Inicio Explorar Ayuda
Iniciar sesión
weiym
/
perms-system-server
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 2e80c836c1
Ramas Etiquetas
perms-system...
/
internal
/
logic
/
role
/
deleteRoleLogic_test.go

deleteRoleLogic_test.go 7.9 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216 
  1. package role
    2. 

  2. 

  3. import (
    4. 

  4. 	"errors"
    5. 

  5. 	"fmt"
    6. 

  6. 	"testing"
    7. 

  7. 	"time"
    8. 

  8. 

  9. 	permModel "perms-system-server/internal/model/perm"
    10. 

  10. 	roleModel "perms-system-server/internal/model/role"
    11. 

  11. 	"perms-system-server/internal/model/roleperm"
    12. 

  12. 	"perms-system-server/internal/model/userrole"
    13. 

  13. 	"perms-system-server/internal/response"
    14. 

  14. 	"perms-system-server/internal/svc"
    15. 

  15. 	"perms-system-server/internal/testutil"
    16. 

  16. 	"perms-system-server/internal/testutil/ctxhelper"
    17. 

  17. 	"perms-system-server/internal/types"
    18. 

  18. 

  19. 	"github.com/stretchr/testify/assert"
    20. 

  20. 	"github.com/stretchr/testify/require"
    21. 

  21. 	"github.com/zeromicro/go-zero/core/stores/redis"
    22. 

  22. )
    23. 

  23. 

  24. // TC-0126: 正常删除+级联
    25. 

  25. func TestDeleteRole_WithCascading(t *testing.T) {
    26. 

  26. 	ctx := ctxhelper.SuperAdminCtx()
    27. 

  27. 	svcCtx := svc.NewServiceContext(testutil.GetTestConfig())
    28. 

  28. 	conn := testutil.GetTestSqlConn()
    29. 

  29. 	now := time.Now().Unix()
    30. 

  30. 	pc := testutil.UniqueId()
    31. 

  31. 

  32. 	roleRes, err := svcCtx.SysRoleModel.Insert(ctx, &roleModel.SysRole{
    33. 

  33. 		ProductCode: pc, Name: testutil.UniqueId(), Status: 1, PermsLevel: 1,
    34. 

  34. 		CreateTime: now, UpdateTime: now,
    35. 

  35. 	})
    36. 

  36. 	require.NoError(t, err)
    37. 

  37. 	roleId, _ := roleRes.LastInsertId()
    38. 

  38. 

  39. 	pRes, err := svcCtx.SysPermModel.Insert(ctx, &permModel.SysPerm{
    40. 

  40. 		ProductCode: pc, Name: testutil.UniqueId(), Code: testutil.UniqueId(),
    41. 

  41. 		Status: 1, CreateTime: now, UpdateTime: now,
    42. 

  42. 	})
    43. 

  43. 	require.NoError(t, err)
    44. 

  44. 	permId, _ := pRes.LastInsertId()
    45. 

  45. 

  46. 	rpRes, err := svcCtx.SysRolePermModel.Insert(ctx, &roleperm.SysRolePerm{
    47. 

  47. 		RoleId: roleId, PermId: permId, CreateTime: now, UpdateTime: now,
    48. 

  48. 	})
    49. 

  49. 	require.NoError(t, err)
    50. 

  50. 	rpId, _ := rpRes.LastInsertId()
    51. 

  51. 

  52. 	urRes, err := svcCtx.SysUserRoleModel.Insert(ctx, &userrole.SysUserRole{
    53. 

  53. 		UserId: 888888, RoleId: roleId, CreateTime: now, UpdateTime: now,
    54. 

  54. 	})
    55. 

  55. 	require.NoError(t, err)
    56. 

  56. 	urId, _ := urRes.LastInsertId()
    57. 

  57. 

  58. 	t.Cleanup(func() {
    59. 

  59. 		testutil.CleanTable(ctx, conn, "`sys_role_perm`", rpId)
    60. 

