def create_shop(shop, username):
if shop is not None and username is not None:
if Shops.search_shop(shop.name) is False:
if Shops.create_shop(shop):
if Owners.add_owner(Owner(username, shop.name, None)):
LoggerLogic.add_event_log(username, "OPEN SHOP")
return "SUCCESS"
return "FAILED: Adding Owner"
return "FAILED: Adding Shop"
return "FAILED: Shop name is taken"
return "FAILED: Missing parameters"
def add_owner(request):
if request.method == 'POST':
shop_name = request.POST.get('shop_name')
target_id = request.POST.get('target_id')
owner = Owner(target_id, shop_name, None)
event = "ADD OWNER"
suspect_sql_injection = False
suspect_sql_injection = LoggerLogic.identify_sql_injection(
shop_name, event) or suspect_sql_injection
suspect_sql_injection = LoggerLogic.identify_sql_injection(
target_id, event) or suspect_sql_injection
if suspect_sql_injection:
return HttpResponse(LoggerLogic.MESSAGE_SQL_INJECTION)
login = request.COOKIES.get('login_hash')
if login is not None:
username = Consumer.loggedInUsers.get(login)
return HttpResponse(UsersLogic.add_owner(username, owner))
return HttpResponse('FAILED: You are not logged in')
def test_torture2(self):
# Adding Users
status = UsersLogic.register(
RegisteredUser('u1ser1u1ser1', 'wxde12exd12'))
self.assertTrue(status)
status = UsersLogic.register(RegisteredUser('u2ser2u2ser2',
'34c124c1'))
self.assertTrue(status)
status = UsersLogic.register(
RegisteredUser('u3ser3u3ser3', '1c241c24c1'))
self.assertTrue(status)
status = UsersLogic.register(
RegisteredUser('u4ser4u4ser4', '3214v132v4132'))
self.assertTrue(status)
status = UsersLogic.register(RegisteredUser('u5seru5ser', '12121212'))
self.assertTrue(status)
# Adding System Managers
status = UsersLogic.add_system_manager(
SystemManager('sys1sys1', 'POWER123'))
self.assertTrue(status)
# Creating Shops
status = ShopLogic.create_shop(Shop('myShop1', 'Active'),
'u1ser1u1ser1')
self.assertTrue(status)
status = ShopLogic.create_shop(Shop('myShop2', 'Active'),
'u2ser2u2ser2')
self.assertTrue(status)
status = UsersLogic.add_owner('u1ser1u1ser1',
Owner('u3ser3u3ser3', 'myShop1', 0))
self.assertTrue(status)
owner = Owners.get_owner('u1ser1u1ser1', 'myShop1')
status = UsersLogic.add_manager(
owner.username,
StoreManager('u4ser4u4ser4', 'myShop1', 1, 1, 1, 1, 1, 1, 1, 1))
status = UsersLogic.add_manager(
'u2ser2u2ser2',
StoreManager('u4ser4u4ser4', 'myShop2', 1, 1, 1, 1, 1, 1, 1, 1))
manager = StoreManagers.get_store_manager('u4ser4u4ser4', 'myShop1')
self.assertEqual(manager.permission_reply_messages, 1)
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'banana', 'fruits', 'fruit;healthy;yellow',
4.90, 300, 'regular', None, 0, 0, 0), 'u4ser4u4ser4')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop2', 'doll', 'toys', 'fun', 30, 10, 'regular',
None, 0, 0, 0), 'u2ser2u2ser2')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'soda', 'drinks', 'good', 4.90, 20,
'regular', None, 0, 0, 0), 'u1ser1u1ser1')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop2', 'cucumber', 'vegetables', 'fun', 4.90, 300,
'regular', None, 0, 0, 0), 'u4ser4u4ser4')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'vodka', 'drinks', 'bad;for;your;health', 70,
