Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/tests/test_upload.py

1986 lines
86 KiB
Python
Raw Normal View History

python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
import datetime
import io
import os
import re
import shutil
import time
import urllib
from io import StringIO
from unittest import mock
from unittest.mock import patch
import botocore.exceptions
import ujson
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
from django.conf import settings
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from django.utils.timezone import now as timezone_now
requirements: Upgrade Python requirements. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-25 02:29:22 +02:00
from django_sendfile.utils import _get_sendfile
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from PIL import Image
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
import zerver.lib.upload
from zerver.lib.actions import (
do_change_icon_source,
do_change_logo_source,
do_change_plan_type,
do_delete_old_unclaimed_attachments,
do_set_realm_property,
internal_send_private_message,
Add get_avatar_field() function. This function is designed to replace avatar_url() and avatar_url_from_dict() over time. There are a few things new about it: * We make the parameters more explicit, rather than passing in an opaque dictionary or requiring a UserProfile object. (A lot of our callers want to use `values()` for efficiency sake, since we are often doing bulk user operations.) * We start to support the client_gravatar option.
2017-10-10 03:53:25 +02:00
)
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.lib.avatar import avatar_url, get_avatar_field
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
from zerver.lib.avatar_hash import user_avatar_path
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.lib.cache import cache_get, get_realm_used_upload_space_cache_key
from zerver.lib.create_user import copy_user_settings
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
from zerver.lib.initial_password import initial_password
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
from zerver.lib.realm_icon import realm_icon_url
realm_logo: Remove redundant `realm_logo_url` function. This function is nothing but a redundant layer of call to `get_realm_logo_url`.
2019-08-19 19:46:45 +02:00
from zerver.lib.realm_logo import get_realm_logo_url
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.lib.test_classes import UploadSerializeMixin, ZulipTestCase
test-backend: Raise zerver/views/test_upload.py test coverage to 100%.
2017-03-08 19:47:42 +01:00
from zerver.lib.test_helpers import (
avatar_disk_path,
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
create_s3_buckets,
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
get_test_image_file,
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
queries_captured,
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
use_s3_backend,
test-backend: Raise zerver/views/test_upload.py test coverage to 100%.
2017-03-08 19:47:42 +01:00
)
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.lib.upload import (
DEFAULT_AVATAR_SIZE,
DEFAULT_EMOJI_SIZE,
MEDIUM_AVATAR_SIZE,
BadImageError,
LocalUploadBackend,
S3UploadBackend,
ZulipUploadBackend,
delete_export_tarball,
delete_message_image,
exif_rotate,
resize_avatar,
resize_emoji,
sanitize_name,
upload_emoji_image,
upload_export_tarball,
upload_message_file,
Use sender realm in user_profiles_from_unvalidated_emails. This change is mostly based on a similar commit from hackerkid in a feature branch. It borrows both code and ideas. Some of it's my own stuff, as I was working on a newer branch. We now call get_user_including_cross_realm_email() inside of user_profiles_from_unvalidated_emails(), instead of using get_user_profile_by_email. This requires a few of our callers to pass down sender into us. One consequence of this change is that we change the symptoms for trying to send to emails outside of your realm. In some cases, we simply raise an error that an email is invalid to us instead of getting into the deeper validate_recipient_user_profiles check.
2017-08-18 12:26:43 +02:00
)
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
from zerver.lib.users import get_api_key
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-11 00:54:34 +02:00
from zerver.models import (
Attachment,
Message,
Realm,
RealmDomain,
RealmEmoji,
UserProfile,
get_realm,
get_system_bot,
get_user_by_delivery_email,
validate_attachment_request,
)
test-backend: Raise zerver/views/test_upload.py test coverage to 100%.
2017-03-08 19:47:42 +01:00
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def destroy_uploads() -> None:
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
if os.path.exists(settings.LOCAL_UPLOADS_DIR):
shutil.rmtree(settings.LOCAL_UPLOADS_DIR)
testing: Serialize test_upload. This commit makes test_upload tests compatible with parallel model.
2017-02-16 10:10:37 +01:00
class FileUploadTest(UploadSerializeMixin, ZulipTestCase):
Add API route for uploading files.
2016-06-25 11:05:59 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_rest_endpoint(self) -> None:
Add API route for uploading files.
2016-06-25 11:05:59 +02:00
"""
Tests the /api/v1/user_uploads api endpoint. Here a single file is uploaded
and downloaded using a username and api_key
"""
fp = StringIO("zulip!")
fp.name = "zulip.txt"
# Upload file via API
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
result = self.api_post(self.example_user("hamlet"), '/api/v1/user_uploads', {'file': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("uri", result.json())
uri = result.json()['uri']
Add API route for uploading files.
2016-06-25 11:05:59 +02:00
base = '/user_uploads/'
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, uri[:len(base)])
Add API route for uploading files.
2016-06-25 11:05:59 +02:00
Add support for serving files using API authentication. Also remove 'get_uploaded_file' view function and the corresponding old '/user_upload/' url pattern.
2016-06-27 16:41:58 +02:00
# Download file via API
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
response = self.api_get(self.example_user("hamlet"), uri)
uploads: Add new way of querying for mobile uploads endpoint. This extends the /user_uploads API endpoint to support passing the authentication credentials via the URL, not the HTTP_AUTHORIZATION headers. This is an important workaround for the fact that React Native's Webview system doesn't support setting HTTP_AUTHORIZATION; the app will be responsible for rewriting URLs for uploaded files directly to add this parameter.
2018-04-13 19:04:39 +02:00
self.assertEqual(response.status_code, 200)
zerver/tests/test_upload.py: Use byte strings. Some string literals are incorrectly marked as `str` strings. Change them to byte strings.
