django-fmd_ynh/tests/test_django_project.py

from axes.models import AccessLog
from bx_django_utils.test_utils.html_assertion import (
    HtmlAssertionMixin,
    assert_html_response_snapshot,
)
from django.conf import LazySettings, settings
from django.contrib.auth.models import User
from django.http import FileResponse, HttpResponse
from django.test import override_settings
from django.test.testcases import TestCase
from django.urls.base import reverse
from django_yunohost_integration.test_utils import generate_basic_auth

from findmydevice import __version__


@override_settings(DEBUG=False)
class DjangoYnhTestCase(HtmlAssertionMixin, TestCase):
    def setUp(self):
        super().setUp()

        # Always start a fresh session:
        self.client = self.client_class()

    def test_settings(self):
        assert isinstance(settings, LazySettings)
        assert settings.configured is True

        assert 'django_yunohost_integration' in settings.INSTALLED_APPS
        assert 'findmydevice.apps.FindMyDeviceConfig' in settings.INSTALLED_APPS

        assert settings.PATH_URL == 'app_path'

        assert str(settings.FINALPATH).endswith('/local_test/opt_yunohost')
        assert str(settings.PUBLIC_PATH).endswith('/local_test/var_www')
        assert str(settings.LOG_FILE).endswith('/local_test/var_log_django-fmd.log')

        assert settings.ROOT_URLCONF == 'urls'

    def test_config_panel_settings(self):
        # config_panel.toml settings, set via tests.conftest.pytest_configure():
        assert settings.DEBUG_ENABLED == '0' and settings.DEBUG is False
        assert settings.LOG_LEVEL == 'INFO'
        assert settings.ADMIN_EMAIL == 'foo-bar@test.tld'
        assert settings.DEFAULT_FROM_EMAIL == 'django_app@test.tld'

    def test_auth(self):
        assert settings.PATH_URL == 'app_path'
        assert reverse('admin:index') == '/app_path/admin/'

        # SecurityMiddleware should redirects all non-HTTPS requests to HTTPS:
        assert settings.SECURE_SSL_REDIRECT is True
        response = self.client.get('/app_path/', secure=False)
        self.assertRedirects(
            response,
            status_code=301,  # permanent redirect
            expected_url='https://testserver/app_path/',
            fetch_redirect_response=False,
        )

        response = self.client.get('/app_path/', secure=True)
        self.assertTemplateUsed(response, 'fmd/login_info.html')
        self.assert_html_parts(
            response,
            parts=(
                '<title>Log in | Find My Device</title>',
                '<p class="errornote">To find your device, you must be logged in.</p>',
                '<a href="/yunohost/sso/">Log in</a>',
            ),
        )
        assert_html_response_snapshot(response, query_selector=None, validate=False)

    def test_web_page_as_sso_user(self):
        assert User.objects.count() == 0
        self.client.cookies['SSOwAuthUser'] = 'test'
        response = self.client.get(
            path='/app_path/',
            HTTP_REMOTE_USER='test',
            HTTP_AUTH_USER='test',
            HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',
            secure=True,
        )
        assert isinstance(response, FileResponse)

        assert User.objects.count() == 1
        user = User.objects.first()
        assert user.username == 'test'

        response2 = HttpResponse(response.getvalue())
        self.assert_html_parts(
            response2,
            parts=(
                '<title>FMD</title>',
                '<h2>Find My Device</h2>',
                '<link rel="stylesheet" href="./static/fmd_externals/style.css">',
                '<script src="./static/fmd_externals/logic.js"></script>',
            ),
        )
        assert_html_response_snapshot(response2, query_selector=None, validate=False)

    def test_create_unknown_user(self):
        assert User.objects.count() == 0

        self.client.cookies['SSOwAuthUser'] = 'test'

        response = self.client.get(
            path='/app_path/admin/',
            HTTP_REMOTE_USER='test',
            HTTP_AUTH_USER='test',
            HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',
            secure=True,
        )

        assert User.objects.count() == 1
        user = User.objects.first()
        assert user.username == 'test'
        assert user.is_active is True
        assert user.is_staff is True  # Set by: conf.setup_user.setup_project_user
        assert user.is_superuser is False

