Home Explore Help
Sign In
221V
/
Misago
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 055992eed5
Branches Tags
Misago
/
misago
/
threads
/
tests
/
test_thread_editreply_api.py

test_thread_editreply_api.py 9.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267 
  1. # -*- coding: utf-8 -*-
    2. 

  2. from __future__ import unicode_literals
    3. 

  3. 

  4. from django.test.client import BOUNDARY, MULTIPART_CONTENT, encode_multipart
    5. 

  5. from django.urls import reverse
    6. 

  6. 

  7. from misago.acl.testutils import override_acl
    8. 

  8. from misago.categories.models import Category
    9. 

  9. from misago.threads import testutils
    10. 

  10. from misago.users.testutils import AuthenticatedUserTestCase
    11. 

  11. 

  12. 

  13. class EditReplyTests(AuthenticatedUserTestCase):
    14. 

  14.     def setUp(self):
    15. 

  15.         super(EditReplyTests, self).setUp()
    16. 

  16. 

  17.         self.category = Category.objects.get(slug='first-category')
    18. 

  18.         self.thread = testutils.post_thread(category=self.category)
    19. 

  19.         self.post = testutils.reply_thread(self.thread, poster=self.user)
    20. 

  20. 

  21.         self.api_link = reverse(
    22. 

  22.             'misago:api:thread-post-detail',
    23. 

  23.             kwargs={'thread_pk': self.thread.pk,
    24. 

  24.                     'pk': self.post.pk}
    25. 

  25.         )
    26. 

  26. 

  27.     def override_acl(self, extra_acl=None):
    28. 

  28.         new_acl = self.user.acl_cache
    29. 

  29.         new_acl['categories'][self.category.pk].update({
    30. 

  30.             'can_see': 1,
    31. 

  31.             'can_browse': 1,
    32. 

  32.             'can_start_threads': 0,
    33. 

  33.             'can_reply_threads': 0,
    34. 

  34.             'can_edit_posts': 1
    35. 

  35.         })
    36. 

  36. 

  37.         if extra_acl:
    38. 

  38.             new_acl['categories'][self.category.pk].update(extra_acl)
    39. 

  39. 

  40.         override_acl(self.user, new_acl)
    41. 

  41. 

  42.     def put(self, url, data=None):
    43. 

  43.         content = encode_multipart(BOUNDARY, data or {})
    44. 

  44.         return self.client.put(url, content, content_type=MULTIPART_CONTENT)
    45. 

  45. 

  46.     def test_cant_edit_reply_as_guest(self):
    47. 

  47.         """user has to be authenticated to be able to edit reply"""
    48. 

  48.         self.logout_user()
    49. 

  49. 

  50.         response = self.put(self.api_link)
    51. 

  51.         self.assertEqual(response.status_code, 403)
    52. 

  52. 

  53.     def test_thread_visibility(self):
    54. 

  54.         """thread's visibility is validated"""
    55. 

  55.         self.override_acl({'can_see': 0})
    56. 

  56.         response = self.put(self.api_link)
    57. 

  57.         self.assertEqual(response.status_code, 404)
    58. 

  58. 

  59.         self.override_acl({'can_browse': 0})
    60. 

  60.         response = self.put(self.api_link)
    61. 

  61.         self.assertEqual(response.status_code, 404)
    62. 

  62. 

  63.         self.override_acl({'can_see_all_threads': 0})
    64. 

  64.         response = self.put(self.api_link)
    65. 

  65.         self.assertEqual(response.status_code, 404)
    66. 

  66. 

  67.     def test_cant_edit_reply(self):
    68. 

  68.         """permission to edit reply is validated"""
    69. 

  69.         self.override_acl({'can_edit_posts': 0})
    70. 

  70. 

  71.         response = self.put(self.api_link)
    72. 

  72.         self.assertContains(response, "You can't edit posts in this category.", status_code=403)
    73. 

  73. 

  74.     def test_cant_edit_other_user_reply(self):
    75. 

  75.         """permission to edit reply by other users is validated"""
    76. 

  76.         self.override_acl({'can_edit_posts': 1})
    77. 

  77. 

  78.         self.post.poster = None
    79. 

  79.         self.post.save()
    80. 

  80. 

  81.         response = self.put(self.api_link)
    82. 

  82.         self.assertContains(
    83. 

  83.             response, "You can't edit other users posts in this category.", status_code=403
    84. 

  84.         )
    85. 

  85. 

  86.     def test_closed_category(self):
    87. 

  87.         """permssion to edit reply in closed category is validated"""
    88. 

