1
=== added file 'lib/lp/bugs/browser/bugrole.py'
2
--- lib/lp/bugs/browser/bugrole.py	1970-01-01 00:00:00 +0000
3
+++ lib/lp/bugs/browser/bugrole.py	2010-05-25 21:21:40 +0000
4
@@ -0,0 +1,127 @@
5
1
# Copyright 2010 Canonical Ltd.  This software is licensed under the
6
2
# GNU Affero General Public License version (see the file LICENSE).
7
3
8
4
"""Common classes to support bug roles."""
9
5
10
6
__metaclass__ = type
11
7
12
8
__all__ = [
13
9
    'BugRoleMixin',
14
10
    ]
15
11
16
12
from canonical.launchpad.webapp.menu import structured
17
13
from canonical.launchpad.webapp.publisher import canonical_url
18
14
19
15
20
16
class BugRoleMixin:
21
17
22
18
    INVALID_PERSON = object()
23
19
    OTHER_USER = object()
24
20
    OTHER_TEAM = object()
25
21
    OK = object()
26
22
27
23
    def _getFieldState(self, field_name, data):
28
24
        """Return the enum that summarises the field state."""
29
25
        # The field_name will not be in the data if the user did not enter
30
26
        # a person in the ValidPersonOrTeam vocabulary.
31
27
        if field_name not in data:
32
28
            return self.INVALID_PERSON
33
29
        role = data[field_name]
34
30
        user = self.user
35
31
        # The user may assign the role to None, himself, or a team he admins.
36
32
        if role is None or self.context.userCanAlterSubscription(role, user):
37
33
            return self.OK
38
34
        # The user is not an admin of the team, or he entered another user.
39
35
        if role.isTeam():
40
36
            return self.OTHER_TEAM
41
37
        else:
42
38
            return self.OTHER_USER
43
39
44
40
    def validateBugSupervisor(self, data):
45
41
        """Validates the new bug supervisor.
46
42
47
43
        Verify that the value is None, the user, or a team he administers,
48
44
        otherwise, set a field error.
49
45
        """
50
46
        field_state = self._getFieldState('bug_supervisor', data)
51
47
        if field_state is self.INVALID_PERSON:
52
48
            error = (
53
49
                'You must choose a valid person or team to be the '
54
50
                'bug supervisor for %s.' % self.context.displayname)
55
51
        elif field_state is self.OTHER_TEAM:
56
52
            supervisor = data['bug_supervisor']
57
53
            team_url = canonical_url(
58
54
                supervisor, rootsite='mainsite', view_name='+members')
59
55
            error = structured(
60
56
                'You cannot set %(team)s as the bug supervisor for '
61
57
                '%(target)s because you are not an administrator of that '
62
58
                'team.<br />If you believe that %(team)s should be the '
63
59
                'bug supervisor for %(target)s, notify one of the '
64
60
                '<a href="%(url)s">%(team)s administrators</a>. See '
65
61
                '<a href="https://help.launchpad.net/BugSupervisors">'
66
62
                'the help wiki</a> for information about setting a bug '
67
63
                'supervisor.',
68
64
                team=supervisor.displayname,
69
65
                target=self.context.displayname,
70
66
                url=team_url)
71
67
        elif field_state is self.OTHER_USER:
72
68
            error = structured(
73
69
                'You cannot set another person as the bug supervisor for '
74
70
                '%(target)s.<br />See '
75
71
                '<a href="https://help.launchpad.net/BugSupervisors">'
76
72
                'the help wiki</a> for information about setting a bug '
77
73
                'supervisor.',
78
74
                target=self.context.displayname)
79
75
        else:
80
76
            # field_state is self.OK.
81
77
            return
82
78
        self.setFieldError('bug_supervisor', error)
83
79
84
80
    def changeBugSupervisor(self, bug_supervisor):
85
81
        self.context.setBugSupervisor(bug_supervisor, self.user)
86
82
        if bug_supervisor is not None:
87
83
            self.request.response.addNotification(structured(
88
84
                'Successfully changed the bug supervisor to '
89
85
                '<a href="%(supervisor_url)s">%(displayname)s</a>.'
90
86
                '<br /><a href="%(supervisor_url)s">%(displayname)s</a> '
91
87
                'has also been subscribed to bug notifications for '
92
88
                '%(targetname)s.<br />You can '
93
89
                '<a href="%(targeturl)s/+subscribe">change the '
94
90
                'subscriptions</a> for %(targetname)s at any time.',
95
91
                supervisor_url=canonical_url(bug_supervisor),
96
92
                displayname=bug_supervisor.displayname,
97
93
                targetname=self.context.displayname,
98
94
                targeturl=canonical_url(self.context)))
99
95
100
96
    def validateSecurityContact(self, data):
101
97
        """Validates the new security contact.
102
98
103
99
        Verify that the value is None, the user, or a team he administers,
104
100
        otherwise, set a field error.
105
101
        """
106
102
        field_state = self._getFieldState('security_contact', data)
107
103
        if field_state is self.INVALID_PERSON:
108
104
            error = (
109
105
                'You must choose a valid person or team to be the '
110
106
                'security contact for %s.' % self.context.displayname)
111
107
        elif field_state is self.OTHER_TEAM:
112
108
            supervisor = data['security_contact']
113
109
            team_url = canonical_url(
114
110
                supervisor, rootsite='mainsite', view_name='+members')
115
111
            error = structured(
116
112
                'You cannot set %(team)s as the security contact for '
117
113
                '%(target)s because you are not an administrator of that '
118
114
                'team.<br />If you believe that %(team)s should be the '
119
115
                'security contact for %(target)s, notify one of the '
120
116
                '<a href="%(url)s">%(team)s administrators</a>.',
121
117
                team=supervisor.displayname,
122
118
                target=self.context.displayname,
123
119
                url=team_url)
124
120
        elif field_state is self.OTHER_USER:
125
121
            error = structured(
126
122
                'You cannot set another person as the security contact for '
127
123
                '%(target)s.', target=self.context.displayname)
128
124
        else:
129
125
            # field_state is self.OK.
130
126
            return
131
127
        self.setFieldError('security_contact', error)
132
0
128
133
=== modified file 'lib/lp/bugs/browser/bugsupervisor.py'
134
--- lib/lp/bugs/browser/bugsupervisor.py	2010-04-29 15:32:46 +0000
135
+++ lib/lp/bugs/browser/bugsupervisor.py	2010-05-25 21:21:40 +0000
136
@@ -1,19 +1,23 @@
138
1
# Copyright 2009 Canonical Ltd.  This software is licensed under the
1
# Copyright 2009-2010 Canonical Ltd.  This software is licensed under the
139
2
# GNU Affero General Public License version 3 (see the file LICENSE).
2
# GNU Affero General Public License version 3 (see the file LICENSE).
140
3
3
141
4
"""Browser view for bug supervisor."""
