Influxdata
/
influxdb
mirror of https://github.com/influxdata/influxdb.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
influxdb/server/users_test.go

1773 lines
45 KiB
Go
Raw Normal View History

Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
package server
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
import (
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
"bytes"
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
"context"
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
"encoding/json"
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
"fmt"
"io/ioutil"
"net/http"
"net/http/httptest"
"testing"
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
"github.com/bouk/httprouter"
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
"github.com/influxdata/chronograf"
"github.com/influxdata/chronograf/log"
"github.com/influxdata/chronograf/mocks"
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
"github.com/influxdata/chronograf/roles"
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
)
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
func TestService_UserID(t *testing.T) {
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
type fields struct {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
UsersStore chronograf.UsersStore
Logger chronograf.Logger
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
}
type args struct {
w *httptest.ResponseRecorder
r *http.Request
}
tests := []struct {
name string
fields fields
args args
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
id string
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
wantStatus int
wantContentType string
wantBody string
}{
{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
name: "Get Single Chronograf User",
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
args: args{
w: httptest.NewRecorder(),
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
r: httptest.NewRequest(
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
"GET",
"http://any.url", // can be any valid URL as we are bypassing mux
nil,
),
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
fields: fields{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
Generalize chronograf.UsersStore Get method The `Get` method on the UsersStore was generalize by changing the second parameter to a struct. This allows the Store to retrieve users by more than simply their name. -Get(ctx context.Context, name string) (*User, error) +Get(ctx context.Context, q UserQuery) (*User, error)
2017-10-18 18:17:42 +00:00
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1337:
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
return &chronograf.User{
ID: 1337,
Name: "billysteve",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "google",
Scheme: "oauth2",
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
Roles: []chronograf.Role{
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.ViewerRole,
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}, nil
default:
Fix string interpolation data type for uint64 in Users tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:21:29 +00:00
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
},
},
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
id: "1337",
wantStatus: http.StatusOK,
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
wantContentType: "application/json",
Add superAdmin to users CRUD
2017-11-01 13:12:19 +00:00
wantBody: `{"id":"1337","superAdmin":false,"name":"billysteve","provider":"google","scheme":"oauth2","links":{"self":"/chronograf/v1/users/1337"},"roles":[{"name":"viewer"}]}`,
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
for _, tt := range tests {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
t.Run(tt.name, func(t *testing.T) {
s := &Service{
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
Store: &mocks.Store{
UsersStore: tt.fields.UsersStore,
},
Logger: tt.fields.Logger,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
tt.args.r = tt.args.r.WithContext(httprouter.WithParams(
context.Background(),
httprouter.Params{
{
Key: "id",
Value: tt.id,
},
}))
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
s.UserID(tt.args.w, tt.args.r)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
resp := tt.args.w.Result()
content := resp.Header.Get("Content-Type")
body, _ := ioutil.ReadAll(resp.Body)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
if resp.StatusCode != tt.wantStatus {
t.Errorf("%q. UserID() = %v, want %v", tt.name, resp.StatusCode, tt.wantStatus)
}
if tt.wantContentType != "" && content != tt.wantContentType {
t.Errorf("%q. UserID() = %v, want %v", tt.name, content, tt.wantContentType)
}
if eq, _ := jsonEqual(string(body), tt.wantBody); tt.wantBody != "" && !eq {
t.Errorf("%q. UserID() = \n***%v***\n,\nwant\n***%v***", tt.name, string(body), tt.wantBody)
}
})
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
func TestService_NewUser(t *testing.T) {
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
type fields struct {
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
UsersStore chronograf.UsersStore
OrganizationsStore chronograf.OrganizationsStore
ConfigStore chronograf.ConfigStore
Logger chronograf.Logger
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
type args struct {
Put entire user on context
2017-11-09 14:18:13 +00:00
w *httptest.ResponseRecorder
r *http.Request
user *userRequest
userKeyUser *chronograf.User
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
tests := []struct {
name string
fields fields
args args
wantStatus int
wantContentType string
wantBody string
}{
{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
name: "Create a new Chronograf User",
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
"POST",
"http://any.url",
nil,
),
Modify User req & res to receive & give Role names only Role members are fully explicated for CRUD operations. Also adds validation for Roles on requests. Also returns an empty array in JSON when a User has no roles.
