minor: ruff formatter
All changes are either: - Correcting tabs - Adding/removing line breaks - Adding trailing commas
This commit is contained in:
parent
b2e5dd2ebb
commit
c689ac1e10
91 changed files with 1710 additions and 689 deletions
535
test/test_iam.py
535
test/test_iam.py
|
|
@ -1,5 +1,5 @@
|
|||
"""
|
||||
"""
|
||||
""" """
|
||||
|
||||
import pytest
|
||||
from httpx import AsyncClient
|
||||
|
||||
|
|
@ -15,13 +15,15 @@ async def test_post_act_on_resource_endpoint_success(default_client: AsyncClient
|
|||
body = {
|
||||
"service": "Test Service",
|
||||
"organisation": "Test Org",
|
||||
"resource": "test_resource"
|
||||
"resource": "test_resource",
|
||||
}
|
||||
headers = {
|
||||
"Authorization": "Bearer not_checked_when_auth_is_disabled",
|
||||
"X-API-Key": "123456789"
|
||||
"X-API-Key": "123456789",
|
||||
}
|
||||
resp = await default_client.post("/iam/can_act_on_resource?action=read", json=body, headers=headers)
|
||||
resp = await default_client.post(
|
||||
"/iam/can_act_on_resource?action=read", json=body, headers=headers
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -30,23 +32,20 @@ async def test_post_act_on_resource_endpoint_success(default_client: AsyncClient
|
|||
|
||||
@pytest.mark.parametrize(
|
||||
"service, api_key",
|
||||
[
|
||||
("Test Service", "not_the_correct_key"),
|
||||
("Test Service Two", "123456789")
|
||||
],
|
||||
[("Test Service", "not_the_correct_key"), ("Test Service Two", "123456789")],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_act_on_resource_wrong_key(default_client: AsyncClient, db_session, service: str, api_key: str):
|
||||
body = {
|
||||
"service": service,
|
||||
"organisation": "Test Org",
|
||||
"resource": "test_resource"
|
||||
}
|
||||
async def test_act_on_resource_wrong_key(
|
||||
default_client: AsyncClient, db_session, service: str, api_key: str
|
||||
):
|
||||
body = {"service": service, "organisation": "Test Org", "resource": "test_resource"}
|
||||
headers = {
|
||||
"Authorization": "Bearer not_checked_when_auth_is_disabled",
|
||||
"X-API-Key": api_key
|
||||
"X-API-Key": api_key,
|
||||
}
|
||||
resp = await default_client.post("/iam/can_act_on_resource?action=read", json=body, headers=headers)
|
||||
resp = await default_client.post(
|
||||
"/iam/can_act_on_resource?action=read", json=body, headers=headers
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 401
|
||||
|
|
@ -58,12 +57,12 @@ async def test_act_on_resource_missing_key(default_client: AsyncClient):
|
|||
body = {
|
||||
"service": "Test Service",
|
||||
"organisation": "Test Org",
|
||||
"resource": "test_resource"
|
||||
"resource": "test_resource",
|
||||
}
|
||||
headers = {
|
||||
"Authorization": "Bearer not_checked_when_auth_is_disabled"
|
||||
}
|
||||
resp = await default_client.post("/iam/can_act_on_resource?action=read", json=body, headers=headers)
|
||||
headers = {"Authorization": "Bearer not_checked_when_auth_is_disabled"}
|
||||
resp = await default_client.post(
|
||||
"/iam/can_act_on_resource?action=read", json=body, headers=headers
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 401
|
||||
|
|
@ -82,18 +81,17 @@ async def test_act_on_resource_missing_key(default_client: AsyncClient):
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_act_on_resource_endpoint_status_checks(default_client: AsyncClient, service, org, resource, action,
|
||||
expected_status: int):
|
||||
body = {
|
||||
"service": service,
|
||||
"organisation": org,
|
||||
"resource": resource
|
||||
}
|
||||
async def test_act_on_resource_endpoint_status_checks(
|
||||
default_client: AsyncClient, service, org, resource, action, expected_status: int
