func (s *serverSuite) TestAPIHandlerHasPermissionLogin(c *gc.C) {
u, ctag := s.bootstrapHasPermissionTest(c)
handler, _ := apiserver.TestingAPIHandlerWithEntity(c, s.State, s.State, u)
defer handler.Kill()
apiserver.AssertHasPermission(c, handler, permission.LoginAccess, ctag, true)
apiserver.AssertHasPermission(c, handler, permission.AddModelAccess, ctag, false)
apiserver.AssertHasPermission(c, handler, permission.SuperuserAccess, ctag, false)
}
func (s *serverSuite) TestAPIHandlerHasPermissionSuperUser(c *gc.C) {
u, ctag := s.bootstrapHasPermissionTest(c)
user := u.UserTag()
handler, _ := apiserver.TestingAPIHandlerWithEntity(c, s.State, s.State, u)
defer handler.Kill()
ua, err := s.State.SetUserAccess(user, ctag, permission.SuperuserAccess)
c.Assert(err, jc.ErrorIsNil)
c.Assert(ua.Access, gc.Equals, permission.SuperuserAccess)
apiserver.AssertHasPermission(c, handler, permission.LoginAccess, ctag, true)
apiserver.AssertHasPermission(c, handler, permission.AddModelAccess, ctag, true)
apiserver.AssertHasPermission(c, handler, permission.SuperuserAccess, ctag, true)
}