113 lines
5.5 KiB
Python
113 lines
5.5 KiB
Python
# SPDX-FileCopyrightText: WTF Kooperative eG <https://wtf-eg.de/>
|
|
#
|
|
# SPDX-License-Identifier: AGPL-3.0-or-later
|
|
|
|
import unittest
|
|
|
|
from ki.test.ApiTest import ApiTest
|
|
|
|
|
|
class TestFindProfilesEndpoint(ApiTest):
|
|
def test_find_profiles_options(self):
|
|
response = self.client.options("/users/profiles")
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertIn("Access-Control-Allow-Origin", response.headers)
|
|
self.assertEqual(response.headers["Access-Control-Allow-Origin"], "*")
|
|
|
|
def test_find_nobody(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?nickname=horsthorsthorst",
|
|
headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertEqual(response.json, {"total": 0, "page": 1, "pages": 0, "profiles": []})
|
|
|
|
def test_find_sql_specialchars(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?nickname=%22%27%25", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertEqual(response.json, {"total": 0, "page": 1, "pages": 0, "profiles": []})
|
|
|
|
def test_find_all_page1(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 23, "page": 1, "pages": 2}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "babsi1"}, response.json["profiles"][0])
|
|
self.assertDictContainsSubset({"nickname": "dirtydieter"}, response.json["profiles"][19])
|
|
|
|
def test_find_all_page2(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?page=2", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 23, "page": 2, "pages": 2}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "giesela"}, response.json["profiles"][0])
|
|
self.assertDictContainsSubset({"nickname": "jutta"}, response.json["profiles"][1])
|
|
self.assertDictContainsSubset({"nickname": "monique"}, response.json["profiles"][2])
|
|
|
|
def test_find_dieter(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=dieter%20php", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 1}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "dirtydieter"}, response.json["profiles"][0])
|
|
|
|
def test_not_find_dieter(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=dieter%20sqlite",
|
|
headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 0}, response.json)
|
|
|
|
def test_find_sql(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=sql", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 2}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "giesela"}, response.json["profiles"][0])
|
|
self.assertDictContainsSubset({"nickname": "jutta"}, response.json["profiles"][1])
|
|
|
|
def test_find_postgres(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=post", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 2}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "giesela"}, response.json["profiles"][0])
|
|
self.assertDictContainsSubset({"nickname": "jutta"}, response.json["profiles"][1])
|
|
|
|
def test_find_php_franzosen(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=php%20franz", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 1}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "jutta"}, response.json["profiles"][0])
|
|
|
|
def test_find_franzosen(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=französisch", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 2}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "jutta"}, response.json["profiles"][0])
|
|
self.assertDictContainsSubset({"nickname": "monique"}, response.json["profiles"][1])
|
|
|
|
def test_find_peter_by_name(self):
|
|
token = self.login("peter", "geheim")["token"]
|
|
|
|
response = self.client.get("/users/profiles?search=friedrich", headers={"Authorization": "Bearer " + token})
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertDictContainsSubset({"total": 1}, response.json)
|
|
self.assertDictContainsSubset({"nickname": "dirtydieter"}, response.json["profiles"][0])
|
|
|
|
|
|
if __name__ == "main":
|
|
unittest.main()
|