Working permissions and all tests passing.

Remove print statements. Fix for review comments.
2026-01-31 15:15:38 -05:00 · 2016-02-26 12:00:16 +00:00
parent 5bbd3aad39
commit 16e1ecb134
19 changed files with 456 additions and 177 deletions
--- a/tests/app/user/test_rest.py
+++ b/tests/app/user/test_rest.py
@@ -28,8 +28,7 @@ def test_get_user_list(notify_api, notify_db, notify_db_session, sample_user, sa
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            assert expected in json_resp['data']

@@ -56,8 +55,7 @@ def test_get_user(notify_api, notify_db, notify_db_session, sample_user, sample_
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            assert json_resp['data'] == expected

@@ -77,8 +75,7 @@ def test_post_user(notify_api, notify_db, notify_db_session, sample_admin_servic
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            auth_header = create_authorization_header(service_id=sample_admin_service_id,
                                                      path=url_for('user.create_user'),
@@ -111,8 +108,7 @@ def test_post_user_missing_attribute_email(notify_api, notify_db, notify_db_sess
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            auth_header = create_authorization_header(service_id=sample_admin_service_id,
                                                      path=url_for('user.create_user'),
@@ -143,8 +139,7 @@ def test_post_user_missing_attribute_password(notify_api, notify_db, notify_db_s
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            auth_header = create_authorization_header(service_id=sample_admin_service_id,
                                                      path=url_for('user.create_user'),
@@ -172,8 +167,7 @@ def test_put_user(notify_api, notify_db, notify_db_session, sample_user, sample_
            data = {
                'name': sample_user.name,
                'email_address': new_email,
-                'mobile_number': sample_user.mobile_number,
-                'permissions': []
+                'mobile_number': sample_user.mobile_number
            }
            auth_header = create_authorization_header(service_id=sample_admin_service_id,
                                                      path=url_for('user.update_user', user_id=sample_user.id),
@@ -196,8 +190,7 @@ def test_put_user(notify_api, notify_db, notify_db_session, sample_user, sample_
                "id": user.id,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }
            assert json_resp['data'] == expected
            assert json_resp['data']['email_address'] == new_email
@@ -219,8 +212,7 @@ def test_put_user_update_password(notify_api,
                'name': sample_user.name,
                'email_address': sample_user.email_address,
                'mobile_number': sample_user.mobile_number,
-                'password': new_password,
-                'permissions': []
+                'password': new_password
            }
            auth_header = create_authorization_header(service_id=sample_admin_service_id,
                                                      path=url_for('user.update_user', user_id=sample_user.id),
@@ -277,125 +269,6 @@ def test_put_user_not_exists(notify_api, notify_db, notify_db_session, sample_us
            assert user.email_address != new_email