  88.         self.override_acl({'can_close_threads': 0})
    89. 

  89. 

  90.         self.category.is_closed = True
    91. 

  91.         self.category.save()
    92. 

  92. 

  93.         response = self.put(self.api_link)
    94. 

  94.         self.assertContains(
    95. 

  95.             response, "This category is closed. You can't edit posts in it.", status_code=403
    96. 

  96.         )
    97. 

  97. 

  98.         # allow to post in closed category
    99. 

  99.         self.override_acl({'can_close_threads': 1})
    100. 

  100. 

  101.         response = self.put(self.api_link)
    102. 

  102.         self.assertEqual(response.status_code, 400)
    103. 

  103. 

  104.     def test_closed_thread(self):
    105. 

  105.         """permssion to edit reply in closed thread is validated"""
    106. 

  106.         self.override_acl({'can_close_threads': 0})
    107. 

  107. 

  108.         self.thread.is_closed = True
    109. 

  109.         self.thread.save()
    110. 

  110. 

  111.         response = self.put(self.api_link)
    112. 

  112.         self.assertContains(
    113. 

  113.             response, "This thread is closed. You can't edit posts in it.", status_code=403
    114. 

  114.         )
    115. 

  115. 

  116.         # allow to post in closed thread
    117. 

  117.         self.override_acl({'can_close_threads': 1})
    118. 

  118. 

  119.         response = self.put(self.api_link)
    120. 

  120.         self.assertEqual(response.status_code, 400)
    121. 

  121. 

  122.     def test_protected_post(self):
    123. 

  123.         """permssion to edit protected post is validated"""
    124. 

  124.         self.override_acl({'can_protect_posts': 0})
    125. 

  125. 

  126.         self.post.is_protected = True
    127. 

  127.         self.post.save()
    128. 

  128. 

  129.         response = self.put(self.api_link)
    130. 

  130.         self.assertContains(response, "This post is protected. You can't edit it.", status_code=403)
    131. 

  131. 

  132.         # allow to post in closed thread
    133. 

  133.         self.override_acl({'can_protect_posts': 1})
    134. 

  134. 

  135.         response = self.put(self.api_link)
    136. 

  136.         self.assertEqual(response.status_code, 400)
    137. 

  137. 

  138.     def test_empty_data(self):
    139. 

  139.         """no data sent handling has no showstoppers"""
    140. 

  140.         self.override_acl()
    141. 

  141. 

  142.         response = self.put(self.api_link, data={})
    143. 

  143. 

  144.         self.assertEqual(response.status_code, 400)
    145. 

  145.         self.assertEqual(response.json(), {'post': ["You have to enter a message."]})
    146. 

  146. 

  147.     def test_edit_event(self):
    148. 

  148.         """events can't be edited"""
    149. 

  149.         self.override_acl()
    150. 

  150. 

  151.         self.post.is_event = True
    152. 

  152.         self.post.save()
    153. 

  153. 

  154.         response = self.put(self.api_link, data={})
    155. 

  155. 

  156.         self.assertContains(response, "Events can't be edited.", status_code=403)
    157. 

  157. 

  158.     def test_post_is_validated(self):
    159. 

  159.         """post is validated"""
    160. 

  160.         self.override_acl()
    161. 

  161. 

  162.         response = self.put(
    163. 

  163.             self.api_link, data={
    164. 

  164.                 'post': "a",
    165. 

  165.             }
    166. 

  166.         )
    167. 

  167. 

  168.         self.assertEqual(response.status_code, 400)
    169. 

  169.         self.assertEqual(
    170. 

  170.             response.json(),
    171. 

  171.             {'post': ["Posted message should be at least 5 characters long (it has 1)."]}
    172. 

  172.         )
    173. 

  173. 

  174.     def test_edit_reply_no_change(self):
    175. 

  175.         """endpoint isn't bumping edits count if no change was made to post's body"""
    176. 

  176.         self.override_acl()
    177. 

  177.         self.assertEqual(self.post.edits_record.count(), 0)
    178. 

  178. 

  179.         response = self.put(self.api_link, data={'post': self.post.original})
    180. 

  180.         self.assertEqual(response.status_code, 200)
    181. 

  181. 

  182.         self.override_acl()
    183. 

  183.         response = self.client.get(self.thread.get_absolute_url())
    184. 

  184.         self.assertContains(response, self.post.parsed)
    185. 

  185. 

  186.         post = self.thread.post_set.order_by('id').last()
    187. 

  187.         self.assertEqual(post.edits, 0)
    188. 

