continue moving tests

Emyrk · Emyrk · commit 446d51b254d3 · 2024-07-25T15:32:38.000-05:00
diff --git a/coderd/members_test.go b/coderd/members_test.go
@@ -1,7 +1,6 @@
 package coderd_test
 
 import (
-	"net/http"
 	"testing"
 
 	"github.com/google/uuid"
@@ -17,42 +16,6 @@ import (
 func TestAddMember(t *testing.T) {
 	t.Parallel()
 
-	t.Run("OK", func(t *testing.T) {
-		t.Parallel()
-		owner := coderdtest.New(t, nil)
-		first := coderdtest.CreateFirstUser(t, owner)
-		ctx := testutil.Context(t, testutil.WaitMedium)
-		org, err := owner.CreateOrganization(ctx, codersdk.CreateOrganizationRequest{
-			Name:        "other",
-			DisplayName: "",
-			Description: "",
-			Icon:        "",
-		})
-		require.NoError(t, err)
-
-		// Make a user not in the second organization
-		_, user := coderdtest.CreateAnotherUser(t, owner, first.OrganizationID)
-
-		// Use scoped user admin in org to add the user
-		client, userAdmin := coderdtest.CreateAnotherUser(t, owner, org.ID, rbac.ScopedRoleOrgUserAdmin(org.ID))
-
-		members, err := client.OrganizationMembers(ctx, org.ID)
-		require.NoError(t, err)
-		require.Len(t, members, 2) // Verify the 2 members at the start
-
-		// Add user to org
-		_, err = client.PostOrganizationMember(ctx, org.ID, user.Username)
-		require.NoError(t, err)
-
-		members, err = client.OrganizationMembers(ctx, org.ID)
-		require.NoError(t, err)
-		// Owner + user admin + new member
-		require.Len(t, members, 3)
-		require.ElementsMatch(t,
-			[]uuid.UUID{first.UserID, user.ID, userAdmin.ID},
-			db2sdk.List(members, onlyIDs))
-	})
-
 	t.Run("AlreadyMember", func(t *testing.T) {
 		t.Parallel()
 		owner := coderdtest.New(t, nil)
@@ -65,28 +28,6 @@ func TestAddMember(t *testing.T) {
 		_, err := owner.PostOrganizationMember(ctx, first.OrganizationID, user.Username)
 		require.ErrorContains(t, err, "already exists")
 	})
-
-	t.Run("UserNotExists", func(t *testing.T) {
-		t.Parallel()
-		owner := coderdtest.New(t, nil)
-		_ = coderdtest.CreateFirstUser(t, owner)
-		ctx := testutil.Context(t, testutil.WaitMedium)
-
-		org, err := owner.CreateOrganization(ctx, codersdk.CreateOrganizationRequest{
-			Name:        "other",
-			DisplayName: "",
-			Description: "",
-			Icon:        "",
-		})
-		require.NoError(t, err)
-
-		// Add user to org
-		_, err = owner.PostOrganizationMember(ctx, org.ID, uuid.NewString())
-		require.Error(t, err)
-		var apiErr *codersdk.Error
-		require.ErrorAs(t, err, &apiErr)
-		require.Contains(t, apiErr.Message, "must be an existing")
-	})
 }
 
 func TestListMembers(t *testing.T) {
@@ -107,28 +48,6 @@ func TestListMembers(t *testing.T) {
 			[]uuid.UUID{first.UserID, user.ID},
 			db2sdk.List(members, onlyIDs))
 	})
-
-	// Calling it from a user without the org access.
-	t.Run("NotInOrg", func(t *testing.T) {
-		t.Parallel()
-		owner := coderdtest.New(t, nil)
-		first := coderdtest.CreateFirstUser(t, owner)
-
-		client, _ := coderdtest.CreateAnotherUser(t, owner, first.OrganizationID, rbac.ScopedRoleOrgAdmin(first.OrganizationID))
-
-		ctx := testutil.Context(t, testutil.WaitShort)
-		org, err := owner.CreateOrganization(ctx, codersdk.CreateOrganizationRequest{
-			Name:        "test",
-			DisplayName: "",
-			Description: "",
-		})
-		require.NoError(t, err, "create organization")
-
-		// 404 error is expected instead of a 403/401 to not leak existence of
-		// an organization.
-		_, err = client.OrganizationMembers(ctx, org.ID)
-		require.ErrorContains(t, err, "404")
-	})
 }
 
