def test_delete_account(self):
"""
Ensure account will be deleted from DB.
"""
account = AccountFactory(manager=self.user)
url = self.urls['account_detail'](kwargs={'pk': account.pk})
response = self.client.delete(url)
self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
with self.assertRaises(Account.DoesNotExist) as _:
Account.objects.get(pk=account.pk)
def test_account_detail_api_view(self):
"""
Ensure account detail API view inaccessible for unauthorized user.
"""
account = AccountFactory()
self.run_method_status_code_check(
url=reverse('bank-accounts-api:account-detail',
kwargs={'pk': account.pk}),
methods=['get', 'post', 'put', 'delete'],
status_code=status.HTTP_401_UNAUTHORIZED
)
def test_account_detail_api_view_owner(self):
"""
Ensure API view will return account (contains required fields)
that belongs to authenticated user.
"""
account = AccountFactory(manager=self.user)
url = self.urls['account_detail'](kwargs={'pk': account.pk})
response = self.client.get(url)
self.assertEqual(response.status_code, status.HTTP_200_OK)
self.assertSortedForceListEqual(response.data.keys(),
self.account_required_fields['read'])
def test_account_list_api_view(self):
"""
Ensure API view will return list of accounts (contains required fields)
that belongs to authenticated user.
"""
another_user = UserFactory()
another_account_list = AccountFactory.create_batch(
5, manager=another_user)
user_account_list = AccountFactory.create_batch(5, manager=self.user)
user_account_id_list = [a.id for a in user_account_list]
response = self.client.get(self.urls['account_list'])
self.assertEqual(response.status_code, status.HTTP_200_OK)
response_account_id_list = []
for account in response.data:
self.assertSortedForceListEqual(
account.keys(), self.account_required_fields['read'])
response_account_id_list.append(account['id'])
self.assertSortedForceListEqual(user_account_id_list,
response_account_id_list)
def test_account_detail_api_view_not_allowed_methods(self):
"""
Ensure API view will return 405 status code to request with not allowed
PATCH method
"""
account = AccountFactory(manager=self.user)
self.run_method_status_code_check(
url=self.urls['account_detail'](kwargs={
'pk': account.pk
}),
methods=['patch'],
status_code=status.HTTP_405_METHOD_NOT_ALLOWED)
def test_update_account_with_valid_data(self):
"""
Ensure account will be correctly modified in DB.
"""
data = self.account_data['valid']
account = AccountFactory(manager=self.user)
url = self.urls['account_detail'](kwargs={'pk': account.pk})
response = self.client.put(url, data)
self.assertEqual(response.status_code, status.HTTP_200_OK)
account_from_db = Account.objects.get(pk=account.pk)
for field_name, value in data.items():
self.assertEqual(getattr(account_from_db, field_name), value)
def test_account_detail_api_view_not_owner(self):
"""
Ensure API view will return 404 status code to request with methods:
GET, PUT, DELETE, if requested account does not
belongs to authenticated user.
"""
another_user = UserFactory()
account = AccountFactory(manager=another_user)
self.run_method_status_code_check(
url=self.urls['account_detail'](kwargs={
'pk': account.pk
}),
methods=['get', 'put', 'delete'],
status_code=status.HTTP_404_NOT_FOUND)
def test_update_account_with_invalid_data(self):
"""
Ensure account will not be modified in DB and API view will return
appropriate errors if invalid data has been sent.
"""
account = AccountFactory(manager=self.user)
data = self.account_data['invalid']
url = self.urls['account_detail'](kwargs={'pk': account.pk})
response = self.client.put(url, data)
self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
self.assertSortedForceListEqual(response.data.keys(), data.keys())
account_from_db = Account.objects.get(pk=account.pk)
for field_name in data.keys():
self.assertEqual(getattr(account, field_name),
getattr(account_from_db, field_name))
def test_update_account_with_empty_data(self):
"""
Ensure account will not be modified in DB and API view will return
appropriate errors if empty data has been sent.
"""
account = AccountFactory(manager=self.user)
required_fields = self.account_required_fields['write']
data = {}
url = self.urls['account_detail'](kwargs={'pk': account.pk})
response = self.client.put(url, data)
self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
self.assertSortedForceListEqual(response.data.keys(), required_fields)
account_from_db = Account.objects.get(pk=account.pk)
for field in required_fields:
self.assertEqual(getattr(account, field),
getattr(account_from_db, field))