unittest_views_basecontrollers.py 53.3 KB
Newer Older
1
# copyright 2003-2016 LOGILAB S.A. (Paris, FRANCE), all rights reserved.
2
3
4
5
6
7
8
9
10
# contact http://www.logilab.fr/ -- mailto:contact@logilab.fr
#
# This file is part of CubicWeb.
#
# CubicWeb is free software: you can redistribute it and/or modify it under the
# terms of the GNU Lesser General Public License as published by the Free
# Software Foundation, either version 2.1 of the License, or (at your option)
# any later version.
#
11
# CubicWeb is distributed in the hope that it will be useful, but WITHOUT
12
13
14
15
16
17
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
# FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more
# details.
#
# You should have received a copy of the GNU Lesser General Public License along
# with CubicWeb.  If not, see <http://www.gnu.org/licenses/>.
18
"""cubicweb.web.views.basecontrollers unit tests"""
Adrien Di Mascio's avatar
Adrien Di Mascio committed
19

20
import time
Denis Laxalde's avatar
Denis Laxalde committed
21
from urllib.parse import urlsplit, urlunsplit, urljoin, parse_qs
22
23
24

import lxml

25
from logilab.common.testlib import unittest_main
Adrien Di Mascio's avatar
Adrien Di Mascio committed
26

27
from cubicweb import Binary, NoSelectableObject, ValidationError, transaction as tx
28
from cubicweb.schema import RRQLExpression
29
from cubicweb.predicates import is_instance
30
from cubicweb.devtools.testlib import CubicWebTC
31
from cubicweb.devtools.webtest import CubicWebTestTC
32
from cubicweb.devtools.httptest import CubicWebServerTC
33
from cubicweb.utils import json_dumps
Sylvain Thénault's avatar
Sylvain Thénault committed
34
from cubicweb.uilib import rql_for_eid
35
from cubicweb.web import Redirect, RemoteCallFailed, http_headers, formfields as ff
Sylvain Thénault's avatar
Sylvain Thénault committed
36
from cubicweb.web.views.autoform import get_pending_inserts, get_pending_deletes
37
from cubicweb.web.views.ajaxcontroller import ajaxfunc, AjaxFunction
38
from cubicweb.server.session import Connection
39
from cubicweb.server.hook import Hook, Operation
40

41
42
43

class ViewControllerTC(CubicWebTestTC):
    def test_view_ctrl_with_valid_cache_headers(self):
44
        now = time.time()
45
46
47
        resp = self.webapp.get('/manage')
        self.assertEqual(resp.etag, 'manage/guests')
        self.assertEqual(resp.status_code, 200)
48
        self.assertGreaterEqual(http_headers.parseDateTime(resp.headers['Last-Modified']), int(now))
49
50
51
52
53
54
55
        cache_headers = {'if-modified-since': resp.headers['Last-Modified'],
                         'if-none-match': resp.etag}
        resp = self.webapp.get('/manage', headers=cache_headers)
        self.assertEqual(resp.status_code, 304)
        self.assertEqual(len(resp.body), 0)


Sylvain Thénault's avatar
Sylvain Thénault committed
56
57
def req_form(user):
    return {'eid': [str(user.eid)],
58
            '_cw_entity_fields:%s' % user.eid: '_cw_generic_field',
Sylvain Thénault's avatar
Sylvain Thénault committed
59
60
            '__type:%s' % user.eid: user.__regid__
            }
Adrien Di Mascio's avatar
Adrien Di Mascio committed
61

62

63
class EditControllerTC(CubicWebTC):
64

Adrien Di Mascio's avatar
Adrien Di Mascio committed
65
    def setUp(self):
66
        CubicWebTC.setUp(self)
67
        self.assertIn('users', self.schema.eschema('CWGroup').get_groups('read'))
68

Adrien Di Mascio's avatar
Adrien Di Mascio committed
69
    def tearDown(self):
70
        CubicWebTC.tearDown(self)
71
        self.assertIn('users', self.schema.eschema('CWGroup').get_groups('read'))
72

Adrien Di Mascio's avatar
Adrien Di Mascio committed
73
74
75
    def test_noparam_edit(self):
        """check behaviour of this controller without any form parameter
        """
76
77
78
79
        with self.admin_access.web_request() as req:
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
            self.assertEqual(cm.exception.errors, {None: u'no selected entities'})
80

Adrien Di Mascio's avatar
Adrien Di Mascio committed
81
82
    def test_validation_unique(self):
        """test creation of two linked entities
83
        """
84
85
86
87
88
89
        with self.admin_access.web_request() as req:
            req.form = {'eid': 'X', '__type:X': 'CWUser',
                        '_cw_entity_fields:X': 'login-subject,upassword-subject',
                        'login-subject:X': u'admin',
                        'upassword-subject:X': u'toto',
                        'upassword-subject-confirm:X': u'toto',
90
                    }
91
92
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
Denis Laxalde's avatar
Denis Laxalde committed
93
            cm.exception.translate(str)
94
95
96
97
98
            expected = {
                '': u'some relations violate a unicity constraint',
                'login': u'login is part of violated unicity constraint',
            }
            self.assertEqual(cm.exception.errors, expected)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
99

100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
    def test_simultaneous_edition_only_one_commit(self):
        """ Allow two simultaneous edit view of the same entity as long as only one commits
        """
        with self.admin_access.web_request() as req:
            e = req.create_entity('BlogEntry', title=u'cubicweb.org', content=u"hop")
            expected_path = e.rest_path()
            req.cnx.commit()
            form = self.vreg['views'].select('edition', req, rset=e.as_rset(), row=0)
            html_form = lxml.html.fromstring(form.render(w=None, action='edit')).forms[0]

        with self.admin_access.web_request() as req2:
            form2 = self.vreg['views'].select('edition', req, rset=e.as_rset(), row=0)

        with self.admin_access.web_request(**dict(html_form.form_values())) as req:
            path, args = self.expect_redirect_handle_request(req, path='edit')
            self.assertEqual(path, expected_path)

    def test_simultaneous_edition_refuse_second_commit(self):
        """ Disallow committing changes to an entity edited in between """
        with self.admin_access.web_request() as req:
            e = req.create_entity('BlogEntry', title=u'cubicweb.org', content=u"hop")
            eid = e.eid
            req.cnx.commit()
            form = self.vreg['views'].select('edition', req, rset=e.as_rset(), row=0)
            html_form = lxml.html.fromstring(form.render(w=None, action='edit')).forms[0]

        with self.admin_access.web_request() as req2:
            e = req2.entity_from_eid(eid)
            e.cw_set(content = u"hip")
            req2.cnx.commit()

        form_field_name = "content-subject:%d" % eid
        form_values = dict(html_form.form_values())
        assert form_field_name in form_values
        form_values[form_field_name] = u'yep'
        with self.admin_access.web_request(**form_values) as req:
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
            reported_eid, dict_info = cm.exception.args
            self.assertEqual(reported_eid, eid)
            self.assertIn(None, dict_info)
            self.assertIn("has changed since you started to edit it.", dict_info[None])

