test(users): test adding users with missing (not just empty) fields
This commit is contained in:
parent
e835173fea
commit
2669e17c91
|
@ -7,7 +7,12 @@ from tests.common import (
|
||||||
read_json,
|
read_json,
|
||||||
)
|
)
|
||||||
from selfprivacy_api.utils import WriteUserData
|
from selfprivacy_api.utils import WriteUserData
|
||||||
from tests.test_graphql.common import assert_empty, assert_errorcode
|
from tests.test_graphql.common import (
|
||||||
|
assert_empty,
|
||||||
|
assert_errorcode,
|
||||||
|
assert_ok,
|
||||||
|
get_data,
|
||||||
|
)
|
||||||
|
|
||||||
invalid_usernames = [
|
invalid_usernames = [
|
||||||
"messagebus",
|
"messagebus",
|
||||||
|
@ -368,118 +373,80 @@ mutation createUser($user: UserMutationInput!) {
|
||||||
"""
|
"""
|
||||||
|
|
||||||
|
|
||||||
def test_graphql_add_user_unauthorize(client, one_user, mock_subprocess_popen):
|
def api_add_user_json(authorized_client, user_json: dict):
|
||||||
response = client.post(
|
# lowlevel for deeper testing of edgecases
|
||||||
|
return authorized_client.post(
|
||||||
"/graphql",
|
"/graphql",
|
||||||
json={
|
json={
|
||||||
"query": API_CREATE_USERS_MUTATION,
|
"query": API_CREATE_USERS_MUTATION,
|
||||||
"variables": {
|
"variables": {
|
||||||
"user": {
|
"user": user_json,
|
||||||
"username": "user2",
|
|
||||||
"password": "12345678",
|
|
||||||
},
|
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
||||||
|
def api_add_user(authorized_client, username, password):
|
||||||
|
response = api_add_user_json(
|
||||||
|
authorized_client, {"username": username, "password": password}
|
||||||
|
)
|
||||||
|
output = get_data(response)["users"]["createUser"]
|
||||||
|
return output
|
||||||
|
|
||||||
|
|
||||||
|
def test_graphql_add_user_unauthorized(client, one_user, mock_subprocess_popen):
|
||||||
|
response = api_add_user_json(client, {"username": "user2", "password": "12345678"})
|
||||||
assert_empty(response)
|
assert_empty(response)
|
||||||
|
|
||||||
|
|
||||||
def test_graphql_add_user(authorized_client, one_user, mock_subprocess_popen):
|
def test_graphql_add_user(authorized_client, one_user, mock_subprocess_popen):
|
||||||
response = authorized_client.post(
|
output = api_add_user(authorized_client, "user2", password="12345678")
|
||||||
"/graphql",
|
assert_ok(output, code=201)
|
||||||
json={
|
|
||||||
"query": API_CREATE_USERS_MUTATION,
|
|
||||||
"variables": {
|
|
||||||
"user": {
|
|
||||||
"username": "user2",
|
|
||||||
"password": "12345678",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
},
|
|
||||||
)
|
|
||||||
assert response.status_code == 200
|
|
||||||
assert response.json().get("data") is not None
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["message"] is not None
|
assert output["user"]["username"] == "user2"
|
||||||
assert response.json()["data"]["users"]["createUser"]["code"] == 201
|
assert output["user"]["sshKeys"] == []
|
||||||
assert response.json()["data"]["users"]["createUser"]["success"] is True
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"]["username"] == "user2"
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"]["sshKeys"] == []
|
|
||||||
|
|
||||||
|
|
||||||
def test_graphql_add_undefined_settings(
|
def test_graphql_add_user_when_undefined_settings(
|
||||||
authorized_client, undefined_settings, mock_subprocess_popen
|
authorized_client, undefined_settings, mock_subprocess_popen
|
||||||
):
|
):
|
||||||
response = authorized_client.post(
|
output = api_add_user(authorized_client, "user2", password="12345678")
|
||||||
"/graphql",
|
assert_ok(output, code=201)
|
||||||
json={
|
|
||||||
"query": API_CREATE_USERS_MUTATION,
|
|
||||||
"variables": {
|
|
||||||
"user": {
|
|
||||||
"username": "user2",
|
|
||||||
"password": "12345678",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
},
|
|
||||||
)
|
|
||||||
assert response.status_code == 200
|
|
||||||
assert response.json().get("data") is not None
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["message"] is not None
|
assert output["user"]["username"] == "user2"
|
||||||
assert response.json()["data"]["users"]["createUser"]["code"] == 201
|
assert output["user"]["sshKeys"] == []
|
||||||
assert response.json()["data"]["users"]["createUser"]["success"] is True
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"]["username"] == "user2"
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"]["sshKeys"] == []
