oca/oca-ocb-test
2
0
Fork 0
mirror of https://github.com/bringout/oca-ocb-test.git synced 2026-04-21 06:41:59 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

19.0 vanilla

Browse source
This commit is contained in:
Ernad Husremovic 2026-03-09 09:32:39 +01:00
parent 38c6088dcc
commit d9452d2060
243 changed files with 30797 additions and 10815 deletions
Download patch file Download diff file Expand all files Collapse all files

354
odoo-bringout-oca-ocb-test_mail/test_mail/tests/test_mail_multicompany.py
View file

@ -1,28 +1,28 @@
# -*- coding: utf-8 -*-
# Part of Odoo. See LICENSE file for full copyright and licensing details.
import base64
import json
import socket
from itertools import product
from freezegun import freeze_time
from unittest.mock import patch
from werkzeug.urls import url_parse, url_decode
from werkzeug.urls import url_parse
from odoo.addons.mail.models.mail_message import Message
from odoo.addons.test_mail.tests.common import TestMailCommon, TestRecipients
from odoo.exceptions import AccessError, UserError
from odoo.addons.mail.models.mail_message import MailMessage
from odoo.addons.mail.tests.common import MailCommon, mail_new_test_user
from odoo.addons.test_mail.models.test_mail_corner_case_models import MailTestMultiCompanyWithActivity
from odoo.addons.test_mail.tests.common import TestRecipients
from odoo.exceptions import AccessError
from odoo.tests import tagged, users, HttpCase
from odoo.tools import formataddr, mute_logger
from odoo.tests.common import JsonRpcException
from odoo.tools import mute_logger
@tagged('multi_company')
class TestMultiCompanySetup(TestMailCommon, TestRecipients):
class TestMailMCCommon(MailCommon, TestRecipients):
@classmethod
def setUpClass(cls):
super(TestMultiCompanySetup, cls).setUpClass()
cls._activate_multi_company()
super().setUpClass()
cls.test_model = cls.env['ir.model']._get('mail.test.gateway')
cls.email_from = '"Sylvie Lelitre" <test.sylvie.lelitre@agrolait.com>'
@ -38,17 +38,16 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
'company_id': cls.user_employee_c2.company_id.id},
])
cls.company_3 = cls.env['res.company'].create({'name': 'ELIT'})
cls.partner_1 = cls.env['res.partner'].with_context(cls._test_context).create({
'name': 'Valid Lelitre',
'email': 'valid.lelitre@agrolait.com',
})
# groups@.. will cause the creation of new mail.test.gateway
cls.alias = cls.env['mail.alias'].create({
'alias_name': 'groups',
'alias_user_id': False,
cls.mail_alias = cls.env['mail.alias'].create({
'alias_contact': 'everyone',
'alias_model_id': cls.test_model.id,
'alias_contact': 'everyone'})
'alias_name': 'groups',
})
# Set a first message on public group to test update and hierarchy
cls.fake_email = cls.env['mail.message'].create({
@ -61,11 +60,23 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
'message_id': '<123456-openerp-%s-mail.test.gateway@%s>' % (cls.test_record.id, socket.gethostname()),
})
cls._create_portal_user()
cls.user_portal_c2 = mail_new_test_user(
cls.env,
groups='base.group_portal',
login='portal_user_c2',
company_id=cls.company_2.id,
name="Portal User C2",
)
def setUp(self):
super(TestMultiCompanySetup, self).setUp()
super().setUp()
# patch registry to simulate a ready environment
self.patch(self.env.registry, 'ready', True)
self.flush_tracking()
@tagged('multi_company')
class TestMultiCompanySetup(TestMailMCCommon, HttpCase):
@users('employee_c2')
@mute_logger('odoo.addons.base.models.ir_rule')
@ -85,26 +96,35 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
with self.assertRaises(AccessError):
test_record_c1.write({'name': 'Cannot Write'})
first_attachment = self.env['ir.attachment'].create({
'company_id': self.user_employee_c2.company_id.id,
'datas': base64.b64encode(b'First attachment'),
