class TestNoInstitutionAddonAllowView(AdminTestCase):
def setUp(self):
super(TestNoInstitutionAddonAllowView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.rdm_addon_option = rdm_addon_factories.RdmAddonNoInstitutionFactoryOption(
)
self.rdm_addon_option.external_accounts.add(self.external_account)
self.rdm_addon_option.save()
self.user.external_accounts.add(self.external_account)
self.user.save()
self.request = RequestFactory().get('/fake_path')
self.view = views.AddonAllowView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'addon_name': self.rdm_addon_option.provider,
'institution_id': MAGIC_INSTITUTION_ID,
'allowed': '1',
}
def tearDown(self):
super(TestNoInstitutionAddonAllowView, self).tearDown()
if self.user.external_accounts.filter(
pk=self.external_account.id).exists():
self.user.external_accounts.remove(self.external_account)
self.user.delete()
self.rdm_addon_option.external_accounts.remove(self.external_account)
self.rdm_addon_option.delete()
self.external_account.delete()
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_active = True
self.request.user.is_registered = True
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_get(self, *args, **kwargs):
rdm_addon_option = utils.get_rdm_addon_option(
MAGIC_INSTITUTION_ID, self.view.kwargs['addon_name'])
nt.assert_true(rdm_addon_option.is_allowed)
nt.assert_equal(rdm_addon_option.provider,
self.view.kwargs['addon_name'])
def test_get_disallowed(self, *args, **kwargs):
self.view.kwargs['allowed'] = False
self.view.get(self.request, *args, **self.view.kwargs)
rdm_addon_option = utils.get_rdm_addon_option(
MAGIC_INSTITUTION_ID, self.view.kwargs['addon_name'])
nt.assert_equal(rdm_addon_option.is_allowed, False)
nt.assert_equal(rdm_addon_option.provider,
self.view.kwargs['addon_name'])
nt.assert_equal(
self.user.external_accounts.filter(
pk=self.external_account.id).exists(), False)
class TestOAuthView(AdminTestCase):
def setUp(self):
super(TestOAuthView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.rdm_addon_option = rdm_addon_factories.RdmAddonOptionFactory()
self.rdm_addon_option.provider = self.external_account.provider
self.rdm_addon_option.external_accounts.add(self.external_account)
self.rdm_addon_option.save()
self.user.affiliated_institutions.add(self.rdm_addon_option.institution)
self.user.external_accounts.add(self.external_account)
self.user.save()
self.request = RequestFactory().get('/fake_path')
self.view = views.OAuthView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'external_account_id': self.external_account._id,
'institution_id': self.rdm_addon_option.institution.id,
}
def tearDown(self):
super(TestOAuthView, self).tearDown()
institution = self.rdm_addon_option.institution
self.user.affiliated_institutions.remove(institution)
if self.user.external_accounts.filter(pk=self.external_account.id).exists():
self.user.external_accounts.remove(self.external_account)
self.user.delete()
if self.rdm_addon_option.external_accounts.filter(pk=self.external_account.id).exists():
self.rdm_addon_option.external_accounts.remove(self.external_account)
self.rdm_addon_option.delete()
institution.delete()
self.external_account.delete()
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_admin_login(self):
"""test institution administrator login """
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_true(self.view.test_func())
def test_non_admin_login(self):
"""test user not superuser or institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = False
nt.assert_equal(self.view.test_func(), False)
def test_non_active_user_login(self):
"""test invalid user login"""
self.request.user.is_active = False
nt.assert_equal(self.view.test_func(), False)
def test_non_registered_user_login(self):
"""test unregistered user login"""
self.request.user.is_registered = False
nt.assert_equal(self.view.test_func(), False)
def test_non_affiliated_institution_user_login(self):
"""test unaffiliated institution user login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
self.view.kwargs['institution_id'] = self.rdm_addon_option.institution.id + 1
nt.assert_equal(self.view.test_func(), False)
self.view.kwargs['institution_id'] = self.rdm_addon_option.institution.id
def test_delete(self, *args, **kwargs):
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_equal(self.user.external_accounts.count(), 1)
nt.assert_equal(self.rdm_addon_option.external_accounts.count(), 1)
self.view.delete(self.request, *args, **self.view.kwargs)
nt.assert_equal(self.user.external_accounts.count(), 0)
nt.assert_equal(self.rdm_addon_option.external_accounts.count(), 0)
def test_delete_dummy(self, *args, **kwargs):
self.view.kwargs['external_account_id'] = self.external_account._id + 'dummy'
with self.assertRaises(Http404):
self.view.delete(self.request, *args, **self.view.kwargs)
self.view.kwargs['external_account_id'] = self.external_account._id
def test_delete_empty(self, *args, **kwargs):
self.rdm_addon_option.external_accounts.remove(self.external_account)