2, 'regular', None, 0, 0, 0), 'u3ser3u3ser3')
items = SearchLogic.search_by_name('banana')
self.assertEqual(items[0].quantity, 300)
self.assertEqual(items[0].price, 4.90)
self.assertEqual(len(items), 1)
items = SearchLogic.search_by_category('drinks')
self.assertEqual(items[0].quantity, 20)
self.assertEqual(items[1].price, 70)
self.assertEqual(len(items), 2)
items = SearchLogic.search_by_keywords('fun')
self.assertEqual(items[0].quantity, 10)
self.assertEqual(items[1].price, 4.90)
self.assertEqual(len(items), 2)
items = SearchLogic.search_items_in_shop('myShop2')
self.assertEqual(items[0].name, 'doll')
self.assertEqual(items[1].name, 'cucumber')
self.assertEqual(len(items), 2)
MessagingLogic.send_message_from_shop(
'u4ser4u4ser4',
Message(None, 'myShop1', 'u5seru5ser',
'Nadav is our lord and savior'))
messages = MessagingLogic.get_all_messages('u5seru5ser')
self.assertEqual(len(messages), 1)
self.assertEqual(messages[0].content, 'Nadav is our lord and savior')
MessagingLogic.send_message(
Message(None, 'u5seru5ser', 'myShop1', 'Hello Shop'))
messages = MessagingLogic.get_all_shop_messages(
'u4ser4u4ser4', 'myShop1')
self.assertEqual(len(messages), 1)
self.assertEqual(messages[0].content, 'Hello Shop')
MessagingLogic.send_message_from_shop(
'u1ser1u1ser1', Message(None, 'myShop1', 'myShop2', 'Hello Shop2'))
messages = MessagingLogic.get_all_shop_messages(
'u2ser2u2ser2', 'myShop2')
self.assertEqual(len(messages), 1)
self.assertEqual(messages[0].content, 'Hello Shop2')
MessagingLogic.send_message(
Message(None, 'u1ser1u1ser1', 'u3ser3u3ser3', 'Shop2 Sucks!'))
messages = MessagingLogic.get_all_messages('u3ser3u3ser3')
self.assertEqual(messages[0].content, 'Shop2 Sucks!')
UsersLogic.close_shop('u1ser1u1ser1', 'myShop1')
items = SearchLogic.search_by_name('banana')
self.assertEqual(len(items), 0)
def test_torture3(self):
# Adding Users
status = UsersLogic.register(
RegisteredUser('u1ser1u1ser1', 'wxde12exd12'))
self.assertTrue(status)
status = UsersLogic.register(RegisteredUser('u2ser2u2ser2',
'34c124c1'))
self.assertTrue(status)
status = UsersLogic.register(
RegisteredUser('u3ser3u3ser3', '1c241c24c1'))
self.assertTrue(status)
status = UsersLogic.register(
RegisteredUser('u4ser4u4ser4', '3214v132v4132'))
self.assertTrue(status)
status = UsersLogic.register(RegisteredUser('u5seru5ser', '12121212'))
self.assertTrue(status)
# Adding System Managers
status = UsersLogic.add_system_manager(
SystemManager('sys1sys1', 'POWER123'))
self.assertTrue(status)
# Creating Shops
status = ShopLogic.create_shop(Shop('myShop1', 'Active'),
'u1ser1u1ser1')
self.assertTrue(status)
status = ShopLogic.create_shop(Shop('myShop2', 'Active'),
'u2ser2u2ser2')
self.assertTrue(status)
status = UsersLogic.add_owner('u1ser1u1ser1',
Owner('u3ser3u3ser3', 'myShop1', 0))
self.assertTrue(status)
owner = Owners.get_owner('u1ser1u1ser1', 'myShop1')
status = UsersLogic.add_manager(
owner.username,
StoreManager('u4ser4u4ser4', 'myShop1', 1, 1, 1, 1, 1, 1, 1, 1))
status = UsersLogic.add_manager(
'u2ser2u2ser2',
StoreManager('u4ser4u4ser4', 'myShop2', 1, 1, 1, 1, 1, 1, 1, 1))
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'banana', 'fruits', 'fruit;healthy;yellow',
