afan
/
gitea
Наблюдаван 1
Харесван 0
Разклонения 0
Код Задачи 0 Заявки за сливане 0 Версии 0 Уики Activity
gitea源码
3 Ревизии
2 Клонове
Клон: master
Клонове Маркери
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
gitea/tests/integration/api_user_block_test.go

api_user_block_test.go 8.4KB
Постоянна връзка История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243 
  1. // Copyright 2024 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package integration

  5. 

  6. import (

  7. 	"fmt"

  8. 	"net/http"

  9. 	"testing"

  10. 

  11. 	auth_model "code.gitea.io/gitea/models/auth"

  12. 	"code.gitea.io/gitea/models/db"

  13. 	issues_model "code.gitea.io/gitea/models/issues"

  14. 	repo_model "code.gitea.io/gitea/models/repo"

  15. 	api "code.gitea.io/gitea/modules/structs"

  16. 	"code.gitea.io/gitea/tests"

  17. 

  18. 	"github.com/stretchr/testify/assert"

  19. )

  20. 

  21. func TestBlockUser(t *testing.T) {

  22. 	defer tests.PrepareTestEnv(t)()

  23. 

  24. 	countStars := func(t *testing.T, repoOwnerID, starrerID int64) int64 {

  25. 		count, err := db.Count[repo_model.Repository](t.Context(), &repo_model.StarredReposOptions{

  26. 			StarrerID:      starrerID,

  27. 			RepoOwnerID:    repoOwnerID,

  28. 			IncludePrivate: true,

  29. 		})

  30. 		assert.NoError(t, err)

  31. 		return count

  32. 	}

  33. 

  34. 	countWatches := func(t *testing.T, repoOwnerID, watcherID int64) int64 {

  35. 		count, err := db.Count[repo_model.Repository](t.Context(), &repo_model.WatchedReposOptions{

  36. 			WatcherID:   watcherID,

  37. 			RepoOwnerID: repoOwnerID,

  38. 		})

  39. 		assert.NoError(t, err)

  40. 		return count

  41. 	}

  42. 

  43. 	countRepositoryTransfers := func(t *testing.T, senderID, recipientID int64) int64 {

  44. 		transfers, err := repo_model.GetPendingRepositoryTransfers(t.Context(), &repo_model.PendingRepositoryTransferOptions{

  45. 			SenderID:    senderID,

  46. 			RecipientID: recipientID,

  47. 		})

  48. 		assert.NoError(t, err)

  49. 		return int64(len(transfers))

  50. 	}

  51. 

  52. 	countAssignedIssues := func(t *testing.T, repoOwnerID, assigneeID int64) int64 {

  53. 		_, count, err := issues_model.GetAssignedIssues(t.Context(), &issues_model.AssignedIssuesOptions{

  54. 			AssigneeID:  assigneeID,

  55. 			RepoOwnerID: repoOwnerID,

  56. 		})

  57. 		assert.NoError(t, err)

  58. 		return count

  59. 	}

  60. 

  61. 	countCollaborations := func(t *testing.T, repoOwnerID, collaboratorID int64) int64 {

  62. 		count, err := db.Count[repo_model.Collaboration](t.Context(), &repo_model.FindCollaborationOptions{

  63. 			CollaboratorID: collaboratorID,

  64. 			RepoOwnerID:    repoOwnerID,

  65. 		})

  66. 		assert.NoError(t, err)

  67. 		return count

  68. 	}

  69. 

  70. 	t.Run("User", func(t *testing.T) {

  71. 		var blockerID int64 = 16

  72. 		blockerName := "user16"

  73. 		blockerToken := getUserToken(t, blockerName, auth_model.AccessTokenScopeWriteUser)

  74. 

  75. 		var blockeeID int64 = 10

  76. 		blockeeName := "user10"

  77. 

  78. 		t.Run("Block", func(t *testing.T) {

  79. 			req := NewRequest(t, "PUT", "/api/v1/user/blocks/"+blockeeName)

  80. 			MakeRequest(t, req, http.StatusUnauthorized)

  81. 

  82. 			assert.EqualValues(t, 1, countStars(t, blockerID, blockeeID))

  83. 			assert.EqualValues(t, 1, countWatches(t, blockerID, blockeeID))

  84. 			assert.EqualValues(t, 1, countRepositoryTransfers(t, blockerID, blockeeID))

  85. 			assert.EqualValues(t, 1, countCollaborations(t, blockerID, blockeeID))

  86. 

