From 763b9971e0746df607ba429652bb70b599816153 Mon Sep 17 00:00:00 2001 From: shiyueLongguikeji Date: Sat, 28 Dec 2019 11:25:07 +0800 Subject: [PATCH 1/2] =?UTF-8?q?improvement(test=20manager/user=20vision/pe?= =?UTF-8?q?rms):=20=E6=B5=8B=E8=AF=95=E7=94=A8=E6=88=B7=E5=8F=AF=E8=A7=81?= =?UTF-8?q?=E6=80=A7=E5=8F=8A=E6=9D=83=E9=99=90?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- executer/core.py | 4 +- test/tests/test_data.py | 2 +- test/tests/test_manager_view.py | 503 +++++++++++++++++++++++++ test/tests/test_normal_user_view.py | 545 ++++++++++++++++++++++++++++ test/utils/test_data_manager.py | 9 +- 5 files changed, 1056 insertions(+), 7 deletions(-) create mode 100644 test/tests/test_manager_view.py create mode 100644 test/tests/test_normal_user_view.py diff --git a/executer/core.py b/executer/core.py index 3fc91adfd..a180335b0 100644 --- a/executer/core.py +++ b/executer/core.py @@ -381,10 +381,10 @@ def func(self, *args, fcn=func_name, **kwargs): def single_cli_factory(executer_cls): ''' - gen CLI class with single executer + gen CLI class with single executer 可运行executer内的非标准接口 ''' - class CLI_CLASS(cli_factory([executer_cls])): # pylint: disable=abstract-method + class CLI_CLASS(cli_factory([executer_cls])): # pylint: disable=abstract-method, invalid-name, missing-class-docstring def __getattribute__(self, name): try: return super().__getattribute__(name) diff --git a/test/tests/test_data.py b/test/tests/test_data.py index e9176fce2..7091c617b 100644 --- a/test/tests/test_data.py +++ b/test/tests/test_data.py @@ -83,4 +83,4 @@ def test_data_users(self): res2 = client.get(reverse('siteapi:user_list')) usernames = [i['user']['username'] for i in res2.json()['results']] expect = [str(j) for j in range(13899990001, 13899990011)] - self.assertEqual(usernames, expect) + self.assertEqual(usernames[:10], expect) diff --git a/test/tests/test_manager_view.py b/test/tests/test_manager_view.py new file mode 100644 index 000000000..5e39a4d81 --- /dev/null +++ b/test/tests/test_manager_view.py @@ -0,0 +1,503 @@ +# pylint: disable=missing-docstring, too-many-lines +''' +test for api about node +''' +from django.urls import reverse +from rest_framework.status import HTTP_200_OK, HTTP_201_CREATED, HTTP_403_FORBIDDEN, HTTP_404_NOT_FOUND +from siteapi.v1.tests import TestCase +from oneid_meta.models import ( + User, ) + +NEW_DEPT = { + "node_uid": "", + "name": "111", + "node_scope": [], + "user_scope": [], + "manager_group": { + "nodes": [], + "users": [], + "perms": [], + "apps": [], + "scope_subject": 1 + }, + "users": [] +} + +NEW_APP = {"name": "1111", "auth_protocols": [], "index": ""} + +NEW_TOP_LEVEL_DEPT = { + "node_uid": "", + "name": "新建顶层部门", + "node_scope": [], + "user_scope": [], + "manager_group": { + "nodes": [], + "users": [], + "perms": [], + "apps": [], + "scope_subject": 1 + }, + "users": [] +} + +NEW_USER = { + "user": { + "avatar": + "", + "email": + "", + "employee_number": + "", + "gender": + 0, + "mobile": + "12312312344", + "name": + "dafdafdsaf", + "position": + "", + "private_email": + "", + "username": + "fdsafdsagrda", + "depts": + '', + "roles": + '', + "nodes": [{ + "node_uid": "d_bumenyiyi", + "name": "部门一(一)", + "node_scope": [], + "user_scope": [], + "users": ["13899990006"] + }], + "is_settled": + 'false', + "password": + "", + "require_reset_password": + 'false', + "has_password": + 'false' + }, + "node_uids": ["d_bumenyiyi"] +} + + +class GroupManagerViewTestCase(TestCase): + def test_manager_one_perm_view(self): + ''' + 测试用户 13899990001(部门一admin)设定权限: + 1.