class HealthCheckViewTest(MapStoryTestMixin):
def setUp(self):
self.test_username, self.test_password = self.create_user('testHealthCheck', 'testHealthCheck')
self.userclient = AdminClient()
def tearDown(self):
pass
def create_user(self, username, password, **kwargs):
"""
Convenience method for creating users.
"""
user, created = get_user_model().objects.get_or_create(username=username, **kwargs)
if created:
user.set_password(password)
user.save()
return username, password
@skip("This works locally. Skipping until geoserver works.")
def test_template(self):
self.create_user(username='******', password='******', is_superuser=True)
self.userclient.login_as_non_admin('test_admin', 'test_admin')
response = self.userclient.get(reverse('health_check'), follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'health_check/dashboard.html')
def test_member_404(self):
admin_client = AdminClient()
admin_client.login_as_non_admin()
response = admin_client.get(
reverse('organization_members',
args=['Test-Organization-nonexistent']))
self.assertEqual(response.status_code, 404)
def test_user_access_denied(self):
"""Regular users should not get access
Only admin can use Organization features
"""
admin_client = AdminClient()
admin_client.login_as_non_admin()
response = admin_client.get(reverse('organization_create'),
follow=True)
# Test HTTP denied
self.assertEqual(response.status_code, 403)
class ProfileDetailViewTest(MapStoryTestMixin):
def setUp(self):
self.test_username, self.test_password = self.create_user(
'testingProfiles', 'testingProfiles')
self.userclient = AdminClient()
def tearDown(self):
pass
def test_profile_detail_not_found(self):
# Should build detail URL correctly
self.assertEqual(
reverse('profile_detail', kwargs={'slug': 'nonexistent'}),
u'/storyteller/nonexistent/')
# Should not find this user
response = self.client.get(
reverse('profile_detail', kwargs={'slug': 'nonexistent'}))
self.assertEqual(response.status_code, 404)
def test_page_detail_page_response(self):
# We need an existing user for this
testUser = getTestUser()
response = self.client.get(testUser.get_absolute_url())
# The profile page should exist
self.assertEqual(response.status_code, 200)
# Should be using the correct template
self.assertTemplateUsed(response, 'people/profile_detail.html')
self.assertContains(response, testUser.first_name)
def test_get_username_none(self):
response = self.client.get(reverse('edit_profile',
kwargs={'username': None}),
follow=True)
self.assertEqual(response.status_code, 200)
def test_profile_edit_page_responses(self):
otherUser = getTestUser()
other_url = reverse('edit_profile',
kwargs={'username': otherUser.username})
self.assertEqual(other_url,
u'/storyteller/edit/%s/' % otherUser.username)
# Anonymous users should be redirected to login form
response = self.client.get(other_url, follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
self.assertContains(response, 'Log in to an existing account')
# Login with a user
edit_user_url = reverse('edit_profile',
kwargs={'username': self.test_username})
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(edit_user_url)
self.assertEqual(response.status_code, 200)
self.assertContains(response, self.test_username)
self.assertTemplateUsed(response, 'people/profile_edit.html')
self.assertContains(response, 'Edit Your Profile')
# Create new organization
form_data = {
'first_name': 'editedtestname',
'last_name': 'editedtestname',
}
response = self.userclient.post(edit_user_url,
data=form_data,
follow=True)
# Should not let other users edit profiles they don't own
response = self.userclient.get(other_url)
self.assertEqual(response.status_code, 403)
def test_profile_delete_anonymous_user_delete(self):
# Should redirect to the login page
response = self.client.get(reverse(
'profile_delete', kwargs={'username': '******'}),
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
def test_profile_delete_not_found(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(reverse(
'profile_delete', kwargs={'username': '******'}),
follow=True)
self.assertEqual(response.status_code, 404)
def test_profile_delete_get(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(reverse(