2017-10-13 19:34:30 +00:00
user: &userRequest{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Name: "bob",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "github",
Scheme: "oauth2",
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
Merge branch 'master' into feature/#54-tr-enterprise-client Conflicts: Makefile chronograf.go server/routes.go server/users.go
2017-02-24 05:26:09 +00:00
},
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
fields: fields{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Logger: log.New(log.DebugLevel),
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
ID: 1338,
Name: "bob",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "github",
Scheme: "oauth2",
Modify User req & res to receive & give Role names only Role members are fully explicated for CRUD operations. Also adds validation for Roles on requests. Also returns an empty array in JSON when a User has no roles.
2017-10-13 19:34:30 +00:00
Roles: []chronograf.Role{},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}, nil
},
},
Merge branch 'master' into feature/#54-tr-enterprise-client Conflicts: Makefile chronograf.go server/routes.go server/users.go
2017-02-24 05:26:09 +00:00
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
wantStatus: http.StatusCreated,
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
wantContentType: "application/json",
Add superAdmin to users CRUD
2017-11-01 13:12:19 +00:00
wantBody: `{"id":"1338","superAdmin":false,"name":"bob","provider":"github","scheme":"oauth2","roles":[],"links":{"self":"/chronograf/v1/users/1338"}}`,
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
{
name: "Create a new Chronograf User with multiple roles",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "2",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
},
},
fields: fields{
Logger: log.New(log.DebugLevel),
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
case "2":
return &chronograf.Organization{
ID: "2",
Name: "another",
DefaultRole: roles.MemberRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
ID: 1338,
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "2",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
}, nil
},
},
},
wantStatus: http.StatusCreated,
wantContentType: "application/json",
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
wantBody: `{"id":"1338","superAdmin":false,"name":"bob","provider":"github","scheme":"oauth2","roles":[{"name":"admin","organization":"1"},{"name":"viewer","organization":"2"}],"links":{"self":"/chronograf/v1/users/1338"}}`,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
name: "Create a new Chronograf User with multiple roles same org",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
},
},
fields: fields{
Logger: log.New(log.DebugLevel),
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
ID: 1338,
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
}, nil
},
},
},
wantStatus: http.StatusUnprocessableEntity,
wantContentType: "application/json",
Ensure that organzation on role is valid org id
2017-11-22 20:03:15 +00:00
wantBody: `{"code":422,"message":"duplicate organization \"1\" in roles"}`,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
{
name: "Create a new SuperAdmin User - Not as superadmin",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
Put entire user on context
2017-11-09 14:18:13 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
fields: fields{
Logger: log.New(log.DebugLevel),
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
ID: 1338,
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{},
}, nil
},
},
},
wantStatus: http.StatusUnauthorized,
wantContentType: "application/json",
Reference known issue #2601 in Admin creating SuperAdmin response Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-12-15 23:05:27 +00:00
wantBody: `{"code":401,"message":"User does not have authorization required to set SuperAdmin status. See https://github.com/influxdata/chronograf/issues/2601 for more information."}`,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
{
name: "Create a new SuperAdmin User - as superadmin",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
Put entire user on context
2017-11-09 14:18:13 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
fields: fields{
Logger: log.New(log.DebugLevel),
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
Modify mock store & json on superadmin-creates-SA user to reflect true SA status Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-11-06 19:17:27 +00:00
ID: 1338,
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{},
SuperAdmin: true,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
}, nil
},
},
},
wantStatus: http.StatusCreated,
wantContentType: "application/json",
Modify mock store & json on superadmin-creates-SA user to reflect true SA status Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-11-06 19:17:27 +00:00
wantBody: `{"id":"1338","superAdmin":true,"name":"bob","provider":"github","scheme":"oauth2","roles":[],"links":{"self":"/chronograf/v1/users/1338"}}`,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
Set SuperAdmin for NewUsers based on ConfigSetting
2017-12-14 19:11:51 +00:00
{
name: "Create a new User with SuperAdminNewUsers: true in ConfigStore",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
},
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
},
fields: fields{
Logger: log.New(log.DebugLevel),
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: true,
},
},
},
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
user.ID = 1338
return user, nil
},
},
},
wantStatus: http.StatusCreated,
wantContentType: "application/json",
wantBody: `{"id":"1338","superAdmin":true,"name":"bob","provider":"github","scheme":"oauth2","roles":[],"links":{"self":"/chronograf/v1/users/1338"}}`,
},
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
{
name: "Create a new Chronograf User with multiple roles with wildcard default role",
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"POST",
"http://any.url",
nil,
),
user: &userRequest{
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "1",
},
{
Name: roles.WildcardRoleName,
Organization: "2",
},
},
},
},
fields: fields{
