Skip to content

add product tests #11

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 21, 2025
Merged

add product tests #11

merged 1 commit into from
Aug 21, 2025

Conversation

@piyush-jaiswal
Copy link
Owner

@piyush-jaiswal piyush-jaiswal commented Aug 21, 2025
edited by coderabbitai bot
Loading

Summary by CodeRabbit

  • Tests
    • Added comprehensive automated tests for Product endpoints, covering create, retrieve by ID, list with pagination, update, and delete flows.
    • Verified authentication and token error handling to prevent unauthorized changes.
    • Included checks for edge cases such as duplicate names and post-deletion access.
    • Improves reliability, guards against regressions, and ensures consistent API behavior.
    • No functional changes to the application.

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Aug 21, 2025
edited
Loading

Walkthrough

Adds a comprehensive tests/test_product.py suite covering Product API CRUD operations, pagination, and token-related error handling. Tests include creation, duplicate handling, retrieval (single and list), update, delete, and parameterized auth error scenarios. Fixtures and helpers manage DB setup, product creation, and validations.

Changes

Cohort / File(s) Summary
Product API test suite
tests/test_product.py		 Adds end-to-end tests for Product API: create, duplicate-name error, get by id, list all, update, delete, pagination, and token error cases (expired/invalid/missing). Includes fixtures, constants, and helpers for DB state, auth headers, and assertions.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Poem

I thump in tests where products sprout,
CRUD carrots counted in and out.
Tokens hop—some trip, some pass,
Pages split the garden mass.
With every GET and PUT in line,
The burrow’s logic looks just fine.
Now ship—ears up, tails align! 🥕

Tip

🔌 Remote MCP (Model Context Protocol) integration is now available!

Pro plan users can now connect to remote MCP servers from the Integrations page. Connect with popular remote MCPs such as Notion and Linear to add more context to your reviews and chats.

✨ Finishing Touches
  • 📝 Generate Docstrings
🧪 Generate unit tests
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch feature/add-product-tests

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

  • Visit our Status Page to check the current availability of CodeRabbit.
  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

coderabbitai[bot]
coderabbitai bot reviewed Aug 21, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (8)
tests/test_product.py (8)

32-45: Helper assertions are clear; consider optional description check.
If you want slightly stronger guarantees, allow an optional expected_description and assert it when provided. Keeps current call sites unchanged.

-    def _verify_product_in_db(self, name, should_exist=True):
+    def _verify_product_in_db(self, name, should_exist=True, expected_description=None):
         with self.client.application.app_context():
             product = Product.query.filter_by(name=name).first()
             if should_exist:
                 assert product is not None
                 assert product.name == name
+                if expected_description is not None:
+                    assert product.description == expected_description
                 return product
             else:
                 assert product is None

64-74: Get-by-id happy-path is correct; consider adding a 404 test for a non-existent product.
Adding a negative test improves coverage of error paths and keeps contract stable.

I can draft a test_get_product_not_found that asserts 404 for /product/9999.

105-116: Delete flow is correct; consider asserting 204 No Content if you adopt that semantic.
Current 200/then-404-on-read is fine; 204 is another common choice for deletions without body.

-        assert delete_resp.status_code == 200
+        assert delete_resp.status_code in (200, 204)

133-157: Token error coverage for update is solid; minor robustness tweak optional.
Some JWT setups return 422 for malformed tokens. If that applies in your stack, pass status_code=422 for the invalid_token case.

-            (lambda self: utils.get_invalid_token_headers(), "invalid_token"),
+            (lambda self: utils.get_invalid_token_headers(), "invalid_token"),  # add status_code=422 if your JWT lib uses 422

88-104: Optional: align update endpoint with REST conventions
The update_product route and its test currently return and expect HTTP 201. While this matches the current implementation, the conventional status for an update is 200 (with a response body) or 204 (no content). If you’d like to follow REST best practices, consider updating both the route and the test:

• In app/routes.py, change the return status code

-        return jsonify(product.to_json()), 201
+        return jsonify(product.to_json()), 200

• In tests/test_product.py (around line 93), adjust the assertion

-        assert update_resp.status_code == 201
+        assert update_resp.status_code == 200

56-63: Enhance duplicate‐name handling in create_product (optional)

Currently, submitting a product with an existing name triggers the generic except: block in app/routes.py, yielding a 500 response. While your test correctly asserts this behavior, it’s better API design to treat duplicates as client errors.

• In app/routes.py at create_product (around line 712):

  • Replace the blanket except: with a targeted except IntegrityError:
    – Roll back the session
    – Return a JSON error and 409 Conflict (or 400 Bad Request)
  • Keep a final catch-all for unexpected errors, still returning 500

Example adjustment:

     try:
         db.session.add(product)
-        db.session.commit()
-        return jsonify(product.to_json()), 201
-    except:
-        return "Error occured", 500
+        db.session.commit()
+        return jsonify(product.to_json()), 201
+    except IntegrityError as e:
+        db.session.rollback()
+        return jsonify({"error": "Product name already exists"}), 409
+    except Exception:
+        db.session.rollback()
+        return jsonify({"error": "Internal server error"}), 500

• Once the endpoint returns 409 for duplicates, update your test:

-        assert response.status_code == 500
+        assert response.status_code == 409
+        payload = response.get_json()
+        assert payload and "error" in payload

Feel free to leave the current 500 assertion in place until the API change is merged. Let me know if you’d like help opening an issue to standardize duplicate‐name error handling across all create/update routes.

