1 # -*- coding: utf-8 -*-
4 # Copyright (c) 2009-2010, Bolloré telecom
7 # See AUTHORS file for a full list of contributors.
9 # Redistribution and use in source and binary forms, with or without modification,
10 # are permitted provided that the following conditions are met:
12 # 1. Redistributions of source code must retain the above copyright notice,
13 # this list of conditions and the following disclaimer.
15 # 2. Redistributions in binary form must reproduce the above copyright
16 # notice, this list of conditions and the following disclaimer in the
17 # documentation and/or other materials provided with the distribution.
19 # 3. Neither the name of Bolloré telecom nor the names of its contributors
20 # may be used to endorse or promote products derived from this software
21 # without specific prior written permission.
23 # THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
24 # ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
25 # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
26 # DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
27 # ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
28 # (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
29 # LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
30 # ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
31 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
32 # SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35 from django.db import connections, router
36 from django.db.models import Q
37 from django.test import TestCase
41 from ldapdb.backends.ldap.compiler import query_as_ldap
42 from examples.models import LdapUser, LdapGroup
44 class BaseTestCase(TestCase):
46 for model in [LdapGroup, LdapUser]:
47 using = router.db_for_write(model)
48 connection = connections[using]
50 rdn = model.base_dn.split(',')[0]
51 key, val = rdn.split('=')
52 attrs = [('objectClass', ['top', 'organizationalUnit']), (key, [val])]
54 connection.add_s(model.base_dn, attrs)
55 except ldap.ALREADY_EXISTS:
59 for model in [LdapGroup, LdapUser]:
60 using = router.db_for_write(model)
61 connection = connections[using]
64 results = connection.search_s(model.base_dn, ldap.SCOPE_SUBTREE)
65 for dn, attrs in reversed(results):
66 connection.delete_s(dn)
67 except ldap.NO_SUCH_OBJECT:
70 class GroupTestCase(BaseTestCase):
72 super(GroupTestCase, self).setUp()
77 g.usernames = ['foouser', 'baruser']
83 g.usernames = ['zoouser', 'baruser']
89 g.usernames = ['wizuser', 'baruser']
94 qs = LdapGroup.objects.none()
95 self.assertEquals(qs.count(), 0)
97 qs = LdapGroup.objects.none()
98 self.assertEquals(len(qs), 0)
101 qs = LdapGroup.objects.all()
102 self.assertEquals(qs.count(), 3)
104 qs = LdapGroup.objects.all()
105 self.assertEquals(len(qs), 3)
107 def test_ldap_filter(self):
109 qs = LdapGroup.objects.filter(name='foogroup')
110 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(cn=foogroup))')
112 qs = LdapGroup.objects.filter(Q(name='foogroup'))
113 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(cn=foogroup))')
116 qs = LdapGroup.objects.filter(gid=1000, name='foogroup')
117 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
119 qs = LdapGroup.objects.filter(Q(gid=1000) & Q(name='foogroup'))
120 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(gidNumber=1000)(cn=foogroup)))')
123 qs = LdapGroup.objects.filter(Q(gid=1000) | Q(name='foogroup'))
124 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(|(gidNumber=1000)(cn=foogroup)))')
127 qs = LdapGroup.objects.exclude(name='foogroup')
128 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
130 qs = LdapGroup.objects.filter(~Q(name='foogroup'))