|
||||
):
|
||||
body = {"service": service, "organisation": org, "resource": resource}
|
||||
headers = {
|
||||
"Authorization": "Bearer not_checked_when_auth_is_disabled",
|
||||
"X-API-Key": "123456789"
|
||||
"X-API-Key": "123456789",
|
||||
}
|
||||
resp = await default_client.post(f"/iam/can_act_on_resource?action={action}", json=body, headers=headers)
|
||||
resp = await default_client.post(
|
||||
f"/iam/can_act_on_resource?action={action}", json=body, headers=headers
|
||||
)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
||||
|
|
@ -108,18 +106,23 @@ async def test_act_on_resource_endpoint_status_checks(default_client: AsyncClien
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_act_on_resource_logic(default_client: AsyncClient, db_session, service, org, resource, action,
|
||||
expected_response: bool):
|
||||
body = {
|
||||
"service": service,
|
||||
"organisation": org,
|
||||
"resource": resource
|
||||
}
|
||||
async def test_act_on_resource_logic(
|
||||
default_client: AsyncClient,
|
||||
db_session,
|
||||
service,
|
||||
org,
|
||||
resource,
|
||||
action,
|
||||
expected_response: bool,
|
||||
):
|
||||
body = {"service": service, "organisation": org, "resource": resource}
|
||||
headers = {
|
||||
"Authorization": "Bearer not_checked_when_auth_is_disabled",
|
||||
"X-API-Key": "123456789"
|
||||
"X-API-Key": "123456789",
|
||||
}
|
||||
resp = await default_client.post(f"/iam/can_act_on_resource?action={action}", json=body, headers=headers)
|
||||
resp = await default_client.post(
|
||||
f"/iam/can_act_on_resource?action={action}", json=body, headers=headers
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -140,11 +143,12 @@ async def test_get_group_permissions_success(default_client: AsyncClient):
|
|||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"query, expected_status",
|
||||
generate_query_and_status(["group_id", "org_id"])
|
||||
"query, expected_status", generate_query_and_status(["group_id", "org_id"])
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_get_group_permissions_status_checks(default_client: AsyncClient, db_session, query: str, expected_status: int):
|
||||
async def test_get_group_permissions_status_checks(
|
||||
default_client: AsyncClient, db_session, query: str, expected_status: int
|
||||
):
|
||||
resp = await default_client.get(f"/iam/group/permissions?{query}")
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -158,8 +162,19 @@ async def test_get_group_permissions_status_checks(default_client: AsyncClient,
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_get_group_permissions_mismatch(default_client: AsyncClient, db_session, query: str):
|
||||
db_session.add(Org(name="Another Test Org", root_user_id=1, billing_contact_id=1, owner_contact_id=2, security_contact_id=3, status="approved"))
|
||||
async def test_get_group_permissions_mismatch(
|
||||
default_client: AsyncClient, db_session, query: str
|
||||
):
|
||||
db_session.add(
|
||||
Org(
|
||||
name="Another Test Org",
|
||||
root_user_id=1,
|
||||
billing_contact_id=1,
|
||||
owner_contact_id=2,
|
||||
security_contact_id=3,
|
||||
status="approved",
|
||||
)
|
||||
)
|
||||
db_session.add(Group(name="Another Test Group", org_id=2))
|
||||
db_session.flush()
|
||||
resp = await default_client.get(f"/iam/group/permissions?{query}")
|
||||
|
|
@ -183,11 +198,12 @@ async def test_get_group_users_success(default_client: AsyncClient):
|
|||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"query, expected_status",
|
||||
generate_query_and_status(["group_id", "org_id"])
|
||||
"query, expected_status", generate_query_and_status(["group_id", "org_id"])
