2018-01-30 07:41:25 -06:00
|
|
|
package api
|
|
|
|
|
|
|
|
|
|
import (
|
2021-12-01 08:43:31 -06:00
|
|
|
"context"
|
2020-11-13 02:52:38 -06:00
|
|
|
"fmt"
|
2018-01-30 07:41:25 -06:00
|
|
|
"testing"
|
|
|
|
|
|
2021-01-15 07:43:20 -06:00
|
|
|
"github.com/grafana/grafana/pkg/api/routing"
|
|
|
|
|
|
2022-06-01 13:16:26 -05:00
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
|
"github.com/stretchr/testify/mock"
|
|
|
|
|
"github.com/stretchr/testify/require"
|
|
|
|
|
|
2018-01-30 07:41:25 -06:00
|
|
|
"github.com/grafana/grafana/pkg/api/dtos"
|
2021-01-15 07:43:20 -06:00
|
|
|
"github.com/grafana/grafana/pkg/api/response"
|
2019-08-12 13:03:48 -05:00
|
|
|
"github.com/grafana/grafana/pkg/models"
|
2022-06-01 13:16:26 -05:00
|
|
|
"github.com/grafana/grafana/pkg/services/dashboards"
|
2022-03-21 04:49:49 -05:00
|
|
|
"github.com/grafana/grafana/pkg/services/guardian"
|
2018-06-01 07:36:40 -05:00
|
|
|
"github.com/grafana/grafana/pkg/services/search"
|
2022-02-03 02:20:20 -06:00
|
|
|
"github.com/grafana/grafana/pkg/services/sqlstore/mockstore"
|
2018-01-30 07:41:25 -06:00
|
|
|
)
|
|
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
var (
|
|
|
|
|
viewerRole = models.ROLE_VIEWER
|
|
|
|
|
editorRole = models.ROLE_EDITOR
|
|
|
|
|
)
|
|
|
|
|
|
2020-11-13 02:52:38 -06:00
|
|
|
type setUpConf struct {
|
|
|
|
|
aclMockResp []*models.DashboardAclInfoDTO
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-21 10:54:30 -05:00
|
|
|
type mockSearchService struct{ ExpectedResult models.HitList }
|
2018-01-30 07:41:25 -06:00
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
func (mss *mockSearchService) SearchHandler(_ context.Context, q *search.Query) error {
|
|
|
|
|
q.Result = mss.ExpectedResult
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2022-03-21 10:54:30 -05:00
|
|
|
func (mss *mockSearchService) SortOptions() []models.SortOption { return nil }
|
2018-01-30 07:41:25 -06:00
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
func setUp(confs ...setUpConf) *HTTPServer {
|
|
|
|
|
singleAlert := &models.Alert{Id: 1, DashboardId: 1, Name: "singlealert"}
|
|
|
|
|
store := mockstore.NewSQLStoreMock()
|
|
|
|
|
hs := &HTTPServer{SQLStore: store, SearchService: &mockSearchService{}}
|
|
|
|
|
store.ExpectedAlert = singleAlert
|
|
|
|
|
|
|
|
|
|
aclMockResp := []*models.DashboardAclInfoDTO{}
|
|
|
|
|
for _, c := range confs {
|
|
|
|
|
if c.aclMockResp != nil {
|
|
|
|
|
aclMockResp = c.aclMockResp
|
2020-11-13 02:52:38 -06:00
|
|
|
}
|
|
|
|
|
}
|
2022-03-21 04:49:49 -05:00
|
|
|
store.ExpectedTeamsByUser = []*models.TeamDTO{}
|
2022-06-01 13:16:26 -05:00
|
|
|
dashSvc := &dashboards.FakeDashboardService{}
|
