# -*- coding: utf-8 -*-
#
# django-ldapdb
-# Copyright (C) 2009-2010 Bolloré telecom
+# Copyright (c) 2009-2010, Bolloré telecom
+# All rights reserved.
+#
# See AUTHORS file for a full list of contributors.
#
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
+# Redistribution and use in source and binary forms, with or without modification,
+# are permitted provided that the following conditions are met:
+#
+# 1. Redistributions of source code must retain the above copyright notice,
+# this list of conditions and the following disclaimer.
+#
+# 2. Redistributions in binary form must reproduce the above copyright
+# notice, this list of conditions and the following disclaimer in the
+# documentation and/or other materials provided with the distribution.
#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
+# 3. Neither the name of Bolloré telecom nor the names of its contributors
+# may be used to endorse or promote products derived from this software
+# without specific prior written permission.
#
-# You should have received a copy of the GNU General Public License
-# along with this program. If not, see <http://www.gnu.org/licenses/>.
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
+# ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+# (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
+# ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+# SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
#
+from django.db.models import Q
from django.test import TestCase
import ldap
class BaseTestCase(TestCase):
def setUp(self):
cursor = ldapdb.connection._cursor()
- for base in [LdapGroup.base_dn, LdapUser.base_dn]:
- rdn = base.split(',')[0]
+ for dn in [LdapGroup.base_dn, LdapUser.base_dn]:
+ rdn = dn.split(',')[0]
key, val = rdn.split('=')
attrs = [('objectClass', ['top', 'organizationalUnit']), (key, [val])]
try:
- cursor.connection.add_s(base, attrs)
+ cursor.connection.add_s(dn, attrs)
except ldap.ALREADY_EXISTS:
pass
g.usernames = ['wizuser', 'baruser']
g.save()
- def test_filter(self):
+ def test_count(self):
+ # empty query
+ qs = LdapGroup.objects.none()
+ self.assertEquals(qs.count(), 0)
+
qs = LdapGroup.objects.none()
self.assertEquals(len(qs), 0)
+ # all query
+ qs = LdapGroup.objects.all()
+ self.assertEquals(qs.count(), 3)
+
qs = LdapGroup.objects.all()
self.assertEquals(len(qs), 3)
+ def test_ldap_filter(self):
+ # single filter
+ qs = LdapGroup.objects.filter(name='foogroup')
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(cn=foogroup))')
+
+ qs = LdapGroup.objects.filter(Q(name='foogroup'))
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(cn=foogroup))')
+
+ # AND filter
+ qs = LdapGroup.objects.filter(gid=1000, name='foogroup')
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
+
+ qs = LdapGroup.objects.filter(Q(gid=1000) & Q(name='foogroup'))
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
+
+ # OR filter
+ qs = LdapGroup.objects.filter(Q(gid=1000) | Q(name='foogroup'))
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(|(gidNumber=1000)(cn=foogroup)))')
+
+ # single exclusion
+ qs = LdapGroup.objects.exclude(name='foogroup')
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
+
+ qs = LdapGroup.objects.filter(~Q(name='foogroup'))
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
+
+ # multiple exclusion
+ qs = LdapGroup.objects.exclude(name='foogroup', gid=1000)
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(!(&(gidNumber=1000)(cn=foogroup))))')
+
+ qs = LdapGroup.objects.filter(name='foogroup').exclude(gid=1000)
+ self.assertEquals(qs.query._ldap_filter(), '(&(objectClass=posixGroup)(&(cn=foogroup)(!(gidNumber=1000))))')
+
+ def test_filter(self):
+ qs = LdapGroup.objects.filter(name='foogroup')
+ self.assertEquals(qs.count(), 1)
