afan
/
gitea
보기 1
좋아요 0
포크 0
코드 이슈 0 풀 리퀘스트 0 릴리즈 0 위키 Activity
gitea源码
3 커밋
2 브랜치
브렌치: master
브랜치 태그
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
gitea/models/user/user_test.go

user_test.go 24KB
고유링크 히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package user_test

  5. 

  6. import (

  7. 	"crypto/rand"

  8. 	"fmt"

  9. 	"strings"

  10. 	"testing"

  11. 	"time"

  12. 

  13. 	"code.gitea.io/gitea/models/auth"

  14. 	"code.gitea.io/gitea/models/db"

  15. 	"code.gitea.io/gitea/models/unittest"

  16. 	user_model "code.gitea.io/gitea/models/user"

  17. 	"code.gitea.io/gitea/modules/auth/password/hash"

  18. 	"code.gitea.io/gitea/modules/container"

  19. 	"code.gitea.io/gitea/modules/optional"

  20. 	"code.gitea.io/gitea/modules/setting"

  21. 	"code.gitea.io/gitea/modules/structs"

  22. 	"code.gitea.io/gitea/modules/test"

  23. 	"code.gitea.io/gitea/modules/timeutil"

  24. 

  25. 	"github.com/stretchr/testify/assert"

  26. 	"github.com/stretchr/testify/require"

  27. )

  28. 

  29. func TestIsUsableUsername(t *testing.T) {

  30. 	assert.NoError(t, user_model.IsUsableUsername("a"))

  31. 	assert.NoError(t, user_model.IsUsableUsername("foo.wiki"))

  32. 	assert.NoError(t, user_model.IsUsableUsername("foo.git"))

  33. 

  34. 	assert.Error(t, user_model.IsUsableUsername("a--b"))

  35. 	assert.Error(t, user_model.IsUsableUsername("-1_."))

  36. 	assert.Error(t, user_model.IsUsableUsername(".profile"))

  37. 	assert.Error(t, user_model.IsUsableUsername("-"))

  38. 	assert.Error(t, user_model.IsUsableUsername("🌞"))

  39. 	assert.Error(t, user_model.IsUsableUsername("the..repo"))

  40. 	assert.Error(t, user_model.IsUsableUsername("foo.RSS"))

  41. 	assert.Error(t, user_model.IsUsableUsername("foo.PnG"))

  42. }

  43. 

  44. func TestOAuth2Application_LoadUser(t *testing.T) {

  45. 	assert.NoError(t, unittest.PrepareTestDatabase())

  46. 	app := unittest.AssertExistsAndLoadBean(t, &auth.OAuth2Application{ID: 1})

  47. 	user, err := user_model.GetUserByID(t.Context(), app.UID)

  48. 	assert.NoError(t, err)

  49. 	assert.NotNil(t, user)

  50. }

  51. 

  52. func TestUserEmails(t *testing.T) {

  53. 	assert.NoError(t, unittest.PrepareTestDatabase())

  54. 	t.Run("GetUserEmailsByNames", func(t *testing.T) {

  55. 		// ignore none active user email

  56. 		assert.ElementsMatch(t, []string{"user8@example.com"}, user_model.GetUserEmailsByNames(t.Context(), []string{"user8", "user9"}))

  57. 		assert.ElementsMatch(t, []string{"user8@example.com", "user5@example.com"}, user_model.GetUserEmailsByNames(t.Context(), []string{"user8", "user5"}))

  58. 		assert.ElementsMatch(t, []string{"user8@example.com"}, user_model.GetUserEmailsByNames(t.Context(), []string{"user8", "org7"}))

  59. 	})

  60. 	t.Run("GetUsersByEmails", func(t *testing.T) {

  61. 		defer test.MockVariableValue(&setting.Service.NoReplyAddress, "NoReply.gitea.internal")()

  62. 		testGetUserByEmail := func(t *testing.T, email string, uid int64) {

  63. 			m, err := user_model.GetUsersByEmails(t.Context(), []string{email})

  64. 			require.NoError(t, err)

  65. 			user := m.GetByEmail(email)

  66. 			if uid == 0 {

  67. 				require.Nil(t, user)