Adrien Di Mascio's avatar
Adrien Di Mascio committed
143
144
145
    def test_user_editing_itself(self):
        """checking that a manager user can edit itself
        """
146
147
148
149
        with self.admin_access.web_request() as req:
            user = req.user
            groupeids = [eid for eid, in req.execute('CWGroup G WHERE G name '
                                                     'in ("managers", "users")')]
Denis Laxalde's avatar
Denis Laxalde committed
150
151
            groups = [str(eid) for eid in groupeids]
            eid = str(user.eid)
152
153
154
            req.form = {
                'eid': eid, '__type:'+eid: 'CWUser',
                '_cw_entity_fields:'+eid: 'login-subject,firstname-subject,surname-subject,in_group-subject',
Denis Laxalde's avatar
Denis Laxalde committed
155
                'login-subject:'+eid:     str(user.login),
156
157
158
159
160
161
162
163
164
165
166
                'surname-subject:'+eid: u'Th\xe9nault',
                'firstname-subject:'+eid:   u'Sylvain',
                'in_group-subject:'+eid:  groups,
                }
            self.expect_redirect_handle_request(req, 'edit')
            e = req.execute('Any X WHERE X eid %(x)s',
                            {'x': user.eid}).get_entity(0, 0)
            self.assertEqual(e.firstname, u'Sylvain')
            self.assertEqual(e.surname, u'Th\xe9nault')
            self.assertEqual(e.login, user.login)
            self.assertEqual([g.eid for g in e.in_group], groupeids)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
167
168

    def test_user_can_change_its_password(self):
169
        with self.admin_access.repo_cnx() as cnx:
170
            self.create_user(cnx, u'user')
171
            cnx.commit()
172
        with self.new_access(u'user').web_request() as req:
Denis Laxalde's avatar
Denis Laxalde committed
173
            eid = str(req.user.eid)
174
175
176
177
178
179
180
181
182
183
184
            req.form = {
                'eid': eid, '__maineid' : eid,
                '__type:'+eid: 'CWUser',
                '_cw_entity_fields:'+eid: 'upassword-subject',
                'upassword-subject:'+eid: 'tournicoton',
                'upassword-subject-confirm:'+eid: 'tournicoton',
                }
            path, params = self.expect_redirect_handle_request(req, 'edit')
            req.cnx.commit() # commit to check we don't get late validation error for instance
            self.assertEqual(path, 'cwuser/user')
            self.assertNotIn('vid', params)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
185

Sylvain Thénault's avatar
Sylvain Thénault committed
186
    def test_user_editing_itself_no_relation(self):
Adrien Di Mascio's avatar
Adrien Di Mascio committed
187
188
189
        """checking we can edit an entity without specifying some required
        relations (meaning no changes)
        """
190
191
192
        with self.admin_access.web_request() as req:
            user = req.user
            groupeids = [g.eid for g in user.in_group]
Denis Laxalde's avatar
Denis Laxalde committed
193
            eid = str(user.eid)
194
195
196
197
            req.form = {
                'eid':       eid,
                '__type:'+eid:    'CWUser',
                '_cw_entity_fields:'+eid: 'login-subject,firstname-subject,surname-subject',
Denis Laxalde's avatar
Denis Laxalde committed
198
                'login-subject:'+eid:     str(user.login),
199
200
201
202
203
204
205
206
207
208
209
                'firstname-subject:'+eid: u'Th\xe9nault',
                'surname-subject:'+eid:   u'Sylvain',
                }
            self.expect_redirect_handle_request(req, 'edit')
            e = req.execute('Any X WHERE X eid %(x)s',
                            {'x': user.eid}).get_entity(0, 0)
            self.assertEqual(e.login, user.login)
            self.assertEqual(e.firstname, u'Th\xe9nault')
            self.assertEqual(e.surname, u'Sylvain')
            self.assertEqual([g.eid for g in e.in_group], groupeids)
            self.assertEqual(e.cw_adapt_to('IWorkflowable').state, 'activated')
210
211


Adrien Di Mascio's avatar
Adrien Di Mascio committed
212
    def test_create_multiple_linked(self):
213
214
215
216
217
218
219
220
        with self.admin_access.web_request() as req:
            gueid = req.execute('CWGroup G WHERE G name "users"')[0][0]
            req.form = {'eid': ['X', 'Y'], '__maineid' : 'X',
                        '__type:X': 'CWUser',
                        '_cw_entity_fields:X': 'login-subject,upassword-subject,surname-subject,in_group-subject',
                        'login-subject:X': u'adim',
                        'upassword-subject:X': u'toto', 'upassword-subject-confirm:X': u'toto',
                        'surname-subject:X': u'Di Mascio',
Denis Laxalde's avatar
Denis Laxalde committed
221
                        'in_group-subject:X': str(gueid),
222
223
224
225
226
227
228
229
230
231
232
233
234

                        '__type:Y': 'EmailAddress',
                        '_cw_entity_fields:Y': 'address-subject,use_email-object',
                        'address-subject:Y': u'dima@logilab.fr',
                        'use_email-object:Y': 'X',
                        }
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            # should be redirected on the created person
            self.assertEqual(path, 'cwuser/adim')
            e = req.execute('Any P WHERE P surname "Di Mascio"').get_entity(0, 0)
            self.assertEqual(e.surname, 'Di Mascio')
            email = e.use_email[0]
            self.assertEqual(email.address, 'dima@logilab.fr')
235

236
    def test_create_mandatory_inlined(self):
237
238
        with self.admin_access.web_request() as req:
            req.form = {'eid': ['X', 'Y'], '__maineid' : 'X',
239

240
241
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': '',
242

243
244
                        '__type:Y': 'File',
                        '_cw_entity_fields:Y': 'data-subject,described_by_test-object',
245
                        'data-subject:Y': (u'coucou.txt', Binary(b'coucou')),
246
247
248
249
250
251
252
253
254
255
256
257
258
                        'described_by_test-object:Y': 'X',
                        }
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            self.assertTrue(path.startswith('salesterm/'), path)
            eid = path.split('/')[1]
            salesterm = req.entity_from_eid(eid)
            # The NOT NULL constraint of mandatory relation implies that the File
            # must be created before the Salesterm, otherwise Salesterm insertion
            # will fail.
            # NOTE: sqlite does have NOT NULL constraint, unlike Postgres so the
            # insertion does not fail and we have to check dumbly that File is
            # created before.
            self.assertGreater(salesterm.eid, salesterm.described_by_test[0].eid)
259
260

    def test_create_mandatory_inlined2(self):
261
262
        with self.admin_access.web_request() as req:
            req.form = {'eid': ['X', 'Y'], '__maineid' : 'X',
263

264
265
266
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': 'described_by_test-subject',
                        'described_by_test-subject:X': 'Y',
267

268
269
                        '__type:Y': 'File',
                        '_cw_entity_fields:Y': 'data-subject',
270
                        'data-subject:Y': (u'coucou.txt', Binary(b'coucou')),
271
272
273
274
275
276
277
278
279
280
281
282
                        }
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            self.assertTrue(path.startswith('salesterm/'), path)
            eid = path.split('/')[1]
            salesterm = req.entity_from_eid(eid)
            # The NOT NULL constraint of mandatory relation implies that the File
            # must be created before the Salesterm, otherwise Salesterm insertion
            # will fail.
            # NOTE: sqlite does have NOT NULL constraint, unlike Postgres so the
            # insertion does not fail and we have to check dumbly that File is
            # created before.
            self.assertGreater(salesterm.eid, salesterm.described_by_test[0].eid)
283