管理范围:所在分组及下级分组(部门一及下属) + 2.应用权限:应用二 + 3.基础权限:无 + ''' + manager_one = User.objects.filter(username='13899990001').first() + client = self.login_as(manager_one) + + # 可见部门一及下属部门 + res = client.get(reverse('siteapi:node_tree', args=('d_root', ))) + res = res.json() + expect = ['部门一(一)', '部门一(二)', '部门一(三)', '部门一(四)', '部门一(五)'] + self.assertEqual(expect, [node['info']['name'] for node in res['nodes'][0]['nodes']]) + + # 可编辑应用二 + res_edit_app_yinyonger = client.patch(reverse('siteapi:app_detail', args=('yingyonger', )), + data={'name': '应用二'}) + self.assertEqual(res_edit_app_yinyonger.status_code, HTTP_200_OK) + + # 分组管理可查看节点范围:部门一及其下属 + res_view_phonebook = client.get(reverse('siteapi:node_tree', args=('d_root', ))) + expect = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门' + }, + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'nodes': [ + { + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 8, + 'node_uid': 'd_bumenyier', + 'node_subject': 'dept', + 'uid': 'bumenyier', + 'name': '部门一(二)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 9, + 'node_uid': 'd_bumenyisan', + 'node_subject': 'dept', + 'uid': 'bumenyisan', + 'name': '部门一(三)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 10, + 'node_uid': 'd_bumenyisi', + 'node_subject': 'dept', + 'uid': 'bumenyisi', + 'name': '部门一(四)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 11, + 'node_uid': 'd_bumenyiwu', + 'node_subject': 'dept', + 'uid': 'bumenyiwu', + 'name': '部门一(五)', + 'remark': '' + }, + 'nodes': [] + }, + ] + }] + } + self.assertEqual(res_view_phonebook.status_code, HTTP_200_OK) + self.assertEqual(expect, res_view_phonebook.json()) + + # 测试部门一admin可见应用范围,可管理应用二 + res = client.get(reverse('siteapi:app_list')) + res = res.json() + self.assertEqual(res['results'][0]['uid'], 'yingyonger') + self.assertEqual(res['count'], 1) + + # 不可查看非权限内用户信息 + res_view_user = client.get(reverse('siteapi:ucenter_user_detail', args=('138999900020', ))) + self.assertEqual(res_view_user.status_code, HTTP_404_NOT_FOUND) + + # 不可创建用户 + res = client.json_post(reverse('siteapi:user_list'), data=NEW_USER) + self.assertEqual(res.status_code, HTTP_403_FORBIDDEN) + + # 不可编辑部门 + res_edit_dept = client.json_patch(reverse('siteapi:node_child_node', args=('d_root', ))) + self.assertEqual(res_edit_dept.status_code, HTTP_403_FORBIDDEN) + + # 不可编辑分组 + res_edit_node = client.json_patch(reverse('siteapi:node_child_node', args=('g_manager', ))) + self.assertEqual(res_edit_node.status_code, HTTP_403_FORBIDDEN) + + # 不可查看日志 + res_see_log = client.json_patch(reverse('siteapi:log_list')) + self.assertEqual(res_see_log.status_code, HTTP_403_FORBIDDEN) + + # 不可编辑配置 + res_edit_config = client.json_patch(reverse('siteapi:config')) + self.assertEqual(res_edit_config.status_code, HTTP_403_FORBIDDEN) + + def test_group_manager_two_views(self): + ''' + 测试用户 13899990002(部门二admin)可见性 + 管理范围:部门一、部门二 + 其他权限:账号同步、创建应用、创建大类、公司配置、查看日志、创建用户 + 应用权限:应用一到十 + ''' + group_manager_two = User.objects.filter(username='13899990002').first() + client = self.login_as(group_manager_two) + + # 可创建应用 + res = client.json_post(reverse('siteapi:app_list'), data=NEW_APP) + self.assertEqual(res.status_code, HTTP_201_CREATED) + + # 可查看日志 + res = client.get(reverse('siteapi:log_list')) + self.assertEqual(res.status_code, HTTP_200_OK) + + # 可查看/修改公司配置 + res = client.get(reverse('siteapi:config')) + self.assertEqual(res.status_code, HTTP_200_OK) + + # 可添加下级部门 + res = client.json_post(reverse('siteapi:node_child_node', args=('d_bumenyi', )), data=NEW_DEPT) + self.assertEqual(res.status_code, HTTP_201_CREATED) + + # 可编辑用户信息 + patch_user_data = { + "avatar": "", + "email": "", + "employee_number": "", + "gender": 0, + "mobile": "13899990006", + "name": "部门一一user", + "position": "", + "private_email": "", + "username": "13899990006", + "depts": '', + "roles": '', + "nodes": [{ + "node_uid": "d_bumenyiyi", + "name": "部门一(一)", + "node_scope": [], + "user_scope": [], + "users": [] + }], + "is_settled": 'true', + "require_reset_password": 'false', + "has_password": 'true' + } + res = client.json_patch(reverse('siteapi:user_detail', args=('13899990006', )), data=patch_user_data) + self.assertEqual(res.status_code, HTTP_200_OK) + + # 不可添加顶层部门 + res = client.json_post(reverse('siteapi:node_child_node', args=('d_root', )), data=NEW_TOP_LEVEL_DEPT) + self.assertEqual(res.status_code, HTTP_403_FORBIDDEN) + + def test_group_manager_three_view(self): + ''' + 部门三管理员(13899990003)权限: + 第一组权限:管理范围:部门一,角色三, 账号-部门二admin(13899990002)| 权限:账号同步、创建应用、创建大类 + 第二组权限:管理范围:部门一 | 权限:公司配置、查看日志、创建用户 + 编辑应用:应用一至十 + ''' + group_manager_three = User.objects.filter(username='13899990003').first() + client = self.login_as(group_manager_three) + + # 分组管理-部门选项卡,可见部门一 + res_view_phonebook = client.get(reverse('siteapi:node_tree', args=('d_root', ))) + expect = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门' + }, + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'nodes': [ + { + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 8, + 'node_uid': 'd_bumenyier', + 'node_subject': 'dept', + 'uid': 'bumenyier', + 'name': '部门一(二)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 9, + 'node_uid': 'd_bumenyisan', + 'node_subject': 'dept', + 'uid': 'bumenyisan', + 'name': '部门一(三)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 10, + 'node_uid': 'd_bumenyisi', + 'node_subject': 'dept', + 'uid': 'bumenyisi', + 'name': '部门一(四)', + 'remark': '' + }, + 'nodes': [] + }, + { + 'info': { + 'dept_id': 11, + 'node_uid': 'd_bumenyiwu', + 'node_subject': 'dept', + 'uid': 'bumenyiwu', + 'name': '部门一(五)', + 'remark': '' + }, + 'nodes': [] + }, + ] + }] + } + self.assertEqual(expect, res_view_phonebook.json()) + + # 分组管理-角色选项卡,仅可见角色组三 + res = client.get(reverse('siteapi:node_tree', args=('g_role', ))) + expect = { + 'info': { + 'group_id': 5, + 'node_uid': 'g_role', + 'node_subject': 'role', + 'uid': 'role', + 'name': '角色' + }, + 'nodes': [{ + 'info': { + 'group_id': 14, + 'node_uid': 'g_juesesan', + 'node_subject': 'role', + 'uid': 'juesesan', + 'name': '角色三', + 'remark': '', + 'accept_user': True + }, + 'nodes': [{ + 'info': { + 'group_id': 27, + 'node_uid': 'g_juesesanyi', + 'node_subject': 'role', + 'uid': 'juesesanyi', + 'name': '角色三(一)', + 'remark': '', + 'accept_user': True + }, + 'nodes': [] + }] + }] + } + self.assertEqual(res.json(), expect) + + # 可在角色三(一)分组下创建用户 + post_user_data = { + "user": { + "avatar": "", + "email": "", + "employee_number": "", + "gender": 0, + "mobile": "12341231234", + "name": "1234", + "position": "", + "private_email": "", + "username": "1234", + "nodes": [{ + "node_uid": "g_juesesanyi", + "name": "角色三(一)", + "node_scope": [], + "user_scope": [], + "users": [] + }], + "is_settled": 'false', + "password": "", + "require_reset_password": 