OpenI
/
aiforge
Not watched
1
0
Fork 0
Code
Releases 128 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
6654 Commits
197 Branches
392 MB
2792 Download
Tree: d293a2b9d6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd293a2b9d6'
${ noResults }
aiforge/integrations/api_admin_test.go

api_admin_test.go 3.4 kB
Raw Normal View History

Delete a user's public key via admin api (closes #3014) (#3059) * Delete a user's public key via admin api * Test admin ssh endpoint for creating a new ssh key * Adapt public ssh key test to also test the delete operation * Test that deleting a missing key will result in a 404 * Test that a normal user can't delete another user's ssh key * Make DeletePublicKey return err * Update swagger doc
7 years ago
Add sudo functionality to the API (#4809)
6 years ago
Delete a user's public key via admin api (closes #3014) (#3059) * Delete a user's public key via admin api * Test admin ssh endpoint for creating a new ssh key * Adapt public ssh key test to also test the delete operation * Test that deleting a missing key will result in a 404 * Test that a normal user can't delete another user's ssh key * Make DeletePublicKey return err * Update swagger doc
7 years ago
Add sudo functionality to the API (#4809)
6 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package integrations

  6. 

  7. import (

  8. 	"fmt"

  9. 	"net/http"

  10. 	"testing"

  11. 

  12. 	"github.com/stretchr/testify/assert"

  13. 

  14. 	"code.gitea.io/gitea/models"

  15. 	api "code.gitea.io/sdk/gitea"

  16. )

  17. 

  18. func TestAPIAdminCreateAndDeleteSSHKey(t *testing.T) {

  19. 	prepareTestEnv(t)

  20. 	// user1 is an admin user

  21. 	session := loginUser(t, "user1")

  22. 	keyOwner := models.AssertExistsAndLoadBean(t, &models.User{Name: "user2"}).(*models.User)

  23. 

  24. 	urlStr := fmt.Sprintf("/api/v1/admin/users/%s/keys", keyOwner.Name)

  25. 	req := NewRequestWithValues(t, "POST", urlStr, map[string]string{

  26. 		"key":   "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQDAu7tvIvX6ZHrRXuZNfkR3XLHSsuCK9Zn3X58lxBcQzuo5xZgB6vRwwm/QtJuF+zZPtY5hsQILBLmF+BZ5WpKZp1jBeSjH2G7lxet9kbcH+kIVj0tPFEoyKI9wvWqIwC4prx/WVk2wLTJjzBAhyNxfEq7C9CeiX9pQEbEqJfkKCQ== nocomment\n",

  27. 		"title": "test-key",

  28. 	})

  29. 	resp := session.MakeRequest(t, req, http.StatusCreated)

  30. 

  31. 	var newPublicKey api.PublicKey

  32. 	DecodeJSON(t, resp, &newPublicKey)

  33. 	models.AssertExistsAndLoadBean(t, &models.PublicKey{

  34. 		ID:          newPublicKey.ID,

  35. 		Name:        newPublicKey.Title,

  36. 		Content:     newPublicKey.Key,

  37. 		Fingerprint: newPublicKey.Fingerprint,

  38. 		OwnerID:     keyOwner.ID,

  39. 	})

  40. 

  41. 	req = NewRequestf(t, "DELETE", "/api/v1/admin/users/%s/keys/%d",

  42. 		keyOwner.Name, newPublicKey.ID)

  43. 	session.MakeRequest(t, req, http.StatusNoContent)

  44. 	models.AssertNotExistsBean(t, &models.PublicKey{ID: newPublicKey.ID})

  45. }

  46. 

  47. func TestAPIAdminDeleteMissingSSHKey(t *testing.T) {

  48. 	prepareTestEnv(t)

  49. 	// user1 is an admin user

  50. 	session := loginUser(t, "user1")

  51. 

  52. 	req := NewRequestf(t, "DELETE", "/api/v1/admin/users/user1/keys/%d", models.NonexistentID)

  53. 	session.MakeRequest(t, req, http.StatusNotFound)

  54. }

  55. 

  56. func TestAPIAdminDeleteUnauthorizedKey(t *testing.T) {

  57. 	prepareTestEnv(t)

  58. 	adminUsername := "user1"

  59. 	normalUsername := "user2"

  60. 	session := loginUser(t, adminUsername)

  61. 

  62. 	urlStr := fmt.Sprintf("/api/v1/admin/users/%s/keys", adminUsername)

  63. 	req := NewRequestWithValues(t, "POST", urlStr, map[string]string{

  64. 		"key":   "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQDAu7tvIvX6ZHrRXuZNfkR3XLHSsuCK9Zn3X58lxBcQzuo5xZgB6vRwwm/QtJuF+zZPtY5hsQILBLmF+BZ5WpKZp1jBeSjH2G7lxet9kbcH+kIVj0tPFEoyKI9wvWqIwC4prx/WVk2wLTJjzBAhyNxfEq7C9CeiX9pQEbEqJfkKCQ== nocomment\n",

  65. 		"title": "test-key",

  66. 	})

  67. 	resp := session.MakeRequest(t, req, http.StatusCreated)

  68. 	var newPublicKey api.PublicKey

  69. 	DecodeJSON(t, resp, &newPublicKey)

  70. 

  71. 	session = loginUser(t, normalUsername)

  72. 	req = NewRequestf(t, "DELETE", "/api/v1/admin/users/%s/keys/%d",

  73. 		adminUsername, newPublicKey.ID)

  74. 	session.MakeRequest(t, req, http.StatusForbidden)

  75. }

  76. 

  77. func TestAPISudoUser(t *testing.T) {

  78. 	prepareTestEnv(t)

  79. 	adminUsername := "user1"

  80. 	normalUsername := "user2"

  81. 	session := loginUser(t, adminUsername)

  82. 

  83. 	urlStr := fmt.Sprintf("/api/v1/user?sudo=%s", normalUsername)

  84. 	req := NewRequest(t, "GET", urlStr)

  85. 	resp := session.MakeRequest(t, req, http.StatusOK)

  86. 	var user api.User

  87. 	DecodeJSON(t, resp, &user)

  88. 

  89. 	assert.Equal(t, normalUsername, user.UserName)

  90. }

  91. 

  92. func TestAPISudoUserForbidden(t *testing.T) {

  93. 	prepareTestEnv(t)

  94. 	adminUsername := "user1"

  95. 	normalUsername := "user2"

  96. 

  97. 	session := loginUser(t, normalUsername)

  98. 

  99. 	urlStr := fmt.Sprintf("/api/v1/user?sudo=%s", adminUsername)

  100. 	req := NewRequest(t, "GET", urlStr)

  101. 	session.MakeRequest(t, req, http.StatusForbidden)

  102. }

No Description