mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-10-01 14:41:46 +00:00
RM-804: Should a user granted Site Manager role be able to delete the Records Management site?
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/modules/recordsmanagement/HEAD@56405 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
This commit is contained in:
Roy Wetherall
@@ -23,6 +23,7 @@ import org.alfresco.module.org_alfresco_module_rm.test.issue.RM1027Test;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.issue.RM1030Test;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.issue.RM1039Test;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.issue.RM452Test;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.issue.RM804Test;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.issue.RM994Test;
|
||||
import org.junit.runner.RunWith;
|
||||
import org.junit.runners.Suite;
|
||||
@@ -42,7 +43,8 @@ import org.junit.runners.Suite.SuiteClasses;
|
||||
RM1008Test.class,
|
||||
RM1030Test.class,
|
||||
RM1027Test.class,
|
||||
RM1039Test.class
|
||||
RM1039Test.class,
|
||||
RM804Test.class
|
||||
})
|
||||
public class IssueTestSuite
|
||||
{
|
||||
|
||||
@@ -0,0 +1,189 @@
|
||||
/*
|
||||
* Copyright (C) 2005-2013 Alfresco Software Limited.
|
||||
*
|
||||
* This file is part of Alfresco
|
||||
*
|
||||
* Alfresco is free software: you can redistribute it and/or modify
|
||||
* it under the terms of the GNU Lesser General Public License as published by
|
||||
* the Free Software Foundation, either version 3 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* Alfresco is distributed in the hope that it will be useful,
|
||||
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||
* GNU Lesser General Public License for more details.
|
||||
*
|
||||
* You should have received a copy of the GNU Lesser General Public License
|
||||
* along with Alfresco. If not, see <http://www.gnu.org/licenses/>.
|
||||
*/
|
||||
package org.alfresco.module.org_alfresco_module_rm.test.issue;
|
||||
|
||||
import org.alfresco.error.AlfrescoRuntimeException;
|
||||
import org.alfresco.module.org_alfresco_module_rm.test.util.BaseRMTestCase;
|
||||
import org.alfresco.service.cmr.security.AccessStatus;
|
||||
import org.alfresco.service.cmr.site.SiteRole;
|
||||
|
||||
|
||||
/**
|
||||
* Unit test for RM-804 .. site managers are able to delete file plans
|
||||
*
|
||||
* @author Roy Wetherall
|
||||
* @since 2.1
|
||||
*/
|
||||
public class RM804Test extends BaseRMTestCase
|
||||
{
|
||||
@Override
|
||||
protected void initServices()
|
||||
{
|
||||
super.initServices();
|
||||
}
|
||||
|
||||
@Override
|
||||
protected boolean isCollaborationSiteTest()
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
@Override
|
||||
protected boolean isUserTest()
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public void testUsersHaveDeletePermissionsOnFilePlan() throws Exception
|
||||
{
|
||||
// as rmuser
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
assertEquals(AccessStatus.ALLOWED, capabilityService.getCapabilityAccessState(filePlan, "Delete"));
|
||||
|
||||
return null;
|
||||
}
|
||||
}, "rmadmin");
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
assertEquals(AccessStatus.ALLOWED, capabilityService.getCapabilityAccessState(filePlan, "Delete"));
|
||||
|
||||
return null;
|
||||
}
|
||||
}, "admin");
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
assertEquals(AccessStatus.ALLOWED, capabilityService.getCapabilityAccessState(filePlan, "Delete"));
|
||||
|
||||
return null;
|
||||
}
|
||||
}, rmAdminName);
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
assertEquals(AccessStatus.DENIED, capabilityService.getCapabilityAccessState(filePlan, "Delete"));
|
||||
|
||||
return null;
|
||||
}
|
||||
}, rmUserName);
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
assertEquals(AccessStatus.DENIED, capabilityService.getCapabilityAccessState(filePlan, "Delete"));
|
||||
|
||||
return null;
|
||||
}
|
||||
}, userName);
|
||||
}
|
||||
|
||||
public void testTryAndDeleteSiteAsSiteManagerOnly()
|
||||
{
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
siteService.setMembership(siteId, userName, SiteRole.SiteManager.toString());
|
||||
|
||||
return null;
|
||||
}
|
||||
}, "admin");
|
||||
|
||||
doTestInTransaction(new FailureTest
|
||||
(
|
||||
"Should not be able to delete site as a site manager only.",
|
||||
AlfrescoRuntimeException.class
|
||||
)
|
||||
{
|
||||
@Override
|
||||
public void run() throws Exception
|
||||
{
|
||||
siteService.deleteSite(siteId);
|
||||
|
||||
}
|
||||
}, userName);
|
||||
|
||||
// give the user a RM role (but not sufficient to delete the file plan node ref)
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
filePlanRoleService.assignRoleToAuthority(filePlan, ROLE_NAME_USER, userName);
|
||||
|
||||
return null;
|
||||
}
|
||||
}, "admin");
|
||||
|
||||
doTestInTransaction(new FailureTest
|
||||
(
|
||||
"Should not be able to delete site as a site manager with an RM role that doesn't have the capability.",
|
||||
AlfrescoRuntimeException.class
|
||||
)
|
||||
{
|
||||
@Override
|
||||
public void run() throws Exception
|
||||
{
|
||||
siteService.deleteSite(siteId);
|
||||
|
||||
}
|
||||
}, userName);
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
filePlanRoleService.assignRoleToAuthority(filePlan, ROLE_NAME_ADMINISTRATOR, userName);
|
||||
|
||||
return null;
|
||||
}
|
||||
}, "admin");
|
||||
|
||||
doTestInTransaction(new Test<Void>()
|
||||
{
|
||||
@Override
|
||||
public Void run()
|
||||
{
|
||||
siteService.deleteSite(siteId);
|
||||
|
||||
return null;
|
||||
}
|
||||
}, userName);
|
||||
|
||||
}
|
||||
|
||||
}
|
||||
@@ -406,20 +406,29 @@ public abstract class BaseRMTestCase extends RetryingTransactionHelperTestCase
|
||||
filter.disableBehaviour();
|
||||
try
|
||||
{
|
||||
Set<NodeRef> holds = freezeService.getHolds(filePlan);
|
||||
for (NodeRef hold : holds)
|
||||
if (nodeService.exists(filePlan) == true)
|
||||
{
|
||||
freezeService.relinquish(hold);
|
||||
Set<NodeRef> holds = freezeService.getHolds(filePlan);
|
||||
for (NodeRef hold : holds)
|
||||
{
|
||||
freezeService.relinquish(hold);
|
||||
}
|
||||
}
|
||||
|
||||
// Delete the folder
|
||||
nodeService.deleteNode(folder);
|
||||
|
||||
// Delete the site
|
||||
siteService.deleteSite(siteId);
|
||||
if (nodeService.exists(folder) == true)
|
||||
{
|
||||
// Delete the folder
|
||||
nodeService.deleteNode(folder);
|
||||
}
|
||||
|
||||
if (siteService.getSite(siteId) != null)
|
||||
{
|
||||
// Delete the site
|
||||
siteService.deleteSite(siteId);
|
||||
}
|
||||
|
||||
// delete the collaboration site (if required)
|
||||
if (isCollaborationSiteTest() == true)
|
||||
if (isCollaborationSiteTest() == true && siteService.getSite(COLLABORATION_SITE_ID) != null)
|
||||
{
|
||||
siteService.deleteSite(COLLABORATION_SITE_ID);
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user