Exemple #1
0
    def test_user_update_ignores_blank_email(self):
        first = 'firsty'
        last = 'lastington'
        new_password = '******'
        username = '******'
        original_password = '******'

        user = BadgeUser(username=username, is_active=True)
        user.set_password(original_password)
        user.save()
        UserRecipientIdentifier.objects.create(
            type=UserRecipientIdentifier.IDENTIFIER_TYPE_URL,
            identifier='http://testurl.com/123',
            verified=True,
            user=user)
        self.client.login(username=username, password=original_password)
        self.assertUserLoggedIn()

        TermsVersion.objects.create(version=1, short_description='terms 1')

        response = self.client.put('/v1/user/profile', {
            'first_name': first + ' Q.',
            'last_name': last,
            'email': None
        },
                                   format='json')
        self.assertEqual(response.status_code, 200)
Exemple #2
0
    def test_unverified_unprimary_email_sends_confirmation(self):
        """
        If there is only one email, and it's not primary, set it as primary.
        If it's not verified, send a verification.
        """
        user = BadgeUser(email="*****@*****.**",
                         first_name="Test",
                         last_name="User")
        user.save()
        email = CachedEmailAddress(email=user.email,
                                   user=user,
                                   verified=False,
                                   primary=False)
        email.save()

        user2 = BadgeUser(email="*****@*****.**",
                          first_name="Error",
                          last_name="User")
        user2.save()

        self.assertEqual(BadgeUser.objects.count(), 2)

        call_command('clean_email_records')

        email_record = CachedEmailAddress.objects.get(user=user)
        self.assertTrue(email_record.primary)
        self.assertEqual(len(mail.outbox), 1)
        self.assertEqual(BadgeUser.objects.count(), 1)
Exemple #3
0
    def test_user_can_agree_to_terms(self):
        first = 'firsty'
        last = 'lastington'
        new_password = '******'
        username = '******'
        original_password = '******'
        email = '*****@*****.**'

        user = BadgeUser(username=username, is_active=True, email=email)
        user.set_password(original_password)
        user.save()
        self.client.login(username=username, password=original_password)
        self.assertUserLoggedIn()

        TermsVersion.objects.create(version=1, short_description='terms 1')

        response = self.client.put(
            '/v1/user/profile', {
                'first_name': first,
                'last_name': last,
                'password': new_password,
                'current_password': original_password,
                'latest_terms_version': 1
            })
        self.assertEqual(response.status_code, 200)
    def test_email_added_for_user_missing_one(self):
        user = BadgeUser(email="*****@*****.**", first_name="Test", last_name="User")
        user.save()
        self.assertFalse(CachedEmailAddress.objects.filter(user=user).exists())

        user2 = BadgeUser(email="*****@*****.**", first_name="Test2", last_name="User")
        user2.save()
        email2 = CachedEmailAddress(user=user2, email="*****@*****.**", verified=False, primary=True)
        email2.save()

        call_command('clean_email_records')

        email_record = CachedEmailAddress.objects.get(user=user)
        self.assertFalse(email_record.verified)
        self.assertTrue(email_record.emailconfirmation_set.exists())
        self.assertEqual(len(mail.outbox), 1)
    def test_email_added_for_user_missing_one(self):
        user = BadgeUser(email="*****@*****.**", first_name="Test", last_name="User")
        user.save()
        self.assertFalse(CachedEmailAddress.objects.filter(user=user).exists())

        user2 = BadgeUser(email="*****@*****.**", first_name="Test2", last_name="User")
        user2.save()
        email2 = CachedEmailAddress(user=user2, email="*****@*****.**", verified=False, primary=True)
        email2.save()

        call_command('clean_email_records')

