Skip to content
Snippets Groups Projects
Normal view Permalink
test_permissions.py 2.68 KiB
Newer Older
  • Learn to ignore specific revisions
    • Eliot Berriot's avatar
    See #152: added permission fields on user model and corresponding API permission
    Eliot Berriot committed
    1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 
    import pytest
from rest_framework.views import APIView

from funkwhale_api.users import permissions


def test_has_user_permission_no_user(api_request):
    view = APIView.as_view()
    permission = permissions.HasUserPermission()
    request = api_request.get('/')
    assert permission.has_permission(request, view) is False


def test_has_user_permission_anonymous(anonymous_user, api_request):
    view = APIView.as_view()
    permission = permissions.HasUserPermission()
    request = api_request.get('/')
    setattr(request, 'user', anonymous_user)
    assert permission.has_permission(request, view) is False


@pytest.mark.parametrize('value', [True, False])
def test_has_user_permission_logged_in_single(value, factories, api_request):
    user = factories['users.User'](permission_federation=value)

    class View(APIView):
        required_permissions = ['federation']
    view = View()
    permission = permissions.HasUserPermission()
    request = api_request.get('/')
    setattr(request, 'user', user)
    result = permission.has_permission(request, view)
    assert result == user.has_permissions('federation') == value


@pytest.mark.parametrize('federation,library,expected', [
    (True, False, False),
    (False, True, False),
    (False, False, False),
    (True, True, True),
])
    Eliot Berriot's avatar
    See #230: can now use "or" operator to check permissions  
    Eliot Berriot committed
    42 
    def test_has_user_permission_logged_in_multiple_and(
    Eliot Berriot's avatar
    See #152: added permission fields on user model and corresponding API permission
    Eliot Berriot committed
    43 44 45 46 47 48 49 50 
            federation, library, expected, factories, api_request):
    user = factories['users.User'](
        permission_federation=federation,
        permission_library=library,
    )

    class View(APIView):
        required_permissions = ['federation', 'library']
    Eliot Berriot's avatar
    See #230: can now use "or" operator to check permissions  
    Eliot Berriot committed
    51 
            permission_operator = 'and'
    Eliot Berriot's avatar
    See #152: added permission fields on user model and corresponding API permission
    Eliot Berriot committed
    52 53 54 55 56 57 
        view = View()
    permission = permissions.HasUserPermission()
    request = api_request.get('/')
    setattr(request, 'user', user)
    result = permission.has_permission(request, view)
    assert result == user.has_permissions('federation', 'library') == expected
    Eliot Berriot's avatar
    See #230: can now use "or" operator to check permissions  
    Eliot Berriot committed
    58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 
    

@pytest.mark.parametrize('federation,library,expected', [
    (True, False, True),
    (False, True, True),
    (False, False, False),
    (True, True, True),
])
def test_has_user_permission_logged_in_multiple_or(
        federation, library, expected, factories, api_request):
    user = factories['users.User'](
        permission_federation=federation,
        permission_library=library,
    )

    class View(APIView):
        required_permissions = ['federation', 'library']
        permission_operator = 'or'
    view = View()
    permission = permissions.HasUserPermission()
    request = api_request.get('/')
    setattr(request, 'user', user)
    result = permission.has_permission(request, view)
    assert result == user.has_permissions(
        'federation', 'library', operator='or') == expected