cubicweb: comparison server/test/unittest

equal deleted inserted replaced

-:0cfb6b63f90b
+:ae468fae9965
 cnx = self.login('iaminusersgrouponly')
 session = self.session
 # needed to avoid check_perm error
 session.set_pool()
 # needed to remove rql expr granting update perm to the user
+affaire_perms = self.schema['Affaire'].permissions.copy()
 self.schema['Affaire'].set_action_permissions('update', self.schema['Affaire'].get_groups('update'))
-self.assertRaises(Unauthorized,
-self.schema['Affaire'].check_perm, session, 'update', eid=eid)
-cu = cnx.cursor()
-self.schema['Affaire'].set_action_permissions('read', ('users',))
 try:
+self.assertRaises(Unauthorized,
+self.schema['Affaire'].check_perm, session, 'update', eid=eid)
+cu = cnx.cursor()
+self.schema['Affaire'].set_action_permissions('read', ('users',))
 aff = cu.execute('Any X WHERE X ref "ARCT01"').get_entity(0, 0)
 aff.fire_transition('abort')
 cnx.commit()
 # though changing a user state (even logged user) is reserved to managers
 user = cnx.user(self.session)
 # XXX wether it should raise Unauthorized or ValidationError is not clear
 # the best would probably ValidationError if the transition doesn't exist
 # from the current state but Unauthorized if it exists but user can't pass it
 self.assertRaises(ValidationError, user.fire_transition, 'deactivate')
 finally:
-self.schema['Affaire'].set_action_permissions('read', ('managers',))
+# restore orig perms
+for action, perms in affaire_perms.iteritems():
+self.schema['Affaire'].set_action_permissions(action, perms)
 def test_trinfo_security(self):
 aff = self.execute('INSERT Affaire X: X ref "ARCT01"').get_entity(0, 0)
 self.commit()
 aff.fire_transition('abort')

branch	stable
changeset 4691	ae468fae9965
parent 4191	01638461d4b0
child 4711	7ef3b029e10b