fix and create unit tests for anonymous user

2026-01-31 11:49:10 +01:00 · 2019-10-14 11:12:29 +02:00
parent adfaf6166c
commit ce2ea950a8
4 changed files with 20 additions and 17 deletions
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/ConfigResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/ConfigResourceTest.java
@@ -137,7 +137,6 @@ public class ConfigResourceTest {
    assertTrue(response.getContentAsString().contains("\"proxyPassword\":\"newPassword\""));
    assertTrue(response.getContentAsString().contains("\"self\":{\"href\":\"/v2/config"));
    assertTrue("link not found", response.getContentAsString().contains("\"update\":{\"href\":\"/v2/config"));
-    verify(userManager).create(SCMContext.ANONYMOUS);
  }

  @Test
--- a/scm-webapp/src/test/java/sonia/scm/api/v2/resources/RepositoryPermissionRootResourceTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/api/v2/resources/RepositoryPermissionRootResourceTest.java
@@ -2,6 +2,7 @@ package sonia.scm.api.v2.resources;

 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.ObjectMapper;
+import com.github.sdorra.shiro.SubjectAware;
 import com.google.common.collect.ImmutableList;
 import com.google.inject.util.Providers;
 import de.otto.edison.hal.HalRepresentation;
@@ -169,7 +170,9 @@ public class RepositoryPermissionRootResourceTest extends RepositoryTestBase {

  @TestFactory
  @DisplayName("test endpoints on missing permissions and user is not Admin")
+  @SubjectAware(username = "trillian")
  Stream<DynamicTest> missedPermissionUserForbiddenTestFactory() {
+    when(subject.getPrincipal()).thenReturn("user");
    doThrow(AuthorizationException.class).when(repositoryManager).get(any(NamespaceAndName.class));
    return createDynamicTestsToAssertResponses(
      requestGETPermission.expectedResponseStatus(403),
@@ -179,6 +182,20 @@ public class RepositoryPermissionRootResourceTest extends RepositoryTestBase {
      requestPUTPermission.expectedResponseStatus(403));
  }

+  @TestFactory
+  @DisplayName("test endpoints on missing permissions and user is not Admin")
+  @SubjectAware(username = "trillian")
+  Stream<DynamicTest> missedPermissionAnonymousUnauthorizedTestFactory() {
+    when(subject.getPrincipal()).thenReturn("_anonymous");
+    doThrow(AuthorizationException.class).when(repositoryManager).get(any(NamespaceAndName.class));
+    return createDynamicTestsToAssertResponses(
+      requestGETPermission.expectedResponseStatus(401),
+      requestPOSTPermission.expectedResponseStatus(401),
+      requestGETAllPermissions.expectedResponseStatus(401),
+      requestDELETEPermission.expectedResponseStatus(401),
+      requestPUTPermission.expectedResponseStatus(401));
+  }
+
  @Test
  public void userWithPermissionWritePermissionShouldGetAllPermissionsWithCreateAndUpdateLinks() throws URISyntaxException {
    createUserWithRepositoryAndPermissions(TEST_PERMISSIONS, PERMISSION_WRITE);
--- a/scm-webapp/src/test/java/sonia/scm/filter/MDCFilterTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/filter/MDCFilterTest.java
@@ -40,6 +40,7 @@ import org.mockito.Mock;
 import org.mockito.junit.MockitoJUnitRunner;
 import org.slf4j.MDC;
 import sonia.scm.AbstractTestBase;
+import sonia.scm.SCMContext;

 import javax.servlet.FilterChain;
 import javax.servlet.ServletException;
@@ -117,7 +118,7 @@ public class MDCFilterTest extends AbstractTestBase {
    filter.doFilter(request, response, chain);
    
    assertNotNull(chain.ctx);
-    assertEquals("anonymous", chain.ctx.get(MDCFilter.MDC_USERNAME));
+    assertEquals(SCMContext.USER_ANONYMOUS, chain.ctx.get(MDCFilter.MDC_USERNAME));
  }
  
  private static class MDCCapturingFilterChain implements FilterChain {