1 # -*- coding: utf-8 -*-
4 # Copyright (c) 2009-2010, Bolloré telecom
7 # See AUTHORS file for a full list of contributors.
9 # Redistribution and use in source and binary forms, with or without modification,
10 # are permitted provided that the following conditions are met:
12 # 1. Redistributions of source code must retain the above copyright notice,
13 # this list of conditions and the following disclaimer.
15 # 2. Redistributions in binary form must reproduce the above copyright
16 # notice, this list of conditions and the following disclaimer in the
17 # documentation and/or other materials provided with the distribution.
19 # 3. Neither the name of Bolloré telecom nor the names of its contributors
20 # may be used to endorse or promote products derived from this software
21 # without specific prior written permission.
23 # THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
24 # ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
25 # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
26 # DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
27 # ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
28 # (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
29 # LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
30 # ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
31 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
32 # SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35 from django.db import connections, router
36 from django.db.models import Q
37 from django.test import TestCase
41 from ldapdb.backends.ldap.compiler import query_as_ldap
42 from examples.models import LdapUser, LdapGroup
44 class BaseTestCase(TestCase):
45 def _add_base_dn(self, model):
46 using = router.db_for_write(model)
47 connection = connections[using]
49 rdn = model.base_dn.split(',')[0]
50 key, val = rdn.split('=')
51 attrs = [('objectClass', ['top', 'organizationalUnit']), (key, [val])]
53 connection.add_s(model.base_dn, attrs)
54 except ldap.ALREADY_EXISTS:
57 def _remove_base_dn(self, model):
58 using = router.db_for_write(model)
59 connection = connections[using]
62 results = connection.search_s(model.base_dn, ldap.SCOPE_SUBTREE)
63 for dn, attrs in reversed(results):
64 connection.delete_s(dn)
65 except ldap.NO_SUCH_OBJECT:
69 for model in [LdapGroup, LdapUser]:
70 self._add_base_dn(model)
73 for model in [LdapGroup, LdapUser]:
74 self._remove_base_dn(model)
76 class GroupTestCase(BaseTestCase):
78 super(GroupTestCase, self).setUp()
83 g.usernames = ['foouser', 'baruser']
89 g.usernames = ['zoouser', 'baruser']
95 g.usernames = ['wizuser', 'baruser']
100 qs = LdapGroup.objects.none()
101 self.assertEquals(qs.count(), 0)
103 qs = LdapGroup.objects.none()
104 self.assertEquals(len(qs), 0)
107 qs = LdapGroup.objects.all()
108 self.assertEquals(qs.count(), 3)
110 qs = LdapGroup.objects.all()
111 self.assertEquals(len(qs), 3)
113 def test_ldap_filter(self):
115 qs = LdapGroup.objects.filter(name='foogroup')
116 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(cn=foogroup))')
118 qs = LdapGroup.objects.filter(Q(name='foogroup'))
119 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(cn=foogroup))')
122 qs = LdapGroup.objects.filter(gid=1000, name='foogroup')
123 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
125 qs = LdapGroup.objects.filter(Q(gid=1000) & Q(name='foogroup'))
126 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
129 qs = LdapGroup.objects.filter(Q(gid=1000) | Q(name='foogroup'))
130 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(|(gidNumber=1000)(cn=foogroup)))')
133 qs = LdapGroup.objects.exclude(name='foogroup')