Logger: log.New(log.DebugLevel),
ConfigStore: &mocks.ConfigStore{
Config: &chronograf.Config{
Auth: chronograf.AuthConfig{
SuperAdminNewUsers: false,
},
},
},
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
case "2":
return &chronograf.Organization{
ID: "2",
Name: "another",
DefaultRole: roles.MemberRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
UsersStore: &mocks.UsersStore{
AddF: func(ctx context.Context, user *chronograf.User) (*chronograf.User, error) {
return &chronograf.User{
ID: 1338,
Name: "bob",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "1",
},
{
Name: roles.MemberRoleName,
Organization: "2",
},
},
}, nil
},
},
},
wantStatus: http.StatusCreated,
wantContentType: "application/json",
wantBody: `{"id":"1338","superAdmin":false,"name":"bob","provider":"github","scheme":"oauth2","roles":[{"name":"admin","organization":"1"},{"name":"member","organization":"2"}],"links":{"self":"/chronograf/v1/users/1338"}}`,
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
for _, tt := range tests {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
t.Run(tt.name, func(t *testing.T) {
s := &Service{
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
Store: &mocks.Store{
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
UsersStore: tt.fields.UsersStore,
ConfigStore: tt.fields.ConfigStore,
OrganizationsStore: tt.fields.OrganizationsStore,
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
},
Logger: tt.fields.Logger,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}
buf, _ := json.Marshal(tt.args.user)
tt.args.r.Body = ioutil.NopCloser(bytes.NewReader(buf))
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
ctx := tt.args.r.Context()
Put entire user on context
2017-11-09 14:18:13 +00:00
if tt.args.userKeyUser != nil {
Change UserKey to UserContextKey Fix name of arguments in tests
2017-11-10 16:18:06 +00:00
ctx = context.WithValue(ctx, UserContextKey, tt.args.userKeyUser)
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
}
tt.args.r = tt.args.r.WithContext(ctx)
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
s.NewUser(tt.args.w, tt.args.r)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
resp := tt.args.w.Result()
content := resp.Header.Get("Content-Type")
body, _ := ioutil.ReadAll(resp.Body)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
if resp.StatusCode != tt.wantStatus {
t.Errorf("%q. UserID() = %v, want %v", tt.name, resp.StatusCode, tt.wantStatus)
}
if tt.wantContentType != "" && content != tt.wantContentType {
t.Errorf("%q. UserID() = %v, want %v", tt.name, content, tt.wantContentType)
}
if eq, _ := jsonEqual(string(body), tt.wantBody); tt.wantBody != "" && !eq {
t.Errorf("%q. UserID() = \n***%v***\n,\nwant\n***%v***", tt.name, string(body), tt.wantBody)
}
})
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
func TestService_RemoveUser(t *testing.T) {
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
type fields struct {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
UsersStore chronograf.UsersStore
Logger chronograf.Logger
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
type args struct {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
w *httptest.ResponseRecorder
r *http.Request
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
user *chronograf.User
id string
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
tests := []struct {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
name string
fields fields
args args
wantStatus int
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
wantBody string
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}{
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
name: "Delete a Chronograf User",
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
fields: fields{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
Generalize chronograf.UsersStore Get method The `Get` method on the UsersStore was generalize by changing the second parameter to a struct. This allows the Store to retrieve users by more than simply their name. -Get(ctx context.Context, name string) (*User, error) +Get(ctx context.Context, q UserQuery) (*User, error)
2017-10-18 18:17:42 +00:00
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1339:
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
return &chronograf.User{
ID: 1339,
Name: "helena",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "heroku",
Scheme: "oauth2",
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}, nil
default:
Fix string interpolation data type for uint64 in Users tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:21:29 +00:00
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
DeleteF: func(ctx context.Context, user *chronograf.User) error {
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
return nil
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
"DELETE",
"http://any.url",
nil,
),
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
user: &chronograf.User{
ID: 1338,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Name: "helena",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "heroku",
Scheme: "oauth2",
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
id: "1339",
Merge branch 'master' into feature/#54-tr-enterprise-client Conflicts: Makefile chronograf.go server/routes.go server/users.go
2017-02-24 05:26:09 +00:00
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
wantStatus: http.StatusNoContent,
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
},
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
{
name: "Deleting yourself",
fields: fields{
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1339:
return &chronograf.User{
ID: 1339,
Name: "helena",
Provider: "heroku",
Scheme: "oauth2",
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
DeleteF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"DELETE",
"http://any.url",
nil,
),
user: &chronograf.User{
ID: 1339,
Name: "helena",
Provider: "heroku",
Scheme: "oauth2",
},
id: "1339",
},
Allow user to delete themselves Previously users were prevented from removing themselves. Connect https://github.com/influxdata/chronograf/issues/2711
2018-02-07 14:46:08 +00:00
wantStatus: http.StatusNoContent,
wantBody: ``,
