Google Git
Sign in
apache / sling-org-apache-sling-jcr-repoinit / refs/heads/SLING-11160^! / .
commit976a096cd63dc808c95774d9e370cc3e5c3c2d6c[log] [tgz]
authorangela <anchela@adobe.com>Wed Mar 02 13:25:48 2022 +0100
committerangela <anchela@adobe.com>Wed Mar 02 13:25:48 2022 +0100
treef7e81c61e0057ef7f998f40fa970a691b63c3d59
parent57e7504804cfff7774332fd09a466187b1d58127 [diff]
SLING-11160 : Repoinit does not allow to remove individual ACEs (missing test for matching principal-based entries)

diff --git a/src/test/java/org/apache/sling/jcr/repoinit/PrincipalBasedAclTest.java b/src/test/java/org/apache/sling/jcr/repoinit/PrincipalBasedAclTest.java
index e1cba8e..913226b 100644
--- a/src/test/java/org/apache/sling/jcr/repoinit/PrincipalBasedAclTest.java
+++ b/src/test/java/org/apache/sling/jcr/repoinit/PrincipalBasedAclTest.java

@@ -710,8 +710,31 @@
         U.parseAndExecute(setup);
         assertPolicy(principal, U.adminSession, 1);
 
+        setup = "remove principal ACE for " + U.username + "\n"
+                + "allow jcr:write on " + path + "\n"
+                + "end";
+        U.parseAndExecute(setup);
+        assertPolicy(principal, U.adminSession, 0);
+    }
+
+    @Test
+    public void testRemoveNoMatchingEntry() throws Exception {
+        Principal principal = getPrincipal(U.username);
+        String setup = "set principal ACL for " + U.username + "\n"
+                + "allow jcr:write on "+path+"\n"
+                + "end";
+        U.parseAndExecute(setup);
+        assertPolicy(principal, U.adminSession, 1);
+
         // privilege mismatch
         setup = "remove principal ACE for " + U.username + "\n"
+                + "allow jcr:read on " + path + "\n"
+                + "end";
+        U.parseAndExecute(setup);
+        assertPolicy(principal, U.adminSession, 1);
+
+        // privilege mismatch 2
+        setup = "remove principal ACE for " + U.username + "\n"
                 + "allow jcr:read,jcr:write on " + path + "\n"
                 + "end";
         U.parseAndExecute(setup);
@@ -732,21 +755,6 @@
         assertPolicy(principal, U.adminSession, 1);
     }
 
-    @Test
-    public void testRemoveNoMatchingEntry() throws Exception {
-        Principal principal = getPrincipal(U.username);
-        String setup = "set principal ACL for " + U.username + "\n"
-                + "allow jcr:write on "+path+"\n"
-                + "end";
-        U.parseAndExecute(setup);
-        assertPolicy(principal, U.adminSession, 1);
-
-        setup = "remove principal ACE for " + U.username + "\n"
-                + "allow jcr:read on " + path + "\n"
-                + "end";
-        assertPolicy(principal, U.adminSession, 1);
-    }
-
     @Test(expected = RepoInitException.class)
     public void testRemoveNonExistingPrincipal() throws Exception {
         String setup = "remove principal ACE for nonExistingPrincipal\n"