  87. 			req = NewRequest(t, "GET", "/api/v1/user/blocks/"+blockeeName).

  88. 				AddTokenAuth(blockerToken)

  89. 			MakeRequest(t, req, http.StatusNotFound)

  90. 

  91. 			req = NewRequest(t, "PUT", fmt.Sprintf("/api/v1/user/blocks/%s?reason=test", blockeeName)).

  92. 				AddTokenAuth(blockerToken)

  93. 			MakeRequest(t, req, http.StatusNoContent)

  94. 

  95. 			assert.EqualValues(t, 0, countStars(t, blockerID, blockeeID))

  96. 			assert.EqualValues(t, 0, countWatches(t, blockerID, blockeeID))

  97. 			assert.EqualValues(t, 0, countRepositoryTransfers(t, blockerID, blockeeID))

  98. 			assert.EqualValues(t, 0, countCollaborations(t, blockerID, blockeeID))

  99. 

  100. 			req = NewRequest(t, "GET", "/api/v1/user/blocks/"+blockeeName).

  101. 				AddTokenAuth(blockerToken)

  102. 			MakeRequest(t, req, http.StatusNoContent)

  103. 

  104. 			req = NewRequest(t, "PUT", "/api/v1/user/blocks/"+blockeeName).

  105. 				AddTokenAuth(blockerToken)

  106. 			MakeRequest(t, req, http.StatusBadRequest) // can't block blocked user

  107. 

  108. 			req = NewRequest(t, "PUT", "/api/v1/user/blocks/"+"org3").

  109. 				AddTokenAuth(blockerToken)

  110. 			MakeRequest(t, req, http.StatusBadRequest) // can't block organization

  111. 

  112. 			req = NewRequest(t, "GET", "/api/v1/user/blocks")

  113. 			MakeRequest(t, req, http.StatusUnauthorized)

  114. 

  115. 			req = NewRequest(t, "GET", "/api/v1/user/blocks").

  116. 				AddTokenAuth(blockerToken)

  117. 			resp := MakeRequest(t, req, http.StatusOK)

  118. 

  119. 			var users []api.User

  120. 			DecodeJSON(t, resp, &users)

  121. 

  122. 			assert.Len(t, users, 1)

  123. 			assert.Equal(t, blockeeName, users[0].UserName)

  124. 		})

  125. 

  126. 		t.Run("Unblock", func(t *testing.T) {

  127. 			req := NewRequest(t, "DELETE", "/api/v1/user/blocks/"+blockeeName)

  128. 			MakeRequest(t, req, http.StatusUnauthorized)

  129. 

  130. 			req = NewRequest(t, "DELETE", "/api/v1/user/blocks/"+blockeeName).

  131. 				AddTokenAuth(blockerToken)

  132. 			MakeRequest(t, req, http.StatusNoContent)

  133. 

  134. 			req = NewRequest(t, "DELETE", "/api/v1/user/blocks/"+blockeeName).

  135. 				AddTokenAuth(blockerToken)

  136. 			MakeRequest(t, req, http.StatusBadRequest)

  137. 

  138. 			req = NewRequest(t, "DELETE", "/api/v1/user/blocks/"+"org3").

  139. 				AddTokenAuth(blockerToken)

  140. 			MakeRequest(t, req, http.StatusBadRequest)

  141. 

  142. 			req = NewRequest(t, "GET", "/api/v1/user/blocks").

  143. 				AddTokenAuth(blockerToken)

  144. 			resp := MakeRequest(t, req, http.StatusOK)

  145. 

  146. 			var users []api.User

  147. 			DecodeJSON(t, resp, &users)

  148. 

  149. 			assert.Empty(t, users)

  150. 		})

  151. 	})

  152. 

  153. 	t.Run("Organization", func(t *testing.T) {

  154. 		var blockerID int64 = 3

  155. 		blockerName := "org3"

  156. 

  157. 		doerToken := getUserToken(t, "user2", auth_model.AccessTokenScopeWriteUser, auth_model.AccessTokenScopeWriteOrganization)

  158. 

  159. 		var blockeeID int64 = 10

  160. 		blockeeName := "user10"

  161. 

