generated from ghga-de/microservice-repository-template
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
5 changed files
with
65 additions
and
44 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -36,7 +36,7 @@ | |
|
|
||
| CREATION_DATA = { | ||
| "user_id": "[email protected]", | ||
| "dataset_id": "some-dataset", | ||
| "dataset_id": "DS001", | ||
| "iva_id": "some-iva", | ||
| "email": "[email protected]", | ||
| "request_text": "Can I access some dataset?", | ||
|
|
@@ -140,6 +140,24 @@ async def test_create_access_request_that_is_too_long( | |
| assert response.json()["detail"] == "Access end date is invalid" | ||
|
|
||
|
|
||
| async def test_create_access_request_with_invalid_dataset_id( | ||
| joint_fixture: JointFixture, auth_headers_doe: dict[str, str] | ||
| ): | ||
| """Test that an access request must have a valid dataset ID.""" | ||
| response = await joint_fixture.rest_client.post( | ||
| "/access-requests", | ||
| json={ | ||
| **CREATION_DATA, | ||
| "dataset_id": "This is not a valid dataset ID!", | ||
| }, | ||
| headers=auth_headers_doe, | ||
| ) | ||
| assert response.status_code == 422 | ||
| msg = str(response.json()["detail"]) | ||
| assert "dataset_id" in msg | ||
| assert "String should match pattern" in msg | ||
|
|
||
|
|
||
| async def test_get_access_requests( | ||
| joint_fixture: JointFixture, | ||
| auth_headers_doe: dict[str, str], | ||
|
|
@@ -176,7 +194,7 @@ async def test_get_access_requests( | |
| assert request["id"] == access_request_id | ||
| assert request["user_id"] == "[email protected]" | ||
| assert request["iva_id"] == "some-iva" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "pending" | ||
|
|
||
| # get all requests as data steward | ||
|
|
@@ -191,12 +209,12 @@ async def test_get_access_requests( | |
| # last made request comes first | ||
| assert request["id"] == another_access_request_id | ||
| assert request["user_id"] == "[email protected]" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "pending" | ||
| request = requests[1] | ||
| assert request["id"] == access_request_id | ||
| assert request["user_id"] == "[email protected]" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "pending" | ||
|
|
||
|
|
||
|
|
@@ -245,13 +263,13 @@ async def test_filter_access_requests( | |
| assert len(response.json()) == 0 | ||
|
|
||
| response = await client.get( | ||
| "/access-requests?dataset_id=some-dataset", headers=auth_headers_doe | ||
| "/access-requests?dataset_id=DS001", headers=auth_headers_doe | ||
| ) | ||
| assert response.status_code == 200 | ||
| assert len(response.json()) == 1 | ||
|
|
||
| response = await client.get( | ||
| "/access-requests?dataset_id=another-dataset", headers=auth_headers_doe | ||
| "/access-requests?dataset_id=DS002", headers=auth_headers_doe | ||
| ) | ||
| assert response.status_code == 200 | ||
| assert len(response.json()) == 0 | ||
|
|
@@ -271,7 +289,7 @@ async def test_filter_access_requests( | |
| # combined filter | ||
| response = await client.get( | ||
| "/access-requests?" | ||
| "[email protected]&dataset_id=some-dataset&status=pending", | ||
| "[email protected]&dataset_id=DS001&status=pending", | ||
| headers=auth_headers_doe, | ||
| ) | ||
| assert response.status_code == 200 | ||
|
|
@@ -289,7 +307,7 @@ async def test_patch_access_request( | |
| httpx_mock.add_response( | ||
| method="POST", | ||
| url="http://access/users/[email protected]" | ||
| "/ivas/some-iva/datasets/some-dataset", | ||
| "/ivas/some-iva/datasets/DS001", | ||
| status_code=204, | ||
| ) | ||
|
|
||
|
|
@@ -347,7 +365,7 @@ async def test_patch_access_request( | |
| assert request["id"] == access_request_id | ||
| assert request["user_id"] == "[email protected]" | ||
| assert request["iva_id"] == "some-iva" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "allowed" | ||
| assert request["status_changed"] | ||
| assert request["changed_by"] is None # cannot see internals | ||
|
|
@@ -364,7 +382,7 @@ async def test_patch_access_request( | |
| assert request["id"] == access_request_id | ||
| assert request["user_id"] == "[email protected]" | ||
| assert request["iva_id"] == "some-iva" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "allowed" | ||
