mirror of
https://gitlab.crans.org/bde/nk20
synced 2024-12-27 09:52:22 +00:00
a6b479db19
- /apps/activity/api/serializers.py - /apps/activity/api/urls.py - /apps/activity/api/views.py - /apps/activity/tests/test_activities.py - /apps/activity/__init__.py - /apps/activity/admin.py - /apps/activity/apps.py - /apps/activity/forms.py - /apps/activity/tables.py - /apps/activity/urls.py - /apps/activity/views.py - /apps/api/__init__.py - /apps/api/apps.py - /apps/api/serializers.py - /apps/api/tests.py - /apps/api/urls.py - /apps/api/views.py - /apps/api/viewsets.py - /apps/logs/signals.py - /apps/logs/apps.py - /apps/logs/__init__.py - /apps/logs/api/serializers.py - /apps/logs/api/urls.py - /apps/logs/api/views.py - /apps/member/api/serializers.py - /apps/member/api/urls.py - /apps/member/api/views.py - /apps/member/templatetags/memberinfo.py - /apps/member/__init__.py - /apps/member/admin.py - /apps/member/apps.py - /apps/member/auth.py - /apps/member/forms.py - /apps/member/hashers.py - /apps/member/signals.py - /apps/member/tables.py - /apps/member/urls.py - /apps/member/views.py - /apps/note/api/serializers.py - /apps/note/api/urls.py - /apps/note/api/views.py - /apps/note/models/__init__.py - /apps/note/static/note/js/consos.js - /apps/note/templates/note/mails/negative_balance.txt - /apps/note/templatetags/getenv.py - /apps/note/templatetags/pretty_money.py - /apps/note/tests/test_transactions.py - /apps/note/__init__.py - /apps/note/admin.py - /apps/note/apps.py - /apps/note/forms.py - /apps/note/signals.py - /apps/note/tables.py - /apps/note/urls.py - /apps/note/views.py - /apps/permission/api/serializers.py - /apps/permission/api/urls.py - /apps/permission/api/views.py - /apps/permission/templatetags/perms.py - /apps/permission/tests/test_oauth2.py - /apps/permission/tests/test_permission_denied.py - /apps/permission/tests/test_permission_queries.py - /apps/permission/tests/test_rights_page.py - /apps/permission/__init__.py - /apps/permission/admin.py - /apps/permission/backends.py - /apps/permission/apps.py - /apps/permission/decorators.py - /apps/permission/permissions.py - /apps/permission/scopes.py - /apps/permission/signals.py - /apps/permission/tables.py - /apps/permission/urls.py - /apps/permission/views.py - /apps/registration/tests/test_registration.py - /apps/registration/__init__.py - /apps/registration/apps.py - /apps/registration/forms.py - /apps/registration/tables.py - /apps/registration/tokens.py - /apps/registration/urls.py - /apps/registration/views.py - /apps/treasury/api/serializers.py - /apps/treasury/api/urls.py - /apps/treasury/api/views.py - /apps/treasury/templatetags/escape_tex.py - /apps/treasury/tests/test_treasury.py - /apps/treasury/__init__.py - /apps/treasury/admin.py - /apps/treasury/apps.py - /apps/treasury/forms.py - /apps/treasury/signals.py - /apps/treasury/tables.py - /apps/treasury/urls.py - /apps/treasury/views.py - /apps/wei/api/serializers.py - /apps/wei/api/urls.py - /apps/wei/api/views.py - /apps/wei/forms/surveys/__init__.py - /apps/wei/forms/surveys/base.py - /apps/wei/forms/surveys/wei2021.py - /apps/wei/forms/surveys/wei2022.py - /apps/wei/forms/surveys/wei2023.py - /apps/wei/forms/__init__.py - /apps/wei/forms/registration.py - /apps/wei/management/commands/export_wei_registrations.py - /apps/wei/management/commands/import_scores.py - /apps/wei/management/commands/wei_algorithm.py - /apps/wei/templates/wei/weilist_sample.tex - /apps/wei/tests/test_wei_algorithm_2021.py - /apps/wei/tests/test_wei_algorithm_2022.py - /apps/wei/tests/test_wei_algorithm_2023.py - /apps/wei/tests/test_wei_registration.py - /apps/wei/__init__.py - /apps/wei/admin.py - /apps/wei/apps.py - /apps/wei/tables.py - /apps/wei/urls.py - /apps/wei/views.py - /note_kfet/settings/__init__.py - /note_kfet/settings/base.py - /note_kfet/settings/development.py - /note_kfet/settings/secrets_example.py - /note_kfet/static/js/base.js - /note_kfet/admin.py - /note_kfet/inputs.py - /note_kfet/middlewares.py - /note_kfet/urls.py - /note_kfet/views.py - /note_kfet/wsgi.py - /entrypoint.sh