4
"""Browser view for bug supervisor."""
142
5
5
143
6
__metaclass__ = type
6
__metaclass__ = type
144
7
7
146
8
__all__ = ['BugSupervisorEditView']
8
__all__ = [
147
9
    'BugSupervisorEditView',
148
10
    ]
149
9
11
150
10
from canonical.launchpad.webapp import (
151
11
    action, canonical_url, LaunchpadEditFormView)
152
12
from canonical.launchpad.webapp.menu import structured
153
13
from lazr.restful.interface import copy_field, use_template
154
14
from zope.interface import Interface
12
from zope.interface import Interface
155
15
13
156
14
from lazr.restful.interface import copy_field
157
15
158
16
from canonical.launchpad.webapp.launchpadform import (
159
17
    action, LaunchpadEditFormView)
160
18
from canonical.launchpad.webapp.publisher import canonical_url
161
16
from lp.bugs.interfaces.bugsupervisor import IHasBugSupervisor
19
from lp.bugs.interfaces.bugsupervisor import IHasBugSupervisor
162
20
from lp.bugs.browser.bugrole import BugRoleMixin
163
17
21
164
18
22
165
19
class BugSupervisorEditSchema(Interface):
23
class BugSupervisorEditSchema(Interface):
166
@@ -26,7 +30,7 @@
167
26
        IHasBugSupervisor['bug_supervisor'], readonly=False)
30
        IHasBugSupervisor['bug_supervisor'], readonly=False)
168
27
31
169
28
32
171
29
class BugSupervisorEditView(LaunchpadEditFormView):
33
class BugSupervisorEditView(BugRoleMixin, LaunchpadEditFormView):
172
30
    """Browser view class for editing the bug supervisor."""
34
    """Browser view class for editing the bug supervisor."""
173
31
35
174
32
    schema = BugSupervisorEditSchema
36
    schema = BugSupervisorEditSchema
175
@@ -47,99 +51,23 @@
176
47
        """See `LaunchpadFormView`"""
51
        """See `LaunchpadFormView`"""
177
48
        return {BugSupervisorEditSchema: self.context}
52
        return {BugSupervisorEditSchema: self.context}
178
49
53
179
54
    @property
180
55
    def next_url(self):
181
56
        """See `LaunchpadFormView`."""
182
57
        return canonical_url(self.context)
183
58
184
59
    cancel_url = next_url
185
60
186
61
    def validate(self, data):
187
62
        """See `LaunchpadFormView`."""
188
63
        self.validateBugSupervisor(data)
189
64
190
50
    @action('Change', name='change')
65
    @action('Change', name='change')
191
51
    def change_action(self, action, data):
66
    def change_action(self, action, data):
192
52
        """Redirect to the target page with a success message."""
67
        """Redirect to the target page with a success message."""
193
53
        target = self.context
194
54
        bug_supervisor = data['bug_supervisor']
68
        bug_supervisor = data['bug_supervisor']
215
55
        target.setBugSupervisor(bug_supervisor, self.user)
69
        self.changeBugSupervisor(bug_supervisor)
216
56
70
        if bug_supervisor is None:
197
57
        if bug_supervisor is not None:
198
58
            self.request.response.addNotification(structured(
199
59
                'Successfully changed the bug supervisor to '
200
60
                '<a href="%(supervisor_url)s">%(displayname)s</a>.'
201
61
                '<br />'
202
62
                '<a href="%(supervisor_url)s">%(displayname)s</a> '
203
63
                'has also been '
204
64
                'subscribed to bug notifications for %(targetname)s. '
205
65
                '<br />'
206
66
                'You can '
207
67
                '<a href="%(targeturl)s/+subscribe">'
208
68
                'change the subscriptions</a> for '
209
69
                '%(targetname)s at any time.',
210
70
                supervisor_url=canonical_url(bug_supervisor),
211
71
                displayname=bug_supervisor.displayname,
212
72
                targetname=self.context.displayname,
213
73
                targeturl=canonical_url(self.context)))
214
74
        else:
217
75
            self.request.response.addNotification(
71
            self.request.response.addNotification(
218
76
                "Successfully cleared the bug supervisor. "
72
                "Successfully cleared the bug supervisor. "
219
77
                "You can set the bug supervisor again at any time.")
73
                "You can set the bug supervisor again at any time.")
220
78
221
79
        self.request.response.redirect(canonical_url(target))
222
80
223
81
    def validate(self, data):
224
82
        """Validates the new bug supervisor.
225
83
226
84
        The following values are valid as bug supervisors:
227
85
            * None, indicating that the bug supervisor field for the target
228
86
              should be cleared in change_action().
229
87
            * A valid Person (email address or launchpad id).
230
88
            * A valid Team of which the current user is an administrator.
231
89
232
90
        If the bug supervisor entered does not meet any of the above
233
91
        criteria then the submission will fail and the user will be notified
234
92
        of the error.
235
93
        """
236
94
237
95
        # `data` will not have a bug_supervisor entry in cases where the
238
96
        # bug_supervisor the user entered is valid according to the
239
97
        # ValidPersonOrTeam vocabulary
240
98
        # (i.e. is not a Person, Team or None).
241
99
        if not data.has_key('bug_supervisor'):
242
100
            self.setFieldError(
243
101
                'bug_supervisor',
244
102
                'You must choose a valid person or team to be the'
245
103
                ' bug supervisor for %s.' %
246
104
                self.context.displayname)
247
105
248
106
            return
249
107
250
108
        supervisor = data['bug_supervisor']