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
},
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
}
for _, tt := range tests {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
t.Run(tt.name, func(t *testing.T) {
s := &Service{
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
Store: &mocks.Store{
UsersStore: tt.fields.UsersStore,
},
Logger: tt.fields.Logger,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}
tt.args.r = tt.args.r.WithContext(httprouter.WithParams(
context.Background(),
httprouter.Params{
{
Key: "id",
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
Value: tt.args.id,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
))
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
if tt.args.user != nil {
ctx := tt.args.r.Context()
Change UserKey to UserContextKey Fix name of arguments in tests
2017-11-10 16:18:06 +00:00
ctx = context.WithValue(ctx, UserContextKey, tt.args.user)
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
tt.args.r = tt.args.r.WithContext(ctx)
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
s.RemoveUser(tt.args.w, tt.args.r)
resp := tt.args.w.Result()
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
body, _ := ioutil.ReadAll(resp.Body)
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
if resp.StatusCode != tt.wantStatus {
t.Errorf("%q. RemoveUser() = %v, want %v", tt.name, resp.StatusCode, tt.wantStatus)
}
Prevent user from deleteing themselves
2017-11-09 14:37:15 +00:00
if tt.wantStatus == http.StatusNoContent {
return
}
if eq, _ := jsonEqual(string(body), tt.wantBody); !eq {
t.Errorf("%q. RemoveUser() = %v, want %v", tt.name, string(body), tt.wantBody)
}
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
})
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
}
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
func TestService_UpdateUser(t *testing.T) {
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
type fields struct {
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
UsersStore chronograf.UsersStore
OrganizationsStore chronograf.OrganizationsStore
Logger chronograf.Logger
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
type args struct {
Put entire user on context
2017-11-09 14:18:13 +00:00
w *httptest.ResponseRecorder
r *http.Request
user *userRequest
userKeyUser *chronograf.User
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
tests := []struct {
name string
fields fields
args args
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
id string
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
wantStatus int
wantContentType string
wantBody string
}{
Allow UpdateUser to accept empty roles
2018-01-12 17:37:30 +00:00
{
name: "Update a Chronograf user - no roles",
fields: fields{
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: roles.EditorRoleName,
Organization: "1",
},
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
user: &userRequest{
ID: 1336,
Roles: []chronograf.Role{},
},
},
id: "1336",
wantStatus: http.StatusOK,
wantContentType: "application/json",
wantBody: `{"id":"1336","superAdmin":false,"name":"bobbetta","provider":"github","scheme":"oauth2","links":{"self":"/chronograf/v1/users/1336"},"roles":[]}`,
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
name: "Update a Chronograf user",
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
fields: fields{
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
return nil
},
Generalize chronograf.UsersStore Get method The `Get` method on the UsersStore was generalize by changing the second parameter to a struct. This allows the Store to retrieve users by more than simply their name. -Get(ctx context.Context, name string) (*User, error) +Get(ctx context.Context, q UserQuery) (*User, error)
2017-10-18 18:17:42 +00:00
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
return &chronograf.User{
ID: 1336,
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
Name: "bobbetta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "github",
Scheme: "oauth2",
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}, nil
default:
Fix string interpolation data type for uint64 in Users tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:21:29 +00:00
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
"PATCH",
"http://any.url",
nil,
),
Prevent SuperAdmin from modifying their own status Previously it was possible for SuperAdmins to remove their own status. This could create an application state where there were no super admins. This is not an acceptable application state.
2017-12-20 23:17:08 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
Modify User req & res to receive & give Role names only Role members are fully explicated for CRUD operations. Also adds validation for Roles on requests. Also returns an empty array in JSON when a User has no roles.
2017-10-13 19:34:30 +00:00
user: &userRequest{
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
ID: 1336,
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.AdminRoleName,
Organization: "1",
},
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
},
},
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
id: "1336",
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
wantStatus: http.StatusOK,
wantContentType: "application/json",
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
wantBody: `{"id":"1336","superAdmin":false,"name":"bobbetta","provider":"github","scheme":"oauth2","links":{"self":"/chronograf/v1/users/1336"},"roles":[{"name":"admin","organization":"1"}]}`,
Update only fields with diff; add test for that Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-10 18:40:33 +00:00
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
{
name: "Update a Chronograf user roles different orgs",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
case "2":
return &chronograf.Organization{
ID: "2",
Name: "another",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
roles.EditorRole,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
Prevent SuperAdmin from modifying their own status Previously it was possible for SuperAdmins to remove their own status. This could create an application state where there were no super admins. This is not an acceptable application state.