with self.assertRaises(Http404):
self.view.delete(self.request, *args, **self.view.kwargs)
class TestAccountsView(AdminTestCase):
def setUp(self):
super(TestAccountsView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.rdm_addon_option = rdm_addon_factories.RdmAddonOptionFactory()
self.rdm_addon_option.provider = self.external_account.provider
self.rdm_addon_option.external_accounts.add(self.external_account)
self.rdm_addon_option.save()
self.user.affiliated_institutions.add(self.rdm_addon_option.institution)
self.user.external_accounts.add(self.external_account)
self.user.save()
self.request = RequestFactory().get('/fake_path')
self.view = views.AccountsView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'addon_name': self.external_account.provider,
'institution_id': self.rdm_addon_option.institution.id,
}
def tearDown(self):
super(TestAccountsView, self).tearDown()
institution = self.rdm_addon_option.institution
self.user.affiliated_institutions.remove(institution)
if self.user.external_accounts.filter(pk=self.external_account.id).exists():
self.user.external_accounts.remove(self.external_account)
self.user.delete()
if self.rdm_addon_option.external_accounts.filter(pk=self.external_account.id).exists():
self.rdm_addon_option.external_accounts.remove(self.external_account)
self.rdm_addon_option.delete()
institution.delete()
self.external_account.delete()
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_admin_login(self):
"""test institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_true(self.view.test_func())
def test_non_admin_login(self):
"""test user not superuser or institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = False
nt.assert_equal(self.view.test_func(), False)
def test_non_active_user_login(self):
"""test invalid user login"""
self.request.user.is_active = False
nt.assert_equal(self.view.test_func(), False)
def test_non_registered_user_login(self):
"""test unregistered user login"""
self.request.user.is_registered = False
nt.assert_equal(self.view.test_func(), False)
def test_non_affiliated_institution_user_login(self):
"""test user unaffiliated institution login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
self.view.kwargs = {'institution_id': self.rdm_addon_option.institution.id + 1}
nt.assert_equal(self.view.test_func(), False)
def test_get(self, *args, **kwargs):
res = self.view.get(self.request, *args, **self.view.kwargs)
nt.assert_equal(res.status_code, 200)
content = json.loads(res.content)
nt.assert_equal(len(content['accounts']), 1)
def test_post_empty(self, *args, **kwargs):
self.request = RequestFactory().post(
'/fake',
data=json.dumps({}),
content_type='application/json'
)
self.view.kwargs['addon_name'] = 'dummy'
res = self.view.post(self.request, *args, **self.view.kwargs)
nt.assert_equal(res.status_code, 400)
def test_post_fake_s3_account(self, *args, **kwargs):
self.request = RequestFactory().post(
'/fake',
data=json.dumps({'access_key': 'aaa', 'secret_key': 'bbb'}),
content_type='application/json'
)
self.view.kwargs['addon_name'] = 's3'
res = self.view.post(self.request, *args, **self.view.kwargs)
nt.assert_equal(res.status_code, 400)
class TestAddonForceView(AdminTestCase):
def setUp(self):
super(TestAddonForceView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.rdm_addon_option = rdm_addon_factories.RdmAddonOptionFactory()
self.rdm_addon_option.external_accounts.add(self.external_account)
self.rdm_addon_option.save()
self.user.affiliated_institutions.add(
self.rdm_addon_option.institution)
self.user.external_accounts.add(self.external_account)
self.user.save()
self.request = RequestFactory().get('/fake_path')
self.view = views.AddonForceView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'addon_name': self.rdm_addon_option.provider,
'institution_id': self.rdm_addon_option.institution.id,
'forced': '1',
}
def tearDown(self):
super(TestAddonForceView, self).tearDown()
institution = self.rdm_addon_option.institution
self.user.affiliated_institutions.remove(institution)
if self.user.external_accounts.filter(
pk=self.external_account.id).exists():
self.user.external_accounts.remove(self.external_account)
self.user.delete()
self.rdm_addon_option.external_accounts.remove(self.external_account)
self.rdm_addon_option.delete()
institution.delete()
self.external_account.delete()
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_admin_login(self):
"""test institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_true(self.view.test_func())
def test_non_admin_login(self):
"""test user not superuser or institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = False
nt.assert_equal(self.view.test_func(), False)
def test_non_active_user_login(self):
"""test invalid user login"""
self.request.user.is_active = False
nt.assert_equal(self.view.test_func(), False)
def test_non_registered_user_login(self):
"""test unregistered user login"""
self.request.user.is_registered = False
nt.assert_equal(self.view.test_func(), False)