251
109
252
110
        # Making a person the bug supervisor implies subscribing him
253
111
        # to all bug mail. Ensure that the current user can indeed
254
112
        # do this.
255
113
        if (supervisor is not None and
256
114
            not self.context.userCanAlterSubscription(supervisor, self.user)):
257
115
            if supervisor.isTeam():
258
116
                error = structured(
259
117
                    "You cannot set %(team)s as the bug supervisor for "
260
118
                    "%(target)s because you are not an administrator of that "
261
119
                    "team.<br />If you believe that %(team)s should be the "
262
120
                    "bug supervisor for %(target)s, please notify one of the "
263
121
                    "<a href=\"%(url)s\">%(team)s administrators</a>. See "
264
122
                    "<a href=\"https://help.launchpad.net/BugSupervisors\">"
265
123
                    "the help wiki</a> for information about setting a bug "
266
124
                    "supervisor.",
267
125
                    team=supervisor.displayname,
268
126
                    target=self.context.displayname,
269
127
                    url=(canonical_url(supervisor, rootsite='mainsite') +
270
128
                         '/+members'))
271
129
                self.setFieldError('bug_supervisor', error)
272
130
            else:
273
131
                error = structured(
274
132
                    "You cannot set another person as the bug supervisor for "
275
133
                    "%(target)s.<br />See "
276
134
                    "<a href=\"https://help.launchpad.net/BugSupervisors\">"
277
135
                    "the help wiki</a> for information about setting a bug "
278
136
                    "supervisor.",
279
137
                    person=supervisor.displayname,
280
138
                    target=self.context.displayname)
281
139
            self.setFieldError('bug_supervisor', error)
282
140
283
141
    def cancel_url(self):
284
142
        """See `LaunchpadFormView`."""
285
143
        return canonical_url(self.context)
286
144
287
145
288
146
74
289
=== modified file 'lib/lp/bugs/browser/securitycontact.py'
290
--- lib/lp/bugs/browser/securitycontact.py	2010-05-18 21:24:27 +0000
291
+++ lib/lp/bugs/browser/securitycontact.py	2010-05-25 21:21:40 +0000
292
@@ -1,17 +1,22 @@
294
1
# Copyright 2009 Canonical Ltd.  This software is licensed under the
1
# Copyright 2009-2010 Canonical Ltd.  This software is licensed under the
295
2
# GNU Affero General Public License version 3 (see the file LICENSE).
2
# GNU Affero General Public License version 3 (see the file LICENSE).
296
3
3
297
4
"""Browser view classes for security contacts."""
4
"""Browser view classes for security contacts."""
298
5
5
299
6
__metaclass__ = type
6
__metaclass__ = type
302
7
__all__ = ["SecurityContactEditView"]
7
303
8
8
__all__ = [
304
9
    "SecurityContactEditView",
305
10
    ]
306
11
307
12
from canonical.launchpad.webapp.launchpadform import (
308
13
    action, LaunchpadFormView)
309
14
from canonical.launchpad.webapp.publisher import canonical_url
310
9
from lp.bugs.interfaces.securitycontact import IHasSecurityContact
15
from lp.bugs.interfaces.securitycontact import IHasSecurityContact
316
10
from canonical.launchpad.webapp import (
16
from lp.bugs.browser.bugrole import BugRoleMixin
317
11
    canonical_url, LaunchpadFormView, action)
17
318
12
18
319
13
19
class SecurityContactEditView(BugRoleMixin, LaunchpadFormView):
315
14
class SecurityContactEditView(LaunchpadFormView):
320
15
    """Browser view for editing the security contact.
20
    """Browser view for editing the security contact.
321
16
21
322
17
    self.context is assumed to implement IHasSecurityContact.
22
    self.context is assumed to implement IHasSecurityContact.
323
@@ -35,6 +40,10 @@
324
35
        return {
40
        return {
325
36
            'security_contact': self.context.security_contact}
41
            'security_contact': self.context.security_contact}
326
37
42
327
43
    def validate(self, data):
328
44
        """See `LaunchpadFormView`."""
329
45
        self.validateSecurityContact(data)
330
46
331
38
    @action('Change', name='change')
47
    @action('Change', name='change')
332
39
    def change_action(self, action, data):
48
    def change_action(self, action, data):
333
40
        security_contact = data['security_contact']
49
        security_contact = data['security_contact']
334
@@ -43,25 +52,12 @@
335
43
52
336
44
        self.context.security_contact = security_contact
53
        self.context.security_contact = security_contact
337
45
        if security_contact:
54
        if security_contact:
338
46
            security_contact_display_value = None
339
47
            if security_contact.preferredemail:
340
48
                # The security contact was set to a new person or team.
341
49
                security_contact_display_value = (
342
50
                    security_contact.preferredemail.email)
343
51
            else:
344
52
                # The security contact doesn't have a preferred email address,
345
53
                # so it must be a team.
346
54
                assert security_contact.isTeam(), (
347
55
                    "Expected security contact with no email address "
348
56
                    "to be a team.")
349
57
                security_contact_display_value = security_contact.displayname
350
58
351
59
            self.request.response.addNotification(
55
            self.request.response.addNotification(
354
60
                "Successfully changed the security contact to %s" %
56
                "Successfully changed the security contact to %s." %
355
61
                security_contact_display_value)
57
                security_contact.displayname)
356
62
        else:
58
        else:
357
63
            self.request.response.addNotification(
59
            self.request.response.addNotification(
359
64
                "Successfully removed the security contact")
60
                "Successfully removed the security contact.")
360
65
61
361
66
    @property
62
    @property
362
67
    def next_url(self):
63
    def next_url(self):
363
68
64
364
=== added file 'lib/lp/bugs/browser/tests/test_bugsupervisor.py'
365
--- lib/lp/bugs/browser/tests/test_bugsupervisor.py	1970-01-01 00:00:00 +0000
366
+++ lib/lp/bugs/browser/tests/test_bugsupervisor.py	2010-05-25 21:21:40 +0000
367
@@ -0,0 +1,167 @@
368
1
# Copyright10 Canonical Ltd.  This software is licensed under the
369
2
# GNU Affero General Public License version (see the file LICENSE).
370
3
371
4
"""Unit tests for bug supervisor views."""
