30 rqlst = self.repo.vreg.rqlhelper.parse(rql).children[0] |
30 rqlst = self.repo.vreg.rqlhelper.parse(rql).children[0] |
31 origgroups = self.schema['Personne'].get_groups('read') |
31 origgroups = self.schema['Personne'].get_groups('read') |
32 self.schema['Personne'].set_action_permissions('read', ('users', 'managers')) |
32 self.schema['Personne'].set_action_permissions('read', ('users', 'managers')) |
33 self.repo.vreg.solutions(self.session, rqlst, None) |
33 self.repo.vreg.solutions(self.session, rqlst, None) |
34 solution = rqlst.solutions[0] |
34 solution = rqlst.solutions[0] |
35 check_read_access(self.schema, self.session.user, rqlst, solution) |
35 check_read_access(self.session, rqlst, solution, {}) |
36 cnx = self.login('anon') |
36 cnx = self.login('anon') |
37 cu = cnx.cursor() |
37 cu = cnx.cursor() |
38 self.assertRaises(Unauthorized, |
38 self.assertRaises(Unauthorized, |
39 check_read_access, |
39 check_read_access, |
40 self.schema, cnx.user(self.session), rqlst, solution) |
40 self.session, rqlst, solution, {}) |
41 self.assertRaises(Unauthorized, cu.execute, rql) |
41 self.assertRaises(Unauthorized, cu.execute, rql) |
42 |
42 |
43 def test_upassword_not_selectable(self): |
43 def test_upassword_not_selectable(self): |
44 self.assertRaises(Unauthorized, |
44 self.assertRaises(Unauthorized, |
45 self.execute, 'Any X,P WHERE X is CWUser, X upassword P') |
45 self.execute, 'Any X,P WHERE X is CWUser, X upassword P') |