diff options
Diffstat (limited to 'rt/t/web/rights1.t')
-rw-r--r-- | rt/t/web/rights1.t | 134 |
1 files changed, 134 insertions, 0 deletions
diff --git a/rt/t/web/rights1.t b/rt/t/web/rights1.t new file mode 100644 index 000000000..6da204cc9 --- /dev/null +++ b/rt/t/web/rights1.t @@ -0,0 +1,134 @@ +#!/usr/bin/perl -w +use strict; +use HTTP::Cookies; + +use RT::Test tests => 35; +my ($baseurl, $agent) = RT::Test->started_ok; + +# Create a user with basically no rights, to start. +my $user_obj = RT::User->new($RT::SystemUser); +my ($ret, $msg) = $user_obj->LoadOrCreateByEmail('customer-'.$$.'@example.com'); +ok($ret, 'ACL test user creation'); +$user_obj->SetName('customer-'.$$); +$user_obj->SetPrivileged(1); +($ret, $msg) = $user_obj->SetPassword('customer'); +ok($ret, "ACL test password set. $msg"); + +# Now test the web interface, making sure objects come and go as +# required. + + +my $cookie_jar = HTTP::Cookies->new; + +# give the agent a place to stash the cookies + +$agent->cookie_jar($cookie_jar); + +no warnings 'once'; +# get the top page +login($agent, $user_obj); + +# Test for absence of Configure and Preferences tabs. +ok(!$agent->find_link( url => "$RT::WebPath/Admin/", + text => 'Configuration'), "No config tab" ); +ok(!$agent->find_link( url => "$RT::WebPath/User/Prefs.html", + text => 'Preferences'), "No prefs pane" ); + +# Now test for their presence, one at a time. Sleep for a bit after +# ACL changes, thanks to the 10s ACL cache. +my ($grantid,$grantmsg) =$user_obj->PrincipalObj->GrantRight(Right => 'ShowConfigTab', Object => $RT::System); + +ok($grantid,$grantmsg); + +$agent->reload; + +like($agent->{'content'} , qr/Logout/i, "Reloaded page successfully"); +ok($agent->find_link( url => "$RT::WebPath/Admin/", + text => 'Configuration'), "Found config tab" ); +my ($revokeid,$revokemsg) =$user_obj->PrincipalObj->RevokeRight(Right => 'ShowConfigTab'); +ok ($revokeid,$revokemsg); +($grantid,$grantmsg) =$user_obj->PrincipalObj->GrantRight(Right => 'ModifySelf'); +ok ($grantid,$grantmsg); +$agent->reload(); +like($agent->{'content'} , qr/Logout/i, "Reloaded page successfully"); +ok($agent->find_link( + text => 'Preferences'), "Found prefs pane" ); +($revokeid,$revokemsg) = $user_obj->PrincipalObj->RevokeRight(Right => 'ModifySelf'); +ok ($revokeid,$revokemsg); +# Good. Now load the search page and test Load/Save Search. +$agent->follow_link( url => "$RT::WebPath/Search/Build.html", + text => 'Tickets'); +is($agent->{'status'}, 200, "Fetched search builder page"); +ok($agent->{'content'} !~ /Load saved search/i, "No search loading box"); +ok($agent->{'content'} !~ /Saved searches/i, "No saved searches box"); + +($grantid,$grantmsg) = $user_obj->PrincipalObj->GrantRight(Right => 'LoadSavedSearch'); +ok($grantid,$grantmsg); +$agent->reload(); +like($agent->{'content'} , qr/Load saved search/i, "Search loading box exists"); +ok($agent->{'content'} !~ /input\s+type=['"]submit['"][^>]+name=['"]SavedSearchSave['"]/i, + "Still no saved searches box"); + +($grantid,$grantmsg) =$user_obj->PrincipalObj->GrantRight(Right => 'CreateSavedSearch'); +ok ($grantid,$grantmsg); +$agent->reload(); +like($agent->{'content'} , qr/Load saved search/i, + "Search loading box still exists"); +like($agent->{'content'} , qr/input\s+type=['"]submit['"][^>]+name=['"]SavedSearchSave['"]/i, + "Saved searches box exists"); + +# Create a group, and a queue, so we can test limited user visibility +# via SelectOwner. + +my $queue_obj = RT::Queue->new($RT::SystemUser); +($ret, $msg) = $queue_obj->Create(Name => 'CustomerQueue-'.$$, + Description => 'queue for SelectOwner testing'); +ok($ret, "SelectOwner test queue creation. $msg"); +my $group_obj = RT::Group->new($RT::SystemUser); +($ret, $msg) = $group_obj->CreateUserDefinedGroup(Name => 'CustomerGroup-'.$$, + Description => 'group for SelectOwner testing'); +ok($ret, "SelectOwner test group creation. $msg"); + +# Add our customer to the customer group, and give it queue rights. +($ret, $msg) = $group_obj->AddMember($user_obj->PrincipalObj->Id()); +ok($ret, "Added customer to its group. $msg"); +($grantid,$grantmsg) =$group_obj->PrincipalObj->GrantRight(Right => 'OwnTicket', + Object => $queue_obj); + +ok($grantid,$grantmsg); +($grantid,$grantmsg) =$group_obj->PrincipalObj->GrantRight(Right => 'SeeQueue', + Object => $queue_obj); +ok ($grantid,$grantmsg); +# Now. When we look at the search page we should be able to see +# ourself in the list of possible owners. + +$agent->reload(); +ok($agent->form_name('BuildQuery'), "Yep, form is still there"); +my $input = $agent->current_form->find_input('ValueOfActor'); +ok(grep(/customer-$$/, $input->value_names()), "Found self in the actor listing"); + +sub login { + my $agent = shift; + + my $url = "http://localhost:" . RT->Config->Get('WebPort') . RT->Config->Get('WebPath') . "/"; + $agent->get($url); + is( $agent->{'status'}, 200, + "Loaded a page - http://localhost" . RT->Config->Get('WebPath') ); + + # {{{ test a login + + # follow the link marked "Login" + + ok( $agent->{form}->find_input('user') ); + + ok( $agent->{form}->find_input('pass') ); + like( $agent->{'content'} , qr/username:/i ); + $agent->field( 'user' => $user_obj->Name ); + $agent->field( 'pass' => 'customer' ); + + # the field isn't named, so we have to click link 0 + $agent->click(0); + is( $agent->{'status'}, 200, "Fetched the page ok" ); + like( $agent->{'content'} , qr/Logout/i, "Found a logout link" ); +} +1; |