acceptance test passes

Author: pcrespov

packages/models-library/src/models_library/api_schemas_webserver/users.py

@@ -203,7 +203,7 @@ class UsersGetParams(RequestParameters):
 class UsersSearch(InputSchema):
     match_: Annotated[
         str,
-        StringConstraints(strip_whitespace=True, min_length=1, max_length=50),
+        StringConstraints(strip_whitespace=True, min_length=1, max_length=80),
         Field(
             description="Search string to match with public usernames and emails",
             alias="match",

services/web/server/src/simcore_service_webserver/users/_users_repository.py

@@ -32,7 +32,7 @@
     UsersRepo,
     generate_alternative_username,
 )
-from sqlalchemy import delete
+from sqlalchemy import Column, delete
 from sqlalchemy.engine.row import Row
 from sqlalchemy.ext.asyncio import AsyncConnection, AsyncEngine
 
@@ -52,6 +52,19 @@ def _parse_as_user(user_id: Any) -> UserID:
         raise UserNotFoundError(uid=user_id, user_id=user_id) from err
 
 
+#
+# Privacy settings
+#
+
+
+def _is_private(hide_attribute: Column, caller_id: UserID):
+    return hide_attribute.is_(True) & (users.c.id != caller_id)
+
+
+def _is_public(hide_attribute: Column, caller_id: UserID):
+    return hide_attribute.is_(False) | (users.c.id == caller_id)
+
+
 def _public_user_cols(caller_id: UserID):
     return (
         # Fits PublicUser model
@@ -60,21 +73,21 @@ def _public_user_cols(caller_id: UserID):
         # privacy settings
         sa.case(
             (
-                users.c.privacy_hide_email.is_(True) & (users.c.id != caller_id),
+                _is_private(users.c.privacy_hide_email, caller_id),
                 None,
             ),
             else_=users.c.email,
         ).label("email"),
         sa.case(
             (
-                users.c.privacy_hide_fullname.is_(True) & (users.c.id != caller_id),
+                _is_private(users.c.privacy_hide_fullname, caller_id),
                 None,
             ),
             else_=users.c.first_name,
         ).label("first_name"),
         sa.case(
             (
-                users.c.privacy_hide_fullname.is_(True) & (users.c.id != caller_id),
+                _is_private(users.c.privacy_hide_fullname, caller_id),
                 None,
             ),
             else_=users.c.last_name,
@@ -83,6 +96,11 @@ def _public_user_cols(caller_id: UserID):
     )
 
 
+#
+#  PUBLIC User
+#
+
+
 async def get_public_user(
     engine: AsyncEngine,
     connection: AsyncConnection | None = None,
@@ -111,14 +129,16 @@ async def search_public_user(
     limit: int,
 ) -> list:
 
-    pattern_ = f"%{search_pattern}%"
-    is_public_email = users.c.privacy_hide_email.is_(False) | (users.c.id != caller_id)
+    _pattern = f"%{search_pattern}%"
 
     query = (
         sa.select(*_public_user_cols(caller_id=caller_id))
         .where(
-            users.c.name.ilike(pattern_)
-            | (is_public_email & users.c.users.c.email.ilike(pattern_))
+            users.c.name.ilike(_pattern)
+            | (
+                _is_public(users.c.privacy_hide_email, caller_id)
+                & users.c.email.ilike(_pattern)
+            )
         )
         .limit(limit)
     )

services/web/server/tests/unit/with_dbs/03/test_users.py

@@ -7,6 +7,7 @@
 
 import functools
 import sys
+from contextlib import AsyncExitStack
 from copy import deepcopy
 from http import HTTPStatus
 from typing import Any
@@ -32,7 +33,7 @@
     random_pre_registration_details,
 )
 from pytest_simcore.helpers.monkeypatch_envs import EnvVarsDict, setenvs_from_dict
-from pytest_simcore.helpers.webserver_login import UserInfoDict
+from pytest_simcore.helpers.webserver_login import NewUser, UserInfoDict
 from servicelib.aiohttp import status
 from servicelib.rest_constants import RESPONSE_MODEL_POLICY
 from simcore_postgres_database.models.users import UserRole, UserStatus
@@ -59,49 +60,102 @@ def app_environment(
     )
 
