# -*- coding: utf-8 -*-
from AccessControl import Unauthorized
from AccessControl import getSecurityManager
from AccessControl.User import nobody
from Acquisition import aq_base
from Acquisition import aq_parent
from DateTime import DateTime
from OFS.Image import Image
from Products.CMFCore.tests.base.testcase import WarningInterceptor
from Products.CMFCore.utils import getToolByName
from Products.PlonePAS.browser.member import PASMemberView
from Products.PlonePAS.interfaces.membership import IMembershipTool
from Products.PlonePAS.plugins.ufactory import PloneUser
from Products.PlonePAS.tests import base
from Products.PlonePAS.tests import dummy
from Products.PlonePAS.tools.memberdata import MemberData
from Products.PlonePAS.tools.membership import MembershipTool
from Products.PlonePAS.utils import getGroupsForPrincipal
from cStringIO import StringIO
from plone.app.testing import PLONE_SITE_ID
from plone.app.testing import SITE_OWNER_NAME
from plone.app.testing import TEST_USER_ID
from plone.app.testing import TEST_USER_NAME
from plone.app.testing import TEST_USER_PASSWORD
from zExceptions import BadRequest
import os
class MembershipToolTest(base.TestCase):
def afterSetUp(self):
self.mt = getToolByName(self.portal, 'portal_membership')
self.md = getToolByName(self.portal, 'portal_memberdata')
self.member_id = 'member1'
# Create a new Member
self.mt.addMember(
self.member_id,
'pw',
['Member'],
[],
{'email': 'member1@host.com', 'title': 'Member #1'}
)
def test_get_member(self):
member = self.portal.acl_users.getUserById(self.member_id)
self.assertFalse(member is None)
# Should be wrapped into the PAS.
got = aq_base(aq_parent(member))
expected = aq_base(self.portal.acl_users)
self.assertEqual(got, expected)
self.assertTrue(isinstance(member, PloneUser))
def test_get_member_by_id(self):
# Use tool way of getting member by id. This returns a
# MemberData object wrapped by the member
member = self.mt.getMemberById(self.member_id)
self.assertFalse(member is None)
self.assertTrue(isinstance(member, MemberData))
self.assertTrue(isinstance(aq_parent(member), PloneUser))
def test_id_clean(self):
from Products.PlonePAS.utils import cleanId, decleanId
a = [
"asdfasdf",
"asdf-asdf",
"asdf--asdf",
"asdf---asdf",
"asdf----asdf",
"asdf-----asdf",
"asdf%asdf",
"asdf%%asdf",
"asdf%%%asdf",
"asdf%%%%asdf",
"asdf%%%%%asdf",
"asdf-%asdf",
"asdf%-asdf",
"asdf-%-asdf",
"asdf%-%asdf",
"asdf--%asdf",
"asdf%--asdf",
"asdf--%-asdf",
"asdf-%--asdf",
"asdf--%--asdf",
"asdf%-%asdf",
"asdf%--%asdf",
"asdf%---%asdf",
"-asdf",
"--asdf",
"---asdf",
"----asdf",
"-----asdf",
"asdf-",
"asdf--",
"asdf---",
"asdf----",
"asdf-----",
"%asdf",
"%%asdf",
"%%%asdf",
"%%%%asdf",
"%%%%%asdf",
"asdf%",
"asdf%%",
"asdf%%%",
"asdf%%%%",
"asdf%%%%%",
"asdf\x00asdf",
]
b = [cleanId(id) for id in a]
c = [decleanId(id) for id in b]
ac = zip(a, c)
for aa, cc in ac:
self.assertTrue(aa == cc)
cleaned = cleanId(u'abc')
self.assertEqual(cleaned, 'abc')
self.assertTrue(isinstance(cleaned, str))
self.assertFalse(isinstance(cleaned, unicode))
class MemberAreaTest(base.TestCase):
def afterSetUp(self):
self.mt = getToolByName(self.portal, 'portal_membership')
self.md = getToolByName(self.portal, 'portal_memberdata')
