Remnants/AdministrationItDepartmens
1
0
Fork 0
mirror of https://gitlab.com/MoonTestUse1/AdministrationItDepartmens.git synced 2025-08-14 00:25:46 +02:00
Code Activity

Fix database

Browse Source
This commit is contained in:
MoonTestUse1
2025-01-07 06:14:08 +06:00
parent 2bbadbd492
commit 304d2307da
3 changed files with 95 additions and 171 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
backend/tests/conftest.py
View File

@@ -12,6 +12,7 @@ from app.main import app
from app.dependencies import get_db from app.dependencies import get_db
from app.models.employee import Employee from app.models.employee import Employee
from app.utils.security import get_password_hash from app.utils.security import get_password_hash
from app.utils.jwt import create_and_save_token
# Mock Telegram notifications # Mock Telegram notifications
@pytest.fixture(autouse=True) @pytest.fixture(autouse=True)
@@ -94,3 +95,23 @@ def test_admin(db_session):
db_session.commit() db_session.commit()
db_session.refresh(admin) db_session.refresh(admin)
return admin return admin
@pytest.fixture
def employee_token(test_employee, db_session):
"""Create employee token"""
return create_and_save_token(test_employee.id, db_session)
@pytest.fixture
def admin_token(test_admin, db_session):
"""Create admin token"""
return create_and_save_token(test_admin.id, db_session)
@pytest.fixture
def employee_headers(employee_token):
"""Get employee headers"""
return {"Authorization": f"Bearer {employee_token}"}
@pytest.fixture
def admin_headers(admin_token):
"""Get admin headers"""
return {"Authorization": f"Bearer {admin_token}"}