372
5
373
6
__metaclass__ = type
374
7
375
8
import unittest
376
9
377
10
from zope.app.form.interfaces import ConversionError
378
11
379
12
from lp.bugs.browser.bugsupervisor import BugSupervisorEditSchema
380
13
from lp.testing import login, login_person, TestCaseWithFactory
381
14
from lp.testing.views import create_initialized_view
382
15
from canonical.testing import DatabaseFunctionalLayer
383
16
384
17
385
18
class TestBugSupervisorEditView(TestCaseWithFactory):
386
19
387
20
    layer = DatabaseFunctionalLayer
388
21
389
22
    def setUp(self):
390
23
        super(TestBugSupervisorEditView, self).setUp()
391
24
        self.owner = self.factory.makePerson(
392
25
            name='splat', displayname='<splat />')
393
26
        self.product = self.factory.makeProduct(
394
27
            name="boing", displayname='<boing />', owner=self.owner)
395
28
        self.team = self.factory.makeTeam(name='thud', owner=self.owner)
396
29
        login_person(self.owner)
397
30
398
31
    def _makeForm(self, person):
399
32
        if person is None:
400
33
            name = ''
401
34
        else:
402
35
            name = person.name
403
36
        return {
404
37
            'field.bug_supervisor': name,
405
38
            'field.actions.change': 'Change',
406
39
            }
407
40
408
41
    def test_view_attributes(self):
409
42
        self.product.displayname = 'Boing'
410
43
        view = create_initialized_view(
411
44
            self.product, name='+bugsupervisor')
412
45
        label = 'Edit bug supervisor for Boing'
413
46
        self.assertEqual(label, view.label)
414
47
        self.assertEqual(label, view.page_title)
415
48
        fields = ['bug_supervisor']
416
49
        self.assertEqual(fields, view.field_names)
417
50
        adapter, context = view.adapters.popitem()
418
51
        self.assertEqual(BugSupervisorEditSchema, adapter)
419
52
        self.assertEqual(self.product, context)
420
53
        self.assertEqual('http://launchpad.dev/boing', view.next_url)
421
54
        self.assertEqual('http://launchpad.dev/boing', view.cancel_url)
422
55
423
56
    def test_owner_appoint_self_from_none(self):
424
57
        # This also verifies that displaynames are escaped.
425
58
        form = self._makeForm(self.owner)
426
59
        view = create_initialized_view(
427
60
            self.product, name='+bugsupervisor', form=form)
428
61
        self.assertEqual([], view.errors)
429
62
        self.assertEqual(self.product.bug_supervisor, self.owner)
430
63
        notifications = view.request.response.notifications
431
64
        self.assertEqual(1, len(notifications))
432
65
        expected = (
433
66
            'Successfully changed the bug supervisor to '
434
67
            '<a href="http://launchpad.dev/~splat">&lt;splat /&gt;</a>.'
435
68
            '<br /><a href="http://launchpad.dev/~splat">&lt;splat /&gt;</a> '
436
69
            'has also been subscribed to bug notifications for '
437
70
            '&lt;boing /&gt;.<br />You can '
438
71
            '<a href="http://launchpad.dev/boing/+subscribe">change '
439
72
            'the subscriptions</a> for &lt;boing /&gt; at any time.')
440
73
        self.assertEqual(expected, notifications.pop().message)
441
74
442
75
    def test_owner_appoint_self_from_another(self):
443
76
        self.product.setBugSupervisor(self.team, self.owner)
444
77
        form = self._makeForm(self.owner)
445
78
        view = create_initialized_view(
446
79
            self.product, name='+bugsupervisor', form=form)
447
80
        self.assertEqual([], view.errors)
448
81
        self.assertEqual(self.owner, self.product.bug_supervisor)
449
82
450
83
    def test_owner_appoint_none(self):
451
84
        self.product.setBugSupervisor(self.owner, self.owner)
452
85
        form = self._makeForm(None)
453
86
        view = create_initialized_view(
454
87
            self.product, name='+bugsupervisor', form=form)
455
88
        self.assertEqual([], view.errors)
456
89
        self.assertEqual(self.product.bug_supervisor, None)
457
90
        notifications = view.request.response.notifications
458
91
        self.assertEqual(1, len(notifications))
459
92
        expected = (
460
93
            'Successfully cleared the bug supervisor. '
461
94
            'You can set the bug supervisor again at any time.')
462
95
        self.assertEqual(expected, notifications.pop().message)
463
96
464
97
    def test_owner_appoint_his_team(self):
465
98
        form = self._makeForm(self.team)
466
99
        view = create_initialized_view(
467
100
            self.product, name='+bugsupervisor', form=form)
468
101
        self.assertEqual([], view.errors)
469
102
        self.assertEqual(self.team, self.product.bug_supervisor)
470
103
471
104
    def test_owner_cannot_appoint_another_team(self):
472
105
        team = self.factory.makeTeam(name='smack', displayname='<smack />')
473
106
        form = self._makeForm(team)
474
107
        view = create_initialized_view(
475
108
            self.product, name='+bugsupervisor', form=form)
476
109
        self.assertEqual(1, len(view.errors))
477
110
        expected = (
478
111
            'You cannot set &lt;smack /&gt; as the bug supervisor for '
479
112
            '&lt;boing /&gt; because you are not an administrator of that '
480
113
            'team.<br />If you believe that &lt;smack /&gt; should be the '
481
114
            'bug supervisor for &lt;boing /&gt;, notify one of the '
482
115
            '<a href="http://launchpad.dev/~smack/+members">&lt;smack /&gt; '
483
116
            'administrators</a>. See '
484
117
            '<a href="https://help.launchpad.net/BugSupervisors">the '
485
118
            'help wiki</a> for information about setting a bug supervisor.')
486
119
        self.assertEqual(expected, view.errors.pop())
487
120
488
121
    def test_owner_cannot_appoint_a_nonvalid_user(self):
489
122
        # The vocabulary only accepts valid users.
490
123
        form = self._makeForm(None)
491
124
        form['field.bug_supervisor'] = 'fnord'
492
125
        view = create_initialized_view(
493
126
            self.product, name='+bugsupervisor', form=form)
494
127
        self.assertEqual(2, len(view.errors))
495
128
        expected = (
496
129
            'You must choose a valid person or team to be the bug supervisor '
497
130
            'for &lt;boing /&gt;.')
498
131
        self.assertEqual(expected, view.errors.pop())
499
132
        self.assertTrue(isinstance(view.errors.pop(), ConversionError))
500
133
501
134
    def test_owner_cannot_appoint_another_user(self):
502
135
        another_user = self.factory.makePerson()
503
136
        form = self._makeForm(another_user)
504
137
        view = create_initialized_view(
505
138
            self.product, name='+bugsupervisor', form=form)
506
139
        self.assertEqual(1, len(view.errors))
507
140
        expected = (
508
141
            'You cannot set another person as the bug supervisor for '
509
142
            '&lt;boing /&gt;.<br />See '
510
143
            '<a href="https://help.launchpad.net/BugSupervisors">the help '
511
144
            'wiki</a> for information about setting a bug supervisor.')
