server-tools/auth_from_http_remote_user/tests/test_res_users.py

# -*- coding: utf-8 -*-
##############################################################################
#
#    Author: Laurent Mignon
#    Copyright 2014 'ACSONE SA/NV'
#
#    This program is free software: you can redistribute it and/or modify
#    it under the terms of the GNU Affero General Public License as
#    published by the Free Software Foundation, either version 3 of the
#    License, or (at your option) any later version.
#
#    This program is distributed in the hope that it will be useful,
#    but WITHOUT ANY WARRANTY; without even the implied warranty of
#    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#    GNU Affero General Public License for more details.
#
#    You should have received a copy of the GNU Affero General Public License
#    along with this program.  If not, see <http://www.gnu.org/licenses/>.
#
##############################################################################

from openerp.tests import common
import mock
import os
from contextlib import contextmanager
import unittest


@contextmanager
def mock_cursor(cr):
    with mock.patch('openerp.sql_db.Connection.cursor') as mocked_cursor_call:
        org_close = cr.close
        org_autocommit = cr.autocommit
        try:
            cr.close = mock.Mock()
            cr.autocommit = mock.Mock()
            mocked_cursor_call.return_value = cr
            yield
        finally:
            cr.close = org_close
    cr.autocommit = org_autocommit


class test_res_users(common.TransactionCase):

    def test_login(self):
        res_users_obj = self.registry('res.users')
        res = res_users_obj.authenticate(common.DB, 'admin', 'admin', None)
        uid = res
        self.assertTrue(res, "Basic login must works as expected")
        token = "123456"
        res = res_users_obj.authenticate(common.DB, 'admin', token, None)
        self.assertFalse(res)
        # mimic what the new controller do when it find a value in
        # the http header (HTTP_REMODE_USER)
        res_users_obj.write(self.cr, self.uid, uid, {'sso_key': token})

        # Here we need to mock the cursor since the login is natively done
        # inside its own connection
        with mock_cursor(self.cr):
            # We can verifies that the given (uid, token) is authorized for
            # the database
            res_users_obj.check(common.DB, uid, token)

            # we are able to login with the new token
            res = res_users_obj.authenticate(common.DB, 'admin', token, None)
            self.assertTrue(res)

    @unittest.skipIf(os.environ.get('TRAVIS'),
                     'When run by travis, tests runs on a database with all '
                     'required addons from server-tools and their dependencies'
                     ' installed. Even if `auth_from_http_remote_user` does '
                     'not require the `mail` module, The previous installation'
                     ' of the mail module has created the column '
                     '`notification_email_send` as REQUIRED into the table '
                     'res_partner. BTW, it\'s no more possible to copy a '
                     'res_user without an intefirty error')
    def test_copy(self):
        '''Check that the sso_key is not copied on copy
        '''
        res_users_obj = self.registry('res.users')
        vals = {'sso_key': '123'}
        res_users_obj.write(self.cr, self.uid, self.uid, vals)
        read_vals = res_users_obj.read(
            self.cr, self.uid, self.uid, ['sso_key'])
        self.assertDictContainsSubset(vals, read_vals)
        copy = res_users_obj.copy(self.cr, self.uid, self.uid)
        read_vals = res_users_obj.read(
            self.cr, self.uid, copy, ['sso_key'])
        self.assertFalse(read_vals.get('sso_key'))