        assert response.status_code == 200
        self.assert_html_parts(
            response,
            parts=(
                '<title>Site administration | Find My Device admin</title>',
                '<strong>test</strong>',
                f'<a href="/app_path/admin/">Django Find My Device v{__version__}</a>',
            ),
        )

    def test_wrong_auth_user(self):
        assert User.objects.count() == 0
        assert AccessLog.objects.count() == 0

        self.client.cookies['SSOwAuthUser'] = 'test'

        response = self.client.get(
            path='/app_path/admin/',
            HTTP_REMOTE_USER='test',
            HTTP_AUTH_USER='foobar',  # <<< wrong user name
            HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',
            secure=True,
        )

        assert User.objects.count() == 1
        user = User.objects.first()
        assert user.username == 'test'
        assert user.is_active is True
        assert user.is_staff is True  # Set by: conf.setup_user.setup_project_user
        assert user.is_superuser is False

        assert AccessLog.objects.count() == 1

        assert response.status_code == 403  # Forbidden

    def test_wrong_cookie(self):
        assert User.objects.count() == 0
        assert AccessLog.objects.count() == 0

        self.client.cookies['SSOwAuthUser'] = 'foobar'  # <<< wrong user name

        response = self.client.get(
            path='/app_path/admin/',
            HTTP_REMOTE_USER='test',
            HTTP_AUTH_USER='test',
            HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',
            secure=True,
        )

        assert User.objects.count() == 1
        user = User.objects.first()
        assert user.username == 'test'
        assert user.is_active is True
        assert user.is_staff is True  # Set by: conf.setup_user.setup_project_user
        assert user.is_superuser is False

        assert AccessLog.objects.count() == 1

        assert response.status_code == 403  # Forbidden

    def test_wrong_authorization_user(self):
        assert User.objects.count() == 0

        self.client.cookies['SSOwAuthUser'] = 'test'

        response = self.client.get(
            path='/app_path/admin/',
            HTTP_REMOTE_USER='test',
            HTTP_AUTH_USER='test',
            HTTP_AUTHORIZATION=generate_basic_auth(
                username='foobar',  # <<< wrong user name
                password='test123',
            ),
            secure=True,
        )

        assert User.objects.count() == 1
        user = User.objects.first()
        assert user.username == 'test'
        assert user.is_active is True
        assert user.is_staff is True  # Set by: conf.setup_user.setup_project_user
        assert user.is_superuser is False

        assert AccessLog.objects.count() == 1

        assert response.status_code == 403  # Forbidden
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`from axes.models import AccessLog`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`from bx_django_utils.test_utils.html_assertion import (`
			`HtmlAssertionMixin,`
			`assert_html_response_snapshot,`
			`)`
init 2022-07-11 20:34:24 +02:00			`from django.conf import LazySettings, settings`
			`from django.contrib.auth.models import User`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`from django.http import FileResponse, HttpResponse`
init 2022-07-11 20:34:24 +02:00			`from django.test import override_settings`
			`from django.test.testcases import TestCase`
			`from django.urls.base import reverse`
			`from django_yunohost_integration.test_utils import generate_basic_auth`

Fix and expand tests 2022-07-12 18:39:59 +02:00			`from findmydevice import __version__`
init 2022-07-11 20:34:24 +02:00

			`@override_settings(DEBUG=False)`
			`class DjangoYnhTestCase(HtmlAssertionMixin, TestCase):`
			`def setUp(self):`
			`super().setUp()`