# Enable member-area creation
self.mt.memberareaCreationFlag = 1
# Those are all valid chars in Zope.
self.mid = "Member #1 - Houston, TX. ($100)"
self.pas = self.portal.acl_users
self.loginAsPortalOwner()
def test_funky_member_ids_1(self):
mid = self.mid
minfo = (mid, 'pw', ['Member'], [])
# Create a new User
self.pas._doAddUser(*minfo)
self.mt.createMemberArea, (mid)
def test_funky_member_ids_2(self):
# Forward-slash is not allowed
mid = self.mid + '/'
minfo = (mid, 'pw', ['Member'], [])
# Create a new User
self.pas._doAddUser(*minfo)
self.mt.createMemberArea(mid)
def test_memberareaCreationFlag_respected(self):
self.pas._doAddUser('foo', 'pw', ['Member'], [])
self.pas._doAddUser('bar', 'pw', ['Member'], [])
self.assertFalse('foo' in self.portal.Members)
self.assertFalse('bar' in self.portal.Members)
self.mt.createMemberarea('foo')
self.assertTrue('foo' in self.portal.Members)
self.mt.memberareaCreationFlag = 0
self.mt.createMemberArea('bar')
self.assertFalse('bar' in self.portal.Members)
class TestMembershipTool(base.TestCase, WarningInterceptor):
def afterSetUp(self):
self.membership = self.portal.portal_membership
self.groups = self.portal.portal_groups
self._trap_warning_output()
def test_interface(self):
from zope.interface.verify import verifyClass
verifyClass(IMembershipTool, MembershipTool)
def addMember(self, username, fullname, email, roles, last_login_time):
self.membership.addMember(username, 'secret', roles, [])
member = self.membership.getMemberById(username)
member.setMemberProperties({
'fullname': fullname, 'email': email,
'last_login_time': DateTime(last_login_time), })
def makeRealImage(self):
import Products.PlonePAS as ppas
pas_path = os.path.dirname(ppas.__file__)
path = os.path.join(pas_path, 'tool.gif')
image = open(path, 'rb')
image_upload = dummy.FileUpload(dummy.FieldStorage(image))
return image_upload
def testNoMorePersonalFolder(self):
# .personal folders are history
personal = getattr(self.folder, self.membership.personal_id, None)
self.assertEqual(personal, None)
self.assertEqual(self.membership.getPersonalFolder(TEST_USER_ID), None)
def testGetPersonalFolderIfNoHome(self):
# Should return None as the user has no home folder
members = self.membership.getMembersFolder()
members._delObject(TEST_USER_ID)
self.assertEqual(self.membership.getPersonalFolder(TEST_USER_ID), None)
def testGetPersonalPortrait(self):
# Should return the default portrait
self.assertEqual(
self.membership.getPersonalPortrait(TEST_USER_ID).getId(),
'defaultUser.png')
def testChangeOwnMemberPortrait(self):
# Should change the portrait image
# first we need a valid image
image = self.makeRealImage()
self.membership.changeMemberPortrait(image, TEST_USER_ID)
self.assertEqual(
self.membership.getPersonalPortrait(TEST_USER_ID).getId(),
TEST_USER_ID)
self.assertEqual(
self.membership.getPersonalPortrait(TEST_USER_ID).meta_type,
'Image')
def testChangeOwnMemberPortraitWithEmailUsers(self):
member_id = 'member2@host.com'
self.membership.addMember(
member_id,
'pw',
['Member'],
[],
{'email': 'member2@host.com', 'title': 'Member #2'}
)
self.login(member_id)
image = self.makeRealImage()
safe_member_id = self.membership._getSafeMemberId(member_id)
self.membership.changeMemberPortrait(image, member_id)
self.assertEqual(
self.membership.getPersonalPortrait(member_id).getId(),
safe_member_id)
self.assertEqual(
self.membership.getPersonalPortrait(member_id).meta_type,
'Image')
def testCannotChangeOtherMemberPortrait(self):
# A normal member should not be able to change the portrait of
# another member.
image = self.makeRealImage()
self.membership.addMember('joe', 'secret', ['Member'], [])
self.assertRaises(Unauthorized, self.membership.changeMemberPortrait,
image, 'joe')
def testChangeMemberPortraitAsManager(self):
# Managers should be able to change the portrait of another
# member.
image = self.makeRealImage()
self.membership.addMember('joe', 'secret', ['Member'], [])
self.setRoles(['Manager'])
# This should not raise Unauthorized:
self.membership.changeMemberPortrait(image, 'joe')
self.assertEqual(self.membership.getPersonalPortrait('joe').getId(),
'joe')
self.assertEqual(self.membership.getPersonalPortrait('joe').meta_type,
'Image')
def testDeleteOwnPersonalPortrait(self):
# Should delete the portrait image
image = self.makeRealImage()
self.membership.changeMemberPortrait(image, TEST_USER_ID)
self.assertEqual(
self.membership.getPersonalPortrait(TEST_USER_ID).getId(),
TEST_USER_ID)
self.membership.deletePersonalPortrait(TEST_USER_ID)
self.assertEqual(
self.membership.getPersonalPortrait(TEST_USER_ID).getId(),
'defaultUser.png')
def testCannotDeleteOtherPersonalPortrait(self):