284
285
286
    def test_edit_mandatory_inlined3_object(self):
        # non regression test for #3120495. Without the fix, leads to
        # "unhashable type: 'list'" error
287
        with self.admin_access.web_request() as req:
Denis Laxalde's avatar
Denis Laxalde committed
288
            cwrelation = str(req.execute('CWEType X WHERE X name "CWSource"')[0][0])
289
            req.form = {'eid': [cwrelation], '__maineid' : cwrelation,
290

291
292
293
294
295
296
297
                        '__type:'+cwrelation: 'CWEType',
                        '_cw_entity_fields:'+cwrelation: 'to_entity-object',
                        'to_entity-object:'+cwrelation: [9999, 9998],
                        }
            with req.cnx.deny_all_hooks_but():
                path, _params = self.expect_redirect_handle_request(req, 'edit')
            self.assertTrue(path.startswith('cwetype/CWSource'), path)
298

Adrien Di Mascio's avatar
Adrien Di Mascio committed
299
    def test_edit_multiple_linked(self):
300
        with self.admin_access.web_request() as req:
Denis Laxalde's avatar
Denis Laxalde committed
301
            peid = str(self.create_user(req, u'adim').eid)
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
            req.form = {'eid': [peid, 'Y'], '__maineid': peid,

                        '__type:'+peid: u'CWUser',
                        '_cw_entity_fields:'+peid: u'surname-subject',
                        'surname-subject:'+peid: u'Di Masci',

                        '__type:Y': u'EmailAddress',
                        '_cw_entity_fields:Y': u'address-subject,use_email-object',
                        'address-subject:Y': u'dima@logilab.fr',
                        'use_email-object:Y': peid,
                        }
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            # should be redirected on the created person
            self.assertEqual(path, 'cwuser/adim')
            e = req.execute('Any P WHERE P surname "Di Masci"').get_entity(0, 0)
            email = e.use_email[0]
            self.assertEqual(email.address, 'dima@logilab.fr')

        # with self.admin_access.web_request() as req:
Denis Laxalde's avatar
Denis Laxalde committed
321
            emaileid = str(email.eid)
322
323
324
325
326
327
328
329
330
331
332
333
334
335
            req.form = {'eid': [peid, emaileid],

                        '__type:'+peid: u'CWUser',
                        '_cw_entity_fields:'+peid: u'surname-subject',
                        'surname-subject:'+peid: u'Di Masci',

                        '__type:'+emaileid: u'EmailAddress',
                        '_cw_entity_fields:'+emaileid: u'address-subject,use_email-object',
                        'address-subject:'+emaileid: u'adim@logilab.fr',
                        'use_email-object:'+emaileid: peid,
                        }
            self.expect_redirect_handle_request(req, 'edit')
            email.cw_clear_all_caches()
            self.assertEqual(email.address, 'adim@logilab.fr')
336

Adrien Di Mascio's avatar
Adrien Di Mascio committed
337
338
    def test_password_confirm(self):
        """test creation of two linked entities
339
        """
340
341
342
        with self.admin_access.web_request() as req:
            user = req.user
            req.form = {'eid': 'X',
Denis Laxalde's avatar
Denis Laxalde committed
343
                        '__cloned_eid:X': str(user.eid), '__type:X': 'CWUser',
344
345
346
347
348
349
350
351
                        '_cw_entity_fields:X': 'login-subject,upassword-subject',
                        'login-subject:X': u'toto',
                        'upassword-subject:X': u'toto',
                        }
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
            self.assertEqual({'upassword-subject': u'password and confirmation don\'t match'},
                             cm.exception.errors)
Denis Laxalde's avatar
Denis Laxalde committed
352
            req.form = {'__cloned_eid:X': str(user.eid),
353
354
355
356
357
358
359
360
361
362
                        'eid': 'X', '__type:X': 'CWUser',
                        '_cw_entity_fields:X': 'login-subject,upassword-subject',
                        'login-subject:X': u'toto',
                        'upassword-subject:X': u'toto',
                        'upassword-subject-confirm:X': u'tutu',
                        }
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
            self.assertEqual({'upassword-subject': u'password and confirmation don\'t match'},
                             cm.exception.errors)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
363
364
365


    def test_interval_bound_constraint_success(self):
366
367
        with self.admin_access.repo_cnx() as cnx:
            feid = cnx.execute('INSERT File X: X data_name "toto.txt", X data %(data)s',
368
                               {'data': Binary(b'yo')})[0][0]
369
370
371
372
373
374
375
            cnx.commit()

        with self.admin_access.web_request(rollbackfirst=True) as req:
            req.form = {'eid': ['X'],
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': 'amount-subject,described_by_test-subject',
                        'amount-subject:X': u'-10',
Denis Laxalde's avatar
Denis Laxalde committed
376
                        'described_by_test-subject:X': str(feid),
377
                    }
378
379
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
Denis Laxalde's avatar
Denis Laxalde committed
380
            cm.exception.translate(str)
381
382
383
384
385
386
387
388
            self.assertEqual({'amount-subject': 'value -10 must be >= 0'},
                             cm.exception.errors)

        with self.admin_access.web_request(rollbackfirst=True) as req:
            req.form = {'eid': ['X'],
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': 'amount-subject,described_by_test-subject',
                        'amount-subject:X': u'110',
Denis Laxalde's avatar
Denis Laxalde committed
389
                        'described_by_test-subject:X': str(feid),
390
391
392
                        }
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
Denis Laxalde's avatar
Denis Laxalde committed
393
            cm.exception.translate(str)
394
395
396
397
398
399
400
            self.assertEqual(cm.exception.errors, {'amount-subject': 'value 110 must be <= 100'})

        with self.admin_access.web_request(rollbackfirst=True) as req:
            req.form = {'eid': ['X'],
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': 'amount-subject,described_by_test-subject',
                        'amount-subject:X': u'10',
Denis Laxalde's avatar
Denis Laxalde committed
401
                        'described_by_test-subject:X': str(feid),
402
403
404
405
406
407
                        }
            self.expect_redirect_handle_request(req, 'edit')
            # should be redirected on the created
            #eid = params['rql'].split()[-1]
            e = req.execute('Salesterm X').get_entity(0, 0)
            self.assertEqual(e.amount, 10)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
408

409
410
411
    def test_interval_bound_constraint_validateform(self):
        """Test the FormValidatorController controller on entity with
        constrained attributes"""
412
413
        with self.admin_access.repo_cnx() as cnx:
            feid = cnx.execute('INSERT File X: X data_name "toto.txt", X data %(data)s',
414
                               {'data': Binary(b'yo')})[0][0]
415
416
            seid = cnx.create_entity('Salesterm', amount=0, described_by_test=feid).eid
            cnx.commit()
417
418

        # ensure a value that violate a constraint is properly detected
419
        with self.admin_access.web_request(rollbackfirst=True) as req:
Denis Laxalde's avatar
Denis Laxalde committed
420
            req.form = {'eid': [str(seid)],
421
422
423
424
425
                        '__type:%s'%seid: 'Salesterm',
                        '_cw_entity_fields:%s'%seid: 'amount-subject',
                        'amount-subject:%s'%seid: u'-10',
                    }
            self.assertMultiLineEqual('''<script type="text/javascript">
426
 window.parent.handleFormValidationResponse('entityForm', null, null, [false, [%s, {"amount-subject": "value -10 must be >= 0"}], null], null);
Julien Cristau's avatar
Julien Cristau committed
427
</script>'''%seid, self.ctrl_publish(req, 'validateform').decode('ascii'))
428
429