'false', + "has_password": 'false' + }, + "node_uids": ["g_juesesanyi"] + } + res = client.json_post(reverse('siteapi:user_list'), data=post_user_data) + self.assertEqual(res.status_code, HTTP_201_CREATED) + + # 可以在角色三分组下创建下级分组 + new_child_node = { + "node_uid": "", + "name": "角色三(二)", + "visibility": 1, + "node_scope": [], + "user_scope": [], + "manager_group": { + "nodes": [], + "users": [], + "perms": [], + "apps": [], + "scope_subject": 1 + }, + "users": [] + } + res = client.json_post(reverse('siteapi:node_child_node', args=('g_juesesan', )), data=new_child_node) + self.assertEqual(res.status_code, HTTP_201_CREATED) + + # 可编辑管理范围内用户信息 + patch_user_data = { + "avatar": "", + "email": "", + "employee_number": "", + "gender": 0, + "mobile": "13899990006", + "name": "部门一一user", + "position": "", + "private_email": "", + "username": "13899990006", + "depts": '', + "roles": '', + "nodes": [{ + "node_uid": "d_bumenyiyi", + "name": "部门一(一)", + "node_scope": [], + "user_scope": [], + "users": [] + }], + "is_settled": 'true', + "require_reset_password": 'false', + "has_password": 'true' + } + res = client.json_patch(reverse('siteapi:user_detail', args=('13899990006', )), data=patch_user_data) + self.assertEqual(res.status_code, HTTP_200_OK) + + # 不可编辑管理范围外用户信息 + patch_user_data = { + "avatar": "", + "email": "", + "employee_number": "", + "gender": 0, + "mobile": "13899990011", + "name": "部门二一user", + "position": "", + "private_email": "", + "username": "13899990011", + "depts": '', + "roles": '', + "nodes": [{ + "node_uid": "d_bumeneryi", + "name": "部门二(一)", + "node_scope": [], + "user_scope": [], + "users": [] + }], + "is_settled": 'true', + "require_reset_password": 'false', + "has_password": 'true' + } + res = client.json_patch(reverse('siteapi:user_detail', args=('13899990011', )), data=patch_user_data) + self.assertEqual(res.status_code, HTTP_404_NOT_FOUND) diff --git a/test/tests/test_normal_user_view.py b/test/tests/test_normal_user_view.py new file mode 100644 index 000000000..1ce940b62 --- /dev/null +++ b/test/tests/test_normal_user_view.py @@ -0,0 +1,545 @@ +# pylint: disable=too-many-lines +''' +测试普通用户可见性视图 +''' +from django.urls import reverse +from rest_framework.status import HTTP_200_OK, HTTP_403_FORBIDDEN +from siteapi.v1.tests import TestCase +from oneid_meta.models import User + + +class NormalUserViewTestCase(TestCase): + ''' + 测试普通用户通讯录及应用可见性 + ''' + def test_dept_one_normal_users_app_view(self): # pylint: disable=invalid-name + ''' + 应用十:部门权限 > 白名单 > 部门一(成员包括13899990007-13899990011) + ''' + user = User.objects.filter(username=13899990007).first() + client = self.login_as(user) + res = client.get(reverse('siteapi:ucenter_app_list')) + self.assertEqual(res.json()['results'][0]['uid'], 'yingyongshi') + + def app_black_list(self): + ''' + 黑名单:部门一成员13899990006为黑名单人员,不可见应用十 + ''' + user = User.objects.filter(username='13899990006') + client = self.login_as(user) + res = client.get(reverse('siteapi:ucenter_app_list')) + self.assertEqual(res.json()['count'], 0) + + def test_normal_user_phonebook_view(self): + ''' + 测试用户请求通讯录正常 + ''' + # 部门一管理员可见通讯录,可见部门一到五及其可见部门人员,共6人 + user = User.objects.filter(username='13899990001').first() + client = self.login_as(user) + res = client.get(reverse('siteapi:ucenter_node_tree', args=('d_root', )), data={'user_required': True}) + manager_one_phone_book_list = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门', + 'remark': '所有顶级的部门的父级,可视为整个公司。