def test_only_me_can_delete_account(self): """ Accounts can only be deleted by authed owner :return: """ # setup self.test_create_account() view = AccountViewSet.as_view({'delete': 'destroy'}) account = Account.objects.get(username=self.username) client = APIClient() # auth with jwt response = client.post('/api-token-auth/', self.json_account_credentials, format='json') token = response.data['token'] self.assertEqual(response.status_code, status.HTTP_200_OK) # Make request client.credentials(HTTP_AUTHORIZATION='Bearer ' + token) response = client.delete('/api/v1/accounts/' + self.username + '/') # Asserts self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT) # check no object exists try: account = Account.objects.get(username=self.username) except: account = None self.assertIsNone(account)
def test_only_me_can_delete_account(self): """ Accounts can only be deleted by authed owner :return: """ # setup self.test_create_account() view = AccountViewSet.as_view({'delete': 'destroy'}) account = Account.objects.get(username=self.username) client = APIClient() # auth with jwt response = client.post('/api-token-auth/', self.json_account_credentials, format='json') token = response.data['token'] self.assertEqual(response.status_code, status.HTTP_200_OK) # Make request client.credentials(HTTP_AUTHORIZATION='Bearer ' + token) response = client.delete('/api/v1/accounts/'+self.username+'/') # Asserts self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT) # check no object exists try: account = Account.objects.get(username=self.username) except: account = None self.assertIsNone(account)
def test_create_account(self): # setup view = AccountViewSet.as_view({'post': 'create'}) client = APIClient() # auth with jwt response = client.post('/api/v1/accounts/', self.json_new_account_data, format='json') self.assertEqual(response.status_code, status.HTTP_201_CREATED) account = Account.objects.get(username=self.username) self.assertIsNotNone(account)
from django.contrib import admin from rest_framework import routers from authentication.views import AccountViewSet, LoginView, LogoutView from transferfund.views import getAccountInfoView from transferfund.views import getAllAccountsView from transferfund.views import getTransactionHistoryView from transferfund.views import handleInternalTransfer from transferfund.views import handleCheckDeposit from transferfund.views import getContactsInfoView from transferfund.views import handleExternalTransfer from transferfund.views import addContactView urlpatterns = [ # url(r'^admin/', include(admin.site.urls)), url(r'^account', AccountViewSet.as_view(), name='account'), url(r'^auth/login', LoginView.as_view(), name='login'), url(r'^auth/logout', LogoutView.as_view(), name='logout'), url(r'^loanmanage/', include('loanmanagement.urls')), url(r'^transferfund/getAccountInfo', getAccountInfoView.as_view(), name="getAccountInfo"), url(r'^transferfund/getAllAccounts', getAllAccountsView.as_view(), name="getAllAccounts"), url(r'^transferfund/getTransactionHistory', getTransactionHistoryView.as_view(), name="getTransactionHistory"), url(r'^transferfund/internalTransfer', handleInternalTransfer.as_view(), name="handleInternalTransfer"),