+
qs = LdapGroup.objects.filter(name='foogroup')
self.assertEquals(len(qs), 1)
g = qs[0]
- self.assertEquals(g.dn, 'cn=foogroup,ou=groups,dc=nodomain')
+ self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
self.assertEquals(g.name, 'foogroup')
self.assertEquals(g.gid, 1000)
self.assertEquals(g.usernames, ['foouser', 'baruser'])
# try to filter non-existent entries
+ qs = LdapGroup.objects.filter(name='does_not_exist')
+ self.assertEquals(qs.count(), 0)
+
qs = LdapGroup.objects.filter(name='does_not_exist')
self.assertEquals(len(qs), 0)
def test_get(self):
g = LdapGroup.objects.get(name='foogroup')
- self.assertEquals(g.dn, 'cn=foogroup,ou=groups,dc=nodomain')
+ self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
self.assertEquals(g.name, 'foogroup')
self.assertEquals(g.gid, 1000)
self.assertEquals(g.usernames, ['foouser', 'baruser'])
self.assertEquals(objs[1].gid, 1001)
self.assertEquals(objs[2].gid, 1002)
+ # limit only
qs = LdapGroup.objects.all()
objs = qs[:2]
- for o in objs:
- return
- print objs
+ self.assertEquals(objs.count(), 2)
+
+ objs = qs[:2]
self.assertEquals(len(objs), 2)
self.assertEquals(objs[0].gid, 1000)
self.assertEquals(objs[1].gid, 1001)
- return
+ # offset only
qs = LdapGroup.objects.all()
+ objs = qs[1:]
+ self.assertEquals(objs.count(), 2)
+
objs = qs[1:]
self.assertEquals(len(objs), 2)
self.assertEquals(objs[0].gid, 1001)
self.assertEquals(objs[1].gid, 1002)
+ # offset and limit
+ qs = LdapGroup.objects.all()
+ objs = qs[1:2]
+ self.assertEquals(objs.count(), 1)
+
+ objs = qs[1:2]
+ self.assertEquals(len(objs), 1)
+ self.assertEquals(objs[0].gid, 1001)
+
def test_update(self):
g = LdapGroup.objects.get(name='foogroup')
# make sure DN gets updated if we change the pk
g.name = 'foogroup2'
g.save()
- self.assertEquals(g.dn, 'cn=foogroup2,ou=groups,dc=nodomain')
+ self.assertEquals(g.dn, 'cn=foogroup2,%s' % LdapGroup.base_dn)
def test_values(self):
qs = LdapGroup.objects.values('name')
# make sure DN gets updated if we change the pk
u.username = 'foouser2'
u.save()
- self.assertEquals(u.dn, 'uid=foouser2,ou=people,dc=nodomain')
+ self.assertEquals(u.dn, 'uid=foouser2,%s' % LdapUser.base_dn)
+
+class ScopedTestCase(BaseTestCase):
+ def setUp(self):
+ super(ScopedTestCase, self).setUp()
+
+ cursor = ldapdb.connection._cursor()
+ self.scoped_dn = "ou=contacts,%s" % LdapGroup.base_dn
+ attrs = [('objectClass', ['top', 'organizationalUnit']), ("ou", ["contacts"])]
+ cursor.connection.add_s(self.scoped_dn, attrs)
+
+ def test_scope(self):
+ ScopedGroup = LdapGroup.scoped(self.scoped_dn)
+
+ # create group
+ g = LdapGroup()
+ g.name = "foogroup"
+ g.gid = 1000
+ g.save()
+
+ qs = LdapGroup.objects.all()
+ self.assertEquals(qs.count(), 1)
+
+ qs = ScopedGroup.objects.all()
+ self.assertEquals(qs.count(), 0)
+
+ # create scoped group
+ g2 = ScopedGroup()
+ g2.name = "scopedgroup"
+ g2.gid = 5000
+ g2.save()
+
+ qs = LdapGroup.objects.all()
+ self.assertEquals(qs.count(), 2)
+
+ qs = ScopedGroup.objects.all()
+ self.assertEquals(qs.count(), 1)
class AdminTestCase(BaseTestCase):
fixtures = ['test_users.json']
self.assertContains(response, "foogroup")
self.assertContains(response, "1000")
+ def test_group_add(self):
+ response = self.client.post('/admin/examples/ldapgroup/add/', {'gid': '1002', 'name': 'wizgroup'})
+ self.assertRedirects(response, '/admin/examples/ldapgroup/')
+ qs = LdapGroup.objects.all()
+ self.assertEquals(qs.count(), 3)
+
def test_group_delete(self):
response = self.client.post('/admin/examples/ldapgroup/foogroup/delete/', {'yes': 'post'})
self.assertRedirects(response, '/admin/examples/ldapgroup/')
+ qs = LdapGroup.objects.all()
+ self.assertEquals(qs.count(), 1)
def test_group_search(self):
response = self.client.get('/admin/examples/ldapgroup/?q=foo')