178-195: Decouple pagination in tests from hardcoded per_page
I verified that the /products endpoint in app/routes.py (lines 938–942) calls

products = Product.query.order_by(Product.id.asc()) \
    .paginate(page=page, per_page=10, error_out=False)
return jsonify({"products": […]}), 200

and does not expose any pagination metadata (e.g. per_page, total) in its JSON response. Relying on the hardcoded page size of 10 makes the test brittle if that value ever changes.

To make the test more robust, I recommend the following optional refactor:

• Option A: Assert totals across pages without assuming a specific page size:

     # Page 1
     resp1 = self.client.get("/products?page=1")
     assert resp1.status_code == 200
     data1 = resp1.get_json()
     assert "products" in data1
-    assert len(data1["products"]) == 10
+    page1_count = len(data1["products"])

     # Page 2
     resp2 = self.client.get("/products?page=2")
     assert resp2.status_code == 200
     data2 = resp2.get_json()
     assert "products" in data2
-    assert len(data2["products"]) == 5
+    page2_count = len(data2["products"])
+    assert page1_count > 0
+    assert page1_count + page2_count == 15

• Option B (requires an API change): Modify the endpoint to include pagination metadata in its response, e.g.

{
  "products": [],
  "page": 1,
  "per_page": 10,
  "total": 15
}

and then assert those fields directly in your tests.

Given the current implementation, Option A is the easiest way to decouple your tests from a fixed per_page.

17-31: Cache authentication headers in create_product to prevent redundant registration calls

The create_authenticated_headers fixture always invokes register_user (which returns HTTP 409 on duplicates) followed by login_user on each call. Since register_user isn’t idempotent (see test_register_duplicate_email expecting a 409 on the second call), calling it repeatedly for every create_product invocation incurs unnecessary HTTP overhead and risks flakiness. It’s safe—and more efficient—to call create_authenticated_headers() just once per test and reuse the resulting headers.

Key locations to update:

  • tests/test_product.py (lines 17–31): the create_product fixture currently calls create_authenticated_headers() on every _create invocation when headers is None.
  • tests/conftest.py (lines 43–49): create_authenticated_headers unconditionally calls register_user(email, password).

Suggested diff for create_product fixture in tests/test_product.py:

 @pytest.fixture
 def create_product(self, create_authenticated_headers):
-    def _create(name, description=None, subcategories=None, headers=None):
-        if headers is None:
-            headers = create_authenticated_headers()
+    default_headers = None
+    def _create(name, description=None, subcategories=None, headers=None):
+        nonlocal default_headers
+        if headers is None:
+            if default_headers is None:
+                default_headers = create_authenticated_headers()
+            headers = default_headers
         payload = {"name": name}
         if description is not None:
             payload["description"] = description
         if subcategories is not None:
             payload["subcategories"] = subcategories
         return self.client.post(
             "/product/create", json=payload, headers=headers
         )
-    return _create
+    return _create

This change ensures:

  • register_user + login_user are called only once per test (when default_headers is first needed).
  • Subsequent create_product calls reuse the same Authorization header, reducing test runtime and potential conflicts.
📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled by default for public repositories
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 17fddab and 84bbade.

📒 Files selected for processing (1)
  • tests/test_product.py (1 hunks)
🧰 Additional context used
🧬 Code graph analysis (1)
tests/test_product.py (4)
app/models.py (2)
  • Product (95-109)
  • get (30-35)
tests/conftest.py (2)
  • client (15-22)
  • create_authenticated_headers (44-51)
tests/utils.py (3)
  • get_expired_token_headers (17-22)
  • get_invalid_token_headers (25-26)
  • verify_token_error_response (6-10)
app/routes.py (1)
  • update_product (782-845)
🔇 Additional comments (6)
tests/test_product.py (6)

1-5: Imports and module setup look good.
No unnecessary imports and pytest is correctly leveraged.

11-16: Good autouse fixture to enforce a clean DB per test.
Asserting an empty Product table at the start of each test prevents cross-test bleed.

46-55: Create test is solid and aligns with the API shape.
Status code, response fields, and DB verification are appropriate.

75-87: List test is good; order-agnostic membership checks avoid flakiness.
No changes needed. Once header caching is in place, the double-creation overhead will also drop.

117-132: Token error coverage for create is thorough.
Parametrization and post-condition DB checks are on point.

158-177: Token error coverage for delete looks good.
Happy with the invariants being asserted after failure.

@piyush-jaiswal piyush-jaiswal merged commit 79a3088 into master Aug 21, 2025
2 of 3 checks passed
@piyush-jaiswal piyush-jaiswal deleted the feature/add-product-tests branch August 21, 2025 12:05
@coderabbitai coderabbitai bot mentioned this pull request Aug 22, 2025
Merged
This was referenced Oct 2, 2025
Merged
Merged
@coderabbitai coderabbitai bot mentioned this pull request Oct 15, 2025
Merged
This was referenced Nov 3, 2025
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@piyush-jaiswal