			`# Always start a fresh session:`
			`self.client = self.client_class()`

			`def test_settings(self):`
			`assert isinstance(settings, LazySettings)`
			`assert settings.configured is True`

update project setup inspired from: https://github.com/YunoHost-Apps/django_example_ynh 2022-08-15 16:56:45 +02:00			`assert 'django_yunohost_integration' in settings.INSTALLED_APPS`
			`assert 'findmydevice.apps.FindMyDeviceConfig' in settings.INSTALLED_APPS`

init 2022-07-11 20:34:24 +02:00			`assert settings.PATH_URL == 'app_path'`

Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert str(settings.FINALPATH).endswith('/local_test/opt_yunohost')`
			`assert str(settings.PUBLIC_PATH).endswith('/local_test/var_www')`
			`assert str(settings.LOG_FILE).endswith('/local_test/var_log_django-fmd.log')`
init 2022-07-11 20:34:24 +02:00
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert settings.ROOT_URLCONF == 'urls'`
update project setup inspired from: https://github.com/YunoHost-Apps/django_example_ynh 2022-08-15 16:56:45 +02:00
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`def test_config_panel_settings(self):`
			`# config_panel.toml settings, set via tests.conftest.pytest_configure():`
			`assert settings.DEBUG_ENABLED == '0' and settings.DEBUG is False`
			`assert settings.LOG_LEVEL == 'INFO'`
			`assert settings.ADMIN_EMAIL == 'foo-bar@test.tld'`
			`assert settings.DEFAULT_FROM_EMAIL == 'django_app@test.tld'`
update project setup inspired from: https://github.com/YunoHost-Apps/django_example_ynh 2022-08-15 16:56:45 +02:00
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`def test_auth(self):`
			`assert settings.PATH_URL == 'app_path'`
init 2022-07-11 20:34:24 +02:00			`assert reverse('admin:index') == '/app_path/admin/'`

			`# SecurityMiddleware should redirects all non-HTTPS requests to HTTPS:`
			`assert settings.SECURE_SSL_REDIRECT is True`
			`response = self.client.get('/app_path/', secure=False)`
			`self.assertRedirects(`
			`response,`
			`status_code=301, # permanent redirect`
			`expected_url='https://testserver/app_path/',`
			`fetch_redirect_response=False,`
			`)`

			`response = self.client.get('/app_path/', secure=True)`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`self.assertTemplateUsed(response, 'fmd/login_info.html')`
			`self.assert_html_parts(`
			`response,`
			`parts=(`
			`'<title>Log in \| Find My Device</title>',`
			`'<p class="errornote">To find your device, you must be logged in.</p>',`
			`'<a href="/yunohost/sso/">Log in</a>',`
			`),`
init 2022-07-11 20:34:24 +02:00			`)`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`assert_html_response_snapshot(response, query_selector=None, validate=False)`
init 2022-07-11 20:34:24 +02:00
Fix and expand tests 2022-07-12 18:39:59 +02:00			`def test_web_page_as_sso_user(self):`
			`assert User.objects.count() == 0`
			`self.client.cookies['SSOwAuthUser'] = 'test'`
			`response = self.client.get(`
			`path='/app_path/',`
			`HTTP_REMOTE_USER='test',`
			`HTTP_AUTH_USER='test',`
			`HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',`
			`secure=True,`
init 2022-07-11 20:34:24 +02:00			`)`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`assert isinstance(response, FileResponse)`
init 2022-07-11 20:34:24 +02:00
Fix and expand tests 2022-07-12 18:39:59 +02:00			`assert User.objects.count() == 1`
			`user = User.objects.first()`
			`assert user.username == 'test'`

			`response2 = HttpResponse(response.getvalue())`
			`self.assert_html_parts(`
			`response2,`
			`parts=(`
			`'<title>FMD</title>',`
			`'<h2>Find My Device</h2>',`
django-fmd==0.3.1 2022-08-10 18:22:25 +02:00			`'<link rel="stylesheet" href="./static/fmd_externals/style.css">',`
			`'<script src="./static/fmd_externals/logic.js"></script>',`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`),`
init 2022-07-11 20:34:24 +02:00			`)`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`assert_html_response_snapshot(response2, query_selector=None, validate=False)`
init 2022-07-11 20:34:24 +02:00
			`def test_create_unknown_user(self):`
			`assert User.objects.count() == 0`

			`self.client.cookies['SSOwAuthUser'] = 'test'`

			`response = self.client.get(`
			`path='/app_path/admin/',`
			`HTTP_REMOTE_USER='test',`
			`HTTP_AUTH_USER='test',`
			`HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`secure=True,`
init 2022-07-11 20:34:24 +02:00			`)`