2017-12-20 23:17:08 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
user: &userRequest{
ID: 1336,
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
Organization: "2",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
},
},
id: "1336",
wantStatus: http.StatusOK,
wantContentType: "application/json",
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
wantBody: `{"id":"1336","superAdmin":false,"name":"bobbetta","provider":"github","scheme":"oauth2","links":{"self":"/chronograf/v1/users/1336"},"roles":[{"name":"admin","organization":"1"},{"name":"viewer","organization":"2"}]}`,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
name: "Update a Chronograf user roles same org",
fields: fields{
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
roles.EditorRole,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
Roles: []chronograf.Role{
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.AdminRoleName,
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
Name: roles.ViewerRoleName,
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
Organization: "1",
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
},
},
},
id: "1336",
wantStatus: http.StatusUnprocessableEntity,
wantContentType: "application/json",
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
wantBody: `{"code":422,"message":"duplicate organization \"1\" in roles"}`,
Prevent duplicate organization roles in user CRUD
2017-11-03 16:06:18 +00:00
},
Prevent SuperAdmin from modifying their own status Previously it was possible for SuperAdmins to remove their own status. This could create an application state where there were no super admins. This is not an acceptable application state.
2017-12-20 23:17:08 +00:00
{
name: "SuperAdmin modifying their own SuperAdmin Status - user missing from context",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Prevent SuperAdmin from modifying their own status Previously it was possible for SuperAdmins to remove their own status. This could create an application state where there were no super admins. This is not an acceptable application state.
2017-12-20 23:17:08 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
Roles: []chronograf.Role{
{
Name: roles.EditorRoleName,
Organization: "1",
},
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
SuperAdmin: false,
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "1",
},
},
},
},
id: "1336",
wantStatus: http.StatusInternalServerError,
wantContentType: "application/json",
wantBody: `{"code":500,"message":"failed to retrieve user from context"}`,
},
{
name: "SuperAdmin modifying their own SuperAdmin Status",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Prevent SuperAdmin from modifying their own status Previously it was possible for SuperAdmins to remove their own status. This could create an application state where there were no super admins. This is not an acceptable application state.
2017-12-20 23:17:08 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
Roles: []chronograf.Role{
{
Name: roles.EditorRoleName,
Organization: "1",
},
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
SuperAdmin: false,
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "1",
},
},
},
userKeyUser: &chronograf.User{
ID: 1336,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
},
id: "1336",
wantStatus: http.StatusUnauthorized,
wantContentType: "application/json",
wantBody: `{"code":401,"message":"user cannot modify their own SuperAdmin status"}`,
},
Allow admins to update a superadmins roles
2017-12-04 21:53:30 +00:00
{
name: "Update a SuperAdmin's Roles - without super admin context",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Allow admins to update a superadmins roles
2017-12-04 21:53:30 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
Roles: []chronograf.Role{
{
Name: roles.EditorRoleName,
Organization: "1",
},
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
SuperAdmin: true,
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "1",
},
},
},
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
},
id: "1336",
wantStatus: http.StatusOK,
wantContentType: "application/json",
wantBody: `{"links":{"self":"/chronograf/v1/users/1336"},"id":"1336","name":"bobbetta","provider":"github","scheme":"oauth2","superAdmin":true,"roles":[{"name":"admin","organization":"1"}]}`,
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
{
name: "Update a Chronograf user to super admin - without super admin context",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
roles.EditorRole,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
SuperAdmin: true,
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.AdminRoleName,
Organization: "1",
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
},
Put entire user on context
2017-11-09 14:18:13 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: false,
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
id: "1336",
wantStatus: http.StatusUnauthorized,
wantContentType: "application/json",
Reference known issue #2601 in Admin creating SuperAdmin response Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-12-15 23:05:27 +00:00