2016-07-13 22:09:27 +02:00
data = b"".join(response.streaming_content)
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(b"zulip!", data)
Add support for serving files using API authentication. Also remove 'get_uploaded_file' view function and the corresponding old '/user_upload/' url pattern.
2016-06-27 16:41:58 +02:00
text: Fix some typos (most of them found and fixed by codespell). Signed-off-by: Stefan Weil <sw@weilnetz.de>
2020-03-28 01:25:56 +01:00
# Files uploaded through the API should be accessible via the web client
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Add `assert_url_serves_contents_of_file()` to `ZulipTestCase` Add `assert_url_serves_contents_of_file()` in `ZulipTestCase` class and deduplicate some codes. Fixes #1276.
2016-12-19 16:17:19 +01:00
self.assert_url_serves_contents_of_file(uri, b"zulip!")
Add API route for uploading files.
2016-06-25 11:05:59 +02:00
uploads: Add new way of querying for mobile uploads endpoint. This extends the /user_uploads API endpoint to support passing the authentication credentials via the URL, not the HTTP_AUTHORIZATION headers. This is an important workaround for the fact that React Native's Webview system doesn't support setting HTTP_AUTHORIZATION; the app will be responsible for rewriting URLs for uploaded files directly to add this parameter.
2018-04-13 19:04:39 +02:00
def test_mobile_api_endpoint(self) -> None:
"""
Tests the /api/v1/user_uploads api endpoint with ?api_key
auth. Here a single file is uploaded and downloaded using a
username and api_key
"""
fp = StringIO("zulip!")
fp.name = "zulip.txt"
# Upload file via API
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
result = self.api_post(self.example_user("hamlet"), '/api/v1/user_uploads', {'file': fp})
uploads: Add new way of querying for mobile uploads endpoint. This extends the /user_uploads API endpoint to support passing the authentication credentials via the URL, not the HTTP_AUTHORIZATION headers. This is an important workaround for the fact that React Native's Webview system doesn't support setting HTTP_AUTHORIZATION; the app will be responsible for rewriting URLs for uploaded files directly to add this parameter.
2018-04-13 19:04:39 +02:00
self.assertIn("uri", result.json())
uri = result.json()['uri']
base = '/user_uploads/'
self.assertEqual(base, uri[:len(base)])
self.logout()
# Try to download file via API, passing URL and invalid API key
user_profile = self.example_user("hamlet")
response = self.client_get(uri + "?api_key=" + "invalid")
decorator: Set an error code for invalid API key errors. This should make it easily for mobile/terminal apps to handle situations like the user's API key changing. Also fix the fact we were incorrectly using a 400, not 401, status code for this case.
2019-01-05 20:18:18 +01:00
self.assertEqual(response.status_code, 401)
uploads: Add new way of querying for mobile uploads endpoint. This extends the /user_uploads API endpoint to support passing the authentication credentials via the URL, not the HTTP_AUTHORIZATION headers. This is an important workaround for the fact that React Native's Webview system doesn't support setting HTTP_AUTHORIZATION; the app will be responsible for rewriting URLs for uploaded files directly to add this parameter.
2018-04-13 19:04:39 +02:00
users: Get all API keys via wrapper method. Now reading API keys from a user is done with the get_api_key wrapper method, rather than directly fetching it from the user object. Also, every place where an action should be done for each API key is now using get_all_api_keys. This method returns for the moment a single-item list, containing the specified user's API key. This commit is the first step towards allowing users have multiple API keys.
2018-08-01 10:53:40 +02:00
response = self.client_get(uri + "?api_key=" + get_api_key(user_profile))
uploads: Add new way of querying for mobile uploads endpoint. This extends the /user_uploads API endpoint to support passing the authentication credentials via the URL, not the HTTP_AUTHORIZATION headers. This is an important workaround for the fact that React Native's Webview system doesn't support setting HTTP_AUTHORIZATION; the app will be responsible for rewriting URLs for uploaded files directly to add this parameter.
2018-04-13 19:04:39 +02:00
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
zerver/tests: Test upload when mimetype is supplied as a query param.
2018-05-14 19:07:38 +02:00
def test_upload_file_with_supplied_mimetype(self) -> None:
"""
When files are copied into the system clipboard and pasted for upload
the filename may not be supplied so the extension is determined from a
query string parameter.
"""
fp = StringIO("zulip!")
fp.name = "pasted_file"
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
result = self.api_post(self.example_user("hamlet"),
zerver/tests: Test upload when mimetype is supplied as a query param.
2018-05-14 19:07:38 +02:00
"/api/v1/user_uploads?mimetype=image/png",
{"file": fp})
self.assertEqual(result.status_code, 200)
uri = result.json()["uri"]
self.assertTrue(uri.endswith("pasted_file.png"))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_too_big_failure(self) -> None:
tests: Add test_file_too_big_failure().
2016-09-16 16:41:04 +02:00
"""
Attempting to upload big files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Add test_file_too_big_failure().
2016-09-16 16:41:04 +02:00
fp = StringIO("bah!")
fp.name = "a.txt"
# Use MAX_FILE_UPLOAD_SIZE of 0, because the next increment
# would be 1MB.
with self.settings(MAX_FILE_UPLOAD_SIZE=0):
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'f1': fp})
python: Convert percent formatting to .format for translated strings. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-15 23:22:24 +02:00
self.assert_json_error(result, 'Uploaded file is larger than the allowed limit of 0 MiB')
tests: Add test_file_too_big_failure().