  68. 				return

  69. 			}

  70. 			require.NotNil(t, user)

  71. 			assert.Equal(t, uid, user.ID)

  72. 		}

  73. 		cases := []struct {

  74. 			Email string

  75. 			UID   int64

  76. 		}{

  77. 			{"UseR1@example.com", 1},

  78. 			{"user1-2@example.COM", 1},

  79. 			{"USER2@" + setting.Service.NoReplyAddress, 2},

  80. 			{"user4@example.com", 4},

  81. 			{"no-such", 0},

  82. 		}

  83. 		for _, c := range cases {

  84. 			t.Run(c.Email, func(t *testing.T) {

  85. 				testGetUserByEmail(t, c.Email, c.UID)

  86. 			})

  87. 		}

  88. 

  89. 		t.Run("NoReplyConflict", func(t *testing.T) {

  90. 			setting.Service.NoReplyAddress = "example.com"

  91. 			testGetUserByEmail(t, "user1-2@example.COM", 1)

  92. 		})

  93. 	})

  94. }

  95. 

  96. func TestCanCreateOrganization(t *testing.T) {

  97. 	assert.NoError(t, unittest.PrepareTestDatabase())

  98. 

  99. 	admin := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  100. 	assert.True(t, admin.CanCreateOrganization())

  101. 

  102. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  103. 	assert.True(t, user.CanCreateOrganization())

  104. 	// Disable user create organization permission.

  105. 	user.AllowCreateOrganization = false

  106. 	assert.False(t, user.CanCreateOrganization())

  107. 

  108. 	setting.Admin.DisableRegularOrgCreation = true

  109. 	user.AllowCreateOrganization = true

  110. 	assert.True(t, admin.CanCreateOrganization())

  111. 	assert.False(t, user.CanCreateOrganization())

  112. }

  113. 

  114. func TestSearchUsers(t *testing.T) {

  115. 	assert.NoError(t, unittest.PrepareTestDatabase())

  116. 	testSuccess := func(opts user_model.SearchUserOptions, expectedUserOrOrgIDs []int64) {

  117. 		users, _, err := user_model.SearchUsers(t.Context(), opts)

  118. 		assert.NoError(t, err)

  119. 		cassText := fmt.Sprintf("ids: %v, opts: %v", expectedUserOrOrgIDs, opts)

  120. 		if assert.Len(t, users, len(expectedUserOrOrgIDs), "case: %s", cassText) {

  121. 			for i, expectedID := range expectedUserOrOrgIDs {

  122. 				assert.Equal(t, expectedID, users[i].ID, "case: %s", cassText)

  123. 			}

  124. 		}

  125. 	}

  126. 

  127. 	// test orgs

  128. 	testOrgSuccess := func(opts user_model.SearchUserOptions, expectedOrgIDs []int64) {

  129. 		opts.Type = user_model.UserTypeOrganization

  130. 		testSuccess(opts, expectedOrgIDs)

  131. 	}

  132. 

  133. 	testOrgSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 1, PageSize: 2}},

  134. 		[]int64{3, 6})

  135. 

  136. 	testOrgSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 2, PageSize: 2}},

  137. 		[]int64{7, 17})

  138. 

  139. 	testOrgSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 3, PageSize: 2}},

  140. 		[]int64{19, 25})

  141. 

  142. 	testOrgSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 4, PageSize: 2}},

  143. 		[]int64{26, 41})

  144. 

  145. 	testOrgSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 5, PageSize: 2}},

  146. 		[]int64{42})

  147. 

  148. 	testOrgSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 6, PageSize: 2}},

  149. 		[]int64{})

  150. 

  151. 	// test users

  152. 	testUserSuccess := func(opts user_model.SearchUserOptions, expectedUserIDs []int64) {

  153. 		opts.Type = user_model.UserTypeIndividual

  154. 		testSuccess(opts, expectedUserIDs)

  155. 	}

  156. 

  157. 	testUserSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 1}},

  158. 		[]int64{1, 2, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21, 24, 27, 28, 29, 30, 32, 34, 37, 38, 39, 40})

  159. 

  160. 	testUserSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 1}, IsActive: optional.Some(false)},

  161. 		[]int64{9})

  162. 

