Mercurial Mercurial > pub > hg > cubicweb / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
server/test/unittest_security.py
branchstable
changeset 9981 7099bbd685aa
parent 9586 121c88b360d0
child 9984 793377697c81
child 10153 85cbf16fbb57 
--- a/server/test/unittest_security.py	Tue Jul 29 14:40:29 2014 +0200
+++ b/server/test/unittest_security.py	Tue Jan 28 15:27:59 2014 +0100
@@ -1,4 +1,4 @@
-# copyright 2003-2012 LOGILAB S.A. (Paris, FRANCE), all rights reserved.
+# copyright 2003-2014 LOGILAB S.A. (Paris, FRANCE), all rights reserved.
 # contact http://www.logilab.fr/ -- mailto:contact@logilab.fr
 #
 # This file is part of CubicWeb.
@@ -390,6 +390,22 @@
             self.assertRaises(Unauthorized, self.commit)
             cu.execute('SET X web "http://www.logilab.org" WHERE X eid %(x)s', {'x': eid})
             self.commit()
+        with self.login('iaminusersgrouponly') as cu:
+            eid = cu.execute('INSERT Frozable F: F name "Foo"')
+            self.commit()
+            cu.execute('SET F name "Bar" WHERE F is Frozable')
+            self.commit()
+            cu.execute('SET F name "BaBar" WHERE F is Frozable')
+            cu.execute('SET F frozen True WHERE F is Frozable')
+            with self.assertRaises(Unauthorized):
+                self.commit()
+            self.rollback()
+            cu.execute('SET F frozen True WHERE F is Frozable')
+            self.commit()
+            cu.execute('SET F name "Bar" WHERE F is Frozable')
+            with self.assertRaises(Unauthorized):
+                self.commit()
+            self.rollback()
 
     def test_attribute_security_rqlexpr(self):
         # Note.para attribute editable by managers or if the note is in "todo" state
cubicweb