        # ensure a value that comply a constraint is properly processed
430
        with self.admin_access.web_request(rollbackfirst=True) as req:
Denis Laxalde's avatar
Denis Laxalde committed
431
            req.form = {'eid': [str(seid)],
432
433
434
435
436
                        '__type:%s'%seid: 'Salesterm',
                        '_cw_entity_fields:%s'%seid: 'amount-subject',
                        'amount-subject:%s'%seid: u'20',
                    }
            self.assertMultiLineEqual('''<script type="text/javascript">
437
 window.parent.handleFormValidationResponse('entityForm', null, null, [true, "http://testing.fr/cubicweb/view", null], null);
Julien Cristau's avatar
Julien Cristau committed
438
</script>''', self.ctrl_publish(req, 'validateform').decode('ascii'))
439
440
            self.assertEqual(20, req.execute('Any V WHERE X amount V, X eid %(eid)s',
                                             {'eid': seid})[0][0])
441

442
443
444
445
446
        with self.admin_access.web_request(rollbackfirst=True) as req:
            req.form = {'eid': ['X'],
                        '__type:X': 'Salesterm',
                        '_cw_entity_fields:X': 'amount-subject,described_by_test-subject',
                        'amount-subject:X': u'0',
Denis Laxalde's avatar
Denis Laxalde committed
447
                        'described_by_test-subject:X': str(feid),
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
                    }

            # ensure a value that is modified in an operation on a modify
            # hook works as it should (see
            # https://www.cubicweb.org/ticket/2509729 )
            class MyOperation(Operation):
                def precommit_event(self):
                    self.entity.cw_set(amount=-10)
            class ValidationErrorInOpAfterHook(Hook):
                __regid__ = 'valerror-op-after-hook'
                __select__ = Hook.__select__ & is_instance('Salesterm')
                events = ('after_add_entity',)
                def __call__(self):
                    MyOperation(self._cw, entity=self.entity)

            with self.temporary_appobjects(ValidationErrorInOpAfterHook):
                self.assertMultiLineEqual('''<script type="text/javascript">
465
 window.parent.handleFormValidationResponse('entityForm', null, null, [false, ["X", {"amount-subject": "value -10 must be >= 0"}], null], null);
Julien Cristau's avatar
Julien Cristau committed
466
</script>''', self.ctrl_publish(req, 'validateform').decode('ascii'))
467

468
            self.assertMultiLineEqual('''<script type="text/javascript">
469
 window.parent.handleFormValidationResponse('entityForm', null, null, [true, "http://testing.fr/cubicweb/view", null], null);
Julien Cristau's avatar
Julien Cristau committed
470
</script>''', self.ctrl_publish(req, 'validateform').decode('ascii'))
471

Adrien Di Mascio's avatar
Adrien Di Mascio committed
472
473
    def test_req_pending_insert(self):
        """make sure req's pending insertions are taken into account"""
474
475
476
477
478
479
480
481
482
483
484
485
        with self.admin_access.web_request() as req:
            tmpgroup = req.create_entity('CWGroup', name=u"test")
            user = req.user
            req.cnx.commit()
        with self.admin_access.web_request(**req_form(user)) as req:
            req.session.data['pending_insert'] = set([(user.eid, 'in_group', tmpgroup.eid)])
            self.expect_redirect_handle_request(req, 'edit')
            usergroups = [gname for gname, in
                          req.execute('Any N WHERE G name N, U in_group G, U eid %(u)s',
                                      {'u': user.eid})]
            self.assertCountEqual(usergroups, ['managers', 'test'])
            self.assertEqual(get_pending_inserts(req), [])
Adrien Di Mascio's avatar
Adrien Di Mascio committed
486
487
488

    def test_req_pending_delete(self):
        """make sure req's pending deletions are taken into account"""
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
        with self.admin_access.web_request() as req:
            user = req.user
            groupeid = req.execute('INSERT CWGroup G: G name "test", U in_group G WHERE U eid %(x)s',
                                    {'x': user.eid})[0][0]
            usergroups = [gname for gname, in
                          req.execute('Any N WHERE G name N, U in_group G, U eid %(u)s',
                                      {'u': user.eid})]
            # just make sure everything was set correctly
            self.assertCountEqual(usergroups, ['managers', 'test'])
            req.cnx.commit()
            # now try to delete the relation
        with self.admin_access.web_request(**req_form(user)) as req:
            req.session.data['pending_delete'] = set([(user.eid, 'in_group', groupeid)])
            self.expect_redirect_handle_request(req, 'edit')
            usergroups = [gname for gname, in
                          req.execute('Any N WHERE G name N, U in_group G, U eid %(u)s',
                                      {'u': user.eid})]
            self.assertCountEqual(usergroups, ['managers'])
            self.assertEqual(get_pending_deletes(req), [])
Adrien Di Mascio's avatar
Adrien Di Mascio committed
508
509

    def test_redirect_apply_button(self):
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
        with self.admin_access.web_request() as req:
            redirectrql = rql_for_eid(4012) # whatever
            req.form = {
                'eid': 'A', '__maineid' : 'A',
                '__type:A': 'BlogEntry', '_cw_entity_fields:A': 'content-subject,title-subject',
                'content-subject:A': u'"13:03:43"',
                'title-subject:A': u'huuu',
                '__redirectrql': redirectrql,
                '__redirectvid': 'primary',
                '__redirectparams': 'toto=tutu&tata=titi',
                '__form_id': 'edition',
                '__action_apply': '',
                }
            path, params = self.expect_redirect_handle_request(req, 'edit')
            self.assertTrue(path.startswith('blogentry/'))
            eid = path.split('/')[1]
            self.assertEqual(params['vid'], 'edition')
            self.assertNotEqual(int(eid), 4012)
            self.assertEqual(params['__redirectrql'], redirectrql)
            self.assertEqual(params['__redirectvid'], 'primary')
            self.assertEqual(params['__redirectparams'], 'toto=tutu&tata=titi')
Adrien Di Mascio's avatar
Adrien Di Mascio committed
531
532

    def test_redirect_ok_button(self):
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
        with self.admin_access.web_request() as req:
            redirectrql = rql_for_eid(4012) # whatever
            req.form = {
                'eid': 'A', '__maineid' : 'A',
                '__type:A': 'BlogEntry', '_cw_entity_fields:A': 'content-subject,title-subject',
                'content-subject:A': u'"13:03:43"',
                'title-subject:A': u'huuu',
                '__redirectrql': redirectrql,
                '__redirectvid': 'primary',
                '__redirectparams': 'toto=tutu&tata=titi',
                '__form_id': 'edition',
                }
            path, params = self.expect_redirect_handle_request(req, 'edit')
            self.assertEqual(path, 'view')
            self.assertEqual(params['rql'], redirectrql)
            self.assertEqual(params['vid'], 'primary')
            self.assertEqual(params['tata'], 'titi')
            self.assertEqual(params['toto'], 'tutu')
Adrien Di Mascio's avatar
Adrien Di Mascio committed
551
552

