103 lines
3.0 KiB
Python
103 lines
3.0 KiB
Python
import pytest
|
|
|
|
from atst.domain.audit_log import AuditLog
|
|
from atst.domain.exceptions import UnauthorizedError
|
|
from atst.domain.roles import Roles
|
|
from atst.models.workspace_role import Status as WorkspaceRoleStatus
|
|
from tests.factories import (
|
|
UserFactory,
|
|
WorkspaceFactory,
|
|
WorkspaceRoleFactory,
|
|
ProjectFactory,
|
|
)
|
|
|
|
|
|
@pytest.fixture(scope="function")
|
|
def ccpo():
|
|
return UserFactory.from_atat_role("ccpo")
|
|
|
|
|
|
@pytest.fixture(scope="function")
|
|
def developer():
|
|
return UserFactory.from_atat_role("default")
|
|
|
|
|
|
def test_non_admin_cannot_view_audit_log(developer):
|
|
with pytest.raises(UnauthorizedError):
|
|
AuditLog.get_all_events(developer)
|
|
|
|
|
|
def test_ccpo_can_view_audit_log(ccpo):
|
|
AuditLog.get_all_events(ccpo)
|
|
|
|
|
|
def test_paginate_audit_log(ccpo):
|
|
user = UserFactory.create()
|
|
for _ in range(100):
|
|
AuditLog.log_system_event(user, action="create")
|
|
|
|
events = AuditLog.get_all_events(ccpo, pagination_opts={"per_page": 25, "page": 2})
|
|
assert len(events) == 25
|
|
|
|
|
|
def test_ccpo_can_view_ws_audit_log(ccpo):
|
|
workspace = WorkspaceFactory.create()
|
|
AuditLog.get_workspace_events(ccpo, workspace)
|
|
|
|
|
|
def test_ws_admin_can_view_ws_audit_log():
|
|
workspace = WorkspaceFactory.create()
|
|
admin = UserFactory.create()
|
|
WorkspaceRoleFactory.create(
|
|
workspace=workspace,
|
|
user=admin,
|
|
role=Roles.get("admin"),
|
|
status=WorkspaceRoleStatus.ACTIVE,
|
|
)
|
|
AuditLog.get_workspace_events(admin, workspace)
|
|
|
|
|
|
def test_ws_owner_can_view_ws_audit_log():
|
|
workspace = WorkspaceFactory.create()
|
|
AuditLog.get_workspace_events(workspace.owner, workspace)
|
|
|
|
|
|
def test_other_users_cannot_view_ws_audit_log():
|
|
with pytest.raises(UnauthorizedError):
|
|
workspace = WorkspaceFactory.create()
|
|
dev = UserFactory.create()
|
|
WorkspaceRoleFactory.create(
|
|
workspace=workspace,
|
|
user=dev,
|
|
role=Roles.get("developer"),
|
|
status=WorkspaceRoleStatus.ACTIVE,
|
|
)
|
|
AuditLog.get_workspace_events(dev, workspace)
|
|
|
|
|
|
def test_paginate_ws_audit_log():
|
|
workspace = WorkspaceFactory.create()
|
|
project = ProjectFactory.create(workspace=workspace)
|
|
for _ in range(100):
|
|
AuditLog.log_system_event(
|
|
resource=project, action="create", workspace=workspace
|
|
)
|
|
|
|
events = AuditLog.get_workspace_events(
|
|
workspace.owner, workspace, pagination_opts={"per_page": 25, "page": 2}
|
|
)
|
|
assert len(events) == 25
|
|
|
|
|
|
def test_ws_audit_log_only_includes_current_ws_events():
|
|
owner = UserFactory.create()
|
|
workspace = WorkspaceFactory.create(owner=owner)
|
|
other_workspace = WorkspaceFactory.create(owner=owner)
|
|
# Add some audit events
|
|
project_1 = ProjectFactory.create(workspace=workspace)
|
|
project_2 = ProjectFactory.create(workspace=other_workspace)
|
|
|
|
events = AuditLog.get_workspace_events(workspace.owner, workspace)
|
|
for event in events:
|
|
assert event.workspace_id == workspace.id or event.resource_id == workspace.id
|