richard
/
doccano
mirror of https://github.com/doccano/doccano.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
467 Commits
14 Branches
32 Tags
77 MiB
Tree: 463129c7e6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '463129c7e6'
${ noResults }
doccano/app/server/tests/test_api.py

615 lines
34 KiB
Raw Normal View History

Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Add document filtering and ordering Corresponding issue: #20
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add project API
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Refactor api and add test cases
5 years ago
Aggregate API tests
5 years ago
Add entity api
5 years ago
Aggregate API tests
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add entity api
5 years ago
Add permission to EntityDetailAPI To disallow project member to update/delete entities labeled by another member
5 years ago
Add document filtering and ordering Corresponding issue: #20
5 years ago
Add ordering documents by most/least recently updated annotation Corresponding issue: #20
5 years ago
Add document filtering and ordering Corresponding issue: #20
5 years ago
Add filter document by label
5 years ago
Add ordering documents by most/least recently updated annotation Corresponding issue: #20
5 years ago
Add filter document by label
5 years ago
  1. from rest_framework import status
  2. from rest_framework.reverse import reverse
  3. from rest_framework.test import APITestCase
  4. from mixer.backend.django import mixer
  5. from ..models import User, SequenceAnnotation, Document
  8. class TestProjectListAPI(APITestCase):
  10. @classmethod
  11. def setUpTestData(cls):
  12. cls.main_project_member_name = 'project_member_name'
  13. cls.main_project_member_pass = 'project_member_pass'
  14. cls.sub_project_member_name = 'sub_project_member_name'
  15. cls.sub_project_member_pass = 'sub_project_member_pass'
  16. cls.super_user_name = 'super_user_name'
  17. cls.super_user_pass = 'super_user_pass'
  18. main_project_member = User.objects.create_user(username=cls.main_project_member_name,
  19. password=cls.main_project_member_pass)
  20. sub_project_member = User.objects.create_user(username=cls.sub_project_member_name,
  21. password=cls.sub_project_member_pass)
  22. # Todo: change super_user to project_admin.
  23. super_user = User.objects.create_superuser(username=cls.super_user_name,
  24. password=cls.super_user_pass,
  25. email='fizz@buzz.com')
  27. cls.main_project = mixer.blend('server.Project', users=[main_project_member])
  28. cls.sub_project = mixer.blend('server.Project', users=[sub_project_member])
  30. cls.url = reverse(viewname='project_list')
  31. cls.data = {'name': 'example', 'project_type': 'Seq2seq',
  32. 'description': 'example', 'guideline': 'example'}
  33. cls.num_project = main_project_member.projects.count()
  35. def test_returns_main_project_to_main_project_member(self):
  36. self.client.login(username=self.main_project_member_name,
  37. password=self.main_project_member_pass)
  38. response = self.client.get(self.url, format='json')
  39. project = response.data[0]
  40. num_project = len(response.data)
  41. self.assertEqual(num_project, self.num_project)
  42. self.assertEqual(project['id'], self.main_project.id)
  44. def test_do_not_return_main_project_to_sub_project_member(self):
  45. self.client.login(username=self.sub_project_member_name,
  46. password=self.sub_project_member_pass)
  47. response = self.client.get(self.url, format='json')
  48. project = response.data[0]
  49. num_project = len(response.data)
  50. self.assertEqual(num_project, self.num_project)
  51. self.assertNotEqual(project['id'], self.main_project.id)
  53. def test_allows_superuser_to_create_project(self):
  54. self.client.login(username=self.super_user_name,
  55. password=self.super_user_pass)
  56. response = self.client.post(self.url, format='json', data=self.data)
  57. self.assertEqual(response.status_code, status.HTTP_201_CREATED)
  59. def test_disallows_project_member_to_create_project(self):
  60. self.client.login(username=self.main_project_member_name,
  61. password=self.main_project_member_pass)
  62. response = self.client.post(self.url, format='json', data=self.data)
  63. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  66. class TestProjectDetailAPI(APITestCase):
  68. @classmethod
  69. def setUpTestData(cls):
  70. cls.project_member_name = 'project_member_name'
  71. cls.project_member_pass = 'project_member_pass'
  72. cls.non_project_member_name = 'non_project_member_name'
  73. cls.non_project_member_pass = 'non_project_member_pass'
  74. cls.super_user_name = 'super_user_name'
  75. cls.super_user_pass = 'super_user_pass'
  76. cls.project_member = User.objects.create_user(username=cls.project_member_name,
  77. password=cls.project_member_pass)
  78. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  79. password=cls.non_project_member_pass)
  80. # Todo: change super_user to project_admin.
