mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-07-24 17:32:48 +00:00
.externalToolBuilders
config
source
cpp
java
org
alfresco
example
filesys
jcr
linkvalidation
model
repo
action
admin
attributes
audit
avm
cache
clt
coci
configuration
content
copy
deploy
descriptor
dictionary
domain
exporter
forum
importer
jscript
lock
model
module
node
ownable
impl
OwnableServiceImpl.java
OwnableServiceNOOPImpl.java
OwnableServiceTest.java
policy
processor
remote
rule
search
security
service
template
transaction
version
workflow
sandbox
service
tools
util
apache
queryRegister.dtd
meta-inf
test-resources
web
.classpath
.project
build.xml
4e2300f095
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@5186 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
225 lines
11 KiB
Java
225 lines
11 KiB
Java
/*
|
|
* Copyright (C) 2005-2007 Alfresco Software Limited.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License
|
|
* as published by the Free Software Foundation; either version 2
|
|
* of the License, or (at your option) any later version.
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
* As a special exception to the terms and conditions of version 2.0 of
|
|
* the GPL, you may redistribute this Program in connection with Free/Libre
|
|
* and Open Source Software ("FLOSS") applications as described in Alfresco's
|
|
* FLOSS exception. You should have recieved a copy of the text describing
|
|
* the FLOSS exception, and it is also available here:
|
|
* http://www.alfresco.com/legal/licensing"
|
|
*/
|
|
package org.alfresco.repo.ownable.impl;
|
|
|
|
import javax.transaction.UserTransaction;
|
|
|
|
import junit.framework.TestCase;
|
|
|
|
import org.alfresco.model.ContentModel;
|
|
import org.alfresco.repo.security.authentication.AuthenticationComponent;
|
|
import org.alfresco.repo.security.authentication.MutableAuthenticationDao;
|
|
import org.alfresco.repo.security.permissions.dynamic.OwnerDynamicAuthority;
|
|
import org.alfresco.service.ServiceRegistry;
|
|
import org.alfresco.service.cmr.repository.NodeRef;
|
|
import org.alfresco.service.cmr.repository.NodeService;
|
|
import org.alfresco.service.cmr.repository.StoreRef;
|
|
import org.alfresco.service.cmr.security.AccessStatus;
|
|
import org.alfresco.service.cmr.security.AuthenticationService;
|
|
import org.alfresco.service.cmr.security.OwnableService;
|
|
import org.alfresco.service.cmr.security.PermissionService;
|
|
import org.alfresco.service.transaction.TransactionService;
|
|
import org.alfresco.util.ApplicationContextHelper;
|
|
import org.springframework.context.ApplicationContext;
|
|
|
|
public class OwnableServiceTest extends TestCase
|
|
{
|
|
private static ApplicationContext ctx = ApplicationContextHelper.getApplicationContext();
|
|
|
|
private NodeService nodeService;
|
|
|
|
private AuthenticationService authenticationService;
|
|
|
|
private AuthenticationComponent authenticationComponent;
|
|
|
|
private MutableAuthenticationDao authenticationDAO;
|
|
|
|
private OwnableService ownableService;
|
|
|
|
private NodeRef rootNodeRef;
|
|
|
|
private UserTransaction txn;
|
|
|
|
private PermissionService permissionService;
|
|
|
|
private OwnerDynamicAuthority dynamicAuthority;
|
|
|
|
public OwnableServiceTest()
|
|
{
|
|
super();
|
|
}
|
|
|
|
public OwnableServiceTest(String arg0)
|
|
{
|
|
super(arg0);
|
|
}
|
|
|
|
public void setUp() throws Exception
|
|
{
|
|
nodeService = (NodeService) ctx.getBean("nodeService");
|
|
authenticationService = (AuthenticationService) ctx.getBean("authenticationService");
|
|
authenticationComponent = (AuthenticationComponent) ctx.getBean("authenticationComponent");
|
|
ownableService = (OwnableService) ctx.getBean("ownableService");
|
|
permissionService = (PermissionService) ctx.getBean("permissionService");
|
|
|
|
authenticationComponent.setCurrentUser(authenticationComponent.getSystemUserName());
|
|
authenticationDAO = (MutableAuthenticationDao) ctx.getBean("alfDaoImpl");
|
|
|
|
|
|
TransactionService transactionService = (TransactionService) ctx.getBean(ServiceRegistry.TRANSACTION_SERVICE.getLocalName());
|
|
txn = transactionService.getUserTransaction();
|
|
txn.begin();
|
|
|
|
StoreRef storeRef = nodeService.createStore(StoreRef.PROTOCOL_WORKSPACE, "Test_" + System.currentTimeMillis());
|
|
rootNodeRef = nodeService.getRootNode(storeRef);
|
|
permissionService.setPermission(rootNodeRef, PermissionService.ALL_AUTHORITIES, PermissionService.ADD_CHILDREN, true);
|
|
|
|
if(authenticationDAO.userExists("andy"))
|
|
{
|
|
authenticationService.deleteAuthentication("andy");
|
|
}
|
|
authenticationService.createAuthentication("andy", "andy".toCharArray());
|
|
|
|
dynamicAuthority = new OwnerDynamicAuthority();
|
