Move all user picture logic to sas

2025-07-10 20:09:25 +00:00 · 2025-02-18 20:10:51 +01:00
parent ba21738bd9
commit e46cba7a06
11 changed files with 55 additions and 54 deletions
--- a/sas/tests/test_views.py
+++ b/sas/tests/test_views.py
@ -171,3 +171,37 @@ class TestSasModeration(TestCase):
            "Vous avez déjà déposé une demande de retrait pour cette photo.</li></ul>",
            res.content.decode(),
        )
+
+
+@pytest.mark.django_db
+class TestUserPicture:
+    def test_anonymous_user_unauthorized(self, client):
+        """An anonymous user shouldn't have access to an user's photo page."""
+        response = client.get(
+            reverse(
+                "sas:user_pictures",
+                kwargs={"user_id": User.objects.get(username="sli").pk},
+            )
+        )
+        assert response.status_code == 403
+
+    @pytest.mark.parametrize(
+        ("username", "status"),
+        [
+            ("guy", 403),
+            ("root", 200),
+            ("skia", 200),
+            ("sli", 200),
+        ],
+    )
+    def test_page_is_working(self, client, username, status):
+        """Only user that subscribed (or admins) should be able to see the page."""
+        # Test for simple user
+        client.force_login(User.objects.get(username=username))
+        response = client.get(
+            reverse(
+                "sas:user_pictures",
+                kwargs={"user_id": User.objects.get(username="sli").pk},
+            )
+        )
+        assert response.status_code == status