about summary refs log tree commit diff
path: root/tests/unit/auth/test_privileges.py
diff options
context:
space:
mode:
Diffstat (limited to 'tests/unit/auth/test_privileges.py')
-rw-r--r--tests/unit/auth/test_privileges.py19
1 files changed, 12 insertions, 7 deletions
diff --git a/tests/unit/auth/test_privileges.py b/tests/unit/auth/test_privileges.py
index 0b5f120..41dae7f 100644
--- a/tests/unit/auth/test_privileges.py
+++ b/tests/unit/auth/test_privileges.py
@@ -11,8 +11,7 @@ def sort_key_privileges(priv):
     return priv.privilege_id
 
 PRIVILEGES = sorted(
-    (Privilege("system:group:create-group", "Create a group"),
-     Privilege("system:group:view-group", "View the details of a group"),
+    (Privilege("system:group:view-group", "View the details of a group"),
      Privilege("system:group:edit-group", "Edit the details of a group"),
      Privilege("system:user:list", "List users in the system"),
      Privilege("system:group:delete-group", "Delete a group"),
@@ -27,17 +26,23 @@ PRIVILEGES = sorted(
      Privilege("group:resource:edit-resource", "edit/update a resource"),
      Privilege("group:resource:delete-resource", "Delete a resource"),
 
-     Privilege("group:role:create-role", "Create a new role"),
-     Privilege("group:role:edit-role", "edit/update an existing role"),
-     Privilege("group:user:assign-role", "Assign a role to an existing user"),
-     Privilege("group:role:delete-role", "Delete an existing role")),
+     Privilege("group:data:link-to-group",
+               "Allow linking data to only one specific group."),
+
+     # Role-management privileges
+     Privilege("resource:role:create-role",
+               "Create a new role on a specific resource"),
+     Privilege("resource:role:delete-role",
+               "Delete an existing role from a specific resource"),
+     Privilege("resource:role:edit-role",
+               "Edit an existing role on a specific resource")),
     key=sort_key_privileges)
 
 @pytest.mark.unit_test
 @pytest.mark.parametrize(
     "user,expected", tuple(zip(
         conftest.TEST_USERS, (PRIVILEGES, [], [], [], []))))
-def test_user_privileges(auth_testdb_path, fxtr_users, user, expected):# pylint: disable=[unused-argument]
+def test_user_privileges(auth_testdb_path, fxtr_setup_group_leaders, user, expected):# pylint: disable=[unused-argument]
     """
     GIVEN: A user
     WHEN: An attempt is made to fetch the user's privileges
generated by cgit-pink 1.4.1 (git 2.36.1) at 2026-06-18 07:05:36 +0000