#8771 Merged Permission endpoints

2025-11-17 10:41:06 +01:00 · 2018-08-21 10:35:39 +02:00
parent f79975b18d 84e729793b
commit 4e1778cac1
24 changed files with 855 additions and 444 deletions
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/BranchRootResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/BranchRootResourceTest.java
@@ -45,7 +45,7 @@ public class BranchRootResourceTest {
  public void prepareEnvironment() throws Exception {
    BranchCollectionToDtoMapper branchCollectionToDtoMapper = new BranchCollectionToDtoMapper(branchToDtoMapper, resourceLinks);
    BranchRootResource branchRootResource = new BranchRootResource(serviceFactory, branchToDtoMapper, branchCollectionToDtoMapper);
-    RepositoryRootResource repositoryRootResource = new RepositoryRootResource(MockProvider.of(new RepositoryResource(null, null, null, null, MockProvider.of(branchRootResource), null, null, null)), null);
+    RepositoryRootResource repositoryRootResource = new RepositoryRootResource(MockProvider.of(new RepositoryResource(null, null, null, null, MockProvider.of(branchRootResource), null, null, null, null)), null);
    dispatcher.getRegistry().addSingletonResource(repositoryRootResource);

    when(serviceFactory.create(new NamespaceAndName("space", "repo"))).thenReturn(service);
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/ContentResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/ContentResourceTest.java
@@ -0,0 +1,186 @@
+package sonia.scm.api.v2.resources;
+
+import com.google.common.io.Resources;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Answers;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.junit.MockitoJUnitRunner;
+import sonia.scm.repository.NamespaceAndName;
+import sonia.scm.repository.PathNotFoundException;
+import sonia.scm.repository.RepositoryNotFoundException;
+import sonia.scm.repository.api.CatCommandBuilder;
+import sonia.scm.repository.api.RepositoryService;
+import sonia.scm.repository.api.RepositoryServiceFactory;
+
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.StreamingOutput;
+import java.io.ByteArrayInputStream;
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.io.OutputStream;
+import java.net.URL;
+
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertTrue;
+import static org.junit.Assert.fail;
+import static org.mockito.AdditionalMatchers.not;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
+import static org.mockito.Mockito.doAnswer;
+import static org.mockito.Mockito.doThrow;
+import static org.mockito.Mockito.when;
+
+@RunWith(MockitoJUnitRunner.class)
+public class ContentResourceTest {
+
+  private static final String NAMESPACE = "space";
+  private static final String REPO_NAME = "name";
+  private static final String REV = "rev";
+
+  @Mock(answer = Answers.RETURNS_DEEP_STUBS)
+  private RepositoryServiceFactory repositoryServiceFactory;
+
+  @InjectMocks
+  private ContentResource contentResource;
+
+  private CatCommandBuilder catCommand;
+
+  @Before
+  public void initService() throws Exception {
+    NamespaceAndName existingNamespaceAndName = new NamespaceAndName(NAMESPACE, REPO_NAME);
+    RepositoryService repositoryService = repositoryServiceFactory.create(existingNamespaceAndName);
+    catCommand = repositoryService.getCatCommand();
+    when(catCommand.setRevision(REV)).thenReturn(catCommand);
+
+    // defaults for unknown things
+    doThrow(new RepositoryNotFoundException("x")).when(repositoryServiceFactory).create(not(eq(existingNamespaceAndName)));
+    doThrow(new PathNotFoundException("x")).when(catCommand).getStream(any());
+  }
+
+  @Test
+  public void shouldReadSimpleFile() throws Exception {
+    mockContent("file", "Hello".getBytes());
+
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "file");
+    assertEquals(200, response.getStatus());
+
+    ByteArrayOutputStream baos = readOutputStream(response);
+
+    assertEquals("Hello", baos.toString());
+  }
+
+  @Test
+  public void shouldHandleMissingFile() {
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "doesNotExist");
+    assertEquals(404, response.getStatus());
+  }
+
+  @Test
+  public void shouldHandleMissingRepository() {
+    Response response = contentResource.get("no", "repo", REV, "anything");
+    assertEquals(404, response.getStatus());
+  }
+
+  @Test
+  public void shouldRecognizeTikaSourceCode() throws Exception {
+    mockContentFromResource("SomeGoCode.go");
+
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "SomeGoCode.go");
+    assertEquals(200, response.getStatus());