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_get_group_users_status_checks(default_client: AsyncClient, query: str, expected_status: int):
|
||||
async def test_get_group_users_status_checks(
|
||||
default_client: AsyncClient, query: str, expected_status: int
|
||||
):
|
||||
resp = await default_client.get(f"/iam/group/users?{query}")
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -201,8 +217,19 @@ async def test_get_group_users_status_checks(default_client: AsyncClient, query:
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_get_group_users_mismatch(default_client: AsyncClient, db_session, query: str):
|
||||
db_session.add(Org(name="Another Test Org", root_user_id=1, billing_contact_id=1, owner_contact_id=2, security_contact_id=3, status="approved"))
|
||||
async def test_get_group_users_mismatch(
|
||||
default_client: AsyncClient, db_session, query: str
|
||||
):
|
||||
db_session.add(
|
||||
Org(
|
||||
name="Another Test Org",
|
||||
root_user_id=1,
|
||||
billing_contact_id=1,
|
||||
owner_contact_id=2,
|
||||
security_contact_id=3,
|
||||
status="approved",
|
||||
)
|
||||
)
|
||||
db_session.add(Group(name="Another Test Group", org_id=2))
|
||||
db_session.flush()
|
||||
resp = await default_client.get(f"/iam/group/users?{query}")
|
||||
|
|
@ -213,7 +240,9 @@ async def test_get_group_users_mismatch(default_client: AsyncClient, db_session,
|
|||
|
||||
@pytest.mark.anyio
|
||||
async def test_post_group_success(default_client: AsyncClient):
|
||||
resp = await default_client.post("/iam/group", json={"name": "New Group", "organisation_id": 1})
|
||||
resp = await default_client.post(
|
||||
"/iam/group", json={"name": "New Group", "organisation_id": 1}
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -227,10 +256,22 @@ async def test_post_group_success(default_client: AsyncClient):
|
|||
"body, expected_status",
|
||||
[
|
||||
({"organisation_id": 1, "name": "Test Group"}, 409),
|
||||
({"organisation_id": 2, "name": "new group"}, 404), # Non-existent organisation, valid name
|
||||
({"organisation_id": "banana", "name": "new group"}, 422), # Invalid organisation ID, valid name
|
||||
({"organisation_id": "", "name": "new group"}, 422), # Blank organisation ID, valid name
|
||||
({"organisation_id": -1, "name": "new group"}, 422), # Negative organisation ID, valid name
|
||||
(
|
||||
{"organisation_id": 2, "name": "new group"},
|
||||
404,
|
||||
), # Non-existent organisation, valid name
|
||||
(
|
||||
{"organisation_id": "banana", "name": "new group"},
|
||||
422,
|
||||
), # Invalid organisation ID, valid name
|
||||
(
|
||||
{"organisation_id": "", "name": "new group"},
|
||||
422,
|
||||
), # Blank organisation ID, valid name
|
||||
(
|
||||
{"organisation_id": -1, "name": "new group"},
|
||||
422,
|
||||
), # Negative organisation ID, valid name
|
||||
({"name": 1}, 422), # Only name
|
||||
({}, 422), # Blank body
|
||||
({"organisation_id": "", "name": ""}, 422), # Both blank
|
||||
|
|
@ -241,7 +282,9 @@ async def test_post_group_success(default_client: AsyncClient):
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_post_group_status_checks(default_client: AsyncClient, body: dict[str, str], expected_status: int):
|
||||
async def test_post_group_status_checks(
|
||||
default_client: AsyncClient, body: dict[str, str], expected_status: int
|
||||
):
|
||||
resp = await default_client.post("/iam/group", json=body)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -251,7 +294,10 @@ async def test_post_group_status_checks(default_client: AsyncClient, body: dict[
|
|||
async def test_put_group_perm_success(default_client: AsyncClient, db_session):