  60. 		testutil.CleanTable(ctx, conn, "`sys_user_role`", urId)
    61. 

  61. 		testutil.CleanTable(ctx, conn, "`sys_role`", roleId)
    62. 

  62. 		testutil.CleanTable(ctx, conn, "`sys_perm`", permId)
    63. 

  63. 	})
    64. 

  64. 

  65. 	logic := NewDeleteRoleLogic(ctx, svcCtx)
    66. 

  66. 	err = logic.DeleteRole(&types.DeleteRoleReq{Id: roleId})
    67. 

  67. 	require.NoError(t, err)
    68. 

  68. 

  69. 	_, err = svcCtx.SysRoleModel.FindOne(ctx, roleId)
    70. 

  70. 	assert.Error(t, err)
    71. 

  71. 

  72. 	permIds, err := svcCtx.SysRolePermModel.FindPermIdsByRoleId(ctx, roleId)
    73. 

  73. 	require.NoError(t, err)
    74. 

  74. 	assert.Empty(t, permIds)
    75. 

  75. 

  76. 	roleIds, err := svcCtx.SysUserRoleModel.FindRoleIdsByUserId(ctx, 888888)
    77. 

  77. 	require.NoError(t, err)
    78. 

  78. 	assert.NotContains(t, roleIds, roleId)
    79. 

  79. }
    80. 

  80. 

  81. // TC-0128: 无关联数据
    82. 

  82. func TestDeleteRole_NoAssociations(t *testing.T) {
    83. 

  83. 	ctx := ctxhelper.SuperAdminCtx()
    84. 

  84. 	svcCtx := svc.NewServiceContext(testutil.GetTestConfig())
    85. 

  85. 	conn := testutil.GetTestSqlConn()
    86. 

  86. 	now := time.Now().Unix()
    87. 

  87. 	pc := testutil.UniqueId()
    88. 

  88. 

  89. 	roleRes, err := svcCtx.SysRoleModel.Insert(ctx, &roleModel.SysRole{
    90. 

  90. 		ProductCode: pc, Name: testutil.UniqueId(), Status: 1, PermsLevel: 1,
    91. 

  91. 		CreateTime: now, UpdateTime: now,
    92. 

  92. 	})
    93. 

  93. 	require.NoError(t, err)
    94. 

  94. 	roleId, _ := roleRes.LastInsertId()
    95. 

  95. 

  96. 	t.Cleanup(func() {
    97. 

  97. 		testutil.CleanTable(ctx, conn, "`sys_role`", roleId)
    98. 

  98. 	})
    99. 

  99. 

  100. 	logic := NewDeleteRoleLogic(ctx, svcCtx)
    101. 

  101. 	err = logic.DeleteRole(&types.DeleteRoleReq{Id: roleId})
    102. 

  102. 	require.NoError(t, err)
    103. 

  103. 

  104. 	_, err = svcCtx.SysRoleModel.FindOne(ctx, roleId)
    105. 

  105. 	assert.Error(t, err)
    106. 

  106. }
    107. 

  107. 

  108. // TC-1120: L-R14-1 非超管 DeleteRole 针对别产品的 roleId 必须 404 "角色不存在",
    109. 

  109. // 与 RoleDetail 的 M-N3 / UpdateRole 的 TC-1119 口径一致。
    110. 

  110. func TestDeleteRole_L_R14_1_CrossProductReturns404(t *testing.T) {
    111. 

  111. 	ctx := ctxhelper.SuperAdminCtx()
    112. 

  112. 	svcCtx := svc.NewServiceContext(testutil.GetTestConfig())
    113. 

  113. 	conn := testutil.GetTestSqlConn()
    114. 

  114. 	now := time.Now().Unix()
    115. 

  115. 

  116. 	otherProduct := "l_r14_1_del_" + testutil.UniqueId()
    117. 

  117. 	res, err := svcCtx.SysRoleModel.Insert(ctx, &roleModel.SysRole{
    118. 