wantBody: `{"code":401,"message":"User does not have authorization required to set SuperAdmin status. See https://github.com/influxdata/chronograf/issues/2601 for more information."}`,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
{
name: "Update a Chronograf user to super admin - with super admin context",
fields: fields{
Logger: log.New(log.DebugLevel),
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
OrganizationsStore: &mocks.OrganizationsStore{
GetF: func(ctx context.Context, q chronograf.OrganizationQuery) (*chronograf.Organization, error) {
switch *q.ID {
case "1":
return &chronograf.Organization{
ID: "1",
Name: "org",
DefaultRole: roles.ViewerRoleName,
}, nil
}
return nil, fmt.Errorf("org not found")
},
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
UsersStore: &mocks.UsersStore{
UpdateF: func(ctx context.Context, user *chronograf.User) error {
return nil
},
GetF: func(ctx context.Context, q chronograf.UserQuery) (*chronograf.User, error) {
switch *q.ID {
case 1336:
return &chronograf.User{
ID: 1336,
Name: "bobbetta",
Provider: "github",
Scheme: "oauth2",
Roles: []chronograf.Role{
Fix role related tests after rebase
2017-11-06 16:31:44 +00:00
roles.EditorRole,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
}, nil
default:
return nil, fmt.Errorf("User with ID %d not found", *q.ID)
}
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"PATCH",
"http://any.url",
nil,
),
user: &userRequest{
ID: 1336,
SuperAdmin: true,
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.AdminRoleName,
Organization: "1",
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
},
Put entire user on context
2017-11-09 14:18:13 +00:00
userKeyUser: &chronograf.User{
ID: 0,
Name: "coolUser",
Provider: "github",
Scheme: "oauth2",
SuperAdmin: true,
},
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
id: "1336",
wantStatus: http.StatusOK,
wantContentType: "application/json",
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
wantBody: `{"id":"1336","superAdmin":true,"name":"bobbetta","provider":"github","scheme":"oauth2","links":{"self":"/chronograf/v1/users/1336"},"roles":[{"name":"admin","organization":"1"}]}`,
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
},
Update user/role responses to return empty arrays
2017-03-10 19:24:48 +00:00
}
for _, tt := range tests {
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
t.Run(tt.name, func(t *testing.T) {
s := &Service{
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
Store: &mocks.Store{
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
UsersStore: tt.fields.UsersStore,
OrganizationsStore: tt.fields.OrganizationsStore,
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
},
Logger: tt.fields.Logger,
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}
tt.args.r = tt.args.r.WithContext(httprouter.WithParams(context.Background(),
httprouter.Params{
{
Key: "id",
Value: tt.id,
},
}))
buf, _ := json.Marshal(tt.args.user)
tt.args.r.Body = ioutil.NopCloser(bytes.NewReader(buf))
Add tests for /me endpoint
2017-02-22 03:36:23 +00:00
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
ctx := tt.args.r.Context()
Put entire user on context
2017-11-09 14:18:13 +00:00
if tt.args.userKeyUser != nil {
Change UserKey to UserContextKey Fix name of arguments in tests
2017-11-10 16:18:06 +00:00
ctx = context.WithValue(ctx, UserContextKey, tt.args.userKeyUser)
Allow SuperAdmins to promoted and demoted
2017-11-03 16:51:33 +00:00
}
tt.args.r = tt.args.r.WithContext(ctx)
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
s.UpdateUser(tt.args.w, tt.args.r)
resp := tt.args.w.Result()
content := resp.Header.Get("Content-Type")
body, _ := ioutil.ReadAll(resp.Body)
if resp.StatusCode != tt.wantStatus {
t.Errorf("%q. UpdateUser() = %v, want %v", tt.name, resp.StatusCode, tt.wantStatus)
}
if tt.wantContentType != "" && content != tt.wantContentType {
t.Errorf("%q. UpdateUser() = %v, want %v", tt.name, content, tt.wantContentType)
}
if eq, _ := jsonEqual(string(body), tt.wantBody); tt.wantBody != "" && !eq {
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
t.Errorf("%q. UpdateUser()\ngot:%v\n,\nwant:%v", tt.name, string(body), tt.wantBody)
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
}
})
}
}
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
func TestService_Users(t *testing.T) {
type fields struct {
UsersStore chronograf.UsersStore
Logger chronograf.Logger
}
type args struct {
w *httptest.ResponseRecorder
r *http.Request
}
tests := []struct {
name string
fields fields
args args
wantStatus int
wantContentType string
wantBody string
}{
{
name: "Get all Chronograf users",
fields: fields{
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
AllF: func(ctx context.Context) ([]chronograf.User, error) {
return []chronograf.User{
{
ID: 1337,
Name: "billysteve",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "google",
Scheme: "oauth2",
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
Roles: []chronograf.Role{
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.EditorRole,
