oca/oca-ocb-security
2
0
Fork 0
mirror of https://github.com/bringout/oca-ocb-security.git synced 2026-04-23 04:12:06 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

19.0 vanilla

Browse source
This commit is contained in:
Ernad Husremovic 2026-03-09 09:32:28 +01:00
parent 20ddc1b4a3
commit c0efcc53f5
1162 changed files with 125577 additions and 105287 deletions
Download patch file Download diff file Expand all files Collapse all files

43
odoo-bringout-oca-ocb-google_calendar/google_calendar/tests/test_token_access.py
View file

@ -1,3 +1,5 @@
# Part of Odoo. See LICENSE file for full copyright and licensing details.
from odoo import fields, Command
from odoo.exceptions import AccessError
from odoo.tests.common import TransactionCase
@ -10,17 +12,16 @@ class TestTokenAccess(TransactionCase):
cls.users = []
for u in ('user1', 'user2'):
credentials = cls.env['google.calendar.credentials'].create({
'calendar_rtoken': f'{u}_rtoken',
'calendar_token': f'{u}_token',
'calendar_token_validity': fields.Datetime.today(),
'calendar_sync_token': f'{u}_sync_token',
})
user = cls.env['res.users'].create({
'name': f'{u}',
'login': f'{u}',
'email': f'{u}@odoo.com',
'google_calendar_account_id': credentials.id,
})
user.res_users_settings_id.write({
'google_calendar_rtoken': f'{u}_rtoken',
'google_calendar_token': f'{u}_token',
'google_calendar_token_validity': fields.Datetime.today(),
'google_calendar_sync_token': f'{u}_sync_token',
})
cls.users += [user]
@ -28,39 +29,39 @@ class TestTokenAccess(TransactionCase):
'name': 'system_user',
'login': 'system_user',
'email': 'system_user@odoo.com',
'groups_id': [Command.link(cls.env.ref('base.group_system').id)],
'group_ids': [Command.link(cls.env.ref('base.group_system').id)],
})
def test_normal_user_should_be_able_to_reset_his_own_token(self):
user = self.users[0]
old_validity = user.google_calendar_account_id.calendar_token_validity
old_validity = user.res_users_settings_id.google_calendar_token_validity
user.with_user(user).google_calendar_account_id._set_auth_tokens('my_new_token', 'my_new_rtoken', 3600)
user.with_user(user).res_users_settings_id._set_google_auth_tokens('my_new_token', 'my_new_rtoken', 3600)
self.assertEqual(user.google_calendar_account_id.calendar_rtoken, 'my_new_rtoken')
self.assertEqual(user.google_calendar_account_id.calendar_token, 'my_new_token')
self.assertEqual(user.res_users_settings_id.google_calendar_rtoken, 'my_new_rtoken')
self.assertEqual(user.res_users_settings_id.google_calendar_token, 'my_new_token')
self.assertNotEqual(
user.google_calendar_account_id.calendar_token_validity,
user.res_users_settings_id.google_calendar_token_validity,
old_validity
)
def test_normal_user_should_not_be_able_to_reset_other_user_tokens(self):
user1, user2 = self.users
with self.assertRaises(AccessError):
user2.with_user(user1).google_calendar_account_id._set_auth_tokens(False, False, 0)
# Skip test: the access error will not be raised anymore since the access rules were deleted.
# with self.assertRaises(AccessError):
# user2.with_user(user1).res_users_settings_id._set_auth_tokens(False, False, 0)
def test_system_user_should_be_able_to_reset_any_tokens(self):
user = self.users[0]
old_validity = user.google_calendar_account_id.calendar_token_validity
old_validity = user.res_users_settings_id.google_calendar_token_validity
user.with_user(self.system_user).google_calendar_account_id._set_auth_tokens(
user.with_user(self.system_user).res_users_settings_id._set_google_auth_tokens(
'my_new_token', 'my_new_rtoken', 3600
)
self.assertEqual(user.google_calendar_account_id.calendar_rtoken, 'my_new_rtoken')
self.assertEqual(user.google_calendar_account_id.calendar_token, 'my_new_token')
self.assertEqual(user.res_users_settings_id.google_calendar_rtoken, 'my_new_rtoken')
self.assertEqual(user.res_users_settings_id.google_calendar_token, 'my_new_token')
self.assertNotEqual(
user.google_calendar_account_id.calendar_token_validity,
user.res_users_settings_id.google_calendar_token_validity,
old_validity
)