|
|
||||||
|
|
||||||
|
|
||||||
def test_graphql_add_without_password(
|
users_witn_empty_fields = [
|
||||||
authorized_client, one_user, mock_subprocess_popen
|
{"username": "user2", "password": ""},
|
||||||
):
|
{"username": "", "password": "12345678"},
|
||||||
response = authorized_client.post(
|
{"username": "", "password": ""},
|
||||||
"/graphql",
|
]
|
||||||
json={
|
|
||||||
"query": API_CREATE_USERS_MUTATION,
|
|
||||||
"variables": {
|
|
||||||
"user": {
|
|
||||||
"username": "user2",
|
|
||||||
"password": "",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
},
|
|
||||||
)
|
|
||||||
assert response.status_code == 200
|
|
||||||
assert response.json().get("data") is not None
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["message"] is not None
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["code"] == 400
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["success"] is False
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"] is None
|
|
||||||
|
|
||||||
|
|
||||||
def test_graphql_add_without_both(authorized_client, one_user, mock_subprocess_popen):
|
@pytest.mark.parametrize("user_json", users_witn_empty_fields)
|
||||||
response = authorized_client.post(
|
def test_graphql_add_with_empty_fields(authorized_client, one_user, user_json):
|
||||||
"/graphql",
|
response = api_add_user_json(authorized_client, user_json)
|
||||||
json={
|
output = get_data(response)["users"]["createUser"]
|
||||||
"query": API_CREATE_USERS_MUTATION,
|
|
||||||
"variables": {
|
|
||||||
"user": {
|
|
||||||
"username": "",
|
|
||||||
"password": "",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
},
|
|
||||||
)
|
|
||||||
assert response.status_code == 200
|
|
||||||
assert response.json().get("data") is not None
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["message"] is not None
|
assert_errorcode(output, 400)
|
||||||
assert response.json()["data"]["users"]["createUser"]["code"] == 400
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["success"] is False
|
|
||||||
|
|
||||||
assert response.json()["data"]["users"]["createUser"]["user"] is None
|
assert output["user"] is None
|
||||||
|
|
||||||
|
|
||||||
|
users_witn_undefined_fields = [
|
||||||
|
{"username": "user2"},
|
||||||
|
{"password": "12345678"},
|
||||||
|
{},
|
||||||
|
]
|
||||||
|
|
||||||
|
|
||||||
|
@pytest.mark.parametrize("user_json", users_witn_undefined_fields)
|
||||||
|
def test_graphql_add_with_undefined_fields(authorized_client, one_user, user_json):
|
||||||
|
# checking that all fields are mandatory
|
||||||
|
response = api_add_user_json(authorized_client, user_json)
|
||||||
|
assert response.json()["errors"] is not None
|
||||||
|
assert response.json()["errors"] != []
|
||||||
|
|
||||||
|
|
||||||
@pytest.mark.parametrize("username", invalid_usernames)
|
@pytest.mark.parametrize("username", invalid_usernames)
|
||||||
|
|
|
@ -112,28 +112,6 @@ def mock_subprocess_popen(mocker):
|
||||||
|
|
||||||
## TESTS ######################################################
|
## TESTS ######################################################
|
||||||
|
|
||||||
# graphql tests still provide these fields even if with empty values
|
|
||||||
|
|
||||||
|
|
||||||
def test_post_without_username(authorized_client, one_user, mock_subprocess_popen):
|
|
||||||
response = authorized_client.post("/users", json={"password": "password"})
|
|
||||||
assert response.status_code == 422
|
|
||||||
|
|
||||||
|
|
||||||
def test_post_without_password(authorized_client, one_user, mock_subprocess_popen):
|
|
||||||
response = authorized_client.post("/users", json={"username": "user4"})
|
|
||||||
assert response.status_code == 422
|
|
||||||
|
|
||||||
|
|
||||||
def test_post_without_username_and_password(
|
|
||||||
authorized_client, one_user, mock_subprocess_popen
|
|
||||||
):
|
|
||||||
response = authorized_client.post("/users", json={})
|
|
||||||
assert response.status_code == 422
|
|
||||||
|
|
||||||
|
|
||||||
# end of BUT THERE ARE FIELDS! rant
|
|
||||||
|
|
||||||
# the final user is not in gql checks
|
# the final user is not in gql checks
|
||||||
# I think maybe generate a bunch?
|
# I think maybe generate a bunch?
|
||||||
@pytest.mark.parametrize("username", ["", "1", "фыр", "user1@", "№:%##$^&@$&^()_"])
|
@pytest.mark.parametrize("username", ["", "1", "фыр", "user1@", "№:%##$^&@$&^()_"])
|
||||||
|
|
Loading…
Reference in New Issue