512
145
        self.assertEqual(expected, view.errors.pop())
513
146
514
147
    def test_admin_appoint_another_user(self):
515
148
        another_user = self.factory.makePerson()
516
149
        login('admin@canonical.com')
517
150
        form = self._makeForm(another_user)
518
151
        view = create_initialized_view(
519
152
            self.product, name='+bugsupervisor', form=form)
520
153
        self.assertEqual([], view.errors)
521
154
        self.assertEqual(another_user, self.product.bug_supervisor)
522
155
523
156
    def test_admin_appoint_another_team(self):
524
157
        another_team = self.factory.makeTeam()
525
158
        login('admin@canonical.com')
526
159
        form = self._makeForm(another_team)
527
160
        view = create_initialized_view(
528
161
            self.product, name='+bugsupervisor', form=form)
529
162
        self.assertEqual([], view.errors)
530
163
        self.assertEqual(another_team, self.product.bug_supervisor)
531
164
532
165
533
166
def test_suite():
534
167
    return unittest.TestLoader().loadTestsFromName(__name__)
535
0
168
536
=== added file 'lib/lp/bugs/browser/tests/test_securitycontact.py'
537
--- lib/lp/bugs/browser/tests/test_securitycontact.py	1970-01-01 00:00:00 +0000
538
+++ lib/lp/bugs/browser/tests/test_securitycontact.py	2010-05-25 21:21:40 +0000
539
@@ -0,0 +1,154 @@
540
1
# Copyright10 Canonical Ltd.  This software is licensed under the
541
2
# GNU Affero General Public License version (see the file LICENSE).
542
3
543
4
"""Unit tests for security contact views."""
544
5
545
6
__metaclass__ = type
546
7
547
8
import unittest
548
9
549
10
from zope.app.form.interfaces import ConversionError
550
11
551
12
from lp.testing import login, login_person, TestCaseWithFactory
552
13
from lp.testing.views import create_initialized_view
553
14
from canonical.testing import DatabaseFunctionalLayer
554
15
555
16
556
17
class TestSecurityContactEditView(TestCaseWithFactory):
557
18
558
19
    layer = DatabaseFunctionalLayer
559
20
560
21
    def setUp(self):
561
22
        super(TestSecurityContactEditView, self).setUp()
562
23
        self.owner = self.factory.makePerson(
563
24
            name='splat', displayname='<splat />')
564
25
        self.product = self.factory.makeProduct(
565
26
            name="boing", displayname='<boing />', owner=self.owner)
566
27
        self.team = self.factory.makeTeam(name='thud', owner=self.owner)
567
28
        login_person(self.owner)
568
29
569
30
    def _makeForm(self, person):
570
31
        if person is None:
571
32
            name = ''
572
33
        else:
573
34
            name = person.name
574
35
        return {
575
36
            'field.security_contact': name,
576
37
            'field.actions.change': 'Change',
577
38
            }
578
39
579
40
    def test_view_attributes(self):
580
41
        self.product.displayname = 'Boing'
581
42
        view = create_initialized_view(
582
43
            self.product, name='+securitycontact')
583
44
        label = 'Edit Boing security contact'
584
45
        self.assertEqual(label, view.label)
585
46
        self.assertEqual(label, view.page_title)
586
47
        fields = ['security_contact']
587
48
        self.assertEqual(fields, view.field_names)
588
49
        self.assertEqual('http://launchpad.dev/boing', view.next_url)
589
50
        self.assertEqual('http://launchpad.dev/boing', view.cancel_url)
590
51
591
52
    def test_owner_appoint_self_from_none(self):
592
53
        # This also verifies that displaynames are escaped.
593
54
        form = self._makeForm(self.owner)
594
55
        view = create_initialized_view(
595
56
            self.product, name='+securitycontact', form=form)
596
57
        self.assertEqual([], view.errors)
597
58
        self.assertEqual(self.product.security_contact, self.owner)
598
59
        notifications = view.request.response.notifications
599
60
        self.assertEqual(1, len(notifications))
600
61
        expected = (
601
62
            'Successfully changed the security contact to &lt;splat /&gt;.')
602
63
        self.assertEqual(expected, notifications.pop().message)
603
64
604
65
    def test_owner_appoint_self_from_another(self):
605
66
        self.product.security_contact = self.team
606
67
        form = self._makeForm(self.owner)
607
68
        view = create_initialized_view(
608
69
            self.product, name='+securitycontact', form=form)
609
70
        self.assertEqual([], view.errors)
610
71
        self.assertEqual(self.owner, self.product.security_contact)
611
72
612
73
    def test_owner_appoint_none(self):
613
74
        self.product.security_contact = self.owner
614
75
        form = self._makeForm(None)
615
76
        view = create_initialized_view(
616
77
            self.product, name='+securitycontact', form=form)
617
78
        self.assertEqual([], view.errors)
618
79
        self.assertEqual(self.product.security_contact, None)
619
80
        notifications = view.request.response.notifications
620
81
        self.assertEqual(1, len(notifications))
621
82
        expected = ('Successfully removed the security contact.')
622
83
        self.assertEqual(expected, notifications.pop().message)
623
84
624
85
    def test_owner_appoint_his_team(self):
625
86
        form = self._makeForm(self.team)
626
87
        view = create_initialized_view(
627
88
            self.product, name='+securitycontact', form=form)
628
89
        self.assertEqual([], view.errors)
629
90
        self.assertEqual(self.product.security_contact, self.team)
630
91
        notifications = view.request.response.notifications
631
92
        self.assertEqual(1, len(notifications))
632
93
        expected = ('Successfully changed the security contact to Thud.')