|
||||
db_session.add(Group(name="Test Group Two", org_id=1))
|
||||
db_session.flush()
|
||||
resp = await default_client.put("/iam/group/permission", json={"permission_id": 1, "group_id": 2, "organisation_id": 1})
|
||||
resp = await default_client.put(
|
||||
"/iam/group/permission",
|
||||
json={"permission_id": 1, "group_id": 2, "organisation_id": 1},
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -270,36 +316,71 @@ async def test_put_group_perm_success(default_client: AsyncClient, db_session):
|
|||
@pytest.mark.parametrize(
|
||||
"body, expected_status",
|
||||
[
|
||||
({"organisation_id": 42, "group_id": 1, "permission_id": 1}, 404), # Non-existent organisation
|
||||
({"organisation_id": "banana", "group_id": 1, "permission_id": 1}, 422), # Invalid organisation ID
|
||||
({"organisation_id": "", "group_id": 1, "permission_id": 1}, 422), # Blank organisation ID
|
||||
({"organisation_id": -1, "group_id": 1, "permission_id": 1}, 422), # Negative organisation ID
|
||||
|
||||
({"organisation_id": 1, "group_id": 42, "permission_id": 1}, 404), # Non-existent group
|
||||
({"organisation_id": 1, "group_id": "banana", "permission_id": 1}, 422), # Invalid group ID
|
||||
({"organisation_id": 1, "group_id": "", "permission_id": 1}, 422), # Blank group ID
|
||||
({"organisation_id": 1, "group_id": -1, "permission_id": 1}, 422), # Negative group ID
|
||||
|
||||
({"organisation_id": 1, "group_id": 1, "permission_id": 42}, 404), # Non-existent permission
|
||||
({"organisation_id": 1, "group_id": 1, "permission_id": "banana"}, 422), # Invalid permission ID
|
||||
({"organisation_id": 1, "group_id": 1, "permission_id": ""}, 422), # Blank permission ID
|
||||
({"organisation_id": 1, "group_id": 1, "permission_id": -1}, 422), # Negative permission ID
|
||||
|
||||
(
|
||||
{"organisation_id": 42, "group_id": 1, "permission_id": 1},
|
||||
404,
|
||||
), # Non-existent organisation
|
||||
(
|
||||
{"organisation_id": "banana", "group_id": 1, "permission_id": 1},
|
||||
422,
|
||||
), # Invalid organisation ID
|
||||
(
|
||||
{"organisation_id": "", "group_id": 1, "permission_id": 1},
|
||||
422,
|
||||
), # Blank organisation ID
|
||||
(
|
||||
{"organisation_id": -1, "group_id": 1, "permission_id": 1},
|
||||
422,
|
||||
), # Negative organisation ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 42, "permission_id": 1},
|
||||
404,
|
||||
), # Non-existent group
|
||||
(
|
||||
{"organisation_id": 1, "group_id": "banana", "permission_id": 1},
|
||||
422,
|
||||
), # Invalid group ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": "", "permission_id": 1},
|
||||
422,
|
||||
), # Blank group ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": -1, "permission_id": 1},
|
||||
422,
|
||||
), # Negative group ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "permission_id": 42},
|
||||
404,
|
||||
), # Non-existent permission
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "permission_id": "banana"},
|
||||
422,
|
||||
), # Invalid permission ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "permission_id": ""},
|
||||
422,
|
||||
), # Blank permission ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "permission_id": -1},
|
||||
422,
|
||||
), # Negative permission ID
|
||||
({}, 422), # Blank body
|
||||
({"permission_id": 1}, 422), # Only permission
|
||||
({"organisation_id": 1}, 422), # Only organisation
|
||||
({"group_id": 1}, 422), # Only group
|
||||
|
||||
({"organisation_id": 1, "permission_id": 1}, 422), # Missing group
|
||||
({"group_id": 1, "permission_id": 1}, 422), # Missing organisation
|
||||
({"organisation_id": 1, "group_id": 1}, 422), # Missing permission