131 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(cn=foogroup)))')
134 qs = LdapGroup.objects.exclude(name='foogroup', gid=1000)
135 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(!(&(gidNumber=1000)(cn=foogroup))))')
137 qs = LdapGroup.objects.filter(name='foogroup').exclude(gid=1000)
138 self.assertEquals(query_as_ldap(qs.query), '(&(objectClass=posixGroup)(&(cn=foogroup)(!(gidNumber=1000))))')
140 def test_filter(self):
141 qs = LdapGroup.objects.filter(name='foogroup')
142 self.assertEquals(qs.count(), 1)
144 qs = LdapGroup.objects.filter(name='foogroup')
145 self.assertEquals(len(qs), 1)
148 self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
149 self.assertEquals(g.name, 'foogroup')
150 self.assertEquals(g.gid, 1000)
151 self.assertEquals(g.usernames, ['foouser', 'baruser'])
153 # try to filter non-existent entries
154 qs = LdapGroup.objects.filter(name='does_not_exist')
155 self.assertEquals(qs.count(), 0)
157 qs = LdapGroup.objects.filter(name='does_not_exist')
158 self.assertEquals(len(qs), 0)
161 g = LdapGroup.objects.get(name='foogroup')
162 self.assertEquals(g.dn, 'cn=foogroup,%s' % LdapGroup.base_dn)
163 self.assertEquals(g.name, 'foogroup')
164 self.assertEquals(g.gid, 1000)
165 self.assertEquals(g.usernames, ['foouser', 'baruser'])
167 # try to get a non-existent entry
168 self.assertRaises(LdapGroup.DoesNotExist, LdapGroup.objects.get, name='does_not_exist')
170 def test_order_by(self):
172 qs = LdapGroup.objects.order_by('name')
173 self.assertEquals(len(qs), 3)
174 self.assertEquals(qs[0].name, 'bargroup')
175 self.assertEquals(qs[1].name, 'foogroup')
176 self.assertEquals(qs[2].name, 'wizgroup')
179 qs = LdapGroup.objects.order_by('-name')
180 self.assertEquals(len(qs), 3)
181 self.assertEquals(qs[0].name, 'wizgroup')
182 self.assertEquals(qs[1].name, 'foogroup')
183 self.assertEquals(qs[2].name, 'bargroup')
186 qs = LdapGroup.objects.order_by('gid')
187 self.assertEquals(len(qs), 3)
188 self.assertEquals(qs[0].gid, 1000)
189 self.assertEquals(qs[1].gid, 1001)
190 self.assertEquals(qs[2].gid, 1002)
193 qs = LdapGroup.objects.order_by('-gid')
194 self.assertEquals(len(qs), 3)
195 self.assertEquals(qs[0].gid, 1002)
196 self.assertEquals(qs[1].gid, 1001)
197 self.assertEquals(qs[2].gid, 1000)
199 def test_bulk_delete(self):
200 LdapGroup.objects.all().delete()
202 qs = LdapGroup.objects.all()
203 self.assertEquals(len(qs), 0)
205 def test_slice(self):
206 qs = LdapGroup.objects.all()
208 self.assertEquals(len(objs), 3)
209 self.assertEquals(objs[0].gid, 1000)
210 self.assertEquals(objs[1].gid, 1001)
211 self.assertEquals(objs[2].gid, 1002)
214 qs = LdapGroup.objects.all()
216 self.assertEquals(objs.count(), 2)
219 self.assertEquals(len(objs), 2)
220 self.assertEquals(objs[0].gid, 1000)
221 self.assertEquals(objs[1].gid, 1001)
224 qs = LdapGroup.objects.all()
226 self.assertEquals(objs.count(), 2)
229 self.assertEquals(len(objs), 2)
230 self.assertEquals(objs[0].gid, 1001)
231 self.assertEquals(objs[1].gid, 1002)
234 qs = LdapGroup.objects.all()
236 self.assertEquals(objs.count(), 1)
239 self.assertEquals(len(objs), 1)
240 self.assertEquals(objs[0].gid, 1001)
242 def test_update(self):
243 g = LdapGroup.objects.get(name='foogroup')
246 g.usernames = ['foouser2', 'baruser2']
249 # make sure DN gets updated if we change the pk
252 self.assertEquals(g.dn, 'cn=foogroup2,%s' % LdapGroup.base_dn)
254 def test_values(self):
255 qs = LdapGroup.objects.values('name')
256 self.assertEquals(len(qs), 3)
257 self.assertEquals(qs[0], {'name': 'foogroup'})
258 self.assertEquals(qs[1], {'name': 'bargroup'})
