Ensure that a member is an application member before adding the user to an environment

2019-04-23 16:37:29 -04:00
parent 3e0a332ffc
commit 6822680bc8
5 changed files with 40 additions and 21 deletions
--- a/tests/domain/test_environments.py
+++ b/tests/domain/test_environments.py
@@ -11,6 +11,7 @@ from tests.factories import (
    PortfolioFactory,
    EnvironmentFactory,
    EnvironmentRoleFactory,
+    ApplicationRoleFactory,
 )


@@ -24,6 +25,9 @@ def test_create_environments():
 def test_update_env_role():
    env_role = EnvironmentRoleFactory.create(role=CSPRole.BASIC_ACCESS.value)
    new_role = CSPRole.TECHNICAL_READ.value
+    ApplicationRoleFactory.create(
+        user=env_role.user, application=env_role.environment.application
+    )

    assert Environments.update_env_role(env_role.environment, env_role.user, new_role)
    assert env_role.role == new_role
@@ -31,6 +35,9 @@ def test_update_env_role():

 def test_update_env_role_no_access():
    env_role = EnvironmentRoleFactory.create(role=CSPRole.BASIC_ACCESS.value)
+    ApplicationRoleFactory.create(
+        user=env_role.user, application=env_role.environment.application
+    )

    assert Environments.update_env_role(env_role.environment, env_role.user, None)
    assert not EnvironmentRoles.get(env_role.user.id, env_role.environment.id)
@@ -48,6 +55,7 @@ def test_update_env_role_no_change():
 def test_update_env_role_creates_cloud_id_for_new_member(session):
    user = UserFactory.create()
    env = EnvironmentFactory.create()
+    ApplicationRoleFactory.create(user=user, application=env.application)
    assert not user.cloud_id
    assert Environments.update_env_role(env, user, CSPRole.TECHNICAL_READ.value)
    assert EnvironmentRoles.get(user.id, env.id)
@@ -65,6 +73,8 @@ def test_update_env_roles_by_environment():
    env_role_3 = EnvironmentRoleFactory.create(
        environment=environment, role=CSPRole.TECHNICAL_READ.value
    )
+    for user in [env_role_1.user, env_role_2.user, env_role_3.user]:
+        ApplicationRoleFactory.create(user=user, application=environment.application)

    team_roles = [
        {
--- a/tests/models/test_portfolio_role.py
+++ b/tests/models/test_portfolio_role.py
@@ -17,6 +17,7 @@ from tests.factories import (
    EnvironmentFactory,
    EnvironmentRoleFactory,
    ApplicationFactory,
+    ApplicationRoleFactory,
    PortfolioFactory,
 )
 from atst.domain.portfolio_roles import PortfolioRoles
@@ -116,6 +117,7 @@ def test_has_env_role_history(session):
    portfolio = PortfolioFactory.create(owner=owner)
    portfolio_role = PortfolioRoleFactory.create(portfolio=portfolio, user=user)
    application = ApplicationFactory.create(portfolio=portfolio)
+    ApplicationRoleFactory.create(user=user, application=application)
    environment = EnvironmentFactory.create(
        application=application, name="new environment!"
    )
--- a/tests/routes/applications/test_settings.py
+++ b/tests/routes/applications/test_settings.py
@@ -178,6 +178,9 @@ def test_update_team_env_roles(client, user_session):
    env_role_3 = EnvironmentRoleFactory.create(
        environment=environment, role=CSPRole.BASIC_ACCESS.value
    )
+    for user in [env_role_1.user, env_role_2.user, env_role_3.user]:
+        ApplicationRoleFactory.create(user=user, application=application)
+
    app_role = ApplicationRoleFactory.create(application=application)
    form_data = {
        "env_id": environment.id,