afan
/
gitea
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
gitea源码
1 коммит
2 веток
Дерево: 61128e8e94
веток Теги
${ item.name }
Создать ветку ${ searchTerm }
из '61128e8e94'
${ noResults }
gitea/tests/integration/api_comment_attachment_test.go

api_comment_attachment_test.go 9.1KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214 
  1. // Copyright 2021 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package integration

  5. 

  6. import (

  7. 	"bytes"

  8. 	"fmt"

  9. 	"io"

  10. 	"mime/multipart"

  11. 	"net/http"

  12. 	"testing"

  13. 

  14. 	auth_model "code.gitea.io/gitea/models/auth"

  15. 	issues_model "code.gitea.io/gitea/models/issues"

  16. 	repo_model "code.gitea.io/gitea/models/repo"

  17. 	"code.gitea.io/gitea/models/unittest"

  18. 	user_model "code.gitea.io/gitea/models/user"

  19. 	api "code.gitea.io/gitea/modules/structs"

  20. 	"code.gitea.io/gitea/services/convert"

  21. 	"code.gitea.io/gitea/tests"

  22. 

  23. 	"github.com/stretchr/testify/assert"

  24. )

  25. 

  26. func TestAPIGetCommentAttachment(t *testing.T) {

  27. 	defer tests.PrepareTestEnv(t)()

  28. 

  29. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: 2})

  30. 	assert.NoError(t, comment.LoadIssue(t.Context()))

  31. 	assert.NoError(t, comment.LoadAttachments(t.Context()))

  32. 	attachment := unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: comment.Attachments[0].ID})

  33. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: comment.Issue.RepoID})

  34. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  35. 

  36. 	t.Run("UnrelatedCommentID", func(t *testing.T) {

  37. 		repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: 4})

  38. 		repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  39. 		token := getUserToken(t, repoOwner.Name, auth_model.AccessTokenScopeWriteIssue)

  40. 		req := NewRequestf(t, "GET", "/api/v1/repos/%s/%s/issues/comments/%d/assets/%d", repoOwner.Name, repo.Name, comment.ID, attachment.ID).

  41. 			AddTokenAuth(token)

  42. 		MakeRequest(t, req, http.StatusNotFound)

  43. 	})

  44. 

  45. 	session := loginUser(t, repoOwner.Name)

  46. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadIssue)

  47. 	req := NewRequestf(t, "GET", "/api/v1/repos/%s/%s/issues/comments/%d/assets/%d", repoOwner.Name, repo.Name, comment.ID, attachment.ID).

  48. 		AddTokenAuth(token)

  49. 	session.MakeRequest(t, req, http.StatusOK)

  50. 	req = NewRequestf(t, "GET", "/api/v1/repos/%s/%s/issues/comments/%d/assets/%d", repoOwner.Name, repo.Name, comment.ID, attachment.ID).

  51. 		AddTokenAuth(token)

  52. 	resp := session.MakeRequest(t, req, http.StatusOK)

  53. 

  54. 	var apiAttachment api.Attachment

  55. 	DecodeJSON(t, resp, &apiAttachment)

  56. 

  57. 	expect := convert.ToAPIAttachment(repo, attachment)

  58. 	assert.Equal(t, expect.ID, apiAttachment.ID)

  59. 	assert.Equal(t, expect.Name, apiAttachment.Name)

  60. 	assert.Equal(t, expect.UUID, apiAttachment.UUID)

  61. 	assert.Equal(t, expect.Created.Unix(), apiAttachment.Created.Unix())

  62. 	assert.Equal(t, expect.DownloadURL, apiAttachment.DownloadURL)

  63. }

  64. 

  65. func TestAPIListCommentAttachments(t *testing.T) {

  66. 	defer tests.PrepareTestEnv(t)()

  67. 

  68. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: 2})

  69. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  70. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  71. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  72. 

  73. 	session := loginUser(t, repoOwner.Name)

  74. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeReadIssue)

  75. 	req := NewRequestf(t, "GET", "/api/v1/repos/%s/%s/issues/comments/%d/assets", repoOwner.Name, repo.Name, comment.ID).

  76. 		AddTokenAuth(token)

  77. 	resp := session.MakeRequest(t, req, http.StatusOK)

  78. 

  79. 	var apiAttachments []*api.Attachment

  80. 	DecodeJSON(t, resp, &apiAttachments)

  81. 	expectedCount := unittest.GetCount(t, &repo_model.Attachment{CommentID: comment.ID})

  82. 	assert.Len(t, apiAttachments, expectedCount)

  83. 

  84. 	unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: apiAttachments[0].ID, CommentID: comment.ID})

  85. }

  86. 

  87. func TestAPICreateCommentAttachment(t *testing.T) {

  88. 	defer tests.PrepareTestEnv(t)()

  89. 

  90. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: 2})

  91. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  92. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  93. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  94. 

  95. 	session := loginUser(t, repoOwner.Name)

  96. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteIssue)

  97. 

  98. 	filename := "image.png"

  99. 	buff := generateImg()

  100. 	body := &bytes.Buffer{}

  101. 

  102. 	// Setup multi-part

  103. 	writer := multipart.NewWriter(body)

  104. 	part, err := writer.CreateFormFile("attachment", filename)

  105. 	assert.NoError(t, err)

  106. 	_, err = io.Copy(part, &buff)

  107. 	assert.NoError(t, err)

  108. 	err = writer.Close()

  109. 	assert.NoError(t, err)

  110. 