def test_non_affiliated_institution_user_login(self):
"""test user unaffiliated institution login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
self.view.kwargs = {
'institution_id': self.rdm_addon_option.institution.id + 1
}
nt.assert_equal(self.view.test_func(), False)
def test_get(self, *args, **kwargs):
self.view.get(self.request, *args, **self.view.kwargs)
rdm_addon_option = utils.get_rdm_addon_option(
self.rdm_addon_option.institution.id,
self.view.kwargs['addon_name'])
nt.assert_true(rdm_addon_option.is_forced)
nt.assert_equal(rdm_addon_option.provider,
self.view.kwargs['addon_name'])
def test_get_not_forced(self, *args, **kwargs):
self.view.kwargs['forced'] = False
self.view.get(self.request, *args, **self.view.kwargs)
rdm_addon_option = utils.get_rdm_addon_option(
self.rdm_addon_option.institution.id,
self.view.kwargs['addon_name'])
nt.assert_equal(rdm_addon_option.is_forced, False)
nt.assert_equal(rdm_addon_option.provider,
self.view.kwargs['addon_name'])
nt.assert_true(
self.user.external_accounts.filter(
pk=self.external_account.id).exists())
class TestCallbackView(AdminTestCase):
def setUp(self):
super(TestCallbackView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.institution = InstitutionFactory()
self.provider = MockOAuth2Provider(self.external_account)
self.user.affiliated_institutions.add(self.institution)
app = flask.Flask(__name__)
make_url_map(app)
app.config['SECRET_KEY'] = 'aaaaa'
self.ctx = app.test_request_context()
self.ctx.push()
self.request = RequestFactory().get('/fake_path')
add_session_to_request(self.request)
self.view0 = views.ConnectView()
self.view0 = setup_user_view(self.view0, self.request, user=self.user)
self.view0.kwargs = {
'addon_name': self.external_account.provider,
'institution_id': self.institution.id,
}
self.view = views.CallbackView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'addon_name': self.external_account.provider,
'institution_id': self.institution.id,
}
def tearDown(self):
super(TestCallbackView, self).tearDown()
self.user.affiliated_institutions.remove(self.institution)
self.user.delete()
self.institution.delete()
self.external_account.delete()
try:
self.ctx.pop()
except AssertionError:
pass
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_admin_login(self):
"""test institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_true(self.view.test_func())
def test_non_admin_login(self):
"""test user not superuser or institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = False
nt.assert_equal(self.view.test_func(), False)
def test_non_active_user_login(self):
"""test invalid user login"""
self.request.user.is_active = False
nt.assert_equal(self.view.test_func(), False)
def test_non_registered_user_login(self):
"""test unregistered user login"""
self.request.user.is_registered = False
nt.assert_equal(self.view.test_func(), False)
class TestConnectView(AdminTestCase):
def setUp(self):
super(TestConnectView, self).setUp()
self.user = AuthUserFactory()
self.external_account = ExternalAccountFactory()
self.institution = InstitutionFactory()
self.user.affiliated_institutions.add(self.institution)
self.provider = MockOAuth2Provider(self.external_account)
self.request = RequestFactory().get('/fake_path')
add_session_to_request(self.request)
self.view = views.ConnectView()
self.view = setup_user_view(self.view, self.request, user=self.user)
self.view.kwargs = {
'addon_name': self.external_account.provider,
'institution_id': self.institution.id,
}
def tearDown(self):
super(TestConnectView, self).tearDown()
self.user.affiliated_institutions.remove(self.institution)
self.user.delete()
self.institution.delete()
self.external_account.delete()
def test_super_admin_login(self):
"""test superuser login"""
self.request.user.is_superuser = True
nt.assert_true(self.view.test_func())
def test_admin_login(self):
"""test institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
nt.assert_true(self.view.test_func())
def test_non_admin_login(self):
"""test user not superuser or institution administrator login"""
self.request.user.is_superuser = False
self.request.user.is_staff = False
nt.assert_equal(self.view.test_func(), False)
def test_non_active_user_login(self):
"""test invalid user login"""
self.request.user.is_active = False
nt.assert_equal(self.view.test_func(), False)
def test_non_registered_user_login(self):
"""test unregistered user login"""
self.request.user.is_registered = False
nt.assert_equal(self.view.test_func(), False)
def test_non_affiliated_institution_user_login(self):
"""test user unaffiliated institution login"""
self.request.user.is_superuser = False
self.request.user.is_staff = True
self.view.kwargs = {'institution_id': self.institution.id + 1}
nt.assert_equal(self.view.test_func(), False)
def test_get(self, *args, **kwargs):
self.request.user.is_superuser = False
self.request.user.is_staff = True
res = self.view.get(self.request, *args, **self.view.kwargs)
nt.assert_equal(res.status_code, 302)