    def test_redirect_delete_button(self):
553
554
        with self.admin_access.web_request() as req:
            eid = req.create_entity('BlogEntry', title=u'hop', content=u'hop').eid
Denis Laxalde's avatar
Denis Laxalde committed
555
            req.form = {'eid': str(eid), '__type:%s'%eid: 'BlogEntry',
556
557
558
559
560
561
                        '__action_delete': ''}
            path, params = self.expect_redirect_handle_request(req, 'edit')
            self.assertEqual(path, 'blogentry')
            self.assertIn('_cwmsgid', params)
            eid = req.create_entity('EmailAddress', address=u'hop@logilab.fr').eid
            req.execute('SET X use_email E WHERE E eid %(e)s, X eid %(x)s',
562
                        {'x': req.user.eid, 'e': eid})
563
            req.cnx.commit()
Denis Laxalde's avatar
Denis Laxalde committed
564
            req.form = {'eid': str(eid), '__type:%s'%eid: 'EmailAddress',
565
566
567
568
569
570
                        '__action_delete': ''}
            path, params = self.expect_redirect_handle_request(req, 'edit')
            self.assertEqual(path, 'cwuser/admin')
            self.assertIn('_cwmsgid', params)
            eid1 = req.create_entity('BlogEntry', title=u'hop', content=u'hop').eid
            eid2 = req.create_entity('EmailAddress', address=u'hop@logilab.fr').eid
Denis Laxalde's avatar
Denis Laxalde committed
571
            req.form = {'eid': [str(eid1), str(eid2)],
572
573
574
575
576
577
                        '__type:%s'%eid1: 'BlogEntry',
                        '__type:%s'%eid2: 'EmailAddress',
                        '__action_delete': ''}
            path, params = self.expect_redirect_handle_request(req, 'edit')
            self.assertEqual(path, 'view')
            self.assertIn('_cwmsgid', params)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
578

579
    def test_simple_copy(self):
580
581
582
583
        with self.admin_access.web_request() as req:
            blog = req.create_entity('Blog', title=u'my-blog')
            blogentry = req.create_entity('BlogEntry', title=u'entry1',
                                          content=u'content1', entry_of=blog)
584
585
586
587
588
589
            req.form = {'__maineid' : 'X', 'eid': 'X',
                        '__cloned_eid:X': blogentry.eid, '__type:X': 'BlogEntry',
                        '_cw_entity_fields:X': 'title-subject,content-subject',
                        'title-subject:X': u'entry1-copy',
                        'content-subject:X': u'content1',
                        }
590
            self.expect_redirect_handle_request(req, 'edit')
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
            blogentry2 = req.find('BlogEntry', title=u'entry1-copy').one()
            self.assertEqual(blogentry2.entry_of[0].eid, blog.eid)

    def test_skip_copy_for(self):
        with self.admin_access.web_request() as req:
            blog = req.create_entity('Blog', title=u'my-blog')
            blogentry = req.create_entity('BlogEntry', title=u'entry1',
                                          content=u'content1', entry_of=blog)
            blogentry.__class__.cw_skip_copy_for = [('entry_of', 'subject')]
            try:
                req.form = {'__maineid' : 'X', 'eid': 'X',
                            '__cloned_eid:X': blogentry.eid, '__type:X': 'BlogEntry',
                            '_cw_entity_fields:X': 'title-subject,content-subject',
                            'title-subject:X': u'entry1-copy',
                            'content-subject:X': u'content1',
                            }
                self.expect_redirect_handle_request(req, 'edit')
                blogentry2 = req.find('BlogEntry', title=u'entry1-copy').one()
                # entry_of should not be copied
                self.assertEqual(len(blogentry2.entry_of), 0)
            finally:
                blogentry.__class__.cw_skip_copy_for = []
613

614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
    def test_avoid_multiple_process_posted(self):
        # test that when some entity is being created and data include non-inlined relations, the
        # values for this relation are stored for later usage, without calling twice field's
        # process_form method, which may be unexpected for custom fields

        orig_process_posted = ff.RelationField.process_posted

        def count_process_posted(self, form):
            res = list(orig_process_posted(self, form))
            nb_process_posted_calls[0] += 1
            return res

        ff.RelationField.process_posted = count_process_posted

        try:
            with self.admin_access.web_request() as req:
                gueid = req.execute('CWGroup G WHERE G name "users"')[0][0]
                req.form = {
                    'eid': 'X',
                    '__type:X': 'CWUser',
                    '_cw_entity_fields:X': 'login-subject,upassword-subject,in_group-subject',
                    'login-subject:X': u'adim',
                    'upassword-subject:X': u'toto', 'upassword-subject-confirm:X': u'toto',
                    'in_group-subject:X': repr(gueid),
                }
                nb_process_posted_calls = [0]
                self.expect_redirect_handle_request(req, 'edit')
                self.assertEqual(nb_process_posted_calls[0], 1)
                user = req.find('CWUser', login=u'adim').one()
                self.assertEqual(set(g.eid for g in user.in_group), set([gueid]))
                req.form = {
                    'eid': ['X', 'Y'],
                    '__type:X': 'CWUser',
                    '_cw_entity_fields:X': 'login-subject,upassword-subject,in_group-subject',
                    'login-subject:X': u'dlax',
                    'upassword-subject:X': u'toto', 'upassword-subject-confirm:X': u'toto',
                    'in_group-subject:X': repr(gueid),

                    '__type:Y': 'EmailAddress',
                    '_cw_entity_fields:Y': 'address-subject,use_email-object',
                    'address-subject:Y': u'dlax@cw.org',
                    'use_email-object:Y': 'X',
                }
                nb_process_posted_calls = [0]
                self.expect_redirect_handle_request(req, 'edit')
                self.assertEqual(nb_process_posted_calls[0], 3)  # 3 = 1 (in_group) + 2 (use_email)
                user = req.find('CWUser', login=u'dlax').one()
                self.assertEqual(set(e.address for e in user.use_email), set(['dlax@cw.org']))

        finally:
            ff.RelationField.process_posted = orig_process_posted

Adrien Di Mascio's avatar
Adrien Di Mascio committed
666
    def test_nonregr_eetype_etype_editing(self):
667
        """non-regression test checking that a manager user can edit a CWEType entity
Adrien Di Mascio's avatar
Adrien Di Mascio committed
668
        """
669
670
671
672
        with self.admin_access.web_request() as req:
            groupeids = sorted(eid
                               for eid, in req.execute('CWGroup G '
                                                       'WHERE G name in ("managers", "users")'))
Denis Laxalde's avatar
Denis Laxalde committed
673
            groups = [str(eid) for eid in groupeids]
674
            cwetypeeid = req.execute('CWEType X WHERE X name "CWEType"')[0][0]
Denis Laxalde's avatar
Denis Laxalde committed
675
            basegroups = [str(eid)
676
677
678
                          for eid, in req.execute('CWGroup G '
                                                  'WHERE X read_permission G, X eid %(x)s',
                                                  {'x': cwetypeeid})]
Denis Laxalde's avatar
Denis Laxalde committed
679
            cwetypeeid = str(cwetypeeid)
680
681
682
683
684
685
686
687
            req.form = {
                'eid':      cwetypeeid,
                '__type:'+cwetypeeid:  'CWEType',
                '_cw_entity_fields:'+cwetypeeid: 'name-subject,final-subject,description-subject,read_permission-subject',
                'name-subject:'+cwetypeeid:     u'CWEType',
                'final-subject:'+cwetypeeid:    '',
                'description-subject:'+cwetypeeid:     u'users group',
                'read_permission-subject:'+cwetypeeid:  groups,
688
            }
689
690
691
692
693
694
695
696
697
698
            try:
                self.expect_redirect_handle_request(req, 'edit')
                e = req.execute('Any X WHERE X eid %(x)s', {'x': cwetypeeid}).get_entity(0, 0)
                self.assertEqual(e.name, 'CWEType')
                self.assertEqual(sorted(g.eid for g in e.read_permission), groupeids)
            finally:
                # restore
                req.execute('SET X read_permission Y WHERE X name "CWEType", '
                            'Y eid IN (%s), NOT X read_permission Y' % (','.join(basegroups)))
                req.cnx.commit()
699

