mirror of
				https://github.com/go-gitea/gitea
				synced 2025-10-26 17:08:25 +00:00 
			
		
		
		
	Currently 'userxx' and 'orgxx' are both used as username in test files when the user type is org, which is confusing. This PR replaces all 'userxx' with 'orgxx' when the user type is org(`user.type==1`). Some non-trivial changes 1. Rename `user3` dir to `org3` in `tests/git-repositories-meta` 2. Change `end` in `issue reference` because 'org3' is one char shorter than 'user3'  3. Change the search result number of `user/repo2` because `user3/repo21` can't be searched now  4. Change the first org name getting from API because the result is ordered by alphabet asc and now `org 17` is before `org25`   Other modifications are just find all and replace all. Unit tests with SQLite are all passed. --------- Co-authored-by: caicandong <1290147055@qq.com>
		
			
				
	
	
		
			62 lines
		
	
	
		
			1.8 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			62 lines
		
	
	
		
			1.8 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2023 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package integration
 | |
| 
 | |
| import (
 | |
| 	"net/http"
 | |
| 	"testing"
 | |
| 
 | |
| 	unit_model "code.gitea.io/gitea/models/unit"
 | |
| 	"code.gitea.io/gitea/tests"
 | |
| )
 | |
| 
 | |
| func TestOrgProjectAccess(t *testing.T) {
 | |
| 	defer tests.PrepareTestEnv(t)()
 | |
| 
 | |
| 	// disable repo project unit
 | |
| 	unit_model.DisabledRepoUnits = []unit_model.Type{unit_model.TypeProjects}
 | |
| 
 | |
| 	// repo project, 404
 | |
| 	req := NewRequest(t, "GET", "/user2/repo1/projects")
 | |
| 	MakeRequest(t, req, http.StatusNotFound)
 | |
| 
 | |
| 	// user project, 200
 | |
| 	req = NewRequest(t, "GET", "/user2/-/projects")
 | |
| 	MakeRequest(t, req, http.StatusOK)
 | |
| 
 | |
| 	// org project, 200
 | |
| 	req = NewRequest(t, "GET", "/org3/-/projects")
 | |
| 	MakeRequest(t, req, http.StatusOK)
 | |
| 
 | |
| 	// change the org's visibility to private
 | |
| 	session := loginUser(t, "user2")
 | |
| 	req = NewRequestWithValues(t, "POST", "/org/org3/settings", map[string]string{
 | |
| 		"_csrf":      GetCSRF(t, session, "/org3/-/projects"),
 | |
| 		"name":       "org3",
 | |
| 		"visibility": "2",
 | |
| 	})
 | |
| 	session.MakeRequest(t, req, http.StatusSeeOther)
 | |
| 
 | |
| 	// user4 can still access the org's project because its team(team1) has the permission
 | |
| 	session = loginUser(t, "user4")
 | |
| 	req = NewRequest(t, "GET", "/org3/-/projects")
 | |
| 	session.MakeRequest(t, req, http.StatusOK)
 | |
| 
 | |
| 	// disable team1's project unit
 | |
| 	session = loginUser(t, "user2")
 | |
| 	req = NewRequestWithValues(t, "POST", "/org/org3/teams/team1/edit", map[string]string{
 | |
| 		"_csrf":       GetCSRF(t, session, "/org3/-/projects"),
 | |
| 		"team_name":   "team1",
 | |
| 		"repo_access": "specific",
 | |
| 		"permission":  "read",
 | |
| 		"unit_8":      "0",
 | |
| 	})
 | |
| 	session.MakeRequest(t, req, http.StatusSeeOther)
 | |
| 
 | |
| 	// user4 can no longer access the org's project
 | |
| 	session = loginUser(t, "user4")
 | |
| 	req = NewRequest(t, "GET", "/org3/-/projects")
 | |
| 	session.MakeRequest(t, req, http.StatusNotFound)
 | |
| }
 |