = "user";
    String password = "pass";
    TestData.createUser(newUser, password, true, "xml", "user@scm-manager.org");
    String newPassword = "new_password";
    // admin change the own password
    ScmRequests.start()
      .requestIndexResource(newUser, password)
      .assertStatusCode(200)
      .requestUser(newUser)
      .assertStatusCode(200)
      .assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE))
      .assertPassword(Assert::assertNull)
      .requestChangePassword(password, newPassword) // the oldPassword is needed when the own password should be changed
      .assertStatusCode(204);
    // assert password is changed -> login with the new Password
    ScmRequests.start()
      .requestIndexResource(newUser, newPassword)
      .assertStatusCode(200)
      .requestUser(newUser)
      .assertAdmin(isAdmin -> assertThat(isAdmin).isEqualTo(Boolean.TRUE))
      .assertPassword(Assert::assertNull);
  }

  @Test
  public void adminShouldChangePasswordOfOtherUser() {
    String newUser = "user";
    String password = "pass";
    TestData.createUser(newUser, password, true, "xml", "user@scm-manager.org");
    String newPassword = "new_password";
    // admin change the password of the user
    ScmRequests.start()
      .requestIndexResource(TestData.USER_SCM_ADMIN, TestData.USER_SCM_ADMIN)
      .assertStatusCode(200)
      .requestUser(newUser)
      .assertStatusCode(200)
      .assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE)) // the user anonymous is not an admin
      .assertPassword(Assert::assertNull)
      .requestChangePassword(newPassword) // the oldPassword is not needed in the user resource
      .assertStatusCode(204);
    // assert password is changed
    ScmRequests.start()
      .requestIndexResource(newUser, newPassword)
      .assertStatusCode(200)
      .requestUser(newUser)
      .assertStatusCode(200);

  }

  @Test
  public void nonAdminUserShouldNotChangePasswordOfOtherUser() {
    String user = "user";
    String password = "pass";
    TestData.createUser(user, password, false, "xml", "em@l.de");
    String user2 = "user2";
    TestData.createUser(user2, password, false, "xml", "em@l.de");
    ScmRequests.start()
      .requestIndexResource(user, password)
      .assertUsersLinkDoesNotExists();
    // use the users/ endpoint bypassed the index resource
    ScmRequests.start()
      .requestUser(user, password, user2)
      .assertStatusCode(403);
    // use the users/password endpoint bypassed the index and users resources
    ScmRequests.start()
      .requestUserChangePassword(user, password, user2, "newPassword")
      .assertStatusCode(403);
  }

  @Test
  public void shouldHidePasswordLinkIfUserTypeIsNotXML() {
    String newUser = "user";
    String password = "pass";
    String type = "not XML Type";
    TestData.createUser(newUser, password, true, type, "user@scm-manager.org");
    ScmRequests.start()
      .requestIndexResource(newUser, password)
      .assertStatusCode(200)
      .requestUser(newUser)
      .assertStatusCode(200)
      .assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE))
      .assertPassword(Assert::assertNull)
      .assertType(s -> assertThat(s).isEqualTo(type))
      .assertPasswordLinkDoesNotExists();
  }
}
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`package sonia.scm.it;`

			`import org.junit.Assert;`
			`import org.junit.Before;`
			`import org.junit.Test;`
			`import sonia.scm.it.utils.ScmRequests;`
			`import sonia.scm.it.utils.TestData;`

