summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorLars Wirzenius <liw@liw.fi>2017-03-06 13:40:18 +0200
committerLars Wirzenius <liw@liw.fi>2017-03-06 13:40:18 +0200
commitb8b27c819f43353ca8acf3fb48ed348efdee3d74 (patch)
tree1bf6b6aee2bda7493af7596fd481ec4cd0ae39af
parent0af06d5a1dffeed466583ef71bb1a89211b78766 (diff)
downloadgit.liw.fi-ruleset-tests-b8b27c819f43353ca8acf3fb48ed348efdee3d74.tar.gz
Add tests for Gabriella pushing master, release tag
Diffstat
-rw-r--r--000.yarn36
1 files changed, 34 insertions, 2 deletions
diff --git a/000.yarn b/000.yarn
index e7e15f0..a313ae7 100644
--- a/000.yarn
+++ b/000.yarn
@@ -91,9 +91,11 @@ the standard Gitano ruleset.
allow "Writers may update any branch" op_is_normal user_is_repo_writer
define user_is_repo_guest group exact ${config/guests}
- define ref_is_for_user ref prefix ${user}/
+ define branch_is_for_user ref prefix refs/heads/${user}/
+ define tag_is_for_user ref prefix refs/tags/${user}/
allow "Guests may read and write" op_is_basic user_is_repo_guest
- allow "Guests may update their own refs" op_is_normal user_is_repo_guest
+ allow "Guests may update their own branches" op_is_normal user_is_repo_guest branch_is_for_user
+ allow "Guests may update their own tags" op_is_normal user_is_repo_guest tag_is_for_user
Use cases as automated test scenarios
@@ -210,6 +212,36 @@ Gabriella can push changes and tag with her own prefix
THEN gabriella can push qvarn with tags
FINALLY admin removes things that were created
+Gabriella can't push changes to master
+-----------------------------------------------------------------------------
+
+ SCENARIO Gabriella can't push changes to master
+ WHEN admin creates user gabriella
+ AND admin creates group qvarn-guests
+ AND admin adds gabriella to qvarn-guests
+ AND admin creates repository qvarn
+ AND admin sets qvarn config guests to qvarn-guests
+ THEN gabriella can clone qvarn
+ WHEN gabriella creates qvarn branch gabriella/bugfix
+ AND gabriella changes qvarn branch gabriella/bugfix
+ AND gabriella merges qvarn branch gabriella/bugfix to master
+ THEN gabriella cannot push qvarn
+ FINALLY admin removes things that were created
+
+Gabriella can't push release tag
+-----------------------------------------------------------------------------
+
+ SCENARIO Gabriella can't push release tag
+ WHEN admin creates user gabriella
+ AND admin creates group qvarn-guests
+ AND admin adds gabriella to qvarn-guests
+ AND admin creates repository qvarn
+ AND admin sets qvarn config guests to qvarn-guests
+ THEN gabriella can clone qvarn
+ WHEN gabriella tags qvarn master branch with qvarn-42.0
+ THEN gabriella cannot push qvarn with tags
+ FINALLY admin removes things that were created
+
Steven can't read the ops/secrets repo
-----------------------------------------------------------------------------
generated by cgit v1.2.1 (git 2.18.0) at 2024-04-23 11:35:16 +0000