134 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
136 qs = LdapGroup.objects.filter(~Q(name='foogroup'))
137 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
140 qs = LdapGroup.objects.exclude(name='foogroup', gid=1000)
141 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(&(gidNumber=1000)(cn=foogroup))))')
143 qs = LdapGroup.objects.filter(name='foogroup').exclude(gid=1000)
144 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(cn=foogroup)(!(gidNumber=1000))))')
146 def test_filter(self):
147 qs = LdapGroup.objects.filter(name='foogroup')
148 self.assertEquals(qs.count(), 1)
150 qs = LdapGroup.objects.filter(name='foogroup')
151 self.assertEquals(len(qs), 1)
154 self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
155 self.assertEquals(g.name, 'foogroup')
156 self.assertEquals(g.gid, 1000)
157 self.assertEquals(g.usernames, ['foouser', 'baruser'])
159 # try to filter non-existent entries
160 qs = LdapGroup.objects.filter(name='does_not_exist')
161 self.assertEquals(qs.count(), 0)
163 qs = LdapGroup.objects.filter(name='does_not_exist')
164 self.assertEquals(len(qs), 0)
167 g = LdapGroup.objects.get(name='foogroup')
168 self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
169 self.assertEquals(g.name, 'foogroup')
170 self.assertEquals(g.gid, 1000)
171 self.assertEquals(g.usernames, ['foouser', 'baruser'])
173 # try to get a non-existent entry
174 self.assertRaises(LdapGroup.DoesNotExist, LdapGroup.objects.get, name='does_not_exist')
176 def test_order_by(self):
178 qs = LdapGroup.objects.order_by('name')
179 self.assertEquals(len(qs), 3)
180 self.assertEquals(qs[0].name, 'bargroup')
181 self.assertEquals(qs[1].name, 'foogroup')
182 self.assertEquals(qs[2].name, 'wizgroup')
185 qs = LdapGroup.objects.order_by('-name')
186 self.assertEquals(len(qs), 3)
187 self.assertEquals(qs[0].name, 'wizgroup')
188 self.assertEquals(qs[1].name, 'foogroup')
189 self.assertEquals(qs[2].name, 'bargroup')
192 qs = LdapGroup.objects.order_by('gid')
193 self.assertEquals(len(qs), 3)
194 self.assertEquals(qs[0].gid, 1000)
195 self.assertEquals(qs[1].gid, 1001)
196 self.assertEquals(qs[2].gid, 1002)
199 qs = LdapGroup.objects.order_by('-gid')
200 self.assertEquals(len(qs), 3)
201 self.assertEquals(qs[0].gid, 1002)
202 self.assertEquals(qs[1].gid, 1001)
203 self.assertEquals(qs[2].gid, 1000)
205 def test_bulk_delete(self):
206 LdapGroup.objects.all().delete()
208 qs = LdapGroup.objects.all()
209 self.assertEquals(len(qs), 0)
211 def test_slice(self):
212 qs = LdapGroup.objects.all()
214 self.assertEquals(len(objs), 3)
215 self.assertEquals(objs[0].gid, 1000)
216 self.assertEquals(objs[1].gid, 1001)
217 self.assertEquals(objs[2].gid, 1002)
220 qs = LdapGroup.objects.all()
222 self.assertEquals(objs.count(), 2)
225 self.assertEquals(len(objs), 2)
226 self.assertEquals(objs[0].gid, 1000)
227 self.assertEquals(objs[1].gid, 1001)
230 qs = LdapGroup.objects.all()
232 self.assertEquals(objs.count(), 2)
235 self.assertEquals(len(objs), 2)
236 self.assertEquals(objs[0].gid, 1001)
237 self.assertEquals(objs[1].gid, 1002)
240 qs = LdapGroup.objects.all()
242 self.assertEquals(objs.count(), 1)
245 self.assertEquals(len(objs), 1)
246 self.assertEquals(objs[0].gid, 1001)
248 def test_update(self):
249 g = LdapGroup.objects.get(name='foogroup')
252 g.usernames = ['foouser2', 'baruser2']
255 # make sure DN gets updated if we change the pk
258 self.assertEquals(g.dn, 'cn=foogroup2,%s' % LdapGroup.base_dn)
260 def test_values(self):
261 qs = LdapGroup.objects.values('name')
262 self.assertEquals(len(qs), 3)
263 self.assertEquals(qs[0], {'name': 'foogroup'})