414 lines
16 KiB
Python
414 lines
16 KiB
Python
# Copyright (C) 2018-2024 by BDE ENS Paris-Saclay
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
from django.contrib.auth.models import User
|
|
from django.db.models import Q
|
|
from django.test import TestCase
|
|
from django.urls import reverse
|
|
from django.utils.encoding import force_bytes
|
|
from django.utils.http import urlsafe_base64_encode
|
|
from member.models import Club, Membership
|
|
from note.models import NoteUser, NoteSpecial, Transaction
|
|
from registration.tokens import email_validation_token
|
|
from treasury.models import SogeCredit
|
|
|
|
"""
|
|
Check that pre-registrations and validations are working as well.
|
|
"""
|
|
|
|
|
|
class TestSignup(TestCase):
|
|
"""
|
|
Assume we are a new user.
|
|
Check that it can pre-register without any problem.
|
|
"""
|
|
|
|
fixtures = ("initial", )
|
|
|
|
def test_signup(self):
|
|
"""
|
|
A first year member signs up and validates its email address.
|
|
"""
|
|
response = self.client.get(reverse("registration:signup"))
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
# Signup
|
|
response = self.client.post(reverse("registration:signup"), dict(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="toto",
|
|
email="toto@example.com",
|
|
password1="toto1234",
|
|
password2="toto1234",
|
|
phone_number="+33123456789",
|
|
department="EXT",
|
|
promotion=Club.objects.get(name="BDE").membership_start.year,
|
|
address="Earth",
|
|
paid=False,
|
|
ml_events_registration="en",
|
|
ml_sport_registration=True,
|
|
ml_art_registration=True,
|
|
VSS_charter_read=True
|
|
))
|
|
self.assertRedirects(response, reverse("registration:email_validation_sent"), 302, 200)
|
|
self.assertTrue(User.objects.filter(username="toto").exists())
|
|
user = User.objects.get(username="toto")
|
|
# A preregistred user has no note
|
|
self.assertFalse(NoteUser.objects.filter(user=user).exists())
|
|
self.assertFalse(user.profile.registration_valid)
|
|
self.assertFalse(user.profile.email_confirmed)
|
|
self.assertFalse(user.is_active)
|
|
|
|
response = self.client.get(reverse("registration:email_validation_sent"))
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
# Check that the email validation link is valid
|
|
token = email_validation_token.make_token(user)
|
|
uid = urlsafe_base64_encode(force_bytes(user.pk))
|
|
response = self.client.get(reverse("registration:email_validation", kwargs=dict(uidb64=uid, token=token)))
|
|
self.assertEqual(response.status_code, 200)
|
|
user.profile.refresh_from_db()
|
|
self.assertTrue(user.profile.email_confirmed)
|
|
|
|
# Token has expired
|
|
response = self.client.get(reverse("registration:email_validation", kwargs=dict(uidb64=uid, token=token)))
|
|
self.assertEqual(response.status_code, 400)
|
|
|
|
# Uid does not exist
|
|
response = self.client.get(reverse("registration:email_validation", kwargs=dict(uidb64=0, token="toto")))
|
|
self.assertEqual(response.status_code, 400)
|
|
|
|
def test_invalid_signup(self):
|
|
"""
|
|
Send wrong data and check that it is not valid