259 self.assertEquals(qs[2], {'name': 'wizgroup'})
261 def test_values_list(self):
262 qs = LdapGroup.objects.values_list('name')
263 self.assertEquals(len(qs), 3)
264 self.assertEquals(qs[0], ('foogroup',))
265 self.assertEquals(qs[1], ('bargroup',))
266 self.assertEquals(qs[2], ('wizgroup',))
268 def test_delete(self):
269 g = LdapGroup.objects.get(name='foogroup')
272 qs = LdapGroup.objects.all()
273 self.assertEquals(len(qs), 2)
275 class UserTestCase(BaseTestCase):
277 super(UserTestCase, self).setUp()
280 u.first_name = u"Fôo"
281 u.last_name = u"Usér"
282 u.full_name = u"Fôo Usér"
285 u.home_directory = "/home/foouser"
287 u.username = "foouser"
288 u.photo = '\xff\xd8\xff\xe0\x00\x10JFIF\x00\x01\x01\x01\x00H\x00H\x00\x00\xff\xfe\x00\x1cCreated with GIMP on a Mac\xff\xdb\x00C\x00\x05\x03\x04\x04\x04\x03\x05\x04\x04\x04\x05\x05\x05\x06\x07\x0c\x08\x07\x07\x07\x07\x0f\x0b\x0b\t\x0c\x11\x0f\x12\x12\x11\x0f\x11\x11\x13\x16\x1c\x17\x13\x14\x1a\x15\x11\x11\x18!\x18\x1a\x1d\x1d\x1f\x1f\x1f\x13\x17"$"\x1e$\x1c\x1e\x1f\x1e\xff\xdb\x00C\x01\x05\x05\x05\x07\x06\x07\x0e\x08\x08\x0e\x1e\x14\x11\x14\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\xff\xc0\x00\x11\x08\x00\x08\x00\x08\x03\x01"\x00\x02\x11\x01\x03\x11\x01\xff\xc4\x00\x15\x00\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\xff\xc4\x00\x19\x10\x00\x03\x01\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x02\x06\x11A\xff\xc4\x00\x14\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xc4\x00\x14\x11\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xda\x00\x0c\x03\x01\x00\x02\x11\x03\x11\x00?\x00\x9d\xf29wU5Q\xd6\xfd\x00\x01\xff\xd9'
292 u = LdapUser.objects.get(username='foouser')
293 self.assertEquals(u.first_name, u'Fôo')
294 self.assertEquals(u.last_name, u'Usér')
295 self.assertEquals(u.full_name, u'Fôo Usér')
297 self.assertEquals(u.group, 1000)
298 self.assertEquals(u.home_directory, '/home/foouser')
299 self.assertEquals(u.uid, 2000)
300 self.assertEquals(u.username, 'foouser')
301 self.assertEquals(u.photo, '\xff\xd8\xff\xe0\x00\x10JFIF\x00\x01\x01\x01\x00H\x00H\x00\x00\xff\xfe\x00\x1cCreated with GIMP on a Mac\xff\xdb\x00C\x00\x05\x03\x04\x04\x04\x03\x05\x04\x04\x04\x05\x05\x05\x06\x07\x0c\x08\x07\x07\x07\x07\x0f\x0b\x0b\t\x0c\x11\x0f\x12\x12\x11\x0f\x11\x11\x13\x16\x1c\x17\x13\x14\x1a\x15\x11\x11\x18!\x18\x1a\x1d\x1d\x1f\x1f\x1f\x13\x17"$"\x1e$\x1c\x1e\x1f\x1e\xff\xdb\x00C\x01\x05\x05\x05\x07\x06\x07\x0e\x08\x08\x0e\x1e\x14\x11\x14\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\x1e\xff\xc0\x00\x11\x08\x00\x08\x00\x08\x03\x01"\x00\x02\x11\x01\x03\x11\x01\xff\xc4\x00\x15\x00\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\xff\xc4\x00\x19\x10\x00\x03\x01\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x02\x06\x11A\xff\xc4\x00\x14\x01\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xc4\x00\x14\x11\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xda\x00\x0c\x03\x01\x00\x02\x11\x03\x11\x00?\x00\x9d\xf29wU5Q\xd6\xfd\x00\x01\xff\xd9')
303 self.assertRaises(LdapUser.DoesNotExist, LdapUser.objects.get, username='does_not_exist')
305 def test_update(self):
306 u = LdapUser.objects.get(username='foouser')
307 u.first_name = u'Fôo2'
310 # make sure DN gets updated if we change the pk
311 u.username = 'foouser2'
313 self.assertEquals(u.dn, 'uid=foouser2,%s' % LdapUser.base_dn)
315 class ScopedTestCase(BaseTestCase):
317 super(ScopedTestCase, self).setUp()
319 self.scoped_dn = "ou=contacts,%s" % LdapGroup.base_dn
320 attrs = [('objectClass', ['top', 'organizationalUnit']), ("ou", ["contacts"])]
321 ldapdb.connection.add_s(self.scoped_dn, attrs)
