def test_accesstoken_create(self): """ Create an AccessToken and check for signal """ request = self.factory.get('/bluebutton/fhir/v1/ExplanationOfBenefit/') request.user = self.user # xwalk = Crosswalk.objects.get(user=self.user) app = self._create_application('ThePHR', user=request.user) # print("\nApp - prep for AccessToken:%s" % app.name) this_moment = timezone.now() future_time = this_moment + relativedelta(years=1) a_tkn = AccessToken() a_tkn.user = request.user a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = [ "patient/Patient.read", "patient/ExplanationOfBenefit.read" ] a_tkn.save() # print("\n================\nSaved %s" % a_tkn) self.assertEqual(True, True)
def test_access_token_signal_update(self): """ Create AccessToken check for update to user/app consent """ usr = self.user app = self._create_application('ThePHR', user=usr) # xwalk = Crosswalk.objects.get(user=usr) this_moment = timezone.now() future_time = this_moment + relativedelta(years=1) a_tkn = AccessToken() a_tkn.user = usr a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = [ "patient/Patient.read", "patient/ExplanationOfBenefit.read" ] a_tkn.save() f_c = fhir_Consent.objects.get(user=usr, application=app) # print("\nConsent:%s" % f_c) # print("\nJSON Consent:\n%s\n" % pretty_json(f_c.consent)) self.assertEqual(f_c.consent['meta']['versionId'], "1") a_tkn.delete() a_tkn = AccessToken() a_tkn.user = usr a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = [ "patient/Patient.read", "patient/ExplanationOfBenefit.read" ] a_tkn.save() f_c = fhir_Consent.objects.get(user=usr, application=app) # print("\nUpdated Consent:%s" % f_c) # print("\nUpdated JSON Consent:\n%s\n" % pretty_json(f_c.consent)) self.assertEqual(f_c.consent['meta']['versionId'], "2")
def test_access_token_signal_update(self): """ Create AccessToken check for update to user/app consent """ usr = self.user app = self._create_application('ThePHR', user=usr) # xwalk = Crosswalk.objects.get(user=usr) this_moment = timezone.now() future_time = this_moment + relativedelta(years=1) a_tkn = AccessToken() a_tkn.user = usr a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = ["patient/Patient.read", "patient/ExplanationOfBenefit.read"] a_tkn.save() f_c = fhir_Consent.objects.get(user=usr, application=app) print("\nConsent:%s" % f_c) print("\nJSON Consent:\n%s\n" % pretty_json(f_c.consent)) self.assertEqual(f_c.consent['meta']['versionId'], "1") a_tkn.delete() a_tkn = AccessToken() a_tkn.user = usr a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = ["patient/Patient.read", "patient/ExplanationOfBenefit.read"] a_tkn.save() f_c = fhir_Consent.objects.get(user=usr, application=app) print("\nUpdated Consent:%s" % f_c) print("\nUpdated JSON Consent:\n%s\n" % pretty_json(f_c.consent)) self.assertEqual(f_c.consent['meta']['versionId'], "2")
def setup_user_token(): # create user user = User.objects.create_user('hongzhi', password='******') # create oauth application app = Application() app.user = user app.save() token = AccessToken() token.user = user token.expires = timezone.now().replace(year=timezone.now().year + 1) token.application = app token.token = '987654321' token.save() return user, token.token
def test_accesstoken_create(self): """ Create an AccessToken and check for signal """ request = self.factory.get('/create_test_account/bb_upload/') request.user = self.user # xwalk = Crosswalk.objects.get(user=self.user) app = self._create_application('ThePHR', user=request.user) # print("\nApp - prep for AccessToken:%s" % app.name) this_moment = timezone.now() future_time = this_moment + relativedelta(years=1) a_tkn = AccessToken() a_tkn.user = request.user a_tkn.application = app a_tkn.token = "1234567890" a_tkn.expires = future_time a_tkn.scope = ["patient/Patient.read", "patient/ExplanationOfBenefit.read"] a_tkn.save() # print("\n================\nSaved %s" % a_tkn) self.assertEqual(True, True)
