Google Git
Sign in
apache/casbin-pycasbin/refs/heads/develop/./tests/test_distributed_api.py
blob: 205db5d8bd87e5ea93455613c768a0e168041a62 [file] [log] [blame]
# Copyright 2021 The casbin Authors. All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
import casbin
from tests.test_enforcer import get_examples, TestCaseBase
class TestDistributedApi(TestCaseBase):
def get_enforcer(self, model=None, adapter=None):
return casbin.DistributedEnforcer(
model,
adapter,
)
def test(self):
e = self.get_enforcer(get_examples("rbac_model.conf"), get_examples("rbac_policy.csv"))
e.add_policy_self(
False,
"p",
"p",
[
["alice", "data1", "read"],
["bob", "data2", "write"],
["data2_admin", "data2", "read"],
["data2_admin", "data2", "write"],
],
)
e.add_policy_self(False, "g", "g", [["alice", "data2_admin"]])
self.assertTrue(e.enforce("alice", "data1", "read"))
self.assertFalse(e.enforce("alice", "data1", "write"))
self.assertTrue(e.enforce("bob", "data2", "write"))
self.assertFalse(e.enforce("bob", "data2", "read"))
self.assertTrue(e.enforce("data2_admin", "data2", "read"))
self.assertTrue(e.enforce("data2_admin", "data2", "write"))
self.assertTrue(e.enforce("alice", "data2", "read"))
self.assertTrue(e.enforce("alice", "data2", "write"))
e.update_policy_self(False, "p", "p", ["alice", "data1", "read"], ["alice", "data1", "write"])
e.update_policy_self(False, "g", "g", ["alice", "data2_admin"], ["tom", "alice"])
self.assertFalse(e.enforce("alice", "data1", "read"))
self.assertTrue(e.enforce("alice", "data1", "write"))
self.assertFalse(e.enforce("bob", "data2", "read"))
self.assertTrue(e.enforce("bob", "data2", "write"))
self.assertTrue(e.enforce("data2_admin", "data2", "read"))
self.assertTrue(e.enforce("data2_admin", "data2", "write"))
self.assertFalse(e.enforce("tom", "data1", "read"))
self.assertTrue(e.enforce("tom", "data1", "write"))
e.remove_policy_self(False, "p", "p", [["alice", "data1", "write"]])
self.assertFalse(e.enforce("alice", "data1", "read"))
self.assertFalse(e.enforce("alice", "data1", "write"))
self.assertFalse(e.enforce("bob", "data2", "read"))
self.assertTrue(e.enforce("bob", "data2", "write"))
self.assertTrue(e.enforce("data2_admin", "data2", "read"))
self.assertTrue(e.enforce("data2_admin", "data2", "write"))
self.assertFalse(e.enforce("alice", "data2", "read"))
self.assertFalse(e.enforce("alice", "data2", "write"))
e.remove_filtered_policy_self(False, "p", "p", 0, "bob", "data2", "write")
e.remove_filtered_policy_self(False, "g", "g", 0, "tom", "data2_admin")
self.assertFalse(e.enforce("alice", "data1", "read"))
self.assertFalse(e.enforce("alice", "data1", "write"))
self.assertFalse(e.enforce("bob", "data2", "read"))
self.assertFalse(e.enforce("bob", "data2", "write"))
self.assertTrue(e.enforce("data2_admin", "data2", "read"))
self.assertTrue(e.enforce("data2_admin", "data2", "write"))
self.assertFalse(e.enforce("tom", "data1", "read"))
self.assertFalse(e.enforce("tom", "data1", "write"))
e.clear_policy_self(False)
self.assertFalse(e.enforce("alice", "data1", "read"))
self.assertFalse(e.enforce("alice", "data1", "write"))
self.assertFalse(e.enforce("bob", "data2", "read"))
self.assertFalse(e.enforce("bob", "data2", "write"))
self.assertFalse(e.enforce("data2_admin", "data2", "read"))
self.assertFalse(e.enforce("data2_admin", "data2", "write"))