请勿修改' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'users': [{ + 'user_id': 4, + 'username': '13899990001', + 'name': '部门一admin' + }], + 'nodes': [{ + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 9, + 'username': '13899990006', + 'name': '部门一一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 2 + }, { + 'info': { + 'dept_id': 3, + 'node_uid': 'd_bumener', + 'node_subject': 'dept', + 'uid': 'bumener', + 'name': '部门二(组内可见下属不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 12, + 'node_uid': 'd_bumeneryi', + 'node_subject': 'dept', + 'uid': 'bumeneryi', + 'name': '部门二(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 15, + 'username': '13899990011', + 'name': '部门二一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 4, + 'node_uid': 'd_bumensan', + 'node_subject': 'dept', + 'uid': 'bumensan', + 'name': '部门三(组内成员及下属分组可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 17, + 'node_uid': 'd_bumensanyi', + 'node_subject': 'dept', + 'uid': 'bumensanyi', + 'name': '部门三(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 20, + 'username': '13899990016', + 'name': '部门三一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 5, + 'node_uid': 'd_bumensisuoyourenbukejian', + 'node_subject': 'dept', + 'uid': 'bumensisuoyourenbukejian', + 'name': '部门四(所有人不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 18, + 'node_uid': 'd_bumensiyi', + 'node_subject': 'dept', + 'uid': 'bumensiyi', + 'name': '部门四(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 25, + 'username': '13899990021', + 'name': '部门四一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 6, + 'node_uid': 'd_bumenwubufenrenkejian', + 'node_subject': 'dept', + 'uid': 'bumenwubufenrenkejian', + 'name': '部门五(部分人可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 19, + 'node_uid': 'd_bumenwuyi', + 'node_subject': 'dept', + 'uid': 'bumenwuyi', + 'name': '部门五(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 30, + 'username': '13899990026', + 'name': '部门五一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }], + 'headcount': + 6 + } + self.assertEqual(res.json(), manager_one_phone_book_list) + self.assertEqual(res.json()['headcount'], 6) + + # 部门一成员可见通讯录6人 + dept_one_user_phone_book = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门', + 'remark': '所有顶级的部门的父级,可视为整个公司。请勿修改' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'users': [{ + 'user_id': 4, + 'username': '13899990001', + 'name': '部门一admin' + }], + 'nodes': [{ + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 9, + 'username': '13899990006', + 'name': '部门一一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 2 + }, { + 'info': { + 'dept_id': 3, + 'node_uid': 'd_bumener', + 'node_subject': 'dept', + 'uid': 'bumener', + 'name': '部门二(组内可见下属不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 12, + 'node_uid': 'd_bumeneryi', + 'node_subject': 'dept', + 'uid': 'bumeneryi', + 'name': '部门二(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 15, + 'username': '13899990011', + 'name': '部门二一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 4, + 'node_uid': 'd_bumensan', + 'node_subject': 'dept', + 'uid': 'bumensan', + 'name': '部门三(组内成员及下属分组可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 17, + 'node_uid': 'd_bumensanyi', + 'node_subject': 'dept', + 'uid': 'bumensanyi', + 'name': '部门三(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 20, + 'username': '13899990016', + 'name': '部门三一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 