  188.         self.assertEqual(post.original, self.post.original)
    189. 

  189.         self.assertIsNone(post.last_editor_id, self.user.id)
    190. 

  190.         self.assertIsNone(post.last_editor_name, self.user.username)
    191. 

  191.         self.assertIsNone(post.last_editor_slug, self.user.slug)
    192. 

  192. 

  193.         self.assertEqual(self.post.edits_record.count(), 0)
    194. 

  194. 

  195.     def test_edit_reply(self):
    196. 

  196.         """endpoint updates reply"""
    197. 

  197.         self.override_acl()
    198. 

  198.         self.assertEqual(self.post.edits_record.count(), 0)
    199. 

  199. 

  200.         response = self.put(self.api_link, data={'post': "This is test edit!"})
    201. 

  201.         self.assertEqual(response.status_code, 200)
    202. 

  202. 

  203.         self.override_acl()
    204. 

  204.         response = self.client.get(self.thread.get_absolute_url())
    205. 

  205.         self.assertContains(response, "<p>This is test edit!</p>")
    206. 

  206. 

  207.         post = self.thread.post_set.order_by('id').last()
    208. 

  208.         self.assertEqual(post.edits, 1)
    209. 

  209.         self.assertEqual(post.original, "This is test edit!")
    210. 

  210.         self.assertEqual(post.last_editor_id, self.user.id)
    211. 

  211.         self.assertEqual(post.last_editor_name, self.user.username)
    212. 

  212.         self.assertEqual(post.last_editor_slug, self.user.slug)
    213. 

  213. 

  214.         self.assertEqual(self.post.edits_record.count(), 1)
    215. 

  215. 

  216.         post_edit = post.edits_record.last()
    217. 

  217.         self.assertEqual(post_edit.edited_from, self.post.original)
    218. 

  218.         self.assertEqual(post_edit.edited_to, post.original)
    219. 

  219. 

  220.         self.assertEqual(post_edit.editor_id, self.user.id)
    221. 

  221.         self.assertEqual(post_edit.editor_name, self.user.username)
    222. 

  222.         self.assertEqual(post_edit.editor_slug, self.user.slug)
    223. 

  223. 

  224.     def test_edit_first_post_hidden(self):
    225. 

  225.         """endpoint updates hidden thread's first post"""
    226. 

  226.         self.override_acl({'can_hide_threads': 1, 'can_edit_posts': 2})
    227. 

  227. 

  228.         self.thread.is_hidden = True
    229. 

  229.         self.thread.save()
    230. 

  230.         self.thread.first_post.is_hidden = True
    231. 

  231.         self.thread.first_post.save()
    232. 

  232. 

  233.         api_link = reverse(
    234. 

  234.             'misago:api:thread-post-detail',
    235. 

  235.             kwargs={'thread_pk': self.thread.pk,
    236. 

  236.                     'pk': self.thread.first_post.pk}
    237. 

  237.         )
    238. 

  238. 

  239.         response = self.put(api_link, data={'post': "This is test edit!"})
    240. 

  240.         self.assertEqual(response.status_code, 200)
    241. 

  241. 

  242.     def test_protect_post(self):
    243. 

  243.         """can protect post"""
    244. 

  244.         self.override_acl({'can_protect_posts': 1})
    245. 

  245. 

  246.         response = self.put(self.api_link, data={'post': "Lorem ipsum dolor met!", 'protect': 1})
    247. 

  247.         self.assertEqual(response.status_code, 200)
    248. 

  248. 

  249.         post = self.user.post_set.order_by('id').last()
    250. 

  250.         self.assertTrue(post.is_protected)
    251. 

  251. 

  252.     def test_protect_post_no_permission(self):
    253. 

  253.         """cant protect post without permission"""
    254. 

  254.         self.override_acl({'can_protect_posts': 0})
    255. 

  255. 

  256.         response = self.put(self.api_link, data={'post': "Lorem ipsum dolor met!", 'protect': 1})
    257. 

  257.         self.assertEqual(response.status_code, 200)
    258. 

  258. 

  259.         post = self.user.post_set.order_by('id').last()
    260. 

  260.         self.assertFalse(post.is_protected)
    261. 

  261. 

  262.     def test_post_unicode(self):
    263. 

  263.         """unicode characters can be posted"""
    264. 

  264.         self.override_acl()
    265. 

  265. 

  266.         response = self.put(self.api_link, data={'post': "Chrzążczyżewoszyce, powiat Łękółody."})
    267. 

  267.         self.assertEqual(response.status_code, 200)
    268.