|
|
|
|
dashSvc.On("GetDashboardAclInfoList", mock.Anything, mock.AnythingOfType("*models.GetDashboardAclInfoListQuery")).Run(func(args mock.Arguments) {
|
|
|
|
|
q := args.Get(1).(*models.GetDashboardAclInfoListQuery)
|
|
|
|
|
q.Result = aclMockResp
|
|
|
|
|
}).Return(nil)
|
|
|
|
|
guardian.InitLegacyGuardian(store, dashSvc)
|
2022-02-04 06:41:15 -06:00
|
|
|
return hs
|
|
|
|
|
}
|
2020-11-13 02:52:38 -06:00
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
func TestAlertingAPIEndpoint(t *testing.T) {
|
2020-11-13 02:52:38 -06:00
|
|
|
t.Run("When user is editor and not in the ACL", func(t *testing.T) {
|
2022-02-04 06:41:15 -06:00
|
|
|
hs := setUp()
|
2020-11-13 02:52:38 -06:00
|
|
|
cmd := dtos.PauseAlertCommand{
|
|
|
|
|
AlertId: 1,
|
|
|
|
|
Paused: true,
|
|
|
|
|
}
|
2022-02-04 06:41:15 -06:00
|
|
|
postAlertScenario(t, hs, "When calling POST on", "/api/alerts/1/pause", "/api/alerts/:alertId/pause",
|
2020-11-13 02:52:38 -06:00
|
|
|
models.ROLE_EDITOR, cmd, func(sc *scenarioContext) {
|
|
|
|
|
setUp()
|
|
|
|
|
|
|
|
|
|
callPauseAlert(sc)
|
|
|
|
|
assert.Equal(t, 403, sc.resp.Code)
|
2018-01-30 07:41:25 -06:00
|
|
|
})
|
2020-11-13 02:52:38 -06:00
|
|
|
})
|
2018-01-30 07:41:25 -06:00
|
|
|
|
2020-11-13 02:52:38 -06:00
|
|
|
t.Run("When user is editor and dashboard has default ACL", func(t *testing.T) {
|
2022-02-04 06:41:15 -06:00
|
|
|
hs := setUp()
|
2020-11-13 02:52:38 -06:00
|
|
|
cmd := dtos.PauseAlertCommand{
|
|
|
|
|
AlertId: 1,
|
|
|
|
|
Paused: true,
|
|
|
|
|
}
|
2022-02-04 06:41:15 -06:00
|
|
|
postAlertScenario(t, hs, "When calling POST on", "/api/alerts/1/pause", "/api/alerts/:alertId/pause",
|
2020-11-13 02:52:38 -06:00
|
|
|
models.ROLE_EDITOR, cmd, func(sc *scenarioContext) {
|
|
|
|
|
setUp(setUpConf{
|
|
|
|
|
aclMockResp: []*models.DashboardAclInfoDTO{
|
|
|
|
|
{Role: &viewerRole, Permission: models.PERMISSION_VIEW},
|
|
|
|
|
{Role: &editorRole, Permission: models.PERMISSION_EDIT},
|
|
|
|
|
},
|
2018-01-30 07:41:25 -06:00
|
|
|
})
|
2020-11-13 02:52:38 -06:00
|
|
|
|
|
|
|
|
callPauseAlert(sc)
|
|
|
|
|
assert.Equal(t, 200, sc.resp.Code)
|
2018-01-30 07:41:25 -06:00
|
|
|
})
|
2020-11-13 02:52:38 -06:00
|
|
|
})
|
|
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
t.Run("When calling GET", func(t *testing.T) {
|
|
|
|
|
hs := setUp()
|
|
|
|
|
loggedInUserScenarioWithRole(t, "When calling GET on", "GET",
|
|
|
|
|
"/api/alerts?dashboardId=1&dashboardId=2&folderId=3&dashboardTag=abc&dashboardQuery=dbQuery&limit=5&query=alertQuery",
|
|
|
|
|
"/api/alerts", models.ROLE_EDITOR, func(sc *scenarioContext) {
|
2022-03-21 10:54:30 -05:00
|
|
|
hs.SearchService.(*mockSearchService).ExpectedResult = models.HitList{
