def test_get_access_levels_user(self): obs = db.get_access_levels_user("test") self.assertEqual(obs, []) db.alter_access_levels("test", [1, 6]) obs = db.get_access_levels_user("test") self.assertEqual(obs, [[1, "Barcodes"], [6, "Search"]]) db.alter_access_levels("test", []) obs = db.get_access_levels_user("test") self.assertEqual(obs, [])
def test_get_access_levels_user(self): obs = db.get_access_levels_user('test') self.assertEqual(obs, []) db.alter_access_levels('test', [1, 6]) obs = db.get_access_levels_user('test') self.assertEqual(obs, [[1, 'Barcodes'], [6, 'Search']]) db.alter_access_levels('test', []) obs = db.get_access_levels_user('test') self.assertEqual(obs, [])
def get(self): user = self.get_argument("user", None) all_levels = [] user_levels = [] if user is not None: all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) users = db.get_users() self.render("edit_user.html", all_levels=all_levels, user_levels=user_levels, users=users, user=user, msg="")
def get(self): user = self.get_argument('user', None) all_levels = [] user_levels = [] if user is not None: all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) users = db.get_users() self.render('edit_user.html', all_levels=all_levels, user_levels=user_levels, users=users, user=user, msg='')
def post(self): msg = "Access levels updated" access_levels = [int(x) for x in self.get_arguments("levels")] user = self.get_argument("user") try: db.alter_access_levels(user, access_levels) except Exception as e: msg = "ERROR: %s" % str(e) all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) users = db.get_users() self.render("edit_user.html", all_levels=all_levels, user_levels=user_levels, users=users, user=user, msg=msg)
def test_get_access_levels_user(self): # insert a fresh new user into DB. email = '*****@*****.**' password = ('$2a$10$2.6Y9HmBqUFmSvKCjWmBte70' 'WF.zd3h4VqbhLMQK1xP67Aj3rei86') sql = """INSERT INTO ag.labadmin_users (email, password) VALUES (%s, %s)""" db._con.execute(sql, [email, password]) obs = db.get_access_levels_user(email) self.assertItemsEqual(obs, []) db.alter_access_levels(email, [1, 6]) obs = db.get_access_levels_user(email) self.assertItemsEqual(obs, [[1, 'Barcodes'], [6, 'Search']]) db.alter_access_levels(email, []) obs = db.get_access_levels_user(email) self.assertItemsEqual(obs, []) # Remove test user from DB. sql = """DELETE FROM ag.labadmin_users WHERE email=%s""" db._con.execute(sql, [email])
def post(self): msg = 'Access levels updated' access_levels = [int(x) for x in self.get_arguments('levels')] user = self.get_argument('user') try: db.alter_access_levels(user, access_levels) except Exception as e: msg = 'ERROR: %s' % str(e) all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) users = db.get_users() self.render('edit_user.html', all_levels=all_levels, user_levels=user_levels, users=users, user=user, msg=msg)
def test_post(self): self.mock_login_admin() response = self.post('/admin/edit/', {'user': '******', 'levels': [6, 7]}) self.assertEqual(response.code, 200) self.assertIn('Update groups', response.body) obs = db.get_access_levels_user('test') self.assertEqual(sorted(obs), [[6, 'Search'], [7, 'Admin']]) # test raising exception user = '******' db.alter_access_levels('test', [4]) response = self.post('/admin/edit/', {'user': user, 'levels': [7]}) self.assertEqual(response.code, 403) self.assertRaises(HTTPError) self.assertIn(('HTTPError: HTTP 403: Forbidden (User %s does not have ' 'access level Admin)') % 'test', response.body)
def test_post(self): self.mock_login_admin() response = self.post('/admin/edit/', { 'user': '******', 'levels': [6, 7] }) self.assertEqual(response.code, 200) self.assertIn('Update groups', response.body) obs = db.get_access_levels_user('test') self.assertEqual(sorted(obs), [[6, 'Search'], [7, 'Admin']]) # test raising exception user = '******' db.alter_access_levels('test', [4]) response = self.post('/admin/edit/', {'user': user, 'levels': [7]}) self.assertEqual(response.code, 403) self.assertRaises(HTTPError) self.assertIn(('HTTPError: HTTP 403: Forbidden (User %s does not have ' 'access level Admin)') % 'test', response.body)
def test_get(self): self.mock_login_admin() response = self.get('/admin/edit/') self.assertEqual(response.code, 200) self.assertIn('Edit User Groups', response.body) # test if user is None user = '******' response = self.get('/admin/edit/', {'user': user}) self.assertEqual(response.code, 200) all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) for level in all_levels: if level in user_levels: self.assertIn(('<input type=\'checkbox\' name=\'levels\' value' '="%s" checked> %s<br/>') % (level[0], level[1]), response.body) else: self.assertIn(('<input type=\'checkbox\' name=\'levels\' value' '="%s" > %s<br/>') % (level[0], level[1]), response.body)
def test_get(self): self.mock_login_admin() response = self.get('/admin/edit/') self.assertEqual(response.code, 200) self.assertIn('Edit User Groups', response.body) # test if user is None user = '******' response = self.get('/admin/edit/', {'user': user}) self.assertEqual(response.code, 200) all_levels = db.get_access_levels() user_levels = db.get_access_levels_user(user) for level in all_levels: if level in user_levels: self.assertIn( ('<input type=\'checkbox\' name=\'levels\' value' '="%s" checked> %s<br/>') % (level[0], level[1]), response.body) else: self.assertIn(('<input type=\'checkbox\' name=\'levels\' value' '="%s" > %s<br/>') % (level[0], level[1]), response.body)