-def test_post_with_permissions(notify_api, notify_db, notify_db_session, sample_admin_service_id):
-    """
-    Tests POST endpoint '/' to create a user with permissions.
-    """
-    with notify_api.test_request_context():
-        with notify_api.test_client() as client:
-            assert User.query.count() == 1
-            permissions = ['new permission']
-            data = {
-                "name": "Test User",
-                "email_address": "user@digital.cabinet-office.gov.uk",
-                "password": "password",
-                "mobile_number": "+447700900986",
-                "password_changed_at": None,
-                "logged_in_at": None,
-                "state": "active",
-                "failed_login_count": 0,
-                "permissions": permissions
-            }
-            auth_header = create_authorization_header(service_id=sample_admin_service_id,
-                                                      path=url_for('user.create_user'),
-                                                      method='POST',
-                                                      request_body=json.dumps(data))
-            headers = [('Content-Type', 'application/json'), auth_header]
-            resp = client.post(
-                url_for('user.create_user'),
-                data=json.dumps(data),
-                headers=headers)
-            assert resp.status_code == 201
-            user = User.query.filter_by(email_address='user@digital.cabinet-office.gov.uk').first()
-            json_resp = json.loads(resp.get_data(as_text=True))
-            json_resp['data'] == {"email_address": user.email_address, "id": user.id}
-            assert json_resp['data']['email_address'] == user.email_address
-            assert json_resp['data']['id'] == user.id
-            assert json_resp['data']['permissions'] == permissions
-
-
-def test_put_add_permissions(notify_api, notify_db, notify_db_session, sample_user, sample_admin_service_id):
-    """
-    Tests PUT endpoint '/' to update user permissions.
-    """
-    with notify_api.test_request_context():
-        with notify_api.test_client() as client:
-            permissions = ['one permission', 'another permission']
-            data = {
-                'name': sample_user.name,
-                'email_address': sample_user.email_address,
-                'mobile_number': sample_user.mobile_number,
-                'permissions': permissions
-            }
-            auth_header = create_authorization_header(service_id=sample_admin_service_id,
-                                                      path=url_for('user.update_user', user_id=sample_user.id),
-                                                      method='PUT',
-                                                      request_body=json.dumps(data))
-            headers = [('Content-Type', 'application/json'), auth_header]
-            resp = client.put(
-                url_for('user.update_user', user_id=sample_user.id),
-                data=json.dumps(data),
-                headers=headers)
-            assert resp.status_code == 200
-            assert User.query.count() == 2
-            user = User.query.filter_by(email_address=sample_user.email_address).first()
-            json_resp = json.loads(resp.get_data(as_text=True))
-            expected = {
-                "name": user.name,
-                "email_address": user.email_address,
-                "mobile_number": user.mobile_number,
-                "password_changed_at": None,
-                "id": user.id,
-                "logged_in_at": None,
-                "state": user.state,
-                "failed_login_count": 0,
-                "permissions": permissions
-            }
-            assert json_resp['data'] == expected
-
-
-def test_put_remove_permissions(notify_api, notify_db, notify_db_session, sample_user, sample_admin_service_id):
-    """
-    Tests PUT endpoint '/' to update user permissions.
-    """
-    with notify_api.test_request_context():
-        with notify_api.test_client() as client:
-            old_permissions = ['one permission', 'another permission']
-            save_model_user(sample_user, {'permissions': old_permissions})
-            permissions = ['new permissions']
-            data = {
-                'name': sample_user.name,
-                'email_address': sample_user.email_address,
-                'mobile_number': sample_user.mobile_number,
-                'permissions': permissions
-            }
-            auth_header = create_authorization_header(service_id=sample_admin_service_id,
-                                                      path=url_for('user.update_user', user_id=sample_user.id),
-                                                      method='PUT',
-                                                      request_body=json.dumps(data))
-            headers = [('Content-Type', 'application/json'), auth_header]
-            resp = client.put(
-                url_for('user.update_user', user_id=sample_user.id),
-                data=json.dumps(data),
-                headers=headers)
-            assert resp.status_code == 200
-            assert User.query.count() == 2
-            user = User.query.filter_by(email_address=sample_user.email_address).first()
-            json_resp = json.loads(resp.get_data(as_text=True))
-            expected = {
-                "name": user.name,
-                "email_address": user.email_address,
-                "mobile_number": user.mobile_number,
-                "password_changed_at": None,
-                "id": user.id,
-                "logged_in_at": None,
-                "state": user.state,
-                "failed_login_count": 0,
-                "permissions": permissions
-            }
-            assert json_resp['data'] == expected
-
-
 def test_get_user_by_email(notify_api, notify_db, notify_db_session, sample_user, sample_admin_service_id):

    with notify_api.test_request_context():
@@ -414,8 +287,7 @@ def test_get_user_by_email(notify_api, notify_db, notify_db_session, sample_user
                "password_changed_at": None,
                "logged_in_at": None,
                "state": "active",
-                "failed_login_count": 0,
-                "permissions": []
+                "failed_login_count": 0
            }

            assert json_resp['data'] == expected