From 3ef9baaa8b8f2615519da3ef281c602c30db72a2 Mon Sep 17 00:00:00 2001 From: Wayne Witzel III Date: Tue, 9 Feb 2016 10:28:03 -0500 Subject: [PATCH] added OrganizationAccess tests --- .../functional/test_rbac_organization.py | 28 +++++++++++++++++-- 1 file changed, 25 insertions(+), 3 deletions(-) diff --git a/awx/main/tests/functional/test_rbac_organization.py b/awx/main/tests/functional/test_rbac_organization.py index 67422208aa..b9ba96c4c6 100644 --- a/awx/main/tests/functional/test_rbac_organization.py +++ b/awx/main/tests/functional/test_rbac_organization.py @@ -32,17 +32,39 @@ def test_organization_migration_user(organization, permissions, user): @pytest.mark.django_db def test_organization_access_superuser(organization, user): access = OrganizationAccess(user('admin', True)) + organization.users.add(user('user', False)) + assert access.can_change(organization, None) + assert access.can_delete(organization) + + org = access.get_queryset()[0] + assert len(org.admins.all()) == 0 + assert len(org.users.all()) == 1 + @pytest.mark.django_db def test_organization_access_admin(organization, user): - u = user('admin', False) - organization.admins.add(u) + '''can_change because I am an admin of that org''' + a = user('admin', False) + organization.admins.add(a) + organization.users.add(user('user', False)) - access = OrganizationAccess(u) + access = OrganizationAccess(a) assert access.can_change(organization, None) + assert access.can_delete(organization) + + org = access.get_queryset()[0] + assert len(org.admins.all()) == 1 + assert len(org.users.all()) == 1 @pytest.mark.django_db def test_organization_access_user(organization, user): access = OrganizationAccess(user('user', False)) + organization.users.add(user('user', False)) + assert not access.can_change(organization, None) + assert not access.can_delete(organization) + + org = access.get_queryset()[0] + assert len(org.admins.all()) == 0 + assert len(org.users.all()) == 1