  163. 	testUserSuccess(user_model.SearchUserOptions{OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 1}, IsActive: optional.Some(true)},

  164. 		[]int64{1, 2, 4, 5, 8, 10, 11, 12, 13, 14, 15, 16, 18, 20, 21, 24, 27, 28, 29, 30, 32, 34, 37, 38, 39, 40})

  165. 

  166. 	testUserSuccess(user_model.SearchUserOptions{Keyword: "user1", OrderBy: "id ASC", ListOptions: db.ListOptions{Page: 1}, IsActive: optional.Some(true)},

  167. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  168. 

  169. 	// order by name asc default

  170. 	testUserSuccess(user_model.SearchUserOptions{Keyword: "user1", ListOptions: db.ListOptions{Page: 1}, IsActive: optional.Some(true)},

  171. 		[]int64{1, 10, 11, 12, 13, 14, 15, 16, 18})

  172. 

  173. 	testUserSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 1}, IsAdmin: optional.Some(true)},

  174. 		[]int64{1})

  175. 

  176. 	testUserSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 1}, IsRestricted: optional.Some(true)},

  177. 		[]int64{29})

  178. 

  179. 	testUserSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 1}, IsProhibitLogin: optional.Some(true)},

  180. 		[]int64{37})

  181. 

  182. 	testUserSuccess(user_model.SearchUserOptions{ListOptions: db.ListOptions{Page: 1}, IsTwoFactorEnabled: optional.Some(true)},

  183. 		[]int64{24})

  184. }

  185. 

  186. func TestEmailNotificationPreferences(t *testing.T) {

  187. 	assert.NoError(t, unittest.PrepareTestDatabase())

  188. 

  189. 	for _, test := range []struct {

  190. 		expected string

  191. 		userID   int64

  192. 	}{

  193. 		{user_model.EmailNotificationsEnabled, 1},

  194. 		{user_model.EmailNotificationsEnabled, 2},

  195. 		{user_model.EmailNotificationsOnMention, 3},

  196. 		{user_model.EmailNotificationsOnMention, 4},

  197. 		{user_model.EmailNotificationsEnabled, 5},

  198. 		{user_model.EmailNotificationsEnabled, 6},

  199. 		{user_model.EmailNotificationsDisabled, 7},

  200. 		{user_model.EmailNotificationsEnabled, 8},

  201. 		{user_model.EmailNotificationsOnMention, 9},

  202. 	} {

  203. 		user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: test.userID})

  204. 		assert.Equal(t, test.expected, user.EmailNotificationsPreference)

  205. 	}

  206. }

  207. 

  208. func TestHashPasswordDeterministic(t *testing.T) {

  209. 	b := make([]byte, 16)

  210. 	u := &user_model.User{}

  211. 	algos := hash.RecommendedHashAlgorithms

  212. 	for j := range algos {

  213. 		u.PasswdHashAlgo = algos[j]

  214. 		for range 50 {

  215. 			// generate a random password

  216. 			rand.Read(b)

  217. 			pass := string(b)

  218. 

  219. 			// save the current password in the user - hash it and store the result

  220. 			u.SetPassword(pass)

  221. 			r1 := u.Passwd

  222. 

  223. 			// run again

  224. 			u.SetPassword(pass)

  225. 			r2 := u.Passwd

  226. 

  227. 			assert.NotEqual(t, r1, r2)

  228. 			assert.True(t, u.ValidatePassword(pass))

  229. 		}

  230. 	}

  231. }

  232. 

  233. func BenchmarkHashPassword(b *testing.B) {

  234. 	// BenchmarkHashPassword ensures that it takes a reasonable amount of time

  235. 	// to hash a password - in order to protect from brute-force attacks.

  236. 	pass := "password1337"

  237. 	u := &user_model.User{Passwd: pass}

  238. 	b.ResetTimer()

  239. 	for b.Loop() {

  240. 		u.SetPassword(pass)

  241. 	}

  242. }

  243. 

  244. func TestNewGitSig(t *testing.T) {

  245. 	users := make([]*user_model.User, 0, 20)

  246. 	err := db.GetEngine(t.Context()).Find(&users)

  247. 	assert.NoError(t, err)

  248. 