Adrien Di Mascio's avatar
Adrien Di Mascio committed
700
701
702
703
    def test_nonregr_strange_text_input(self):
        """non-regression test checking text input containing "13:03:43"

        this seems to be postgres (tsearch?) specific
704
        """
705
706
707
708
709
710
711
712
713
714
715
716
        with self.admin_access.web_request() as req:
            req.form = {
                'eid': 'A', '__maineid' : 'A',
                '__type:A': 'BlogEntry', '_cw_entity_fields:A': 'title-subject,content-subject',
                'title-subject:A': u'"13:03:40"',
                'content-subject:A': u'"13:03:43"',}
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            self.assertTrue(path.startswith('blogentry/'))
            eid = path.split('/')[1]
            e = req.execute('Any C, T WHERE C eid %(x)s, C content T', {'x': eid}).get_entity(0, 0)
            self.assertEqual(e.title, '"13:03:40"')
            self.assertEqual(e.content, '"13:03:43"')
Adrien Di Mascio's avatar
Adrien Di Mascio committed
717
718

    def test_nonregr_multiple_empty_email_addr(self):
719
720
721
722
723
724
725
726
        with self.admin_access.web_request() as req:
            gueid = req.execute('CWGroup G WHERE G name "users"')[0][0]
            req.form = {'eid': ['X', 'Y'],

                        '__type:X': 'CWUser',
                        '_cw_entity_fields:X': 'login-subject,upassword-subject,in_group-subject',
                        'login-subject:X': u'adim',
                        'upassword-subject:X': u'toto', 'upassword-subject-confirm:X': u'toto',
Samuel Trégouët's avatar
Samuel Trégouët committed
727
                        'in_group-subject:X': repr(gueid),
728
729
730
731
732
733
734
735
736
737

                        '__type:Y': 'EmailAddress',
                        '_cw_entity_fields:Y': 'address-subject,alias-subject,use_email-object',
                        'address-subject:Y': u'',
                        'alias-subject:Y': u'',
                        'use_email-object:Y': 'X',
                        }
            with self.assertRaises(ValidationError) as cm:
                self.ctrl_publish(req)
            self.assertEqual(cm.exception.errors, {'address-subject': u'required field'})
Adrien Di Mascio's avatar
Adrien Di Mascio committed
738
739

    def test_nonregr_copy(self):
740
741
742
743
744
745
746
747
748
749
750
751
752
        with self.admin_access.web_request() as req:
            user = req.user
            req.form = {'__maineid' : 'X', 'eid': 'X',
                        '__cloned_eid:X': user.eid, '__type:X': 'CWUser',
                        '_cw_entity_fields:X': 'login-subject,upassword-subject',
                        'login-subject:X': u'toto',
                        'upassword-subject:X': u'toto', 'upassword-subject-confirm:X': u'toto',
                        }
            path, _params = self.expect_redirect_handle_request(req, 'edit')
            self.assertEqual(path, 'cwuser/toto')
            e = req.execute('Any X WHERE X is CWUser, X login "toto"').get_entity(0, 0)
            self.assertEqual(e.login, 'toto')
            self.assertEqual(e.in_group[0].name, 'managers')
Adrien Di Mascio's avatar
Adrien Di Mascio committed
753
754
755


    def test_nonregr_rollback_on_validation_error(self):
756
        with self.admin_access.web_request(url='edit') as req:
757
            p = self.create_user(req, u"doe")
758
            # do not try to skip 'primary_email' for this test
759
760
            old_skips = p.__class__.cw_skip_copy_for
            p.__class__.cw_skip_copy_for = ()
Adrien Di Mascio's avatar
Adrien Di Mascio committed
761
            try:
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
                e = req.create_entity('EmailAddress', address=u'doe@doe.com')
                req.execute('SET P use_email E, P primary_email E WHERE P eid %(p)s, E eid %(e)s',
                            {'p' : p.eid, 'e' : e.eid})
                req.form = {'eid': 'X',
                            '__cloned_eid:X': p.eid, '__type:X': 'CWUser',
                            '_cw_entity_fields:X': 'login-subject,surname-subject',
                            'login-subject': u'dodo',
                            'surname-subject:X': u'Boom',
                            '__errorurl' : "whatever but required",
                            }
                # try to emulate what really happens in the web application
                # 1/ validate form => EditController.publish raises a ValidationError
                #    which fires a Redirect
                # 2/ When re-publishing the copy form, the publisher implicitly commits
                try:
777
                    self.app_handle_request(req)
778
779
780
781
782
783
784
                except Redirect:
                    req.form['rql'] = 'Any X WHERE X eid %s' % p.eid
                    req.form['vid'] = 'copy'
                    self.app_handle_request(req, 'view')
                rset = req.execute('CWUser P WHERE P surname "Boom"')
                self.assertEqual(len(rset), 0)
            finally:
785
                p.__class__.cw_skip_copy_for = old_skips
Adrien Di Mascio's avatar
Adrien Di Mascio committed
786

787
    def test_regr_inlined_forms(self):
788
        with self.admin_access.web_request() as req:
789
            self.schema['described_by_test'].inlined = False
790
791
792
793
794
795
796
797
798
799
800
801
            try:
                req.data['eidmap'] = {}
                req.data['pending_others'] = set()
                req.data['pending_inlined'] = {}
                req.form = {'eid': ['X', 'Y'], '__maineid' : 'X',

                            '__type:X': 'Salesterm',
                            '_cw_entity_fields:X': 'described_by_test-subject',
                            'described_by_test-subject:X': 'Y',

                            '__type:Y': 'File',
                            '_cw_entity_fields:Y': 'data-subject',
802
                            'data-subject:Y': (u'coucou.txt', Binary(b'coucou')),
803
804
805
806
807
808
809
810
811
812
813
                            }
                values_by_eid = dict((eid, req.extract_entity_params(eid, minparams=2))
                                     for eid in req.edited_eids())
                editctrl = self.vreg['controllers'].select('edit', req)
                # don't call publish to enforce select order
                editctrl.errors = []
                editctrl._to_create = {}
                editctrl.edit_entity(values_by_eid['X']) # #3064653 raise ValidationError
                editctrl.edit_entity(values_by_eid['Y'])
            finally:
                self.schema['described_by_test'].inlined = False
814