        email_record = CachedEmailAddress.objects.get(user=user)
        self.assertFalse(email_record.verified)
        self.assertTrue(email_record.emailconfirmation_set.exists())
        self.assertEqual(len(mail.outbox), 1)
Exemple #6
0
    def test_autocreated_user_signup(self):
        """
        Sometimes admins have a need to manually create users and grant them auth tokens
        where their primary email is marked verified, but no password is set. For these
        users, the signup flow should proceed normally.
        """
        badgrapp = BadgrApp.objects.first()
        badgrapp.ui_login_redirect = 'http://testui.test/auth/login/'
        badgrapp.email_confirmation_redirect = 'http://testui.test/auth/login/'
        badgrapp.save()

        user = BadgeUser(email='*****@*****.**')
        user.save()
        email = CachedEmailAddress.cached.create(user=user,
                                                 email=user.email,
                                                 verified=True)

        user_data = {
            'first_name': 'Usery',
            'last_name': 'McUserface',
            'password': '******',
            'email': user.email
        }
        response = self.client.post('/v1/user/profile', user_data)
        self.assertEqual(response.status_code, 201)
        self.assertEqual(len(mail.outbox), 1)

        verify_url = re.search("(?P<url>/v2/[^\s]+)",
                               mail.outbox[0].body).group("url")
        response = self.client.get(verify_url[:-5])
        self.assertEqual(response.status_code, 302)
        self.assertNotIn(user_data['first_name'],
                         response._headers['location'][1])

        response = self.client.get(verify_url)
        self.assertEqual(response.status_code, 302)
        self.assertIn(user_data['first_name'],
                      response._headers['location'][1])

        user = BadgeUser.cached.get(email=user.email)
        self.assertIsNotNone(user.password)

        self.client.logout()
        self.client.login(username=user.username,
                          password=user_data['password'])
        response = self.client.get('/v1/user/profile')
        self.assertEqual(response.data['first_name'], user_data['first_name'])
Exemple #7
0
    def test_user_can_change_profile(self):
        first = 'firsty'
        last = 'lastington'
        new_password = '******'
        username = '******'
        original_password = '******'
        email = '*****@*****.**'

        user = BadgeUser(username=username, is_active=True, email=email)
        user.set_password(original_password)
        user.save()
        self.client.login(username=username, password=original_password)
        self.assertUserLoggedIn()

        response = self.client.put(
            '/v1/user/profile', {
                'first_name': first,
                'last_name': last,
                'password': new_password,
                'current_password': original_password
            })
        self.assertEqual(response.status_code, 200)
        self.assertEqual(first, response.data.get('first_name'))
        self.assertEqual(last, response.data.get('last_name'))

        self.client.logout()
        self.client.login(username=username, password=new_password)
        self.assertUserLoggedIn()
        self.assertEqual(len(mail.outbox), 1)

        response = self.client.put('/v1/user/profile', {
            'first_name': 'Barry',
            'last_name': 'Manilow'
        })
        self.assertEqual(response.status_code, 200)
        self.assertEqual('Barry', response.data.get('first_name'))

        third_password = '******'
        response = self.client.put('/v1/user/profile', {
            'password': third_password,
            'current_password': new_password
        })
        self.assertEqual(response.status_code, 200)
        self.client.logout()
        self.client.login(username=username, password=third_password)
        self.assertUserLoggedIn()
Exemple #8
0
    def test_user_can_change_profile(self):
        first = 'firsty'
        last = 'lastington'
        new_password = '******'
        username = '******'
        original_password = '******'
        email = '*****@*****.**'

        user = BadgeUser(username=username, is_active=True, email=email)
        user.set_password(original_password)
        user.save()
        self.client.login(username=username, password=original_password)
        self.assertUserLoggedIn()

        response = self.client.put('/v1/user/profile', {
            'first_name': first,
            'last_name': last,
            'password': new_password,
            'current_password': original_password
        })
        self.assertEqual(response.status_code, 200)
        self.assertEqual(first, response.data.get('first_name'))
        self.assertEqual(last, response.data.get('last_name'))