|
||||
|
||||
({"organisation_id": 1, "group_id": 1, "permission_id": 1}, 409), # Permission already in group
|
||||
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "permission_id": 1},
|
||||
409,
|
||||
), # Permission already in group
|
||||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_put_group_perm_status_checks(default_client: AsyncClient, body: dict[str, str], expected_status: int):
|
||||
async def test_put_group_perm_status_checks(
|
||||
default_client: AsyncClient, body: dict[str, str], expected_status: int
|
||||
):
|
||||
resp = await default_client.put("/iam/group/permission", json=body)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -313,8 +394,19 @@ async def test_put_group_perm_status_checks(default_client: AsyncClient, body: d
|
|||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_put_group_perm_mismatch(default_client: AsyncClient, db_session, body: dict):
|
||||
db_session.add(Org(name="Another Test Org", root_user_id=1, billing_contact_id=1, owner_contact_id=2, security_contact_id=3, status="approved"))
|
||||
async def test_put_group_perm_mismatch(
|
||||
default_client: AsyncClient, db_session, body: dict
|
||||
):
|
||||
db_session.add(
|
||||
Org(
|
||||
name="Another Test Org",
|
||||
root_user_id=1,
|
||||
billing_contact_id=1,
|
||||
owner_contact_id=2,
|
||||
security_contact_id=3,
|
||||
status="approved",
|
||||
)
|
||||
)
|
||||
db_session.add(Group(name="Another Test Group", org_id=2))
|
||||
db_session.flush()
|
||||
resp = await default_client.put("/iam/group/permission", json=body)
|
||||
|
|
@ -325,10 +417,19 @@ async def test_put_group_perm_mismatch(default_client: AsyncClient, db_session,
|
|||
|
||||
@pytest.mark.anyio
|
||||
async def test_put_group_user_success(default_client: AsyncClient, db_session):
|
||||
db_session.add(User(email="user@test.org", first_name="User", last_name="Test", oidc_id="abcd-efgh-ijkl-1234"))
|
||||
db_session.add(
|
||||
User(
|
||||
email="user@test.org",
|
||||
first_name="User",
|
||||
last_name="Test",
|
||||
oidc_id="abcd-efgh-ijkl-1234",
|
||||
)
|
||||
)
|
||||
db_session.flush()
|
||||
|
||||
resp = await default_client.put("/iam/group/user", json={"user_id": 2, "group_id": 1, "organisation_id": 1})
|
||||
resp = await default_client.put(
|
||||
"/iam/group/user", json={"user_id": 2, "group_id": 1, "organisation_id": 1}
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -348,34 +449,58 @@ async def test_put_group_user_success(default_client: AsyncClient, db_session):
|
|||
@pytest.mark.parametrize(
|
||||
"body, expected_status",
|
||||
[
|
||||
({"organisation_id": 42, "group_id": 1, "user_id": 1}, 404), # Non-existent organisation
|
||||
({"organisation_id": "banana", "group_id": 1, "user_id": 1}, 422), # Invalid organisation ID
|
||||
({"organisation_id": "", "group_id": 1, "user_id": 1}, 422), # Blank organisation ID
|
||||
({"organisation_id": -1, "group_id": 1, "user_id": 1}, 422), # Negative organisation ID
|
||||
|
||||
({"organisation_id": 1, "group_id": 42, "user_id": 1}, 404), # Non-existent group
|
||||
({"organisation_id": 1, "group_id": "banana", "user_id": 1}, 422), # Invalid group ID
|
||||
(
|
||||
{"organisation_id": 42, "group_id": 1, "user_id": 1},
|
||||
404,
|
||||
), # Non-existent organisation
|
||||
(
|
||||
{"organisation_id": "banana", "group_id": 1, "user_id": 1},
|
||||
422,
|
||||
), # Invalid organisation ID
|
||||
(
|
||||
{"organisation_id": "", "group_id": 1, "user_id": 1},
|
||||
422,
|
||||
), # Blank organisation ID
|
||||
(
|
||||
{"organisation_id": -1, "group_id": 1, "user_id": 1},
|
||||
422,
|
||||
), # Negative organisation ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 42, "user_id": 1},
