--- a
+++ b/forgeblog/tests/test_roles.py
@@ -0,0 +1,28 @@
+from pylons import c, g
+
+from alluratest.controller import setup_basic_test, setup_global_objects
+from allura import model as M
+from allura.lib import security
+from allura.lib import helpers as h
+
+def setUp():
+ setup_basic_test()
+ setup_global_objects()
+ h.set_context('test', neighborhood='Projects')
+ c.project.install_app('blog', 'blog')
+ g.set_app('blog')
+
+def test_role_assignments():
+ admin = M.User.by_username('test-admin')
+ user = M.User.by_username('test-user')
+ anon = M.User.anonymous()
+ def check_access(perm):
+ pred = security.has_access(c.app, perm)
+ return pred(user=admin), pred(user=user), pred(user=anon)
+ assert check_access('configure') == (True, False, False)
+ assert check_access('read') == (True, True, True)
+ assert check_access('write') == (True, False, False)
+ assert check_access('unmoderated_post') == (True, True, False)
+ assert check_access('post') == (True, True, False)
+ assert check_access('moderate') == (True, False, False)
+ assert check_access('admin') == (True, False, False)