scala source code of AccessControlListSpec

Project: nexus-iam (GitHub Link)

nexus-iam-master
- .github
  - workflows
    - ci.yml
- src
  - main
    - resources
      - application.conf
      - logback.xml
      - contexts
        iam.json
      - app.conf
      - cassandra.conf
      - akka.conf
    - scala
      - ch
        epfl
        bluebrain
        nexus
        iam
        acls
        AclRejection.scala
        AclCommand.scala
        package.scala
        Acls.scala
        AccessControlLists.scala
        AclState.scala
        AclEvent.scala
        AccessControlList.scala
        RepairFromMessages.scala
        index
        AclsIndex.scala
        InMemoryAclsTree.scala
        marshallers
        instances.scala
        Main.scala
        directives
        AuthDirectives.scala
        RealmDirectives.scala
        AclDirectives.scala
        realms
        WellKnown.scala
        RealmRejection.scala
        RealmEvent.scala
        Realms.scala
        package.scala
        RealmCommand.scala
        ActiveRealm.scala
        RealmState.scala
        DeprecatedRealm.scala
        Groups.scala
        config
        Vocabulary.scala
        Contexts.scala
        Settings.scala
        AppConfig.scala
        types
        ResourceMetadata.scala
        ResourceF.scala
        Permission.scala
        package.scala
        GrantType.scala
        IamError.scala
        Caller.scala
        Label.scala
        Identity.scala
        ResourceRejection.scala
        syntax.scala
        io
        TaggingAdapter.scala
        EventSerializer.scala
        JWKSetSerializer.scala
        KryoSerializerInit.scala
        permissions
        PermissionsState.scala
        Permissions.scala
        package.scala
        PermissionsEvent.scala
        PermissionsRejection.scala
        PermissionsCommand.scala
        auth
        TokenRejection.scala
        AccessToken.scala
        instances.scala
        routes
        PermissionsRoutes.scala
        EventRoutes.scala
        Routes.scala
        CassandraHeath.scala
        IdentitiesRoutes.scala
        AclsRoutes.scala
        RealmsRoutes.scala
        AppInfoRoutes.scala
        SearchParams.scala
  - test
    - resources
      - acls
        acls-routes.json
        acls.json
        error.json
        acls-routes-empty.json
        acl.json
      - logback-test.xml
      - application.conf
      - resources
        write-response-routes.json
        write-response-notypes.json
        not-found.json
        write-response-singletype.json
        write-response.json
      - test.conf
      - akka-test.conf
      - identities
        user.json
        identities.json
        anonymous.json
        produce
        user.json
        authenticated.json
        anonymous.json
        group.json
        consume
        user.json
        authenticated.json
        anonymous.json
        group.json
      - realms
        create-realm.json
        list-realms-template.json
        realm-template.json
        realm-meta-template.json
      - permissions
        permissions-template.json
        missing-rev.json
        permissions-meta-template.json
        permissions-patch.json
      - contexts
        iam-context.json
      - events
        acl-events.json
        realm-events.json
        realm-key.json
        permissions-events.json
    - scala
      - ch
        epfl
        bluebrain
        nexus
        iam
        acls
        AclsSpec.scala
        AccessControlListsSpec.scala
        AccessControlListSpec.scala
        index
        InMemoryAclsTreeBenchmark.scala
        InMemoryAclsTreeSpec.scala
        ExpectedException.scala
        directives
        RealmDirectivesSpec.scala
        realms
        WellKnownSpec.scala
        GroupsSpec.scala
        RealmsSpec.scala
        testsyntax.scala
        types
        ResourceFSpec.scala
        IdentitySpec.scala
        PermissionSpec.scala
        GrantTypeSpec.scala
        LabelSpec.scala
        io
        EventSerializerSpec.scala
        TaggingAdapterSpec.scala
        JWKSetSerializerSpec.scala
        permissions
        PermissionsSpec.scala
        routes
        PermissionsRoutesSpec.scala
        IdentitiesRoutesSpec.scala
        AclsRoutesSpec.scala
        EventRoutesSpec.scala
        RealmsRoutesSpec.scala
- client
  - src
    - main
      - scala
        ch
        epfl
        bluebrain
        nexus
        iam
        client
        IamClient.scala
        config
        Vocabulary.scala
        Contexts.scala
        IamClientConfig.scala
        types
        Permissions.scala
        ServiceDescription.scala
        Permission.scala
        ResourceAccessControlList.scala
        GrantType.scala
        Caller.scala
        Identity.scala
        AccessControlLists.scala
        AuthToken.scala
        events
        Event.scala
        AccessControlList.scala
        EventSource.scala
        IamClientError.scala
    - test
      - resources
        acls
        replace.json
        logback-test.xml
        identities
        caller.json
        produce
        user.json
        authenticated.json
        anonymous.json
        group.json
        consume
        user.json
        authenticated.json
        anonymous.json
        group.json
        events
        permissions-replaced.json
        permissions-appended.json
        realm-updated.json
        permissions-deleted.json
        realm-deprecated.json
        acl-appended.json
        realm-created.json
        permissions-subtracted.json
        acl-replaced.json
        acl-deleted.json
        acl-subtracted.json
      - scala
        ch
        epfl
        bluebrain
        nexus
        iam
        client
        types
        IdentitySpec.scala
        CallerDecoderSpec.scala
        events
        EventDecodersSpec.scala
        IamClientSpec.scala
- LICENSE
- project
  - build.properties
  - plugins.sbt
- CONTRIBUTING.md
- README.md
- .scalafmt.conf
- .jvmopts
- build.sbt
- .gitignore