+
+    assertEquals("GO", response.getHeaderString("Language"));
+    assertEquals("text/x-go", response.getHeaderString("Content-Type"));
+  }
+
+  @Test
+  public void shouldRecognizeSpecialSourceCode() throws Exception {
+    mockContentFromResource("Dockerfile");
+
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "Dockerfile");
+    assertEquals(200, response.getStatus());
+
+    assertEquals("DOCKERFILE", response.getHeaderString("Language"));
+    assertEquals("text/plain", response.getHeaderString("Content-Type"));
+  }
+
+  @Test
+  public void shouldRecognizeShebangSourceCode() throws Exception {
+    mockContentFromResource("someScript.sh");
+
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "someScript.sh");
+    assertEquals(200, response.getStatus());
+
+    assertEquals("PYTHON", response.getHeaderString("Language"));
+    assertEquals("application/x-sh", response.getHeaderString("Content-Type"));
+  }
+
+  @Test
+  public void shouldHandleRandomByteFile() throws Exception {
+    mockContentFromResource("JustBytes");
+
+    Response response = contentResource.get(NAMESPACE, REPO_NAME, REV, "JustBytes");
+    assertEquals(200, response.getStatus());
+
+    assertFalse(response.getHeaders().containsKey("Language"));
+    assertEquals("application/octet-stream", response.getHeaderString("Content-Type"));
+  }
+
+  @Test
+  public void shouldNotReadCompleteFileForHead() throws Exception {
+    FailingAfterSomeBytesStream stream = new FailingAfterSomeBytesStream();
+    doAnswer(invocation -> stream).when(catCommand).getStream(eq("readHeadOnly"));
+
+    Response response = contentResource.metadata(NAMESPACE, REPO_NAME, REV, "readHeadOnly");
+    assertEquals(200, response.getStatus());
+
+    assertEquals("application/octet-stream", response.getHeaderString("Content-Type"));
+    assertTrue("stream has to be closed after reading head", stream.isClosed());
+  }
+
+  private void mockContentFromResource(String fileName) throws Exception {
+    URL url = Resources.getResource(fileName);
+    mockContent(fileName, Resources.toByteArray(url));
+  }
+
+  private void mockContent(String path, byte[] content) throws Exception {
+    doAnswer(invocation -> {
+      OutputStream outputStream = (OutputStream) invocation.getArguments()[0];
+      outputStream.write(content);
+      outputStream.close();
+      return null;
+    }).when(catCommand).retriveContent(any(), eq(path));
+    doAnswer(invocation -> new ByteArrayInputStream(content)).when(catCommand).getStream(eq(path));
+  }
+
+  private ByteArrayOutputStream readOutputStream(Response response) throws IOException {
+    ByteArrayOutputStream baos = new ByteArrayOutputStream();
+    ((StreamingOutput) response.getEntity()).write(baos);
+    return baos;
+  }
+
+  private static class FailingAfterSomeBytesStream extends InputStream {
+    private int bytesRead = 0;
+    private boolean closed = false;
+    @Override
+    public int read() {
+      if (++bytesRead > 1024) {
+        fail("read too many bytes");
+      }
+      return 0;
+    }
+
+    @Override
+    public void close() throws IOException {
+      closed = true;
+    }
+
+    public boolean isClosed() {
+      return closed;
+    }
+  }
+}
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/PermissionRootResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/PermissionRootResourceTest.java
@@ -53,11 +53,9 @@ import static org.mockito.MockitoAnnotations.initMocks;
@RunWith(MockitoJUnitRunner.Silent.class)
@Slf4j
 public class PermissionRootResourceTest {
-  public static final String REPOSITORY_NAMESPACE = "repo_namespace";
-  public static final String REPOSITORY_NAME = "repo";
+  private static final String REPOSITORY_NAMESPACE = "repo_namespace";
+  private static final String REPOSITORY_NAME = "repo";
  private static final String PERMISSION_NAME = "perm";
-
-
  private static final String PATH_OF_ALL_PERMISSIONS = REPOSITORY_NAMESPACE + "/" + REPOSITORY_NAME + "/permissions/";
  private static final String PATH_OF_ONE_PERMISSION = PATH_OF_ALL_PERMISSIONS + PERMISSION_NAME;
  private static final String PERMISSION_TEST_PAYLOAD = "{ \"name\" : \"permission_name\", \"type\" : \"READ\"  }";
@@ -93,7 +91,6 @@ public class PermissionRootResourceTest {
    .content(PERMISSION_TEST_PAYLOAD)
    .path(PATH_OF_ONE_PERMISSION);

-
  private final Dispatcher dispatcher = MockDispatcherFactory.createDispatcher();

  @Rule
@@ -102,7 +99,6 @@ public class PermissionRootResourceTest {
  @Mock
  private RepositoryManager repositoryManager;

