""" Author: Michel Peltriaux Organization: Struktur- und Genehmigungsdirektion Nord, Rhineland-Palatinate, Germany Contact: michel.peltriaux@sgdnord.rlp.de Created on: 07.02.22 """ from django.test.client import Client from django.urls import reverse from konova.models import Deadline, DeadlineType from konova.settings import DEFAULT_GROUP from konova.tests.test_views import BaseViewTestCase class CompensationViewTestCase(BaseViewTestCase): """ These tests focus on proper returned views depending on the user's groups privileges and login status """ @classmethod def setUpTestData(cls) -> None: super().setUpTestData() def setUp(self) -> None: super().setUp() state = self.create_dummy_states() self.compensation.before_states.set([state]) self.compensation.after_states.set([state]) action = self.create_dummy_action() self.compensation.actions.set([action]) self.deadline = Deadline.objects.get_or_create( type=DeadlineType.FINISHED, date="2020-01-01", comment="TESTDEADDLINECOMMENT" )[0] self.compensation.deadlines.add(self.deadline) # Prepare urls self.index_url = reverse("compensation:index", args=()) self.new_url = reverse("compensation:new", args=(self.intervention.id,)) self.new_id_url = reverse("compensation:new-id", args=()) self.detail_url = reverse("compensation:detail", args=(self.compensation.id,)) self.log_url = reverse("compensation:log", args=(self.compensation.id,)) self.edit_url = reverse("compensation:edit", args=(self.compensation.id,)) self.remove_url = reverse("compensation:remove", args=(self.compensation.id,)) self.report_url = reverse("compensation:report", args=(self.compensation.id,)) self.state_new_url = reverse("compensation:new-state", args=(self.compensation.id,)) self.action_new_url = reverse("compensation:new-action", args=(self.compensation.id,)) self.deadline_new_url = reverse("compensation:new-deadline", args=(self.compensation.id,)) self.deadline_edit_url = reverse("compensation:deadline-edit", args=(self.compensation.id, self.deadline.id)) self.deadline_remove_url = reverse("compensation:deadline-remove", args=(self.compensation.id, self.deadline.id)) self.new_doc_url = reverse("compensation:new-doc", args=(self.compensation.id,)) self.state_remove_url = reverse("compensation:state-remove", args=(self.compensation.id, self.comp_state.id,)) self.action_remove_url = reverse("compensation:action-remove", args=(self.compensation.id, self.comp_action.id,)) def test_anonymous_user(self): """ Check correct status code for all requests Assumption: User not logged in Returns: """ client = Client() success_urls = [ self.report_url, ] fail_urls = [ self.index_url, self.detail_url, self.new_url, self.new_id_url, self.log_url, self.edit_url, self.remove_url, self.state_new_url, self.action_new_url, self.deadline_new_url, self.deadline_edit_url, self.deadline_remove_url, self.state_remove_url, self.action_remove_url, self.new_doc_url, ] self.assert_url_success(client, success_urls) self.assert_url_fail(client, fail_urls) def test_logged_in_no_groups_shared(self): """ Check correct status code for all requests Assumption: User logged in and has no groups and data is shared Returns: """ client = Client() client.login(username=self.superuser.username, password=self.superuser_pw) self.superuser.groups.set([]) self.intervention.share_with_user_list([self.superuser]) # Since the user has no groups, it does not matter that data has been shared. There SHOULD not be any difference # to a user without access, since the important permissions are missing success_urls = [ self.index_url, self.detail_url, self.report_url, ] fail_urls = [ self.new_url, self.new_id_url, self.log_url, self.edit_url, self.remove_url, self.state_new_url, self.action_new_url, self.deadline_new_url, self.deadline_edit_url, self.deadline_remove_url, self.state_remove_url, self.action_remove_url, self.new_doc_url, ] self.assert_url_success(client, success_urls) self.assert_url_fail(client, fail_urls) def test_logged_in_no_groups_unshared(self): """ Check correct status code for all requests Assumption: User logged in and has no groups and data is not shared Returns: """ client = Client() client.login(username=self.superuser.username, password=self.superuser_pw) self.superuser.groups.set([]) # Sharing is inherited by base intervention for compensation. Therefore configure the interventions share state self.intervention.share_with_user_list([]) # Since the user has no groups, it does not matter that data is unshared. There SHOULD not be any difference # to a user having shared access, since all important permissions are missing success_urls = [ self.index_url, self.detail_url, self.report_url, ] fail_urls = [ self.new_url, self.new_id_url, self.log_url, self.edit_url, self.remove_url, self.state_new_url, self.action_new_url, self.deadline_new_url, self.deadline_edit_url, self.deadline_remove_url, self.state_remove_url, self.action_remove_url, self.new_doc_url, ] self.assert_url_success(client, success_urls) self.assert_url_fail(client, fail_urls) def test_logged_in_default_group_shared(self): """ Check correct status code for all requests Assumption: User logged in, is default group member and data is shared --> Default group necessary since all base functionalities depend on this group membership Returns: """ client = Client() client.login(username=self.superuser.username, password=self.superuser_pw) group = self.groups.get(name=DEFAULT_GROUP) self.superuser.groups.set([group]) # Sharing is inherited by base intervention for compensation. Therefore configure the interventions share state self.intervention.share_with_user_list([self.superuser]) success_urls = [ self.index_url, self.detail_url, self.report_url, self.new_url, self.new_id_url, self.edit_url, self.state_new_url, self.action_new_url, self.deadline_new_url, self.deadline_edit_url, self.deadline_remove_url, self.state_remove_url, self.action_remove_url, self.new_doc_url, self.log_url, self.remove_url, ] self.assert_url_success(client, success_urls) def test_logged_in_default_group_unshared(self): """ Check correct status code for all requests Assumption: User logged in, is default group member and data is NOT shared --> Default group necessary since all base functionalities depend on this group membership Returns: """ client = Client() client.login(username=self.superuser.username, password=self.superuser_pw) group = self.groups.get(name=DEFAULT_GROUP) self.superuser.groups.set([group]) # Sharing is inherited by base intervention for compensation. Therefore configure the interventions share state self.intervention.share_with_user_list([]) success_urls = [ self.index_url, self.detail_url, self.report_url, self.new_id_url, ] fail_urls = [ self.new_url, self.edit_url, self.state_new_url, self.action_new_url, self.deadline_new_url, self.deadline_edit_url, self.deadline_remove_url, self.state_remove_url, self.action_remove_url, self.new_doc_url, self.log_url, self.remove_url, ] self.assert_url_fail(client, fail_urls) self.assert_url_success(client, success_urls)