5, + 'node_uid': 'd_bumensisuoyourenbukejian', + 'node_subject': 'dept', + 'uid': 'bumensisuoyourenbukejian', + 'name': '部门四(所有人不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 18, + 'node_uid': 'd_bumensiyi', + 'node_subject': 'dept', + 'uid': 'bumensiyi', + 'name': '部门四(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 25, + 'username': '13899990021', + 'name': '部门四一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 6, + 'node_uid': 'd_bumenwubufenrenkejian', + 'node_subject': 'dept', + 'uid': 'bumenwubufenrenkejian', + 'name': '部门五(部分人可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 19, + 'node_uid': 'd_bumenwuyi', + 'node_subject': 'dept', + 'uid': 'bumenwuyi', + 'name': '部门五(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 30, + 'username': '13899990026', + 'name': '部门五一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }], + 'headcount': + 6 + } + user = User.objects.filter(username='13899990006').first() + client = self.login_as(user) + res = client.get(reverse('siteapi:ucenter_node_tree', args=('d_root', )), data={'user_required': True}) + self.assertEqual(res.json(), dept_one_user_phone_book) + + # 部门五无权限用户可见通讯录6人 + user = User.objects.filter(username='13899990005').first() + client = self.login_as(user) + res = client.get(reverse('siteapi:ucenter_node_tree', args=('d_root', )), data={'user_required': True}) + no_perm_user_phone_book = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门', + 'remark': '所有顶级的部门的父级,可视为整个公司。请勿修改' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'users': [{ + 'user_id': 4, + 'username': '13899990001', + 'name': '部门一admin' + }], + 'nodes': [{ + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 9, + 'username': '13899990006', + 'name': '部门一一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 2 + }, { + 'info': { + 'dept_id': 3, + 'node_uid': 'd_bumener', + 'node_subject': 'dept', + 'uid': 'bumener', + 'name': '部门二(组内可见下属不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 12, + 'node_uid': 'd_bumeneryi', + 'node_subject': 'dept', + 'uid': 'bumeneryi', + 'name': '部门二(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 15, + 'username': '13899990011', + 'name': '部门二一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 4, + 'node_uid': 'd_bumensan', + 'node_subject': 'dept', + 'uid': 'bumensan', + 'name': '部门三(组内成员及下属分组可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 17, + 'node_uid': 'd_bumensanyi', + 'node_subject': 'dept', + 'uid': 'bumensanyi', + 'name': '部门三(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 20, + 'username': '13899990016', + 'name': '部门三一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 5, + 'node_uid': 'd_bumensisuoyourenbukejian', + 'node_subject': 'dept', + 'uid': 'bumensisuoyourenbukejian', + 'name': '部门四(所有人不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 18, + 'node_uid': 'd_bumensiyi', + 'node_subject': 'dept', + 'uid': 'bumensiyi', + 'name': '部门四(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 25, + 'username': '13899990021', + 'name': '部门四一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 6, + 'node_uid': 'd_bumenwubufenrenkejian', + 'node_subject': 'dept', + 'uid': 'bumenwubufenrenkejian', + 'name': '部门五(部分人可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 19, + 'node_uid': 'd_bumenwuyi', + 'node_subject': 'dept', + 'uid': 'bumenwuyi', + 'name': '部门五(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 30, + 