'mimetype': 'text/plain',
'name': 'TestAttachmentIDS.txt',
'res_model': 'mail.compose.message',
'res_id': 0,
})
message = test_record_c1.message_post(
attachments=[('testAttachment', b'Test attachment')],
attachments=[('testAttachment', b'First attachment')],
attachment_ids=first_attachment.ids,
body='My Body',
message_type='comment',
subtype_xmlid='mail.mt_comment',
)
self.assertEqual(message.attachment_ids.mapped('name'), ['testAttachment'])
first_attachment = message.attachment_ids
self.assertTrue('testAttachment' in message.attachment_ids.mapped('name'))
self.assertEqual(test_record_c1.message_main_attachment_id, first_attachment)
new_attach = self.env['ir.attachment'].create({
'company_id': self.user_employee_c2.company_id.id,
'datas': base64.b64encode(b'Test attachment'),
'datas': base64.b64encode(b'Second attachment'),
'mimetype': 'text/plain',
'name': 'TestAttachmentIDS.txt',
'res_model': 'mail.compose.message',
'res_id': 0,
})
message = test_record_c1.message_post(
attachments=[('testAttachment', b'Test attachment')],
attachments=[('testAttachment', b'Second attachment')],
attachment_ids=new_attach.ids,
body='My Body',
message_type='comment',
@ -129,19 +149,19 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
# Other company (no access)
# ------------------------------------------------------------
_original_car = Message.check_access_rule
with patch.object(Message, 'check_access_rule',
_original_car = MailMessage._check_access
with patch.object(MailMessage, '_check_access',
autospec=True, side_effect=_original_car) as mock_msg_car:
with self.assertRaises(AccessError):
test_records_mc_c1.message_post(
body='<p>Hello</p>',
force_record_name='CustomName', # avoid ACL on display_name
message_type='comment',
record_name='CustomName', # avoid ACL on display_name
reply_to='custom.reply.to@test.example.com', # avoid ACL in notify_get_reply_to
subtype_xmlid='mail.mt_comment',
)
self.assertEqual(mock_msg_car.call_count, 1,
'Purpose is to raise at msg check access level')
self.assertEqual(mock_msg_car.call_count, 2,
'Check at model level succeeds and check at record level fails')
with self.assertRaises(AccessError):
_name = test_records_mc_c1.name
@ -163,26 +183,17 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
# now able to post as was notified of parent message
test_records_mc_c1.message_post(
body='<p>Hello</p>',
force_record_name='CustomName', # avoid ACL on display_name
message_type='comment',
parent_id=initial_message.id,
record_name='CustomName', # avoid ACL on display_name
reply_to='custom.reply.to@test.example.com', # avoid ACL in notify_get_reply_to
subtype_xmlid='mail.mt_comment',
)
# now able to post as was notified of parent message
attachments = self.env['ir.attachment'].create(
self._generate_attachments_data(
2, 'mail.compose.message', 0,
prefix='Other'
)
)
# record_name and reply_to may generate ACLs issues when computed by
# 'message_post' but should not, hence not specifying them to be sure
# testing the complete flow
test_records_mc_c1.message_post(
attachments=attachments_data,
attachment_ids=attachments.ids,
body='<p>Hello</p>',
message_type='comment',
parent_id=initial_message.id,
@ -204,8 +215,8 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
attachments=attachments_data,
attachment_ids=attachments.ids,
body='<p>Hello</p>',
force_record_name='CustomName', # avoid ACL on display_name
message_type='comment',
record_name='CustomName', # avoid ACL on display_name
reply_to='custom.reply.to@test.example.com', # avoid ACL in notify_get_reply_to
subtype_xmlid='mail.mt_comment',
)
@ -238,71 +249,106 @@ class TestMultiCompanySetup(TestMailCommon, TestRecipients):
attachments=attachments_data,
attachment_ids=attachments.ids,