  118. 		ProductCode: otherProduct, Name: testutil.UniqueId(), Status: 1, PermsLevel: 1,
    119. 

  119. 		CreateTime: now, UpdateTime: now,
    120. 

  120. 	})
    121. 

  121. 	require.NoError(t, err)
    122. 

  122. 	roleId, _ := res.LastInsertId()
    123. 

  123. 	t.Cleanup(func() { testutil.CleanTable(ctx, conn, "`sys_role`", roleId) })
    124. 

  124. 

  125. 	adminCtx := ctxhelper.AdminCtx("test_product")
    126. 

  126. 	err = NewDeleteRoleLogic(adminCtx, svcCtx).DeleteRole(&types.DeleteRoleReq{Id: roleId})
    127. 

  127. 	require.Error(t, err)
    128. 

  128. 

  129. 	var ce *response.CodeError
    130. 

  130. 	require.True(t, errors.As(err, &ce))
    131. 

  131. 	assert.Equal(t, 404, ce.Code(), "跨产品 roleId 必须 404")
    132. 

  132. 	assert.Equal(t, "角色不存在", ce.Error(), "文案必须与 id 不存在完全一致")
    133. 

  133. 

  134. 	// DB 必须保持原状
    135. 

  135. 	still, err := svcCtx.SysRoleModel.FindOne(ctx, roleId)
    136. 

  136. 	require.NoError(t, err, "跨产品拒绝的 DeleteRole 不得真的删角色")
    137. 

  137. 	assert.Equal(t, roleId, still.Id)
    138. 

  138. }
    139. 

  139. 

  140. // TC-1201: H-R17-2 —— DeleteRole 成功后必须在 post-commit 上显式失效 sysRole 的两把缓存键
    141. 

  141. // (id key + productCode:name key),与 DeleteDept 的 H-R17-2 同构。
    142. 

  142. //
    143. 

  143. // 失效窗口:DeleteWithTx 里 sqlc.CachedConn.ExecCtx 的 "exec → DelCache" 钩子先于外层
    144. 

  144. // TransactCtx commit 执行。commit 前并发 FindOne / FindOneByProductCodeName 会把旧行
    145. 

  145. // 回填回 Redis,commit 后 DB 没了 role 但 Redis 还挂着"幽灵 role 快照"到 TTL。叠加
    146. 

  146. // 角色树权限模型,后续 ResolveOwnRoleOr404 命中幽灵 snapshot 会产生谜之 409(CAS
    147. 

  147. // 命中但 DB 无行),排障代价巨大——post-commit 必须再补一次 InvalidateRoleCache。
    148. 

  148. func TestDeleteRole_H_R17_2_InvalidatesCacheAfterCommit(t *testing.T) {
    149. 

  149. 	ctx := ctxhelper.SuperAdminCtx()
    150. 

  150. 	cfg := testutil.GetTestConfig()
    151. 

  151. 	svcCtx := svc.NewServiceContext(cfg)
    152. 

  152. 	conn := testutil.GetTestSqlConn()
    153. 

  153. 	rds := redis.MustNewRedis(cfg.CacheRedis.Nodes[0].RedisConf)
    154. 

  154. 

  155. 	now := time.Now().Unix()
    156. 

  156. 	pc := "h_r17_2_" + testutil.UniqueId()
    157. 

  157. 	roleName := "h_r17_2_role_" + testutil.UniqueId()
    158. 

  158. 	res, err := svcCtx.SysRoleModel.Insert(ctx, &roleModel.SysRole{
    159. 

  159. 		ProductCode: pc, Name: roleName, Status: 1, PermsLevel: 1,
    160. 

  160. 		CreateTime: now, UpdateTime: now,
    161. 

  161. 	})
    162. 

  162. 	require.NoError(t, err)
    163. 

  163. 	roleId, _ := res.LastInsertId()
    164. 

  164. 	t.Cleanup(func() { testutil.CleanTable(ctx, conn, "`sys_role`", roleId) })
    165. 

  165. 