# A normal member should not be able to delete the portrait of
# another member.
image = self.makeRealImage()
self.membership.addMember('joe', 'secret', ['Member'], [])
self.setRoles(['Manager'])
self.membership.changeMemberPortrait(image, 'joe')
self.setRoles(['Member'])
self.assertRaises(Unauthorized, self.membership.deletePersonalPortrait,
'joe')
def testDeleteOtherPersonalPortraitAsManager(self):
# Managers should be able to change the portrait of another
# member.
image = self.makeRealImage()
self.membership.addMember('joe', 'secret', ['Member'], [])
self.setRoles(['Manager'])
self.membership.changeMemberPortrait(image, 'joe')
self.membership.deletePersonalPortrait('joe')
self.assertEqual(
self.membership.getPersonalPortrait('joe').getId(),
'defaultUser.png'
)
def testGetPersonalPortraitWithoutPassingId(self):
# Should return the logged in users portrait if no id is given
image = self.makeRealImage()
self.membership.changeMemberPortrait(image, TEST_USER_ID)
self.assertEqual(self.membership.getPersonalPortrait().getId(),
TEST_USER_ID)
self.assertEqual(self.membership.getPersonalPortrait().meta_type,
'Image')
def testPortraitForNonStandardUserId(self):
# Some characters in a user id can give problems for getting
# or saving a portrait, especially '-', '+', '@'.
image = self.makeRealImage()
user_id = 'bob-jones+test@example.org'
safe_id = self.membership._getSafeMemberId(user_id)
self.assertEqual(safe_id, 'bob--jones-2Btest-40example.org')
self.membership.addMember(user_id, 'secret', ['Member'], [])
self.login(user_id)
# Should return the default portrait
self.assertEqual(
self.membership.getPersonalPortrait(user_id).getId(),
'defaultUser.png')
# Change your own portrait.
self.membership.changeMemberPortrait(image, user_id)
self.assertEqual(self.membership.getPersonalPortrait().getId(),
safe_id)
self.assertEqual(self.membership.getPersonalPortrait().meta_type,
'Image')
# Other users should be able to see your portrait.
self.login(TEST_USER_NAME)
self.assertEqual(
self.membership.getPersonalPortrait(user_id).getId(),
safe_id)
self.assertEqual(
self.membership.getPersonalPortrait(user_id).meta_type,
'Image')
# You can delete your own portrait.
self.login(user_id)
self.membership.deletePersonalPortrait(user_id)
self.assertEqual(
self.membership.getPersonalPortrait(user_id).getId(),
'defaultUser.png')
# Managers should be able to change the portrait of another
# member and delete it.
manager_image = self.makeRealImage()
self.loginAsPortalOwner()
# This should not raise Unauthorized:
self.membership.changeMemberPortrait(manager_image, user_id)
self.assertEqual(self.membership.getPersonalPortrait(user_id).getId(),
safe_id)
self.membership.deletePersonalPortrait(user_id)
self.assertEqual(
self.membership.getPersonalPortrait(user_id).getId(),
'defaultUser.png'
)
def testListMembers(self):
# Should return the members list
members = self.membership.listMembers()
self.assertEqual(len(members), 1)
self.assertEqual(members[0].getId(), TEST_USER_ID)
def testListMembersSkipsGroups(self):
# Should only return real members, not groups
uf = self.portal.acl_users
self.groups.addGroup('Foo')
self.groups.addGroup('Bar')
self.assertEqual(len(uf.getUserNames()), 1)
members = self.membership.listMembers()
self.assertEqual(len(members), 1)
self.assertEqual(members[0].getId(), TEST_USER_ID)
def testListMemberIds(self):
# Should return the members ids list
memberids = self.membership.listMemberIds()
self.assertEqual(len(memberids), 1)
self.assertEqual(memberids[0], TEST_USER_ID)
def testListMemberIdsSkipsGroups(self):
# Should only return real members, not groups
uf = self.portal.acl_users
self.groups.addGroup('Foo')
self.groups.addGroup('Bar')
self.assertEqual(len(uf.getUserNames()), 1)
memberids = self.membership.listMemberIds()
self.assertEqual(len(memberids), 1)
self.assertEqual(memberids[0], TEST_USER_ID)
def testCurrentPassword(self):
# Password checking should work
self.assertTrue(self.membership.testCurrentPassword('secret'))
self.assertFalse(self.membership.testCurrentPassword('geheim'))
def testSetPassword(self):