|
||||
404,
|
||||
), # Non-existent group
|
||||
(
|
||||
{"organisation_id": 1, "group_id": "banana", "user_id": 1},
|
||||
422,
|
||||
), # Invalid group ID
|
||||
({"organisation_id": 1, "group_id": "", "user_id": 1}, 422), # Blank group ID
|
||||
({"organisation_id": 1, "group_id": -1, "user_id": 1}, 422), # Negative group ID
|
||||
|
||||
({"organisation_id": 1, "group_id": 1, "user_id": 42}, 404), # Non-existent user
|
||||
({"organisation_id": 1, "group_id": 1, "user_id": "banana"}, 422), # Invalid user ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": -1, "user_id": 1},
|
||||
422,
|
||||
), # Negative group ID
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "user_id": 42},
|
||||
404,
|
||||
), # Non-existent user
|
||||
(
|
||||
{"organisation_id": 1, "group_id": 1, "user_id": "banana"},
|
||||
422,
|
||||
), # Invalid user ID
|
||||
({"organisation_id": 1, "group_id": 1, "user_id": ""}, 422), # Blank user ID
|
||||
({"organisation_id": 1, "group_id": 1, "user_id": -1}, 422), # Negative user ID
|
||||
|
||||
({}, 422), # Blank body
|
||||
({"user_id": 1}, 422), # Only user
|
||||
({"organisation_id": 1}, 422), # Only organisation
|
||||
({"group_id": 1}, 422), # Only group
|
||||
|
||||
({"organisation_id": 1, "user_id": 1}, 422), # Missing group
|
||||
({"group_id": 1, "user_id": 1}, 422), # Missing organisation
|
||||
({"organisation_id": 1, "group_id": 1}, 422), # Missing user
|
||||
|
||||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_put_group_user_status_checks(default_client: AsyncClient, body: dict[str, str], expected_status: int):
|
||||
async def test_put_group_user_status_checks(
|
||||
default_client: AsyncClient, body: dict[str, str], expected_status: int
|
||||
):
|
||||
resp = await default_client.put("/iam/group/user", json=body)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -395,11 +520,12 @@ async def test_get_permissions_success(default_client: AsyncClient):
|
|||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"query, expected_status",
|
||||
generate_query_and_status(["org_id"])
|
||||
"query, expected_status", generate_query_and_status(["org_id"])
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_get_permissions_status_checks(default_client: AsyncClient, query: str, expected_status: int):
|
||||
async def test_get_permissions_status_checks(
|
||||
default_client: AsyncClient, query: str, expected_status: int
|
||||
):
|
||||
resp = await default_client.get(f"/iam/permissions?{query}")
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
|
@ -407,7 +533,10 @@ async def test_get_permissions_status_checks(default_client: AsyncClient, query:
|
|||
|
||||
@pytest.mark.anyio
|
||||
async def test_post_perm_success(default_client: AsyncClient, db_session):
|
||||
resp = await default_client.post("/iam/permission", json={"service_id": 1, "resource": "test_resource", "action": "create"})
|
||||
resp = await default_client.post(
|
||||
"/iam/permission",
|
||||
json={"service_id": 1, "resource": "test_resource", "action": "create"},
|
||||
)
|
||||
data = resp.json()
|
||||
|
||||
assert resp.status_code == 200
|
||||
|
|
@ -418,51 +547,70 @@ async def test_post_perm_success(default_client: AsyncClient, db_session):
|
|||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"body, expected_status",
|
||||
[
|
||||
# service_id tests
|
||||
({"service_id": 42, "resource": "test_resource", "action": "read"}, 404), # Non-existent service
|
||||
({"service_id": "banana", "resource": "test_resource", "action": "read"}, 422), # Invalid service ID
|
||||
({"service_id": "", "resource": "test_resource", "action": "read"}, 422), # Blank service ID
