Fixing tests based on 3.17.0 and ML 10.0-2

Author: rjrudin

src/test/java/com/marklogic/appdeployer/MergeResourcesWhileDeployingTest.java

@@ -2,6 +2,7 @@
 
 import com.marklogic.appdeployer.command.appservers.DeployOtherServersCommand;
 import com.marklogic.appdeployer.command.databases.DeployOtherDatabasesCommand;
+import com.marklogic.appdeployer.command.security.DeployPrivilegeRolesCommand;
 import com.marklogic.appdeployer.command.security.DeployPrivilegesCommand;
 import com.marklogic.appdeployer.command.security.DeployRolesCommand;
 import com.marklogic.appdeployer.command.security.DeployUsersCommand;
@@ -79,7 +80,7 @@ public void roles() {
 
 	@Test
 	public void privileges() {
-		initializeAppDeployer(new DeployPrivilegesCommand());
+		initializeAppDeployer(new DeployPrivilegesCommand(), new DeployPrivilegeRolesCommand());
 		deploySampleApp();
 
 		PrivilegeManager mgr = new PrivilegeManager(manageClient);

src/test/java/com/marklogic/appdeployer/command/modules/LoadModulesTest.java

@@ -71,8 +71,8 @@ public void customModuleTimestampsPath() {
 		appDeployer.deploy(appConfig);
 		assertTrue("The custom file should have been created when the modules were loaded", customFile.exists());
 
-		DefaultModulesLoader loader = (DefaultModulesLoader)command.getModulesLoader();
-		PropertiesModuleManager manager = (PropertiesModuleManager)loader.getModulesManager();
+		DefaultModulesLoader loader = (DefaultModulesLoader) command.getModulesLoader();
+		PropertiesModuleManager manager = (PropertiesModuleManager) loader.getModulesManager();
 		assertEquals("The host should have been set on the PropertiesModuleManager via DefaultModulesLoaderFactory " +
 			"so that module timestamps account for the host", appConfig.getHost(), manager.getHost());
 	}
@@ -101,19 +101,13 @@ public void loadModulesWithCustomPermissions() {
 		appDeployer.deploy(appConfig);
 
 		PermissionsFragment perms = getDocumentPermissions("/ext/sample-lib.xqy", modulesXccTemplate);
-		perms.assertPermissionCount(6);
-
 		// Default permissions set by AppConfig
 		perms.assertPermissionExists("rest-admin", "read");
 		perms.assertPermissionExists("rest-admin", "update");
 		perms.assertPermissionExists("rest-extension-user", "execute");
 
 		// Custom permission
 		perms.assertPermissionExists("app-user", "execute");
-
-		// Permissions that the REST API still applies, which seems like a bug
-		perms.assertPermissionExists("rest-reader", "read");
-		perms.assertPermissionExists("rest-writer", "update");
 	}
 
 	@Test
@@ -184,27 +178,11 @@ public void includeModulesPattern() {
 
 	private void assertModuleExistsWithDefaultPermissions(String message, String uri) {
 		assertEquals(message, "true", modulesXccTemplate.executeAdhocQuery(format("fn:doc-available('%s')", uri)));
-		assertDefaultPermissionsExists(uri);
-	}
-
-	/**
-	 * Apparently, the REST API won't let you remove these 3 default permissions, they're always present.
-	 * <p>
-	 * And, now that we're loading modules via the REST API by default, rest-reader/read and rest-writer/update are
-	 * always present, at least on 8.0-6.3 and 9.0-1.1, which seems like a bug.
-	 */
-	private void assertDefaultPermissionsExists(String uri) {
 		PermissionsFragment perms = getDocumentPermissions(uri, modulesXccTemplate);
-		perms.assertPermissionCount(5);
 		perms.assertPermissionExists("rest-admin", "read");
 		perms.assertPermissionExists("rest-admin", "update");
 		perms.assertPermissionExists("rest-extension-user", "execute");
-
-		// Not really expected!
-		perms.assertPermissionExists("rest-reader", "read");
-		perms.assertPermissionExists("rest-writer", "update");
 	}
-
 }
 
 class TestFileFilter extends DefaultFileFilter {

src/test/java/com/marklogic/appdeployer/command/restapis/CreateRestApiAsNonAdminUserTest.java

@@ -1,12 +1,5 @@
 package com.marklogic.appdeployer.command.restapis;
 
