439 lines
15 KiB
Python
439 lines
15 KiB
Python
import unittest
|
|
from flask_testing import TestCase
|
|
import json
|
|
|
|
from fictive_users import TAB_USER_WITH_PASSWORD, uwp_to_user
|
|
|
|
from application import db, create_app
|
|
from application.users_model import Users
|
|
from application.logs_model import Logs
|
|
|
|
|
|
|
|
|
|
class BaseTestCase(TestCase):
|
|
|
|
def create_app(self):
|
|
app = create_app('testing')
|
|
return app
|
|
|
|
|
|
def setUp(self):
|
|
db.create_all()
|
|
for uwp in TAB_USER_WITH_PASSWORD:
|
|
db.session.add(uwp_to_user(uwp))
|
|
db.session.commit()
|
|
|
|
|
|
def tearDown(self):
|
|
db.session.remove()
|
|
db.drop_all()
|
|
|
|
|
|
|
|
|
|
class FlaskTestCase(BaseTestCase):
|
|
|
|
# -- UTILS ---
|
|
|
|
def login(self, email, password):
|
|
data0 = {
|
|
"email": email,
|
|
"password": password
|
|
}
|
|
response = self.client.post('/api/login', json=data0)
|
|
return response
|
|
|
|
# --- LOGIN ---
|
|
|
|
# def test_login_NoFields_statusCode(self):
|
|
# data0 = {}
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.status_code, 400)
|
|
|
|
|
|
# def test_login_NoFields_message(self):
|
|
# data0 = {}
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.json['message'], 'Need email, password fields.')
|
|
|
|
|
|
# def test_login_emptyFields_statusCode(self):
|
|
# data0 = {
|
|
# "email": "",
|
|
# "password": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.status_code, 400)
|
|
|
|
|
|
# def test_login_emptyFields_message(self):
|
|
# data0 = {
|
|
# "email": "",
|
|
# "password": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.json['message'], 'Empty email and/or password fields.')
|
|
|
|
|
|
# def test_login_wrongFields_statusCode(self):
|
|
# data0 = {
|
|
# "email": "nimp@gmail.com",
|
|
# "password": "nimp"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.status_code, 404)
|
|
|
|
|
|
# def test_login_wrongFields_message(self):
|
|
# data0 = {
|
|
# "email": "nimp@gmail.com",
|
|
# "password": "nimp"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.json['message'], 'Email or password invalid')
|
|
|
|
|
|
# def test_login_success_statusCode(self):
|
|
# data0 = {
|
|
# "email": "riri@gmail.com",
|
|
# "password": "ririPass"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
|
|
# def test_login_success_message(self):
|
|
# data0 = {
|
|
# "email": "riri@gmail.com",
|
|
# "password": "ririPass"
|
|
# }
|
|
# response = self.client.post('/api/login', json=data0)
|
|
# self.assertEqual(response.json['message'], 'User authenticated.')
|
|
|
|
|
|
|
|
# --- REGISTER ---
|
|
|
|
# def test_register_noFields_statusCode(self):
|
|
# data0 = {}
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.status_code, 400)
|
|
|
|
|
|
# def test_register_noFields_message(self):
|
|
# data0 = {}
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertIn('Need', response.json['message'])
|
|
|
|
|
|
# def test_register_emptyFields_statusCode(self):
|
|
# data0 = {
|
|
# "email": "",
|
|
# "password": "blabla",
|
|
# "nickname": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.status_code, 400)
|
|
|
|
|
|
# def test_register_emptyFields_message(self):
|
|
# data0 = {
|
|
# "email": "",
|
|
# "password": "blabla",
|
|
# "nickname": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.json['message'], 'Empty email and/or password and/or nickname fields.')
