Add test file

HadleyKing · HadleyKing · commit 4ff42c6a7c81 · 2023-10-17T15:05:06.000-04:00
Fix #183 Changes to be committed: new file: tests/test_api_groups _modify.py
diff --git a/tests/test_api_groups _modify.py b/tests/test_api_groups _modify.py
@@ -0,0 +1,70 @@
+
+#!/usr/bin/env python3
+
+"""Group info
+Tests for 'Authorization is successful. Group permissions returned' (200), 
+Forbidden response (400)
+"""
+
+
+from django.test import TestCase
+from rest_framework.test import APIClient
+from rest_framework.authtoken.models import Token
+from django.contrib.auth.models import User
+
+
+class GroupInfoAPITestCase(TestCase):
+    fixtures = ['tests/fixtures/test_data']
+
+    def setUp(self):
+        self.client = APIClient()
+
+        # Checking if the user 'bco_api_user' already exists
+        try:
+            self.user = User.objects.get(username='bco_api_user')
+        except User.DoesNotExist:
+            self.user = User.objects.create_user(username='bco_api_user')
+
+        # Checking if user already has token, if not then creating one
+        if not Token.objects.filter(user=self.user).exists():
+            self.token = Token.objects.create(user=self.user)
+        else:
+            self.token = Token.objects.get(user=self.user)
+
+    def test_success_response(self):
+        # Successful request with authentication data
+        data = {
+            "POST_api_groups_info": {
+                "names": ["anon", "wheel"]
+            }
+        }
+        self.client.credentials(HTTP_AUTHORIZATION='Token ' + self.token.key)
+        response = self.client.post('/api/groups/group_info/', data=data, format='json')
+        self.assertEqual(response.status_code, 200)
+
+    def test_bad_request_response(self):
+        # Bad request: Authorization is not provided in the request headers
+        #Gives 403 instead of 400
+
+        data = {
+            "POST_api_groups_info": {
+                "names": ["anon", "wheel"]
+            }
+        }
+        #self.client.credentials(HTTP_AUTHORIZATION='Token ' + self.token.key)
+        response = self.client.post('/api/groups/group_info/', data=data, format='json')
+        self.assertEqual(response.status_code, 403)
+
+    def test_unauthorized_response(self):
+        # Unauthorized: Authentication credentials were not valid
+        #Gives 403 instead of 401
+
+        data = {
+            "POST_api_groups_info": {
+                "names": ["anon", "wheel"]
+            }
+        }
+        # Use an invalid token or no token to simulate an unauthorized request
+        self.client.credentials(HTTP_AUTHORIZATION='Token InvalidToken')
+        response = self.client.post('/api/groups/group_info/', data=data, format='json')
+        self.assertEqual(response.status_code, 403)