  81. super_user = User.objects.create_superuser(username=cls.super_user_name,
  82. password=cls.super_user_pass,
  83. email='fizz@buzz.com')
  84. cls.main_project = mixer.blend('server.Project', users=[cls.project_member, super_user])
  85. sub_project = mixer.blend('server.Project', users=[non_project_member])
  86. cls.url = reverse(viewname='project_detail', args=[cls.main_project.id])
  87. cls.data = {'description': 'lorem'}
  89. def test_returns_main_project_detail_to_main_project_member(self):
  90. self.client.login(username=self.project_member_name,
  91. password=self.project_member_pass)
  92. response = self.client.get(self.url, format='json')
  93. self.assertEqual(response.data['id'], self.main_project.id)
  95. def test_do_not_return_main_project_to_sub_project_member(self):
  96. self.client.login(username=self.non_project_member_name,
  97. password=self.non_project_member_pass)
  98. response = self.client.get(self.url, format='json')
  99. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  101. def test_allows_superuser_to_update_project(self):
  102. self.client.login(username=self.super_user_name,
  103. password=self.super_user_pass)
  104. response = self.client.patch(self.url, format='json', data=self.data)
  105. self.assertEqual(response.data['description'], self.data['description'])
  107. def test_disallows_project_member_to_update_project(self):
  108. self.client.login(username=self.project_member_name,
  109. password=self.project_member_pass)
  110. response = self.client.patch(self.url, format='json', data=self.data)
  111. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  113. def test_allows_superuser_to_delete_project(self):
  114. self.client.login(username=self.super_user_name,
  115. password=self.super_user_pass)
  116. response = self.client.delete(self.url, format='json')
  117. self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
  119. def test_disallows_project_member_to_delete_project(self):
  120. self.client.login(username=self.project_member_name,
  121. password=self.project_member_pass)
  122. response = self.client.delete(self.url, format='json')
  123. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  126. class TestLabelListAPI(APITestCase):
  128. @classmethod
  129. def setUpTestData(cls):
  130. cls.project_member_name = 'project_member_name'
  131. cls.project_member_pass = 'project_member_pass'
  132. cls.non_project_member_name = 'non_project_member_name'
  133. cls.non_project_member_pass = 'non_project_member_pass'
  134. cls.super_user_name = 'super_user_name'
  135. cls.super_user_pass = 'super_user_pass'
  136. project_member = User.objects.create_user(username=cls.project_member_name,
  137. password=cls.project_member_pass)
  138. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  139. password=cls.non_project_member_pass)
  140. # Todo: change super_user to project_admin.