|
|
|
|
|
&models.Hit{ID: 1},
|
|
|
|
|
&models.Hit{ID: 2},
|
2018-06-01 07:36:40 -05:00
|
|
|
}
|
|
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
sc.handlerFunc = hs.GetAlerts
|
|
|
|
|
sc.fakeReqWithParams("GET", sc.url, map[string]string{}).exec()
|
|
|
|
|
|
|
|
|
|
getAlertsQuery := hs.SQLStore.(*mockstore.SQLStoreMock).LastGetAlertsQuery
|
2018-06-01 07:36:40 -05:00
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
require.NotNil(t, getAlertsQuery)
|
|
|
|
|
assert.Equal(t, int64(1), getAlertsQuery.DashboardIDs[0])
|
|
|
|
|
assert.Equal(t, int64(2), getAlertsQuery.DashboardIDs[1])
|
|
|
|
|
assert.Equal(t, int64(5), getAlertsQuery.Limit)
|
|
|
|
|
assert.Equal(t, "alertQuery", getAlertsQuery.Query)
|
|
|
|
|
}, hs.SQLStore)
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
t.Run("When calling GET on alert-notifications", func(t *testing.T) {
|
|
|
|
|
hs := setUp()
|
|
|
|
|
loggedInUserScenarioWithRole(t, "When calling GET on", "GET", "/api/alert-notifications/1",
|
|
|
|
|
"/alert-notifications/:notificationId", models.ROLE_ADMIN, func(sc *scenarioContext) {
|
|
|
|
|
sc.handlerFunc = hs.GetAlertNotificationByID
|
|
|
|
|
sc.fakeReqWithParams("GET", sc.url, map[string]string{}).exec()
|
|
|
|
|
assert.Equal(t, 404, sc.resp.Code)
|
|
|
|
|
}, hs.SQLStore)
|
|
|
|
|
})
|
2018-01-30 07:41:25 -06:00
|
|
|
}
|
|
|
|
|
|
2020-11-13 02:52:38 -06:00
|
|
|
func callPauseAlert(sc *scenarioContext) {
|
2018-01-30 07:41:25 -06:00
|
|
|
sc.fakeReqWithParams("POST", sc.url, map[string]string{}).exec()
|
|
|
|
|
}
|
|
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
func postAlertScenario(t *testing.T, hs *HTTPServer, desc string, url string, routePattern string, role models.RoleType,
|
2020-11-13 02:52:38 -06:00
|
|
|
cmd dtos.PauseAlertCommand, fn scenarioFunc) {
|
|
|
|
|
t.Run(fmt.Sprintf("%s %s", desc, url), func(t *testing.T) {
|
|
|
|
|
sc := setupScenarioContext(t, url)
|
2021-01-15 07:43:20 -06:00
|
|
|
sc.defaultHandler = routing.Wrap(func(c *models.ReqContext) response.Response {
|
2021-11-29 03:18:01 -06:00
|
|
|
c.Req.Body = mockRequestBody(cmd)
|
2022-02-09 06:44:38 -06:00
|
|
|
c.Req.Header.Add("Content-Type", "application/json")
|
2018-01-30 07:41:25 -06:00
|
|
|
sc.context = c
|
2020-11-13 02:52:38 -06:00
|
|
|
sc.context.UserId = testUserID
|
|
|
|
|
sc.context.OrgId = testOrgID
|
2018-01-30 07:41:25 -06:00
|
|
|
sc.context.OrgRole = role
|
|
|
|
|
|
2022-02-04 06:41:15 -06:00
|
|
|
return hs.PauseAlert(c)
|
2018-01-30 07:41:25 -06:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
sc.m.Post(routePattern, sc.defaultHandler)
|
|
|
|
|
|
|
|
|
|
fn(sc)
|
|
|
|
|
})
|
|
|
|
|
}
|