			`import static org.assertj.core.api.Assertions.assertThat;`

			`public class UserITCase {`

			`@Before`
			`public void init(){`
			`TestData.cleanup();`
			`}`

			`@Test`
			`public void adminShouldChangeOwnPassword() {`
review 2018-09-20 11:51:10 +02:00			`String newUser = "user";`
			`String password = "pass";`
fix autocomplete for user without admin permission + integration tests 2018-10-12 11:06:53 +02:00			`TestData.createUser(newUser, password, true, "xml", "user@scm-manager.org");`
review 2018-09-20 11:51:10 +02:00			`String newPassword = "new_password";`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`// admin change the own password`
			`ScmRequests.start()`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestIndexResource(newUser, password)`
			`.assertStatusCode(200)`
			`.requestUser(newUser)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200)`
			`.assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE))`
			`.assertPassword(Assert::assertNull)`
remove throws NotFoundException and fix modify password 2018-10-16 10:47:52 +02:00			`.requestChangePassword(password, newPassword) // the oldPassword is needed when the own password should be changed`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(204);`
review 2018-09-20 11:51:10 +02:00			`// assert password is changed -> login with the new Password`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`ScmRequests.start()`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestIndexResource(newUser, newPassword)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200)`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestUser(newUser)`
review 2018-09-20 11:51:10 +02:00			`.assertAdmin(isAdmin -> assertThat(isAdmin).isEqualTo(Boolean.TRUE))`
			`.assertPassword(Assert::assertNull);`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`}`

			`@Test`
			`public void adminShouldChangePasswordOfOtherUser() {`
			`String newUser = "user";`
			`String password = "pass";`
fix autocomplete for user without admin permission + integration tests 2018-10-12 11:06:53 +02:00			`TestData.createUser(newUser, password, true, "xml", "user@scm-manager.org");`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`String newPassword = "new_password";`
			`// admin change the password of the user`
			`ScmRequests.start()`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestIndexResource(TestData.USER_SCM_ADMIN, TestData.USER_SCM_ADMIN)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200)`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestUser(newUser)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200)`
			`.assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE)) // the user anonymous is not an admin`
			`.assertPassword(Assert::assertNull)`
			`.requestChangePassword(newPassword) // the oldPassword is not needed in the user resource`
			`.assertStatusCode(204);`
			`// assert password is changed`
			`ScmRequests.start()`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestIndexResource(newUser, newPassword)`
			`.assertStatusCode(200)`
			`.requestUser(newUser)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200);`

			`}`

add permission to modify the own password over the me and the user endpoints 2018-10-12 15:20:58 +02:00			`@Test`
remove throws NotFoundException and fix modify password 2018-10-16 10:47:52 +02:00			`public void nonAdminUserShouldNotChangePasswordOfOtherUser() {`
			`String user = "user";`
			`String password = "pass";`
merge + refactoring 2018-10-16 15:58:54 +02:00			`TestData.createUser(user, password, false, "xml", "em@l.de");`
remove throws NotFoundException and fix modify password 2018-10-16 10:47:52 +02:00			`String user2 = "user2";`
merge + refactoring 2018-10-16 15:58:54 +02:00			`TestData.createUser(user2, password, false, "xml", "em@l.de");`
			`ScmRequests.start()`
			`.requestIndexResource(user, password)`
			`.assertUsersLinkDoesNotExists();`
			`// use the users/ endpoint bypassed the index resource`
remove throws NotFoundException and fix modify password 2018-10-16 10:47:52 +02:00			`ScmRequests.start()`
merge + refactoring 2018-10-16 15:58:54 +02:00			`.requestUser(user, password, user2)`
			`.assertStatusCode(403);`
			`// use the users/password endpoint bypassed the index and users resources`
			`ScmRequests.start()`
			`.requestUserChangePassword(user, password, user2, "newPassword")`
remove throws NotFoundException and fix modify password 2018-10-16 10:47:52 +02:00			`.assertStatusCode(403);`
			`}`

Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`@Test`
			`public void shouldHidePasswordLinkIfUserTypeIsNotXML() {`
			`String newUser = "user";`
			`String password = "pass";`
			`String type = "not XML Type";`
fix autocomplete for user without admin permission + integration tests 2018-10-12 11:06:53 +02:00			`TestData.createUser(newUser, password, true, type, "user@scm-manager.org");`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`ScmRequests.start()`
refactor the integration test lib to use the index resource & add unit tests for autoComplete permission 2018-10-15 18:35:45 +02:00			`.requestIndexResource(newUser, password)`
			`.assertStatusCode(200)`
			`.requestUser(newUser)`
Add tests for the Change Password Endpoints 2018-09-19 15:54:24 +02:00			`.assertStatusCode(200)`
			`.assertAdmin(aBoolean -> assertThat(aBoolean).isEqualTo(Boolean.TRUE))`
			`.assertPassword(Assert::assertNull)`
			`.assertType(s -> assertThat(s).isEqualTo(type))`
			`.assertPasswordLinkDoesNotExists();`
			`}`
			`}`