|
|
|
|
|
|
# def test_register_alreadyExist_statusCode(self):
|
|
# data0 = {
|
|
# "email": "riri@gmail.com",
|
|
# "password": "blabla",
|
|
# "nickname": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.status_code, 500)
|
|
|
|
|
|
# def test_register_alreadyExist_statusCode(self):
|
|
# data0 = {
|
|
# "email": "riri@gmail.com",
|
|
# "password": "blabla",
|
|
# "nickname": "blabla"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertIn('already exist', response.json['message'])
|
|
|
|
|
|
# def test_register_success_statusCode(self):
|
|
# data0 = {
|
|
# "email": "loulou@gmail.com",
|
|
# "password": "loulouPass",
|
|
# "nickname": "Loulou"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
|
|
# def test_register_success_message(self):
|
|
# data0 = {
|
|
# "email": "loulou@gmail.com",
|
|
# "password": "loulouPass",
|
|
# "nickname": "Loulou"
|
|
# }
|
|
# response = self.client.post('/api/register', json=data0)
|
|
# self.assertEqual(response.json['message'], 'User registered.')
|
|
|
|
|
|
# --- LOGOUT ---
|
|
|
|
# def test_logout_fail_(self):
|
|
# response = self.client.delete('/api/logout')
|
|
# self.assertEqual(response.status_code, 500)
|
|
|
|
|
|
# def test_logout_success(self):
|
|
# response = self.login("riri@gmail.com", "ririPass")
|
|
# if response.status_code == 200:
|
|
# response = self.client.delete('/api/logout')
|
|
# self.assertEqual(response.status_code, 200)
|
|
# else:
|
|
# self.assertEqual(True, False)
|
|
|
|
|
|
|
|
# # --- SELF UPDATE ---
|
|
|
|
def test_selfUpdate_notConnected_statusCode(self):
|
|
data0 = {}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.status_code, 500)
|
|
|
|
|
|
def test_selfUpdate_notConnected_message(self):
|
|
data0 = {}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.json['message'], 'User not authenticated.')
|
|
|
|
|
|
def test_selfUpdate_noFields_statusCode(self):
|
|
response = self.login("riri@gmail.com", "ririPass")
|
|
if response.status_code == 200:
|
|
data0 = {}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.status_code, 400)
|
|
else:
|
|
self.assertEqual(True, False)
|
|
|
|
|
|
def test_selfUpdate_noFields_message(self):
|
|
response = self.login("riri@gmail.com", "ririPass")
|
|
if response.status_code == 200:
|
|
data0 = {}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertIn('Need', response.json['message'])
|
|
else:
|
|
self.assertEqual(True, False)
|
|
|
|
|
|
def test_selfUpdate_emptyFields_statusCode(self):
|
|
response = self.login("riri@gmail.com", "ririPass")
|
|
if response.status_code == 200:
|
|
data0 = {
|
|
"nickname": "",
|
|
"password": "blabla"
|
|
}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.status_code, 400)
|
|
else:
|
|
self.assertEqual(True, False)
|
|
|
|
|
|
def test_selfUpdate_emptyFields_message(self):
|
|
response = self.login("riri@gmail.com", "ririPass")
|
|
if response.status_code == 200:
|
|
data0 = {
|
|
"nickname": "",
|
|
"password": "blabla"
|
|
}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.json['message'], 'Empty nickname and/or password fields.')
|
|
else:
|
|
self.assertEqual(True, False)
|
|
|
|
|
|
def test_self_update_success_statusCode(self):
|
|
response = self.login("riri@gmail.com", "ririPass")
|
|
if response.status_code == 200:
|
|
data0 = {
|
|
"nickname": "Ririri",
|
|
"password": "ririPass"
|
|
}
|
|
response = self.client.put('/api/user/update', json=data0)
|
|
self.assertEqual(response.status_code, 200)
|
|
else:
|
|
self.assertEqual(True, False)
|
|
|
|
|
|
|
|
# # --- SELF DELETE ---
|
|
|
|
# def test_self_delete_not_connected(self):
|
|
# response = self.client.delete('/api/user/delete')
|
|
# self.assertEqual(response.status_code, 500)
|
|
|
|
# def test_self_delete_success(self):
|
|
# self.login('donald@gmail.com', 'donaldPass')
|
|
# response = self.client.delete('/api/user/delete')
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
# def test_self_delete_last_admin(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# response = self.client.delete('/api/user/delete')
|
|
# self.assertEqual(response.json['message'], 'Can\'t delete last admin')
|
|
|
|
# # --- admin: CREATE USER ---
|
|
|
|
# def test_admin_create_not_connected(self):
|
|
# data0 = json.dumps({})
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User not authenticated.')