# Password should be changed
self.membership.setPassword('geheim')
self.assertTrue(self.membership.testCurrentPassword('geheim'))
def testSetPasswordIfAnonymous(self):
# Anonymous should not be able to change password
self.logout()
try:
self.membership.setPassword('geheim')
except BadRequest:
import sys
e, v, tb = sys.exc_info()
del tb
if str(v) == 'Not logged in.':
pass
else:
raise
def testSetPasswordAndKeepGroups(self):
# Password should be changed and user must not change group membership
group2 = 'g2'
groups = self.groups
groups.addGroup(group2, None, [], [])
group = groups.getGroupById(group2)
self.loginAsPortalOwner()
group.addMember(TEST_USER_ID)
self.login(TEST_USER_NAME) # Back to normal
ugroups = self.portal.acl_users.getUserById(TEST_USER_ID).getGroups()
self.membership.setPassword('geheim')
t_groups = self.portal.acl_users.getUserById(TEST_USER_ID).getGroups()
self.assertTrue(t_groups == ugroups)
def testGetMemberById(self):
# This should work for portal users,
self.assertNotEqual(self.membership.getMemberById(TEST_USER_ID), None)
self.assertEqual(self.membership.getMemberById('foo'), None)
self.assertNotEqual(
self.membership.getMemberById(SITE_OWNER_NAME),
None
)
def testGetMemberByIdIsWrapped(self):
member = self.membership.getMemberById(TEST_USER_ID)
self.assertNotEqual(member, None)
self.assertEqual(member.__class__.__name__, 'MemberData')
self.assertEqual(member.aq_parent.__class__.__name__, 'PloneUser')
def testGetAuthenticatedMember(self):
member = self.membership.getAuthenticatedMember()
self.assertEqual(member.getUserName(), TEST_USER_NAME)
def testGetAuthenticatedMemberIsWrapped(self):
member = self.membership.getAuthenticatedMember()
self.assertEqual(member.getUserName(), TEST_USER_NAME)
self.assertEqual(member.__class__.__name__, 'MemberData')
self.assertEqual(member.aq_parent.__class__.__name__, 'PloneUser')
def testGetAuthenticatedMemberIfAnonymous(self):
self.logout()
member = self.membership.getAuthenticatedMember()
self.assertEqual(member.getUserName(), 'Anonymous User')
def testAnonymousMemberIsNotWrapped(self):
# Also see http://dev.plone.org/plone/ticket/1851
self.logout()
member = self.membership.getAuthenticatedMember()
self.assertNotEqual(member.__class__.__name__, 'MemberData')
self.assertEqual(member.__class__.__name__, 'SpecialUser')
def testIsAnonymousUser(self):
self.assertFalse(self.membership.isAnonymousUser())
self.logout()
self.assertTrue(self.membership.isAnonymousUser())
def testWrapUserWrapsBareUser(self):
user = self.portal.acl_users.getUserById(TEST_USER_ID)
# TODO: GRUF users are wrapped
self.assertTrue(hasattr(user, 'aq_base'))
user = aq_base(user)
user = self.membership.wrapUser(user)
self.assertEqual(user.__class__.__name__, 'MemberData')
self.assertEqual(user.aq_parent.__class__.__name__, 'PloneUser')
self.assertEqual(user.aq_parent.aq_parent.__class__.__name__,
'PluggableAuthService')
def testWrapUserWrapsWrappedUser(self):
user = self.portal.acl_users.getUserById(TEST_USER_ID)
# TODO: GRUF users are wrapped
self.assertTrue(hasattr(user, 'aq_base'))
user = self.membership.wrapUser(user)
self.assertEqual(user.__class__.__name__, 'MemberData')
self.assertEqual(user.aq_parent.__class__.__name__, 'PloneUser')
self.assertEqual(user.aq_parent.aq_parent.__class__.__name__,
'PluggableAuthService')
def testWrapUserDoesntWrapMemberData(self):
user = self.portal.acl_users.getUserById(TEST_USER_ID)
user.getMemberId = lambda x: 1
user = self.membership.wrapUser(user)
self.assertEqual(user.__class__.__name__, 'PloneUser')
def testWrapUserDoesntWrapAnonymous(self):
user = self.membership.wrapUser(nobody)
self.assertEqual(user.__class__.__name__, 'SpecialUser')
def testWrapUserWrapsAnonymous(self):
self.assertFalse(hasattr(nobody, 'aq_base'))
user = self.membership.wrapUser(nobody, wrap_anon=1)
self.assertEqual(user.__class__.__name__, 'MemberData')
self.assertEqual(user.aq_parent.__class__.__name__, 'SpecialUser')
self.assertEqual(user.aq_parent.aq_parent.__class__.__name__,
'PluggableAuthService')
def testGetCandidateLocalRoles(self):
