Home Explore Help
Sign In
221V
/
Misago
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5cb0cb4eab
Branches Tags
Misago
/
misago
/
users
/
tests
/
test_user_username_api.py

test_user_username_api.py 6.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182 
  1. import json
    2. 

  2. 

  3. from django.urls import reverse
    4. 

  4. 

  5. from ...acl.test import patch_user_acl
    6. 

  6. from ...conf.test import override_dynamic_settings
    7. 

  7. from ..test import AuthenticatedUserTestCase, create_test_user
    8. 

  8. 

  9. 

  10. class UserUsernameTests(AuthenticatedUserTestCase):
    11. 

  11.     """tests for user change name RPC (POST to /api/users/1/username/)"""
    12. 

  12. 

  13.     def setUp(self):
    14. 

  14.         super().setUp()
    15. 

  15.         self.link = "/api/users/%s/username/" % self.user.pk
    16. 

  16. 

  17.     @override_dynamic_settings(username_length_min=2, username_length_max=4)
    18. 

  18.     def test_get_change_username_options(self):
    19. 

  19.         """get to API returns options"""
    20. 

  20.         response = self.client.get(self.link)
    21. 

  21.         self.assertEqual(response.status_code, 200)
    22. 

  22. 

  23.         response_json = response.json()
    24. 

  24. 

  25.         self.assertIsNotNone(response_json["changes_left"])
    26. 

  26.         self.assertEqual(response_json["length_min"], 2)
    27. 

  27.         self.assertEqual(response_json["length_max"], 4)
    28. 

  28.         self.assertIsNone(response_json["next_on"])
    29. 

  29. 

  30.         for i in range(response_json["changes_left"]):
    31. 

  31.             self.user.set_username("NewName%s" % i, self.user)
    32. 

  32. 

  33.         response = self.client.get(self.link)
    34. 

  34.         self.assertEqual(response.status_code, 200)
    35. 

  35. 

  36.         response_json = response.json()
    37. 

  37.         self.assertEqual(response_json["changes_left"], 0)
    38. 

  38.         self.assertIsNotNone(response_json["next_on"])
    39. 

  39. 

  40.     def test_change_username_no_changes_left(self):
    41. 

  41.         """api returns error 400 if there are no username changes left"""
    42. 

  42.         response = self.client.get(self.link)
    43. 

  43.         self.assertEqual(response.status_code, 200)
    44. 

  44. 

  45.         for i in range(response.json()["changes_left"]):
    46. 

  46.             self.user.set_username("NewName%s" % i, self.user)
    47. 

  47. 

  48.         response = self.client.get(self.link)
    49. 

  49.         self.assertEqual(response.json()["changes_left"], 0)
    50. 

  50. 

  51.         response = self.client.post(self.link, data={"username": "Pointless"})
    52. 

  52.         self.assertEqual(response.status_code, 400)
    53. 

  53.         self.assertEqual(
    54. 

  54.             response.json()["detail"], "You can't change your username now."
    55. 

  55.         )
    56. 

  56.         self.assertTrue(self.user.username != "Pointless")
    57. 

  57. 

  58.     def test_change_username_no_input(self):
    59. 

  59.         """api returns error 400 if new username is empty"""
    60. 

  60.         response = self.client.post(self.link, data={})
    61. 

  61.         self.assertEqual(response.status_code, 400)
    62. 

  62.         self.assertEqual(response.json(), {"detail": "Enter new username."})
    63. 

  63. 

  64.     def test_change_username_invalid_name(self):
    65. 

  65.         """api returns error 400 if new username is wrong"""
    66. 

  66.         response = self.client.post(self.link, data={"username": "####"})
    67. 

  67.         self.assertEqual(response.status_code, 400)
    68. 

  68.         self.assertEqual(
    69. 

  69.             response.json(),
    70. 

  70.             {"detail": "Username can only contain latin alphabet letters and digits."},
    71. 

  71.         )
    72. 

  72. 

  73.     def test_change_username(self):
    74. 

  74.         """api changes username and records change"""
    75. 

  75.         response = self.client.get(self.link)
    76. 

  76.         changes_left = response.json()["changes_left"]
    77. 

  77. 

  78.         old_username = self.user.username
    79. 

  79.         new_username = "NewUsernamu"
    80. 

  80. 

  81.         response = self.client.post(self.link, data={"username": new_username})
    82. 

  82. 

  83.         self.assertEqual(response.status_code, 200)
    84. 

  84.         options = response.json()["options"]
    85. 

  85.         self.assertEqual(changes_left, options["changes_left"] + 1)
    86. 

  86. 

  87.         self.reload_user()
    88. 

  88.         self.assertEqual(self.user.username, new_username)
    89. 

  89.         self.assertTrue(self.user.username != old_username)
    90. 