  166. 	idKey := fmt.Sprintf("%s:cache:sysRole:id:%d", cfg.CacheRedis.KeyPrefix, roleId)
    167. 

  167. 	nameKey := fmt.Sprintf("%s:cache:sysRole:productCode:name:%s:%s",
    168. 

  168. 		cfg.CacheRedis.KeyPrefix, pc, roleName)
    169. 

  169. 	t.Cleanup(func() { _, _ = rds.Del(idKey, nameKey) })
    170. 

  170. 

  171. 	require.NoError(t, rds.Set(idKey,
    172. 

  172. 		fmt.Sprintf(`{"Id":%d,"ProductCode":%q,"Name":%q,"PermsLevel":1,"Status":1}`, roleId, pc, roleName)),
    173. 

  173. 		"预置 ghost idKey 失败")
    174. 

  174. 	require.NoError(t, rds.Set(nameKey,
    175. 

  175. 		fmt.Sprintf(`{"Id":%d,"ProductCode":%q,"Name":%q,"PermsLevel":1,"Status":1}`, roleId, pc, roleName)),
    176. 

  176. 		"预置 ghost nameKey 失败")
    177. 

  177. 

  178. 	require.NoError(t, NewDeleteRoleLogic(ctx, svcCtx).DeleteRole(&types.DeleteRoleReq{Id: roleId}))
    179. 

  179. 

  180. 	existsId, err := rds.Exists(idKey)
    181. 

  181. 	require.NoError(t, err)
    182. 

  182. 	assert.False(t, existsId,
    183. 

  183. 		"H-R17-2:commit 之后 InvalidateRoleCache 必须 DEL sysRoleIdKey,"+
    184. 

  184. 			"否则后续 FindOne(roleId) 命中 ghost snapshot → CAS 撞不到行回 409")
    185. 

  185. 

  186. 	existsName, err := rds.Exists(nameKey)
    187. 

  187. 	require.NoError(t, err)
    188. 

  188. 	assert.False(t, existsName,
    189. 

  189. 		"H-R17-2:InvalidateRoleCache 必须同时 DEL sysRoleProductCodeNameKey,"+
    190. 

  190. 			"因为 FindOneByProductCodeName 是 CreateRole 前的唯一性校验路径,"+
    191. 

  191. 			"残留 ghost 会让同名 role 在删除后反复被 409 误判为冲突")
    192. 

  192. }
    193. 

  193. 

  194. // TC-0540: deleteRole非管理员拒绝
    195. 

  195. func TestDeleteRole_MemberRejected(t *testing.T) {
    196. 

  196. 	pc := "test_product"
    197. 

  197. 	ctx := ctxhelper.MemberCtx(pc)
    198. 

  198. 	svcCtx := svc.NewServiceContext(testutil.GetTestConfig())
    199. 

  199. 	conn := testutil.GetTestSqlConn()
    200. 

  200. 	now := time.Now().Unix()
    201. 

  201. 

  202. 	roleRes, err := svcCtx.SysRoleModel.Insert(ctx, &roleModel.SysRole{
    203. 

  203. 		ProductCode: pc, Name: testutil.UniqueId(), Status: 1, PermsLevel: 1,
    204. 

  204. 		CreateTime: now, UpdateTime: now,
    205. 

  205. 	})
    206. 

  206. 	require.NoError(t, err)
    207. 

  207. 	roleId, _ := roleRes.LastInsertId()
    208. 

  208. 	t.Cleanup(func() { testutil.CleanTable(ctx, conn, "`sys_role`", roleId) })
    209. 

  209. 

  210. 	logic := NewDeleteRoleLogic(ctx, svcCtx)
    211. 

  211. 	err = logic.DeleteRole(&types.DeleteRoleReq{Id: roleId})
    212. 

  212. 	require.Error(t, err)
    213. 

  213. 	var ce *response.CodeError
    214. 

  214. 	require.True(t, errors.As(err, &ce))
    215. 

  215. 	assert.Equal(t, 403, ce.Code())
    216. 

  216. }
    217.