self.assertEqual(self.membership.getCandidateLocalRoles(self.folder),
('Owner',))
self.setRoles(['Member', 'Reviewer'])
self.assertEqual(self.membership.getCandidateLocalRoles(self.folder),
('Owner', 'Reviewer'))
def testSetLocalRoles(self):
self.assertTrue(
'Owner' in self.folder.get_local_roles_for_userid(TEST_USER_ID))
self.setRoles(['Member', 'Reviewer'])
self.membership.setLocalRoles(self.folder, [TEST_USER_ID, 'user2'],
'Reviewer')
self.assertEqual(self.folder.get_local_roles_for_userid(TEST_USER_ID),
('Owner', 'Reviewer'))
self.assertEqual(self.folder.get_local_roles_for_userid('user2'),
('Reviewer',))
def testDeleteLocalRoles(self):
self.setRoles(['Member', 'Reviewer'])
self.membership.setLocalRoles(self.folder, ['user2'], 'Reviewer')
self.assertEqual(self.folder.get_local_roles_for_userid('user2'),
('Reviewer',))
self.membership.deleteLocalRoles(self.folder, ['user2'])
self.assertEqual(self.folder.get_local_roles_for_userid('user2'), ())
def testGetHomeFolder(self):
self.assertNotEqual(self.membership.getHomeFolder(), None)
self.assertEqual(self.membership.getHomeFolder('user2'), None)
def testGetHomeUrl(self):
self.assertNotEqual(self.membership.getHomeUrl(), None)
self.assertEqual(self.membership.getHomeUrl('user2'), None)
def testGetAuthenticatedMemberInfo(self):
member = self.membership.getAuthenticatedMember()
member.setMemberProperties({'fullname': 'Test user'})
info = self.membership.getMemberInfo()
self.assertEqual(info['fullname'], 'Test user')
def testGetMemberInfo(self):
self.membership.addMember('user2', 'secret', ['Member'], [],
properties={'fullname': 'Second user'})
info = self.membership.getMemberInfo('user2')
self.assertEqual(info['fullname'], 'Second user')
def testGetMemberInfoWithMissingProperties(self):
self.membership.addMember('user3', 'secret', ['Member'], [],
properties={'fullname': 'Second user'})
self.membership.portal_memberdata._delProperty('location')
self.membership.portal_memberdata._delProperty('home_page')
info = self.membership.getMemberInfo('user3')
self.assertEqual(info['fullname'], 'Second user')
def testGetCandidateLocalRolesIncludesLocalRolesOnObjectForManager(self):
self.folder._addRole('my_test_role')
self.folder.manage_setLocalRoles(TEST_USER_ID,
('Manager', 'Owner'))
roles = self.membership.getCandidateLocalRoles(self.folder)
self.assertTrue('my_test_role' in roles,
'my_test_role not in: %s' % str(roles))
def testGetCandidateLocalRolesIncludesLocalRolesOnObjectForAssignees(self):
self.folder._addRole('my_test_role')
self.folder.manage_setLocalRoles(TEST_USER_ID,
('my_test_role', 'Owner'))
roles = self.membership.getCandidateLocalRoles(self.folder)
self.assertTrue('Owner' in roles)
self.assertTrue('my_test_role' in roles)
self.assertEqual(len(roles), 2)
def testGetCandidateLocalRolesForManager(self):
self.folder._addRole('my_test_role')
self.folder.manage_setLocalRoles(TEST_USER_ID, ('Manager', 'Owner'))
roles = self.membership.getCandidateLocalRoles(self.folder)
self.assertTrue('Manager' in roles)
self.assertTrue('Owner' in roles)
self.assertTrue('Reviewer' in roles)
def testGetCandidateLocalRolesForOwner(self):
self.folder._addRole('my_test_role')
roles = self.membership.getCandidateLocalRoles(self.folder)
self.assertTrue('Owner' in roles)
self.assertEqual(len(roles), 1)
def testGetCandidateLocalRolesForAssigned(self):
self.folder._addRole('my_test_role')
self.folder.manage_setLocalRoles(TEST_USER_ID, ('Reviewer', 'Owner'))
roles = self.membership.getCandidateLocalRoles(self.folder)
self.assertTrue('Owner' in roles)
self.assertTrue('Reviewer' in roles)
self.assertEqual(len(roles), 2)
def test_bug4333_delete_user_remove_memberdata(self):
# delete user should delete portal_memberdata
memberdata = self.portal.portal_memberdata
self.setRoles(['Manager'])
self.addMember('barney', 'Barney Rubble', 'barney@bedrock.com',
['Member'], '2002-01-01')
barney = self.membership.getMemberById('barney')
self.assertEqual(barney.getProperty('email'), 'barney@bedrock.com')
del barney
self.membership.deleteMembers(['barney'])
md = memberdata._members
self.assertFalse('barney' in md)