264 self.assertEquals(qs[1], {'name': 'bargroup'})
265 self.assertEquals(qs[2], {'name': 'wizgroup'})
267 def test_values_list(self):
268 qs = LdapGroup.objects.values_list('name')
269 self.assertEquals(len(qs), 3)
270 self.assertEquals(qs[0], ('foogroup',))
271 self.assertEquals(qs[1], ('bargroup',))
272 self.assertEquals(qs[2], ('wizgroup',))
274 def test_delete(self):
275 g = LdapGroup.objects.get(name='foogroup')
278 qs = LdapGroup.objects.all()
279 self.assertEquals(len(qs), 2)
281 class UserTestCase(BaseTestCase):
283 super(UserTestCase, self).setUp()
286 u.first_name = u"Fôo"
287 u.last_name = u"Usér"
288 u.full_name = u"Fôo Usér"
291 u.home_directory = "/home/foouser"
293 u.username = "foouser"
294 u.photo = '\xff\xd8\xff\xe0\x00\x10JFIF\x00\x01\x01\x01\x00H\x00H\x00\x00\xff\xfe\x00\x1cCreated with GIMP on a Mac\xff\xdb\x00C\x00\x05\x03\x04\x04\x04\x03\x05\x04\x04\x04\x05\x05\x05\x06\x07\x0c\x08\x07\x07\x07\x07\x0f\x0b\x0b\t\x0c\x11\x0f\x12\x12\x11\x0f\x11\x11\x13\x16\x1c\x17\x13\x14\x1a\x15\x11\x11\x18!\x18\x1a\x1d\x1d\x1f\x1f\x1f\x13\x17"$"\x1e$\x1c\x1e\x1f\x1e\xff\xdb\x00C\x01\x05\x05\x05\x07\x06\x07\x0e\x08\x08\x0e\x1e\x14\x11\x14\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\xff\xc0\x00\x11\x08\x00\x08\x00\x08\x03\x01"\x00\x02\x11\x01\x03\x11\x01\xff\xc4\x00\x15\x00\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\xff\xc4\x00\x19\x10\x00\x03\x01\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x02\x06\x11A\xff\xc4\x00\x14\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xc4\x00\x14\x11\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xda\x00\x0c\x03\x01\x00\x02\x11\x03\x11\x00?\x00\x9d\xf29wU5Q\xd6\xfd\x00\x01\xff\xd9'
298 u = LdapUser.objects.get(username='foouser')
299 self.assertEquals(u.first_name, u'Fôo')
300 self.assertEquals(u.last_name, u'Usér')
301 self.assertEquals(u.full_name, u'Fôo Usér')
303 self.assertEquals(u.group, 1000)
304 self.assertEquals(u.home_directory, '/home/foouser')
305 self.assertEquals(u.uid, 2000)
306 self.assertEquals(u.username, 'foouser')
307 self.assertEquals(u.photo, '\xff\xd8\xff\xe0\x00\x10JFIF\x00\x01\x01\x01\x00H\x00H\x00\x00\xff\xfe\x00\x1cCreated with GIMP on a Mac\xff\xdb\x00C\x00\x05\x03\x04\x04\x04\x03\x05\x04\x04\x04\x05\x05\x05\x06\x07\x0c\x08\x07\x07\x07\x07\x0f\x0b\x0b\t\x0c\x11\x0f\x12\x12\x11\x0f\x11\x11\x13\x16\x1c\x17\x13\x14\x1a\x15\x11\x11\x18!\x18\x1a\x1d\x1d\x1f\x1f\x1f\x13\x17"$"\x1e$\x1c\x1e\x1f\x1e\xff\xdb\x00C\x01\x05\x05\x05\x07\x06\x07\x0e\x08\x08\x0e\x1e\x14\x11\x14\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\xff\xc0\x00\x11\x08\x00\x08\x00\x08\x03\x01"\x00\x02\x11\x01\x03\x11\x01\xff\xc4\x00\x15\x00\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\xff\xc4\x00\x19\x10\x00\x03\x01\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x02\x06\x11A\xff\xc4\x00\x14\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xc4\x00\x14\x11\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xda\x00\x0c\x03\x01\x00\x02\x11\x03\x11\x00?\x00\x9d\xf29wU5Q\xd6\xfd\x00\x01\xff\xd9')
309 self.assertRaises(LdapUser.DoesNotExist, LdapUser.objects.get, username='does_not_exist')
311 def test_update(self):
312 u = LdapUser.objects.get(username='foouser')
313 u.first_name = u'Fôo2'
316 # make sure DN gets updated if we change the pk
317 u.username = 'foouser2'
319 self.assertEquals(u.dn, 'uid=foouser2,%s' % LdapUser.base_dn)
321 class ScopedTestCase(BaseTestCase):
323 super(ScopedTestCase, self).setUp()
325 self.scoped_model = LdapGroup.scoped("ou=contacts,%s" % LdapGroup.base_dn)
326 self._add_base_dn(self.scoped_model)
329 self._remove_base_dn(self.scoped_model)
330 super(ScopedTestCase, self).tearDown()