body='<p>Hello</p>',
force_record_name='CustomName', # avoid ACL on display_name
message_type='comment',
record_name='CustomName', # avoid ACL on display_name
reply_to='custom.reply.to@test.example.com', # avoid ACL in notify_get_reply_to
subtype_xmlid='mail.mt_comment',
)
def test_systray_get_activities(self):
self.env["mail.activity"].search([]).unlink()
user_admin = self.user_admin.with_user(self.user_admin)
test_records = self.env["mail.test.multi.company.with.activity"].create(
[
{"name": "Test1", "company_id": user_admin.company_id.id},
{"name": "Test2", "company_id": self.company_2.id},
]
)
test_records[0].activity_schedule("test_mail.mail_act_test_todo", user_id=user_admin.id)
test_records[1].activity_schedule("test_mail.mail_act_test_todo", user_id=user_admin.id)
test_activity = next(
a for a in user_admin.systray_get_activities()
if a['model'] == 'mail.test.multi.company.with.activity'
)
self.assertEqual(
test_activity,
{
"actions": [{"icon": "fa-clock-o", "name": "Summary"}],
"icon": "/base/static/description/icon.png",
"id": self.env["ir.model"]._get_id("mail.test.multi.company.with.activity"),
"model": "mail.test.multi.company.with.activity",
"name": "Test Multi Company Mail With Activity",
"overdue_count": 0,
"planned_count": 0,
"today_count": 2,
"total_count": 2,
"type": "activity",
}
)
test_activity = next(
a for a in user_admin.with_context(allowed_company_ids=[self.company_2.id]).systray_get_activities()
if a['model'] == 'mail.test.multi.company.with.activity'
)
self.assertEqual(
test_activity,
{
"actions": [{"icon": "fa-clock-o", "name": "Summary"}],
"icon": "/base/static/description/icon.png",
"id": self.env["ir.model"]._get_id("mail.test.multi.company.with.activity"),
"model": "mail.test.multi.company.with.activity",
"name": "Test Multi Company Mail With Activity",
"overdue_count": 0,
"planned_count": 0,
"today_count": 1,
"total_count": 1,
"type": "activity",
}
)
def test_recipients_multi_company(self):
"""Test mentioning a partner with no common company."""
test_records_mc_c2 = self.test_records_mc[1]
with self.assertBus([(self.cr.dbname, "res.partner", self.user_employee_c3.partner_id.id)]):
test_records_mc_c2.with_user(self.user_employee_c2).with_context(
allowed_company_ids=self.company_2.ids
).message_post(
body="Hello @Freudenbergerg",
message_type="comment",
partner_ids=self.user_employee_c3.partner_id.ids,
subtype_xmlid="mail.mt_comment",
)
@tagged('-at_install', 'post_install', 'multi_company', 'mail_controller')
class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
class TestMultiCompanyControllers(TestMailMCCommon, HttpCase):
@classmethod
def setUpClass(cls):
super(TestMultiCompanyRedirect, cls).setUpClass()
cls._activate_multi_company()
@mute_logger('odoo.http')
def test_mail_thread_data(self):
""" Test returned thread data, in MC environment, to test notably MC
access issues on partner, ACL support, ... """
customer_c3 = self.env["res.partner"].create({
"company_id": self.company_3.id,
"name": "C3 Customer",
})
record = self.env["mail.test.multi.company.read"].with_user(self.user_employee_c2).create({
"company_id": self.user_employee_c2.company_id.id,
"name": "Multi Company Record",
})
self.assertEqual(record.company_id, self.company_2)
record.message_subscribe(partner_ids=customer_c3.ids)
with self.assertRaises(AccessError):
customer_c3.with_user(self.user_employee_c2).check_access("read")
self.authenticate(self.user_employee_c2.login, self.user_employee_c2.login)
result = self.make_jsonrpc_request(
"/mail/data", {"fetch_params": [["mail.thread", {
"thread_id": record.id,
"thread_model": record._name,
"request_list": ["followers"],
}]]},
)
self.assertEqual(len(result["mail.followers"]), 2)
self.assertEqual(result["mail.followers"][0]["partner_id"], customer_c3.id)
