django-rest-framework/tests/browsable_api/test_browsable_api.py

from django.contrib.auth.models import User
from django.test import TestCase, override_settings

from rest_framework.permissions import IsAuthenticated
from rest_framework.test import APIClient

from .views import BasicModelWithUsersViewSet, OrganizationPermissions


@override_settings(ROOT_URLCONF='tests.browsable_api.no_auth_urls')
class AnonymousUserTests(TestCase):
    """Tests correct handling of anonymous user request on endpoints with IsAuthenticated permission class."""

    def setUp(self):
        self.client = APIClient(enforce_csrf_checks=True)

    def tearDown(self):
        self.client.logout()

    def test_get_raises_typeerror_when_anonymous_user_in_queryset_filter(self):
        with self.assertRaises(TypeError):
            self.client.get('/basicviewset')

    def test_get_returns_http_forbidden_when_anonymous_user(self):
        old_permissions = BasicModelWithUsersViewSet.permission_classes
        BasicModelWithUsersViewSet.permission_classes = [IsAuthenticated, OrganizationPermissions]

        response = self.client.get('/basicviewset')

        BasicModelWithUsersViewSet.permission_classes = old_permissions
        self.assertEqual(response.status_code, 403)


@override_settings(ROOT_URLCONF='tests.browsable_api.auth_urls')
class DropdownWithAuthTests(TestCase):
    """Tests correct dropdown behaviour with Auth views enabled."""
    def setUp(self):
        self.client = APIClient(enforce_csrf_checks=True)
        self.username = 'john'
        self.email = 'lennon@thebeatles.com'
        self.password = 'password'
        self.user = User.objects.create_user(
            self.username,
            self.email,
            self.password
        )

    def tearDown(self):
        self.client.logout()

    def test_name_shown_when_logged_in(self):
        self.client.login(username=self.username, password=self.password)
        response = self.client.get('/')
        content = response.content.decode()
        assert 'john' in content

    def test_logout_shown_when_logged_in(self):
        self.client.login(username=self.username, password=self.password)
        response = self.client.get('/')
        content = response.content.decode()
        assert '>Log out<' in content

    def test_login_shown_when_logged_out(self):
        response = self.client.get('/')
        content = response.content.decode()
        assert '>Log in<' in content

    def test_dropdown_contains_logout_form(self):
        self.client.login(username=self.username, password=self.password)
        response = self.client.get('/')
        content = response.content.decode()
        assert '<form id="logoutForm" method="post" action="/auth/logout/?next=/">' in content


@override_settings(ROOT_URLCONF='tests.browsable_api.no_auth_urls')
class NoDropdownWithoutAuthTests(TestCase):
    """Tests correct dropdown behaviour with Auth views NOT enabled."""
    def setUp(self):
        self.client = APIClient(enforce_csrf_checks=True)
        self.username = 'john'
        self.email = 'lennon@thebeatles.com'
        self.password = 'password'
        self.user = User.objects.create_user(
            self.username,
            self.email,
            self.password
        )

    def tearDown(self):
        self.client.logout()

    def test_name_shown_when_logged_in(self):
        self.client.login(username=self.username, password=self.password)
        response = self.client.get('/')
        content = response.content.decode()
        assert 'john' in content

    def test_dropdown_not_shown_when_logged_in(self):
        self.client.login(username=self.username, password=self.password)
        response = self.client.get('/')
        content = response.content.decode()
        assert '<li class="dropdown">' not in content

    def test_dropdown_not_shown_when_logged_out(self):
        response = self.client.get('/')
        content = response.content.decode()
        assert '<li class="dropdown">' not in content
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00			`from django.contrib.auth.models import User`
Django 1.10 support. (#4158) * Added TEMPLATES setting to tests * Remove deprecated view-string in URL conf * Replace 'urls = ...' in test classes with override_settings('ROOT_URLCONF=...') * Refactor UsingURLPatterns to use override_settings(ROOT_URLCONF=...) style * Get model managers and names in a version-compatible manner. * Apply override_settings to a TestCase, not a mixin class * Use '.callback' property instead of private attributes when inspecting urlpatterns * Pass 'user' to template explicitly * Correct sorting of import statements. * Remove unused TEMPLATE_LOADERS setting, in favor of TEMPLATES. * Remove code style issue * BaseFilter test requires a concrete model * Resolve tox.ini issues * Resolve isort differences between local and tox environments 2016-06-01 17:31:00 +03:00			`from django.test import TestCase, override_settings`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
tests for #5127 (#7715) * tests for #5127 * Resolves #5127 2022-06-08 15:41:26 +03:00			`from rest_framework.permissions import IsAuthenticated`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00			`from rest_framework.test import APIClient`

tests for #5127 (#7715) * tests for #5127 * Resolves #5127 2022-06-08 15:41:26 +03:00			`from .views import BasicModelWithUsersViewSet, OrganizationPermissions`


			`@override_settings(ROOT_URLCONF='tests.browsable_api.no_auth_urls')`
			`class AnonymousUserTests(TestCase):`
			`"""Tests correct handling of anonymous user request on endpoints with IsAuthenticated permission class."""`

			`def setUp(self):`
			`self.client = APIClient(enforce_csrf_checks=True)`

			`def tearDown(self):`
			`self.client.logout()`

			`def test_get_raises_typeerror_when_anonymous_user_in_queryset_filter(self):`
			`with self.assertRaises(TypeError):`
			`self.client.get('/basicviewset')`

