mirror of
https://github.com/ansible/awx.git
synced 2026-07-08 23:08:04 -02:30
remove raw SQL in visible_roles
This commit is contained in:
@@ -4,6 +4,7 @@ from awx.main.access import (
|
||||
RoleAccess,
|
||||
UserAccess,
|
||||
TeamAccess)
|
||||
from awx.main.models import Role
|
||||
|
||||
|
||||
@pytest.mark.django_db
|
||||
@@ -32,3 +33,20 @@ def test_role_access_attach(rando, inventory):
|
||||
inventory.read_role.members.add(rando)
|
||||
access = RoleAccess(rando)
|
||||
assert not access.can_attach(inventory.admin_role, rando, 'members', None)
|
||||
|
||||
|
||||
@pytest.mark.django_db
|
||||
def test_visible_roles(admin_user, system_auditor, rando, organization, project):
|
||||
'''
|
||||
system admin & system auditor fixtures needed to create system roles
|
||||
'''
|
||||
organization.auditor_role.members.add(rando)
|
||||
access = RoleAccess(rando)
|
||||
|
||||
assert rando not in organization.admin_role
|
||||
assert access.can_read(organization.admin_role)
|
||||
assert organization.admin_role in Role.visible_roles(rando)
|
||||
|
||||
assert rando not in project.admin_role
|
||||
assert access.can_read(project.admin_role)
|
||||
assert project.admin_role in Role.visible_roles(rando)
|
||||
|
||||
Reference in New Issue
Block a user