  162. 		t.Run("Block", func(t *testing.T) {

  163. 			req := NewRequest(t, "PUT", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName))

  164. 			MakeRequest(t, req, http.StatusUnauthorized)

  165. 

  166. 			req = NewRequest(t, "PUT", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, "user4")).

  167. 				AddTokenAuth(doerToken)

  168. 			MakeRequest(t, req, http.StatusBadRequest) // can't block member

  169. 

  170. 			assert.EqualValues(t, 1, countStars(t, blockerID, blockeeID))

  171. 			assert.EqualValues(t, 1, countWatches(t, blockerID, blockeeID))

  172. 			assert.EqualValues(t, 1, countRepositoryTransfers(t, blockerID, blockeeID))

  173. 			assert.EqualValues(t, 1, countAssignedIssues(t, blockerID, blockeeID))

  174. 			assert.EqualValues(t, 1, countCollaborations(t, blockerID, blockeeID))

  175. 

  176. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName)).

  177. 				AddTokenAuth(doerToken)

  178. 			MakeRequest(t, req, http.StatusNotFound)

  179. 

  180. 			req = NewRequest(t, "PUT", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s?reason=test", blockerName, blockeeName)).

  181. 				AddTokenAuth(doerToken)

  182. 			MakeRequest(t, req, http.StatusNoContent)

  183. 

  184. 			assert.EqualValues(t, 0, countStars(t, blockerID, blockeeID))

  185. 			assert.EqualValues(t, 0, countWatches(t, blockerID, blockeeID))

  186. 			assert.EqualValues(t, 0, countRepositoryTransfers(t, blockerID, blockeeID))

  187. 			assert.EqualValues(t, 0, countAssignedIssues(t, blockerID, blockeeID))

  188. 			assert.EqualValues(t, 0, countCollaborations(t, blockerID, blockeeID))

  189. 

  190. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName)).

  191. 				AddTokenAuth(doerToken)

  192. 			MakeRequest(t, req, http.StatusNoContent)

  193. 

  194. 			req = NewRequest(t, "PUT", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName)).

  195. 				AddTokenAuth(doerToken)

  196. 			MakeRequest(t, req, http.StatusBadRequest) // can't block blocked user

  197. 

  198. 			req = NewRequest(t, "PUT", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, "org3")).

  199. 				AddTokenAuth(doerToken)

  200. 			MakeRequest(t, req, http.StatusBadRequest) // can't block organization

  201. 

  202. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/orgs/%s/blocks", blockerName))

  203. 			MakeRequest(t, req, http.StatusUnauthorized)

  204. 

  205. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/orgs/%s/blocks", blockerName)).

  206. 				AddTokenAuth(doerToken)

  207. 			resp := MakeRequest(t, req, http.StatusOK)

  208. 

  209. 			var users []api.User

  210. 			DecodeJSON(t, resp, &users)

  211. 

  212. 			assert.Len(t, users, 1)

  213. 			assert.Equal(t, blockeeName, users[0].UserName)

  214. 		})

  215. 

  216. 		t.Run("Unblock", func(t *testing.T) {

  217. 			req := NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName))

  218. 			MakeRequest(t, req, http.StatusUnauthorized)

  219. 

  220. 			req = NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName)).

  221. 				AddTokenAuth(doerToken)

  222. 			MakeRequest(t, req, http.StatusNoContent)

  223. 

  224. 			req = NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, blockeeName)).

  225. 				AddTokenAuth(doerToken)

  226. 			MakeRequest(t, req, http.StatusBadRequest)

  227. 

  228. 			req = NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/orgs/%s/blocks/%s", blockerName, "org3")).

  229. 				AddTokenAuth(doerToken)

  230. 			MakeRequest(t, req, http.StatusBadRequest)

  231. 

  232. 			req = NewRequest(t, "GET", fmt.Sprintf("/api/v1/orgs/%s/blocks", blockerName)).

  233. 				AddTokenAuth(doerToken)

  234. 			resp := MakeRequest(t, req, http.StatusOK)

  235. 

  236. 			var users []api.User

  237. 			DecodeJSON(t, resp, &users)

  238. 

  239. 			assert.Empty(t, users)

  240. 		})

  241. 	})

  242. }