			`assert User.objects.count() == 1`
			`user = User.objects.first()`
			`assert user.username == 'test'`
			`assert user.is_active is True`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert user.is_staff is True # Set by: conf.setup_user.setup_project_user`
init 2022-07-11 20:34:24 +02:00			`assert user.is_superuser is False`

			`assert response.status_code == 200`
			`self.assert_html_parts(`
			`response,`
			`parts=(`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`'<title>Site administration \| Find My Device admin</title>',`
init 2022-07-11 20:34:24 +02:00			`'<strong>test</strong>',`
Fix and expand tests 2022-07-12 18:39:59 +02:00			`f'<a href="/app_path/admin/">Django Find My Device v{__version__}</a>',`
init 2022-07-11 20:34:24 +02:00			`),`
			`)`

			`def test_wrong_auth_user(self):`
			`assert User.objects.count() == 0`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert AccessLog.objects.count() == 0`
init 2022-07-11 20:34:24 +02:00
			`self.client.cookies['SSOwAuthUser'] = 'test'`

			`response = self.client.get(`
			`path='/app_path/admin/',`
			`HTTP_REMOTE_USER='test',`
			`HTTP_AUTH_USER='foobar', # <<< wrong user name`
			`HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`secure=True,`
init 2022-07-11 20:34:24 +02:00			`)`

			`assert User.objects.count() == 1`
			`user = User.objects.first()`
			`assert user.username == 'test'`
			`assert user.is_active is True`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert user.is_staff is True # Set by: conf.setup_user.setup_project_user`
init 2022-07-11 20:34:24 +02:00			`assert user.is_superuser is False`

Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert AccessLog.objects.count() == 1`

init 2022-07-11 20:34:24 +02:00			`assert response.status_code == 403 # Forbidden`

			`def test_wrong_cookie(self):`
			`assert User.objects.count() == 0`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert AccessLog.objects.count() == 0`
init 2022-07-11 20:34:24 +02:00
			`self.client.cookies['SSOwAuthUser'] = 'foobar' # <<< wrong user name`

			`response = self.client.get(`
			`path='/app_path/admin/',`
			`HTTP_REMOTE_USER='test',`
			`HTTP_AUTH_USER='test',`
			`HTTP_AUTHORIZATION='basic dGVzdDp0ZXN0MTIz',`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`secure=True,`
init 2022-07-11 20:34:24 +02:00			`)`

			`assert User.objects.count() == 1`
			`user = User.objects.first()`
			`assert user.username == 'test'`
			`assert user.is_active is True`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert user.is_staff is True # Set by: conf.setup_user.setup_project_user`
init 2022-07-11 20:34:24 +02:00			`assert user.is_superuser is False`

Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert AccessLog.objects.count() == 1`

init 2022-07-11 20:34:24 +02:00			`assert response.status_code == 403 # Forbidden`

			`def test_wrong_authorization_user(self):`
			`assert User.objects.count() == 0`

			`self.client.cookies['SSOwAuthUser'] = 'test'`

			`response = self.client.get(`
			`path='/app_path/admin/',`
			`HTTP_REMOTE_USER='test',`
			`HTTP_AUTH_USER='test',`
			`HTTP_AUTHORIZATION=generate_basic_auth(`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`username='foobar', # <<< wrong user name`
			`password='test123',`
			`),`
			`secure=True,`
init 2022-07-11 20:34:24 +02:00			`)`

			`assert User.objects.count() == 1`
			`user = User.objects.first()`
			`assert user.username == 'test'`
			`assert user.is_active is True`
Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert user.is_staff is True # Set by: conf.setup_user.setup_project_user`
init 2022-07-11 20:34:24 +02:00			`assert user.is_superuser is False`

Project update * Cache CI `.cache` path * Run Safety check in CI * Use https://install.python-poetry.org * remove flynt * Update django settings * Bugfix tox config * Update/Bugfix YunoHost scripts * Update tests 2022-10-04 10:20:28 +02:00			`assert AccessLog.objects.count() == 1`

init 2022-07-11 20:34:24 +02:00			`assert response.status_code == 403 # Forbidden`