			`def test_get_returns_http_forbidden_when_anonymous_user(self):`
			`old_permissions = BasicModelWithUsersViewSet.permission_classes`
			`BasicModelWithUsersViewSet.permission_classes = [IsAuthenticated, OrganizationPermissions]`

			`response = self.client.get('/basicviewset')`

			`BasicModelWithUsersViewSet.permission_classes = old_permissions`
			`self.assertEqual(response.status_code, 403)`

Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
Django 1.10 support. (#4158) * Added TEMPLATES setting to tests * Remove deprecated view-string in URL conf * Replace 'urls = ...' in test classes with override_settings('ROOT_URLCONF=...') * Refactor UsingURLPatterns to use override_settings(ROOT_URLCONF=...) style * Get model managers and names in a version-compatible manner. * Apply override_settings to a TestCase, not a mixin class * Use '.callback' property instead of private attributes when inspecting urlpatterns * Pass 'user' to template explicitly * Correct sorting of import statements. * Remove unused TEMPLATE_LOADERS setting, in favor of TEMPLATES. * Remove code style issue * BaseFilter test requires a concrete model * Resolve tox.ini issues * Resolve isort differences between local and tox environments 2016-06-01 17:31:00 +03:00			`@override_settings(ROOT_URLCONF='tests.browsable_api.auth_urls')`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00			`class DropdownWithAuthTests(TestCase):`
			`"""Tests correct dropdown behaviour with Auth views enabled."""`
			`def setUp(self):`
			`self.client = APIClient(enforce_csrf_checks=True)`
			`self.username = 'john'`
			`self.email = 'lennon@thebeatles.com'`
			`self.password = 'password'`
Style fix of tests (#4154) Clean up code style. 2016-06-01 12:40:54 +03:00			`self.user = User.objects.create_user(`
			`self.username,`
			`self.email,`
			`self.password`
			`)`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def tearDown(self):`
			`self.client.logout()`

			`def test_name_shown_when_logged_in(self):`
			`self.client.login(username=self.username, password=self.password)`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert 'john' in content`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def test_logout_shown_when_logged_in(self):`
			`self.client.login(username=self.username, password=self.password)`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert '>Log out<' in content`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def test_login_shown_when_logged_out(self):`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert '>Log in<' in content`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
Use POST method instead of GET to perform logout in browsable API (#9208) * Use POST method instead of GET to perform logout in browsable API * Add a test that checks the presence of the logout form 2024-02-20 01:28:04 +03:00			`def test_dropdown_contains_logout_form(self):`
			`self.client.login(username=self.username, password=self.password)`
			`response = self.client.get('/')`
			`content = response.content.decode()`
			`assert '<form id="logoutForm" method="post" action="/auth/logout/?next=/">' in content`

Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
Django 1.10 support. (#4158) * Added TEMPLATES setting to tests * Remove deprecated view-string in URL conf * Replace 'urls = ...' in test classes with override_settings('ROOT_URLCONF=...') * Refactor UsingURLPatterns to use override_settings(ROOT_URLCONF=...) style * Get model managers and names in a version-compatible manner. * Apply override_settings to a TestCase, not a mixin class * Use '.callback' property instead of private attributes when inspecting urlpatterns * Pass 'user' to template explicitly * Correct sorting of import statements. * Remove unused TEMPLATE_LOADERS setting, in favor of TEMPLATES. * Remove code style issue * BaseFilter test requires a concrete model * Resolve tox.ini issues * Resolve isort differences between local and tox environments 2016-06-01 17:31:00 +03:00			`@override_settings(ROOT_URLCONF='tests.browsable_api.no_auth_urls')`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00			`class NoDropdownWithoutAuthTests(TestCase):`
Fix docstring 2014-09-02 17:11:23 +04:00			`"""Tests correct dropdown behaviour with Auth views NOT enabled."""`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00			`def setUp(self):`
			`self.client = APIClient(enforce_csrf_checks=True)`
			`self.username = 'john'`
			`self.email = 'lennon@thebeatles.com'`
			`self.password = 'password'`
Style fix of tests (#4154) Clean up code style. 2016-06-01 12:40:54 +03:00			`self.user = User.objects.create_user(`
			`self.username,`
			`self.email,`
			`self.password`
			`)`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def tearDown(self):`
			`self.client.logout()`

			`def test_name_shown_when_logged_in(self):`
			`self.client.login(username=self.username, password=self.password)`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert 'john' in content`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def test_dropdown_not_shown_when_logged_in(self):`
			`self.client.login(username=self.username, password=self.password)`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert '<li class="dropdown">' not in content`
Remove Login Dropdown when Auth Views are not registered. Fixes #1738 2014-09-02 16:53:37 +04:00
			`def test_dropdown_not_shown_when_logged_out(self):`
			`response = self.client.get('/')`
Drop default 'utf-8' to .encode()/.decode() (#6633) A Python 3 cleanup that allows for less noise in the code. https://docs.python.org/3/library/stdtypes.html#bytes.decode https://docs.python.org/3/library/stdtypes.html#str.encode 2019-05-01 08:49:17 +03:00			`content = response.content.decode()`
Browsable API tests asserts to pytest (#4725) 2016-12-01 19:17:36 +03:00			`assert '<li class="dropdown">' not in content`