'profile_delete', kwargs={'username': self.test_username}),
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'people/profile_delete.html')
def test_profile_delete_post(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
# Create new organization
form_data = {
'is_active': False,
}
response = self.userclient.post(reverse(
'profile_delete', kwargs={'username': self.test_username}),
data=form_data,
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'index.html')
response = self.client.get(reverse('profile_detail',
kwargs={'slug':
self.test_username}),
follow=True)
self.assertEqual(response.status_code, 200)
class ProfileDetailViewTest(MapStoryTestMixin):
def setUp(self):
self.test_username, self.test_password = self.create_user(
'testingProfiles', 'testingProfiles')
self.userclient = AdminClient()
def tearDown(self):
pass
def test_profile_detail_not_found(self):
# Should build detail URL correctly
self.assertEqual(
reverse('profile_detail', kwargs={'slug': 'nonexistent'}),
u'/storyteller/nonexistent/')
# Should not find this user
response = self.client.get(
reverse('profile_detail', kwargs={'slug': 'nonexistent'}))
self.assertEqual(response.status_code, 404)
def test_page_detail_page_response(self):
# We need an existing user for this
testUser = getTestUser()
response = self.client.get(testUser.get_absolute_url())
# The profile page should exist
self.assertEqual(response.status_code, 200)
# Should be using the correct template
self.assertTemplateUsed(response, 'people/profile_detail.html')
self.assertContains(response, testUser.first_name)
def test_get_username_none(self):
response = self.client.get(reverse('profile_edit',
kwargs={'username': None}),
follow=True)
self.assertEqual(response.status_code, 200)
def test_profile_edit_page_responses(self):
otherUser = getTestUser()
other_url = reverse('profile_edit',
kwargs={'username': otherUser.username})
self.assertEqual(other_url,
u'/storyteller/edit/%s/' % otherUser.username)
# Anonymous users should be redirected to login form
response = self.client.get(other_url, follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
self.assertContains(response, 'Log in to an existing account')
# Login with a user
edit_user_url = reverse('profile_edit',
kwargs={'username': self.test_username})
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(edit_user_url)
self.assertEqual(response.status_code, 200)
self.assertContains(response, self.test_username)
self.assertTemplateUsed(response, 'people/profile_edit.html')
self.assertContains(response, 'Edit Your Profile')
# Create new organization
form_data = {
'first_name': 'editedtestname',
'last_name': 'editedtestname',
}
response = self.userclient.post(edit_user_url,
data=form_data,
follow=True)
# Should not let other users edit profiles they don't own
response = self.userclient.get(other_url)
self.assertEqual(response.status_code, 403)
def test_profile_edit_no_profile_exception(self):
factory = RequestFactory()
created = User.objects.create_user(
username='******',
email='*****@*****.**',
password='******')
self.assertIsNotNone(created)
# Raise the No Profile exception when getting the profile
request = factory.get(
reverse('profile_edit', kwargs={'username': None}))
created.profile = PropertyMock(return_value=Profile.DoesNotExist())
request.user = created
response = profile_edit(request, None)
# TODO(Zunware): Discover why we are getting a forbidden http error
# self.assertEqual(response.status_code, 200)
def test_profile_edit_with_username_none(self):
factory = RequestFactory()
# Create an un-authed request
created = User.objects.create_user(
username='******',
email='*****@*****.**',
password='******')
self.assertIsNotNone(created)
request = factory.get(
reverse('profile_edit', kwargs={'username': None}))
request.user = created
# Get a response
response = profile_edit(request, None)
# TODO(Zunware): Discover why we are getting a forbidden http error
# self.assertEqual(response.status_code, 200)
def test_users_cannot_edit_other_users(self):
factory = RequestFactory()
request = factory.get('storyteller/edit/admin')
testUser = getTestUser()
request.user = testUser
request.session = {}
response = profile_edit(request, None)