  249. 	for _, user := range users {

  250. 		sig := user.NewGitSig()

  251. 		assert.NotContains(t, sig.Name, "<")

  252. 		assert.NotContains(t, sig.Name, ">")

  253. 		assert.NotContains(t, sig.Name, "\n")

  254. 		assert.NotEmpty(t, strings.TrimSpace(sig.Name))

  255. 	}

  256. }

  257. 

  258. func TestDisplayName(t *testing.T) {

  259. 	users := make([]*user_model.User, 0, 20)

  260. 	err := db.GetEngine(t.Context()).Find(&users)

  261. 	assert.NoError(t, err)

  262. 

  263. 	for _, user := range users {

  264. 		displayName := user.DisplayName()

  265. 		assert.Equal(t, strings.TrimSpace(displayName), displayName)

  266. 		if len(strings.TrimSpace(user.FullName)) == 0 {

  267. 			assert.Equal(t, user.Name, displayName)

  268. 		}

  269. 		assert.NotEmpty(t, strings.TrimSpace(displayName))

  270. 	}

  271. }

  272. 

  273. func TestCreateUserInvalidEmail(t *testing.T) {

  274. 	user := &user_model.User{

  275. 		Name:               "GiteaBot",

  276. 		Email:              "GiteaBot@gitea.io\r\n",

  277. 		Passwd:             ";p['////..-++']",

  278. 		IsAdmin:            false,

  279. 		Theme:              setting.UI.DefaultTheme,

  280. 		MustChangePassword: false,

  281. 	}

  282. 

  283. 	err := user_model.CreateUser(t.Context(), user, &user_model.Meta{})

  284. 	assert.Error(t, err)

  285. 	assert.True(t, user_model.IsErrEmailCharIsNotSupported(err))

  286. }

  287. 

  288. func TestCreateUserEmailAlreadyUsed(t *testing.T) {

  289. 	assert.NoError(t, unittest.PrepareTestDatabase())

  290. 

  291. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  292. 

  293. 	// add new user with user2's email

  294. 	user.Name = "testuser"

  295. 	user.LowerName = strings.ToLower(user.Name)

  296. 	user.ID = 0

  297. 	err := user_model.CreateUser(t.Context(), user, &user_model.Meta{})

  298. 	assert.Error(t, err)

  299. 	assert.True(t, user_model.IsErrEmailAlreadyUsed(err))

  300. }

  301. 

  302. func TestCreateUserCustomTimestamps(t *testing.T) {

  303. 	assert.NoError(t, unittest.PrepareTestDatabase())

  304. 

  305. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  306. 

  307. 	// Add new user with a custom creation timestamp.

  308. 	var creationTimestamp timeutil.TimeStamp = 12345

  309. 	user.Name = "testuser"

  310. 	user.LowerName = strings.ToLower(user.Name)

  311. 	user.ID = 0

  312. 	user.Email = "unique@example.com"

  313. 	user.CreatedUnix = creationTimestamp

  314. 	err := user_model.CreateUser(t.Context(), user, &user_model.Meta{})

  315. 	assert.NoError(t, err)

  316. 

  317. 	fetched, err := user_model.GetUserByID(t.Context(), user.ID)

  318. 	assert.NoError(t, err)

  319. 	assert.Equal(t, creationTimestamp, fetched.CreatedUnix)

  320. 	assert.Equal(t, creationTimestamp, fetched.UpdatedUnix)

  321. }

  322. 

  323. func TestCreateUserWithoutCustomTimestamps(t *testing.T) {

  324. 	assert.NoError(t, unittest.PrepareTestDatabase())

  325. 

  326. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  327. 

  328. 	// There is no way to use a mocked time for the XORM auto-time functionality,

  329. 	// so use the real clock to approximate the expected timestamp.

  330. 	timestampStart := time.Now().Unix()

  331. 

  332. 	// Add new user without a custom creation timestamp.

  333. 	user.Name = "Testuser"

  334. 	user.LowerName = strings.ToLower(user.Name)

  335. 	user.ID = 0

  336. 	user.Email = "unique@example.com"

  337. 	user.CreatedUnix = 0

  338. 	user.UpdatedUnix = 0

  339. 	err := user_model.CreateUser(t.Context(), user, &user_model.Meta{})

  340. 	assert.NoError(t, err)

  341. 