332 def test_scope(self):
333 ScopedGroup = self.scoped_model
341 qs = LdapGroup.objects.all()
342 self.assertEquals(qs.count(), 1)
344 qs = ScopedGroup.objects.all()
345 self.assertEquals(qs.count(), 0)
347 # create scoped group
349 g2.name = "scopedgroup"
353 qs = LdapGroup.objects.all()
354 self.assertEquals(qs.count(), 2)
356 qs = ScopedGroup.objects.all()
357 self.assertEquals(qs.count(), 1)
359 class AdminTestCase(BaseTestCase):
360 fixtures = ['test_users.json']
363 super(AdminTestCase, self).setUp()
368 g.usernames = ['foouser', 'baruser']
374 g.usernames = ['zoouser', 'baruser']
380 u.full_name = "Foo User"
382 u.home_directory = "/home/foouser"
384 u.username = "foouser"
390 u.full_name = "Bar User"
392 u.home_directory = "/home/baruser"
394 u.username = "baruser"
397 self.client.login(username="test_user", password="password")
399 def test_index(self):
400 response = self.client.get('/admin/examples/')
401 self.assertContains(response, "Ldap groups")
402 self.assertContains(response, "Ldap users")
404 def test_group_list(self):
405 response = self.client.get('/admin/examples/ldapgroup/')
406 self.assertContains(response, "Ldap groups")
407 self.assertContains(response, "foogroup")
408 self.assertContains(response, "1000")
411 response = self.client.get('/admin/examples/ldapgroup/?o=1')
412 self.assertContains(response, "Ldap groups")
413 self.assertContains(response, "foogroup")
414 self.assertContains(response, "1000")
417 response = self.client.get('/admin/examples/ldapgroup/?o=2')
418 self.assertContains(response, "Ldap groups")
419 self.assertContains(response, "foogroup")
420 self.assertContains(response, "1000")
422 def test_group_detail(self):
423 response = self.client.get('/admin/examples/ldapgroup/foogroup/')
424 self.assertContains(response, "foogroup")
425 self.assertContains(response, "1000")
427 def test_group_add(self):
428 response = self.client.post('/admin/examples/ldapgroup/add/', {'gid': '1002', 'name': 'wizgroup'})
429 self.assertRedirects(response, '/admin/examples/ldapgroup/')
430 qs = LdapGroup.objects.all()
431 self.assertEquals(qs.count(), 3)
433 def test_group_delete(self):
434 response = self.client.post('/admin/examples/ldapgroup/foogroup/delete/', {'yes': 'post'})
435 self.assertRedirects(response, '/admin/examples/ldapgroup/')
436 qs = LdapGroup.objects.all()
437 self.assertEquals(qs.count(), 1)
439 def test_group_search(self):
440 response = self.client.get('/admin/examples/ldapgroup/?q=foo')
441 self.assertContains(response, "Ldap groups")
442 self.assertContains(response, "foogroup")
443 self.assertContains(response, "1000")
445 def test_user_list(self):
446 response = self.client.get('/admin/examples/ldapuser/')
447 self.assertContains(response, "Ldap users")
448 self.assertContains(response, "foouser")
449 self.assertContains(response, "2000")
452 response = self.client.get('/admin/examples/ldapuser/?o=1')
453 self.assertContains(response, "Ldap users")
454 self.assertContains(response, "foouser")
455 self.assertContains(response, "2000")
458 response = self.client.get('/admin/examples/ldapuser/?o=2')
459 self.assertContains(response, "Ldap users")
460 self.assertContains(response, "foouser")
461 self.assertContains(response, "2000")
463 def test_user_detail(self):
464 response = self.client.get('/admin/examples/ldapuser/foouser/')
465 self.assertContains(response, "foouser")
466 self.assertContains(response, "2000")
468 def test_user_delete(self):
469 response = self.client.post('/admin/examples/ldapuser/foouser/delete/', {'yes': 'post'})
470 self.assertRedirects(response, '/admin/examples/ldapuser/')