  90. 

  91.         self.assertEqual(self.user.namechanges.last().new_username, new_username)
    92. 

  92. 

  93. 

  94. @override_dynamic_settings(
    95. 

  95.     enable_oauth2_client=True,
    96. 

  96.     oauth2_provider="Lorem",
    97. 

  97. )
    98. 

  98. def test_change_username_api_returns_403_if_oauth_is_enabled(user, user_client):
    99. 

  99.     response = user_client.post(
    100. 

  100.         reverse("misago:api:user-username", kwargs={"pk": user.pk}),
    101. 

  101.         {
    102. 

  102.             "username": "totallyNew",
    103. 

  103.         },
    104. 

  104.     )
    105. 

  105.     assert response.status_code == 403
    106. 

  106. 

  107. 

  108. class UserUsernameModerationTests(AuthenticatedUserTestCase):
    109. 

  109.     """tests for moderate username RPC (/api/users/1/moderate-username/)"""
    110. 

  110. 

  111.     def setUp(self):
    112. 

  112.         super().setUp()
    113. 

  113. 

  114.         self.other_user = create_test_user("OtherUser", "otheruser@example.com")
    115. 

  115.         self.link = "/api/users/%s/moderate-username/" % self.other_user.pk
    116. 

  116. 

  117.     @patch_user_acl({"can_rename_users": 0})
    118. 

  118.     def test_no_permission(self):
    119. 

  119.         """no permission to moderate username"""
    120. 

  120.         response = self.client.get(self.link)
    121. 

  121.         self.assertEqual(response.status_code, 403)
    122. 

  122.         self.assertEqual(response.json(), {"detail": "You can't rename users."})
    123. 

  123. 

  124.         response = self.client.post(self.link)
    125. 

  125.         self.assertEqual(response.status_code, 403)
    126. 

  126.         self.assertEqual(response.json(), {"detail": "You can't rename users."})
    127. 

  127. 

  128.     @patch_user_acl({"can_rename_users": 1})
    129. 

  129.     @override_dynamic_settings(username_length_min=3, username_length_max=12)
    130. 

  130.     def test_moderate_username(self):
    131. 

  131.         """moderate username"""
    132. 

  132.         response = self.client.get(self.link)
    133. 

  133.         self.assertEqual(response.status_code, 200)
    134. 

  134. 

  135.         options = response.json()
    136. 

  136.         self.assertEqual(options["length_min"], 3)
    137. 

  137.         self.assertEqual(options["length_max"], 12)
    138. 

  138. 

  139.         response = self.client.post(
    140. 

  140.             self.link, json.dumps({"username": ""}), content_type="application/json"
    141. 

  141.         )
    142. 

  142.         self.assertEqual(response.status_code, 400)
    143. 

  143.         self.assertEqual(response.json(), {"detail": "Enter new username."})
    144. 

  144. 

  145.         response = self.client.post(
    146. 

  146.             self.link, json.dumps({"username": "$$$"}), content_type="application/json"
    147. 

  147.         )
    148. 

  148.         self.assertEqual(response.status_code, 400)
    149. 

  149.         self.assertEqual(
    150. 

  150.             response.json(),
    151. 

  151.             {"detail": "Username can only contain latin alphabet letters and digits."},
    152. 

  152.         )
    153. 

  153. 

  154.         response = self.client.post(
    155. 

  155.             self.link, json.dumps({"username": "a"}), content_type="application/json"
    156. 

  156.         )
    157. 

  157.         self.assertEqual(response.status_code, 400)
    158. 

  158.         self.assertEqual(
    159. 

  159.             response.json(), {"detail": "Username must be at least 3 characters long."}
    160. 

  160.         )
    161. 

  161. 

  162.         response = self.client.post(
    163. 

  163.             self.link,
    164. 

  164.             json.dumps({"username": "NewName"}),
    165. 

  165.             content_type="application/json",
    166. 

  166.         )
    167. 

  167. 

  168.         self.assertEqual(response.status_code, 200)
    169. 

  169. 

  170.         self.other_user.refresh_from_db()
    171. 

  171.         self.assertEqual("NewName", self.other_user.username)
    172. 

  172.         self.assertEqual("newname", self.other_user.slug)
    173. 

  173. 

  174.         options = response.json()
    175. 

  175.         self.assertEqual(options["username"], self.other_user.username)
    176. 

  176.         self.assertEqual(options["slug"], self.other_user.slug)
    177. 

  177. 

  178.     @patch_user_acl({"can_rename_users": 1})
    179. 

  179.     def test_moderate_own_username(self):
    180. 

  180.         """moderate own username"""
    181. 

  181.         response = self.client.get("/api/users/%s/moderate-username/" % self.user.pk)
    182. 

  182.         self.assertEqual(response.status_code, 200)
    183.