def test_unregister(self): """ To test that unregistering user is working. """ # test not logged user can't unregister. self.client.logout() result = self.client.post(reverse('member-unregister'), follow=False) self.assertEqual(result.status_code, 302) # test logged user can register. user = ProfileFactory() login_check = self.client.login(username=user.user.username, password='******') self.assertEqual(login_check, True) result = self.client.post(reverse('member-unregister'), follow=False) self.assertEqual(result.status_code, 302) self.assertEqual( User.objects.filter(username=user.user.username).count(), 0) # Attach a user at tutorials, articles, topics and private topics. After that, # unregister this user and check that he is well removed in all contents. user = ProfileFactory() user2 = ProfileFactory() alone_gallery = GalleryFactory() UserGalleryFactory(gallery=alone_gallery, user=user.user) shared_gallery = GalleryFactory() UserGalleryFactory(gallery=shared_gallery, user=user.user) UserGalleryFactory(gallery=shared_gallery, user=user2.user) # first case : a published tutorial with only one author published_tutorial_alone = PublishedContentFactory(type='TUTORIAL') published_tutorial_alone.authors.add(user.user) published_tutorial_alone.save() # second case : a published tutorial with two authors published_tutorial_2 = PublishedContentFactory(type='TUTORIAL') published_tutorial_2.authors.add(user.user) published_tutorial_2.authors.add(user2.user) published_tutorial_2.save() # third case : a private tutorial with only one author writing_tutorial_alone = PublishableContentFactory(type='TUTORIAL') writing_tutorial_alone.authors.add(user.user) writing_tutorial_alone.save() writing_tutorial_alone_galler_path = writing_tutorial_alone.gallery.get_gallery_path( ) # fourth case : a private tutorial with at least two authors writing_tutorial_2 = PublishableContentFactory(type='TUTORIAL') writing_tutorial_2.authors.add(user.user) writing_tutorial_2.authors.add(user2.user) writing_tutorial_2.save() self.client.login(username=self.staff.username, password="******") # same thing for articles published_article_alone = PublishedContentFactory(type='ARTICLE') published_article_alone.authors.add(user.user) published_article_alone.save() published_article_2 = PublishedContentFactory(type='ARTICLE') published_article_2.authors.add(user.user) published_article_2.authors.add(user2.user) published_article_2.save() writing_article_alone = PublishableContentFactory(type='ARTICLE') writing_article_alone.authors.add(user.user) writing_article_alone.save() writing_article_2 = PublishableContentFactory(type='ARTICLE') writing_article_2.authors.add(user.user) writing_article_2.authors.add(user2.user) writing_article_2.save() # beta content beta_forum = ForumFactory(category=CategoryFactory()) beta_content = BetaContentFactory(author_list=[user.user], forum=beta_forum) beta_content_2 = BetaContentFactory( author_list=[user.user, user2.user], forum=beta_forum) # about posts and topics authored_topic = TopicFactory(author=user.user, forum=self.forum11) answered_topic = TopicFactory(author=user2.user, forum=self.forum11) PostFactory(topic=answered_topic, author=user.user, position=2) edited_answer = PostFactory(topic=answered_topic, author=user.user, position=3) edited_answer.editor = user.user edited_answer.save() upvoted_answer = PostFactory(topic=answered_topic, author=user2.user, position=4) upvoted_answer.like += 1 upvoted_answer.save() CommentVote.objects.create(user=user.user, comment=upvoted_answer, positive=True) private_topic = PrivateTopicFactory(author=user.user) private_topic.participants.add(user2.user) private_topic.save() PrivatePostFactory(author=user.user, privatetopic=private_topic, position_in_topic=1) # add API key self.assertEqual(Application.objects.count(), 0) self.assertEqual(AccessToken.objects.count(), 0) api_application = Application() api_application.client_id = 'foobar' api_application.user = user.user api_application.client_type = 'confidential' api_application.authorization_grant_type = 'password' api_application.client_secret = '42' api_application.save() token = AccessToken() token.user = user.user token.token = 'r@d0m' token.application = api_application token.expires = datetime.now() token.save() self.assertEqual(Application.objects.count(), 1) self.assertEqual(AccessToken.objects.count(), 1) # login and unregister: login_check = self.client.login(username=user.user.username, password='******') self.assertEqual(login_check, True) result = self.client.post(reverse('member-unregister'), follow=False) self.assertEqual(result.status_code, 302) # check that the bot have taken authorship of tutorial: self.assertEqual(published_tutorial_alone.authors.count(), 