def test_comment_create_post_request_not_allowed(self, api_client): new_user = UserFactory() comment_data = CommentFactory.build() new_recipe = RecipeFactory() data = { 'title': {comment_data.title}, 'recipe': {new_recipe.id}, 'author': {new_user.id} } response = api_client.post(create_comment_url, data) assert response.status_code == 401
def test_comment_author_is_current_logged_in_user(self, api_client): ''' testing the method perform_create ''' new_user = UserFactory() api_client.force_authenticate(new_user) new_recipe = RecipeFactory() comment_data = CommentFactory.build() data = { 'title': {comment_data.title}, 'recipe': {new_recipe.id}, 'author': {new_user.id} } api_client.post(create_comment_url, data) new_comment = Comment.objects.get(title=comment_data.title) assert new_comment.author == new_user
def test_recipe_author_can_delete_other_users_recipe_comments_on_his_recipe( self, api_client): new_recipe = RecipeFactory() new_user = UserFactory() api_client.force_authenticate(new_user) comment_data = CommentFactory.build() data = { 'title': {comment_data.title}, 'recipe': {new_recipe.id}, 'author': {new_user.id} } response = api_client.post(create_comment_url, data) api_client.logout() api_client.force_authenticate(new_recipe.author) new_comment = Comment.objects.get(title=comment_data.title) response = api_client.delete(new_comment.get_delete_url()) assert response.status_code == 204