Make possible test Security for Anonymous

With this change, by using "None" instead username at any SecurityTestCase assertion, it test security as Anonymous. ie.: self.failIfUserCanViewDocument(None, document)

Make possible test Security for Anonymous
With this change, by using "None" instead username at any SecurityTestCase assertion, it test security as Anonymous. ie.: self.failIfUserCanViewDocument(None, document)
99de00d9 · Rafael Monnerat · 8cece721 · 99de00d9
Commit 99de00d9 authored Jan 24, 2013 by Rafael Monnerat 👻
Hide whitespace changes
Inline Side-by-side

Showing with 9 additions and 4 deletions

product/ERP5Type/tests/SecurityTestCase.py product/ERP5Type/tests/SecurityTestCase.py +9 -4

No files found.
--- a/product/ERP5Type/tests/SecurityTestCase.py
+++ b/product/ERP5Type/tests/SecurityTestCase.py
@@ -33,6 +33,7 @@ from pprint import pformat
 from AccessControl.SecurityManagement import newSecurityManager
 from AccessControl.SecurityManagement import getSecurityManager
 from AccessControl.SecurityManagement import setSecurityManager
+from AccessControl import SpecialUsers
 from Products.DCWorkflow.Transitions import TRIGGER_USER_ACTION

 from Products.ERP5Type.tests.ERP5TypeTestCase import ERP5TypeTestCase
@@ -128,11 +129,15 @@ class SecurityTestCase(ERP5TypeTestCase):

  def _loginAsUser(self, username):
    """Login as a given username. The user must exist.
+       In case Username is None, we consider test as Anonymous.
    """
-    uf = self.getPortal().acl_users
-    user = uf.getUserById(username)
-    self.assertNotEquals(user, None, 'No user %s' % username)
-    newSecurityManager(None, user.__of__(uf))
+    if username is None:
+      newSecurityManager(None, SpecialUsers.nobody)
+    else:
+      uf = self.getPortal().acl_users
+      user = uf.getUserById(username)
+      self.assertNotEquals(user, None, 'No user %s' % username)
+      newSecurityManager(None, user.__of__(uf))
  
  # Permission methods
  failIfUserCanViewDocument = AssertNoPermissionMethod(