def test_delete_author_app(test_client):
_, u_infos = setUp()
_, access_token = login(test_client)
response = test_client.post(
'/oauth/clients/{}/author/{}'.format(
'5e59557579da4ec3ff04a682',
str(u_infos['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 200
_, access_token = login(test_client, username='******')
response = test_client.get(
'/oauth/clients/users/{}'.format(str(u_infos['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token))
)
r_json = json.loads(response.data)
assert response.status_code == 200
assert len(r_json['clients']) == 2
response = test_client.delete(
'/oauth/clients/{}/author/{}'.format(
'5e59557579da4ec3ff04a682',
str(u_infos['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 200
_, access_token = login(test_client, username='******')
response = test_client.get(
'/oauth/clients/users/{}'.format(str(u_infos['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token))
)
r_json = json.loads(response.data)
assert response.status_code == 200
assert len(r_json['clients']) == 1
def test_delete_author_app_403(test_client):
u_admin_infos, _ = setUp()
response = test_client.delete(
'/oauth/clients/{}/author/{}'.format(
'5e59557579da4ec3ff04a682',
str(u_admin_infos['_id'])))
assert response.status_code == 403
def test_delete_app_403_no_author(test_client):
_, _ = setUp()
_, access_token = login(test_client)
response = test_client.delete(
'/oauth/clients/{}'.format('5e59557579da4ec3ff04a683'),
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 403
def test_delete_user_not_found(test_client):
_, _ = setUp()
_, access_token = login(test_client)
response = test_client.delete(
'/oauth/users/abc',
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 403
def test_delete_user_403_admin_token(test_client):
_, u_info = setUp()
_, access_token = login(test_client)
response = test_client.delete(
'/oauth/users/{}'.format(str(u_info['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 403
def test_delete_author_app_404(test_client):
u_admin_infos, _ = setUp()
_, access_token = login(test_client)
response = test_client.delete(
'/oauth/clients/{}/author/{}'.format(
'abc',
str(u_admin_infos['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
assert response.status_code == 404
def test_delete_user_my_token(test_client):
_, u_info = setUp()
_, access_token = login(test_client, username='******')
response = test_client.delete(
'/oauth/users/{}'.format(str(u_info['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
r_json = json.loads(response.data)
assert response.status_code == 200
assert 'message' in r_json
response = test_client.get(
'/oauth/users/{}'.format(str(u_info['_id'])),
headers=dict(Authorization='Bearer {}'.format(access_token)))
r_json = json.loads(response.data)
assert response.status_code == 404
def test_delete_app_403(test_client):
_, _ = setUp()
response = test_client.delete(
'/oauth/clients/{}'.format('5e59557579da4ec3ff04a683'))
assert response.status_code == 403
def test_delete_user_403_without_token(test_client):
u_admin_info, _ = setUp()
response = test_client.delete('/oauth/users/{}'.format(
str(u_admin_info['_id'])))
assert response.status_code == 403