package ch.epfl.bluebrain.nexus.iam.acls

import ch.epfl.bluebrain.nexus.commons.test.{EitherValues, Resources}
import ch.epfl.bluebrain.nexus.iam.config.AppConfig.HttpConfig
import ch.epfl.bluebrain.nexus.iam.types.Identity._
import ch.epfl.bluebrain.nexus.iam.types.{Identity, Permission}
import io.circe.syntax._
import org.scalatest.matchers.should.Matchers
import org.scalatest.wordspec.AnyWordSpecLike
import org.scalatest.{Inspectors, OptionValues}

class AccessControlListSpec
    extends AnyWordSpecLike
    with Matchers
    with Inspectors
    with EitherValues
    with OptionValues
    with Resources {

  "An Access Control List" should {
    val user: Identity  = User("uuid", "realm")
    val group: Identity = Group("mygroup", "myrealm")
    val readWrite       = Set(Permission("acls/read").value, Permission("acls/write").value)
    val manage          = Set(Permission("acls/manage").value)

    implicit val http: HttpConfig = HttpConfig("some", 8080, "v1", "http://nexus.example.com")

    "converted to Json" in {
      val acls = AccessControlList(user -> readWrite, group -> manage)
      val json = jsonContentOf("/acls/acl.json")
      acls.asJson shouldEqual json
    }
    "convert from Json" in {
      val acls = AccessControlList(user -> readWrite, group -> manage)
      val json = jsonContentOf("/acls/acl.json")
      json.as[AccessControlList].rightValue shouldEqual acls
    }

    "remove ACL" in {
      val read  = Permission.unsafe("read")
      val write = Permission.unsafe("write")
      val other = Permission.unsafe("other")
      val acl   = AccessControlList(user -> Set(read, write), group -> Set(other))
      val acl2  = AccessControlList(group -> Set(read))

      acl -- acl2 shouldEqual acl
      acl -- AccessControlList(user -> Set(read), group                              -> Set(other)) shouldEqual AccessControlList(user -> Set(write))
      acl -- AccessControlList(user -> Set(read)) shouldEqual AccessControlList(user -> Set(write), group                              -> Set(other))
    }
  }
}