-import java.io.File;
-
-import org.junit.After;
-import org.junit.Before;
-import org.junit.Test;
-import org.springframework.beans.factory.annotation.Autowired;
-
 import com.marklogic.appdeployer.AbstractAppDeployerTest;
 import com.marklogic.appdeployer.ConfigDir;
 import com.marklogic.appdeployer.command.security.DeployRolesCommand;
@@ -15,58 +8,59 @@
 import com.marklogic.mgmt.ManageClient;
 import com.marklogic.mgmt.ManageConfig;
 import com.marklogic.xcc.template.XccTemplate;
+import org.junit.After;
+import org.junit.Before;
+import org.junit.Test;
+import org.springframework.beans.factory.annotation.Autowired;
 
-public class CreateRestApiAsNonAdminUserTest extends AbstractAppDeployerTest {
+import java.io.File;
 
-    @Autowired
-    private ManageConfig manageConfig;
+public class CreateRestApiAsNonAdminUserTest extends AbstractAppDeployerTest {
 
-    private XccTemplate xccTemplate;
+	@Autowired
+	private ManageConfig manageConfig;
 
-    @Before
-    public void setup() {
-        xccTemplate = newModulesXccTemplate();
-    }
+	private XccTemplate xccTemplate;
 
-    @After
-    public void teardown() {
-        undeploySampleApp();
-    }
+	@Before
+	public void setup() {
+		xccTemplate = newModulesXccTemplate();
+	}
 
-    @Test
-    @SuppressWarnings("deprecation")
-    public void test() {
-        // Use config specific to this test
-        appConfig.setConfigDir(new ConfigDir(new File("src/test/resources/non-admin-test/ml-config")));
-        appConfig.getModulePaths().clear();
-        appConfig.getModulePaths().add("src/test/resources/non-admin-test/ml-modules");
+	@After
+	public void teardown() {
+		undeploySampleApp();
+	}
 
-        // Now rebuild ManageClient using a ManageConfig that doesn't require the admin user
-        ManageConfig newConfig = new ManageConfig(manageConfig.getHost(), manageConfig.getPort(),
-                "sample-app-manage-admin", "sample-app-manage-admin");
-        // Need to set this to the admin user so that user is used to create our app-specific users/roles/privileges
-        newConfig.setAdminUsername(manageConfig.getUsername());
-        newConfig.setAdminPassword(manageConfig.getPassword());
-        this.manageClient = new ManageClient(newConfig);
+	@Test
+	@SuppressWarnings("deprecation")
+	public void test() {
+		// Use config specific to this test
+		appConfig.setConfigDir(new ConfigDir(new File("src/test/resources/non-admin-test/ml-config")));
+		appConfig.getModulePaths().clear();
+		appConfig.getModulePaths().add("src/test/resources/non-admin-test/ml-modules");
 
-        // And ensure we use our custom user for loading modules; the custom app role has the privileges required for
-        // inserting modules via the REST API
-        appConfig.setRestAdminUsername("sample-app-rest-admin");
-        appConfig.setRestAdminPassword("sample-app-rest-admin");
+		// Now rebuild ManageClient using a ManageConfig that doesn't require the admin user
+		ManageConfig newConfig = new ManageConfig(manageConfig.getHost(), manageConfig.getPort(),
+			"sample-app-manage-admin", "sample-app-manage-admin");
+		// Need to set this to the admin user so that user is used to create our app-specific users/roles/privileges
+		newConfig.setAdminUsername(manageConfig.getUsername());
+		newConfig.setAdminPassword(manageConfig.getPassword());
+		this.manageClient = new ManageClient(newConfig);
 
-        initializeAppDeployer(new DeployRestApiServersCommand(true), new DeployRolesCommand(), new DeployUsersCommand(),
-                buildLoadModulesCommand());
-        appDeployer.deploy(appConfig);
+		// And ensure we use our custom user for loading modules; the custom app role has the privileges required for
+		// inserting modules via the REST API
+		appConfig.setRestAdminUsername("sample-app-rest-admin");
+		appConfig.setRestAdminPassword("sample-app-rest-admin");
 
-        // And now ensure that the module was loaded correctly
-        PermissionsFragment perms = getDocumentPermissions("/ext/hello-lib.xqy", xccTemplate);
-        perms.assertPermissionCount(5);
-        perms.assertPermissionExists("rest-admin", "read");
-        perms.assertPermissionExists("rest-admin", "update");
-        perms.assertPermissionExists("rest-extension-user", "execute");
+		initializeAppDeployer(new DeployRestApiServersCommand(true), new DeployRolesCommand(), new DeployUsersCommand(),
+			buildLoadModulesCommand());
+		appDeployer.deploy(appConfig);
 