self.assertEqual(result["mail.thread"][0]["followersCount"], 2)
self.assertTrue(result["mail.thread"][0]["hasWriteAccess"])
self.assertTrue(result["mail.thread"][0]["hasReadAccess"])
self.assertTrue(result["mail.thread"][0]["canPostOnReadonly"])
# check read / write / post access info
for test_user, (has_w, has_r, can_post) in zip(
(self.user_portal, self.user_portal_c2, self.user_employee, self.user_admin),
(
(False, True, True), # currently not really supported actually, should go through portal controllers
(False, True, True), # currently not really supported actually, should go through portal controllers
(False, True, True),
(True, True, True),
),
):
with self.subTest(user_name=test_user.name):
self.authenticate(test_user.login, test_user.login)
# crash if calling using portal users -> dedicated portal routes currently
if test_user in self.user_portal + self.user_portal_c2:
with self.assertRaises(JsonRpcException):
result = self.make_jsonrpc_request(
"/mail/data", {"fetch_params": [["mail.thread", {
"thread_id": record.id,
"thread_model": record._name,
"request_list": ["followers"],
}]]},
)
else:
result = self.make_jsonrpc_request(
"/mail/data", {"fetch_params": [["mail.thread", {
"thread_id": record.id,
"thread_model": record._name,
"request_list": ["followers"],
}]]},
)
self.assertEqual(result["mail.thread"][0]["followersCount"], 2)
self.assertEqual(result["mail.thread"][0]["hasWriteAccess"], has_w)
self.assertEqual(result["mail.thread"][0]["hasReadAccess"], has_r)
self.assertEqual(result["mail.thread"][0]["canPostOnReadonly"], can_post)
record.with_user(self.user_admin).message_post(
body='Hello!',
message_type='comment',
subtype_xmlid='mail.mt_comment',
partner_ids=[self.partner_employee_c2.id, customer_c3.id],
)
self.authenticate(self.user_employee_c2.login, self.user_employee_c2.login)
messages = self.make_jsonrpc_request("/mail/inbox/messages")
self.assertEqual(len(messages['data']['mail.message']), 1)
def test_redirect_to_records(self):
""" Test mail/view redirection in MC environment, notably cids being
@ -336,8 +382,7 @@ class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
if not login:
path = url_parse(response.url).path
self.assertEqual(path, '/web/login')
decoded_fragment = url_decode(url_parse(response.url).fragment)
self.assertNotIn("cids", decoded_fragment)
self.assertNotIn('cids', response.request._cookies)
else:
user = self.env['res.users'].browse(self.session.uid)
self.assertEqual(user.login, login)
@ -346,19 +391,46 @@ class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
# Logged into company main, try accessing record in other
# company -> _redirect_to_record should redirect to
# messaging as the user doesn't have any access
fragment = url_parse(response.url).fragment
action = url_decode(fragment)['action']
self.assertEqual(action, 'mail.action_discuss')
parsed_url = url_parse(response.url)
self.assertEqual(parsed_url.path, '/odoo/action-mail.action_discuss')
else:
# Logged into company main, try accessing record in same
# company -> _redirect_to_record should add company in
# allowed_company_ids
fragment = url_parse(response.url).fragment
cids = url_decode(fragment)['cids']
cids = response.request._cookies.get('cids')
if mc_record.company_id == user.company_id:
self.assertEqual(cids, f'{mc_record.company_id.id}')
else:
self.assertEqual(cids, f'{user.company_id.id},{mc_record.company_id.id}')
self.assertEqual(cids, f'{user.company_id.id}-{mc_record.company_id.id}')
def test_multi_redirect_to_records(self):
""" Test mail/view redirection in MC environment, notably test a user that is
redirected multiple times, the cids needed to access the record are being added
recursivelly when in redirect."""