|
|
"""
|
|
User.objects.create_superuser(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="toto",
|
|
email="toto@example.com",
|
|
password="toto1234",
|
|
)
|
|
|
|
# The email is already used
|
|
response = self.client.post(reverse("registration:signup"), dict(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="tôtö",
|
|
email="toto@example.com",
|
|
password1="toto1234",
|
|
password2="toto1234",
|
|
phone_number="+33123456789",
|
|
department="EXT",
|
|
promotion=Club.objects.get(name="BDE").membership_start.year,
|
|
address="Earth",
|
|
paid=False,
|
|
ml_events_registration="en",
|
|
ml_sport_registration=True,
|
|
ml_art_registration=True,
|
|
VSS_charter_read=True
|
|
))
|
|
self.assertTrue(response.status_code, 200)
|
|
|
|
# The username is similar to a known alias
|
|
response = self.client.post(reverse("registration:signup"), dict(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="tôtö",
|
|
email="othertoto@example.com",
|
|
password1="toto1234",
|
|
password2="toto1234",
|
|
phone_number="+33123456789",
|
|
department="EXT",
|
|
promotion=Club.objects.get(name="BDE").membership_start.year,
|
|
address="Earth",
|
|
paid=False,
|
|
ml_events_registration="en",
|
|
ml_sport_registration=True,
|
|
ml_art_registration=True,
|
|
VSS_charter_read=True
|
|
))
|
|
self.assertTrue(response.status_code, 200)
|
|
|
|
# The phone number is invalid
|
|
response = self.client.post(reverse("registration:signup"), dict(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="Ihaveanotherusername",
|
|
email="othertoto@example.com",
|
|
password1="toto1234",
|
|
password2="toto1234",
|
|
phone_number="invalid phone number",
|
|
department="EXT",
|
|
promotion=Club.objects.get(name="BDE").membership_start.year,
|
|
address="Earth",
|
|
paid=False,
|
|
ml_events_registration="en",
|
|
ml_sport_registration=True,
|
|
ml_art_registration=True,
|
|
VSS_charter_read=True
|
|
))
|
|
self.assertTrue(response.status_code, 200)
|
|
|
|
# The VSS charter is not read
|
|
response = self.client.post(reverse("registration:signup"), dict(
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
username="Ihaveanotherusername",
|
|
email="othertoto@example.com",
|
|
password1="toto1234",
|
|
password2="toto1234",
|
|
phone_number="+33123456789",
|
|
department="EXT",
|
|
promotion=Club.objects.get(name="BDE").membership_start.year,
|
|
address="Earth",
|
|
paid=False,
|
|
ml_events_registration="en",
|
|
ml_sport_registration=True,
|
|
ml_art_registration=True,
|
|
VSS_charter_read=False
|
|
))
|
|
self.assertTrue(response.status_code, 200)
|
|
|
|
|
|
class TestValidateRegistration(TestCase):
|
|
"""
|
|
Test the admin interface to validate users
|
|
"""
|
|
|
|
fixtures = ('initial',)
|
|
|
|
def setUp(self) -> None:
|
|
self.superuser = User.objects.create_superuser(
|
|
username="admintoto",
|
|
password="toto1234",
|
|
email="admin.toto@example.com",
|
|
)
|
|
self.client.force_login(self.superuser)
|
|
|
|
self.user = User.objects.create(
|
|
username="toto",
|
|
first_name="Toto",
|
|
last_name="TOTO",
|
|
email="toto@example.com",
|
|
)
|
|
|
|
sess = self.client.session
|
|
sess["permission_mask"] = 42
|
|
sess.save()
|
|
|
|
def test_future_user_list(self):
|
|
"""
|
|
Display the list of pre-registered users
|
|
"""
|
|
response = self.client.get(reverse("registration:future_user_list"))
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
response = self.client.get(reverse("registration:future_user_list") + "?search=toto")
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
