def test_fetch_group_admin_user_groups(server_api, superuser_token_headers):
new_user = random_user()
r = requests.post(
f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
group_users, _ = get_group_users_and_admins(server_api,
superuser_token_headers)
group_id = random.choice(list(group_users.keys()))
if r.status_code == 200:
r = requests.post(
f'{server_api}{config.API_V1_STR}/groups/{group_id}/admin_users/',
headers=superuser_token_headers,
data={
'user_id': created_user['id']
})
email, password = new_user['email'], new_user['password']
auth = user_authentication_headers(server_api, email, password)
r = requests.get(
f'{server_api}{config.API_V1_STR}/groups/', headers=auth)
groups = r.json()
assert len(groups) == 1
def random_group_admin(server_api, superuser_token_headers):
new_user = random_user()
r = requests.post(f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
group_users, _ = get_group_users_and_admins(server_api,
superuser_token_headers)
group_id = random.choice(list(group_users.keys()))
if r.status_code == 200:
r = requests.post(
f'{server_api}{config.API_V1_STR}/groups/{group_id}/admin_users/',
headers=superuser_token_headers,
data={'user_id': created_user['id']})
email, password = new_user['email'], new_user['password']
auth = user_authentication_headers(server_api, email, password)
return group_id, auth
else:
Exception('Unable to execute due to possible server error')
def test_create_group_by_normal_user(server_api, superuser_token_headers):
new_user = random_user()
r = requests.post(f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
if r.status_code == 200:
email, password = new_user['email'], new_user['password']
auth = user_authentication_headers(server_api, email, password)
new_group = random_group()
r = requests.post(f'{server_api}{config.API_V1_STR}/groups/',
headers=auth,
data=new_group)
assert r.status_code == 400
def test_user_group_permissions(server_api, superuser_token_headers):
new_user = random_user()
r = requests.post(f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
group_users, _ = get_group_users_and_admins(server_api,
superuser_token_headers)
group_id = random.choice(list(group_users.keys()))
if r.status_code == 200:
r = requests.post(
f'{server_api}{config.API_V1_STR}/groups/{group_id}/admin_users/',
headers=superuser_token_headers,
data={'user_id': created_user['id']})
if r.status_code == 200:
email, password = new_user['email'], new_user['password']
auth = user_authentication_headers(server_api, email, password)
allowed_users = group_users[group_id]
other_users = [
u for g in group_users for u in group_users[g] if g != group_id
]
for user in allowed_users:
user_id = user['id']
r = requests.get(
f'{server_api}{config.API_V1_STR}/users/{user_id}',
headers=auth)
assert r.status_code == 200
for user in other_users:
user_id = user['id']
r = requests.get(
f'{server_api}{config.API_V1_STR}/users/{user_id}',
headers=auth)
assert r.status_code == 400
def test_assign_group_admin_by_normal_user(server_api,
superuser_token_headers):
new_user = random_user()
r = requests.post(f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
if r.status_code == 200:
email, password = new_user['email'], new_user['password']
auth = user_authentication_headers(server_api, email, password)
new_group = random_group()
r = requests.post(f'{server_api}{config.API_V1_STR}/groups/',
headers=superuser_token_headers,
data=new_group)
created_group = r.json()
group_id = created_group['id']
new_user = random_user()
r = requests.post(f'{server_api}{config.API_V1_STR}/users/',
headers=superuser_token_headers,
data=new_user)
created_user = r.json()
user_id = created_user['id']
request_data = {"user_id": user_id}
r = requests.post(
f'{server_api}{config.API_V1_STR}/groups/{group_id}/admin_users/',
headers=auth,
data=request_data)
assert r.status_code == 400