633
94
        self.assertEqual(expected, notifications.pop().message)
634
95
635
96
    def test_owner_cannot_appoint_another_team(self):
636
97
        team = self.factory.makeTeam(name='smack', displayname='<smack />')
637
98
        form = self._makeForm(team)
638
99
        view = create_initialized_view(
639
100
            self.product, name='+securitycontact', form=form)
640
101
        self.assertEqual(1, len(view.errors))
641
102
        expected = (
642
103
            'You cannot set &lt;smack /&gt; as the security contact for '
643
104
            '&lt;boing /&gt; because you are not an administrator of that '
644
105
            'team.<br />If you believe that &lt;smack /&gt; should be the '
645
106
            'security contact for &lt;boing /&gt;, notify one of the '
646
107
            '<a href="http://launchpad.dev/~smack/+members">&lt;smack /&gt; '
647
108
            'administrators</a>.')
648
109
        self.assertEqual(expected, view.errors.pop())
649
110
650
111
    def test_owner_cannot_appoint_a_nonvalid_user(self):
651
112
        form = self._makeForm(None)
652
113
        form['field.security_contact'] = 'fnord'
653
114
        view = create_initialized_view(
654
115
            self.product, name='+securitycontact', form=form)
655
116
        self.assertEqual(2, len(view.errors))
656
117
        expected = (
657
118
            'You must choose a valid person or team to be the '
658
119
            'security contact for &lt;boing /&gt;.')
659
120
        self.assertEqual(expected, view.errors.pop())
660
121
        self.assertTrue(isinstance(view.errors.pop(), ConversionError))
661
122
662
123
    def test_owner_cannot_appoint_another_user(self):
663
124
        another_user = self.factory.makePerson()
664
125
        form = self._makeForm(another_user)
665
126
        view = create_initialized_view(
666
127
            self.product, name='+securitycontact', form=form)
667
128
        self.assertEqual(1, len(view.errors))
668
129
        expected = (
669
130
            'You cannot set another person as the security contact for '
670
131
            '&lt;boing /&gt;.')
671
132
        self.assertEqual(expected, view.errors.pop())
672
133
673
134
    def test_admin_appoint_another_user(self):
674
135
        another_user = self.factory.makePerson()
675
136
        login('admin@canonical.com')
676
137
        form = self._makeForm(another_user)
677
138
        view = create_initialized_view(
678
139
            self.product, name='+securitycontact', form=form)
679
140
        self.assertEqual([], view.errors)
680
141
        self.assertEqual(another_user, self.product.security_contact)
681
142
682
143
    def test_admin_appoint_another_team(self):
683
144
        another_team = self.factory.makeTeam()
684
145
        login('admin@canonical.com')
685
146
        form = self._makeForm(another_team)
686
147
        view = create_initialized_view(
687
148
            self.product, name='+securitycontact', form=form)
688
149
        self.assertEqual([], view.errors)
689
150
        self.assertEqual(another_team, self.product.security_contact)
690
151
691
152
692
153
def test_suite():
693
154
    return unittest.TestLoader().loadTestsFromName(__name__)
694
0
155
695
=== modified file 'lib/lp/bugs/stories/bugs/xx-malone-security-contacts.txt'
696
--- lib/lp/bugs/stories/bugs/xx-malone-security-contacts.txt	2009-06-12 16:36:02 +0000
697
+++ lib/lp/bugs/stories/bugs/xx-malone-security-contacts.txt	2010-05-25 21:21:40 +0000
698
@@ -6,17 +6,15 @@
699
6
    >>> browser.open("http://localhost:9000/ubuntu/+securitycontact")
6
    >>> browser.open("http://localhost:9000/ubuntu/+securitycontact")
700
7
    >>> browser.getControl("Security Contact").value = "name16"
7
    >>> browser.getControl("Security Contact").value = "name16"
701
8
    >>> browser.getControl("Change").click()
8
    >>> browser.getControl("Change").click()
706
9
    >>> print browser.contents
9
    >>> for message in get_feedback_messages(browser.contents):
707
10
    <!DOCTYPE...
10
    ...     print extract_text(message)
708
11
    ...Successfully changed the security contact to foo.bar@canonical.com...
11
    Successfully changed the security contact to Foo Bar.
705
12
    ...
709
13
12
710
14
Or on an upstream.
13
Or on an upstream.
711
15
14
712
16
    >>> browser.open("http://localhost:9000/firefox/+securitycontact")
15
    >>> browser.open("http://localhost:9000/firefox/+securitycontact")
713
17
    >>> browser.getControl("Security Contact").value = "name21"
16
    >>> browser.getControl("Security Contact").value = "name21"
714
18
    >>> browser.getControl("Change").click()
17
    >>> browser.getControl("Change").click()
719
19
    >>> print browser.contents
18
    >>> for message in get_feedback_messages(browser.contents):
720
20
    <!DOCTYPE...
19
    ...     print extract_text(message)
721
21
    ...Successfully changed the security contact to Hoary Gnome Team...
20
    Successfully changed the security contact to Hoary Gnome Team.
718
22
    ...
722
23
21
723
=== modified file 'lib/lp/bugs/stories/initial-bug-contacts/05-set-distribution-bugcontact.txt'
724
--- lib/lp/bugs/stories/initial-bug-contacts/05-set-distribution-bugcontact.txt	2009-11-12 15:33:27 +0000
725
+++ lib/lp/bugs/stories/initial-bug-contacts/05-set-distribution-bugcontact.txt	2010-05-25 21:21:40 +0000
726
@@ -42,74 +42,11 @@
727
42
42
728
43
And then we're redirected to the distribution page.
43
And then we're redirected to the distribution page.
729
44
44
801
45
  >>> colin_browser.url
45
    >>> colin_browser.url
802
46
  'http://launchpad.dev/ubuntu'
46
    'http://launchpad.dev/ubuntu'
803
47
47
804
48
  >>> for tag in find_tags_by_class(colin_browser.contents,
48
    >>> for message in get_feedback_messages(colin_browser.contents):
805
49
  ...                               "informational message"):
49
    ...     print extract_text(message)
806
50
  ...     print tag
50
    Successfully changed the bug supervisor to Colin Watson.
807
51
  <div...Successfully changed the bug supervisor to ...Colin Watson...
51
    Colin Watson has also been subscribed to bug notifications for Ubuntu.
808
52
52
    You can change the subscriptions for Ubuntu at any time.
738
53
Now that the bug supervisor is set, there's a link to him on the
739
54
distribution's bug page page.
740
55
741
56
  >>> browser.open('http://bugs.launchpad.dev/ubuntu')
742
57
  >>> browser.getLink(url='/~kamion').url
743
58
  'http://launchpad.dev/~kamion'
744
59
745
60
When the bug supervisor doesn't have an email address, the displayname is
746
61
shown instead in the feedback message. Let's appoint the Ubuntu Team as
747
62
the bug supervisor. Since Colin is an administrator of this team, he can
748
63
do it.