  141. super_user = User.objects.create_superuser(username=cls.super_user_name,
  142. password=cls.super_user_pass,
  143. email='fizz@buzz.com')
  144. cls.main_project = mixer.blend('server.Project', users=[project_member, super_user])
  145. cls.main_project_label = mixer.blend('server.Label', project=cls.main_project)
  147. sub_project = mixer.blend('server.Project', users=[non_project_member])
  148. mixer.blend('server.Label', project=sub_project)
  149. cls.url = reverse(viewname='label_list', args=[cls.main_project.id])
  150. cls.data = {'text': 'example'}
  152. def test_returns_labels_to_project_member(self):
  153. self.client.login(username=self.project_member_name,
  154. password=self.project_member_pass)
  155. response = self.client.get(self.url, format='json')
  156. self.assertEqual(response.status_code, status.HTTP_200_OK)
  158. def test_do_not_return_labels_to_non_project_member(self):
  159. self.client.login(username=self.non_project_member_name,
  160. password=self.non_project_member_pass)
  161. response = self.client.get(self.url, format='json')
  162. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  164. def test_do_not_return_labels_of_other_projects(self):
  165. self.client.login(username=self.project_member_name,
  166. password=self.project_member_pass)
  167. response = self.client.get(self.url, format='json')
  168. label = response.data[0]
  169. num_labels = len(response.data)
  170. self.assertEqual(num_labels, len(self.main_project.labels.all()))
  171. self.assertEqual(label['id'], self.main_project_label.id)
  173. def test_allows_superuser_to_create_label(self):
  174. self.client.login(username=self.super_user_name,
  175. password=self.super_user_pass)
  176. response = self.client.post(self.url, format='json', data=self.data)
  177. self.assertEqual(response.status_code, status.HTTP_201_CREATED)
  179. def test_disallows_project_member_to_create_label(self):
  180. self.client.login(username=self.project_member_name,
  181. password=self.project_member_pass)
  182. response = self.client.post(self.url, format='json', data=self.data)
  183. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  186. class TestLabelDetailAPI(APITestCase):
  188. @classmethod
  189. def setUpTestData(cls):
  190. cls.project_member_name = 'project_member_name'
  191. cls.project_member_pass = 'project_member_pass'
  192. cls.non_project_member_name = 'non_project_member_name'
  193. cls.non_project_member_pass = 'non_project_member_pass'
  194. cls.super_user_name = 'super_user_name'
  195. cls.super_user_pass = 'super_user_pass'
  196. project_member = User.objects.create_user(username=cls.project_member_name,
  197. password=cls.project_member_pass)
  198. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  199. password=cls.non_project_member_pass)
  200. # Todo: change super_user to project_admin.
  201. super_user = User.objects.create_superuser(username=cls.super_user_name,
  202. password=cls.super_user_pass,
  203. email='fizz@buzz.com')
  204. project = mixer.blend('server.Project', users=[project_member, super_user])
  205. cls.label = mixer.blend('server.Label', project=project)
  206. cls.url = reverse(viewname='label_detail', args=[project.id, cls.label.id])
  207. cls.data = {'text': 'example'}
  209. def test_returns_label_to_project_member(self):
  210. self.client.login(username=self.project_member_name,
  211. password=self.project_member_pass)
  212. response = self.client.get(self.url, format='json')
  213. self.assertEqual(response.data['id'], self.label.id)
  215. def test_do_not_return_label_to_non_project_member(self):
  216. self.client.login(username=self.non_project_member_name,
  217. password=self.non_project_member_pass)
  218. response = self.client.get(self.url, format='json')
  219. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  221. def test_allows_superuser_to_update_label(self):
  222. self.client.login(username=self.super_user_name,
  223. password=self.super_user_pass)
  224. response = self.client.patch(self.url, format='json', data=self.data)
  225. self.assertEqual(response.data['text'], self.data['text'])
  227. def test_disallows_project_member_to_update_label(self):
  228. self.client.login(username=self.project_member_name,
  229. password=self.project_member_pass)
  230. response = self.client.patch(self.url, format='json', data=self.data)
  231. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  233. def test_allows_superuser_to_delete_label(self):
  234. self.client.login(username=self.super_user_name,
  235. password=self.super_user_pass)
  236. response = self.client.delete(self.url, format='json')
  237. self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
  239. def test_disallows_project_member_to_delete_label(self):
  240. self.client.login(username=self.project_member_name,
  241. password=self.project_member_pass)
  242. response = self.client.delete(self.url, format='json')
  243. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  246. class TestDocumentListAPI(APITestCase):
  248. @classmethod
  249. def setUpTestData(cls):
  250. cls.project_member_name = 'project_member_name'
  251. cls.project_member_pass = 'project_member_pass'
  252. cls.non_project_member_name = 'non_project_member_name'
  253. cls.non_project_member_pass = 'non_project_member_pass'
  254. cls.super_user_name = 'super_user_name'
  255. cls.super_user_pass = 'super_user_pass'
  256. project_member = User.objects.create_user(username=cls.project_member_name,
  257. password=cls.project_member_pass)
  258. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  259. password=cls.non_project_member_pass)
  260. # Todo: change super_user to project_admin.
