tests: fix tests Grant and Revoke NoSu

laines-it · oleg-jukovec · oleg-jukovec · commit 3e2904974e62 · 2026-01-20T18:03:20.000+03:00
Fixed box/testdata/config.lua. Now, tests follow new Tarantool behavior: the 'super' roles now contains the 'grant' previlege. So we need to set a list of privileges directly instead of the 'super' role usage. Closes #511 Co-authored-by: Oleg Jukovec <oleg.jukovec@gmail.com>
diff --git a/box/example_test.go b/box/example_test.go
@@ -229,16 +229,16 @@ func ExampleSchemaUser_Info() {
 		log.Fatalf("Failed to get password hash: %s", err)
 	}
 
-	hasSuper := false
+	hasPublic := false
 	for _, i := range info {
-		if i.Name == "super" && i.Type == box.PrivilegeRole {
-			hasSuper = true
+		if i.Name == "public" && i.Type == box.PrivilegeRole {
+			hasPublic = true
 		}
 	}
 
-	if hasSuper {
-		fmt.Printf("User have super privileges")
+	if hasPublic {
+		fmt.Printf("User have public privileges")
 	}
 	// Output:
-	// User have super privileges
+	// User have public privileges
 }
diff --git a/box/tarantool_test.go b/box/tarantool_test.go
@@ -410,7 +410,7 @@ func TestSchemaUser_Info_TestUserCorrect(t *testing.T) {
 	require.NoError(t, err)
 	require.NotNil(t, privileges)
 
-	require.Len(t, privileges, 4)
+	require.Len(t, privileges, 3)
 }
 
 func TestSchemaUser_Info_NonExistsUser(t *testing.T) {
@@ -529,14 +529,20 @@ func TestSchemaUser_Revoke_WithoutSu(t *testing.T) {
 	err = b.Schema().User().Create(ctx, username, box.UserCreateOptions{Password: password})
 	require.NoError(t, err)
 
+	startPrivileges, err := b.Schema().User().Info(ctx, username)
+	require.NoError(t, err)
+
+	require.NotEmpty(t, startPrivileges)
+	// Let's choose random first privilege.
+	examplePriv := startPrivileges[1]
+
 	// Can`t revoke without su permissions.
-	err = b.Schema().User().Grant(ctx, username, box.Privilege{
-		Permissions: []box.Permission{
-			box.PermissionRead,
-		},
-		Type: box.PrivilegeSpace,
-		Name: "space1",
-	}, box.UserGrantOptions{IfNotExists: false})
+	err = b.Schema().User().Revoke(ctx,
+		username,
+		examplePriv,
+		box.UserRevokeOptions{
+			IfExists: false,
+		})
 	require.Error(t, err)
 
 	// Require that error code is ER_ACCESS_DENIED.
@@ -574,7 +580,7 @@ func TestSchemaUser_Revoke_WithSu(t *testing.T) {
 
 	require.NotEmpty(t, startPrivileges)
 	// Let's choose random first privilege.
-	examplePriv := startPrivileges[0]
+	examplePriv := startPrivileges[1]
 
 	// Revoke it.
 	err = b.Schema().User().Revoke(ctx,
diff --git a/box/testdata/config.lua b/box/testdata/config.lua
@@ -6,8 +6,9 @@ box.cfg{
 
 box.schema.space.create('space1')
 
+local privileges = 'session,usage,alter,drop,read,write,create,execute'
 box.schema.user.create('test', { password = 'test' , if_not_exists = true })
-box.schema.user.grant('test', 'super', nil, nil, { if_not_exists = true })
+box.schema.user.grant('test', privileges, 'universe', nil, { if_not_exists = true })
 
 -- Set listen only when every other thing is configured.
 box.cfg{

Original file line number	Diff line number	Diff line change
`@@ -229,16 +229,16 @@ func ExampleSchemaUser_Info() {`
`229`	`229`	`log.Fatalf("Failed to get password hash: %s", err)`
`230`	`230`	`}`
`231`	`231`
`232`		`- hasSuper := false`
	`232`	`+ hasPublic := false`
`233`	`233`	`for _, i := range info {`
`234`		`- if i.Name == "super" && i.Type == box.PrivilegeRole {`
`235`		`- hasSuper = true`
	`234`	`+ if i.Name == "public" && i.Type == box.PrivilegeRole {`
	`235`	`+ hasPublic = true`
`236`	`236`	`}`
`237`	`237`	`}`
`238`	`238`
`239`		`- if hasSuper {`
`240`		`- fmt.Printf("User have super privileges")`
	`239`	`+ if hasPublic {`
	`240`	`+ fmt.Printf("User have public privileges")`
`241`	`241`	`}`
`242`	`242`	`// Output:`
`243`		`- // User have super privileges`
	`243`	`+ // User have public privileges`
`244`	`244`	`}`