def test_invalid_registrations(self):
|
|
"""
|
|
Send wrong data and check that errors are detected
|
|
"""
|
|
|
|
# BDE Membership is mandatory
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Chèque").id,
|
|
credit_amount=4200,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="Société générale",
|
|
join_bde=False,
|
|
join_kfet=False,
|
|
))
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertTrue(response.context["form"].errors)
|
|
|
|
# Same
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type="",
|
|
credit_amount=0,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="Société générale",
|
|
join_bde=False,
|
|
join_kfet=True,
|
|
))
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertTrue(response.context["form"].errors)
|
|
|
|
# The BDE membership is not free
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Espèces").id,
|
|
credit_amount=0,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="J'ai pas d'argent",
|
|
join_bde=True,
|
|
join_kfet=True,
|
|
))
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertTrue(response.context["form"].errors)
|
|
|
|
# Last and first names are required for a credit
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Chèque").id,
|
|
credit_amount=4000,
|
|
last_name="",
|
|
first_name="",
|
|
bank="",
|
|
join_bde=True,
|
|
join_kfet=True,
|
|
))
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertTrue(response.context["form"].errors)
|
|
|
|
# The username admïntoto is too similar with the alias admintoto.
|
|
# Since the form is valid, the user must update its username.
|
|
self.user.username = "admïntoto"
|
|
self.user.save()
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Chèque").id,
|
|
credit_amount=500,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="Société générale",
|
|
join_bde=True,
|
|
join_kfet=False,
|
|
))
|
|
self.assertEqual(response.status_code, 200)
|
|
self.assertTrue(response.context["form"].errors)
|
|
|
|
def test_validate_bde_registration(self):
|
|
"""
|
|
The user wants only to join the BDE. We validate the registration.
|
|
"""
|
|
response = self.client.get(reverse("registration:future_user_detail", args=(self.user.pk,)))
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
response = self.client.get(self.user.profile.get_absolute_url())
|
|
self.assertEqual(response.status_code, 404)
|
|
|
|
self.user.profile.email_confirmed = True
|
|
self.user.profile.save()
|
|
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Chèque").id,
|
|
credit_amount=500,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="Société générale",
|
|
join_bde=True,
|
|
join_kfet=False,
|
|
))
|
|
self.assertRedirects(response, self.user.profile.get_absolute_url(), 302, 200)
|
|
self.user.profile.refresh_from_db()
|
|
self.assertTrue(self.user.profile.registration_valid)
|
|
self.assertTrue(NoteUser.objects.filter(user=self.user).exists())
|
|
self.assertTrue(Membership.objects.filter(club__name="BDE", user=self.user).exists())
|
|
self.assertFalse(Membership.objects.filter(club__name="Kfet", user=self.user).exists())
|
|
self.assertFalse(Membership.objects.filter(club__name__iexact="BDA", user=self.user).exists())
|
|
self.assertFalse(SogeCredit.objects.filter(user=self.user).exists())
|
|
self.assertEqual(Transaction.objects.filter(
|
|
Q(source=self.user.note) | Q(destination=self.user.note)).count(), 2)
|
|
|
|
response = self.client.get(self.user.profile.get_absolute_url())
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
def test_validate_kfet_registration(self):
|
|
"""
|
|
The user joins the BDE and the Kfet.