4.90, 300, 'regular', None, 0, 0, 0), 'u4ser4u4ser4')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop2', 'doll', 'toys', 'fun', 30, 10, 'regular',
None, 0, 0, 0), 'u2ser2u2ser2')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'soda', 'drinks', 'good', 4.90, 20,
'regular', None, 0, 0, 0), 'u1ser1u1ser1')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop2', 'cucumber', 'vegetables', 'fun', 4.90, 300,
'regular', None, 0, 0, 0), 'u4ser4u4ser4')
ItemsLogic.add_item_to_shop(
Item(None, 'myShop1', 'vodka', 'drinks', 'bad;for;your;health', 70,
2, 'regular', None, 0, 0, 0), 'u3ser3u3ser3')
username1 = 'u4ser4u4ser4'
username2 = 'u2ser2u2ser2'
username3 = 'u1ser1u1ser1'
username4 = 'u3ser3u3ser3'
username5 = 'u5seru5ser'
access_token1 = hashlib.md5(username1.encode()).hexdigest()
Consumer.loggedInUsers[access_token1] = username1
Consumer.loggedInUsersShoppingCart[access_token1] = []
access_token2 = hashlib.md5(username2.encode()).hexdigest()
Consumer.loggedInUsers[access_token2] = username2
Consumer.loggedInUsersShoppingCart[access_token2] = []
access_token3 = hashlib.md5(username3.encode()).hexdigest()
Consumer.loggedInUsers[access_token3] = username3
Consumer.loggedInUsersShoppingCart[access_token3] = []
access_token4 = hashlib.md5(username4.encode()).hexdigest()
Consumer.loggedInUsers[access_token4] = username4
Consumer.loggedInUsersShoppingCart[access_token4] = []
access_token5 = hashlib.md5(username5.encode()).hexdigest()
Consumer.loggedInUsers[access_token5] = username5
Consumer.loggedInUsersShoppingCart[access_token5] = []
UserShoppingCartLogic.add_item_shopping_cart(
access_token5, ShoppingCartItem('u5seru5ser', 1, 10, None))
UserShoppingCartLogic.add_item_shopping_cart(
access_token5, ShoppingCartItem('u5seru5ser', 2, 5, None))
UserShoppingCartLogic.add_item_shopping_cart(
access_token5, ShoppingCartItem('u5seru5ser', 3, 15, None))
items = UserShoppingCartLogic.get_cart_items(access_token5)
self.assertEqual(len(items), 3)
self.assertEqual(items[0].code, None)
UserShoppingCartLogic.remove_item_shopping_cart(access_token5, 1)
items = UserShoppingCartLogic.get_cart_items(access_token5)
self.assertEqual(len(items), 2)
UserShoppingCartLogic.remove_item_shopping_cart(access_token5, 2)
items = UserShoppingCartLogic.get_cart_items(access_token5)
self.assertEqual(len(items), 1)
# Only item id 3 left
UserShoppingCartLogic.pay_all(access_token5)
items1 = UsersLogic.get_purchase_history('u5seru5ser')
items2 = ItemsLogic.get_all_purchased_items('sys1sys1')
items3 = ShopLogic.get_shop_purchase_history('u4ser4u4ser4', 'myShop1')
self.assertEqual(items1[0].item_id, items2[0].item_id)
self.assertEqual(items2[0].quantity, items3[0].quantity)
self.assertEqual(items1[0].price, items3[0].price)
self.assertTrue('Nadav Ha Gever')
def add_owner(owner, shop, new_owner):
return UsersLogic.add_owner(owner, Owner(new_owner, shop, 1))
def fetch_owners(results):
array = []
for item in results:
array.append(Owner(item[0], item[1], item[2]))
return array
def fetch_owner(result):
if len(result) == 0:
return False
result = result[0]
return Owner(result[0], result[1], result[2])