  111. 	req := NewRequestWithBody(t, "POST", fmt.Sprintf("/api/v1/repos/%s/%s/issues/comments/%d/assets", repoOwner.Name, repo.Name, comment.ID), body).

  112. 		AddTokenAuth(token).

  113. 		SetHeader("Content-Type", writer.FormDataContentType())

  114. 	resp := session.MakeRequest(t, req, http.StatusCreated)

  115. 

  116. 	apiAttachment := new(api.Attachment)

  117. 	DecodeJSON(t, resp, &apiAttachment)

  118. 

  119. 	unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: apiAttachment.ID, CommentID: comment.ID})

  120. }

  121. 

  122. func TestAPICreateCommentAttachmentWithUnallowedFile(t *testing.T) {

  123. 	defer tests.PrepareTestEnv(t)()

  124. 

  125. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: 2})

  126. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  127. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  128. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  129. 

  130. 	session := loginUser(t, repoOwner.Name)

  131. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteIssue)

  132. 

  133. 	filename := "file.bad"

  134. 	body := &bytes.Buffer{}

  135. 

  136. 	// Setup multi-part.

  137. 	writer := multipart.NewWriter(body)

  138. 	_, err := writer.CreateFormFile("attachment", filename)

  139. 	assert.NoError(t, err)

  140. 	err = writer.Close()

  141. 	assert.NoError(t, err)

  142. 

  143. 	req := NewRequestWithBody(t, "POST", fmt.Sprintf("/api/v1/repos/%s/%s/issues/comments/%d/assets", repoOwner.Name, repo.Name, comment.ID), body).

  144. 		AddTokenAuth(token).

  145. 		SetHeader("Content-Type", writer.FormDataContentType())

  146. 

  147. 	session.MakeRequest(t, req, http.StatusUnprocessableEntity)

  148. }

  149. 

  150. func TestAPIEditCommentAttachment(t *testing.T) {

  151. 	defer tests.PrepareTestEnv(t)()

  152. 

  153. 	const newAttachmentName = "newAttachmentName.txt"

  154. 

  155. 	attachment := unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: 6})

  156. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: attachment.CommentID})

  157. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  158. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  159. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  160. 

  161. 	session := loginUser(t, repoOwner.Name)

  162. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteIssue)

  163. 	urlStr := fmt.Sprintf("/api/v1/repos/%s/%s/issues/comments/%d/assets/%d",

  164. 		repoOwner.Name, repo.Name, comment.ID, attachment.ID)

  165. 	req := NewRequestWithValues(t, "PATCH", urlStr, map[string]string{

  166. 		"name": newAttachmentName,

  167. 	}).AddTokenAuth(token)

  168. 	resp := session.MakeRequest(t, req, http.StatusCreated)

  169. 	apiAttachment := new(api.Attachment)

  170. 	DecodeJSON(t, resp, &apiAttachment)

  171. 

  172. 	unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: apiAttachment.ID, CommentID: comment.ID, Name: apiAttachment.Name})

  173. }

  174. 

  175. func TestAPIEditCommentAttachmentWithUnallowedFile(t *testing.T) {

  176. 	defer tests.PrepareTestEnv(t)()

  177. 

  178. 	attachment := unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: 6})

  179. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: attachment.CommentID})

  180. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  181. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  182. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  183. 	session := loginUser(t, repoOwner.Name)

  184. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteIssue)

  185. 

  186. 	filename := "file.bad"

  187. 	urlStr := fmt.Sprintf("/api/v1/repos/%s/%s/issues/comments/%d/assets/%d",

  188. 		repoOwner.Name, repo.Name, comment.ID, attachment.ID)

  189. 	req := NewRequestWithValues(t, "PATCH", urlStr, map[string]string{

  190. 		"name": filename,

  191. 	}).AddTokenAuth(token)

  192. 

  193. 	session.MakeRequest(t, req, http.StatusUnprocessableEntity)

  194. }

  195. 

  196. func TestAPIDeleteCommentAttachment(t *testing.T) {

  197. 	defer tests.PrepareTestEnv(t)()

  198. 

  199. 	attachment := unittest.AssertExistsAndLoadBean(t, &repo_model.Attachment{ID: 6})

  200. 	comment := unittest.AssertExistsAndLoadBean(t, &issues_model.Comment{ID: attachment.CommentID})

  201. 	issue := unittest.AssertExistsAndLoadBean(t, &issues_model.Issue{ID: comment.IssueID})

  202. 	repo := unittest.AssertExistsAndLoadBean(t, &repo_model.Repository{ID: issue.RepoID})

  203. 	repoOwner := unittest.AssertExistsAndLoadBean(t, &user_model.User{ID: repo.OwnerID})

  204. 

  205. 	session := loginUser(t, repoOwner.Name)

  206. 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteIssue)

  207. 

  208. 	req := NewRequest(t, "DELETE", fmt.Sprintf("/api/v1/repos/%s/%s/issues/comments/%d/assets/%d", repoOwner.Name, repo.Name, comment.ID, attachment.ID)).

  209. 		AddTokenAuth(token)

  210. 	session.MakeRequest(t, req, http.StatusNoContent)

  211. 

  212. 	unittest.AssertNotExistsBean(t, &repo_model.Attachment{ID: attachment.ID, CommentID: comment.ID})

  213. }