        self.client.logout()
        self.client.login(username=username, password=new_password)
        self.assertUserLoggedIn()
        self.assertEqual(len(mail.outbox), 1)

        response = self.client.put('/v1/user/profile', {
            'first_name': 'Barry',
            'last_name': 'Manilow'
        })
        self.assertEqual(response.status_code, 200)
        self.assertEqual('Barry', response.data.get('first_name'))

        third_password = '******'
        response = self.client.put('/v1/user/profile', {
            'password': third_password,
            'current_password': new_password
        })
        self.assertEqual(response.status_code, 200)
        self.client.logout()
        self.client.login(username=username, password=third_password)
        self.assertUserLoggedIn()
Exemple #9
0
    def test_autocreated_user_signup(self):
        """
        Sometimes admins have a need to manually create users and grant them auth tokens
        where their primary email is marked verified, but no password is set. For these
        users, the signup flow should proceed normally.
        """
        badgrapp = BadgrApp.objects.first()
        badgrapp.ui_login_redirect = 'http://testui.test/auth/login/'
        badgrapp.email_confirmation_redirect = 'http://testui.test/auth/login/'
        badgrapp.save()

        user = BadgeUser(
            email='*****@*****.**'
        )
        user.save()
        email = CachedEmailAddress.cached.create(user=user, email=user.email, verified=True)

        user_data = {
            'first_name': 'Usery',
            'last_name': 'McUserface',
            'password': '******',
            'email': user.email
        }
        response = self.client.post('/v1/user/profile', user_data)
        self.assertEqual(response.status_code, 201)
        self.assertEqual(len(mail.outbox), 1)

        verify_url = re.search("(?P<url>/v2/[^\s]+)", mail.outbox[0].body).group("url")
        response = self.client.get(verify_url[:-5])
        self.assertEqual(response.status_code, 302)
        self.assertNotIn(user_data['first_name'], response._headers['location'][1])

        response = self.client.get(verify_url)
        self.assertEqual(response.status_code, 302)
        self.assertIn(user_data['first_name'], response._headers['location'][1])

        user = BadgeUser.cached.get(email=user.email)
        self.assertIsNotNone(user.password)

        self.client.logout()
        self.client.login(username=user.username, password=user_data['password'])
        response = self.client.get('/v1/user/profile')
        self.assertEqual(response.data['first_name'], user_data['first_name'])
    def test_unverified_unprimary_email_sends_confirmation(self):
        """
        If there is only one email, and it's not primary, set it as primary.
        If it's not verified, send a verification.
        """
        user = BadgeUser(email="*****@*****.**", first_name="Test", last_name="User")
        user.save()
        email = CachedEmailAddress(email=user.email, user=user, verified=False, primary=False)
        email.save()

        user2 = BadgeUser(email="*****@*****.**", first_name="Error", last_name="User")
        user2.save()

        self.assertEqual(BadgeUser.objects.count(), 2)

        call_command('clean_email_records')

        email_record = CachedEmailAddress.objects.get(user=user)
        self.assertTrue(email_record.primary)
        self.assertEqual(len(mail.outbox), 1)
        self.assertEqual(BadgeUser.objects.count(), 1)
Exemple #11
0
class PathwayApiTests(SetupIssuerHelper, BadgrTestCase):
    def setUp(self):
        cache.clear()
        super(PathwayApiTests, self).setUp()

        # instructor
        self.instructor = BadgeUser(username='******',
                                    email='*****@*****.**')
        self.instructor.set_password('secret')
        self.instructor.save()
        self.instructor.user_permissions.add(
            Permission.objects.get(codename="add_issuer"))

        CachedEmailAddress(email='*****@*****.**',
                           verified=True,
                           primary=True,
                           user=self.instructor).save()
        self.assertTrue(
            self.client.login(username='******', password='******'),
            "Instructor can log in")