  342. 	timestampEnd := time.Now().Unix()

  343. 

  344. 	fetched, err := user_model.GetUserByID(t.Context(), user.ID)

  345. 	assert.NoError(t, err)

  346. 

  347. 	assert.LessOrEqual(t, timestampStart, fetched.CreatedUnix)

  348. 	assert.LessOrEqual(t, fetched.CreatedUnix, timestampEnd)

  349. 

  350. 	assert.LessOrEqual(t, timestampStart, fetched.UpdatedUnix)

  351. 	assert.LessOrEqual(t, fetched.UpdatedUnix, timestampEnd)

  352. }

  353. 

  354. func TestGetUserIDsByNames(t *testing.T) {

  355. 	assert.NoError(t, unittest.PrepareTestDatabase())

  356. 

  357. 	// ignore non existing

  358. 	IDs, err := user_model.GetUserIDsByNames(t.Context(), []string{"user1", "user2", "none_existing_user"}, true)

  359. 	assert.NoError(t, err)

  360. 	assert.Equal(t, []int64{1, 2}, IDs)

  361. 

  362. 	// ignore non existing

  363. 	IDs, err = user_model.GetUserIDsByNames(t.Context(), []string{"user1", "do_not_exist"}, false)

  364. 	assert.Error(t, err)

  365. 	assert.Equal(t, []int64(nil), IDs)

  366. }

  367. 

  368. func TestGetMaileableUsersByIDs(t *testing.T) {

  369. 	assert.NoError(t, unittest.PrepareTestDatabase())

  370. 

  371. 	results, err := user_model.GetMailableUsersByIDs(t.Context(), []int64{1, 4}, false)

  372. 	assert.NoError(t, err)

  373. 	assert.Len(t, results, 1)

  374. 	if len(results) > 1 {

  375. 		assert.Equal(t, 1, results[0].ID)

  376. 	}

  377. 

  378. 	results, err = user_model.GetMailableUsersByIDs(t.Context(), []int64{1, 4}, true)

  379. 	assert.NoError(t, err)

  380. 	assert.Len(t, results, 2)

  381. 	if len(results) > 2 {

  382. 		assert.Equal(t, 1, results[0].ID)

  383. 		assert.Equal(t, 4, results[1].ID)

  384. 	}

  385. }

  386. 

  387. func TestNewUserRedirect(t *testing.T) {

  388. 	// redirect to a completely new name

  389. 	assert.NoError(t, unittest.PrepareTestDatabase())

  390. 

  391. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  392. 	assert.NoError(t, user_model.NewUserRedirect(t.Context(), user.ID, user.Name, "newusername"))

  393. 

  394. 	unittest.AssertExistsAndLoadBean(t, &user_model.Redirect{

  395. 		LowerName:      user.LowerName,

  396. 		RedirectUserID: user.ID,

  397. 	})

  398. 	unittest.AssertExistsAndLoadBean(t, &user_model.Redirect{

  399. 		LowerName:      "olduser1",

  400. 		RedirectUserID: user.ID,

  401. 	})

  402. }

  403. 

  404. func TestNewUserRedirect2(t *testing.T) {

  405. 	// redirect to previously used name

  406. 	assert.NoError(t, unittest.PrepareTestDatabase())

  407. 

  408. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  409. 	assert.NoError(t, user_model.NewUserRedirect(t.Context(), user.ID, user.Name, "olduser1"))

  410. 

  411. 	unittest.AssertExistsAndLoadBean(t, &user_model.Redirect{

  412. 		LowerName:      user.LowerName,

  413. 		RedirectUserID: user.ID,

  414. 	})

  415. 	unittest.AssertNotExistsBean(t, &user_model.Redirect{

  416. 		LowerName:      "olduser1",

  417. 		RedirectUserID: user.ID,

  418. 	})

  419. }

  420. 

  421. func TestNewUserRedirect3(t *testing.T) {

  422. 	// redirect for a previously-unredirected user

  423. 	assert.NoError(t, unittest.PrepareTestDatabase())

  424. 