|
||||
({"service_id": -1, "resource": "test_resource", "action": "read"}, 422), # Negative service ID
|
||||
|
||||
# resource tests
|
||||
({"service_id": 1, "resource": 42, "action": "read"}, 422), # Invalid resource type
|
||||
|
||||
# action tests
|
||||
({"service_id": 1, "resource": "test_resource", "action": 42}, 422), # Invalid action type
|
||||
|
||||
# missing/partial body tests
|
||||
({}, 422), # Blank body
|
||||
({"resource": "test_resource"}, 422), # Only resource
|
||||
({"action": "read"}, 422), # Only action
|
||||
({"service_id": 1}, 422), # Only service
|
||||
|
||||
({"service_id": 1, "action": "read"}, 422), # Missing resource
|
||||
({"service_id": 1, "resource": "test_resource"}, 422), # Missing action
|
||||
({"resource": "test_resource", "action": "read"}, 422), # Missing service
|
||||
|
||||
],
|
||||
"body, expected_status",
|
||||
[
|
||||
# service_id tests
|
||||
(
|
||||
{"service_id": 42, "resource": "test_resource", "action": "read"},
|
||||
404,
|
||||
), # Non-existent service
|
||||
(
|
||||
{"service_id": "banana", "resource": "test_resource", "action": "read"},
|
||||
422,
|
||||
), # Invalid service ID
|
||||
(
|
||||
{"service_id": "", "resource": "test_resource", "action": "read"},
|
||||
422,
|
||||
), # Blank service ID
|
||||
(
|
||||
{"service_id": -1, "resource": "test_resource", "action": "read"},
|
||||
422,
|
||||
), # Negative service ID
|
||||
# resource tests
|
||||
(
|
||||
{"service_id": 1, "resource": 42, "action": "read"},
|
||||
422,
|
||||
), # Invalid resource type
|
||||
# action tests
|
||||
(
|
||||
{"service_id": 1, "resource": "test_resource", "action": 42},
|
||||
422,
|
||||
), # Invalid action type
|
||||
# missing/partial body tests
|
||||
({}, 422), # Blank body
|
||||
({"resource": "test_resource"}, 422), # Only resource
|
||||
({"action": "read"}, 422), # Only action
|
||||
({"service_id": 1}, 422), # Only service
|
||||
({"service_id": 1, "action": "read"}, 422), # Missing resource
|
||||
({"service_id": 1, "resource": "test_resource"}, 422), # Missing action
|
||||
({"resource": "test_resource", "action": "read"}, 422), # Missing service
|
||||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_post_perm_status_checks(default_client: AsyncClient, body: dict[str, str], expected_status: int):
|
||||
async def test_post_perm_status_checks(
|
||||
default_client: AsyncClient, body: dict[str, str], expected_status: int
|
||||
):
|
||||
resp = await default_client.post("/iam/permission", json=body)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"body",
|
||||
[
|
||||
{"organisation_id": 1, "service_id": 1, "resource": "test_resource", "action": "read"},
|
||||
|
||||
{"organisation_id": 1, "service_id": 1},
|
||||
{"organisation_id": 1, "resource": "test_resource"},
|
||||
{"organisation_id": 1, "action": "read"},
|
||||
{"organisation_id": 1, "service_id": 1, "action": "read"},
|
||||
{"organisation_id": 1, "service_id": 1, "resource": "test_resource"},
|
||||
{"organisation_id": 1, "resource": "test_resource", "action": "read"},
|
||||
],
|
||||
"body",
|
||||
[
|
||||
{
|
||||
"organisation_id": 1,
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
{"organisation_id": 1, "service_id": 1},
|
||||
{"organisation_id": 1, "resource": "test_resource"},
|
||||
{"organisation_id": 1, "action": "read"},
|
||||
{"organisation_id": 1, "service_id": 1, "action": "read"},
|
||||
{"organisation_id": 1, "service_id": 1, "resource": "test_resource"},
|
||||
{"organisation_id": 1, "resource": "test_resource", "action": "read"},
|