749
64
750
65
  >>> colin_browser.open("http://launchpad.dev/ubuntu/+bugsupervisor")
751
66
  >>> colin_browser.getControl("Bug Supervisor").value = 'ubuntu-team'
752
67
  >>> colin_browser.getControl("Change").click()
753
68
754
69
  >>> print extract_text(colin_browser.contents)
755
70
  Ubuntu Linux in Launchpad
756
71
  ...
757
72
  Successfully changed the bug supervisor to Ubuntu Team.
758
73
  ...
759
74
760
75
While anybody with edit permissions can set the bug supervisor, only
761
76
certain persons can be successfully selected. All users can set
762
77
themselves self and teams they administer as the bug supervisor, as
763
78
shown above. But ordinary users cannot appoint other persons and teams
764
79
they do not administer.
765
80
766
81
    >>> colin_browser.open("http://launchpad.dev/ubuntu/+bugsupervisor")
767
82
    >>> colin_browser.getControl("Bug Supervisor").value = 'admins'
768
83
    >>> colin_browser.getControl("Change").click()
769
84
    >>> print extract_text(colin_browser.contents)
770
85
    Edit bug supervisor for Ubuntu : Ubuntu
771
86
    ...
772
87
    You cannot set Launchpad Administrators as the bug supervisor for
773
88
    Ubuntu because you are not an administrator of that team.
774
89
    If you believe that Launchpad Administrators should be the bug
775
90
    supervisor for Ubuntu, please notify one of the Launchpad
776
91
    Administrators administrators.
777
92
    ...
778
93
779
94
But members of the Launchpad administration team can appoint anybody
780
95
as bug supervisors, teams...
781
96
782
97
    >>> admin_browser.open("http://launchpad.dev/ubuntu/+bugsupervisor")
783
98
    >>> admin_browser.getControl("Bug Supervisor").value = 'ubuntu-translators'
784
99
    >>> admin_browser.getControl("Change").click()
785
100
    >>> print extract_text(admin_browser.contents)
786
101
    Ubuntu Linux in Launchpad
787
102
    ...
788
103
    Successfully changed the bug supervisor to Ubuntu Translators.
789
104
    ...
790
105
791
106
...as well as persons.
792
107
793
108
    >>> admin_browser.open("http://launchpad.dev/ubuntu/+bugsupervisor")
794
109
    >>> admin_browser.getControl("Bug Supervisor").value = 'carlos'
795
110
    >>> admin_browser.getControl("Change").click()
796
111
    >>> print extract_text(admin_browser.contents)
797
112
    Ubuntu Linux in Launchpad
798
113
    ...
799
114
    Successfully changed the bug supervisor to Carlos Perelló Marín.
800
115
    ...
809
116
53
810
=== modified file 'lib/lp/bugs/stories/initial-bug-contacts/10-set-upstream-bugcontact.txt'
811
--- lib/lp/bugs/stories/initial-bug-contacts/10-set-upstream-bugcontact.txt	2010-03-31 20:25:33 +0000
812
+++ lib/lp/bugs/stories/initial-bug-contacts/10-set-upstream-bugcontact.txt	2010-05-25 21:21:40 +0000
813
@@ -38,39 +38,6 @@
814
38
    Successfully changed the bug supervisor to Landscape Developers.
38
    Successfully changed the bug supervisor to Landscape Developers.
815
39
    ...
39
    ...
816
40
40
817
41
If Sample Person tries to appoint another person, he'll get an error message.
818
42
819
43
    >>> sample_browser.open("http://localhost:9000/firefox/+bugsupervisor")
820
44
    >>> sample_browser.getControl(name="field.bug_supervisor").value = (
821
45
    ...                           "robertc@robertcollins.net")
822
46
    >>> sample_browser.getControl("Change").click()
823
47
    >>> print sample_browser.url
824
48
    http://localhost:9000/firefox/+bugsupervisor
825
49
    >>> print extract_text(sample_browser.contents)
826
50
    Edit bug supervisor for Mozilla Firefox : Mozilla Firefox
827
51
    ...
828
52
    You cannot set another person as the bug supervisor for Mozilla Firefox.
829
53
    See the help wiki for information about setting a bug supervisor.
830
54
    The person or team responsible for bug management.
831
55
    ...
832
56
833
57
If he tries to appoint a team which he does not administer, he'll get
834
58
too an an error message.
835
59
836
60
    >>> sample_browser.getControl(name="field.bug_supervisor").value = (
837
61
    ...                           "guadamen")
838
62
    >>> sample_browser.getControl("Change").click()
839
63
    >>> print sample_browser.url
840
64
    http://localhost:9000/firefox/+bugsupervisor
841
65
    >>> print extract_text(sample_browser.contents)
842
66
    Edit bug supervisor for Mozilla Firefox : Mozilla Firefox
843
67
    ...
844
68
    You cannot set GuadaMen as the bug supervisor for Mozilla Firefox
845
69
    because you are not an administrator of that team.
846
70
    If you believe that GuadaMen should be the bug supervisor for Mozilla
847
71
    Firefox, please notify one of the GuadaMen administrators.
848
72
    ...
849
73
850
74
Launchpad administrators can appoint anybody.
41
Launchpad administrators can appoint anybody.
851
75
42
852
76
    >>> admin_browser = setupBrowser()
43
    >>> admin_browser = setupBrowser()
853
@@ -86,101 +53,3 @@
854
86
    ...
53
    ...
855
87
    Successfully changed the bug supervisor to Robert Collins.
54
    Successfully changed the bug supervisor to Robert Collins.
856
88
    ...
55
    ...
857
89
858
90
859
91
= Teams as Bug Supervisors =
860
92
861
93
First, some setup. We create a new product owned by "Sample Person", using a
862
94
separate browser instance to avoid breaking the other page tests.