| assert request["status_changed"] | ||
| assert request["changed_by"] == "[email protected]" # can see internals | ||
|
|
@@ -381,7 +399,7 @@ async def test_patch_access_request_with_another_iva( | |
| httpx_mock.add_response( | ||
| method="POST", | ||
| url="http://access/users/[email protected]" | ||
| "/ivas/another-iva/datasets/some-dataset", | ||
| "/ivas/another-iva/datasets/DS001", | ||
| status_code=204, | ||
| ) | ||
|
|
||
|
|
@@ -415,7 +433,7 @@ async def test_patch_access_request_with_another_iva( | |
| assert request["user_id"] == "[email protected]" | ||
| # make sure that the IVA has been changed | ||
| assert request["iva_id"] == "another-iva" | ||
| assert request["dataset_id"] == "some-dataset" | ||
| assert request["dataset_id"] == "DS001" | ||
| assert request["status"] == "allowed" | ||
| assert request["status_changed"] | ||
| assert request["changed_by"] is None | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -70,8 +70,8 @@ async def test_access_request_events(status: str): | |
| """Test that an event is published properly.""" | ||
| request = AccessRequest( | ||
| id="unique_access_request_id", | ||
| user_id="user123", | ||
| dataset_id="dataset456", | ||
| user_id="user-123", | ||
| dataset_id="DS456", | ||
| email="[email protected]", | ||
| request_text="Requesting access for research purposes", | ||
| access_starts=now_as_utc(), | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -77,7 +77,7 @@ | |
| AccessRequest( | ||
| id="request-id-1", | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=utc_datetime(2020, 1, 1, 0, 0), | ||
|
|
@@ -91,7 +91,7 @@ | |
| AccessRequest( | ||
| id="request-id-2", | ||
| user_id="[email protected]", | ||
| dataset_id="another-dataset", | ||
| dataset_id="DS002", | ||
| email="[email protected]", | ||
| request_text="Can I access another dataset?", | ||
| access_starts=utc_datetime(2020, 1, 1, 0, 0), | ||
|
|
@@ -105,7 +105,7 @@ | |
| AccessRequest( | ||
| id="request-id-3", | ||
| user_id="[email protected]", | ||
| dataset_id="yet-another-dataset", | ||
| dataset_id="DS003", | ||
| email="[email protected]", | ||
| request_text="Can I access yet another dataset?", | ||
| access_starts=utc_datetime(2020, 1, 1, 0, 0), | ||
|
|
@@ -119,7 +119,7 @@ | |
| AccessRequest( | ||
| id="request-id-4", | ||
| user_id="[email protected]", | ||
| dataset_id="new-dataset", | ||
| dataset_id="DS007", | ||
| email="[email protected]", | ||
| request_text="Can I access a new dataset?", | ||
| access_starts=utc_datetime(2021, 1, 1, 0, 0), | ||
|
|
@@ -133,7 +133,7 @@ | |
| AccessRequest( | ||
| id="request-id-5", | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access the same dataset as Joe?", | ||
| access_starts=utc_datetime(2020, 1, 1, 0, 0), | ||
|
|
@@ -148,7 +148,7 @@ | |
| id="request-id-6", | ||
| user_id="[email protected]", | ||
| iva_id="iva-of-john", | ||
| dataset_id="yet-another-dataset", | ||
| dataset_id="DS003", | ||
| email="[email protected]", | ||
| request_text="Can I access yet another dataset using this IVA?", | ||
| access_starts=utc_datetime(2021, 6, 1, 0, 0), | ||
|
|
@@ -297,7 +297,7 @@ async def test_can_create_request(): | |
| access_ends = access_starts + ONE_YEAR | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -311,7 +311,7 @@ async def test_can_create_request(): | |
| assert request.id == "newly-created-id" | ||
| assert request.user_id == "[email protected]" | ||
| assert request.iva_id is None | ||
| assert request.dataset_id == "some-dataset" | ||
| assert request.dataset_id == "DS001" | ||
| assert request.email == "[email protected]" | ||
| assert request.request_text == "Can I access some dataset?" | ||
| assert request.access_starts == request.request_created | ||
|
|
@@ -340,7 +340,7 @@ async def test_can_create_request_with_an_iva(): | |
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| iva_id="some-iva_id", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -352,7 +352,7 @@ async def test_can_create_request_with_an_iva(): | |
| assert request.id == "newly-created-id" | ||
| assert request.user_id == "[email protected]" | ||
| assert request.iva_id == "some-iva_id" | ||
| assert request.dataset_id == "some-dataset" | ||