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
},
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
},
{
ID: 1338,
Name: "bobbettastuhvetta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Scheme: "oauth2",
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
},
}, nil
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"GET",
"http://any.url", // can be any valid URL as we are bypassing mux
nil,
),
},
wantStatus: http.StatusOK,
wantContentType: "application/json",
Add superAdmin to users CRUD
2017-11-01 13:12:19 +00:00
wantBody: `{"users":[{"id":"1337","superAdmin":false,"name":"billysteve","provider":"google","scheme":"oauth2","roles":[{"name":"editor"}],"links":{"self":"/chronograf/v1/users/1337"}},{"id":"1338","superAdmin":false,"name":"bobbettastuhvetta","provider":"auth0","scheme":"oauth2","roles":[],"links":{"self":"/chronograf/v1/users/1338"}}],"links":{"self":"/chronograf/v1/users"}}`,
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
},
Return users in usersResponse in sorted order Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:19:46 +00:00
{
name: "Get all Chronograf users, ensuring order of users in response",
fields: fields{
Logger: log.New(log.DebugLevel),
UsersStore: &mocks.UsersStore{
AllF: func(ctx context.Context) ([]chronograf.User, error) {
return []chronograf.User{
{
ID: 1338,
Name: "bobbettastuhvetta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Scheme: "oauth2",
Return users in usersResponse in sorted order Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:19:46 +00:00
},
{
ID: 1337,
Name: "billysteve",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "google",
Scheme: "oauth2",
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
Roles: []chronograf.Role{
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.EditorRole,
Add Roles to Users CRUD Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-13 00:42:30 +00:00
},
Return users in usersResponse in sorted order Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:19:46 +00:00
},
}, nil
},
},
},
args: args{
w: httptest.NewRecorder(),
r: httptest.NewRequest(
"GET",
"http://any.url", // can be any valid URL as we are bypassing mux
nil,
),
},
wantStatus: http.StatusOK,
wantContentType: "application/json",
Add superAdmin to users CRUD
2017-11-01 13:12:19 +00:00
wantBody: `{"users":[{"id":"1337","superAdmin":false,"name":"billysteve","provider":"google","scheme":"oauth2","roles":[{"name":"editor"}],"links":{"self":"/chronograf/v1/users/1337"}},{"id":"1338","superAdmin":false,"name":"bobbettastuhvetta","provider":"auth0","scheme":"oauth2","roles":[],"links":{"self":"/chronograf/v1/users/1338"}}],"links":{"self":"/chronograf/v1/users"}}`,
Return users in usersResponse in sorted order Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:19:46 +00:00
},
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
s := &Service{
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
Store: &mocks.Store{
UsersStore: tt.fields.UsersStore,
},
Logger: tt.fields.Logger,
Add All route & operation for Chronograf Users Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-09 22:03:50 +00:00
}
s.Users(tt.args.w, tt.args.r)
resp := tt.args.w.Result()
content := resp.Header.Get("Content-Type")
body, _ := ioutil.ReadAll(resp.Body)
if resp.StatusCode != tt.wantStatus {
t.Errorf("%q. Users() = %v, want %v", tt.name, resp.StatusCode, tt.wantStatus)
}
if tt.wantContentType != "" && content != tt.wantContentType {
t.Errorf("%q. Users() = %v, want %v", tt.name, content, tt.wantContentType)
}
if eq, _ := jsonEqual(string(body), tt.wantBody); tt.wantBody != "" && !eq {
t.Errorf("%q. Users() = \n***%v***\n,\nwant\n***%v***", tt.name, string(body), tt.wantBody)
}
})
}
}
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
func TestUserRequest_ValidCreate(t *testing.T) {
type args struct {
u *userRequest
}
tests := []struct {
name string
args args
wantErr bool
err error
}{
{
name: "Valid",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Scheme: "oauth2",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: false,
err: nil,
},
{
name: "Invalid Name missing",
args: args{
u: &userRequest{
ID: 1337,
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Scheme: "oauth2",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: true,
err: fmt.Errorf("Name required on Chronograf User request body"),
},
{
name: "Invalid Provider missing",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Scheme: "oauth2",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: true,
err: fmt.Errorf("Provider required on Chronograf User request body"),
},
{
name: "Invalid Scheme missing",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: true,
err: fmt.Errorf("Scheme required on Chronograf User request body"),
},
{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
name: "Invalid roles - bad role name",
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Lowercase Provider & Scheme & Role values for consistency The client was being sent lowercase values for Role & Provider, but not Scheme. This change makes all the above lowercase.