|
|
"""
|
|
response = self.client.get(reverse("registration:future_user_detail", args=(self.user.pk,)))
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
response = self.client.get(self.user.profile.get_absolute_url())
|
|
self.assertEqual(response.status_code, 404)
|
|
|
|
self.user.profile.email_confirmed = True
|
|
self.user.profile.save()
|
|
|
|
response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=False,
|
|
credit_type=NoteSpecial.objects.get(special_type="Espèces").id,
|
|
credit_amount=4000,
|
|
last_name="TOTO",
|
|
first_name="Toto",
|
|
bank="Société générale",
|
|
join_bde=True,
|
|
join_kfet=True,
|
|
))
|
|
self.assertRedirects(response, self.user.profile.get_absolute_url(), 302, 200)
|
|
self.user.profile.refresh_from_db()
|
|
self.assertTrue(self.user.profile.registration_valid)
|
|
self.assertTrue(NoteUser.objects.filter(user=self.user).exists())
|
|
self.assertTrue(Membership.objects.filter(club__name="BDE", user=self.user).exists())
|
|
self.assertTrue(Membership.objects.filter(club__name="Kfet", user=self.user).exists())
|
|
self.assertFalse(Membership.objects.filter(club__name__iexact="BDA", user=self.user).exists())
|
|
self.assertFalse(SogeCredit.objects.filter(user=self.user).exists())
|
|
self.assertEqual(Transaction.objects.filter(
|
|
Q(source=self.user.note) | Q(destination=self.user.note)).count(), 3)
|
|
|
|
response = self.client.get(self.user.profile.get_absolute_url())
|
|
self.assertEqual(response.status_code, 200)
|
|
|
|
# def test_validate_kfet_registration_with_soge(self):
|
|
# """
|
|
# The user joins the BDE and the Kfet, but the membership is paid by the Société générale.
|
|
# """
|
|
# response = self.client.get(reverse("registration:future_user_detail", args=(self.user.pk,)))
|
|
# self.assertEqual(response.status_code, 200)
|
|
#
|
|
# response = self.client.get(self.user.profile.get_absolute_url())
|
|
# self.assertEqual(response.status_code, 404)
|
|
#
|
|
# self.user.profile.email_confirmed = True
|
|
# self.user.profile.save()
|
|
#
|
|
# response = self.client.post(reverse("registration:future_user_detail", args=(self.user.pk,)), data=dict(
|
|
# soge=True,
|
|
# credit_type=NoteSpecial.objects.get(special_type="Espèces").id,
|
|
# credit_amount=4000,
|
|
# last_name="TOTO",
|
|
# first_name="Toto",
|
|
# bank="Société générale",
|
|
# join_bde=True,
|
|
# join_kfet=True,
|
|
# ))
|
|
# self.assertRedirects(response, self.user.profile.get_absolute_url(), 302, 200)
|
|
# self.user.profile.refresh_from_db()
|
|
# self.assertTrue(self.user.profile.registration_valid)
|
|
# self.assertTrue(NoteUser.objects.filter(user=self.user).exists())
|
|
# self.assertTrue(Membership.objects.filter(club__name="BDE", user=self.user).exists())
|
|
# self.assertTrue(Membership.objects.filter(club__name="Kfet", user=self.user).exists())
|
|
# self.assertFalse(Membership.objects.filter(club__name__iexact="BDA", user=self.user).exists())
|
|
# self.assertTrue(SogeCredit.objects.filter(user=self.user).exists())
|
|
# self.assertEqual(Transaction.objects.filter(
|
|
# Q(source=self.user.note) | Q(destination=self.user.note)).count(), 3)
|
|
# self.assertFalse(Transaction.objects.filter(valid=True).exists())
|
|
#
|
|
# response = self.client.get(self.user.profile.get_absolute_url())
|
|
# self.assertEqual(response.status_code, 200)
|
|
|
|
def test_invalidate_registration(self):
|
|
"""
|
|
Try to invalidate (= delete) pre-registration.
|
|
"""
|
|
response = self.client.get(reverse("registration:future_user_invalidate", args=(self.user.pk,)))
|
|
self.assertRedirects(response, reverse("registration:future_user_list"), 302, 200)
|
|
self.assertFalse(User.objects.filter(pk=self.user.pk).exists())
|
|
|
|
def test_resend_email_validation_link(self):
|
|
"""
|
|
Resend email validation linK.
|
|
"""
|
|
response = self.client.get(reverse("registration:email_validation_resend", args=(self.user.pk,)))
|
|
self.assertRedirects(response, reverse("registration:future_user_detail", args=(self.user.pk,)), 302, 200)
|