def test_set_project_perms_to_xform(self):
"""
Test set_project_perms_to_xform(xform, project)
"""
self._publish_transportation_form()
# Alice has data entry role to default project
alice = self._create_user('alice', 'alice', create_profile=True)
DataEntryRole.add(alice, self.project)
set_project_perms_to_xform(self.xform, self.project)
self.assertTrue(DataEntryRole.user_has_role(alice, self.xform))
self.assertTrue(self.project.pk, self.xform.project_id)
# Create other project and transfer xform to new project
project_b = Project(name='Project B',
created_by=self.user,
organization=self.user)
project_b.save()
self.xform.project = project_b
self.xform.save()
self.xform.refresh_from_db()
self.assertTrue(self.project.pk, self.xform.project_id)
# set permissions for new project
set_project_perms_to_xform(self.xform, project_b)
# Alice should have no data entry role to transfered form
self.assertFalse(DataEntryRole.user_has_role(alice, self.xform))
def test_set_project_perms_to_xform(self):
"""
Test set_project_perms_to_xform(xform, project)
"""
self._publish_transportation_form()
# Alice has data entry role to default project
alice = self._create_user('alice', 'alice', create_profile=True)
DataEntryRole.add(alice, self.project)
set_project_perms_to_xform(self.xform, self.project)
self.assertTrue(DataEntryRole.user_has_role(alice, self.xform))
self.assertTrue(self.project.pk, self.xform.project_id)
# Create other project and transfer xform to new project
project_b = Project(
name='Project B', created_by=self.user, organization=self.user)
project_b.save()
self.xform.project = project_b
self.xform.save()
self.xform.refresh_from_db()
self.assertTrue(self.project.pk, self.xform.project_id)
# set permissions for new project
set_project_perms_to_xform(self.xform, project_b)
# Alice should have no data entry role to transfered form
self.assertFalse(DataEntryRole.user_has_role(alice, self.xform))
def test_get_xform_list_other_user_with_dataentry_role(self):
request = self.factory.get('/')
response = self.view(request)
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
DataEntryRole.add(alice_profile.user, self.xform)
self.assertTrue(
DataEntryRole.user_has_role(alice_profile.user, self.xform))
auth = DigestAuth('alice', 'bobbob')
request.META.update(auth(request.META, response))
response = self.view(request)
self.assertEqual(response.status_code, 200)
path = os.path.join(
os.path.dirname(__file__), '..', 'fixtures', 'formList.xml')
with open(path, encoding='utf-8') as f:
form_list_xml = f.read().strip()
data = {"hash": self.xform.hash, "pk": self.xform.pk}
content = response.render().content.decode('utf-8')
self.assertEqual(content, form_list_xml % data)
self.assertTrue(response.has_header('X-OpenRosa-Version'))
self.assertTrue(
response.has_header('X-OpenRosa-Accept-Content-Length'))
self.assertTrue(response.has_header('Date'))
self.assertEqual(response['Content-Type'],
'text/xml; charset=utf-8')
def test_get_xform_list_other_user_with_dataentry_role(self):
request = self.factory.get('/')
response = self.view(request)
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
DataEntryRole.add(alice_profile.user, self.xform)
self.assertTrue(
DataEntryRole.user_has_role(alice_profile.user, self.xform)
)
auth = DigestAuth('alice', 'bobbob')
request.META.update(auth(request.META, response))
response = self.view(request)
self.assertEqual(response.status_code, 200)
path = os.path.join(
os.path.dirname(__file__),
'..', 'fixtures', 'formList.xml')
with open(path) as f:
form_list_xml = f.read().strip()
data = {"hash": self.xform.hash, "pk": self.xform.pk}
content = response.render().content
self.assertEqual(content, form_list_xml % data)
self.assertTrue(response.has_header('X-OpenRosa-Version'))
self.assertTrue(
response.has_header('X-OpenRosa-Accept-Content-Length'))
self.assertTrue(response.has_header('Date'))
self.assertEqual(response['Content-Type'],
'text/xml; charset=utf-8')
def test_role_update_xform_meta_perms(self):
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
EditorRole.add(alice_profile.user, self.xform)
view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = view(request)
self.assertEqual(response.status_code, 201)
self.assertFalse(
EditorRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
EditorMinorRole.user_has_role(alice_profile.user, self.xform))
meta = MetaData.xform_meta_permission(self.xform)
DataEntryRole.add(alice_profile.user, self.xform)
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor|dataentry-only',
'xform': self.xform.pk
}
request = self.factory.put('/', data, **self.extra)
response = view(request, pk=meta.pk)
self.assertEqual(response.status_code, 200)
self.assertFalse(
DataEntryRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
DataEntryOnlyRole.user_has_role(alice_profile.user, self.xform))
def test_role_update_xform_meta_perms(self):
alice_data = {'username': '******', 'email': '*****@*****.**'}
alice_profile = self._create_user_profile(alice_data)
EditorRole.add(alice_profile.user, self.xform)
view = MetaDataViewSet.as_view({
'post': 'create',
'put': 'update'
})
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor-minor|dataentry',
'xform': self.xform.pk
}
request = self.factory.post('/', data, **self.extra)
response = view(request)
self.assertEqual(response.status_code, 201)
self.assertFalse(
EditorRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
EditorMinorRole.user_has_role(alice_profile.user, self.xform))
meta = MetaData.xform_meta_permission(self.xform)
DataEntryRole.add(alice_profile.user, self.xform)
data = {
'data_type': XFORM_META_PERMS,
'data_value': 'editor|dataentry-only',
'xform': self.xform.pk
}
request = self.factory.put('/', data, **self.extra)
response = view(request, pk=meta.pk)
self.assertEqual(response.status_code, 200)
self.assertFalse(
DataEntryRole.user_has_role(alice_profile.user, self.xform))
self.assertTrue(
DataEntryOnlyRole.user_has_role(alice_profile.user, self.xform))
