zydronium/manage.get.gov
1
0
Fork 0
mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-07-23 19:20:47 +02:00
Code Issues Projects Releases Packages Wiki Activity

Revert "Update test_views_request.py"

Browse source 
This reverts commit 071b41f18f.
This commit is contained in:
zandercymatics 2024-11-06 11:46:30 -07:00
parent 071b41f18f
commit b71e73e108
No known key found for this signature in database
GPG key ID: FF4636ABEC9682B7
1 changed files with 16 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

32
src/registrar/tests/test_views_request.py
View file

@ -2761,6 +2761,22 @@ class DomainRequestTests(TestWithUser, WebTest):
portfolio_perm.delete() portfolio_perm.delete()
portfolio.delete() portfolio.delete()
def test_non_creator_access(self):
"""Tests that a user cannot edit a domain request they didn't create"""
p = "password"
other_user = User.objects.create_user(username="other_user", password=p)
domain_request = completed_domain_request(user=other_user)
edit_page = self.app.get(reverse("edit-domain-request", kwargs={"id": domain_request.pk}), expect_errors=True)
self.assertEqual(edit_page.status_code, 403)
def test_creator_access(self):
"""Tests that a user can edit a domain request they created"""
domain_request = completed_domain_request(user=self.user)
edit_page = self.app.get(reverse("edit-domain-request", kwargs={"id": domain_request.pk})).follow()
self.assertEqual(edit_page.status_code, 200)
class DomainRequestTestDifferentStatuses(TestWithUser, WebTest): class DomainRequestTestDifferentStatuses(TestWithUser, WebTest):
def setUp(self): def setUp(self):
@ -3130,22 +3146,6 @@ class TestDomainRequestWizard(TestWithUser, WebTest):
portfolio.delete() portfolio.delete()
federal_agency.delete() federal_agency.delete()
domain_request.delete() domain_request.delete()
def test_non_creator_access(self):
"""Tests that a user cannot edit a domain request they didn't create"""
p = "password"
other_user = User.objects.create_user(username="other_user", password=p)
domain_request = completed_domain_request(user=other_user)
edit_page = self.app.get(reverse("edit-domain-request", kwargs={"id": domain_request.pk}), expect_errors=True)
self.assertEqual(edit_page.status_code, 403)
def test_creator_access(self):
"""Tests that a user can edit a domain request they created"""
domain_request = completed_domain_request(user=self.user)
edit_page = self.app.get(reverse("edit-domain-request", kwargs={"id": domain_request.pk})).follow()
self.assertEqual(edit_page.status_code, 200)
class TestPortfolioDomainRequestViewonly(TestWithUser, WebTest): class TestPortfolioDomainRequestViewonly(TestWithUser, WebTest):