2015-06-11 01:45:23 +03:00
|
|
|
from django.conf.urls import url
|
2014-12-16 17:41:16 +03:00
|
|
|
from django.contrib.auth.models import User
|
2017-11-15 22:58:37 +03:00
|
|
|
from django.http import HttpRequest
|
2016-06-01 17:31:00 +03:00
|
|
|
from django.test import override_settings
|
2015-06-25 23:55:51 +03:00
|
|
|
|
2014-12-16 17:41:16 +03:00
|
|
|
from rest_framework.authentication import TokenAuthentication
|
|
|
|
from rest_framework.authtoken.models import Token
|
2017-11-15 22:58:37 +03:00
|
|
|
from rest_framework.request import is_form_media_type
|
|
|
|
from rest_framework.response import Response
|
2014-12-16 17:41:16 +03:00
|
|
|
from rest_framework.test import APITestCase
|
|
|
|
from rest_framework.views import APIView
|
|
|
|
|
2017-11-15 22:58:37 +03:00
|
|
|
|
|
|
|
class PostView(APIView):
|
|
|
|
def post(self, request):
|
|
|
|
return Response(data=request.data, status=200)
|
|
|
|
|
|
|
|
|
2015-06-11 01:45:23 +03:00
|
|
|
urlpatterns = [
|
2017-11-15 22:58:37 +03:00
|
|
|
url(r'^auth$', APIView.as_view(authentication_classes=(TokenAuthentication,))),
|
|
|
|
url(r'^post$', PostView.as_view()),
|
2015-06-11 01:45:23 +03:00
|
|
|
]
|
2014-12-16 17:41:16 +03:00
|
|
|
|
|
|
|
|
2017-11-15 22:58:37 +03:00
|
|
|
class RequestUserMiddleware(object):
|
|
|
|
def __init__(self, get_response):
|
|
|
|
self.get_response = get_response
|
2014-12-16 17:41:16 +03:00
|
|
|
|
2017-11-15 22:58:37 +03:00
|
|
|
def __call__(self, request):
|
|
|
|
response = self.get_response(request)
|
2014-12-16 17:41:16 +03:00
|
|
|
assert hasattr(request, 'user'), '`user` is not set on request'
|
2017-11-15 22:58:37 +03:00
|
|
|
assert request.user.is_authenticated, '`user` is not authenticated'
|
|
|
|
|
|
|
|
return response
|
|
|
|
|
|
|
|
|
|
|
|
class RequestPOSTMiddleware(object):
|
|
|
|
def __init__(self, get_response):
|
|
|
|
self.get_response = get_response
|
|
|
|
|
|
|
|
def __call__(self, request):
|
|
|
|
assert isinstance(request, HttpRequest)
|
|
|
|
|
|
|
|
# Parse body with underlying Django request
|
|
|
|
request.body
|
|
|
|
|
|
|
|
# Process request with DRF view
|
|
|
|
response = self.get_response(request)
|
|
|
|
|
|
|
|
# Ensure request.POST is set as appropriate
|
|
|
|
if is_form_media_type(request.content_type):
|
|
|
|
assert request.POST == {'foo': ['bar']}
|
|
|
|
else:
|
|
|
|
assert request.POST == {}
|
|
|
|
|
2014-12-16 17:41:16 +03:00
|
|
|
return response
|
|
|
|
|
|
|
|
|
2016-06-01 17:31:00 +03:00
|
|
|
@override_settings(ROOT_URLCONF='tests.test_middleware')
|
2014-12-16 17:41:16 +03:00
|
|
|
class TestMiddleware(APITestCase):
|
2017-11-15 22:58:37 +03:00
|
|
|
|
|
|
|
@override_settings(MIDDLEWARE=('tests.test_middleware.RequestUserMiddleware',))
|
2014-12-16 17:41:16 +03:00
|
|
|
def test_middleware_can_access_user_when_processing_response(self):
|
|
|
|
user = User.objects.create_user('john', 'john@example.com', 'password')
|
|
|
|
key = 'abcd1234'
|
|
|
|
Token.objects.create(key=key, user=user)
|
|
|
|
|
2017-11-15 22:58:37 +03:00
|
|
|
self.client.get('/auth', HTTP_AUTHORIZATION='Token %s' % key)
|
|
|
|
|
|
|
|
@override_settings(MIDDLEWARE=('tests.test_middleware.RequestPOSTMiddleware',))
|
|
|
|
def test_middleware_can_access_request_post_when_processing_response(self):
|
|
|
|
response = self.client.post('/post', {'foo': 'bar'})
|
|
|
|
assert response.status_code == 200
|
|
|
|
|
|
|
|
response = self.client.post('/post', {'foo': 'bar'}, format='json')
|
|
|
|
assert response.status_code == 200
|