|
dynamicAuthority.setOwnableService(ownableService);
|
|
|
|
authenticationComponent.clearCurrentSecurityContext();
|
|
}
|
|
|
|
@Override
|
|
protected void tearDown() throws Exception
|
|
{
|
|
try
|
|
{
|
|
authenticationComponent.clearCurrentSecurityContext();
|
|
txn.rollback();
|
|
}
|
|
catch (Throwable e)
|
|
{
|
|
// don't absorb any exceptions going past
|
|
}
|
|
super.tearDown();
|
|
}
|
|
|
|
public void testSetup()
|
|
{
|
|
assertNotNull(nodeService);
|
|
assertNotNull(authenticationService);
|
|
assertNotNull(ownableService);
|
|
}
|
|
|
|
public void testUnSet()
|
|
{
|
|
assertNull(ownableService.getOwner(rootNodeRef));
|
|
assertFalse(ownableService.hasOwner(rootNodeRef));
|
|
}
|
|
|
|
public void testCMObject()
|
|
{
|
|
authenticationService.authenticate("andy", "andy".toCharArray());
|
|
NodeRef testNode = nodeService.createNode(rootNodeRef, ContentModel.ASSOC_CHILDREN, ContentModel.TYPE_PERSON, ContentModel.TYPE_CMOBJECT, null).getChildRef();
|
|
permissionService.setPermission(rootNodeRef, "andy", PermissionService.TAKE_OWNERSHIP, true);
|
|
assertEquals("andy", ownableService.getOwner(testNode));
|
|
assertTrue(ownableService.hasOwner(testNode));
|
|
assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE));
|
|
assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE));
|
|
assertTrue(dynamicAuthority.hasAuthority(testNode, "andy"));
|
|
|
|
permissionService.setInheritParentPermissions(testNode, false);
|
|
|
|
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(rootNodeRef, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(rootNodeRef, PermissionService.SET_OWNER));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER));
|
|
|
|
permissionService.setPermission(rootNodeRef, "andy", PermissionService.WRITE_PROPERTIES, true);
|
|
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.SET_OWNER));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER));
|
|
|
|
|
|
|
|
ownableService.setOwner(testNode, "woof");
|
|
assertEquals("woof", ownableService.getOwner(testNode));
|
|
assertTrue(dynamicAuthority.hasAuthority(testNode, "woof"));
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER));
|
|
|
|
|
|
ownableService.setOwner(testNode, "muppet");
|
|
assertEquals("muppet", ownableService.getOwner(testNode));
|
|
assertTrue(dynamicAuthority.hasAuthority(testNode, "muppet"));
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.DENIED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER));
|
|
|
|
|
|
ownableService.takeOwnership(testNode);
|
|
assertEquals("andy", ownableService.getOwner(testNode));
|
|
assertTrue(dynamicAuthority.hasAuthority(testNode, "andy"));
|
|
assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE));
|
|
assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE));
|
|
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(rootNodeRef, PermissionService.SET_OWNER));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.TAKE_OWNERSHIP));
|
|
assertEquals(AccessStatus.ALLOWED, permissionService.hasPermission(testNode, PermissionService.SET_OWNER));
|
|
|
|
|
|
}
|
|
|
|
public void testContainer()
|
|
{
|
|
authenticationService.authenticate("andy", "andy".toCharArray());
|
|
NodeRef testNode = nodeService.createNode(rootNodeRef, ContentModel.ASSOC_CHILDREN, ContentModel.TYPE_PERSON, ContentModel.TYPE_CONTAINER, null).getChildRef();
|
|
assertNull(ownableService.getOwner(testNode));
|
|
assertFalse(ownableService.hasOwner(testNode));
|
|
assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE));
|
|
assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE));
|
|
assertFalse(dynamicAuthority.hasAuthority(testNode, "andy"));
|
|
|
|
assertFalse(permissionService.hasPermission(testNode, PermissionService.READ) == AccessStatus.ALLOWED);
|
|
assertFalse(permissionService.hasPermission(testNode, permissionService.getAllPermission()) == AccessStatus.ALLOWED);
|
|
|
|
permissionService.setPermission(rootNodeRef, permissionService.getOwnerAuthority(), permissionService.getAllPermission(), true);
|
|
|
|
ownableService.setOwner(testNode, "muppet");
|
|
assertEquals("muppet", ownableService.getOwner(testNode));
|
|
ownableService.takeOwnership(testNode);
|
|
assertEquals("andy", ownableService.getOwner(testNode));
|
|
assertFalse(nodeService.hasAspect(testNode, ContentModel.ASPECT_AUDITABLE));
|
|
assertTrue(nodeService.hasAspect(testNode, ContentModel.ASPECT_OWNABLE));
|
|
assertTrue(dynamicAuthority.hasAuthority(testNode, "andy"));
|
|
|
|
assertTrue(permissionService.hasPermission(testNode, PermissionService.READ) == AccessStatus.ALLOWED);
|
|
assertTrue(permissionService.hasPermission(testNode, permissionService.getAllPermission())== AccessStatus.ALLOWED);
|
|
|
|
|
|
}
|
|
|
|
}
|