'username': '13899990026', + 'name': '部门五一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }], + 'headcount': + 6 + } + self.assertEqual(res.json(), no_perm_user_phone_book) + + def test_normal_user_view(self): + ''' + 测试部门一用户(13899990007)视图及权限,权限:无权限 + ''' + # 不可见应用 + no_perm_user = User.objects.filter(username='13899990007').first() + client = self.login_as(no_perm_user) + res = client.get(reverse('siteapi:app_list')) + self.assertEqual(res.status_code, HTTP_403_FORBIDDEN) + + # 可查看用户信息 + res_view_user = client.get(reverse('siteapi:ucenter_user_detail', args=('13899990002', ))) + self.assertEqual(res_view_user.status_code, HTTP_200_OK) diff --git a/test/utils/test_data_manager.py b/test/utils/test_data_manager.py index cfcdbb18c..78a1ea5fe 100644 --- a/test/utils/test_data_manager.py +++ b/test/utils/test_data_manager.py @@ -93,12 +93,13 @@ def __init__(self): self.conn = sqlite3.connect(BASE_DIR + '/test/data/unittest.sqlite3') self.cur = self.conn.cursor() - def write_sql_to_test_db(self): # pylint: disable=no-self-use + def write_sql_to_test_db(self): '''sql写入测试数据库 ''' try: - self.cur.execute('DELETE FROM sqlite_sequence') - self.conn.commit() + for table in TABLE_NAMES: + self.cur.execute('DELETE FROM %s' % table) + self.cur.execute('DELETE FROM sqlite_sequence WHERE name = "%s";' % table) except Exception as err: # pylint: disable=broad-except log.info(err) @@ -125,7 +126,7 @@ def __init__(self): self.conn = sqlite3.connect(BASE_DIR + '/db/db.sqlite3') self.cur = self.conn.cursor() - def load_test_db(self): # pylint: disable=no-self-use + def load_test_db(self): ''' 将测试数据放入项目操作数据库文件夹进行修改 ''' From 1589b56884efb1b4facca57d71bf629e541567d4 Mon Sep 17 00:00:00 2001 From: shiyueLongguikeji Date: Sat, 28 Dec 2019 12:28:04 +0800 Subject: [PATCH 2/2] =?UTF-8?q?improvement(test):=20=E5=A2=9E=E5=8A=A02?= =?UTF-8?q?=E4=B8=AA=E7=94=A8=E6=88=B7=E9=80=9A=E8=AE=AF=E5=BD=95=E5=8F=AF?= =?UTF-8?q?=E8=A7=81=E6=B5=8B=E8=AF=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- test/tests/test_normal_user_view.py | 208 +++++++++++++++++++++++++++- 1 file changed, 207 insertions(+), 1 deletion(-) diff --git a/test/tests/test_normal_user_view.py b/test/tests/test_normal_user_view.py index 1ce940b62..fb3506ace 100644 --- a/test/tests/test_normal_user_view.py +++ b/test/tests/test_normal_user_view.py @@ -3,7 +3,7 @@ 测试普通用户可见性视图 ''' from django.urls import reverse -from rest_framework.status import HTTP_200_OK, HTTP_403_FORBIDDEN +from rest_framework.status import HTTP_200_OK, HTTP_403_FORBIDDEN, HTTP_404_NOT_FOUND from siteapi.v1.tests import TestCase from oneid_meta.models import User @@ -12,6 +12,21 @@ class NormalUserViewTestCase(TestCase): ''' 测试普通用户通讯录及应用可见性 ''' + def test_manager_one_ucenter_view(self): + ''' + 测试用户 13899990001(部门一admin)普通用户视图 + 设定权限: + 1.管理范围:所在分组及下级分组(部门一及下属) + 2.应用权限:应用二 + 3.基础权限:无 + ''' + manager_one = User.objects.filter(username='13899990001').first() + client = self.login_as(manager_one) + + # 不可查看非权限内用户信息 + res_view_user = client.get(reverse('siteapi:ucenter_user_detail', args=('138999900020', ))) + self.assertEqual(res_view_user.status_code, HTTP_404_NOT_FOUND) + def test_dept_one_normal_users_app_view(self): # pylint: disable=invalid-name ''' 应用十:部门权限 > 白名单 > 部门一(成员包括13899990007-13899990011) @@ -543,3 +558,194 @@ def test_normal_user_view(self): # 可查看用户信息 res_view_user = client.get(reverse('siteapi:ucenter_user_detail', args=('13899990002', ))) self.assertEqual(res_view_user.status_code, HTTP_200_OK) + + def