2016-09-16 16:41:04 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_multiple_upload_failure(self) -> None:
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
"""
Attempting to upload two files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
fp = StringIO("bah!")
fp.name = "a.txt"
fp2 = StringIO("pshaw!")
fp2.name = "b.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'f1': fp, 'f2': fp2})
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
self.assert_json_error(result, "You may only upload one file at a time")
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_no_file_upload_failure(self) -> None:
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
"""
Calling this endpoint with no files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads")
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
self.assert_json_error(result, "You must specify a file to upload")
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
# This test will go through the code path for uploading files onto LOCAL storage
# when zulip is in DEVELOPMENT mode.
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_upload_authed(self) -> None:
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
"""
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
A call to /json/user_uploads should return a uri and actually create an
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
entry in the database. This entry will be marked unclaimed till a message
refers it.
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("uri", result.json())
uri = result.json()["uri"]
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
base = '/user_uploads/'
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, uri[:len(base)])
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
# In the future, local file requests will follow the same style as S3
# requests; they will be first authenthicated and redirected
tests: Add `assert_url_serves_contents_of_file()` to `ZulipTestCase` Add `assert_url_serves_contents_of_file()` in `ZulipTestCase` class and deduplicate some codes. Fixes #1276.
2016-12-19 16:17:19 +01:00
self.assert_url_serves_contents_of_file(uri, b"zulip!")
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
# check if DB has attachment marked as unclaimed
entry = Attachment.objects.get(file_name='zulip.txt')
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(entry.is_claimed(), False)
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "Denmark")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
body = "First message ...[zulip.txt](http://localhost:9991" + uri + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
# Now try the endpoint that's supposed to return a temporary url for access
# to the file.
result = self.client_get('/json' + uri)
self.assert_json_success(result)
data = result.json()
url_only_url = data['url']
# Ensure this is different from the original uri:
self.assertNotEqual(url_only_url, uri)
self.assertIn('user_uploads/temporary/', url_only_url)
upload: Include filename at the end of temporary access URLs.
2020-04-18 16:11:13 +02:00
self.assertTrue(url_only_url.endswith('zulip.txt'))
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
# The generated url has a token authorizing the requestor to access the file
# without being logged in.
self.logout()
self.assert_url_serves_contents_of_file(url_only_url, b"zulip!")
# The original uri shouldn't work when logged out:
result = self.client_get(uri)
self.assertEqual(result.status_code, 401)
def test_serve_local_file_unauthed_invalid_token(self) -> None:
upload: Include filename at the end of temporary access URLs.
2020-04-18 16:11:13 +02:00
result = self.client_get('/user_uploads/temporary/badtoken/file.png')
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
self.assert_json_error(result, "Invalid token")
upload: Include filename at the end of temporary access URLs.
2020-04-18 16:11:13 +02:00
def test_serve_local_file_unauthed_altered_filename(self) -> None:
self.login('hamlet')
fp = StringIO("zulip!")
fp.name = "zulip.txt"
result = self.client_post("/json/user_uploads", {'file': fp})
url = '/json' + result.json()["uri"]
result = self.client_get(url)
self.assert_json_success(result)
data = result.json()
url_only_url = data['url']
self.assertTrue(url_only_url.endswith('zulip.txt'))
url_only_url_changed_filename = url_only_url.split('zulip.txt')[0] + 'differentname.exe'
result = self.client_get(url_only_url_changed_filename)
self.assert_json_error(result, "Invalid filename")
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
def test_serve_local_file_unauthed_token_expires(self) -> None:
self.login('hamlet')
fp = StringIO("zulip!")
fp.name = "zulip.txt"
result = self.client_post("/json/user_uploads", {'file': fp})
url = '/json' + result.json()["uri"]
start_time = time.time()
with mock.patch('django.core.signing.time.time', return_value=start_time):
result = self.client_get(url)
self.assert_json_success(result)
data = result.json()
url_only_url = data['url']
self.logout()
self.assert_url_serves_contents_of_file(url_only_url, b"zulip!")
# After over 60 seconds, the token should become invalid:
with mock.patch('django.core.signing.time.time', return_value=start_time + 61):
result = self.client_get(url_only_url)
self.assert_json_error(result, "Invalid token")
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_download_unauthed(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
uri = result.json()["uri"]
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
response = self.client_get(uri)
self.assert_json_error(response, "Not logged in: API authentication or user session required",
status_code=401)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_removed_file_download(self) -> None:
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
'''
Trying to download deleted files should return 404 error
'''
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
destroy_uploads()
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
response = self.client_get(result.json()["uri"])
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assertEqual(response.status_code, 404)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_non_existing_file_download(self) -> None:
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
'''
Trying to download a file that was never uploaded will return a json_error
'''
test_upload: Prepare for moving system bots to zulipinternal.
2019-07-24 07:34:48 +02:00
hamlet = self.example_user("hamlet")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.client_get(f"http://localhost:9991/user_uploads/{hamlet.realm_id}/ff/gg/abc.py")
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assertEqual(response.status_code, 404)
self.assert_in_response('File not found.', response)
Revert "Add authorization check before serving files." This reverts commit e985b57259f86dcdbddb115fc5009e2db04496ff. This commit will break production when we next do a release, because we haven't done a migration to create Attachment objects for previously uploaded files.
2016-06-27 21:09:56 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_delete_old_unclaimed_attachments(self) -> None:
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
# Upload some files and make them older than a weeek
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
d1 = StringIO("zulip!")
d1.name = "dummy_1.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': d1})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
d1_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
d2 = StringIO("zulip!")
d2.name = "dummy_2.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': d2})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
d2_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
Replace timezone.now with timezone_now.
