P1iFdZddlZddlZddlmZmZddlmZddlm Z ddl m Z ddl m Z ddlmZdd lmZmZddlZej(j+d d ej(j+d d ddlmZddlmZddlmZGddeZGddeZGddeZGddeZGddeZ GddeZ!GddeZ"e#dk(rddl$Z$e$jJyy) z Comprehensive unit tests for the new temporary user creation endpoint. Tests creation without parameters, with parameters, security restrictions, and temp user behaviors like logout, redirects, and migration. N)TestCaseClient) APIClient)status)reverse)get_user_model UntypedToken) InvalidToken TokenErrorDJANGO_SETTINGS_MODULEziching.settings DJANGO_ENV development)User) UserProfile)PersonceZdZdZdZy)TempUserCreateEndpointTestCasez9Base test case for temporary user creation endpoint testsct|_|jj}t t |dd}d||_tjj|j d|dddd |_ d d d d ddd|_ y)zSet up test dataiN99regularz @example.com testpass123Regularrphoneemailpassword first_name last_name Test UserM 1990-01-01z14:30:00Beijingz Asia/Shanghai)namegender birth_date birth_time birth_citytimezone) rclient __class____name__strhash test_phonerobjects create_user regular_uservalid_profile_data)self class_name phone_suffixs Y/home/cursorai/projects/iching/iching/tests/../../tests/test_temp_user_create_endpoint.pysetUpz$TempUserCreateEndpointTestCase.setUpsk ^^,, 4 +,RS1 |n-!LL44//L>6"  5  &$#' # N)r, __module__ __qualname____doc__r8r9r7rrs C r9rc(eZdZdZdZdZdZdZy)TempUserCreateBasicTestsz7Test basic functionality of temp user creation endpointcZtjjdj}|j |d|j j tdid}|j |jtj|j}gd}|D]}|j||d||j|d |j|d t|j |d d tjj!|d  }|j|j"|j|j$j'dt(jj|j+}|j-|y)z3Test creating temporary user without any parametersT)is_temporary_userrapi:temp_user_createjsonformat)user_idaccessrefresh is_temporarymessage expires_inzMissing field: rIrFrJz#Temporary user created successfullyidtemp_userN)rr0filtercount assertEqualr*postr status_coderHTTP_201_CREATEDrCassertIn assertTrueassertIsInstanceintgetrAr startswithrfirstassertIsNotNone)r4temp_users_beforeresponse response_datarequired_fieldsfield temp_userprofiles r7#test_create_temp_user_no_parameterszsm!LL//$/GMMO *A.;;## * + $  --v/F/FG  d$E MM%/%0I J%  n56 mI6< y13XYLL$$ i(@$A   334  227;<%%,,),<BBD W%r9c|jjtd|jd}|j |j t j|j}tjj|d}|j|jtjj|j!}|j#||jdj%dd }|j |j&|d t)|d kDr |j |j*|d y y ) z:Test creating temporary user with valid profile parametersrBrCrDrFrLrOr$ rN)r*rTrr3rSrUrrVrCrr0r[rXrArrQr]r^splitrlenr)r4r`rardre name_partss r7+test_create_temp_user_with_valid_parameterszDTempUserCreateBasicTests.test_create_temp_user_with_valid_parametersbs;;## * +  # #$  --v/F/FG  LL$$ i(@$A   334%%,,),<BBD W%,,V4::3B  --z!}= z?Q    Y00*Q- @ r9c$dddd}|jjtd|d}|j|jt j |j}|jdt|jy ) z7Test that providing phone parameter returns bad requestr 1234567890r!)r$rr%rBrCrDrN r*rTrrSrUrHTTP_400_BAD_REQUESTrCrWr-lowerr4 invalid_datar`ras r7test_reject_phone_parameterz4TempUserCreateBasicTests.test_reject_phone_parameter|s ! ;;## * + $  --v/J/JK   gs=1779:r9c$dddd}|jjtd|d}|j|jt j |j}|jdt|jy ) z7Test that providing email parameter returns bad requestr ztest@example.comF)r$rr%rBrCrDrNrprss r7test_reject_email_parameterz4TempUserCreateBasicTests.test_reject_email_parameters ' ;;## * + $  --v/J/JK   gs=1779:r9N)r,r:r;r<rfrmrurxr=r9r7r?r?;sA"&HA4;$;r9r?c"eZdZdZdZdZdZy)TempUserJWTTokenTestsz8Test JWT token functionality for created temporary usersc|jjtd|jd}|j |j t j|jS)z,Helper to create temp user and return tokensrBrCrD) r*rTrr3rSrUrrVrCr4r`s r7_create_temp_user_with_tokensz3TempUserJWTTokenTests._create_temp_user_with_tokenssZ;;## * +  # #$  --v/F/FG}}r9c|j}|d}|d} t|d} t|d}|j |d|j |dy#ttf$rd}YFwxYw#ttf$rd}YOwxYw)z'Test that returned JWT tokens are validrGrHTFzAccess token should be validzRefresh token should be validN)r}r r r rX)r4ra access_token refresh_token access_valid refresh_valids r7test_jwt_tokens_are_validz/TempUserJWTTokenTests.test_jwt_tokens_are_valids::< $X. %i0  !  &L  "  ' M  &DE  'FGj) ! L !j) "!M "s" A A3A0/A03BBc|j}|d}|jjd||jjt d}|j |j tj|j}|j |d|d|j|dy) z0Test using JWT tokens for authenticated requestsrGBearer HTTP_AUTHORIZATIONapi:user_profilerMrFrAN) r}r* credentialsr[rrSrUr HTTP_200_OKrCrX)r4rarr` profile_datas r7test_jwt_authentication_worksz3TempUserJWTTokenTests.test_jwt_authentication_workss::< $X.  W\N3KL;;??7+=#>? --v/A/AB }}  d+]9-EF  %89:r9N)r,r:r;r<r}rrr=r9r7rzrzsBH0;r9rzceZdZdZdZdZy)TempUserNeverLogoutTestsz:Test that temp users created by this endpoint never logoutc|jjtdidj}tj j |d}|j|j|j|dd|j|dd |d }|d }d d l m }d dl m }m }||}||} |j|j} |j!|d|j} |j!| d|j} | | z j"dz } | | z j"dz }|j%| dd|j%|dd|jj'd|t)dD]P}|jj td}|j+|j,t.j0Ry)z%l3&}5ll;??+++N5,A;??S ,,_U-C[__U '#-33c9)C/55; ,b2lm -r3no W\N3KLqA{{w/A'BCH   X1163E3E Fr9cddlm}tjj dddd}||}|j |dd |j |d d |j|dd d y)z?Test that regular users still get normal (non-permanent) tokensr)create_tokens_for_user 9876543210zregular@example.comrF)rrrrArKz&Regular users should have token expiry is_permanentz0Regular users should not have permanent sessionsiQz,Regular users should have 1-day token expiryN) main.tokensrrr0r1r^ assertFalserS)r4rr2 token_datas r7$test_regular_users_get_normal_tokensz=TempUserNeverLogoutTests.test_regular_users_get_normal_tokens s~6||//'"# 0 ,L9  Z 57_` N35gh L15:hir9N)r,r:r;r<rrr=r9r7rrsD-G^jr9rc"eZdZdZdZdZdZy)TempUserBehaviorTestszTest that different temp users cannot access each other's datarBr$zUser 1rCrDzUser 2rFrrGrrLN) r*rTrdataassertNotEqualrrr0r[rMrXrA)r4 response1 user1_data response2 user2_datauser1user2s r7test_temp_users_are_isolatedz2TempUserSecurityTests.test_temp_users_are_isolatedcsKK$$W-C%DvxFXag$h ^^ KK$$W-C%DvxFXag$h ^^  Jy1:i3HI WZ=QWX +00@A k4;;#6#67||>)#<= ../r9c|jjdddid}|j|jtj |j d|jy)z1Test JWT-to-session conversion with invalid tokenrr invalid_tokenrCrDerrorN)r*rTrSrUrHTTP_401_UNAUTHORIZEDrWrr|s r7!test_jwt_to_session_invalid_tokenz;TempUserJWTToSessionTests.test_jwt_to_session_invalid_tokens\;;##$? OB $ --v/K/KL gx}}-r9c|jjdid}|j|jtj |j|j ddy)z6Test JWT-to-session conversion without providing tokenrrCrDrzAccess token is requiredN)r*rTrSrUrrqrr|s r7!test_jwt_to_session_missing_tokenz;TempUserJWTToSessionTests.test_jwt_to_session_missing_tokensT;;##$?F#S --v/J/JK w/1KLr9cL|jjtdddid}|j|jt j |j}|d}|jjdd|id}|j|jt jtjj|d  }|j|j|j|jd |j|jd y )z6Test complete temporary user flow for web applicationsrBr$zWeb UserrCrDrGrrrFrLWebrN)r*rTrrSrUrrVrrrr0r[rXrArrrs r7 test_complete_temp_user_web_flowz:TempUserJWTToSessionTests.test_complete_temp_user_web_flows;;##G,B$CfjEYbh#i --v/F/FG!%h/ #kk../J LM / ,88&:L:LM ||>)#<= ../ %0 0r9N)r,r:r;r<rrrrr=r9r7rr{s604.M1r9r__main__)&r<osdjango django.testrrrest_framework.testrrest_frameworkr django.urlsrdjango.contrib.authrrr #rest_framework_simplejwt.exceptionsr r rCenviron setdefault main.modelsraccounts.modelsr bazi.modelsrrr?rzrrrrr,unittestmainr=r9r7rs  ()!.8H  .0AB lM2' X @c;=c;L4;:4;nDj=DjN>C:>CB1:16C1 >C1L zHMMOr9