|
|
|
|
# def test_admin_create_no_permission(self):
|
|
# self.login('riri@gmail.com', 'ririPass')
|
|
# data0 = json.dumps({})
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User does not have permission.')
|
|
|
|
# def test_admin_create_no_fields(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({})
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertIn('Need', response.json['message'])
|
|
|
|
# def test_admin_create_empty_fields(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "email": "",
|
|
# "nickname": "Mickey",
|
|
# "password": "mickeyPass",
|
|
# "is_admin": true,
|
|
# })
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'Empty email and/or nickname and/or password and/or is_admin fields.')
|
|
|
|
# def test_admin_create_already_exist(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "email": "riri@gmail.com",
|
|
# "passord": "blabla",
|
|
# "nickname": "blabla",
|
|
# })
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertIn('already exist', response.json['message'])
|
|
|
|
# def test_admin_create_success(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "email": "mickey@gmail.com",
|
|
# "nickname": "Mickey",
|
|
# "password": "mickeyPass",
|
|
# "is_admin": true,
|
|
# })
|
|
# response = self.client.post('/api/admin/create/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User registered.')
|
|
|
|
# # --- admin: UPDATE USER ---
|
|
|
|
# def test_admin_update_not_connected(self):
|
|
# data0 = json.dumps({})
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User not authenticated.')
|
|
|
|
# def test_admin_update_no_permission(self):
|
|
# self.login('riri@gmail.com', 'ririPass')
|
|
# data0 = json.dumps({})
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User does not have permission.')
|
|
|
|
# def test_admin_update_no_fields(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({})
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertIn('Need', response.json['message'])
|
|
|
|
# def test_admin_update_empty_fields(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "id": 1,
|
|
# "password": "",
|
|
# "is_admin": false,
|
|
# })
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'Empty is_admin and/or password fields.')
|
|
|
|
# def test_admin_update_not_exists(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "id": 99,
|
|
# "password": "",
|
|
# "is_admin": false,
|
|
# })
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertEqual(response.json['message'], 'User do not exist.')
|
|
|
|
# def test_admin_update_success(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({
|
|
# "id": 1,
|
|
# "password": "roroPass",
|
|
# "is_admin": false,
|
|
# })
|
|
# response = self.client.put('/api/admin/update/user', data=data0)
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
# # --- admin: DELETE USER ---
|
|
|
|
# def test_admin_delete_not_connected(self):
|
|
# response = self.client.delete('/api/admin/delete/user')
|
|
# self.assertEqual(response.json['message'], 'User not authenticated.')
|
|
|
|
# def test_admin_delete_no_permission(self):
|
|
# self.login('riri@gmail.com', 'ririPass')
|
|
# response = self.client.delete('/api/admin/delete/user')
|
|
# self.assertEqual(response.json['message'], 'User does not have permission.')
|
|
|
|
# def test_admin_delete_no_fields(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({})
|
|
# response = self.client.delete('/api/admin/delete/user')
|
|
# self.assertIn('Need', response.json['message'])
|
|
|
|
# def test_admin_delete_not_exists(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({"id": 99})
|
|
# response = self.client.delete('/api/admin/delete/user')
|
|
# self.assertEqual(response.json['message'], 'User do not exist.')
|
|
|
|
# def test_admin_delete_success(self):
|
|
# self.login('daisy@gmail.com', 'daisyPass')
|
|
# data0 = json.dumps({"id": 2})
|
|
# response = self.client.delete('/api/admin/delete/user', data=data0)
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
# # --- LIST OF USER ---
|
|
|
|
# def test_list_of_users_fail(self):
|
|
# response = self.client.get('/api/users')
|
|
# self.assertEqual(response.status_code, 500)
|
|
|
|
# def test_list_of_users_success(self):
|
|
# self.login('riri@gmail.com', 'ririPass')
|
|
# response = self.client.get('/api/users')
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
|
|
if __name__ == '__main__':
|
|
unittest.main()
|