2017-04-15 04:03:56 +02:00
two_week_ago = timezone_now() - datetime.timedelta(weeks=2)
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
d1_attachment = Attachment.objects.get(path_id = d1_path_id)
d1_attachment.create_time = two_week_ago
d1_attachment.save()
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
self.assertEqual(str(d1_attachment), '<Attachment: dummy_1.txt>')
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
d2_attachment = Attachment.objects.get(path_id = d2_path_id)
d2_attachment.create_time = two_week_ago
d2_attachment.save()
Fix various typos. The typos and their corrections were found with the aid of https://github.com/lucasdemarchi/codespell.
2017-11-09 16:26:38 +01:00
# Send message referring only dummy_1
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "Denmark")
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
body = "Some files here ...[zulip.txt](http://localhost:9991/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
# dummy_2 should not exist in database or the uploads folder
do_delete_old_unclaimed_attachments(2)
self.assertTrue(not Attachment.objects.filter(path_id = d2_path_id).exists())
self.assertTrue(not delete_message_image(d2_path_id))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_attachment_url_without_upload(self) -> None:
test_upload: Prepare for moving system bots to zulipinternal.
2019-07-24 07:34:48 +02:00
hamlet = self.example_user("hamlet")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
body = f"Test message ...[zulip.txt](http://localhost:9991/user_uploads/{hamlet.realm_id}/64/fake_path_id.txt)"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
attachment: Clarify and test logic for invalid uploads.
2017-04-14 01:15:46 +02:00
self.assertFalse(Attachment.objects.filter(path_id = "1/64/fake_path_id.txt").exists())
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_multiple_claim_attachments(self) -> None:
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
"""
This test tries to claim the same attachment twice. The messages field in
the Attachment model should have both the messages in its entry.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
d1 = StringIO("zulip!")
d1.name = "dummy_1.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': d1})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
d1_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "Denmark")
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
host = self.example_user('hamlet').realm.host
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"Second message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(Attachment.objects.get(path_id=d1_path_id).messages.count(), 2)
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_multiple_claim_attachments_different_owners(self) -> None:
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
"""This test tries to claim the same attachment more than once, first
Fix various typos. The typos and their corrections were found with the aid of https://github.com/lucasdemarchi/codespell.
2017-11-09 16:26:38 +01:00
with a private stream and then with different recipients."""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
d1 = StringIO("zulip!")
d1.name = "dummy_1.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': d1})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
d1_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
host = self.example_user('hamlet').realm.host
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
self.make_stream("private_stream", invite_only=True)
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "private_stream")
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
# First, send the message to the new private stream.
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "private_stream", body, "test")
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
self.assertFalse(Attachment.objects.get(path_id=d1_path_id).is_realm_public)
self.assertEqual(Attachment.objects.get(path_id=d1_path_id).messages.count(), 1)
# Then, try having a user who didn't receive the message try to publish it, and fail
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"Illegal message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("cordelia"), "Denmark", body, "test")
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
self.assertEqual(Attachment.objects.get(path_id=d1_path_id).messages.count(), 1)
self.assertFalse(Attachment.objects.get(path_id=d1_path_id).is_realm_public)
# Then, have the owner PM it to another user, giving that other user access.
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"Second message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_personal_message(self.example_user("hamlet"), self.example_user("othello"), body)
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
self.assertEqual(Attachment.objects.get(path_id=d1_path_id).messages.count(), 2)
self.assertFalse(Attachment.objects.get(path_id=d1_path_id).is_realm_public)
# Then, have that new recipient user publish it.
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"Third message ...[zulip.txt](http://{host}/user_uploads/" + d1_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("othello"), "Denmark", body, "test")
attachment: Improve rules for managing attachment ownership. The previous logic was that anyone with a link to a file could send it to other users, but only the owner could make a file realm-public. This had some confusing corner cases. The new logic is much simpler: * Only the file's owner/uploader can include a file in a message for the first time. * Anyone with access to read a file can share it with others by including it in messages they send. * Once a file has been sent to a public stream, any user in the realm can access it.
2017-04-14 00:59:59 +02:00
self.assertEqual(Attachment.objects.get(path_id=d1_path_id).messages.count(), 3)
self.assertTrue(Attachment.objects.get(path_id=d1_path_id).is_realm_public)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_check_attachment_reference_update(self) -> None:
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
f1 = StringIO("file1")
f1.name = "file1.txt"
f2 = StringIO("file2")
f2.name = "file2.txt"
f3 = StringIO("file3")
f3.name = "file3.txt"
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
hamlet = self.example_user('hamlet')
host = hamlet.realm.host
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': f1})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
f1_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': f2})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
f2_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
self.subscribe(hamlet, "test")
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = (f"[f1.txt](http://{host}/user_uploads/" + f1_path_id + ") "
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
"[f2.txt](http://{}/user_uploads/".format(host) + f2_path_id + ")")
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
msg_id = self.send_stream_message(hamlet, "test", body, "test")
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': f3})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
f3_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
new_body = (f"[f3.txt](http://{host}/user_uploads/" + f3_path_id + ") "
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
"[f2.txt](http://{}/user_uploads/".format(host) + f2_path_id + ")")
Removed json/update_message Update test_alert_words.py Update test_messages.py Update messages.py
2016-12-22 10:17:49 +01:00
result = self.client_patch("/json/messages/" + str(msg_id), {
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
'message_id': msg_id,
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
'content': new_body,
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
})
self.assert_json_success(result)
message = Message.objects.get(id=msg_id)
f1_attachment = Attachment.objects.get(path_id=f1_path_id)
f2_attachment = Attachment.objects.get(path_id=f2_path_id)
upload: Fix single attachments not being claimed on message edit. Fixed an attachments not being claimed if just one new attachment is added (aka the common case).
2016-07-24 22:03:22 +02:00
f3_attachment = Attachment.objects.get(path_id=f3_path_id)
Update attachment tracking on message update.