  261. super_user = User.objects.create_superuser(username=cls.super_user_name,
  262. password=cls.super_user_pass,
  263. email='fizz@buzz.com')
  265. cls.main_project = mixer.blend('server.Project', users=[project_member, super_user])
  266. mixer.blend('server.Document', project=cls.main_project)
  268. sub_project = mixer.blend('server.Project', users=[non_project_member])
  269. mixer.blend('server.Document', project=sub_project)
  270. cls.url = reverse(viewname='doc_list', args=[cls.main_project.id])
  271. cls.data = {'text': 'example'}
  273. def test_returns_docs_to_project_member(self):
  274. self.client.login(username=self.project_member_name,
  275. password=self.project_member_pass)
  276. response = self.client.get(self.url, format='json')
  277. self.assertEqual(response.status_code, status.HTTP_200_OK)
  279. def test_do_not_return_docs_to_non_project_member(self):
  280. self.client.login(username=self.non_project_member_name,
  281. password=self.non_project_member_pass)
  282. response = self.client.get(self.url, format='json')
  283. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  285. def test_do_not_return_docs_of_other_projects(self):
  286. self.client.login(username=self.project_member_name,
  287. password=self.project_member_pass)
  288. response = self.client.get(self.url, format='json')
  289. self.assertEqual(response.data['count'], self.main_project.documents.count())
  291. def test_allows_superuser_to_create_doc(self):
  292. self.client.login(username=self.super_user_name,
  293. password=self.super_user_pass)
  294. response = self.client.post(self.url, format='json', data=self.data)
  295. self.assertEqual(response.status_code, status.HTTP_201_CREATED)
  297. def test_disallows_project_member_to_create_doc(self):
  298. self.client.login(username=self.project_member_name,
  299. password=self.project_member_pass)
  300. response = self.client.post(self.url, format='json', data=self.data)
  301. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  304. class TestDocumentDetailAPI(APITestCase):
  306. @classmethod
  307. def setUpTestData(cls):
  308. cls.project_member_name = 'project_member_name'
  309. cls.project_member_pass = 'project_member_pass'
  310. cls.non_project_member_name = 'non_project_member_name'
  311. cls.non_project_member_pass = 'non_project_member_pass'
  312. cls.super_user_name = 'super_user_name'
  313. cls.super_user_pass = 'super_user_pass'
  314. project_member = User.objects.create_user(username=cls.project_member_name,
  315. password=cls.project_member_pass)
  316. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  317. password=cls.non_project_member_pass)
  318. # Todo: change super_user to project_admin.
  319. super_user = User.objects.create_superuser(username=cls.super_user_name,
  320. password=cls.super_user_pass,
  321. email='fizz@buzz.com')
  322. project = mixer.blend('server.Project', users=[project_member, super_user])
  323. cls.doc = mixer.blend('server.Document', project=project)
  324. cls.url = reverse(viewname='doc_detail', args=[project.id, cls.doc.id])
  325. cls.data = {'text': 'example'}
  327. def test_returns_doc_to_project_member(self):
  328. self.client.login(username=self.project_member_name,
  329. password=self.project_member_pass)
  330. response = self.client.get(self.url, format='json')
  331. self.assertEqual(response.data['id'], self.doc.id)
  333. def test_do_not_return_doc_to_non_project_member(self):
  334. self.client.login(username=self.non_project_member_name,
  335. password=self.non_project_member_pass)
  336. response = self.client.get(self.url, format='json')
  337. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  339. def test_allows_superuser_to_update_doc(self):
  340. self.client.login(username=self.super_user_name,
  341. password=self.super_user_pass)
  342. response = self.client.patch(self.url, format='json', data=self.data)
  343. self.assertEqual(response.data['text'], self.data['text'])
  345. def test_disallows_project_member_to_update_doc(self):
  346. self.client.login(username=self.project_member_name,
  347. password=self.project_member_pass)
  348. response = self.client.patch(self.url, format='json', data=self.data)
  349. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  351. def test_allows_superuser_to_delete_doc(self):
  352. self.client.login(username=self.super_user_name,
  353. password=self.super_user_pass)
  354. response = self.client.delete(self.url, format='json')
  355. self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