        # issuer
        issuer_data = {
            'name': 'Unit Test Issuer',
            'description': "Issuer from unit test",
            'url': "http://example.test",
            'email': "*****@*****.**",
        }
        response = self.client.post(reverse('v1_api_issuer_list'),
                                    issuer_data,
                                    format='json')
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created an issuer")
        self.assertTrue(response.data['slug'],
                        "Received an issuer with a slug")
        self.issuer = response.data

        # make a default badgeclass
        self.badgeclass = self.setup_badgeclass(issuer=Issuer.cached.get(
            entity_id=self.issuer.get('slug')))

    def test_can_create_pathway(self):
        pathway_data = {
            'name': "Test Career Pathway",
            'description': "Students pathway through the testing career",
        }
        response = self.client.post(reverse(
            'pathway_list', kwargs={'issuer_slug': self.issuer.get('slug')}),
                                    pathway_data,
                                    format='json')
        pathway = response.data
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created pathway")

        # Plumber
        # plumbing badges
        with open(
                os.path.join(TOP_DIR, 'apps', 'issuer', 'testfiles',
                             'guinea_pig_testing_badge.png')) as badge_image:
            response = self.client.post(
                reverse('v1_api_badgeclass_list',
                        kwargs={'slug': self.issuer.get('slug')}), {
                            'name': "Plumber",
                            'description': "You plumb now",
                            'criteria': "Learn what it is to be a plumber",
                            'image': badge_image,
                        })
            self.assertEqual(response.status_code, 201)
            plumber_badge = response.data

            badge_image.seek(0)
            response = self.client.post(
                reverse('v1_api_badgeclass_list',
                        kwargs={'slug': self.issuer.get('slug')}), {
                            'name': "Intro Plumbing Badge",
                            'description': "You learn to plumb",
                            'criteria': "learn plumbing basics",
                            'image': badge_image,
                        })
            self.assertEqual(response.status_code, 201)
            intro_plumbing_badge = response.data

            badge_image.seek(0)
            response = self.client.post(
                reverse('v1_api_badgeclass_list',
                        kwargs={'slug': self.issuer.get('slug')}), {
                            'name': "Advanced Plumbing 1 Badge",
                            'description': "You plumb good 1",
                            'criteria': "advanced plumbing method 1",
                            'image': badge_image,
                        })
            self.assertEqual(response.status_code, 201)
            adv1_plumbing_badge = response.data

            badge_image.seek(0)
            response = self.client.post(
                reverse('v1_api_badgeclass_list',
                        kwargs={'slug': self.issuer.get('slug')}), {
                            'name': "Advanced Plumbing 2 Badge",
                            'description': "You plumb good 2",
                            'criteria': "advanced plumbing method 2",
                            'image': badge_image,
                        })
            self.assertEqual(response.status_code, 201)
            adv2_plumbing_badge = response.data

        response = self.client.post(
            reverse('pathway_element_list',
                    kwargs={
                        'issuer_slug': self.issuer.get('slug'),
                        'pathway_slug': pathway.get('slug')
                    }), {
                        'parent': pathway['rootElement'],
                        'name': 'Plumber',
                        'description': 'You can plumb things for people.',
                        'completionBadge': plumber_badge['json']['id'],
                    },
            format='json')
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created pathway element")
        plumber_element = response.data

        # Intro to Plumbing
        response = self.client.post(reverse(
            'pathway_element_list',
            kwargs={
                'issuer_slug': self.issuer.get('slug'),
                'pathway_slug': pathway.get('slug')
            }), {
                'parent': plumber_element['@id'],
                'name': 'Intro to Plumbing',
                'description': 'You learn the basics of plumbing.',
                'requirements': {
                    '@type': 'BadgeJunction',
                    'junctionConfig': {
                        '@type': 'Conjunction',
                        'requiredNumber': 1,
                    },
                    'badges': [intro_plumbing_badge['json']['id']],
                }
            },
                                    format='json')
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created pathway element")
        intro_plumbing_element = response.data