863
95
864
96
    >>> sample_browser.open('http://launchpad.dev/projects/+new')
865
97
    >>> sample_browser.getControl('URL').value = 'testy'
866
98
    >>> sample_browser.getControl('Name').value = 'Test Product'
867
99
    >>> sample_browser.getControl('Title').value = (
868
100
    ...     'A product for testing things')
869
101
    >>> sample_browser.getControl('Summary').value = (
870
102
    ...     'Testing team bug supervisors')
871
103
    >>> sample_browser.getControl('Continue').click()
872
104
873
105
    # XXX Add Description: field
874
106
    >>> #sample_browser.getControl('Description').value = 'See bug 109652'
875
107
    >>> sample_browser.getControl(name='field.licenses').value = ['GNU_GPL_V2']
876
108
    >>> sample_browser.getControl(name='field.license_info').value = 'foo'
877
109
    >>> sample_browser.getControl('Complete Registration').click()
878
110
    >>> sample_browser.url
879
111
    'http://launchpad.dev/testy'
880
112
881
113
By default, a newly created project doesn't use Launchpad for bug
882
114
tracking, and none of the bug lists or edit controls will be
883
115
available.
884
116
885
117
    >>> sample_browser.getLink('Bugs').click()
886
118
    >>> uses_malone_p = find_tag_by_id(sample_browser.contents, 'no-malone')
887
119
    >>> print extract_text(uses_malone_p)
888
120
    A product for testing things does not use Launchpad for bug tracking.
889
121
890
122
We can change the settings to use Launchpad for bug tracking.
891
123
892
124
    >>> sample_browser.getLink(
893
125
    ...     'Configure bug tracker').click()
894
126
    >>> print sample_browser.title
895
127
    Configure bug tracker : Bugs : Test Product
896
128
    >>> sample_browser.getControl('In Launchpad').click()
897
129
    >>> sample_browser.getControl('Change').click()
898
130
899
131
Now, information about bug tracking (bug supervisor, security contact)
900
132
and their edit controls are available on the page.
901
133
902
134
    >>> bug_supervisor = find_tag_by_id(
903
135
    ...     sample_browser.contents, 'bug-supervisor')
904
136
    >>> print extract_text(bug_supervisor)
905
137
    Bug supervisor:
906
138
    None set
907
139
908
140
Sample Person is a member of "Warty Security Team".  However, he should not be
909
141
able to set Warty Security Team as a bug supervisor for Test Project as he's
910
142
not an admin of that team.
911
143
912
144
    >>> sample_browser.getLink('Change bug supervisor').click()
913
145
    >>> sample_browser.url
914
146
    'http://bugs.launchpad.dev/testy/+bugsupervisor'
915
147
916
148
    >>> sample_browser.getControl('Bug Supervisor').value = 'name20'
917
149
    >>> sample_browser.getControl('Change').click()
918
150
    >>> 'Successfully changed the bug supervisor' not in sample_browser.contents
919
151
    True
920
152
921
153
    >>> print sample_browser.contents
922
154
    <!DOCTYPE...
923
155
    ...You cannot set Warty Security Team as the bug supervisor...
924
156
    ...you are not an administrator of that team...
925
157
926
158
In the warning, the user will be pointed to the Warty Security Team's
927
159
membership page and advised to contact an administrator if she believes that
928
160
the team should be a bug supervisor.
929
161
930
162
    >>> sample_browser.getLink('Warty Security Team administrators').click()
931
163
    >>> sample_browser.url
932
164
    'http://launchpad.dev/~name20/+members'
933
165
934
166
Launchpad admins can set a team as bug supervisor without any warnings,
935
167
however, whether they're in the team or not.
936
168
937
169
    >>> login('test@canonical.com')
938
170
939
171
    >>> from zope.component import getUtility
940
172
    >>> from canonical.launchpad.interfaces import (
941
173
    ...     IPersonSet)
942
174
    >>> security_team = getUtility(IPersonSet).getByName('name20')
943
175
    >>> foo_bar = getUtility(IPersonSet).getByName('name16')
944
176
    >>> foo_bar.inTeam(security_team)
945
177
    False
946
178
947
179
    >>> logout()
948
180
949
181
    >>> admin_browser.open('http://bugs.launchpad.dev/testy/+bugsupervisor')
950
182
    >>> admin_browser.getControl('Bug Supervisor').value = 'name20'
951
183
    >>> admin_browser.getControl('Change').click()
952
184
    >>> 'Successfully changed the bug supervisor' in admin_browser.contents
953
185
    True
954
186
955
187
56
956
=== modified file 'lib/lp/bugs/stories/initial-bug-contacts/25-file-distribution-bug.txt'
957
--- lib/lp/bugs/stories/initial-bug-contacts/25-file-distribution-bug.txt	2009-11-12 12:01:22 +0000
958
+++ lib/lp/bugs/stories/initial-bug-contacts/25-file-distribution-bug.txt	2010-05-25 21:21:40 +0000
959
@@ -19,9 +19,9 @@
960
19
    >>> print browser.url.replace(bug_id, "BUG-ID")
19
    >>> print browser.url.replace(bug_id, "BUG-ID")
961
20
    http://bugs.launchpad.dev/ubuntu/+source/mozilla-firefox/+bug/BUG-ID
20
    http://bugs.launchpad.dev/ubuntu/+source/mozilla-firefox/+bug/BUG-ID
962
21
21
966
22
We should have six subscribers now. The bug reporter (also a package
22
We should have three subscribers now. The bug reporter (also a package
967
23
subscriber), mark, the distro bug supervisor, ubuntu-team, and carlos
23
subscriber), mark, the distro bug supervisor kamion, and foobar, who is
968
24
and foobar, who are subscribed to the distribution.
24
subscribed to the distribution.
969
25
25
970
26
    >>> from zope.component import getUtility
26
    >>> from zope.component import getUtility
971
27
    >>> from canonical.launchpad.interfaces import IBugSet
27
    >>> from canonical.launchpad.interfaces import IBugSet
972
@@ -36,8 +36,7 @@
973
36
36
974
37
    >>> bugset = getUtility(IBugSet)
37
    >>> bugset = getUtility(IBugSet)
975
38
    >>> subscriber_names(bugset.get(bug_id))
38
    >>> subscriber_names(bugset.get(bug_id))
978
39
    [u'carlos', u'kamion', u'mark', u'name16', u'ubuntu-team',
39
    [u'kamion', u'mark', u'name16']
977
40
    u'ubuntu-translators']
979
41
40
980
42
    >>> logout()
41
    >>> logout()
981
43
42
Reviewer	Review Type	Date Requested	Status
Henning Eggers (community)	code	2010-05-24	Approve on 2010-05-25
Review via email: mp+25911@code.launchpad.net