def test_require_permission(self): ''' Test that user without 'conference.delete_attendee' permission can't access the view ''' perm = Permission.objects.get(pk=1) req = RequestFactory() req.user = self.user req.path = '/' rsp = export_csv(req, User.objects.all(), self.export_data, require_permission='auth.add_permission') self.assertEqual(rsp.status_code, 302) u = User.objects.get(pk=self.user.pk) u.user_permissions.add(perm) req.user = u rsp = export_csv(req, User.objects.all(), self.export_data, require_permission='auth.add_permission') self.assertEqual(rsp.status_code, 200)