114
backend/tests/test_employees.py
View File

@@ -1,19 +1,18 @@
"""Employee tests""" """Employee tests"""
import pytest
from fastapi.testclient import TestClient from fastapi.testclient import TestClient
from sqlalchemy.orm import Session
def test_create_employee(client: TestClient, admin_token: str): def test_create_employee(client: TestClient, admin_headers):
"""Test employee creation""" """Test create employee"""
response = client.post( response = client.post(
"/api/employees", "/api/employees/",
headers={"Authorization": f"Bearer {admin_token}"}, headers=admin_headers,
json={ json={
"first_name": "New", "first_name": "New",
"last_name": "Employee", "last_name": "Employee",
"department": "IT", "department": "IT",
"office": "103", "office": "Main",
"password": "newpass123", "password": "newpass123",
"is_active": True,
"is_admin": False "is_admin": False
} }
) )
@@ -21,111 +20,62 @@ def test_create_employee(client: TestClient, admin_token: str):
data = response.json() data = response.json()
assert data["first_name"] == "New" assert data["first_name"] == "New"
assert data["last_name"] == "Employee" assert data["last_name"] == "Employee"
assert data["department"] == "IT" assert "hashed_password" not in data
assert data["office"] == "103"
assert data["is_admin"] == False
def test_create_employee_unauthorized(client: TestClient): def test_create_employee_not_admin(client: TestClient, employee_headers):
"""Test employee creation without authorization""" """Test create employee without admin rights"""
response = client.post( response = client.post(
"/api/employees", "/api/employees/",
headers=employee_headers,
json={ json={
"first_name": "New", "first_name": "New",
"last_name": "Employee", "last_name": "Employee",
"department": "IT", "department": "IT",
"office": "103", "office": "Main",
"password": "newpass123",
"is_admin": False
}
)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_create_employee_not_admin(client: TestClient, employee_token: str):
"""Test employee creation by non-admin user"""
response = client.post(
"/api/employees",
headers={"Authorization": f"Bearer {employee_token}"},
json={
"first_name": "New",
"last_name": "Employee",
"department": "IT",
"office": "103",
"password": "newpass123", "password": "newpass123",
"is_active": True,
"is_admin": False "is_admin": False
} }
) )
assert response.status_code == 403 assert response.status_code == 403
assert response.json()["detail"] == "Not enough permissions"
def test_get_employees(client: TestClient, admin_token: str): def test_get_employees(client: TestClient, admin_headers):
"""Test getting all employees""" """Test get all employees"""
response = client.get( response = client.get("/api/employees/", headers=admin_headers)
"/api/employees",
headers={"Authorization": f"Bearer {admin_token}"}
)
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert isinstance(data, list) assert isinstance(data, list)
assert len(data) > 0 assert len(data) > 0
def test_get_employees_unauthorized(client: TestClient): def test_get_employees_not_admin(client: TestClient, employee_headers):
"""Test getting employees without authorization""" """Test get all employees without admin rights"""
response = client.get("/api/employees") response = client.get("/api/employees/", headers=employee_headers)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_get_employees_not_admin(client: TestClient, employee_token: str):
"""Test getting employees by non-admin user"""
response = client.get(
"/api/employees",
headers={"Authorization": f"Bearer {employee_token}"}
)
assert response.status_code == 403 assert response.status_code == 403
assert response.json()["detail"] == "Not enough permissions"
def test_get_me(client: TestClient, employee_token: str, test_employee: dict): def test_get_me(client: TestClient, employee_headers, test_employee):
"""Test getting current employee""" """Test get current employee"""
response = client.get( response = client.get("/api/employees/me", headers=employee_headers)
"/api/employees/me",
headers={"Authorization": f"Bearer {employee_token}"}
)
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert data["id"] == test_employee.id
assert data["first_name"] == test_employee.first_name assert data["first_name"] == test_employee.first_name
assert data["last_name"] == test_employee.last_name assert data["last_name"] == test_employee.last_name
assert data["department"] == test_employee.department
assert data["office"] == test_employee.office
def test_get_me_unauthorized(client: TestClient): def test_update_me(client: TestClient, employee_headers, test_employee):
"""Test getting current employee without authorization""" """Test update current employee"""
response = client.get("/api/employees/me")
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_update_me(client: TestClient, employee_token: str):
"""Test updating current employee"""
response = client.put( response = client.put(
"/api/employees/me", "/api/employees/me",
headers={"Authorization": f"Bearer {employee_token}"}, headers=employee_headers,
json={ json={
"first_name": "Updated",
"last_name": "User",
"department": "HR", "department": "HR",
"office": "104" "office": "Branch"
} }
) )
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert data["first_name"] == "Updated"
assert data["last_name"] == "User"
assert data["department"] == "HR" assert data["department"] == "HR"
assert data["office"] == "104" assert data["office"] == "Branch"
def test_update_me_unauthorized(client: TestClient):
"""Test updating current employee without authorization"""
response = client.put(
"/api/employees/me",
json={
"department": "HR",
"office": "104"
}
)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"

