25 |
25 |
26 class LowLevelSecurityFunctionTC(BaseSecurityTC): |
26 class LowLevelSecurityFunctionTC(BaseSecurityTC): |
27 |
27 |
28 def test_check_read_access(self): |
28 def test_check_read_access(self): |
29 rql = u'Personne U where U nom "managers"' |
29 rql = u'Personne U where U nom "managers"' |
30 rqlst = self.repo.querier._rqlhelper.parse(rql).children[0] |
30 rqlst = self.repo.vreg.rqlhelper.parse(rql).children[0] |
31 origgroups = self.schema['Personne'].get_groups('read') |
31 origgroups = self.schema['Personne'].get_groups('read') |
32 self.schema['Personne'].set_groups('read', ('users', 'managers')) |
32 self.schema['Personne'].set_groups('read', ('users', 'managers')) |
33 self.repo.querier._rqlhelper.compute_solutions(rqlst) |
33 self.repo.vreg.rqlhelper.compute_solutions(rqlst) |
34 solution = rqlst.solutions[0] |
34 solution = rqlst.solutions[0] |
35 check_read_access(self.schema, self.session.user, rqlst, solution) |
35 check_read_access(self.schema, self.session.user, rqlst, solution) |
36 cnx = self.login('anon') |
36 cnx = self.login('anon') |
37 cu = cnx.cursor() |
37 cu = cnx.cursor() |
38 self.assertRaises(Unauthorized, |
38 self.assertRaises(Unauthorized, |