2016-07-07 09:47:15 +02:00
self.assertTrue(message not in f1_attachment.messages.all())
self.assertTrue(message in f2_attachment.messages.all())
self.assertTrue(message in f3_attachment.messages.all())
Add test for removing an uploaded file via message editing. Fixes #1373.
2016-07-23 07:06:13 +02:00
# Delete all the attachments from the message
new_body = "(deleted)"
Removed json/update_message Update test_alert_words.py Update test_messages.py Update messages.py
2016-12-22 10:17:49 +01:00
result = self.client_patch("/json/messages/" + str(msg_id), {
Add test for removing an uploaded file via message editing. Fixes #1373.
2016-07-23 07:06:13 +02:00
'message_id': msg_id,
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
'content': new_body,
Add test for removing an uploaded file via message editing. Fixes #1373.
2016-07-23 07:06:13 +02:00
})
self.assert_json_success(result)
message = Message.objects.get(id=msg_id)
f1_attachment = Attachment.objects.get(path_id=f1_path_id)
f2_attachment = Attachment.objects.get(path_id=f2_path_id)
f3_attachment = Attachment.objects.get(path_id=f3_path_id)
self.assertTrue(message not in f1_attachment.messages.all())
self.assertTrue(message not in f2_attachment.messages.all())
self.assertTrue(message not in f3_attachment.messages.all())
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_name(self) -> None:
Test unicode file name.
2016-09-20 11:02:15 +02:00
"""
Unicode filenames should be processed correctly.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Test unicode file name.
2016-09-20 11:02:15 +02:00
for expected in ["Здравейте.txt", "test"]:
fp = StringIO("bah!")
fp.name = urllib.parse.quote(expected)
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'f1': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
assert sanitize_name(expected) in result.json()['uri']
Test unicode file name.
2016-09-20 11:02:15 +02:00
upload: Enforce per-realm quota.
2018-01-26 16:13:33 +01:00
def test_realm_quota(self) -> None:
"""
Realm quota for uploading should not be exceeded.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
upload: Enforce per-realm quota.
2018-01-26 16:13:33 +01:00
d1 = StringIO("zulip!")
d1.name = "dummy_1.txt"
result = self.client_post("/json/user_uploads", {'file': d1})
d1_path_id = re.sub('/user_uploads/', '', result.json()['uri'])
d1_attachment = Attachment.objects.get(path_id = d1_path_id)
self.assert_json_success(result)
realm = get_realm("zulip")
realm.upload_quota_gb = 1
realm.save(update_fields=['upload_quota_gb'])
# The size of StringIO("zulip!") is 6 bytes. Setting the size of
# d1_attachment to realm.upload_quota_bytes() - 11 should allow
# us to upload only one more attachment.
mypy: Add two mypy-pacifying asserts in upload & bugdown tests.
2018-02-19 06:39:38 +01:00
quota = realm.upload_quota_bytes()
assert(quota is not None)
d1_attachment.size = quota - 11
upload: Enforce per-realm quota.
2018-01-26 16:13:33 +01:00
d1_attachment.save(update_fields=['size'])
d2 = StringIO("zulip!")
d2.name = "dummy_2.txt"
result = self.client_post("/json/user_uploads", {'file': d2})
self.assert_json_success(result)
d3 = StringIO("zulip!")
d3.name = "dummy_3.txt"
result = self.client_post("/json/user_uploads", {'file': d3})
self.assert_json_error(result, "Upload would exceed your organization's upload quota.")
realm.upload_quota_gb = None
realm.save(update_fields=['upload_quota_gb'])
result = self.client_post("/json/user_uploads", {'file': d3})
self.assert_json_success(result)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_cross_realm_file_access(self) -> None:
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
zerver/tests: Change use of typing.Text to str.
2018-05-11 01:39:38 +02:00
def create_user(email: str, realm_id: str) -> UserProfile:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
password = initial_password(email)
if password is not None:
self.register(email, password, subdomain=realm_id)
tests: Use email/delivery_email more explicitly. We try to use the correct variation of `email` or `delivery_email`, even though in some databases they are the same. (To find the differences, I temporarily hacked populate_db to use different values for email and delivery_email, and reduced email visibility in the zulip realm to admins only.) In places where we want the "normal" realm behavior of showing emails (and having `email` be the same as `delivery_email`), we use the new `reset_emails_in_zulip_realm` helper. A couple random things: - I fixed any error messages that were leaking the wrong email - a test that claimed to rely on the order of emails no longer does (we sort user_ids instead) - we now use user_ids in some place where we used to use emails - for IRC mirrors I just punted and used `reset_emails_in_zulip_realm` in most places - for MIT-related tests, I didn't fix email vs. delivery_email unless it was obvious I also explicitly reset the realm to a "normal" realm for a couple tests that I frankly just didn't have the energy to debug. (Also, we do want some coverage on the normal case, even though it is "easier" for tests to pass if you mix up `email` and `delivery_email`.) In particular, I just reset data for the analytics and corporate tests.
2020-03-12 14:17:25 +01:00
return get_user_by_delivery_email(email, get_realm(realm_id))
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
test_upload: Explicitly declare subdomains.
2017-08-26 01:20:47 +02:00
test_subdomain = "uploadtest.example.com"
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
user1_email = 'user1@uploadtest.example.com'
user2_email = 'test-og-bot@zulip.com'
user3_email = 'other-user@uploadtest.example.com'
test_upload: Explicitly declare subdomains.
