1. 02 Sep, 2020 4 commits
    • Arnaud Fontaine's avatar
      CodingStyleTest: Prepare migration of Invoicing Unit Tests to ZODB Components. · db5d183b
      Arnaud Fontaine authored
      efd71291 added on erp5_invoicing a test dependency on erp5_advanced_invoicing.
      However, testRule for example uses erp5_invoicing but not erp5_advanced_invoicing
      so this would not work.
      
      Moreover, erp5_{simplified,advanced}_invoicing enhance erp5_invoicing by providing
      a container for Invoice Line so to match real world use cases it is better to
      have two CodingStyle tests: one checking erp5_invoicing+erp5_simplified_invoicing
      and the other one erp5_invoicing+erp5_advanced_invoicing.
      
      Also, fix CodingStyle issues on erp5_advanced_invoicing.
      db5d183b
    • Romain Courteaud's avatar
      b2a1e543
    • Jérome Perrin's avatar
      Revert "base: ensure migrated persons have a user_id" · e874575d
      Jérome Perrin authored
      This reverts commit bc67c2c4.
      
      This is seem to stall testFunctionalAdvancedECommerce with this error:
      
            Module script, line 5, in Workflow_ensureUserId
             - <PythonScript at /erp5_portal_7f1517681f85de9695ca475d69c4d66f/portal_workflow/login_interaction_workflow/scripts/Workflow_ensureUserId>
             - Line 5
              user = state_change['object'].getParentValue()
            Module AccessControl.ZopeGuards, line 87, in guarded_getitem
              if getSecurityManager().validate(object, object, None, v):
          Unauthorized: You are not allowed to access '2' in this context
      
      let's revert for now, we'll re-do this with more tests.
      e874575d
    • Romain Courteaud's avatar
      erp5_configurator_standard: update officejs sdk test · 5ca4964b
      Romain Courteaud authored
      New dependencies were added in nexedi/erp5@206a8e25
      5ca4964b
  2. 01 Sep, 2020 9 commits
  3. 31 Aug, 2020 8 commits
    • Vincent Pelletier's avatar
      synchronizeDynamicModules: Flush ZODB cache. · e5cb7960
      Vincent Pelletier authored
      Should fix most of the cases where reloading components cause breakage.
      There is still a race condition between a transaction's cache being
      actually flushed (which can only happen at transaction boundaries) and
      another transaction doing the actual class reload, which will
      immediately affect all the started transactions in the same process.
      e5cb7960
    • Jérome Perrin's avatar
      testDynamicClassGeneration: check broken dynamic classes can be repaired · 1f69c0d7
      Jérome Perrin authored
      Once a portal type class became available again, instances of this classes
      should no longer be broken and can be modified again
      1f69c0d7
    • Jérome Perrin's avatar
      testDynamicClassGeneration: explicitly create a Base Type in test · c7239458
      Jérome Perrin authored
      Some other types (Gadget Type) are currently lacking the interaction workflow
      which resets the dynamic classes.
      c7239458
    • Jérome Perrin's avatar
    • Jérome Perrin's avatar
      base: ensure migrated persons have a user_id · bc67c2c4
      Jérome Perrin authored
      Persons created before the introduction of ERP5 Login and user_id will only
      have a user_id after migration if they were already user before migration,
      otherwise they will not have a user_id and creating assignments and ERP5 Login
      for this person creates a user which can not log in the system.
      
      To make it possible for these persons to login anyway, we ensure person has a
      user id when validating a login
      bc67c2c4
    • Jérome Perrin's avatar
      base: restrict changing a user id · 45d16764
      Jérome Perrin authored
      while setting an initial user id should be allowed for any user which can
      create a person, changing an already set user id can have security
      implications, so we protect it with a more strict permission
      45d16764
    • Jérome Perrin's avatar
      core: display login in caption · b9cdfb58
      Jérome Perrin authored
      user_id are technical things that should not be displayed to users.
      
      In the case of tokens, for now we show "something that's not user id / not the
      token secret". That's not ideal but as far as I know whe don't really have use
      cases of tokens to show a page where user caption would be displayed.
      b9cdfb58
    • Jérome Perrin's avatar
      Fix issues with Person.setUserId unicity check · d87bda30
      Jérome Perrin authored
      Person.setUserId is heavy, it serializes person module to prevent concurrency,
      but in some cases we the risk of having duplicate user ids is under control, so
      we don't want to pay the performance price.
      
      See merge request !1242
      d87bda30
  4. 27 Aug, 2020 1 commit
  5. 26 Aug, 2020 1 commit
  6. 25 Aug, 2020 3 commits
  7. 24 Aug, 2020 4 commits
  8. 21 Aug, 2020 5 commits
  9. 19 Aug, 2020 5 commits