# There is an _v_ variable that is killed at the end of each request
# which stores a temporary version of the member object, this is
# a problem in this test. In fact, this test does not really
# demonstrate the bug, which is actually caused by the script not
# using the tool.
memberdata._v_temps = None
self.membership.addMember('barney', 'secret', ['Member'], [])
barney = self.membership.getMemberById('barney')
self.assertNotEqual(barney.getProperty('fullname'), 'Barney Rubble')
self.assertNotEqual(barney.getProperty('email'), 'barney@bedrock.com')
def testBogusMemberPortrait(self):
# Should change the portrait image
bad_file = dummy.File(data='This is a lie!!!
',
headers={'content_type': 'image/jpeg'})
self.assertRaises(IOError, self.membership.changeMemberPortrait,
bad_file, TEST_USER_ID)
def testGetBadMembers(self):
# Should list members with bad images
# We should not have any bad images out of the box
self.assertEqual(self.membership.getBadMembers(), [])
# Let's add one
bad_file = Image(
id=TEST_USER_ID,
title='',
file=StringIO('This is a lie!!!
')
)
# Manually set a bad image using private methods
self.portal.portal_memberdata._setPortrait(bad_file, TEST_USER_ID)
self.assertEqual(self.membership.getBadMembers(), [TEST_USER_ID])
# Try an empty image
empty_file = Image(id=TEST_USER_ID, title='', file=StringIO(''))
self.portal.portal_memberdata._setPortrait(empty_file, TEST_USER_ID)
self.assertEqual(self.membership.getBadMembers(), [])
# And a good image
self.membership.changeMemberPortrait(self.makeRealImage(),
TEST_USER_ID)
self.assertEqual(self.membership.getBadMembers(), [])
def beforeTearDown(self):
self._free_warning_output()
class TestCreateMemberarea(base.TestCase):
def afterSetUp(self):
self.membership = self.portal.portal_membership
self.membership.addMember('user2', 'secret', ['Member'], [])
def testCreateMemberarea(self):
# Should create a memberarea for user2
if self.membership.memberareaCreationFlag is True:
self.membership.createMemberarea('user2')
memberfolder = self.membership.getHomeFolder('user2')
self.assertTrue(memberfolder,
'createMemberarea failed to create memberarea')
# member area creation should be on by default
self.assertTrue(self.membership.getMemberareaCreationFlag())
def testCreatMemberareaUsesCurrentUser(self):
if self.membership.memberareaCreationFlag is True:
# Should create a memberarea for user2
self.login('user2')
self.membership.createMemberarea()
memberfolder = self.membership.getHomeFolder('user2')
self.assertTrue(
memberfolder,
'createMemberarea failed to create memberarea for current '
'user'
)
else:
pass
def testNoMemberareaIfNoMembersFolder(self):
# Should not create a memberarea if the Members folder is missing
self.portal._delObject('Members')
self.membership.createMemberarea('user2')
memberfolder = self.membership.getHomeFolder('user2')
self.assertFalse(
memberfolder,
'createMemberarea unexpectedly created a memberarea'
)
def testNoMemberareaIfMemberareaExists(self):
# Should not attempt to create a memberarea if a memberarea already
# exists
self.membership.createMemberarea('user2')
# The second call should do nothing (not cause an error)
self.membership.createMemberarea('user2')
def testNotifyScriptIsCalled(self):
# The notify script should be called
if self.membership.memberareaCreationFlag is True:
self.portal.notifyMemberAreaCreated = dummy.Raiser(dummy.Error)
self.assertRaises(dummy.Error, self.membership.createMemberarea,
'user2')
def testCreateMemberareaAlternateName(self):
# Alternate method name 'createMemberaArea' should work
if self.membership.memberareaCreationFlag is True:
self.membership.createMemberArea('user2')
memberfolder = self.membership.getHomeFolder('user2')
self.assertTrue(memberfolder,
'createMemberArea failed to create memberarea')
def testCreateMemberareaAlternateType(self):
# Should be able to create another type instead of a normal Folder
if self.membership.memberareaCreationFlag is True:
self.membership.setMemberAreaType('Document')