  425. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  426. 	assert.NoError(t, user_model.NewUserRedirect(t.Context(), user.ID, user.Name, "newusername"))

  427. 

  428. 	unittest.AssertExistsAndLoadBean(t, &user_model.Redirect{

  429. 		LowerName:      user.LowerName,

  430. 		RedirectUserID: user.ID,

  431. 	})

  432. }

  433. 

  434. func TestGetUserByOpenID(t *testing.T) {

  435. 	assert.NoError(t, unittest.PrepareTestDatabase())

  436. 

  437. 	_, err := user_model.GetUserByOpenID(t.Context(), "https://unknown")

  438. 	if assert.Error(t, err) {

  439. 		assert.True(t, user_model.IsErrUserNotExist(err))

  440. 	}

  441. 

  442. 	user, err := user_model.GetUserByOpenID(t.Context(), "https://user1.domain1.tld")

  443. 	if assert.NoError(t, err) {

  444. 		assert.Equal(t, int64(1), user.ID)

  445. 	}

  446. 

  447. 	user, err = user_model.GetUserByOpenID(t.Context(), "https://domain1.tld/user2/")

  448. 	if assert.NoError(t, err) {

  449. 		assert.Equal(t, int64(2), user.ID)

  450. 	}

  451. }

  452. 

  453. func TestFollowUser(t *testing.T) {

  454. 	assert.NoError(t, unittest.PrepareTestDatabase())

  455. 

  456. 	testSuccess := func(follower, followed *user_model.User) {

  457. 		assert.NoError(t, user_model.FollowUser(t.Context(), follower, followed))

  458. 		unittest.AssertExistsAndLoadBean(t, &user_model.Follow{UserID: follower.ID, FollowID: followed.ID})

  459. 	}

  460. 

  461. 	user2 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 2})

  462. 	user4 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 4})

  463. 	user5 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 5})

  464. 

  465. 	testSuccess(user4, user2)

  466. 	testSuccess(user5, user2)

  467. 

  468. 	assert.NoError(t, user_model.FollowUser(t.Context(), user2, user2))

  469. 

  470. 	unittest.CheckConsistencyFor(t, &user_model.User{})

  471. }

  472. 

  473. func TestUnfollowUser(t *testing.T) {

  474. 	assert.NoError(t, unittest.PrepareTestDatabase())

  475. 

  476. 	testSuccess := func(followerID, followedID int64) {

  477. 		assert.NoError(t, user_model.UnfollowUser(t.Context(), followerID, followedID))

  478. 		unittest.AssertNotExistsBean(t, &user_model.Follow{UserID: followerID, FollowID: followedID})

  479. 	}

  480. 	testSuccess(4, 2)

  481. 	testSuccess(5, 2)

  482. 	testSuccess(2, 2)

  483. 

  484. 	unittest.CheckConsistencyFor(t, &user_model.User{})

  485. }

  486. 

  487. func TestIsUserVisibleToViewer(t *testing.T) {

  488. 	assert.NoError(t, unittest.PrepareTestDatabase())

  489. 

  490. 	user1 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})   // admin, public

  491. 	user4 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 4})   // normal, public

  492. 	user20 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 20}) // public, same team as user31

  493. 	user29 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 29}) // public, is restricted

  494. 	user31 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 31}) // private, same team as user20

  495. 	user33 := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 33}) // limited, follows 31

  496. 

  497. 	test := func(u, viewer *user_model.User, expected bool) {

  498. 		name := func(u *user_model.User) string {

  499. 			if u == nil {

  500. 				return "<nil>"

  501. 			}

  502. 			return u.Name

  503. 		}

  504. 		assert.Equal(t, expected, user_model.IsUserVisibleToViewer(t.Context(), u, viewer), "user %v should be visible to viewer %v: %v", name(u), name(viewer), expected)

  505. 	}

  506. 

  507. 	// admin viewer

  508. 	test(user1, user1, true)

  509. 	test(user20, user1, true)

  510. 	test(user31, user1, true)

  511. 	test(user33, user1, true)

  512. 

