Skip to content

Model Permissions (Organization Manager) Test Cases

Bases: OrganizationManagerModelPermissionView, OrganizationManagerModelPermissionAdd, OrganizationManagerModelPermissionChange, OrganizationManagerModelPermissionDelete

Tests for checking Organization Manager model permissions

This class includes all test cases for: Add, Change, Delete and View.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
240
241
242
243
244
245
246
247
248
249
250
251
class OrganizationManagerModelPermissions(
    OrganizationManagerModelPermissionView,
    OrganizationManagerModelPermissionAdd,
    OrganizationManagerModelPermissionChange,
    OrganizationManagerModelPermissionDelete
):
    """ Tests for checking Organization Manager model permissions

    This class includes all test cases for: Add, Change, Delete and View.
    """

    app_namespace: str = None

Attributes

different_organization_is_manager: object

User whom is organization Manager of different organization than object

url_name_view: str

url name of the model view to be tested

url_view_kwargs: dict = None

View URL kwargs for model being tested

user_is_organization_manager: object

User whom is organization Manager of the object

url_name_change: str

url name of the model view to be tested

url_change_kwargs: dict = None

View URL kwargs for model being tested

app_namespace: str = None

Functions

test_model_delete_different_organization_is_organization_manager_denied()

Check correct permission for delete

Attempt to delete as user from different organization whom is an organization Manager.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
207
208
209
210
211
212
213
214
215
216
217
218
219
220
def test_model_delete_different_organization_is_organization_manager_denied(self):
    """ Check correct permission for delete

    Attempt to delete as user from different organization whom is an organization Manager.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_delete, kwargs=self.url_delete_kwargs)


    client.force_login(self.different_organization_is_manager)
    response = client.delete(url, data=self.delete_data)

    assert response.status_code == 403

test_model_delete_has_no_permission_is_organization_manager()

Check correct permission for delete

Delete item as user who is an organization manager and has no permissions assigned. Object to be within same organization the user is a manager of.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
def test_model_delete_has_no_permission_is_organization_manager(self):
    """ Check correct permission for delete

    Delete item as user who is an organization manager and has no permissions assigned.
    Object to be within same organization the user is a manager of.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_delete, kwargs=self.url_delete_kwargs)


    client.force_login(self.user_is_organization_manager)
    response = client.delete(url, data=self.delete_data)

    assert response.status_code == 302 and response.url == self.url_delete_response

test_model_change_different_organization_is_organization_manager_denied()

Ensure permission view cant make change

Attempt to make change as user from different organization whom is an organization Manager.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
152
153
154
155
156
157
158
159
160
161
162
163
164
165
def test_model_change_different_organization_is_organization_manager_denied(self):
    """ Ensure permission view cant make change

    Attempt to make change as user from different organization whom is an organization Manager.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_change, kwargs=self.url_change_kwargs)


    client.force_login(self.different_organization_is_manager)
    response = client.post(url, data=self.change_data)

    assert response.status_code == 403

test_model_change_has_no_permission_is_organization_manager()

Check correct permission for change

Make change as user who is an organization manager and has no permissions assigned. Object to be within same organization the user is a manager of.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
def test_model_change_has_no_permission_is_organization_manager(self):
    """ Check correct permission for change

    Make change as user who is an organization manager and has no permissions assigned.
    Object to be within same organization the user is a manager of.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_change, kwargs=self.url_change_kwargs)


    client.force_login(self.user_is_organization_manager)
    response = client.post(url, data=self.change_data)

    assert response.status_code == 200

test_model_add_different_organization_is_organization_manager_denied()

Check correct permission for add

attempt to add as user from different organization whom is an organization Manager.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
def test_model_add_different_organization_is_organization_manager_denied(self):
    """ Check correct permission for add

    attempt to add as user from different organization whom is an organization Manager.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_add, kwargs=self.url_add_kwargs)


    client.force_login(self.different_organization_is_manager)
    response = client.post(url, data=self.add_data)

    assert response.status_code == 403

test_model_add_has_no_permission_is_organization_manager()

Check correct permission for add

Attempt to add as user who is an organization manager and has no permissions assigned. Object to be within same organization the user is a manager of.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
def test_model_add_has_no_permission_is_organization_manager(self):
    """ Check correct permission for add 

    Attempt to add as user who is an organization manager and has no permissions assigned.
    Object to be within same organization the user is a manager of.
    """

    client = Client()
    url = reverse(self.app_namespace + ':' + self.url_name_add, kwargs=self.url_add_kwargs)


    client.force_login(self.user_is_organization_manager)
    response = client.post(url, data=self.add_data)

    assert response.status_code == 200

test_model_view_different_organizaiton_is_organization_manager_denied()

Check correct permission for view

Attempt to view with user from different organization whom is an organization Manager.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
def test_model_view_different_organizaiton_is_organization_manager_denied(self):
    """ Check correct permission for view

    Attempt to view with user from different organization whom is an organization Manager.
    """

    client = Client()
    if self.app_namespace:

        url = reverse(self.app_namespace + ':' + self.url_name_view, kwargs=self.url_view_kwargs)

    else:

        url = reverse(self.url_name_view, kwargs=self.url_view_kwargs)


    client.force_login(self.different_organization_is_manager)
    response = client.get(url)

    assert response.status_code == 403

test_model_view_has_no_permission_is_organization_manager()

Confirm that an organization manager can view the model

Attempt to view as user who is an organization manager and has no permissions assigned. Object to be within same organization the user is a manager of.

Source code in app/access/tests/abstract/model_permissions_organization_manager.py 
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
def test_model_view_has_no_permission_is_organization_manager(self):
    """ Confirm that an organization manager can view the model 

    Attempt to view as user who is an organization manager and has no permissions assigned.
    Object to be within same organization the user is a manager of.
    """

    client = Client()
    if self.app_namespace:

        url = reverse(self.app_namespace + ':' + self.url_name_view, kwargs=self.url_view_kwargs)

    else:

        url = reverse(self.url_name_view, kwargs=self.url_view_kwargs)


    client.force_login(self.user_is_organization_manager)
    response = client.get(url)

    assert response.status_code == 200

About:

This page forms part of our Project Centurion ERP.

Page Metadata
Version: ToDo: place files short git commit here
Date Created: 2024-06-17
Date Edited: 2024-07-09

Contribution:

Would You like to contribute to our Centurion ERP project? You can assist in the following ways:

 

ToDo: Add the page list of contributors