mc_records = self.env['mail.test.multi.company'].create([
{
'company_id': self.user_employee.company_id.id,
'name': 'Multi Company Record',
},
{
'company_id': self.user_employee_c2.company_id.id,
'name': 'Multi Company Record',
}
])
self.authenticate(self.user_admin.login, self.user_admin.login)
companies = []
for mc_record in mc_records:
with self.subTest(mc_record=mc_record):
response = self.url_open(
f'/mail/view?model={mc_record._name}&res_id={mc_record.id}',
timeout=15
)
self.assertEqual(response.status_code, 200)
cids = response.request._cookies.get('cids')
companies.append(str(mc_record.company_id.id))
self.assertEqual(cids, '-'.join(companies))
def test_redirect_to_records_nothread(self):
""" Test no thread models and redirection """
@ -372,10 +444,10 @@ class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
# when being logged, cids should be based on current user's company unless
# there is an access issue (not tested here, see 'test_redirect_to_records')
self.authenticate(self.user_admin.login, self.user_admin.login)
for test_record in nothreads:
for user_company in self.company_admin, self.company_2:
with self.subTest(record_name=test_record.name, user_company=user_company):
self.authenticate(self.user_admin.login, self.user_admin.login)
self.user_admin.write({'company_id': user_company.id})
response = self.url_open(
f'/mail/view?model={test_record._name}&res_id={test_record.id}',
@ -383,9 +455,8 @@ class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
)
self.assertEqual(response.status_code, 200)
decoded_fragment = url_decode(url_parse(response.url).fragment)
self.assertTrue("cids" in decoded_fragment)
self.assertEqual(decoded_fragment['cids'], str(user_company.id))
self.assertTrue('cids' in response.request._cookies)
self.assertEqual(response.request._cookies.get('cids'), str(user_company.id))
# when being not logged, cids should not be added as redirection after
# logging will be 'mail/view' again
@ -397,40 +468,41 @@ class TestMultiCompanyRedirect(TestMailCommon, HttpCase):
timeout=15
)
self.assertEqual(response.status_code, 200)
decoded_fragment = url_decode(url_parse(response.url).fragment)
self.assertNotIn('cids', decoded_fragment)
self.assertNotIn('cids', response.request._cookies)
def test_mail_message_post_other_company_with_cids(self):
"""
Ensure that a user can post a message on a thread belonging to another
company when:
@tagged("-at_install", "post_install", "multi_company", "mail_controller")
class TestMultiCompanyThreadData(TestMailCommon, HttpCase):
@classmethod
def setUpClass(cls):
super().setUpClass()
cls._activate_multi_company()
- The user has access to both companies via `company_ids`.
- The active company context only includes the other company.
- The target record belongs to a different company than the active one.
def test_mail_thread_data_follower(self):
partner_portal = self.env["res.partner"].create(
{"company_id": self.company_3.id, "name": "portal partner"}
)
record = self.env["mail.test.multi.company"].create({"name": "Multi Company Record"})
record.message_subscribe(partner_ids=partner_portal.ids)
with self.assertRaises(UserError):
partner_portal.with_user(self.user_employee_c2).check_access_rule("read")
self.authenticate(self.user_employee_c2.login, self.user_employee_c2.login)
response = self.url_open(
url="/mail/thread/data",
headers={"Content-Type": "application/json"},
data=json.dumps(
{
"params": {
"thread_id": record.id,
"thread_model": "mail.test.multi.company",
"request_list": ["followers"],
}
},
),
)
self.assertEqual(response.status_code, 200)
followers = json.loads(response.content)["result"]["followers"]
self.assertEqual(len(followers), 1)
self.assertEqual(followers[0]["partner"]["id"], partner_portal.id)
This reproduces the scenario where a user receives a notification from a
record in Company A while being active in Company B, and attempts to reply
from the inbox.
"""
self.user_employee_c2.write({'company_ids': [(6, 0, [self.user_employee.company_id.id, self.company_2.id])]})
record_c1 = self.env["mail.test.multi.company"].sudo().create({
"name": "Thread in C1",
"company_id": self.user_employee.company_id.id, # company 1
})
self.authenticate('employee_c2', 'employee_c2')
self.opener.cookies.set('cids', str(self.company_2.id))
payload = {
"thread_model": record_c1._name,
"thread_id": record_c1.id,
"post_data": {
"body": "<p>Reply from inbox</p>",
"message_type": "comment",
"subtype_xmlid": "mail.mt_comment",
},
"context": {
"allowed_company_ids": self.company_2.ids,
}
}
result = self.make_jsonrpc_request("/mail/message/post", payload)
message_data = result["store_data"]["mail.message"][0]
self.assertEqual(message_data["body"], ["markup", "<p>Reply from inbox</p>"])
self.assertTrue(record_c1.message_ids.filtered(lambda m: m.id == message_data["id"]))