323 def test_scope(self):
324 ScopedGroup = LdapGroup.scoped(self.scoped_dn)
332 qs = LdapGroup.objects.all()
333 self.assertEquals(qs.count(), 1)
335 qs = ScopedGroup.objects.all()
336 self.assertEquals(qs.count(), 0)
338 # create scoped group
340 g2.name = "scopedgroup"
344 qs = LdapGroup.objects.all()
345 self.assertEquals(qs.count(), 2)
347 qs = ScopedGroup.objects.all()
348 self.assertEquals(qs.count(), 1)
350 class AdminTestCase(BaseTestCase):
351 fixtures = ['test_users.json']
354 super(AdminTestCase, self).setUp()
359 g.usernames = ['foouser', 'baruser']
365 g.usernames = ['zoouser', 'baruser']
371 u.full_name = "Foo User"
373 u.home_directory = "/home/foouser"
375 u.username = "foouser"
381 u.full_name = "Bar User"
383 u.home_directory = "/home/baruser"
385 u.username = "baruser"
388 self.client.login(username="test_user", password="password")
390 def test_index(self):
391 response = self.client.get('/admin/examples/')
392 self.assertContains(response, "Ldap groups")
393 self.assertContains(response, "Ldap users")
395 def test_group_list(self):
396 response = self.client.get('/admin/examples/ldapgroup/')
397 self.assertContains(response, "Ldap groups")
398 self.assertContains(response, "foogroup")
399 self.assertContains(response, "1000")
402 response = self.client.get('/admin/examples/ldapgroup/?o=1')
403 self.assertContains(response, "Ldap groups")
404 self.assertContains(response, "foogroup")
405 self.assertContains(response, "1000")
408 response = self.client.get('/admin/examples/ldapgroup/?o=2')
409 self.assertContains(response, "Ldap groups")
410 self.assertContains(response, "foogroup")
411 self.assertContains(response, "1000")
413 def test_group_detail(self):
414 response = self.client.get('/admin/examples/ldapgroup/foogroup/')
415 self.assertContains(response, "foogroup")
416 self.assertContains(response, "1000")
418 def test_group_add(self):
419 response = self.client.post('/admin/examples/ldapgroup/add/', {'gid': '1002', 'name': 'wizgroup'})
420 self.assertRedirects(response, '/admin/examples/ldapgroup/')
421 qs = LdapGroup.objects.all()
422 self.assertEquals(qs.count(), 3)
424 def test_group_delete(self):
425 response = self.client.post('/admin/examples/ldapgroup/foogroup/delete/', {'yes': 'post'})
426 self.assertRedirects(response, '/admin/examples/ldapgroup/')
427 qs = LdapGroup.objects.all()
428 self.assertEquals(qs.count(), 1)
430 def test_group_search(self):
431 response = self.client.get('/admin/examples/ldapgroup/?q=foo')
432 self.assertContains(response, "Ldap groups")
433 self.assertContains(response, "foogroup")
434 self.assertContains(response, "1000")
436 def test_user_list(self):
437 response = self.client.get('/admin/examples/ldapuser/')
438 self.assertContains(response, "Ldap users")
439 self.assertContains(response, "foouser")
440 self.assertContains(response, "2000")
443 response = self.client.get('/admin/examples/ldapuser/?o=1')
444 self.assertContains(response, "Ldap users")
445 self.assertContains(response, "foouser")
446 self.assertContains(response, "2000")
449 response = self.client.get('/admin/examples/ldapuser/?o=2')
450 self.assertContains(response, "Ldap users")
451 self.assertContains(response, "foouser")
452 self.assertContains(response, "2000")
454 def test_user_detail(self):
455 response = self.client.get('/admin/examples/ldapuser/foouser/')
456 self.assertContains(response, "foouser")
457 self.assertContains(response, "2000")
459 def test_user_delete(self):
460 response = self.client.post('/admin/examples/ldapuser/foouser/delete/', {'yes': 'post'})
461 self.assertRedirects(response, '/admin/examples/ldapuser/')