125
backend/tests/test_requests.py
View File

@@ -1,119 +1,72 @@
"""Request tests""" """Request tests"""
import pytest
from fastapi.testclient import TestClient from fastapi.testclient import TestClient
from sqlalchemy.orm import Session
def test_create_request(client: TestClient, employee_token: str): def test_create_request(client: TestClient, employee_headers):
"""Test request creation""" """Test create request"""
response = client.post( response = client.post(
"/api/requests", "/api/requests/",
headers={"Authorization": f"Bearer {employee_token}"}, headers=employee_headers,
json={ json={
"request_type": "equipment", "request_type": "HARDWARE",
"description": "Need a new laptop", "description": "Need new laptop",
"priority": "medium" "priority": "HIGH"
} }
) )
assert response.status_code == 201 assert response.status_code == 201
data = response.json() data = response.json()
assert data["request_type"] == "equipment" assert data["request_type"] == "HARDWARE"
assert data["description"] == "Need a new laptop" assert data["description"] == "Need new laptop"
assert data["priority"] == "medium" assert data["priority"] == "HIGH"
assert data["status"] == "new" assert data["status"] == "NEW"
def test_create_request_unauthorized(client: TestClient): def test_get_my_requests(client: TestClient, employee_headers):
"""Test request creation without authorization""" """Test get my requests"""
response = client.post( response = client.get("/api/requests/my", headers=employee_headers)
"/api/requests",
json={
"request_type": "equipment",
"description": "Need a new laptop",
"priority": "medium"
}
)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_get_my_requests(client: TestClient, employee_token: str):
"""Test getting employee's requests"""
response = client.get(
"/api/requests/my",
headers={"Authorization": f"Bearer {employee_token}"}
)
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert isinstance(data, list) assert isinstance(data, list)
def test_get_my_requests_unauthorized(client: TestClient): def test_get_all_requests_admin(client: TestClient, admin_headers):
"""Test getting employee's requests without authorization""" """Test get all requests as admin"""
response = client.get("/api/requests/my") response = client.get("/api/requests/", headers=admin_headers)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_get_all_requests_admin(client: TestClient, admin_token: str):
"""Test getting all requests by admin"""
response = client.get(
"/api/requests/admin",
headers={"Authorization": f"Bearer {admin_token}"}
)
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert isinstance(data, list) assert isinstance(data, list)
def test_get_all_requests_unauthorized(client: TestClient): def test_get_all_requests_not_admin(client: TestClient, employee_headers):
"""Test getting all requests without authorization""" """Test get all requests without admin rights"""
response = client.get("/api/requests/admin") response = client.get("/api/requests/", headers=employee_headers)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"
def test_get_all_requests_not_admin(client: TestClient, employee_token: str):
"""Test getting all requests by non-admin user"""
response = client.get(
"/api/requests/admin",
headers={"Authorization": f"Bearer {employee_token}"}
)
assert response.status_code == 403 assert response.status_code == 403
assert response.json()["detail"] == "Not enough permissions"
def test_update_request_status_admin(client: TestClient, admin_token: str): def test_update_request_status_admin(client: TestClient, admin_headers):
"""Test updating request status by admin""" """Test update request status as admin"""
# Сначала создаем запрос # Сначала создаем запрос
response = client.post( create_response = client.post(
"/api/requests", "/api/requests/",
headers={"Authorization": f"Bearer {admin_token}"}, headers=admin_headers,
json={ json={
"request_type": "equipment", "request_type": "SOFTWARE",
"description": "Need a new laptop", "description": "Need new IDE",
"priority": "medium" "priority": "MEDIUM"
} }
) )
request_id = response.json()["id"] request_id = create_response.json()["id"]
# Обновляем статус # Затем обновляем его статус
response = client.patch( response = client.put(
f"/api/requests/{request_id}/status", f"/api/requests/{request_id}/status",
headers={"Authorization": f"Bearer {admin_token}"}, headers=admin_headers,
json={"status": "in_progress"} json={"status": "IN_PROGRESS"}
) )
assert response.status_code == 200 assert response.status_code == 200
data = response.json() data = response.json()
assert data["status"] == "in_progress" assert data["status"] == "IN_PROGRESS"
def test_update_request_status_not_admin(client: TestClient, employee_token: str): def test_update_request_status_not_admin(client: TestClient, employee_headers):
"""Test updating request status by non-admin user""" """Test update request status without admin rights"""
response = client.patch( response = client.put(
"/api/requests/1/status", "/api/requests/1/status",
headers={"Authorization": f"Bearer {employee_token}"}, headers=employee_headers,
json={"status": "in_progress"} json={"status": "IN_PROGRESS"}
) )
assert response.status_code == 403 assert response.status_code == 403
assert response.json()["detail"] == "Not enough permissions"
def test_update_request_status_unauthorized(client: TestClient):
"""Test updating request status without authorization"""
response = client.patch(
"/api/requests/1/status",
json={"status": "in_progress"}
)
assert response.status_code == 401
assert response.json()["detail"] == "Not authenticated"