1 package org.cacert.gigi.pages.orga;
3 import static org.hamcrest.CoreMatchers.*;
4 import static org.junit.Assert.*;
6 import java.io.IOException;
7 import java.net.HttpURLConnection;
8 import java.net.URLConnection;
9 import java.net.URLEncoder;
10 import java.sql.SQLException;
11 import java.util.List;
13 import org.cacert.gigi.GigiApiException;
14 import org.cacert.gigi.dbObjects.Organisation;
15 import org.cacert.gigi.dbObjects.Organisation.Affiliation;
16 import org.cacert.gigi.dbObjects.User;
17 import org.cacert.gigi.pages.account.MyDetails;
18 import org.cacert.gigi.testUtils.IOUtils;
19 import org.cacert.gigi.testUtils.OrgTest;
20 import org.junit.After;
21 import org.junit.Test;
23 public class TestOrgManagement extends OrgTest {
25 public TestOrgManagement() throws IOException {
30 public void purgeDbAfterTest() throws SQLException, IOException {
35 public void testAdd() throws IOException {
36 for (Organisation i : Organisation.getOrganisations(0, 30)) {
39 executeBasicWebInteraction(cookie, CreateOrgPage.DEFAULT_PATH, "action=new&O=name&contact=mail&L=K%C3%B6ln&ST=%C3%9C%C3%96%C3%84%C3%9F&C=DE&comments=jkl%C3%B6loiuzfdfgjlh%C3%B6", 0);
40 Organisation[] orgs = Organisation.getOrganisations(0, 30);
41 assertEquals(1, orgs.length);
42 assertEquals("mail", orgs[0].getContactEmail());
43 assertEquals("name", orgs[0].getName());
44 assertEquals("Köln", orgs[0].getCity());
45 assertEquals("ÜÖÄß", orgs[0].getProvince());
47 User u2 = User.getById(createAssuranceUser("testworker", "testname", createUniqueName() + "@testdom.com", TEST_PASSWORD));
48 executeBasicWebInteraction(cookie, ViewOrgPage.DEFAULT_PATH + "/" + orgs[0].getId(), "email=" + URLEncoder.encode(u2.getEmail(), "UTF-8") + "&do_affiliate=y&master=y", 1);
49 List<Affiliation> allAdmins = orgs[0].getAllAdmins();
50 assertEquals(1, allAdmins.size());
51 Affiliation affiliation = allAdmins.get(0);
52 assertSame(u2, affiliation.getTarget());
53 assertTrue(affiliation.isMaster());
55 executeBasicWebInteraction(cookie, ViewOrgPage.DEFAULT_PATH + "/" + orgs[0].getId(), "email=" + URLEncoder.encode(u.getEmail(), "UTF-8") + "&do_affiliate=y", 1);
56 allAdmins = orgs[0].getAllAdmins();
57 assertEquals(2, allAdmins.size());
58 Affiliation affiliation2 = allAdmins.get(0);
59 if (affiliation2.getTarget().getId() == u2.getId()) {
60 affiliation2 = allAdmins.get(1);
62 assertEquals(u.getId(), affiliation2.getTarget().getId());
63 assertFalse(affiliation2.isMaster());
65 executeBasicWebInteraction(cookie, ViewOrgPage.DEFAULT_PATH + "/" + orgs[0].getId(), "del=" + URLEncoder.encode(u.getEmail(), "UTF-8") + "&email=&do_affiliate=y", 1);
66 assertEquals(1, orgs[0].getAllAdmins().size());
68 executeBasicWebInteraction(cookie, ViewOrgPage.DEFAULT_PATH + "/" + orgs[0].getId(), "del=" + URLEncoder.encode(u2.getEmail(), "UTF-8") + "&email=&do_affiliate=y", 1);
69 assertEquals(0, orgs[0].getAllAdmins().size());
71 executeBasicWebInteraction(cookie, ViewOrgPage.DEFAULT_PATH + "/" + orgs[0].getId(), "action=updateCertificateData&O=name1&contact=&L=K%C3%B6ln&ST=%C3%9C%C3%96%C3%84%C3%9F&C=DE&comments=jkl%C3%B6loiuzfdfgjlh%C3%B6", 0);
73 orgs = Organisation.getOrganisations(0, 30);
74 assertEquals("name1", orgs[0].getName());
78 public void testNonAssurerSeeOnlyOwn() throws IOException, GigiApiException {
79 User u2 = User.getById(createAssuranceUser("testworker", "testname", createUniqueName() + "@testdom.com", TEST_PASSWORD));
80 Organisation o1 = createUniqueOrg();
81 Organisation o2 = createUniqueOrg();
82 o1.addAdmin(u2, u, false);
83 String session2 = login(u2.getEmail(), TEST_PASSWORD);
85 URLConnection uc = get(session2, ViewOrgPage.DEFAULT_PATH);
86 assertEquals(403, ((HttpURLConnection) uc).getResponseCode());
88 uc = get(session2, MyDetails.PATH);
89 String content = IOUtils.readURL(uc);
90 assertThat(content, containsString(o1.getName()));
91 assertThat(content, not(containsString(o2.getName())));
92 uc = get(session2, ViewOrgPage.DEFAULT_PATH + "/" + o1.getId());
93 assertEquals(403, ((HttpURLConnection) uc).getResponseCode());
94 uc = get(session2, ViewOrgPage.DEFAULT_PATH + "/" + o2.getId());
95 assertEquals(403, ((HttpURLConnection) uc).getResponseCode());
97 uc = get(ViewOrgPage.DEFAULT_PATH);
98 content = IOUtils.readURL(uc);
99 assertThat(content, containsString(o1.getName()));
100 assertThat(content, containsString(o2.getName()));
101 uc = get(ViewOrgPage.DEFAULT_PATH + "/" + o1.getId());
102 assertEquals(200, ((HttpURLConnection) uc).getResponseCode());
103 uc = get(ViewOrgPage.DEFAULT_PATH + "/" + o2.getId());
104 assertEquals(200, ((HttpURLConnection) uc).getResponseCode());
110 public void testAffiliationRights() throws IOException, GigiApiException {
111 User u2 = User.getById(createAssuranceUser("testworker", "testname", createUniqueName() + "@testdom.com", TEST_PASSWORD));
112 User u3 = User.getById(createAssuranceUser("testmaster", "testname", createUniqueName() + "@testdom.com", TEST_PASSWORD));
113 User u4_dummy = User.getById(createVerifiedUser("testmaster", "testname", createUniqueName() + "@testdom.com", TEST_PASSWORD));
114 Organisation o1 = createUniqueOrg();
115 o1.addAdmin(u3, u, true);
117 // must fail because u4 is no assurer
118 o1.addAdmin(u4_dummy, u3, false);
119 fail("No exception!");
120 } catch (GigiApiException e) {
122 o1.addAdmin(u2, u3, false);
124 // must fail because u2 may not add admins
125 o1.addAdmin(u3, u2, false);
126 fail("No exception!");
127 } catch (GigiApiException e) {
130 // must fail because u4 is no assurer
131 o1.addAdmin(u4_dummy, u, false);
132 fail("No exception!");
133 } catch (GigiApiException e) {
135 o1.removeAdmin(u2, u3);
136 o1.removeAdmin(u3, u3);
137 assertEquals(0, o1.getAllAdmins().size());