improved RBAC generators (#26)

Co-authored-by: Michael Hoennig <michael@hoennig.de> Reviewed-on: https://dev.hostsharing.net/hostsharing/hs.hsadmin.ng/pulls/26 Reviewed-by: Timotheus Pokorra <timotheus.pokorra@hostsharing.net>
2024-03-26 11:25:18 +01:00
parent 67c1b50239
commit 4572c6bda0
52 changed files with 3295 additions and 309 deletions
--- a/src/test/java/net/hostsharing/hsadminng/hs/office/membership/HsOfficeMembershipControllerAcceptanceTest.java
+++ b/src/test/java/net/hostsharing/hsadminng/hs/office/membership/HsOfficeMembershipControllerAcceptanceTest.java
@ -462,7 +462,7 @@ class HsOfficeMembershipControllerAcceptanceTest extends ContextBasedTestWithCle
            RestAssured // @formatter:off
                .given()
                    .header("current-user", "superuser-alex@hostsharing.net")
-                    .header("assumed-roles", "hs_office_partner#FirstGmbH-firstcontact.agent")
+                    .header("assumed-roles", "hs_office_partner#10001:FirstGmbH-firstcontact.admin")
                    .port(port)
                .when()
                    .delete("http://localhost/api/hs/office/memberships/" + givenMembership.getUuid())
--- a/src/test/java/net/hostsharing/hsadminng/test/cust/TestCustomerControllerAcceptanceTest.java
+++ b/src/test/java/net/hostsharing/hsadminng/test/cust/TestCustomerControllerAcceptanceTest.java
@ -204,7 +204,7 @@ class TestCustomerControllerAcceptanceTest {
                    .statusCode(403)
                    .contentType(ContentType.JSON)
                    .statusCode(403)
-                    .body("message", containsString("insert into test_customer not allowed for current subjects {customer-admin@yyy.example.com}"));
+                    .body("message", containsString("ERROR: [403] insert into test_customer not allowed for current subjects {customer-admin@yyy.example.com}"));
                // @formatter:on

            // finally, the new customer was not created
--- a/src/test/java/net/hostsharing/hsadminng/test/cust/TestCustomerEntityUnitTest.java
+++ b/src/test/java/net/hostsharing/hsadminng/test/cust/TestCustomerEntityUnitTest.java
@ -29,6 +29,7 @@ class TestCustomerEntityUnitTest {
                    subgraph customer:permissions[ ]
                        style customer:permissions fill:#dd4901,stroke:white
                   
+                        perm:customer:INSERT{{customer:INSERT}}
                        perm:customer:DELETE{{customer:DELETE}}
                        perm:customer:UPDATE{{customer:UPDATE}}
                        perm:customer:SELECT{{customer:SELECT}}
@ -44,6 +45,7 @@ class TestCustomerEntityUnitTest {
                role:customer:admin ==> role:customer:tenant
                
                %% granting permissions to roles
+                role:global:admin ==> perm:customer:INSERT
                role:customer:owner ==> perm:customer:DELETE
                role:customer:admin ==> perm:customer:UPDATE
                role:customer:tenant ==> perm:customer:SELECT
--- a/src/test/resources/application.yml
+++ b/src/test/resources/application.yml
@ -4,8 +4,9 @@ spring:
            platform: postgres

    datasource:
-        url: jdbc:tc:postgresql:15.5-bookworm:///spring_boot_testcontainers
+        url-tc: jdbc:tc:postgresql:15.5-bookworm:///spring_boot_testcontainers
        url-local: jdbc:postgresql://localhost:5432/postgres
+        url: ${spring.datasource.url-tc}
        username: postgres
        password: password