Adrien Di Mascio's avatar
Adrien Di Mascio committed
815

816
class ReportBugControllerTC(CubicWebTC):
Adrien Di Mascio's avatar
Adrien Di Mascio committed
817

818
    def test_usable_by_guest(self):
819
        with self.new_access(u'anon').web_request() as req:
820
821
            self.assertRaises(NoSelectableObject,
                              self.vreg['controllers'].select, 'reportbug', req)
822
        with self.new_access(u'anon').web_request(description='hop') as req:
823
            self.vreg['controllers'].select('reportbug', req)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
824
825


826
827
class AjaxControllerTC(CubicWebTC):
    tested_controller = 'ajax'
Adrien Di Mascio's avatar
Adrien Di Mascio committed
828
829
830

    def ctrl(self, req=None):
        req = req or self.request(url='http://whatever.fr/')
831
        return self.vreg['controllers'].select(self.tested_controller, req)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
832
833

    def setup_database(self):
834
835
836
837
838
        with self.admin_access.repo_cnx() as cnx:
            self.pytag = cnx.create_entity('Tag', name=u'python')
            self.cubicwebtag = cnx.create_entity('Tag', name=u'cubicweb')
            self.john = self.create_user(cnx, u'John')
            cnx.commit()
Adrien Di Mascio's avatar
Adrien Di Mascio committed
839
840
841

    ## tests ##################################################################
    def test_simple_exec(self):
842
843
844
845
846
847
        with self.admin_access.web_request(rql='CWUser P WHERE P login "John"',
                                           pageid='123', fname='view') as req:
            ctrl = self.ctrl(req)
            rset = self.john.as_rset()
            rset.req = req
            source = ctrl.publish()
Julien Cristau's avatar
Julien Cristau committed
848
            self.assertTrue(source.startswith(b'<div>'))
Adrien Di Mascio's avatar
Adrien Di Mascio committed
849

sylvain.thenault@logilab.fr's avatar
sylvain.thenault@logilab.fr committed
850
851
852
#     def test_json_exec(self):
#         rql = 'Any T,N WHERE T is Tag, T name N'
#         ctrl = self.ctrl(self.request(mode='json', rql=rql, pageid='123'))
853
#         self.assertEqual(ctrl.publish(),
854
#                           json_dumps(self.execute(rql).rows))
Adrien Di Mascio's avatar
Adrien Di Mascio committed
855
856

    def test_remote_add_existing_tag(self):
857
858
859
860
861
862
863
        with self.remote_calling('tag_entity', self.john.eid, ['python']) as (_, req):
            self.assertCountEqual(
                [tname for tname, in req.execute('Any N WHERE T is Tag, T name N')],
                ['python', 'cubicweb'])
            self.assertEqual(
                req.execute('Any N WHERE T tags P, P is CWUser, T name N').rows,
                [['python']])
864

Adrien Di Mascio's avatar
Adrien Di Mascio committed
865
    def test_remote_add_new_tag(self):
866
867
868
869
870
871
872
        with self.remote_calling('tag_entity', self.john.eid, ['javascript']) as (_, req):
            self.assertCountEqual(
                [tname for tname, in req.execute('Any N WHERE T is Tag, T name N')],
                ['python', 'cubicweb', 'javascript'])
            self.assertEqual(
                req.execute('Any N WHERE T tags P, P is CWUser, T name N').rows,
                [['javascript']])
Adrien Di Mascio's avatar
Adrien Di Mascio committed
873

874
875
876
    def test_maydel_perms(self):
        """Check that AjaxEditRelationCtxComponent calls rdef.check with a
        sufficient context"""
877
878
        with self.remote_calling('tag_entity', self.john.eid, ['python']) as (_, req):
            req.cnx.commit()
879
880
881
        with self.temporary_permissions(
                (self.schema['tags'].rdefs['Tag', 'CWUser'],
                 {'delete': (RRQLExpression('S owned_by U'), )}, )):
882
            with self.admin_access.web_request(rql='CWUser P WHERE P login "John"',
883
884
                                               pageid='123', fname='view',
                                               session=req.session) as req:
885
886
887
888
889
                ctrl = self.ctrl(req)
                rset = self.john.as_rset()
                rset.req = req
                source = ctrl.publish()
                # maydel jscall
Julien Cristau's avatar
Julien Cristau committed
890
                self.assertIn(b'ajaxBoxRemoveLinkedEntity', source)
891

Adrien Di Mascio's avatar
Adrien Di Mascio committed
892
    def test_pending_insertion(self):
893
894
895
896
897
        with self.remote_calling('add_pending_inserts', [['12', 'tags', '13']]) as (_, req):
            deletes = get_pending_deletes(req)
            self.assertEqual(deletes, [])
            inserts = get_pending_inserts(req)
            self.assertEqual(inserts, ['12:tags:13'])
898
899
        with self.remote_calling('add_pending_inserts', [['12', 'tags', '14']],
                                 session=req.session) as (_, req):
900
901
902
            deletes = get_pending_deletes(req)
            self.assertEqual(deletes, [])
            inserts = get_pending_inserts(req)
903
            self.assertCountEqual(inserts, ['12:tags:13', '12:tags:14'])
904
            inserts = get_pending_inserts(req, 12)
905
            self.assertCountEqual(inserts, ['12:tags:13', '12:tags:14'])
906
907
908
909
910
            inserts = get_pending_inserts(req, 13)
            self.assertEqual(inserts, ['12:tags:13'])
            inserts = get_pending_inserts(req, 14)
            self.assertEqual(inserts, ['12:tags:14'])
            req.remove_pending_operations()
Adrien Di Mascio's avatar
Adrien Di Mascio committed
911
912

    def test_pending_deletion(self):
913
914
915
916
917
        with self.remote_calling('add_pending_delete', ['12', 'tags', '13']) as (_, req):
            inserts = get_pending_inserts(req)
            self.assertEqual(inserts, [])
            deletes = get_pending_deletes(req)
            self.assertEqual(deletes, ['12:tags:13'])
918
919
        with self.remote_calling('add_pending_delete', ['12', 'tags', '14'],
                                 session=req.session) as (_, req):
920
921
922
            inserts = get_pending_inserts(req)
            self.assertEqual(inserts, [])
            deletes = get_pending_deletes(req)
923
            self.assertCountEqual(deletes, ['12:tags:13', '12:tags:14'])
924
            deletes = get_pending_deletes(req, 12)
925
            self.assertCountEqual(deletes, ['12:tags:13', '12:tags:14'])
926
927
928
929
930
            deletes = get_pending_deletes(req, 13)
            self.assertEqual(deletes, ['12:tags:13'])
            deletes = get_pending_deletes(req, 14)
            self.assertEqual(deletes, ['12:tags:14'])
            req.remove_pending_operations()
Adrien Di Mascio's avatar
Adrien Di Mascio committed
931
932

    def test_remove_pending_operations(self):
933
        with self.remote_calling('add_pending_delete', ['12', 'tags', '13']) as (_, req):
934
            pass
935
936
        with self.remote_calling('add_pending_inserts', [['12', 'tags', '14']],
                                 session=req.session) as (_, req):
937
938
939
940
941
942
943
            inserts = get_pending_inserts(req)
            self.assertEqual(inserts, ['12:tags:14'])
            deletes = get_pending_deletes(req)
            self.assertEqual(deletes, ['12:tags:13'])
            req.remove_pending_operations()
            self.assertEqual(get_pending_deletes(req), [])
            self.assertEqual(get_pending_inserts(req), [])
Adrien Di Mascio's avatar
Adrien Di Mascio committed
944
945

    def test_add_inserts(self):
946
947
948
        with self.remote_calling('add_pending_inserts',
                                 [('12', 'tags', '13'), ('12', 'tags', '14')]) as (_, req):
            inserts = get_pending_inserts(req)
949
            self.assertCountEqual(inserts, ['12:tags:13', '12:tags:14'])
950
            req.remove_pending_operations()
951

