Skip to content

Commit

Permalink
[#652] Test whether a new datastore resource is private if the CKAN r…
Browse files Browse the repository at this point in the history 
…esource is private
  • Loading branch information
@domoritz
domoritz committed Apr 24, 2013
1 parent eb06a95 commit d7414f4
Showing 1 changed file with 45 additions and 6 deletions.
51 changes: 45 additions & 6 deletions ckanext/datastore/tests/test_search.py
View file
Expand Up @@ -2,6 +2,7 @@
import nose
import pprint

import pylons
import sqlalchemy.orm as orm

import ckan.plugins as p
Expand Down Expand Up @@ -106,7 +107,6 @@ def test_search_private_dataset(self):
context,
{'name': 'privatedataset',
'private': True,
'title': "A private dataset that the normal user can't see",
'groups': [{
'id': group.id
}]})
Expand Down Expand Up @@ -444,12 +444,14 @@ def setup_class(cls):
if not tests.is_datastore_supported():
raise nose.SkipTest("Datastore not supported")
plugin = p.load('datastore')
plugin.configure(pylons.config)
if plugin.legacy_mode:
raise nose.SkipTest("SQL tests are not supported in legacy mode")
ctd.CreateTestData.create()
cls.sysadmin_user = model.User.get('testsysadmin')
cls.normal_user = model.User.get('annafan')
resource = model.Package.get('annakarenina').resources[0]
cls.dataset = model.Package.get('annakarenina')
resource = cls.dataset.resources[0]
cls.data = {
'resource_id': resource.id,
'aliases': 'books4',
Expand All @@ -462,8 +464,7 @@ def setup_class(cls):
'nested': ['b', {'moo': 'moo'}]},
{u'b\xfck': 'warandpeace',
'author': 'tolstoy',
'nested': {'a':'b'}}
]
'nested': {'a': 'b'}}]
}
postparams = '%s=1' % json.dumps(cls.data)
auth = {'Authorization': str(cls.sysadmin_user.apikey)}
Expand Down Expand Up @@ -563,13 +564,12 @@ def test_self_join(self):
assert result['records'] == self.expected_join_results

def test_read_private(self):
from pylons import config
context = {
'user': self.sysadmin_user.name,
'model': model}
data_dict = {
'resource_id': self.data['resource_id'],
'connection_url': config['ckan.datastore.write_url']}
'connection_url': pylons.config['ckan.datastore.write_url']}
p.toolkit.get_action('datastore_make_private')(context, data_dict)
query = 'SELECT * FROM "{0}"'.format(self.data['resource_id'])
data = {'sql': query}
Expand All @@ -583,3 +583,42 @@ def test_read_private(self):

# make it public for the other tests
p.toolkit.get_action('datastore_make_public')(context, data_dict)

def test_new_datastore_table_from_private_resource(self):
# make a private CKAN resource
group = self.dataset.get_groups()[0]
context = {
'user': self.sysadmin_user.name,
'model': model}
package = p.toolkit.get_action('package_create')(
context,
{'name': 'privatedataset',
'private': True,
'groups': [{
'id': group.id
}]})
resource = p.toolkit.get_action('resource_create')(
context,
{'name': 'privateresource',
'url': 'https://www.example.com/',
'package_id': package['id']})

postparams = '%s=1' % json.dumps({
'resource_id': resource['id'],
})
auth = {'Authorization': str(self.sysadmin_user.apikey)}
res = self.app.post('/api/action/datastore_create', params=postparams,
extra_environ=auth)
res_dict = json.loads(res.body)
assert res_dict['success'] is True

# new resource should be private
query = 'SELECT * FROM "{0}"'.format(resource['id'])
data = {'sql': query}
postparams = json.dumps(data)
auth = {'Authorization': str(self.normal_user.apikey)}
res = self.app.post('/api/action/datastore_search_sql', params=postparams,
extra_environ=auth, status=403)
res_dict = json.loads(res.body)
assert res_dict['success'] is False
assert res_dict['error']['__type'] == 'Authorization Error'

0 comments on commit d7414f4

Please sign in to comment.