func TestMongo(t *testing.T) {
type Test struct {
ID bson.ObjectId `bson:"_id,omitempty"`
Name,
Description string
}
session, err := mgo.Dial(os.Getenv("MONGODB_TEST_SERVER"))
test.Fatal(t, err, nil)
defer session.Close()
defer session.DB(os.Getenv("MONGODB_TEST_DB")).C("mongo_tests").DropCollection()
// Optional. Switch the session to a monotonic behavior.
session.SetMode(mgo.Monotonic, true)
collection := session.DB(os.Getenv("MONGODB_TEST_DB")).C("mongo_tests")
test1 := &Test{Name: "Initial", Description: "A simple test"}
err = collection.Insert(test1)
test.Fatal(t, err, nil)
result := new(Test)
err = collection.Find(bson.M{"name": test1.Name}).One(result)
test.Error(t, err, nil)
test.Error(t, result.Description, test1.Description)
result1 := new(Test)
err = collection.FindId(result.ID).One(result1)
test.Error(t, err, nil)
test.Error(t, result1.ID, result.ID)
}
func TestACL(t *testing.T) {
roles := map[string]acl.Role{
"guest": acl.NewRole("guest"),
"staff": acl.NewRole("staff"),
"editor": acl.NewRole("editor"),
"administrator": acl.NewRole("administrator"),
}
list := acl.NewACL()
list.AddRole(roles["guest"], nil)
list.AddRole(roles["staff"], roles["guest"])
list.AddRole(roles["editor"], roles["staff"])
list.AddRole(roles["administrator"], nil)
list.Allow(roles["guest"], nil, "view")
list.Allow(roles["staff"], nil, "edit", "submit", "revise")
list.Allow(roles["editor"], nil, "publish", "archive", "delete")
list.Allow(roles["administrator"], nil)
test.Error(t, list.IsAllowed(roles["guest"], nil, "view"), true)
test.Error(t, list.IsAllowed(roles["staff"], nil, "publish"), false)
test.Error(t, list.IsAllowed(roles["staff"], nil, "revise"), true)
test.Error(t, list.IsAllowed(roles["editor"], nil, "view"), true)
test.Error(t, list.IsAllowed(roles["editor"], nil, "update"), false)
test.Error(t, list.IsAllowed(roles["administrator"], nil, "view"), true)
test.Error(t, list.IsAllowed(roles["administrator"], nil), true)
test.Error(t, list.IsAllowed(roles["administrator"], nil, "update"), true)
/** Precise Access Controls
* @link https://framework.zend.com/manual/1.12/en/zend.acl.refining.html
*/
roles["marketing"] = acl.NewRole("marketing")
list.AddRole(roles["marketing"], roles["staff"])
resources := map[string]acl.Resource{
"news": acl.NewResource("news"),
"latest": acl.NewResource("latest"),
"newsletter": acl.NewResource("newsletter"),
"announcement": acl.NewResource("announcement"),
}
list.AddResource(resources["newsletter"])
list.AddResource(resources["news"])
list.AddResource(resources["latest"], resources["news"])
list.AddResource(resources["announcement"], resources["news"])
list.Allow(roles["marketing"], resources["newsletter"], "publish", "archive")
list.Allow(roles["marketing"], resources["latest"], "publish", "archive")
list.Deny(roles["staff"], resources["latest"], "revise")
list.Deny(nil, resources["announcement"], "archive")
test.Error(t, list.IsAllowed(roles["staff"], resources["newsletter"], "publish"), false)
test.Error(t, list.IsAllowed(roles["marketing"], resources["newsletter"], "publish"), true)
test.Error(t, list.IsAllowed(roles["staff"], resources["latest"], "publish"), false)
test.Error(t, list.IsAllowed(roles["marketing"], resources["latest"], "publish"), true)
test.Error(t, list.IsAllowed(roles["marketing"], resources["latest"], "archive"), true)
test.Error(t, list.IsAllowed(roles["editor"], resources["announcement"], "archive"), false)
test.Error(t, list.IsAllowed(roles["administrator"], resources["announcement"], "archive"), false)
test.Error(t, list.IsAllowed(roles["marketing"], nil, "view"), true)
}