# Server should refuse!
self.assertEqual(response.status_code, 403)
def test_profile_delete_anonymous_user_delete(self):
# Should redirect to the login page
response = self.client.get(reverse(
'profile_delete', kwargs={'username': '******'}),
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
def test_profile_delete_not_found(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(reverse(
'profile_delete', kwargs={'username': '******'}),
follow=True)
self.assertEqual(response.status_code, 404)
def test_profile_delete_get(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
response = self.userclient.get(reverse(
'profile_delete', kwargs={'username': self.test_username}),
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'people/profile_delete.html')
def test_profile_delete_post(self):
self.userclient.login_as_non_admin(username=self.test_username,
password=self.test_password)
# Create new organization
form_data = {
'is_active': False,
}
response = self.userclient.post(reverse(
'profile_delete', kwargs={'username': self.test_username}),
data=form_data,
follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'index.html')
response = self.client.get(reverse('profile_detail',
kwargs={'slug':
self.test_username}),
follow=True)
self.assertEqual(response.status_code, 200)
class ProfileDetailViewTest(MapStoryTestMixin):
def setUp(self):
self.test_username, self.test_password = self.create_user(
'testingProfiles', 'testingProfiles')
self.userclient = AdminClient()
def tearDown(self):
pass
def test_profile_detail_not_found(self):
# Should build detail URL correctly
self.assertEqual(reverse('profile_detail', kwargs={
'slug': 'nonexistent'}), u'/storyteller/nonexistent/')
# Should not find this user
response = self.client.get(
reverse('profile_detail', kwargs={'slug': 'nonexistent'}))
self.assertEqual(response.status_code, 404)
def test_page_detail_page_response(self):
# We need an existing user for this
testUser = getTestUser()
response = self.client.get(testUser.get_absolute_url())
# The profile page should exist
self.assertEqual(response.status_code, 200)
# Should be using the correct template
self.assertTemplateUsed(response, 'people/profile_detail.html')
self.assertContains(response, testUser.first_name)
def test_get_username_none(self):
response = self.client.get(reverse('profile_edit', kwargs={
'username': None}), follow=True)
self.assertEqual(response.status_code, 200)
def test_profile_edit_page_responses(self):
otherUser = getTestUser()
other_url = reverse('profile_edit', kwargs={
'username': otherUser.username})
self.assertEqual(other_url, u'/storyteller/edit/%s/' %
otherUser.username)
# Anonymous users should be redirected to login form
response = self.client.get(other_url, follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
self.assertContains(response, 'Log in to an existing account')
# Login with a user
edit_user_url = reverse('profile_edit', kwargs={
'username': self.test_username})
self.userclient.login_as_non_admin(
username=self.test_username, password=self.test_password)
response = self.userclient.get(edit_user_url)
self.assertEqual(response.status_code, 200)
self.assertContains(response, self.test_username)
self.assertTemplateUsed(response, 'people/profile_edit.html')
self.assertContains(response, 'Edit Your Profile')
# Create new organization
form_data = {
'first_name': 'editedtestname',
'last_name': 'editedtestname',
}
response = self.userclient.post(
edit_user_url, data=form_data, follow=True)
# Should not let other users edit profiles they don't own
response = self.userclient.get(other_url)
self.assertEqual(response.status_code, 403)
def test_users_cannot_edit_other_users(self):
factory = RequestFactory()
request = factory.get('storyteller/edit/admin')
testUser = getTestUser()
request.user = testUser
request.session = {}
response = profile_edit(request, None)
# Server should refuse!
self.assertEqual(response.status_code, 403)
def test_profile_delete_anonymous_user_delete(self):
# Should redirect to the login page
response = self.client.get(reverse('profile_delete', kwargs={
'username': '******'}), follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'account/login.html')
def test_profile_delete_not_found(self):
self.userclient.login_as_non_admin(
username=self.test_username, password=self.test_password)
response = self.userclient.get(reverse('profile_delete', kwargs={
'username': '******'}), follow=True)
self.assertEqual(response.status_code, 404)
def test_profile_delete_get(self):
self.userclient.login_as_non_admin(
username=self.test_username, password=self.test_password)
response = self.userclient.get(reverse('profile_delete', kwargs={
'username': self.test_username}), follow=True)
self.assertEqual(response.status_code, 200)
self.assertTemplateUsed(response, 'people/profile_delete.html')