  513. 	// non admin viewer

  514. 	test(user4, user4, true)

  515. 	test(user20, user4, true)

  516. 	test(user31, user4, false)

  517. 	test(user33, user4, true)

  518. 	test(user4, nil, true)

  519. 

  520. 	// public user

  521. 	test(user4, user20, true)

  522. 	test(user4, user31, true)

  523. 	test(user4, user33, true)

  524. 

  525. 	// limited user

  526. 	test(user33, user33, true)

  527. 	test(user33, user4, true)

  528. 	test(user33, user29, false)

  529. 	test(user33, nil, false)

  530. 

  531. 	// private user

  532. 	test(user31, user31, true)

  533. 	test(user31, user4, false)

  534. 	test(user31, user20, true)

  535. 	test(user31, user29, false)

  536. 	test(user31, user33, true)

  537. 	test(user31, nil, false)

  538. }

  539. 

  540. func Test_ValidateUser(t *testing.T) {

  541. 	defer test.MockVariableValue(&setting.Service.AllowedUserVisibilityModesSlice, []bool{true, false, true})()

  542. 

  543. 	kases := map[*user_model.User]bool{

  544. 		{ID: 1, Visibility: structs.VisibleTypePublic}:  true,

  545. 		{ID: 2, Visibility: structs.VisibleTypeLimited}: false,

  546. 		{ID: 2, Visibility: structs.VisibleTypePrivate}: true,

  547. 	}

  548. 	for kase, expected := range kases {

  549. 		assert.Equal(t, expected, nil == user_model.ValidateUser(kase), "case: %+v", kase)

  550. 	}

  551. }

  552. 

  553. func Test_NormalizeUserFromEmail(t *testing.T) {

  554. 	testCases := []struct {

  555. 		Input             string

  556. 		Expected          string

  557. 		IsNormalizedValid bool

  558. 	}{

  559. 		{"name@example.com", "name", true},

  560. 		{"test'`´name", "testname", true},

  561. 		{"Sinéad.O'Connor", "Sinead.OConnor", true},

  562. 		{"Æsir", "AEsir", true},

  563. 		{"éé", "ee", true}, // \u00e9\u0065\u0301

  564. 		{"Awareness Hub", "Awareness-Hub", true},

  565. 		{"double__underscore", "double__underscore", false}, // We should consider squashing double non-alpha characters

  566. 		{".bad.", ".bad.", false},

  567. 		{"new😀user", "new😀user", false}, // No plans to support

  568. 		{`"quoted"`, `"quoted"`, false}, // No plans to support

  569. 	}

  570. 	for _, testCase := range testCases {

  571. 		normalizedName, err := user_model.NormalizeUserName(testCase.Input)

  572. 		assert.NoError(t, err)

  573. 		assert.Equal(t, testCase.Expected, normalizedName)

  574. 		if testCase.IsNormalizedValid {

  575. 			assert.NoError(t, user_model.IsUsableUsername(normalizedName))

  576. 		} else {

  577. 			assert.Error(t, user_model.IsUsableUsername(normalizedName))

  578. 		}

  579. 	}

  580. }

  581. 

  582. func TestEmailTo(t *testing.T) {

  583. 	testCases := []struct {

  584. 		fullName string

  585. 		mail     string

  586. 		result   string

  587. 	}{

  588. 		{"Awareness Hub", "awareness@hub.net", "Awareness Hub <awareness@hub.net>"},

  589. 		{"name@example.com", "name@example.com", "name@example.com"},

  590. 		{"Hi Its <Mee>", "ee@mail.box", "Hi Its Mee <ee@mail.box>"},

  591. 		{"Sinéad.O'Connor", "sinead.oconnor@gmail.com", "=?utf-8?q?Sin=C3=A9ad.O'Connor?= <sinead.oconnor@gmail.com>"},

  592. 		{"Æsir", "aesir@gmx.de", "=?utf-8?q?=C3=86sir?= <aesir@gmx.de>"},

  593. 		{"new😀user", "new.user@alo.com", "=?utf-8?q?new=F0=9F=98=80user?= <new.user@alo.com>"},

  594. 		{`"quoted"`, "quoted@test.com", "quoted <quoted@test.com>"},

  595. 	}

  596. 