1) self.assertEqual(published_tutorial_alone.authors.first().username, settings.ZDS_APP["member"]["external_account"]) self.assertFalse(os.path.exists(writing_tutorial_alone_galler_path)) self.assertEqual(published_tutorial_2.authors.count(), 1) self.assertEqual( published_tutorial_2.authors.filter( username=settings.ZDS_APP["member"] ["external_account"]).count(), 0) # check that published tutorials remain published and accessible self.assertIsNotNone( published_tutorial_2.public_version.get_prod_path()) self.assertTrue( os.path.exists( published_tutorial_2.public_version.get_prod_path())) self.assertIsNotNone( published_tutorial_alone.public_version.get_prod_path()) self.assertTrue( os.path.exists( published_tutorial_alone.public_version.get_prod_path())) self.assertEqual( self.client.get(reverse('tutorial:view', args=[ published_tutorial_alone.pk, published_tutorial_alone.slug ]), follow=False).status_code, 200) self.assertEqual( self.client.get(reverse( 'tutorial:view', args=[published_tutorial_2.pk, published_tutorial_2.slug]), follow=False).status_code, 200) # test that published articles remain accessible self.assertTrue( os.path.exists( published_article_alone.public_version.get_prod_path())) self.assertEqual( self.client.get(reverse('article:view', args=[ published_article_alone.pk, published_article_alone.slug ]), follow=True).status_code, 200) self.assertEqual( self.client.get(reverse( 'article:view', args=[published_article_2.pk, published_article_2.slug]), follow=True).status_code, 200) # check that the tutorial for which the author was alone does not exists anymore self.assertEqual( PublishableContent.objects.filter( pk=writing_tutorial_alone.pk).count(), 0) self.assertFalse(os.path.exists( writing_tutorial_alone.get_repo_path())) # check that bot haven't take the authorship of the tuto with more than one author self.assertEqual(writing_tutorial_2.authors.count(), 1) self.assertEqual( writing_tutorial_2.authors.filter( username=settings.ZDS_APP["member"] ["external_account"]).count(), 0) # authorship for the article for which user was the only author self.assertEqual(published_article_alone.authors.count(), 1) self.assertEqual(published_article_alone.authors.first().username, settings.ZDS_APP["member"]["external_account"]) self.assertEqual(published_article_2.authors.count(), 1) self.assertEqual( PublishableContent.objects.filter( pk=writing_article_alone.pk).count(), 0) self.assertFalse(os.path.exists(writing_article_alone.get_repo_path())) # not bot if another author: self.assertEqual( published_article_2.authors.filter( username=settings.ZDS_APP["member"] ["external_account"]).count(), 0) self.assertEqual(writing_article_2.authors.count(), 1) self.assertEqual( writing_article_2.authors.filter( username=settings.ZDS_APP["member"] ["external_account"]).count(), 0) # topics, gallery and PMs: self.assertEqual( Topic.objects.filter(author__username=user.user.username).count(), 0) self.assertEqual( Post.objects.filter(author__username=user.user.username).count(), 0) self.assertEqual( Post.objects.filter(editor__username=user.user.username).count(), 0) self.assertEqual( PrivatePost.objects.filter( author__username=user.user.username).count(), 0) self.assertEqual( PrivateTopic.objects.filter( author__username=user.user.username).count(), 0) self.assertIsNotNone(Topic.objects.get(pk=authored_topic.pk)) self.assertIsNotNone(PrivateTopic.objects.get(pk=private_topic.pk)) self.assertIsNotNone(Gallery.objects.get(pk=alone_gallery.pk)) self.assertEquals(alone_gallery.get_linked_users().count(), 1) self.assertEquals(shared_gallery.get_linked_users().count(), 1) self.assertEquals( UserGallery.objects.filter(user=user.user).count(), 0) self.assertEquals( CommentVote.objects.filter(user=user.user, positive=True).count(), 0) self.assertEquals( Post.objects.filter(pk=upvoted_answer.id).first().like, 0) # zep 12, published contents and beta self.assertIsNotNone( PublishedContent.objects.filter( content__pk=published_tutorial_alone.pk).first()) self.assertIsNotNone( PublishedContent.objects.filter( content__pk=published_tutorial_2.pk).first()) self.assertTrue( Topic.objects.get(pk=beta_content.beta_topic.pk).is_locked) self.assertFalse( Topic.objects.get(pk=beta_content_2.beta_topic.pk).is_locked) # check API self.assertEqual(Application.objects.count(), 0) self.assertEqual(AccessToken.objects.count(), 0)