-
  private final URI baseUri = URI.create("/");
  private final ResourceLinks resourceLinks = ResourceLinksMock.createMock(baseUri);

@@ -112,17 +108,15 @@ public class PermissionRootResourceTest {
  @InjectMocks
  private PermissionDtoToPermissionMapperImpl permissionDtoToPermissionMapper;

-
  private PermissionRootResource permissionRootResource;

-
  @BeforeEach
  @Before
  public void prepareEnvironment() {
    initMocks(this);
    permissionRootResource = spy(new PermissionRootResource(permissionDtoToPermissionMapper, permissionToPermissionDtoMapper, resourceLinks, repositoryManager));
    RepositoryRootResource repositoryRootResource = new RepositoryRootResource(MockProvider
-      .of(new RepositoryResource(null, null, null, null, null, null, null, MockProvider.of(permissionRootResource))), null);
+      .of(new RepositoryResource(null, null, null, null, null, null, null,null, MockProvider.of(permissionRootResource))), null);
    dispatcher.getRegistry().addSingletonResource(repositoryRootResource);
    dispatcher.getProviderFactory().registerProvider(RepositoryNotFoundExceptionMapper.class);
    dispatcher.getProviderFactory().registerProvider(PermissionNotFoundExceptionMapper.class);
@@ -130,32 +124,50 @@ public class PermissionRootResourceTest {
    dispatcher.getProviderFactory().registerProvider(AuthorizationExceptionMapper.class);
  }

+  @TestFactory
+  @DisplayName("test endpoints on missing repository and user is Admin")
+  Stream<DynamicTest> missedRepositoryTestFactory() {
+    return createDynamicTestsToAssertResponses(
+      requestGETAllPermissions.expectedResponseStatus(404),
+      requestGETPermission.expectedResponseStatus(404),
+      requestPOSTPermission.expectedResponseStatus(404),
+      requestDELETEPermission.expectedResponseStatus(404),
+      requestPUTPermission.expectedResponseStatus(404));
+  }
+
+  @TestFactory
+  @DisplayName("test endpoints on missing permission and user is Admin")
+  Stream<DynamicTest> missedPermissionTestFactory() {
+    authorizedUserHasARepository();
+    return createDynamicTestsToAssertResponses(
+      requestGETPermission.expectedResponseStatus(404),
+      requestPOSTPermission.expectedResponseStatus(201),
+      requestGETAllPermissions.expectedResponseStatus(200),
+      requestDELETEPermission.expectedResponseStatus(204),
+      requestPUTPermission.expectedResponseStatus(404));
+  }
+
+  @TestFactory
+  @DisplayName("test endpoints on missing permission and user is not Admin")
+  Stream<DynamicTest> missedPermissionUserForbiddenTestFactory() {
+    Repository mockRepository = mock(Repository.class);
+    when(mockRepository.getId()).thenReturn(REPOSITORY_NAME);
+    doThrow(AuthorizationException.class).when(permissionRootResource).checkUserPermitted(mockRepository);
+    when(repositoryManager.get(any(NamespaceAndName.class))).thenReturn(mockRepository);
+    return createDynamicTestsToAssertResponses(
+      requestGETPermission.expectedResponseStatus(401),
+      requestPOSTPermission.expectedResponseStatus(401),
+      requestGETAllPermissions.expectedResponseStatus(401),
+      requestDELETEPermission.expectedResponseStatus(401),
+      requestPUTPermission.expectedResponseStatus(401));
+  }

  @Test
  public void shouldGetAllPermissions() {
    authorizedUserHasARepositoryWithPermissions(TEST_PERMISSIONS);
-    assertExpectedRequest(requestGETAllPermissions
-      .expectedResponseStatus(200)
-      .responseValidator((response) -> {
-        String body = response.getContentAsString();
-        ObjectMapper mapper = new ObjectMapper();
-        try {
-          List<PermissionDto> actualPermissionDtos = mapper.readValue(body, new TypeReference<List<PermissionDto>>() {
-          });
-          assertThat(actualPermissionDtos)
-            .as("response payload match permission object models")
-            .hasSize(TEST_PERMISSIONS.size())
-            .usingRecursiveFieldByFieldElementComparator()
-            .containsExactlyInAnyOrder(getExpectedPermissionDtos(TEST_PERMISSIONS))
-          ;
-        } catch (IOException e) {
-          fail();
-        }
-      })
-    );
+    assertGettingExpectedPermissions(ImmutableList.copyOf(TEST_PERMISSIONS));
  }

-
  @Test
  public void shouldGetPermissionByName() {
    authorizedUserHasARepositoryWithPermissions(TEST_PERMISSIONS);
@@ -179,7 +191,6 @@ public class PermissionRootResourceTest {
    );
  }