  357. def test_disallows_project_member_to_delete_doc(self):
  358. self.client.login(username=self.project_member_name,
  359. password=self.project_member_pass)
  360. response = self.client.delete(self.url, format='json')
  361. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  364. class TestEntityListAPI(APITestCase):
  366. @classmethod
  367. def setUpTestData(cls):
  368. cls.project_member_name = 'project_member_name'
  369. cls.project_member_pass = 'project_member_pass'
  370. cls.another_project_member_name = 'another_project_member_name'
  371. cls.another_project_member_pass = 'another_project_member_pass'
  372. cls.non_project_member_name = 'non_project_member_name'
  373. cls.non_project_member_pass = 'non_project_member_pass'
  374. project_member = User.objects.create_user(username=cls.project_member_name,
  375. password=cls.project_member_pass)
  376. another_project_member = User.objects.create_user(username=cls.another_project_member_name,
  377. password=cls.another_project_member_pass)
  378. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  379. password=cls.non_project_member_pass)
  381. main_project = mixer.blend('server.Project', users=[project_member, another_project_member])
  382. main_project_label = mixer.blend('server.Label', project=main_project)
  383. main_project_doc = mixer.blend('server.Document', project=main_project)
  384. mixer.blend('server.SequenceAnnotation', document=main_project_doc, user=project_member)
  385. mixer.blend('server.SequenceAnnotation', document=main_project_doc, user=another_project_member)
  387. sub_project = mixer.blend('server.Project', users=[non_project_member])
  388. sub_project_doc = mixer.blend('server.Document', project=sub_project)
  389. mixer.blend('server.SequenceAnnotation', document=sub_project_doc)
  391. cls.url = reverse(viewname='entity_list', args=[main_project.id, main_project_doc.id])
  392. cls.post_data = {'start_offset': 0, 'end_offset': 1, 'label': main_project_label.id}
  393. cls.num_entity_of_project_member = SequenceAnnotation.objects.filter(document=main_project_doc,
  394. user=project_member).count()
  396. def test_returns_entities_to_project_member(self):
  397. self.client.login(username=self.project_member_name,
  398. password=self.project_member_pass)
  399. response = self.client.get(self.url, format='json')
  400. self.assertEqual(response.status_code, status.HTTP_200_OK)
  402. def test_do_not_return_entities_to_non_project_member(self):
  403. self.client.login(username=self.non_project_member_name,
  404. password=self.non_project_member_pass)
  405. response = self.client.get(self.url, format='json')
  406. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  408. def test_do_not_return_entities_of_another_project_member(self):
  409. self.client.login(username=self.project_member_name,
  410. password=self.project_member_pass)
  411. response = self.client.get(self.url, format='json')
  412. self.assertEqual(len(response.data), self.num_entity_of_project_member)
  414. def test_allows_project_member_to_create_entity(self):
  415. self.client.login(username=self.project_member_name,
  416. password=self.project_member_pass)
  417. response = self.client.post(self.url, format='json', data=self.post_data)
  418. self.assertEqual(response.status_code, status.HTTP_201_CREATED)
  420. def test_disallows_non_project_member_to_create_entity(self):
  421. self.client.login(username=self.non_project_member_name,
  422. password=self.non_project_member_pass)
  423. response = self.client.post(self.url, format='json', data=self.post_data)
  424. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  427. class TestEntityDetailAPI(APITestCase):
  429. @classmethod
  430. def setUpTestData(cls):
  431. cls.project_member_name = 'project_member_name'
  432. cls.project_member_pass = 'project_member_pass'
  433. cls.another_project_member_name = 'another_project_member_name'
  434. cls.another_project_member_pass = 'another_project_member_pass'
  435. cls.non_project_member_name = 'non_project_member_name'
  436. cls.non_project_member_pass = 'non_project_member_pass'
  437. project_member = User.objects.create_user(username=cls.project_member_name,
  438. password=cls.project_member_pass)
  439. another_project_member = User.objects.create_user(username=cls.another_project_member_name,
  440. password=cls.another_project_member_pass)
  441. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  442. password=cls.non_project_member_pass)
