Kitos
9e204b78ec
- Add test_test_entity.py with 46 pure unit tests covering the full domain entity - Fix _FakeSettings in 11 test files (REPORT_TEMPLATES_DIR, JIRA, TEMPO) - Fix stale db.commit assertions to db.flush after UoW refactor - Add missing mock fields for TestEntity.from_orm compatibility - Make database.py skip pool args for SQLite in test environment - Disable slowapi rate limiter in test client fixture - Inject test engine into app.database to fix threading errors - Update role assertions to match current require_any_role policy - Mark 6 legacy V1 endpoint tests as xfail (replaced by V2 workflow)
82 lines
2.3 KiB
Python
82 lines
2.3 KiB
Python
"""Tests for authentication endpoints."""
|
|
|
|
import pytest
|
|
|
|
|
|
def test_login_success(client, admin_user):
|
|
"""Test successful login returns a token."""
|
|
response = client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "admin", "password": "admin123"},
|
|
)
|
|
assert response.status_code == 200
|
|
data = response.json()
|
|
assert "access_token" in data
|
|
assert data["token_type"] == "bearer"
|
|
|
|
|
|
def test_login_wrong_password(client, admin_user):
|
|
"""Test login with wrong password returns 400."""
|
|
response = client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "admin", "password": "wrongpassword"},
|
|
)
|
|
assert response.status_code == 400
|
|
|
|
|
|
def test_login_nonexistent_user(client):
|
|
"""Test login with non-existent user returns 400."""
|
|
response = client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "nobody", "password": "password"},
|
|
)
|
|
assert response.status_code == 400
|
|
|
|
|
|
def test_login_inactive_user(client, db):
|
|
"""Test login with inactive user returns 400."""
|
|
from app.auth import hash_password
|
|
from app.models.user import User
|
|
|
|
user = User(
|
|
username="inactive",
|
|
hashed_password=hash_password("password"),
|
|
role="viewer",
|
|
is_active=False,
|
|
)
|
|
db.add(user)
|
|
db.commit()
|
|
|
|
response = client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "inactive", "password": "password"},
|
|
)
|
|
assert response.status_code == 403
|
|
|
|
|
|
def test_get_me_with_token(client, admin_user, admin_token):
|
|
"""Test /auth/me returns current user with valid token."""
|
|
response = client.get(
|
|
"/api/v1/auth/me",
|
|
headers={"Authorization": f"Bearer {admin_token}"},
|
|
)
|
|
assert response.status_code == 200
|
|
data = response.json()
|
|
assert data["username"] == "admin"
|
|
assert data["role"] == "admin"
|
|
|
|
|
|
def test_get_me_without_token(client):
|
|
"""Test /auth/me returns 401 without token."""
|
|
response = client.get("/api/v1/auth/me")
|
|
assert response.status_code == 401
|
|
|
|
|
|
def test_get_me_invalid_token(client):
|
|
"""Test /auth/me returns 401 with invalid token."""
|
|
response = client.get(
|
|
"/api/v1/auth/me",
|
|
headers={"Authorization": "Bearer invalidtoken"},
|
|
)
|
|
assert response.status_code == 401
|