External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-02-26 15:36:04 -03:30
Code Issues Packages Projects Releases Wiki Activity

Delay inputs comparision to after field validation

Browse Source
This commit is contained in:
AlanCoding
2019-11-14 11:10:22 -05:00
parent 755ffc9844
commit 1c74773eac
2 changed files with 34 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
awx/api/serializers.py
View File

@@ -2456,12 +2456,18 @@ class CredentialTypeSerializer(BaseSerializer):
raise PermissionDenied( raise PermissionDenied(
detail=_("Modifications not allowed for managed credential types") detail=_("Modifications not allowed for managed credential types")
) )
old_inputs = {}
if self.instance:
old_inputs = copy.deepcopy(self.instance.inputs)
ret = super(CredentialTypeSerializer, self).validate(attrs)
if self.instance and self.instance.credentials.exists(): if self.instance and self.instance.credentials.exists():
if 'inputs' in attrs and attrs['inputs'] != self.instance.inputs: if 'inputs' in attrs and old_inputs != self.instance.inputs:
raise PermissionDenied( raise PermissionDenied(
detail= _("Modifications to inputs are not allowed for credential types that are in use") detail= _("Modifications to inputs are not allowed for credential types that are in use")
) )
ret = super(CredentialTypeSerializer, self).validate(attrs)
if 'kind' in attrs and attrs['kind'] not in ('cloud', 'net'): if 'kind' in attrs and attrs['kind'] not in ('cloud', 'net'):
raise serializers.ValidationError({ raise serializers.ValidationError({

31
awx/main/tests/functional/api/test_credential_type.py
View File

@@ -85,14 +85,35 @@ def test_update_credential_type_in_use_xfail(patch, delete, admin):
Credential(credential_type=_type, name='My Custom Cred').save() Credential(credential_type=_type, name='My Custom Cred').save()
url = reverse('api:credential_type_detail', kwargs={'pk': _type.pk}) url = reverse('api:credential_type_detail', kwargs={'pk': _type.pk})
response = patch(url, {'name': 'Some Other Name'}, admin) patch(url, {'name': 'Some Other Name'}, admin, expect=200)
assert response.status_code == 200
url = reverse('api:credential_type_detail', kwargs={'pk': _type.pk}) url = reverse('api:credential_type_detail', kwargs={'pk': _type.pk})
response = patch(url, {'inputs': {}}, admin) response = patch(url, {'inputs': {}}, admin, expect=403)
assert response.status_code == 403 assert response.data['detail'] == 'Modifications to inputs are not allowed for credential types that are in use'
assert delete(url, admin).status_code == 403 response = delete(url, admin, expect=403)
assert response.data['detail'] == 'Credential types that are in use cannot be deleted'
@pytest.mark.django_db
def test_update_credential_type_unvalidated_inputs(post, patch, admin):
simple_inputs = {'fields': [
{'id': 'api_token', 'label': 'fooo'}
]}
response = post(
url=reverse('api:credential_type_list'),
data={'name': 'foo', 'kind': 'cloud', 'inputs': simple_inputs},
user=admin,
expect=201
)
# validation adds the type field to the input
_type = CredentialType.objects.get(pk=response.data['id'])
Credential(credential_type=_type, name='My Custom Cred').save()
# should not raise an error because we should only compare
# post-validation values to other post-validation values
url = reverse('api:credential_type_detail', kwargs={'pk': _type.id})
patch(url, {'inputs': simple_inputs}, admin, expect=200)
@pytest.mark.django_db @pytest.mark.django_db