2017-08-26 01:20:47 +02:00
r1 = Realm.objects.create(string_id=test_subdomain, invite_required=False)
RealmDomain.objects.create(realm=r1, domain=test_subdomain)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
user_1 = create_user(user1_email, test_subdomain)
user_2 = create_user(user2_email, 'zulip')
bugdown: Fix logic for extracting attachment path_id. In 3892a8afd89a07645608ae2dc532c4910c28f2d0, we restructured the system for managing uploaded files to a much cleaner model where we just do parsing inside bugdown. That new model had potentially buggy handling of cases around both relative URLs and URLS starting with `realm.host`. We address this by further rewriting the handling of attachments to avoid regular expressions entirely, instead relying on urllib for parsing, and having bugdown output `path_id` values, so that there's no need for any conversions between formats outside bugdowm. The check_attachment_reference_change function for processing message updates is significantly simplified in the process. The new check on the hostname has the side effect of requiring us to fix some previously weird/buggy test data. Co-Author-By: Anders Kaseorg <anders@zulipchat.com> Co-Author-By: Rohitt Vashishtha <aero31aero@gmail.com>
2019-12-13 03:56:59 +01:00
user_3 = create_user(user3_email, test_subdomain)
host = user_3.realm.host
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
# Send a message from @zulip.com -> @uploadtest.example.com
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user_2)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
uri = result.json()['uri']
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp_path_id = re.sub('/user_uploads/', '', uri)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{host}/user_uploads/" + fp_path_id + ")"
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
with self.settings(CROSS_REALM_BOT_EMAILS = {user_2.email, user_3.email}):
Use sender realm in user_profiles_from_unvalidated_emails. This change is mostly based on a similar commit from hackerkid in a feature branch. It borrows both code and ideas. Some of it's my own stuff, as I was working on a newer branch. We now call get_user_including_cross_realm_email() inside of user_profiles_from_unvalidated_emails(), instead of using get_user_profile_by_email. This requires a few of our callers to pass down sender into us. One consequence of this change is that we change the symptoms for trying to send to emails outside of your realm. In some cases, we simply raise an error that an email is invalid to us instead of getting into the deeper validate_recipient_user_profiles check.
2017-08-18 12:26:43 +02:00
internal_send_private_message(
realm=r1,
tests: Use email/delivery_email more explicitly. We try to use the correct variation of `email` or `delivery_email`, even though in some databases they are the same. (To find the differences, I temporarily hacked populate_db to use different values for email and delivery_email, and reduced email visibility in the zulip realm to admins only.) In places where we want the "normal" realm behavior of showing emails (and having `email` be the same as `delivery_email`), we use the new `reset_emails_in_zulip_realm` helper. A couple random things: - I fixed any error messages that were leaking the wrong email - a test that claimed to rely on the order of emails no longer does (we sort user_ids instead) - we now use user_ids in some place where we used to use emails - for IRC mirrors I just punted and used `reset_emails_in_zulip_realm` in most places - for MIT-related tests, I didn't fix email vs. delivery_email unless it was obvious I also explicitly reset the realm to a "normal" realm for a couple tests that I frankly just didn't have the energy to debug. (Also, we do want some coverage on the normal case, even though it is "easier" for tests to pass if you mix up `email` and `delivery_email`.) In particular, I just reset data for the analytics and corporate tests.
2020-03-12 14:17:25 +01:00
sender=get_system_bot(user_2.email),
recipient_user=user_1,
Use sender realm in user_profiles_from_unvalidated_emails. This change is mostly based on a similar commit from hackerkid in a feature branch. It borrows both code and ideas. Some of it's my own stuff, as I was working on a newer branch. We now call get_user_including_cross_realm_email() inside of user_profiles_from_unvalidated_emails(), instead of using get_user_profile_by_email. This requires a few of our callers to pass down sender into us. One consequence of this change is that we change the symptoms for trying to send to emails outside of your realm. In some cases, we simply raise an error that an email is invalid to us instead of getting into the deeper validate_recipient_user_profiles check.
2017-08-18 12:26:43 +02:00
content=body,
)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user_1)
test_upload: Explicitly declare subdomains.
2017-08-26 01:20:47 +02:00
response = self.client_get(uri, subdomain=test_subdomain)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
# Confirm other cross-realm users can't read it.
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user_3)
test_upload: Explicitly declare subdomains.
2017-08-26 01:20:47 +02:00
response = self.client_get(uri, subdomain=test_subdomain)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assertEqual(response.status_code, 403)
self.assert_in_response("You are not authorized to view this file.", response)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_download_authorization_invite_only(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
hamlet = self.example_user("hamlet")
cordelia = self.example_user('cordelia')
realm = hamlet.realm
subscribed_users = [hamlet, cordelia]
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
unsubscribed_users = [self.example_user("othello"), self.example_user("prospero")]
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
stream_name = "test-subscribe"
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.make_stream(stream_name, realm=realm, invite_only=True, history_public_to_subscribers=False)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
for subscribed_user in subscribed_users:
self.subscribe(subscribed_user, stream_name)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
uri = result.json()['uri']
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp_path_id = re.sub('/user_uploads/', '', uri)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{realm.host}/user_uploads/" + fp_path_id + ")"
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.send_stream_message(hamlet, stream_name, body, "test")
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
# Owner user should be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
response = self.client_get(uri)
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.logout()
self.assertEqual(len(queries), 5)
text: Fix some typos (most of them found and fixed by codespell). Signed-off-by: Stefan Weil <sw@weilnetz.de>
2020-03-28 01:25:56 +01:00
# Subscribed user who received the message should be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(cordelia)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
response = self.client_get(uri)
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
self.logout()
self.assertEqual(len(queries), 6)
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
def assert_cannot_access_file(user: UserProfile) -> None:
response = self.api_get(user, uri)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.assertEqual(response.status_code, 403)
self.assert_in_response("You are not authorized to view this file.", response)
late_subscribed_user = self.example_user("aaron")
self.subscribe(late_subscribed_user, stream_name)
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
assert_cannot_access_file(late_subscribed_user)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
# Unsubscribed user should not be able to view file
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
for unsubscribed_user in unsubscribed_users:
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
assert_cannot_access_file(unsubscribed_user)
def test_file_download_authorization_invite_only_with_shared_history(self) -> None:
user = self.example_user("hamlet")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
polonius = self.example_user('polonius')
subscribed_users = [user, polonius]
unsubscribed_users = [self.example_user("othello"), self.example_user("prospero")]
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
stream_name = "test-subscribe"
self.make_stream(stream_name, realm=user.realm, invite_only=True, history_public_to_subscribers=True)
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
for subscribed_user in subscribed_users:
self.subscribe(subscribed_user, stream_name)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
result = self.client_post("/json/user_uploads", {'file': fp})
uri = result.json()['uri']
fp_path_id = re.sub('/user_uploads/', '', uri)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{user.realm.host}/user_uploads/" + fp_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(user, stream_name, body, "test")
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.logout()
# Add aaron as a subscribed after the message was sent
late_subscribed_user = self.example_user("aaron")
self.subscribe(late_subscribed_user, stream_name)
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
subscribed_users.append(late_subscribed_user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
# Owner user should be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
response = self.client_get(uri)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
self.logout()
self.assertEqual(len(queries), 5)
# Originally subscribed user should be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(polonius)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
response = self.client_get(uri)
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
self.logout()
self.assertEqual(len(queries), 6)
# Subscribed user who did not receive the message should also be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(late_subscribed_user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
response = self.client_get(uri)
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
self.logout()