 
+@pytest.mark.acceptance_test(
+    "https://github.com/ITISFoundation/osparc-issues/issues/1779"
+)
 @pytest.mark.parametrize("user_role", [UserRole.USER])
 async def test_get_and_search_public_users(
-    user: UserInfoDict,
     logged_user: UserInfoDict,
     client: TestClient,
     user_role: UserRole,
 ):
     assert client.app
     assert user_role.value == logged_user["role"]
-    other_user = user
-
-    assert other_user["id"] != logged_user["id"]
-
-    # GET user fro admin
-
-    # GET user
-    url = client.app.router["get_user"].url_for(user_id=f'{other_user["id"]}')
-    resp = await client.get(f"{url}")
-    data, _ = await assert_status(resp, status.HTTP_200_OK)
-
-    got = UserGet.model_validate(data)
-    assert got.user_id == other_user["id"]
-    assert got.user_name == other_user["name"]
 
-    # SEARCH user
-    partial_email = other_user["email"][:-5]
-    url = client.app.router["search_users"].url_for()
-    resp = await client.post(f"{url}", json={"match": partial_email})
-    data, _ = await assert_status(resp, status.HTTP_200_OK)
-
-    found = TypeAdapter(list[UserGet]).validate_python(data)
-    assert found
-    assert len(found) == 1
-    assert found[0] == got
+    async with AsyncExitStack() as stack:
+        private_user: UserInfoDict = await stack.enter_async_context(
+            NewUser(
+                app=client.app,
+                user_data={
+                    "name": "jamie01",
+                    "first_name": "James",
+                    "last_name": "Bond",
+                    "email": "[email protected]",
+                    "privacy_hide_email": True,
+                    "privacy_hide_fullname": True,
+                },
+            )
+        )
+        public_user: UserInfoDict = await stack.enter_async_context(
+            NewUser(
+                app=client.app,
+                user_data={
+                    "name": "taylie01",
+                    "first_name": "Taylor",
+                    "last_name": "Swift",
+                    "email": "[email protected]",
+                    "privacy_hide_email": False,
+                    "privacy_hide_fullname": False,
+                },
+            )
+        )
 
-    # SEARCH user for admin (from a USER)
-    url = (
-        client.app.router["search_users_for_admin"]
-        .url_for()
-        .with_query(email=partial_email)
-    )
-    resp = await client.get(f"{url}")
-    await assert_status(resp, status.HTTP_403_FORBIDDEN)
+        assert private_user["id"] != logged_user["id"]
+        assert public_user["id"] != logged_user["id"]
+
+        # GET user
+        url = client.app.router["get_user"].url_for(user_id=f'{public_user["id"]}')
+        resp = await client.get(f"{url}")
+        data, _ = await assert_status(resp, status.HTTP_200_OK)
+
+        # check privacy
+        got = UserGet.model_validate(data)
+        assert got.user_id == public_user["id"]
+        assert got.user_name == public_user["name"]
+        assert got.first_name == public_user.get("first_name")
+        assert got.last_name == public_user.get("last_name")
+
+        # SEARCH by partial email
+        partial_email = "@find.m"
+        assert partial_email in private_user["email"]
+        assert partial_email in public_user["email"]
+
+        url = client.app.router["search_users"].url_for()
+        resp = await client.post(f"{url}", json={"match": partial_email})
+        data, _ = await assert_status(resp, status.HTTP_200_OK)
+
+        found = TypeAdapter(list[UserGet]).validate_python(data)
+        assert found
+        assert len(found) == 1
+        assert found[0] == got
+
+        # SEARCH by partial username
+        partial_username = "ie01"
+        assert partial_username in private_user["name"]
+        assert partial_username in public_user["name"]
+
+        url = client.app.router["search_users"].url_for()
+        resp = await client.post(f"{url}", json={"match": partial_username})
+        data, _ = await assert_status(resp, status.HTTP_200_OK)
+
+        found = TypeAdapter(list[UserGet]).validate_python(data)
+        assert found
+        assert len(found) == 2
+        assert found[1] == got
+        # check privacy
+        assert found[0].user_name == private_user["name"]
+        assert found[0].email is None
+        assert found[0].first_name is None
+        assert found[0].last_name is None
+
+        # SEARCH user for admin (from a USER)
+        url = (
+            client.app.router["search_users_for_admin"]
+            .url_for()
+            .with_query(email=partial_email)
+        )
+        resp = await client.get(f"{url}")
+        await assert_status(resp, status.HTTP_403_FORBIDDEN)
 
 
 @pytest.mark.parametrize(