@Test
public void checkAccess()
{
logon(TEST_FINANCE_USER);
final GroupDO group = initTestDB.addGroup("ProjektDaoTest.ProjectManagers", TEST_PROJECT_ASSISTANT_USER);
ProjektDO projekt = new ProjektDO();
projekt.setName("ACME - Webportal");
projekt.setProjektManagerGroup(group);
Serializable id = projektDao.save(projekt);
projekt = projektDao.getById(id);
projekt.setDescription("Test");
projektDao.update(projekt);
logon(TEST_CONTROLLING_USER);
checkNoWriteAccess(id, projekt, "Controlling");
logon(TEST_USER);
checkNoAccess(id, "Other");
checkNoAccess(id, projekt, "Other");
logon(TEST_PROJECT_MANAGER_USER);
projektDao.getList(new ProjektFilter());
checkNoAccess(id, projekt, "Project manager");
logon(TEST_PROJECT_ASSISTANT_USER);
projektDao.getList(new ProjektFilter());
checkNoWriteAccess(id, projekt, "Project assistant");
checkNoHistoryAccess(id, projekt, "Project assistant");
logon(TEST_ADMIN_USER);
checkNoAccess(id, projekt, "Admin ");
checkNoAccess(id, projekt, "Project manager");
}