# It takes a few extra queries to verify access because of shared history.
self.assertEqual(len(queries), 9)
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
def assert_cannot_access_file(user: UserProfile) -> None:
self.login_user(user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
response = self.client_get(uri)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assertEqual(response.status_code, 403)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
# It takes a few extra queries to verify lack of access with shared history.
self.assertEqual(len(queries), 8)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
self.assert_in_response("You are not authorized to view this file.", response)
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
# Unsubscribed user should not be able to view file
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
for unsubscribed_user in unsubscribed_users:
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
assert_cannot_access_file(unsubscribed_user)
def test_multiple_message_attachment_file_download(self) -> None:
hamlet = self.example_user("hamlet")
for i in range(0, 5):
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
stream_name = f"test-subscribe {i}"
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.make_stream(stream_name, realm=hamlet.realm, invite_only=True, history_public_to_subscribers=True)
self.subscribe(hamlet, stream_name)
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
result = self.client_post("/json/user_uploads", {'file': fp})
uri = result.json()['uri']
fp_path_id = re.sub('/user_uploads/', '', uri)
for i in range(20):
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{hamlet.realm.host}/user_uploads/" + fp_path_id + ")"
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
self.send_stream_message(self.example_user("hamlet"), f"test-subscribe {i % 5}", body, "test")
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
self.logout()
user = self.example_user("aaron")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user)
attachment: Fix handling of stream history. This fixes two issues: * Our guest users feature gave guest users access to public stream attachments even if they couldn't access the public stream. * After a user joins a private stream with our new shared history feature, they couldn't see images uploaded before they joined. The tests need to check for a few types of issues: * The actual access control permissions. * How many database queries are used in the various cases for that second model, especially with multiple messages referencing an attachment. This function gets called a lot, and we want to keep it fast. Fixes #9372.
2018-06-05 21:12:28 +02:00
with queries_captured() as queries:
response = self.client_get(uri)
self.assertEqual(response.status_code, 403)
self.assert_in_response("You are not authorized to view this file.", response)
self.assertEqual(len(queries), 8)
self.subscribe(user, "test-subscribe 1")
self.subscribe(user, "test-subscribe 2")
with queries_captured() as queries:
response = self.client_get(uri)
self.assertEqual(response.status_code, 200)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
# If we were accidentally one query per message, this would be 20+
self.assertEqual(len(queries), 9)
with queries_captured() as queries:
self.assertTrue(validate_attachment_request(user, fp_path_id))
self.assertEqual(len(queries), 6)
self.logout()
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_download_authorization_public(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
subscribed_users = [self.example_user("hamlet"), self.example_user("iago")]
unsubscribed_users = [self.example_user("othello"), self.example_user("prospero")]
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
realm = get_realm("zulip")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
for subscribed_user in subscribed_users:
self.subscribe(subscribed_user, "test-subscribe")
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
uri = result.json()['uri']
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
fp_path_id = re.sub('/user_uploads/', '', uri)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
body = f"First message ...[zulip.txt](http://{realm.host}/user_uploads/" + fp_path_id + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "test-subscribe", body, "test")
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
# Now all users should be able to access the files
for user in subscribed_users + unsubscribed_users:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user)
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
response = self.client_get(uri)
data = b"".join(response.streaming_content)
self.assertEqual(b"zulip!", data)
tests: Add wrapper for client.logout in ZulipTestCase. In this commit we add a logout wrapper so as to enable developers to just do self.logout instead of doing a post request at API endpoint for logout. This is achieved by adding a wrapper function for the Django's client.logout contained in TestCase. We add this by extending ZulipTestCase to have a logout function.
2017-04-18 03:23:32 +02:00
self.logout()
uploads: Add authorization check before serving files. This is a remerge of e985b57259f86dcdbddb115fc5009e2db04496ff (after resolving merge conflicts, updating the tests, adding mypy annotations etc.), which should now be correct, because we've done the necessary database migration. The rebase/remerge work was done by Tim Abbott and Aditya Bansal. This is an important part of #320.