Adrien Di Mascio's avatar
Adrien Di Mascio committed
952
953
954

    # silly tests
    def test_external_resource(self):
955
        with self.remote_calling('external_resource', 'RSS_LOGO') as (res, _):
956
            self.assertEqual(json_dumps(self.config.uiprops['RSS_LOGO']).encode('ascii'),
957
958
                             res)

Adrien Di Mascio's avatar
Adrien Di Mascio committed
959
    def test_i18n(self):
960
        with self.remote_calling('i18n', ['bimboom']) as (res, _):
961
            self.assertEqual(json_dumps(['bimboom']).encode('ascii'), res)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
962
963

    def test_format_date(self):
964
        with self.remote_calling('format_date', '2007-01-01 12:00:00') as (res, _):
965
            self.assertEqual(json_dumps('2007/01/01').encode('ascii'), res)
Adrien Di Mascio's avatar
Adrien Di Mascio committed
966

967
968
969
970
    def test_ajaxfunc_noparameter(self):
        @ajaxfunc
        def foo(self, x, y):
            return 'hello'
971
972
973
974
975
976
        self.assertEqual(foo(object, 1, 2), 'hello')
        appobject = foo.__appobject__
        self.assertTrue(issubclass(appobject, AjaxFunction))
        self.assertEqual(appobject.__regid__, 'foo')
        self.assertEqual(appobject.check_pageid, False)
        self.assertEqual(appobject.output_type, None)
977
978
979
        with self.admin_access.web_request() as req:
            f = appobject(req)
            self.assertEqual(f(12, 13), 'hello')
980
981

    def test_ajaxfunc_checkpageid(self):
982
        @ajaxfunc(check_pageid=True)
983
        def foo(self, x, y):
984
985
986
987
988
989
990
            return 'hello'
        self.assertEqual(foo(object, 1, 2), 'hello')
        appobject = foo.__appobject__
        self.assertTrue(issubclass(appobject, AjaxFunction))
        self.assertEqual(appobject.__regid__, 'foo')
        self.assertEqual(appobject.check_pageid, True)
        self.assertEqual(appobject.output_type, None)
991
        # no pageid
992
993
994
        with self.admin_access.web_request() as req:
            f = appobject(req)
            self.assertRaises(RemoteCallFailed, f, 12, 13)
995
996
997
998
999

    def test_ajaxfunc_json(self):
        @ajaxfunc(output_type='json')
        def foo(self, x, y):
            return x + y
1000
1001
1002
1003
1004
1005
        self.assertEqual(foo(object, 1, 2), 3)
        appobject = foo.__appobject__
        self.assertTrue(issubclass(appobject, AjaxFunction))
        self.assertEqual(appobject.__regid__, 'foo')
        self.assertEqual(appobject.check_pageid, False)
        self.assertEqual(appobject.output_type, 'json')
1006
        # no pageid
1007
1008
1009
        with self.admin_access.web_request() as req:
            f = appobject(req)
            self.assertEqual(f(12, 13), '25')
1010

1011
1012
1013
1014
1015
1016
1017
    def test_badrequest(self):
        with self.assertRaises(RemoteCallFailed) as cm:
            with self.remote_calling('foo'):
                pass
        self.assertEqual(cm.exception.status, 400)
        self.assertEqual(cm.exception.reason, 'no foo method')

1018

1019
1020
class UndoControllerTC(CubicWebTC):

1021
    def setUp(self):
1022
1023
        # Force undo feature to be turned on
        Connection.undo_actions = property(lambda self: True, lambda self, v:None)
1024
1025
1026
1027
        super(UndoControllerTC, self).setUp()

    def tearDown(self):
        super(UndoControllerTC, self).tearDown()
1028
        del Connection.undo_actions
1029

1030
    def setup_database(self):
1031
        with self.admin_access.repo_cnx() as cnx:
1032
1033
            self.toto = self.create_user(cnx, u'toto',
                                         password=u'toto',
1034
1035
1036
1037
1038
1039
1040
                                         groups=('users',),
                                         commit=False)
            self.txuuid_toto = cnx.commit()
            self.toto_email = cnx.create_entity('EmailAddress',
                                                address=u'toto@logilab.org',
                                                reverse_use_email=self.toto)
            self.txuuid_toto_email = cnx.commit()
1041
1042

    def test_no_such_transaction(self):
1043
1044
1045
1046
1047
        with self.admin_access.web_request() as req:
            txuuid = u"12345acbd"
            req.form['txuuid'] = txuuid
            controller = self.vreg['controllers'].select('undo', req)
            with self.assertRaises(tx.NoSuchTransaction) as cm:
1048
                controller.publish(rset=None)
1049
            self.assertEqual(cm.exception.txuuid, txuuid)
1050
1051
1052
1053
1054
1055

    def assertURLPath(self, url, expected_path, expected_params=None):
        """ This assert that the path part of `url` matches  expected path

        TODO : implement assertion on the expected_params too
        """
1056
1057
        with self.admin_access.web_request() as req:
            scheme, netloc, path, query, fragment = urlsplit(url)
1058
            parse_qs(query)
1059
            expected_url = urljoin(req.base_url(), expected_path)
1060
            self.assertEqual(urlunsplit((scheme, netloc, path, None, None)), expected_url)
1061
1062
1063

    def test_redirect_redirectpath(self):
        "Check that the potential __redirectpath is honored"
1064
1065
1066
1067
1068
1069
1070
        with self.admin_access.web_request() as req:
            txuuid = self.txuuid_toto_email
            req.form['txuuid'] = txuuid
            rpath = "toto"
            req.form['__redirectpath'] = rpath
            controller = self.vreg['controllers'].select('undo', req)
            with self.assertRaises(Redirect) as cm:
1071
                controller.publish(rset=None)
1072
            self.assertURLPath(cm.exception.location, rpath)
1073
1074


1075
1076
1077
class LoginControllerTC(CubicWebTC):

    def test_login_with_dest(self):
1078
1079
1080
1081
1082
        with self.admin_access.web_request() as req:
            req.form = {'postlogin_path': 'elephants/babar'}
            with self.assertRaises(Redirect) as cm:
                self.ctrl_publish(req, ctrl='login')
            self.assertEqual(req.build_url('elephants/babar'), cm.exception.location)
1083
1084

    def test_login_no_dest(self):
1085
1086
1087
1088
        with self.admin_access.web_request() as req:
            with self.assertRaises(Redirect) as cm:
                self.ctrl_publish(req, ctrl='login')
            self.assertEqual(req.base_url(), cm.exception.location)
1089

1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101