test_dept_fourtwo_user_view(self): + ''' + 测试部门四二成员可见通讯录: + ''' + dept_fourtwo_user = User.objects.filter(username='13899990022').first() + client = self.login_as(dept_fourtwo_user) + + # 可见7人,包括自身,其他6人为所有人可见部门成员 + res = client.get(reverse('siteapi:ucenter_node_tree', args=('d_root', )), data={'user_required': True}) + phone_book = { + 'info': { + 'dept_id': 1, + 'node_uid': 'd_root', + 'node_subject': 'dept', + 'uid': 'root', + 'name': '部门', + 'remark': '所有顶级的部门的父级,可视为整个公司。请勿修改' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 2, + 'node_uid': 'd_bumenyi', + 'node_subject': 'dept', + 'uid': 'bumenyi', + 'name': '部门一(所有人可见)', + 'remark': '' + }, + 'users': [{ + 'user_id': 4, + 'username': '13899990001', + 'name': '部门一admin' + }], + 'nodes': [{ + 'info': { + 'dept_id': 7, + 'node_uid': 'd_bumenyiyi', + 'node_subject': 'dept', + 'uid': 'bumenyiyi', + 'name': '部门一(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 9, + 'username': '13899990006', + 'name': '部门一一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 2 + }, { + 'info': { + 'dept_id': 3, + 'node_uid': 'd_bumener', + 'node_subject': 'dept', + 'uid': 'bumener', + 'name': '部门二(组内可见下属不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 12, + 'node_uid': 'd_bumeneryi', + 'node_subject': 'dept', + 'uid': 'bumeneryi', + 'name': '部门二(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 15, + 'username': '13899990011', + 'name': '部门二一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 4, + 'node_uid': 'd_bumensan', + 'node_subject': 'dept', + 'uid': 'bumensan', + 'name': '部门三(组内成员及下属分组可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 17, + 'node_uid': 'd_bumensanyi', + 'node_subject': 'dept', + 'uid': 'bumensanyi', + 'name': '部门三(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 20, + 'username': '13899990016', + 'name': '部门三一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }, { + 'info': { + 'dept_id': 5, + 'node_uid': 'd_bumensisuoyourenbukejian', + 'node_subject': 'dept', + 'uid': 'bumensisuoyourenbukejian', + 'name': '部门四(所有人不可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 18, + 'node_uid': 'd_bumensiyi', + 'node_subject': 'dept', + 'uid': 'bumensiyi', + 'name': '部门四(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 25, + 'username': '13899990021', + 'name': '部门四一user' + }], + 'nodes': [], + 'headcount': 1 + }, { + 'info': { + 'dept_id': 24, + 'node_uid': 'd_bumensier', + 'node_subject': 'dept', + 'uid': 'bumensier', + 'name': '部门四(二)', + 'remark': '' + }, + 'users': [{ + 'user_id': 26, + 'username': '13899990022', + 'name': '部门四二user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 2 + }, { + 'info': { + 'dept_id': 6, + 'node_uid': 'd_bumenwubufenrenkejian', + 'node_subject': 'dept', + 'uid': 'bumenwubufenrenkejian', + 'name': '部门五(部分人可见)' + }, + 'users': [], + 'nodes': [{ + 'info': { + 'dept_id': 19, + 'node_uid': 'd_bumenwuyi', + 'node_subject': 'dept', + 'uid': 'bumenwuyi', + 'name': '部门五(一)', + 'remark': '' + }, + 'users': [{ + 'user_id': 30, + 'username': '13899990026', + 'name': '部门五一user' + }], + 'nodes': [], + 'headcount': 1 + }], + 'headcount': + 1 + }], + 'headcount': + 7 + } + self.assertEqual(res.json(), phone_book) + self.assertEqual(res.json()['headcount'], 7) + + # 可查看其他组内用户信息 + res_view_user = client.get(reverse('siteapi:ucenter_user_detail', args=('13899990012', ))) + self.assertEqual(res_view_user.status_code, HTTP_200_OK)