        # Advanced Plumbing (testing sending a json string for requirements)
        response = self.client.post(reverse(
            'pathway_element_list',
            kwargs={
                'issuer_slug': self.issuer.get('slug'),
                'pathway_slug': pathway.get('slug')
            }), {
                'parent':
                plumber_element['@id'],
                'name':
                'Advanced Plumbing',
                'description':
                'You learn all about plumbing.',
                'requirements':
                json.dumps({
                    '@type': 'BadgeJunction',
                    'junctionConfig': {
                        '@type': 'Disjunction',
                        'requiredNumber': 1,
                    },
                    'badges': [adv1_plumbing_badge['json']['id']],
                })
            },
                                    format='json')
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created pathway element")
        adv_plumbing_element = response.data
        adv_instance = PathwayElement.objects.get(
            slug=adv_plumbing_element['slug'])
        self.assertEqual(
            len(adv_instance.cached_badges()), 1,
            "One BadgeClass is now associated with the new element.")

        adv_plumbing_element.update({
            'requirements': {
                '@type':
                'BadgeJunction',
                'junctionConfig': {
                    '@type': 'Disjunction',
                    'requiredNumber': 1,
                },
                'badges': [
                    adv1_plumbing_badge['json']['id'],
                    adv2_plumbing_badge['json']['id']
                ]
            }
        })
        response = self.client.put(reverse('pathway_element_detail',
                                           kwargs={
                                               'issuer_slug':
                                               self.issuer.get('slug'),
                                               'pathway_slug':
                                               pathway.get('slug'),
                                               'element_slug':
                                               adv_plumbing_element.get('slug')
                                           }),
                                   adv_plumbing_element,
                                   format='json')
        self.assertEqual(response.status_code, 200)
        self.assertEqual(len(adv_instance.cached_badges()), 2,
                         "The new BadgeClass has been added.")

        # update requirements
        plumber_element.update({
            'requirements': {
                '@type':
                'ElementJunction',
                'junctionConfig': {
                    '@type': 'Conjunction',
                    'requiredNumber': 2,
                },
                'elements':
                [intro_plumbing_element['@id'], adv_plumbing_element['@id']],
            }
        })
        response = self.client.put(reverse('pathway_element_detail',
                                           kwargs={
                                               'issuer_slug':
                                               self.issuer.get('slug'),
                                               'pathway_slug':
                                               pathway.get('slug'),
                                               'element_slug':
                                               plumber_element.get('slug')
                                           }),
                                   plumber_element,
                                   format='json')
        self.assertEqual(response.status_code, status.HTTP_200_OK,
                         "Updated pathway element")
        updated_plumber_element = response.data

        # Teacher
        response = self.client.post(reverse(
            'pathway_element_list',
            kwargs={
                'issuer_slug': self.issuer.get('slug'),
                'pathway_slug': pathway.get('slug')
            }), {
                'parent': pathway['rootElement'],
                'name': 'Teacher',
                'description': 'You can teach people things.',
                'ordering': 1,
                'alignmentUrl': "http://unit.fake.test",
            },
                                    format='json')
        self.assertEqual(response.status_code, status.HTTP_201_CREATED,
                         "Created pathway element")
        teacher_element = response.data
        """
        def test_can_update_pathway_groups(self):
        """
        group_data = {
            'name': 'Group of Testing',
            'description': 'A group used for testing.'
        }
        response = self.client.post(
            '/v2/issuers/{}/recipient-groups'.format(self.issuer.get('slug')),
            group_data)

        group_slug = response.data.get('slug')
        update_data = {'groups': [response.data.get('@id')]}
        response = self.client.put(
            '/v2/issuers/{}/pathways/{}'.format(self.issuer.get('slug'),
                                                pathway.get('slug')),
            update_data)

        self.assertEqual(response.status_code, 200)
        self.assertEqual(
            response.data.get('groups')[0].get('slug'), group_slug)