123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264 |
- # Copyright (C) 2012-2025 Zammad Foundation, https://zammad-foundation.org/
- require 'browser_test_helper'
- class AdminRoleTest < TestCase
- def test_role_device
- @browser = browser_instance
- login(
- username: 'admin@example.com',
- password: 'test',
- url: browser_url,
- )
- tasks_close_all
- rand = SecureRandom.uuid
- login = "agent-role-#{rand}"
- firstname = "Role#{rand}"
- lastname = "Module#{rand}"
- email = "agent-role-#{rand}@example.com"
- password = 'agentpw'
- user_create(
- data: {
- login: login,
- firstname: firstname,
- lastname: lastname,
- email: email,
- password: password,
- },
- )
- name = "somerole#{rand}"
- role_create(
- data: {
- name: name,
- default_at_signup: false,
- permission: [
- 'admin.group',
- 'user_preferences.device',
- ],
- member: [login],
- }
- )
- logout
- # flanky
- login(
- username: email,
- password: password,
- url: browser_url,
- )
- tasks_close_all
- click(css: 'a[href="#current_user"]')
- click(css: 'a[href="#profile"]')
- match(
- css: '.content .NavBarProfile',
- value: 'Password',
- )
- match(
- css: '.content .NavBarProfile',
- value: 'Language',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Notifications',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Calendar',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Token Access',
- )
- match(
- css: '.content .NavBarProfile',
- value: 'Devices',
- )
- logout
- login(
- username: 'admin@example.com',
- password: 'test',
- url: browser_url,
- )
- role_edit(
- data: {
- name: name,
- active: false,
- }
- )
- logout
- login(
- username: email,
- password: password,
- url: browser_url,
- )
- tasks_close_all
- click(css: 'a[href="#current_user"]')
- click(css: 'a[href="#profile"]')
- match(
- css: '.content .NavBarProfile',
- value: 'Password',
- )
- match(
- css: '.content .NavBarProfile',
- value: 'Language',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Notifications',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Calendar',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Token Access',
- )
- match_not(
- css: '.content .NavBarProfile',
- value: 'Devices',
- )
- end
- def test_role_admin_user
- @browser = browser_instance
- login(
- username: 'agent1@example.com',
- password: 'test',
- url: browser_url,
- )
- # check if admin exists
- exists_not(css: '[href="#manage"]')
- logout
- # add admin.user to agent role
- login(
- username: 'admin@example.com',
- password: 'test',
- url: browser_url,
- )
- tasks_close_all
- role_edit(
- data: {
- name: 'Agent',
- active: true,
- permission: {
- 'admin.user' => true,
- 'chat.agent' => true,
- 'cti.agent' => true,
- 'ticket.agent' => true,
- 'user_preferences' => true,
- },
- }
- )
- logout
- # check if admin exists
- login(
- username: 'agent1@example.com',
- password: 'test',
- url: browser_url,
- )
- tasks_close_all
- # create user
- random = SecureRandom.uuid
- user_email = "admin.user.#{random}@example.com"
- user_create(
- data: {
- # login: "some login #{random}",
- firstname: "Admin.User Firstname #{random}",
- lastname: "Admin.User Lastname #{random}",
- email: user_email,
- password: 'some-pass',
- },
- )
- # create ticket for user
- ticket_create(
- data: {
- customer: user_email,
- group: 'Users',
- title: 'some changes',
- body: 'some body 123äöü - admin.user',
- },
- )
- # revoke admin.user
- logout
- login(
- username: 'admin@example.com',
- password: 'test',
- url: browser_url,
- )
- tasks_close_all
- role_edit(
- data: {
- name: 'Agent',
- active: true,
- permission: {
- 'admin.user' => false,
- 'chat.agent' => true,
- 'cti.agent' => true,
- 'ticket.agent' => true,
- 'user_preferences' => true,
- },
- }
- )
- logout
- login(
- username: 'agent1@example.com',
- password: 'test',
- url: browser_url,
- )
- # check if admin exists
- exists_not(css: '[href="#manage"]')
- end
- # regression test for issue #2332 - Role-Filter shows inactive Roles
- def test_inactive_roles_do_not_show_in_role_filter
- name = "some role #{SecureRandom.uuid}"
- @browser = browser_instance
- login(
- username: 'admin@example.com',
- password: 'test',
- url: browser_url,
- )
- tasks_close_all
- role_create(
- data: {
- name: name,
- permission: [
- 'admin.group',
- 'user_preferences.device',
- ],
- active: false
- }
- )
- click(
- css: '.content.active a[href="#manage/users"]',
- )
- # an inactive role should not appear in the role filter tabs
- match_not(
- css: '.content.active .userSearch',
- value: name,
- )
- end
- end
|