/* * Copyright (C) 2005 Alfresco, Inc. * * Licensed under the Mozilla Public License version 1.1 * with a permitted attribution clause. You may obtain a * copy of the License at * * http://www.alfresco.org/legal/license.txt * * Unless required by applicable law or agreed to in writing, * software distributed under the License is distributed on an * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, * either express or implied. See the License for the specific * language governing permissions and limitations under the * License. */ package org.alfresco.repo.ownable.impl; import javax.transaction.UserTransaction; import junit.framework.TestCase; import org.alfresco.model.ContentModel; import org.alfresco.repo.security.authentication.AuthenticationComponent; import org.alfresco.repo.security.authentication.MutableAuthenticationDao; import org.alfresco.repo.security.permissions.dynamic.OwnerDynamicAuthority; import org.alfresco.service.ServiceRegistry; import org.alfresco.service.cmr.repository.NodeRef; import org.alfresco.service.cmr.repository.NodeService; import org.alfresco.service.cmr.repository.StoreRef; import org.alfresco.service.cmr.security.AccessStatus; import org.alfresco.service.cmr.security.AuthenticationService; import org.alfresco.service.cmr.security.OwnableService; import org.alfresco.service.cmr.security.PermissionService; import org.alfresco.service.transaction.TransactionService; import org.alfresco.util.ApplicationContextHelper; import org.springframework.context.ApplicationContext; public class OwnableServiceTest extends TestCase { private static ApplicationContext ctx = ApplicationContextHelper.getApplicationContext(); private NodeService nodeService; private AuthenticationService authenticationService; private AuthenticationComponent authenticationComponent; private MutableAuthenticationDao authenticationDAO; private OwnableService ownableService; private NodeRef rootNodeRef; private UserTransaction txn; private PermissionService permissionService; private OwnerDynamicAuthority dynamicAuthority; public OwnableServiceTest() { super(); } public OwnableServiceTest(String arg0) { super(arg0); } public void setUp() throws Exception { nodeService = (NodeService) ctx.getBean("nodeService"); authenticationService = (AuthenticationService) ctx.getBean("authenticationService"); authenticationComponent = (AuthenticationComponent) ctx.getBean("authenticationComponent"); ownableService = (OwnableService) ctx.getBean("ownableService"); permissionService = (PermissionService) ctx.getBean("permissionService"); authenticationComponent.setCurrentUser(authenticationComponent.getSystemUserName()); authenticationDAO = (MutableAuthenticationDao) ctx.getBean("alfDaoImpl"); TransactionService transactionService = (TransactionService) ctx.getBean(ServiceRegistry.TRANSACTION_SERVICE.getLocalName()); txn = transactionService.getUserTransaction(); txn.begin(); StoreRef storeRef = nodeService.createStore(StoreRef.PROTOCOL_WORKSPACE, "Test_" + System.currentTimeMillis()); rootNodeRef = nodeService.getRootNode(storeRef); permissionService.setPermission(rootNodeRef, PermissionService.ALL_AUTHORITIES, PermissionService.ADD_CHILDREN, true); if(authenticationDAO.userExists("andy")) { authenticationService.deleteAuthentication("andy"); } authenticationService.createAuthentication("andy", "andy".toCharArray()); dynamicAuthority = new OwnerDynamicAuthority(); dynamicAuthority.setOwnableService(ownableService); authenticationComponent.clearCurrentSecurityContext(); } @Override protected void tearDown() throws Exception { try { authenticationComponent.clearCurrentSecurityContext(); txn.rollback(); } catch (Throwable e) { // don't absorb any exceptions going past } super.tearDown(); } public void testSetup() { assertNotNull(nodeService); assertNotNull(authenticationService); assertNotNull(ownableService); } public void testUnSet() { assertNull(ownableService.getOwner(rootNodeRef)); assertFalse(ownableService.hasOwner(rootNodeRef)); } public void testCMObject() { authenticationService.authenticate("andy", "andy".toCharArray()); NodeRef testNode = nodeService.createNode(rootNodeRef, ContentModel.ASSOC_CHILDREN, ContentModel.TYPE_PERSON, ContentModel.TYPE_CMOBJECT, null).getChildRef(); permissionService.setPermission(rootNodeRef, "andy", PermissionService.TAKE_OWNERSHIP, true); assertEquals("andy", ownableService.getOwner(testNode)); assertTrue(ownableService.hasOwner(testNode)); assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE)); assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE)); assertTrue(dynamicAuthority.hasAuthority(testNode, "andy")); permissionService.setInheritParentPermissions(testNode, false); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.SET_OWNER)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER)); ownableService.setOwner(testNode, "woof"); assertEquals("woof", ownableService.getOwner(testNode)); assertTrue(dynamicAuthority.hasAuthority(testNode, "woof")); assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER)); ownableService.setOwner(testNode, "muppet"); assertEquals("muppet", ownableService.getOwner(testNode)); assertTrue(dynamicAuthority.hasAuthority(testNode, "muppet")); assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER)); ownableService.takeOwnership(testNode); assertEquals("andy", ownableService.getOwner(testNode)); assertTrue(dynamicAuthority.hasAuthority(testNode, "andy")); assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE)); assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.SET_OWNER)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP)); assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER)); } public void testContainer() { authenticationService.authenticate("andy", "andy".toCharArray()); NodeRef testNode = nodeService.createNode(rootNodeRef, ContentModel.ASSOC_CHILDREN, ContentModel.TYPE_PERSON, ContentModel.TYPE_CONTAINER, null).getChildRef(); assertNull(ownableService.getOwner(testNode)); assertFalse(ownableService.hasOwner(testNode)); assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE)); assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE)); assertFalse(dynamicAuthority.hasAuthority(testNode, "andy")); assertFalse(permissionService.hasPermission(testNode, PermissionService.READ) == AccessStatus.ALLOWED); assertFalse(permissionService.hasPermission(testNode, permissionService.getAllPermission()) == AccessStatus.ALLOWED); permissionService.setPermission(rootNodeRef, permissionService.getOwnerAuthority(), permissionService.getAllPermission(), true); ownableService.setOwner(testNode, "muppet"); assertEquals("muppet", ownableService.getOwner(testNode)); ownableService.takeOwnership(testNode); assertEquals("andy", ownableService.getOwner(testNode)); assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE)); assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE)); assertTrue(dynamicAuthority.hasAuthority(testNode, "andy")); assertTrue(permissionService.hasPermission(testNode, PermissionService.READ) == AccessStatus.ALLOWED); assertTrue(permissionService.hasPermission(testNode, permissionService.getAllPermission())== AccessStatus.ALLOWED); } }