-        // Non-expected permissions that ML, as of 9.0-1.1, still adds by default
-	    perms.assertPermissionExists("rest-reader", "read");
-	    perms.assertPermissionExists("rest-writer", "update");
-    }
+		// And now ensure that the module was loaded correctly
+		PermissionsFragment perms = getDocumentPermissions("/ext/hello-lib.xqy", xccTemplate);
+		perms.assertPermissionExists("rest-admin", "read");
+		perms.assertPermissionExists("rest-admin", "update");
+		perms.assertPermissionExists("rest-extension-user", "execute");
+	}
 }

src/test/java/com/marklogic/appdeployer/scaffold/WritePrivilegeTest.java

@@ -1,5 +1,6 @@
 package com.marklogic.appdeployer.scaffold;
 
+import com.marklogic.appdeployer.command.security.DeployPrivilegeRolesCommand;
 import com.marklogic.appdeployer.command.security.DeployPrivilegesCommand;
 import com.marklogic.mgmt.api.security.Privilege;
 import com.marklogic.mgmt.template.security.PrivilegeTemplateBuilder;
@@ -11,7 +12,7 @@ public class WritePrivilegeTest extends AbstractResourceWriterTest {
 
 	@Test
 	public void defaultValues() {
-		initializeAppDeployer(new DeployPrivilegesCommand());
+		initializeAppDeployer(new DeployPrivilegesCommand(), new DeployPrivilegeRolesCommand());
 		buildResourceAndDeploy(new PrivilegeTemplateBuilder());
 
 		Privilege p = api.privilegeExecute("CHANGEME-name-of-privilege");
@@ -31,16 +32,13 @@ public void uriPrivilege() {
 		propertyMap.put("privilege-name", "CHANGEME-uri-privilege");
 		propertyMap.put("action", "test");
 		propertyMap.put("kind", "uri");
+		propertyMap.put("role", null);
 		buildResourceAndDeploy(new PrivilegeTemplateBuilder());
 
 		Privilege p = api.privilegeUri("CHANGEME-uri-privilege");
 		// Odd, the Manage API automatically appends a "/"
 		assertEquals("test/", p.getAction());
 		assertEquals("uri", p.getKind());
-
-		List<String> roles = p.getRole();
-		assertEquals(2, roles.size());
-		assertTrue(roles.contains("rest-reader"));
-		assertTrue(roles.contains("rest-writer"));
+		assertNull(p.getRole());
 	}
 }

src/test/java/com/marklogic/mgmt/api/security/SortRolesTest.java

@@ -92,17 +92,18 @@ public void evenMoreRolesWithDependencies() throws Exception {
 
 		sortRoles();
 
+		List<String> roleNames = new ArrayList<>();
+		for (Role role : roles) {
+			roleNames.add(role.getRoleName());
+		}
+
 		assertEquals("xyz-reader", roles.get(0).getRoleName());
 		assertEquals("xyz-writer", roles.get(1).getRoleName());
-		assertEquals("xyz-admin", roles.get(2).getRoleName());
-		assertEquals("abc-sss-ui-role", roles.get(3).getRoleName());
-		assertEquals("abc-ui-offline-user", roles.get(4).getRoleName());
-		assertEquals("abc-ui-offline-admin", roles.get(5).getRoleName());
-		assertEquals("Doesn't matter when this is created because it has no dependencies",
-			"abc-ui-developer", roles.get(6).getRoleName());
-		assertEquals("abc-ui-admin", roles.get(7).getRoleName());
-		assertEquals("Doesn't matter when this is created because it has no dependencies",
-			"abc-login-role", roles.get(8).getRoleName());
+
+		// The exact positions of these don't matter, but rather the order does
+		assertTrue(roleNames.indexOf("abc-ui-offline-user") > roleNames.indexOf("abc-sss-ui-role"));
+		assertTrue(roleNames.indexOf("abc-ui-offline-admin") > roleNames.indexOf("abc-ui-offline-user"));
+		assertTrue(roleNames.indexOf("abc-ui-admin") > roleNames.indexOf("abc-ui-offline-admin"));
 	}
 
 	private void sortRoles() {