||||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_post_perm_search_success(default_client: AsyncClient, db_session, body):
|
||||
|
|
@ -478,33 +626,96 @@ async def test_post_perm_search_success(default_client: AsyncClient, db_session,
|
|||
|
||||
|
||||
@pytest.mark.parametrize(
|
||||
"body, expected_status",
|
||||
[
|
||||
# organisation_id tests
|
||||
({"organisation_id": 42, "service_id": 1, "resource": "test_resource", "action": "read"}, 404), # Non-existent organisation
|
||||
({"organisation_id": "banana", "service_id": 1, "resource": "test_resource", "action": "read"}, 422), # Invalid organisation ID
|
||||
({"organisation_id": "", "service_id": 1, "resource": "test_resource", "action": "read"}, 422), # Blank organisation ID
|
||||
({"organisation_id": -1, "service_id": 1, "resource": "test_resource", "action": "read"}, 422), # Negative organisation ID
|
||||
|
||||
# service_id tests
|
||||
({"organisation_id": 1, "service_id": "banana", "resource": "test_resource", "action": "read"}, 422), # Invalid service ID
|
||||
({"organisation_id": 1, "service_id": "", "resource": "test_resource", "action": "read"}, 422), # Blank service ID
|
||||
({"organisation_id": 1, "service_id": -1, "resource": "test_resource", "action": "read"}, 422), # Negative service ID
|
||||
|
||||
# resource tests
|
||||
({"organisation_id": 1, "service_id": 1, "resource": 42, "action": "read"}, 422), # Invalid resource type
|
||||
|
||||
# action tests
|
||||
({"organisation_id": 1, "service_id": 1, "resource": "test_resource", "action": 42}, 422), # Invalid action type
|
||||
|
||||
# missing/partial body tests
|
||||
({}, 422), # Blank body
|
||||
],
|
||||
"body, expected_status",
|
||||
[
|
||||
# organisation_id tests
|
||||
(
|
||||
{
|
||||
"organisation_id": 42,
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
404,
|
||||
), # Non-existent organisation
|
||||
(
|
||||
{
|
||||
"organisation_id": "banana",
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Invalid organisation ID
|
||||
(
|
||||
{
|
||||
"organisation_id": "",
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Blank organisation ID
|
||||
(
|
||||
{
|
||||
"organisation_id": -1,
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Negative organisation ID
|
||||
# service_id tests
|
||||
(
|
||||
{
|
||||
"organisation_id": 1,
|
||||
"service_id": "banana",
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Invalid service ID
|
||||
(
|
||||
{
|
||||
"organisation_id": 1,
|
||||
"service_id": "",
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Blank service ID
|
||||
(
|
||||
{
|
||||
"organisation_id": 1,
|
||||
"service_id": -1,
|
||||
"resource": "test_resource",
|
||||
"action": "read",
|
||||
},
|
||||
422,
|
||||
), # Negative service ID
|
||||
# resource tests
|
||||
(
|
||||
{"organisation_id": 1, "service_id": 1, "resource": 42, "action": "read"},
|
||||
422,
|
||||
), # Invalid resource type
|
||||
# action tests
|
||||
(
|
||||
{
|
||||
"organisation_id": 1,
|
||||
"service_id": 1,
|
||||
"resource": "test_resource",
|
||||
"action": 42,
|
||||
},
|
||||
422,
|
||||
), # Invalid action type
|
||||
# missing/partial body tests
|
||||
({}, 422), # Blank body
|
||||
],
|
||||
)
|
||||
@pytest.mark.anyio
|
||||
async def test_post_perm_search_status_checks(default_client: AsyncClient, body: dict[str, str], expected_status: int):
|
||||
async def test_post_perm_search_status_checks(
|
||||
default_client: AsyncClient, body: dict[str, str], expected_status: int
|
||||
):
|
||||
resp = await default_client.post("/iam/permissions/search", json=body)
|
||||
|
||||
assert resp.status_code == expected_status
|
||||
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue