klmp200/Sith
1
0
Fork 0
mirror of https://github.com/ae-utbm/sith.git synced 2026-06-05 07:39:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

add tests

Browse Source
This commit is contained in:
imperosol
2026-06-02 11:50:55 +02:00
parent 1e592e657f
commit 29cacf8efc
2 changed files with 54 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files
counter/tests/test_counter.py
+48 -7
View File
@@ -768,22 +768,63 @@ class TestBarmanConnection(TestCase):
soup = BeautifulSoup(response.text, "lxml") soup = BeautifulSoup(response.text, "lxml")
assert soup.find("form", id="select-user-form") is not None assert soup.find("form", id="select-user-form") is not None
def test_barman_denied(self): def assert_counter_login_fails(self, user: User):
not_barman = subscriber_user.make() initial_perms = set(self.counter.permanencies.filter(user=user, end=None))
not_barman.set_password("plop")
not_barman.save()
response = self.client.post( response = self.client.post(
self.login_url, {"username": not_barman.username, "password": "plop"} self.login_url, {"username": user.username, "password": "plop"}
) )
assert "HX-Redirect" not in response.headers assert "HX-Redirect" not in response.headers
assert not Permanency.objects.filter(user=not_barman).exists() assert (
assert self.barman not in response.wsgi_request.barmen set(self.counter.permanencies.filter(user=user, end=None)) == initial_perms
)
if initial_perms:
# the user was already logged in, and we already tested
# that it didn't re-login, so we can skip the next assertions.
return
self.counter.refresh_from_db()
assert response.wsgi_request.barmen.isdisjoint(set(self.counter.barmen_list))
response = self.client.get(self.detail_url) response = self.client.get(self.detail_url)
assert response.context_data.get("barmen") == [] assert response.context_data.get("barmen") == []
soup = BeautifulSoup(response.text, "lxml") soup = BeautifulSoup(response.text, "lxml")
assert soup.find("form", id="select-user-form") is None assert soup.find("form", id="select-user-form") is None
def test_barman_not_seller(self):
"""Test when the barman is not a seller of the counter"""
not_barman = subscriber_user.make()
not_barman.set_password("plop")
not_barman.save()
self.assert_counter_login_fails(not_barman)
def test_barman_already_logged(self):
"""Test when the barman is already logged in the current counter."""
self.client.post(
self.login_url, {"username": self.barman.username, "password": "plop"}
)
self.assert_counter_login_fails(self.barman)
def test_barman_already_logged_elsewhere(self):
"""Test when the barman is already logged in another counter."""
other_counter = baker.make(Counter, type="BAR")
CounterSellers.objects.create(counter=other_counter, user=self.barman)
self.client.post(
reverse("counter:login", kwargs={"counter_id": other_counter.id}),
{"username": self.barman.username, "password": "plop"},
)
self.assert_counter_login_fails(self.barman)
def test_login_on_non_bar_counter(self):
counter = baker.make(Counter, type="OFFICE")
CounterSellers.objects.create(counter=counter, user=self.barman)
url = reverse("counter:login", kwargs={"counter_id": counter.id})
response = self.client.get(url)
assert response.status_code == 403
response = self.client.post(
url, {"username": self.barman.username, "password": "plop"}
)
assert response.status_code == 403
@pytest.mark.django_db @pytest.mark.django_db
def test_barman_timeout(client: Client): def test_barman_timeout(client: Client):
counter/views/home.py
+6 -5
View File
@@ -15,6 +15,7 @@
from datetime import timedelta from datetime import timedelta
from django.conf import settings from django.conf import settings
from django.core.exceptions import PermissionDenied
from django.db.models import F from django.db.models import F
from django.http import HttpRequest, HttpResponseRedirect from django.http import HttpRequest, HttpResponseRedirect
from django.shortcuts import redirect from django.shortcuts import redirect
@@ -43,6 +44,10 @@ class CounterLoginFragment(FragmentMixin, SingleObjectMixin, FormView):
def dispatch(self, request, *args, **kwargs): def dispatch(self, request, *args, **kwargs):
self.object = self.get_object() self.object = self.get_object()
if self.object.type != "BAR":
# barmen have to log in only if it is a bar,
# so calling this view on a non-bar counter makes no sense
raise PermissionDenied
return super().dispatch(request, *args, **kwargs) return super().dispatch(request, *args, **kwargs)
def get_form_kwargs(self): def get_form_kwargs(self):
@@ -51,7 +56,7 @@ class CounterLoginFragment(FragmentMixin, SingleObjectMixin, FormView):
"counter": self.object, "counter": self.object,
} }
def form_valid(self, form: GetUserForm): def form_valid(self, form: CounterLoginForm):
user = form.get_user() user = form.get_user()
self.object.permanencies.create(user=user, start=timezone.now()) self.object.permanencies.create(user=user, start=timezone.now())
self.request.barmen.add(user) self.request.barmen.add(user)
@@ -93,10 +98,6 @@ class CounterMain(
def dispatch(self, request, *args, **kwargs): def dispatch(self, request, *args, **kwargs):
self.object: Counter = self.get_object() self.object: Counter = self.get_object()
if self.object.type != "BAR" and self.request.method.upper() == "POST":
# barmen have to log in (thus do a POST request) only if it is a bar,
# so a POST on a non-bar counter makes no sense
return self.http_method_not_allowed(request, *args, **kwargs)
if self.object.type == "BAR": if self.object.type == "BAR":
self.object.update_activity() self.object.update_activity()
return super().dispatch(request, *args, **kwargs) return super().dispatch(request, *args, **kwargs)