self.membership.createMemberarea('user2')
memberfolder = self.membership.getHomeFolder('user2')
self.assertEqual(memberfolder.getPortalTypeName(), 'Document')
def testCreateMemberareaWhenDisabled(self):
# Should not create a member area
self.membership.setMemberareaCreationFlag = False
self.assertFalse(self.membership.getMemberareaCreationFlag())
self.membership.createMemberarea('user2')
memberfolder = self.membership.getHomeFolder('user2')
self.assertFalse(
memberfolder,
'createMemberarea created memberarea despite flag'
)
class TestMemberareaSetup(base.TestCase):
def afterSetUp(self):
self.membership = self.portal.portal_membership
self.membership.addMember('user2', 'secret', ['Member'], [])
self.membership.createMemberarea('user2')
self.home = self.membership.getHomeFolder('user2')
def testMemberareaIsFolder(self):
if self.membership.memberareaCreationFlag is True:
# Memberarea should be a folder
self.assertEqual(self.home.meta_type, 'ATFolder')
self.assertEqual(self.home.portal_type, 'Folder')
def testMemberareaIsOwnedByMember(self):
if self.membership.memberareaCreationFlag is True:
# Memberarea should be owned by member
try:
owner_info = self.home.getOwnerTuple()
except AttributeError:
owner_info = self.home.getOwner(info=1)
self.assertEqual(owner_info[0], [PLONE_SITE_ID, 'acl_users'])
self.assertEqual(owner_info[1], 'user2')
self.assertEqual(len(self.home.get_local_roles()), 1)
self.assertEqual(self.home.get_local_roles_for_userid('user2'),
('Owner',))
def testMemberareaIsCataloged(self):
if self.membership.memberareaCreationFlag is True:
# Memberarea should be cataloged
catalog = self.portal.portal_catalog
self.assertTrue(catalog(id='user2', Type='Folder', Title="user2"),
"Could not find user2's home folder in the "
"catalog")
def testHomePageNotExists(self):
if self.membership.memberareaCreationFlag is True:
# Should not have an index_html document anymore
self.assertFalse('index_html' in self.home)
class TestSearchForMembers(base.TestCase, WarningInterceptor):
def afterSetUp(self):
self.memberdata = self.portal.portal_memberdata
self.membership = self.portal.portal_membership
# Don't let default_user disturb results
self.portal.acl_users._doDelUsers([TEST_USER_ID])
# Add some members
self.addMember('fred', 'Fred Flintstone',
'fred@bedrock.com', ['Member', 'Reviewer'],
'2002-01-01')
self.addMember('barney', 'Barney Rubble',
'barney@bedrock.com', ['Member'],
'2002-01-01')
self.addMember('brubble', 'Bambam Rubble',
'bambam@bambam.net', ['Member'],
'2003-12-31')
# MUST reset this
self.memberdata._v_temps = None
self._trap_warning_output()
def addMember(self, username, fullname, email, roles, last_login_time):
self.membership.addMember(username, 'secret', roles, [])
member = self.membership.getMemberById(username)
member.setMemberProperties({
'fullname': fullname,
'email': email,
'last_login_time': DateTime(last_login_time), })
def testSearchById(self):
# Should search id and fullname
search = self.membership.searchForMembers
self.assertEqual(len(search(name='brubble')), 0)
self.assertEqual(len(search(name='barney')), 1)
self.assertEqual(len(search(name='rubble')), 2)
def testSearchByName(self):
# Should search id and fullname
search = self.membership.searchForMembers
self.assertEqual(len(search(name='rubble')), 2)
self.assertEqual(len(search(name='stone')), 1)
def testSearchByEmail(self):
search = self.membership.searchForMembers
self.assertEqual(len(search(email='bedrock')), 2)
self.assertEqual(len(search(email='bambam')), 1)
def testSearchByRoles(self):
search = self.membership.searchForMembers
self.assertEqual(len(search(roles=['Member'])), 3)
self.assertEqual(len(search(roles=['Reviewer'])), 1)
def testSearchByNameAndEmail(self):
search = self.membership.searchForMembers
self.assertEqual(len(search(name='rubble', email='bedrock')), 1)
self.assertEqual(len(search(name='bambam', email='bedrock')), 0)
def testSearchByNameAndRoles(self):
search = self.membership.searchForMembers
self.assertEqual(len(search(name='fred', roles=['Reviewer'])), 1)