2017-10-24 23:17:59 +00:00
Provider: "auth0",
Scheme: "oauth2",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
Name: "BilliettaSpecialRole",
Organization: "1",
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: true,
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
err: fmt.Errorf("Unknown role BilliettaSpecialRole. Valid roles are 'member', 'viewer', 'editor', 'admin', and '*'"),
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
name: "Invalid roles - missing organization",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Provider: "auth0",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: roles.EditorRoleName,
},
},
},
},
wantErr: true,
err: fmt.Errorf("no organization was provided"),
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
err := tt.args.u.ValidCreate()
if tt.wantErr {
if err == nil || err.Error() != tt.err.Error() {
t.Errorf("%q. ValidCreate(): wantErr %v,\nwant %v,\ngot %v", tt.name, tt.wantErr, tt.err, err)
}
} else {
if err != nil {
t.Errorf("%q. ValidCreate(): wantErr %v,\nwant %v,\ngot %v", tt.name, tt.wantErr, tt.err, err)
}
}
})
}
}
func TestUserRequest_ValidUpdate(t *testing.T) {
type args struct {
u *userRequest
}
tests := []struct {
name string
args args
wantErr bool
err error
}{
{
name: "Valid",
args: args{
u: &userRequest{
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
ID: 1337,
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
Roles: []chronograf.Role{
Disallow empty organization id create/update user
2017-11-22 19:49:44 +00:00
{
Name: roles.EditorRoleName,
Organization: "1",
},
Replace string slices of role names with slices of chronograf.Role This effectively reinstants rolly polly as king. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-16 23:26:08 +00:00
},
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
},
wantErr: false,
err: nil,
},
{
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
name: "Invalid roles missing",
args: args{
u: &userRequest{},
},
wantErr: true,
err: fmt.Errorf("No Roles to update"),
},
{
Accept name,provider,scheme in UpdateUser if unchanged
2017-11-22 20:20:48 +00:00
name: "Invalid - bad role name",
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
args: args{
u: &userRequest{
Accept name,provider,scheme in UpdateUser if unchanged
2017-11-22 20:20:48 +00:00
ID: 1337,
Name: "billietta",
Provider: "auth0",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: "BillietaSpecialOrg",
Organization: "0",
},
},
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
},
},
wantErr: true,
Add wildcard role and validate users roles in CRUD The server may now specify a '*' to indicate that the server should retrieve the organizations default role and assign it to the user.
2018-01-12 17:27:55 +00:00
err: fmt.Errorf("Unknown role BillietaSpecialOrg. Valid roles are 'member', 'viewer', 'editor', 'admin', and '*'"),
Allow UpdateUser to accept empty roles
2018-01-12 17:37:30 +00:00
},
{
name: "Valid roles empty",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Provider: "auth0",
Scheme: "oauth2",
Roles: []chronograf.Role{},
},
},
wantErr: false,
},
{
name: "Invalid - bad role name",
args: args{
u: &userRequest{
ID: 1337,
Name: "billietta",
Provider: "auth0",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: "BillietaSpecialOrg",
Organization: "0",
},
},
},
},
wantErr: true,
err: fmt.Errorf("Unknown role BillietaSpecialOrg. Valid roles are 'member', 'viewer', 'editor', 'admin', and '*'"),
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
},
{
Accept name,provider,scheme in UpdateUser if unchanged
2017-11-22 20:20:48 +00:00
name: "Invalid - duplicate organization",
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
args: args{
u: &userRequest{
Accept name,provider,scheme in UpdateUser if unchanged
2017-11-22 20:20:48 +00:00
ID: 1337,
Name: "billietta",
Provider: "auth0",
Scheme: "oauth2",
Roles: []chronograf.Role{
{
Name: roles.AdminRoleName,
Organization: "0",
},
{
Name: roles.ViewerRoleName,
Organization: "0",
},
},
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
},
},
wantErr: true,
Accept name,provider,scheme in UpdateUser if unchanged
2017-11-22 20:20:48 +00:00
err: fmt.Errorf("duplicate organization \"0\" in roles"),
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
err := tt.args.u.ValidUpdate()
if tt.wantErr {
if err == nil || err.Error() != tt.err.Error() {
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
t.Errorf("%q. ValidUpdate(): wantErr %v,\nwant %v,\ngot %v", tt.name, tt.wantErr, tt.err, err)
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
}
} else {
if err != nil {
Modify ValidUpdate to ensure only User Roles can be updated Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-24 21:20:24 +00:00
t.Errorf("%q. ValidUpdate(): wantErr %v,\nwant %v,\ngot %v", tt.name, tt.wantErr, tt.err, err)
Add test coverage for userRequest validation Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-16 19:28:15 +00:00
}
}
})
}
}