-
  @Test
  public void shouldGetCreatedPermissions() {
    authorizedUserHasARepositoryWithPermissions(TEST_PERMISSIONS);
@@ -207,7 +218,6 @@ public class PermissionRootResourceTest {
    );
  }

-
  @Test
  public void shouldGetUpdatedPermissions() {
    authorizedUserHasARepositoryWithPermissions(TEST_PERMISSIONS);
@@ -287,7 +297,6 @@ public class PermissionRootResourceTest {
    );
  }

-
  private PermissionDto[] getExpectedPermissionDtos(ArrayList<Permission> permissions) {
    return permissions
      .stream()
@@ -309,30 +318,6 @@ public class PermissionRootResourceTest {
    return result;
  }

-  @TestFactory
-  @DisplayName("test endpoints on missing repository and user is Admin")
-  Stream<DynamicTest> missedRepositoryTestFactory() {
-    return createDynamicTestsToAssertResponses(
-      requestGETAllPermissions.expectedResponseStatus(404),
-      requestGETPermission.expectedResponseStatus(404),
-      requestPOSTPermission.expectedResponseStatus(404),
-      requestDELETEPermission.expectedResponseStatus(404),
-      requestPUTPermission.expectedResponseStatus(404));
-  }
-
-
-  @TestFactory
-  @DisplayName("test endpoints on missing permission and user is Admin")
-  Stream<DynamicTest> missedPermissionTestFactory() {
-    authorizedUserHasARepository();
-    return createDynamicTestsToAssertResponses(
-      requestGETPermission.expectedResponseStatus(404),
-      requestPOSTPermission.expectedResponseStatus(201),
-      requestGETAllPermissions.expectedResponseStatus(200),
-      requestDELETEPermission.expectedResponseStatus(204),
-      requestPUTPermission.expectedResponseStatus(404));
-  }
-
  private Repository authorizedUserHasARepository() {
    Repository mockRepository = mock(Repository.class);
    when(mockRepository.getId()).thenReturn(REPOSITORY_NAME);
@@ -347,25 +332,7 @@ public class PermissionRootResourceTest {
    when(authorizedUserHasARepository().getPermissions()).thenReturn(permissions);
  }

-
-  @TestFactory
-  @DisplayName("test endpoints on missing permission and user is not Admin")
-  Stream<DynamicTest> missedPermissionUserForbiddenTestFactory() {
-    Repository mockRepository = mock(Repository.class);
-    when(mockRepository.getId()).thenReturn(REPOSITORY_NAME);
-    doThrow(AuthorizationException.class).when(permissionRootResource).checkUserPermitted(mockRepository);
-    when(repositoryManager.get(any(NamespaceAndName.class))).thenReturn(mockRepository);
-    return createDynamicTestsToAssertResponses(
-      requestGETPermission.expectedResponseStatus(401),
-      requestPOSTPermission.expectedResponseStatus(401),
-      requestGETAllPermissions.expectedResponseStatus(401),
-      requestDELETEPermission.expectedResponseStatus(401),
-      requestPUTPermission.expectedResponseStatus(401));
-  }
-
-
  private Stream<DynamicTest> createDynamicTestsToAssertResponses(ExpectedRequest... expectedRequests) {
-
    return Stream.of(expectedRequests)
      .map(entry -> dynamicTest("the endpoint " + entry.description + " should return the status code " + entry.expectedResponseStatus, () -> assertExpectedRequest(entry)));
  }
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/RepositoryRootResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/RepositoryRootResourceTest.java
@@ -74,7 +74,7 @@ public class RepositoryRootResourceTest {
  @Before
  public void prepareEnvironment() {
    initMocks(this);
-    RepositoryResource repositoryResource = new RepositoryResource(repositoryToDtoMapper, dtoToRepositoryMapper, repositoryManager, null, null, null, null, null);
+    RepositoryResource repositoryResource = new RepositoryResource(repositoryToDtoMapper, dtoToRepositoryMapper, repositoryManager, null, null, null, null, null, null);
    RepositoryCollectionToDtoMapper repositoryCollectionToDtoMapper = new RepositoryCollectionToDtoMapper(repositoryToDtoMapper, resourceLinks);
    RepositoryCollectionResource repositoryCollectionResource = new RepositoryCollectionResource(repositoryManager, repositoryCollectionToDtoMapper, dtoToRepositoryMapper, resourceLinks);
    RepositoryRootResource repositoryRootResource = new RepositoryRootResource(MockProvider.of(repositoryResource), MockProvider.of(repositoryCollectionResource));