self.assertEqual(len(search(name='fred', roles=['Manager'])), 0)
def testSearchByEmailAndRoles(self):
search = self.membership.searchForMembers
self.assertEqual(len(search(email='fred', roles=['Reviewer'])), 1)
self.assertEqual(len(search(email='fred', roles=['Manager'])), 0)
def testSearchByRequestObj(self):
search = self.membership.searchForMembers
self.addMember(u'jürgen', u'Jürgen Internationalist',
'juergen@example.com', ['Member'],
'2014-02-03')
self.assertEqual(
len(search(REQUEST=dict(name=u'jürgen'))), 1)
self.assertEqual(
len(search(REQUEST=dict(name='jürgen'))), 1)
def beforeTearDown(self):
self._free_warning_output()
class TestDefaultUserAndPasswordNotChanged(base.TestCase):
# A test for a silly transaction/persistency bug in PlonePAS
def afterSetUp(self):
self.membership = self.portal.portal_membership
def testDefaultUserAndPasswordUnchanged(self):
member = self.membership.getAuthenticatedMember()
self.assertEqual(member.getUserName(), TEST_USER_NAME)
self.assertTrue(
self.membership.testCurrentPassword(TEST_USER_PASSWORD)
)
self.assertFalse(self.membership.testCurrentPassword('geheim'))
class TestMethodProtection(base.TestCase):
# MembershipTool is missing security declarations
# http://dev.plone.org/plone/ticket/5432
_unprotected = (
'changeMemberPortrait',
'deletePersonalPortrait',
'testCurrentPassword',
'searchForMembers',
)
def afterSetUp(self):
self.membership = self.portal.portal_membership
def assertUnprotected(self, object, method):
self.logout()
object.restrictedTraverse(method)
def assertProtected(self, object, method):
self.logout()
self.assertRaises(Unauthorized, object.restrictedTraverse, method)
for method in _unprotected:
exec "def testUnprotected_%s(self):" \
" self.assertProtected(self.membership, '%s')" \
% (method, method)
exec "def testMemberAccessible_%s(self):" \
" self.membership.restrictedTraverse('%s')" % (method, method)
class TestMemberInfoView(base.TestCase):
def afterSetUp(self):
self.membership = self.portal.portal_membership
self.view = PASMemberView(self.portal, self.portal.REQUEST)
def testMemberInfoViewForAuthenticated(self):
member = self.membership.getAuthenticatedMember()
member.setMemberProperties({'fullname': 'Test user'})
info = self.view.info()
self.assertEqual(info['username'], 'test-user')
self.assertEqual(info['fullname'], 'Test user')
self.assertEqual(info['name_or_id'], 'Test user')
def testGetMemberInfoViewForMember(self):
self.membership.addMember('user2', 'secret', ['Member'], [],
properties={'fullname': 'Second user'})
info = self.view.info('user2')
self.assertEqual(info['username'], 'user2')
self.assertEqual(info['fullname'], 'Second user')
self.assertEqual(info['name_or_id'], 'Second user')
def testGetMemberInfoViewForNonMember(self):
# When content is owned by a user who has meanwhile been
# removed, we do not want to throw an exception when asking
# for his member info.
self.assertFalse(self.membership.getMemberById('charon'))
info = self.view.info('charon')
self.assertEqual(info['username'], 'charon')
self.assertEqual(info['fullname'], '')
self.assertEqual(info['name_or_id'], 'charon')
def testGetMemberInfoViewForAnonymous(self):
self.logout()
self.assertTrue(self.membership.isAnonymousUser())
info = self.view.info()
self.assertEqual(info['username'], 'Anonymous User')
self.assertEqual(info['fullname'], '')
self.assertEqual(info['name_or_id'], 'Anonymous User')
def testSetGroupsWithUserNameIdDifference(self):
pas = self.portal['acl_users']
self.portal.portal_groups.addGroup('Editors', [], [])
self.setGroups(['Editors'], name=TEST_USER_ID)
self.login(TEST_USER_NAME)
user = getSecurityManager().getUser()
self.assertTrue(
'Editors' in getGroupsForPrincipal(user, pas['plugins'])
)
self.login()
def testSetGroupsWithSameUserNameAndId(self):
pas = self.portal['acl_users']
self.portal.portal_groups.addGroup('Editors', [], [])
self.setGroups(['Editors'])
user = getSecurityManager().getUser()
self.assertTrue(
'Editors' in getGroupsForPrincipal(user, pas['plugins'])
)