  444. main_project = mixer.blend('server.Project', users=[project_member, another_project_member])
  445. main_project_doc = mixer.blend('server.Document', project=main_project)
  446. main_project_entity = mixer.blend('server.SequenceAnnotation',
  447. document=main_project_doc, user=project_member)
  448. another_entity = mixer.blend('server.SequenceAnnotation',
  449. document=main_project_doc, user=another_project_member)
  451. sub_project = mixer.blend('server.Project', users=[non_project_member])
  452. sub_project_doc = mixer.blend('server.Document', project=sub_project)
  453. mixer.blend('server.SequenceAnnotation', document=sub_project_doc)
  455. cls.url = reverse(viewname='entity_detail', args=[main_project.id,
  456. main_project_doc.id,
  457. main_project_entity.id])
  458. cls.another_url = reverse(viewname='entity_detail', args=[main_project.id,
  459. main_project_doc.id,
  460. another_entity.id])
  461. cls.post_data = {'start_offset': 0, 'end_offset': 10}
  463. def test_returns_entity_to_project_member(self):
  464. self.client.login(username=self.project_member_name,
  465. password=self.project_member_pass)
  466. response = self.client.get(self.url, format='json')
  467. self.assertEqual(response.status_code, status.HTTP_200_OK)
  469. def test_do_not_return_entity_to_non_project_member(self):
  470. self.client.login(username=self.non_project_member_name,
  471. password=self.non_project_member_pass)
  472. response = self.client.get(self.url, format='json')
  473. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  475. def test_do_not_return_entity_by_another_project_member(self):
  476. self.client.login(username=self.project_member_name,
  477. password=self.project_member_pass)
  478. response = self.client.get(self.another_url, format='json')
  479. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  481. def test_allows_project_member_to_update_entity(self):
  482. self.client.login(username=self.project_member_name,
  483. password=self.project_member_pass)
  484. response = self.client.patch(self.url, format='json', data=self.post_data)
  485. self.assertEqual(response.status_code, status.HTTP_200_OK)
  487. def test_disallows_non_project_member_to_update_entity(self):
  488. self.client.login(username=self.non_project_member_name,
  489. password=self.non_project_member_pass)
  490. response = self.client.patch(self.url, format='json', data=self.post_data)
  491. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  493. def test_disallows_project_member_to_update_entity_of_another_member(self):
  494. self.client.login(username=self.project_member_name,
  495. password=self.project_member_pass)
  496. response = self.client.patch(self.another_url, format='json', data=self.post_data)
  497. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  499. def test_allows_project_member_to_delete_entity(self):
  500. self.client.login(username=self.project_member_name,
  501. password=self.project_member_pass)
  502. response = self.client.delete(self.url, format='json')
  503. self.assertEqual(response.status_code, status.HTTP_204_NO_CONTENT)
  505. def test_disallows_project_member_to_delete_entity(self):
  506. self.client.login(username=self.non_project_member_name,
  507. password=self.non_project_member_pass)
  508. response = self.client.delete(self.url, format='json')
  509. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  511. def test_disallows_project_member_to_delete_entity_of_another_member(self):
  512. self.client.login(username=self.project_member_name,
  513. password=self.project_member_pass)
  514. response = self.client.delete(self.another_url, format='json', data=self.post_data)
  515. self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
  518. class TestSearch(APITestCase):
  520. @classmethod
  521. def setUpTestData(cls):
  522. cls.project_member_name = 'project_member_name'
  523. cls.project_member_pass = 'project_member_pass'
  524. cls.non_project_member_name = 'non_project_member_name'
  525. cls.non_project_member_pass = 'non_project_member_pass'
  526. project_member = User.objects.create_user(username=cls.project_member_name,
  527. password=cls.project_member_pass)
  528. non_project_member = User.objects.create_user(username=cls.non_project_member_name,
  529. password=cls.non_project_member_pass)
  531. cls.main_project = mixer.blend('server.Project', users=[project_member])
  532. cls.search_term = 'example'
  533. doc1 = mixer.blend('server.Document', text=cls.search_term, project=cls.main_project)