  597. 	for _, testCase := range testCases {

  598. 		t.Run(testCase.result, func(t *testing.T) {

  599. 			testUser := &user_model.User{FullName: testCase.fullName, Email: testCase.mail}

  600. 			assert.Equal(t, testCase.result, testUser.EmailTo())

  601. 		})

  602. 	}

  603. }

  604. 

  605. func TestDisabledUserFeatures(t *testing.T) {

  606. 	assert.NoError(t, unittest.PrepareTestDatabase())

  607. 

  608. 	testValues := container.SetOf(setting.UserFeatureDeletion,

  609. 		setting.UserFeatureManageSSHKeys,

  610. 		setting.UserFeatureManageGPGKeys)

  611. 	defer test.MockVariableValue(&setting.Admin.ExternalUserDisableFeatures, testValues)()

  612. 

  613. 	user := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: 1})

  614. 

  615. 	assert.Empty(t, setting.Admin.UserDisabledFeatures.Values())

  616. 

  617. 	// no features should be disabled with a plain login type

  618. 	assert.LessOrEqual(t, user.LoginType, auth.Plain)

  619. 	assert.Empty(t, user_model.DisabledFeaturesWithLoginType(user).Values())

  620. 	for _, f := range testValues.Values() {

  621. 		assert.False(t, user_model.IsFeatureDisabledWithLoginType(user, f))

  622. 	}

  623. 

  624. 	// check disabled features with external login type

  625. 	user.LoginType = auth.OAuth2

  626. 

  627. 	// all features should be disabled

  628. 	assert.NotEmpty(t, user_model.DisabledFeaturesWithLoginType(user).Values())

  629. 	for _, f := range testValues.Values() {

  630. 		assert.True(t, user_model.IsFeatureDisabledWithLoginType(user, f))

  631. 	}

  632. }

  633. 

  634. func TestGetInactiveUsers(t *testing.T) {

  635. 	assert.NoError(t, unittest.PrepareTestDatabase())

  636. 

  637. 	// all inactive users

  638. 	// user1's createdunix is 1730468968

  639. 	users, err := user_model.GetInactiveUsers(t.Context(), 0)

  640. 	assert.NoError(t, err)

  641. 	assert.Len(t, users, 1)

  642. 	interval := time.Now().Unix() - 1730468968 + 3600*24

  643. 	users, err = user_model.GetInactiveUsers(t.Context(), time.Duration(interval*int64(time.Second)))

  644. 	assert.NoError(t, err)

  645. 	assert.Empty(t, users)

  646. }

  647. 

  648. func TestCanCreateRepo(t *testing.T) {

  649. 	defer test.MockVariableValue(&setting.Repository.MaxCreationLimit)()

  650. 	const noLimit = -1

  651. 	doerNormal := &user_model.User{}

  652. 	doerAdmin := &user_model.User{IsAdmin: true}

  653. 	t.Run("NoGlobalLimit", func(t *testing.T) {

  654. 		setting.Repository.MaxCreationLimit = noLimit

  655. 

  656. 		assert.True(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: noLimit}))

  657. 		assert.False(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 0}))

  658. 		assert.True(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 100}))

  659. 

  660. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: noLimit}))

  661. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 0}))

  662. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 100}))

  663. 	})

  664. 

  665. 	t.Run("GlobalLimit50", func(t *testing.T) {

  666. 		setting.Repository.MaxCreationLimit = 50

  667. 

  668. 		assert.True(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: noLimit}))

  669. 		assert.False(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 60, MaxRepoCreation: noLimit})) // limited by global limit

  670. 		assert.False(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 0}))

  671. 		assert.True(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 100}))

  672. 		assert.True(t, doerNormal.CanCreateRepoIn(&user_model.User{NumRepos: 60, MaxRepoCreation: 100}))

  673. 

  674. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: noLimit}))

  675. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 60, MaxRepoCreation: noLimit}))

  676. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 0}))

  677. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 10, MaxRepoCreation: 100}))

  678. 		assert.True(t, doerAdmin.CanCreateRepoIn(&user_model.User{NumRepos: 60, MaxRepoCreation: 100}))

  679. 	})

  680. }