| assert request.dataset_id == "DS001" | ||
|
|
||
| assert dao.last_upsert == request | ||
|
|
||
|
|
@@ -363,7 +363,7 @@ async def test_cannot_create_request_for_somebody_else(): | |
| access_ends = access_starts + ONE_YEAR | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -380,7 +380,7 @@ async def test_silently_correct_request_that_is_too_early(): | |
| access_ends = access_starts + 1.5 * ONE_YEAR | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -406,7 +406,7 @@ async def test_cannot_create_request_too_much_in_advance(): | |
| access_ends = access_starts + ONE_YEAR | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -429,7 +429,7 @@ async def test_cannot_create_request_too_short(): | |
| access_ends = access_starts + timedelta(days=29) | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -452,7 +452,7 @@ async def test_cannot_create_request_too_long(): | |
| access_ends = access_starts + 2.5 * ONE_YEAR | ||
| creation_data = AccessRequestCreationData( | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| email="[email protected]", | ||
| request_text="Can I access some dataset?", | ||
| access_starts=access_starts, | ||
|
|
@@ -515,14 +515,12 @@ async def test_data_steward_can_get_requests_of_specific_user(): | |
|
|
||
| async def test_data_steward_can_get_requests_for_specific_dataset(): | ||
| """Test getting requests for a specific dataset.""" | ||
| requests = await repository.get( | ||
| auth_context=auth_context_doe, dataset_id="another-dataset" | ||
| ) | ||
| requests = await repository.get(auth_context=auth_context_doe, dataset_id="DS002") | ||
| assert len(requests) == 1 | ||
| assert requests == [ | ||
| request.model_copy(update={"changed_by": None}) # data steward is hidden | ||
| for request in ACCESS_REQUESTS | ||
| if request.dataset_id == "another-dataset" | ||
| if request.dataset_id == "DS002" | ||
| ] | ||
|
|
||
|
|
||
|
|
@@ -544,15 +542,15 @@ async def test_filtering_using_multiple_criteria(): | |
| requests = await repository.get( | ||
| auth_context=auth_context_steward, | ||
| user_id="[email protected]", | ||
| dataset_id="some-dataset", | ||
| dataset_id="DS001", | ||
| status=AccessRequestStatus.ALLOWED, | ||
| ) | ||
| assert len(requests) == 1 | ||
| assert requests == [ | ||
| request | ||
| for request in ACCESS_REQUESTS | ||
| if request.user_id == "[email protected]" | ||
| and request.dataset_id == "some-dataset" | ||
| and request.dataset_id == "DS001" | ||
| and request.status == AccessRequestStatus.ALLOWED | ||
| ] | ||
|
|
||
|
|
@@ -591,7 +589,7 @@ async def test_set_status_to_allowed(): | |
| assert event_publisher.events == [expected_event] | ||
|
|
||
| assert access_grants.last_grant == ( | ||
| "to [email protected] with some-iva for new-dataset" | ||
| "to [email protected] with some-iva for DS007" | ||
| " from 2021-01-01 00:00:00+00:00 until 2021-12-31 23:59:00+00:00" | ||
| ) | ||
|
|
||
|
|
@@ -628,7 +626,7 @@ async def test_set_status_to_allowed_reusing_iva(): | |
| assert event_publisher.events == [expected_event] | ||
|
|
||
| assert access_grants.last_grant == ( | ||
| "to [email protected] with iva-of-john for yet-another-dataset" | ||
| "to [email protected] with iva-of-john for DS003" | ||
| " from 2021-06-01 00:00:00+00:00 until 2021-12-31 23:59:00+00:00" | ||
| ) | ||
|
|
||
|
|
@@ -667,7 +665,7 @@ async def test_set_status_to_allowed_overriding_iva(): | |
| assert event_publisher.events == [expected_event] | ||
|
|
||
| assert access_grants.last_grant == ( | ||
| "to [email protected] with some-other-iva-of-john for yet-another-dataset" | ||
| "to [email protected] with some-other-iva-of-john for DS003" | ||
| " from 2021-06-01 00:00:00+00:00 until 2021-12-31 23:59:00+00:00" | ||
| ) | ||
|
|
||
|
|
@@ -709,9 +707,7 @@ async def test_set_status_to_allowed_with_error_when_granting_access(): | |
| auth_context=auth_context_steward, | ||
| ) | ||
|
|
||
| assert ( | ||
| access_grants.last_grant == "to [email protected] for new-dataset failed" | ||
| ) | ||
| assert access_grants.last_grant == "to [email protected] for DS007 failed" | ||
|
|
||
| # make sure the status is not changed in this case, and no mails are sent out | ||
| changed_request = dao.last_upsert | ||
|
|
||