def test_patch_employee_no_permissions(client):
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
patch_body = {'last_name': 'Himichkovich'}
resp = client.patch(url, data=patch_body, format='json')
assert resp.status_code == 403
def test_get_employee_permission_owner_success():
employee, _ = get_employee()
client = get_client(employee)
url = reverse('employee', args=(employee.id,))
resp = client.get(path=url)
assert resp.status_code == 200
def test_create_employee_unauthorized():
url = reverse('employee_create')
_, body = get_employee()
client = APIClient()
resp = client.post(url, data=body, format='json')
assert resp.status_code == 403
def test_patch_employee_not_valid(admin_client):
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
not_valid_body = {'birthdate': 'STRING'}
resp = admin_client.patch(url, data=not_valid_body, format='json')
assert resp.status_code == 400
def test_delete_employee_unauthorized():
client = APIClient()
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
resp = client.delete(path=url)
assert resp.status_code == 403
def test_delete_employee_owner_success():
employee, _ = get_employee()
client = get_client(employee)
url = reverse('employee', args=(employee.id,))
resp = client.delete(path=url)
assert resp.status_code == 403
def test_put_employee_not_valid(admin_client):
employee, body = get_employee()
url = reverse('employee', args=(employee.id,))
body['birthdate'] = 'NOT_VALID_BIRTHDATE'
resp = admin_client.put(url, data=body, format='json')
assert resp.status_code == 400
def test_put_employee_unauthorized():
client = APIClient()
employee, body = get_employee()
url = reverse('employee', args=(employee.id,))
resp = client.put(url, data=body, format='json')
assert resp.status_code == 403
def test_put_employee_object_does_not_exist(admin_client):
employee_not_exist_pk = 999
_, valid_body = get_employee()
url = reverse('employee', args=(employee_not_exist_pk,))
resp = admin_client.put(url, data=valid_body, format='json')
assert resp.status_code == 404
def test_patch_employee_unauthorized():
client = APIClient()
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
patch_body = {'last_name': 'Himichkovich'}
resp = client.patch(url, data=patch_body, format='json')
assert resp.status_code == 403
def test_patch_employee_success(admin_client):
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
patch_body = {'last_name': 'Himichkovich'}
resp = admin_client.patch(url, data=patch_body, format='json')
assert resp.status_code == 200
assert resp.data['last_name'] == patch_body['last_name']
def test_put_employee_success(admin_client):
employee, body = get_employee()
url = reverse('employee', args=(employee.id,))
new_last_name = 'Vagrant'
body['last_name'] = new_last_name
resp = admin_client.put(url, data=body, format='json')
assert resp.status_code == 200
assert resp.data['last_name'] == new_last_name
def test_put_employee_permission_owner_success():
employee, body = get_employee()
client = get_client(employee)
url = reverse('employee', args=(employee.id,))
new_last_name = 'Vagrant'
body['last_name'] = new_last_name
resp = client.put(url, data=body, format='json')
assert resp.status_code == 200
assert resp.data['last_name'] == new_last_name
def test_get_employee_no_permissions(client):
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
resp = client.get(path=url)
assert resp.status_code == 403
def test_get_employee_success(admin_client):
employee, _ = get_employee()
url = reverse('employee', args=(employee.id,))
resp = admin_client.get(path=url)
assert 200 == resp.status_code
def test_create_employee_already_exist(admin_client, admin_user):
url = reverse('employee_create')
employee, body = get_employee()
resp = admin_client.post(url, data=body, format='json')
assert resp.status_code == 409
def test_put_employee_no_permissions(client):
employee, valid_body = get_employee()
url = reverse('employee', args=(employee.id,))
resp = client.put(url, data=valid_body, format='json')
assert resp.status_code == 403