 func TestRemoveMember(t *testing.T) {
@@ -161,31 +80,6 @@ func TestRemoveMember(t *testing.T) {
 			[]uuid.UUID{first.UserID, orgAdmin.ID},
 			db2sdk.List(members, onlyIDs))
 	})
-
-	t.Run("MemberNotInOrg", func(t *testing.T) {
-		t.Parallel()
-		owner := coderdtest.New(t, nil)
-		first := coderdtest.CreateFirstUser(t, owner)
-		orgAdminClient, _ := coderdtest.CreateAnotherUser(t, owner, first.OrganizationID, rbac.ScopedRoleOrgAdmin(first.OrganizationID))
-
-		ctx := testutil.Context(t, testutil.WaitMedium)
-		// nolint:gocritic // requires owner to make a new org
-		org, _ := owner.CreateOrganization(ctx, codersdk.CreateOrganizationRequest{
-			Name:        "other",
-			DisplayName: "",
-			Description: "",
-			Icon:        "",
-		})
-
-		_, user := coderdtest.CreateAnotherUser(t, owner, org.ID)
-
-		// Delete a user that is not in the organization
-		err := orgAdminClient.DeleteOrganizationMember(ctx, first.OrganizationID, user.Username)
-		require.Error(t, err)
-		var apiError *codersdk.Error
-		require.ErrorAs(t, err, &apiError)
-		require.Equal(t, http.StatusNotFound, apiError.StatusCode())
-	})
 }
 
 func onlyIDs(u codersdk.OrganizationMemberWithUserData) uuid.UUID {
diff --git a/enterprise/coderd/provisionerdaemons_test.go b/enterprise/coderd/provisionerdaemons_test.go
@@ -251,7 +251,7 @@ func TestProvisionerDaemonServe(t *testing.T) {
 				codersdk.FeatureExternalProvisionerDaemons: 1,
 			},
 		}})
-		closer := coderdtest.NewExternalProvisionerDaemon(t, client, user.OrganizationID, map[string]string{
+		closer := coderdenttest.NewExternalProvisionerDaemon(t, client, user.OrganizationID, map[string]string{
 			provisionersdk.TagScope: provisionersdk.ScopeUser,
 		})
 		defer closer.Close()
@@ -303,7 +303,7 @@ func TestProvisionerDaemonServe(t *testing.T) {
 		template := coderdtest.CreateTemplate(t, client, user.OrganizationID, version.ID)
 		another, _ := coderdtest.CreateAnotherUser(t, client, user.OrganizationID)
 		_ = closer.Close()
-		closer = coderdtest.NewExternalProvisionerDaemon(t, another, user.OrganizationID, map[string]string{
+		closer = coderdenttest.NewExternalProvisionerDaemon(t, another, user.OrganizationID, map[string]string{
 			provisionersdk.TagScope: provisionersdk.ScopeUser,
 		})
 		defer closer.Close()
diff --git a/enterprise/coderd/templates_test.go b/enterprise/coderd/templates_test.go
@@ -1892,10 +1892,13 @@ func TestTemplateAccess(t *testing.T) {
 func TestMultipleOrganizationTemplates(t *testing.T) {
 	t.Parallel()
 
+	dv := coderdtest.DeploymentValues(t)
+	dv.Experiments = []string{string(codersdk.ExperimentMultiOrganization)}
 	ownerClient, first := coderdenttest.New(t, &coderdenttest.Options{
 		Options: &coderdtest.Options{
 			// This only affects the first org.
 			IncludeProvisionerDaemon: true,
+			DeploymentValues:         dv,
 		},
 		LicenseOptions: &coderdenttest.LicenseOptions{
 			Features: license.Features{
diff --git a/enterprise/coderd/users_test.go b/enterprise/coderd/users_test.go
@@ -478,3 +478,45 @@ func TestGrantSiteRoles(t *testing.T) {
 		})
 	}
 }
+
+func TestEnterprisePostUser(t *testing.T) {
+	t.Parallel()
+
+	t.Run("OrganizationNoAccess", func(t *testing.T) {
+		t.Parallel()
+
+		dv := coderdtest.DeploymentValues(t)
+		dv.Experiments = []string{string(codersdk.ExperimentMultiOrganization)}
+
+		client, first := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureMultipleOrganizations: 1,
+				},
+			},
+		})
+
+		notInOrg, _ := coderdtest.CreateAnotherUser(t, client, first.OrganizationID)
+		other, _ := coderdtest.CreateAnotherUser(t, client, first.OrganizationID, rbac.RoleOwner(), rbac.RoleMember())
+
+		ctx, cancel := context.WithTimeout(context.Background(), testutil.WaitLong)
+		defer cancel()
+
+		org := coderdenttest.CreateOrganization(t, other, coderdenttest.CreateOrganizationOptions{}, func(request *codersdk.CreateOrganizationRequest) {
+			request.Name = "another"
+		})
+
+		_, err := notInOrg.CreateUser(ctx, codersdk.CreateUserRequest{
+			Email:          "some@domain.com",
+			Username:       "anotheruser",
+			Password:       "SomeSecurePassword!",
+			OrganizationID: org.ID,
+		})
+		var apiErr *codersdk.Error
+		require.ErrorAs(t, err, &apiErr)
+		require.Equal(t, http.StatusNotFound, apiErr.StatusCode())
+	})
+}
diff --git a/enterprise/members_test.go b/enterprise/members_test.go
@@ -0,0 +1,117 @@
+package enterprise_test
+
+import (
+	"testing"
+
+	"github.com/google/uuid"
+	"github.com/stretchr/testify/require"
+
+	"github.com/coder/coder/v2/coderd/coderdtest"
+	"github.com/coder/coder/v2/coderd/database/db2sdk"
+	"github.com/coder/coder/v2/coderd/rbac"
+	"github.com/coder/coder/v2/codersdk"
+	"github.com/coder/coder/v2/enterprise/coderd/coderdenttest"
+	"github.com/coder/coder/v2/enterprise/coderd/license"
+	"github.com/coder/coder/v2/testutil"
+)
+
+func TestEnterpriseMembers(t *testing.T) {
+	t.Run("PostUser", func(t *testing.T) {
+		t.Parallel()
+
+		dv := coderdtest.DeploymentValues(t)
+		dv.Experiments = []string{string(codersdk.ExperimentMultiOrganization)}
+		owner, first := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureMultipleOrganizations: 1,
+				},
+			},
+		})
+
+		ctx := testutil.Context(t, testutil.WaitMedium)
+		org := coderdenttest.CreateOrganization(t, owner, coderdenttest.CreateOrganizationOptions{})
+
+		// Make a user not in the second organization
+		_, user := coderdtest.CreateAnotherUser(t, owner, first.OrganizationID)
+
+		// Use scoped user admin in org to add the user
+		client, userAdmin := coderdtest.CreateAnotherUser(t, owner, org.ID, rbac.ScopedRoleOrgUserAdmin(org.ID))
+
+		members, err := client.OrganizationMembers(ctx, org.ID)
+		require.NoError(t, err)
+		require.Len(t, members, 2) // Verify the 2 members at the start
+
+		// Add user to org
+		_, err = client.PostOrganizationMember(ctx, org.ID, user.Username)
+		require.NoError(t, err)
+
+		members, err = client.OrganizationMembers(ctx, org.ID)
+		require.NoError(t, err)
+		// Owner + user admin + new member
+		require.Len(t, members, 3)
+		require.ElementsMatch(t,
+			[]uuid.UUID{first.UserID, user.ID, userAdmin.ID},
+			db2sdk.List(members, onlyIDs))
+	})
+
+	t.Run("PostUserNotExists", func(t *testing.T) {
+		t.Parallel()
+		dv := coderdtest.DeploymentValues(t)
+		dv.Experiments = []string{string(codersdk.ExperimentMultiOrganization)}
+		owner, _ := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureMultipleOrganizations: 1,
+				},
+			},
+		})
+
+		org := coderdenttest.CreateOrganization(t, owner, coderdenttest.CreateOrganizationOptions{})
+
+		ctx := testutil.Context(t, testutil.WaitMedium)
+		// Add user to org
+		_, err := owner.PostOrganizationMember(ctx, org.ID, uuid.NewString())
+		require.Error(t, err)
+		var apiErr *codersdk.Error
+		require.ErrorAs(t, err, &apiErr)
+		require.Contains(t, apiErr.Message, "must be an existing")
+	})
+
+	// Calling it from a user without the org access.
+	t.Run("ListNotInOrg", func(t *testing.T) {
+		t.Parallel()
+		dv := coderdtest.DeploymentValues(t)
+		dv.Experiments = []string{string(codersdk.ExperimentMultiOrganization)}
+		owner, first := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureMultipleOrganizations: 1,
+				},
+			},
+		})
+
+		client, _ := coderdtest.CreateAnotherUser(t, owner, first.OrganizationID, rbac.ScopedRoleOrgAdmin(first.OrganizationID))
+		org := coderdenttest.CreateOrganization(t, owner, coderdenttest.CreateOrganizationOptions{})
+
+		ctx := testutil.Context(t, testutil.WaitShort)
+
+		// 404 error is expected instead of a 403/401 to not leak existence of
+		// an organization.
+		_, err := client.OrganizationMembers(ctx, org.ID)
+		require.ErrorContains(t, err, "404")
+	})
+}
+
+func onlyIDs(u codersdk.OrganizationMemberWithUserData) uuid.UUID {
+	return u.UserID
+}