  534. doc2 = mixer.blend('server.Document', text='Lorem', project=cls.main_project)
  535. label1 = mixer.blend('server.Label', project=cls.main_project)
  536. label2 = mixer.blend('server.Label', project=cls.main_project)
  537. mixer.blend('server.SequenceAnnotation', document=doc1, user=project_member, label=label1)
  538. mixer.blend('server.SequenceAnnotation', document=doc2, user=project_member, label=label2)
  540. sub_project = mixer.blend('server.Project', users=[non_project_member])
  541. mixer.blend('server.Document', text=cls.search_term, project=sub_project)
  542. cls.url = reverse(viewname='doc_list', args=[cls.main_project.id])
  543. cls.data = {'q': cls.search_term}
  545. def test_can_filter_doc_by_term(self):
  546. self.client.login(username=self.project_member_name,
  547. password=self.project_member_pass)
  548. response = self.client.get(self.url, format='json', data=self.data)
  549. count = Document.objects.filter(text__contains=self.search_term,
  550. project=self.main_project).count()
  551. self.assertEqual(response.data['count'], count)
  553. def test_can_order_doc_by_created_at_ascending(self):
  554. params = {'ordering': 'created_at'}
  555. self.client.login(username=self.project_member_name,
  556. password=self.project_member_pass)
  557. response = self.client.get(self.url, format='json', data=params)
  558. docs = Document.objects.filter(project=self.main_project).order_by('created_at').values()
  559. for d1, d2 in zip(response.data['results'], docs):
  560. self.assertEqual(d1['id'], d2['id'])
  562. def test_can_order_doc_by_created_at_descending(self):
  563. params = {'ordering': '-created_at'}
  564. self.client.login(username=self.project_member_name,
  565. password=self.project_member_pass)
  566. response = self.client.get(self.url, format='json', data=params)
  567. docs = Document.objects.filter(project=self.main_project).order_by('-created_at').values()
  568. for d1, d2 in zip(response.data['results'], docs):
  569. self.assertEqual(d1['id'], d2['id'])
  571. def test_can_order_doc_by_annotation_updated_at_ascending(self):
  572. params = {'ordering': 'seq_annotations__updated_at'}
  573. self.client.login(username=self.project_member_name,
  574. password=self.project_member_pass)
  575. response = self.client.get(self.url, format='json', data=params)
  576. docs = Document.objects.filter(project=self.main_project).order_by('seq_annotations__updated_at').values()
  577. for d1, d2 in zip(response.data['results'], docs):
  578. self.assertEqual(d1['id'], d2['id'])
  580. def test_can_order_doc_by_annotation_updated_at_descending(self):
  581. params = {'ordering': '-seq_annotations__updated_at'}
  582. self.client.login(username=self.project_member_name,
  583. password=self.project_member_pass)
  584. response = self.client.get(self.url, format='json', data=params)
  585. docs = Document.objects.filter(project=self.main_project).order_by('-seq_annotations__updated_at').values()
  586. for d1, d2 in zip(response.data['results'], docs):
  587. self.assertEqual(d1['id'], d2['id'])
  590. class TestFilter(APITestCase):
  592. @classmethod
  593. def setUpTestData(cls):
  594. cls.project_member_name = 'project_member_name'
  595. cls.project_member_pass = 'project_member_pass'
  596. project_member = User.objects.create_user(username=cls.project_member_name,
  597. password=cls.project_member_pass)
  598. cls.main_project = mixer.blend('server.Project', users=[project_member])
  599. cls.label1 = mixer.blend('server.Label', project=cls.main_project)
  600. cls.label2 = mixer.blend('server.Label', project=cls.main_project)
  601. doc1 = mixer.blend('server.Document', project=cls.main_project)
  602. doc2 = mixer.blend('server.Document', project=cls.main_project)
  603. mixer.blend('server.SequenceAnnotation', document=doc1, user=project_member, label=cls.label1)
  604. mixer.blend('server.SequenceAnnotation', document=doc2, user=project_member, label=cls.label2)
  605. cls.url = reverse(viewname='doc_list', args=[cls.main_project.id])
  606. cls.params = {'seq_annotations__label__id': cls.label1.id}
  608. def test_can_filter_by_label(self):
  609. self.client.login(username=self.project_member_name,
  610. password=self.project_member_pass)
  611. response = self.client.get(self.url, format='json', data=self.params)
  612. docs = Document.objects.filter(project=self.main_project,
  613. seq_annotations__label__id=self.label1.id).values()
  614. for d1, d2 in zip(response.data['results'], docs):
  615. self.assertEqual(d1['id'], d2['id'])