2016-06-17 19:48:17 +02:00
local-uploads: Start running authentication checks on file requests. From here on we start to authenticate uploaded file request before serving this files in production. This involves allowing NGINX to pass on these file requests to Django for authentication and then serve these files by making use on internal redirect requests having x-accel-redirect field. The redirection on requests and loading of x-accel-redirect param is handled by django-sendfile. NOTE: This commit starts to authenticate these requests for Zulip servers running platforms either Ubuntu Xenial (16.04) or above. Fixes: #320 and #291 partially.
2018-02-12 18:18:03 +01:00
def test_serve_local(self) -> None:
zerver/tests: Change use of typing.Text to str.
2018-05-11 01:39:38 +02:00
def check_xsend_links(name: str, name_str_for_test: str,
content_disposition: str='') -> None:
requirements: Upgrade django-sendfile2 from 0.4.3 to 0.5.1. The module was renamed from sendfile to django_sendfile. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-02-05 07:27:45 +01:00
with self.settings(SENDFILE_BACKEND='django_sendfile.backends.nginx'):
requirements: Upgrade Python requirements. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-25 02:29:22 +02:00
_get_sendfile.cache_clear() # To clearout cached version of backend from djangosendfile
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
local-uploads: Start running authentication checks on file requests. From here on we start to authenticate uploaded file request before serving this files in production. This involves allowing NGINX to pass on these file requests to Django for authentication and then serve these files by making use on internal redirect requests having x-accel-redirect field. The redirection on requests and loading of x-accel-redirect param is handled by django-sendfile. NOTE: This commit starts to authenticate these requests for Zulip servers running platforms either Ubuntu Xenial (16.04) or above. Fixes: #320 and #291 partially.
2018-02-12 18:18:03 +01:00
fp = StringIO("zulip!")
fp.name = name
result = self.client_post("/json/user_uploads", {'file': fp})
uri = result.json()['uri']
fp_path_id = re.sub('/user_uploads/', '', uri)
fp_path = os.path.split(fp_path_id)[0]
response = self.client_get(uri)
requirements: Upgrade Python requirements. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-25 02:29:22 +02:00
_get_sendfile.cache_clear()
test_upload: Refactor test_upload output to new filepath. We write a function to set the `LOCAL_UPLOADS_DIR` path depending on whether tests are being run in parallel or serial mode.
2019-07-05 21:50:51 +02:00
test_run, worker = os.path.split(os.path.dirname(settings.LOCAL_UPLOADS_DIR))
local-uploads: Start running authentication checks on file requests. From here on we start to authenticate uploaded file request before serving this files in production. This involves allowing NGINX to pass on these file requests to Django for authentication and then serve these files by making use on internal redirect requests having x-accel-redirect field. The redirection on requests and loading of x-accel-redirect param is handled by django-sendfile. NOTE: This commit starts to authenticate these requests for Zulip servers running platforms either Ubuntu Xenial (16.04) or above. Fixes: #320 and #291 partially.
2018-02-12 18:18:03 +01:00
self.assertEqual(response['X-Accel-Redirect'],
test_runner: Fix SENDFILE_ROOT. This is required by django-sendfile2 0.6.0. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-25 05:10:41 +02:00
'/serve_uploads/' + fp_path + '/' + name_str_for_test)
uploads: Make django-sendfile to force downloading attachments. We start to force downloads for the attachment files. We do this for all files except images or pdf's. We would like images or pdf's to open up in browser itself. Tweaked by tabbott for comment clarity and correctness.
2018-03-13 07:08:27 +01:00
if content_disposition != '':
self.assertIn('attachment;', response['Content-disposition'])
self.assertIn(content_disposition, response['Content-disposition'])
else:
requirements: Upgrade django-sendfile2. django-sendfile2 now always sends a Content-Disposition header even if it’s inline. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-09 00:47:13 +02:00
self.assertIn('inline;', response['Content-disposition'])
upload: Fix browser caching of uploads with local uploads backend. Apparently, our change in b8a1050fc4135b2d2921052c3f1ef55b53dbb028 to stop caching responses on API endpoints accidentally ended up affecting uploaded files as well. Fix this by explicitly setting a Cache-Control header in our Sendfile responses, as well as changing our outer API caching code to only set the never cache headers if the view function didn't explicitly specify them itself. This is not directly related to #13088, as that is a similar issue with the S3 backend. Thanks to Gert Burger for the report.
2019-10-02 00:10:30 +02:00
self.assertEqual(set(response["Cache-Control"].split(", ")),
{"private", "immutable"})
uploads: Make django-sendfile to force downloading attachments. We start to force downloads for the attachment files. We do this for all files except images or pdf's. We would like images or pdf's to open up in browser itself. Tweaked by tabbott for comment clarity and correctness.
2018-03-13 07:08:27 +01:00
requirements: Use maintained fork django-sendfile2 of django-sendfile The original seems to be unmaintained (johnsensible/django-sendfile#65). Notably, this fixes a bug in the filename parameter, which perviously showed the Python 3 repr of a byte string (johnsensible/django-sendfile#49). Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-12 01:52:09 +02:00
check_xsend_links('zulip.txt', 'zulip.txt', 'filename="zulip.txt"')
uploads: Make django-sendfile to force downloading attachments. We start to force downloads for the attachment files. We do this for all files except images or pdf's. We would like images or pdf's to open up in browser itself. Tweaked by tabbott for comment clarity and correctness.
2018-03-13 07:08:27 +01:00
check_xsend_links('áéБД.txt', '%C3%A1%C3%A9%D0%91%D0%94.txt',
"filename*=UTF-8''%C3%A1%C3%A9%D0%91%D0%94.txt")
requirements: Use maintained fork django-sendfile2 of django-sendfile The original seems to be unmaintained (johnsensible/django-sendfile#65). Notably, this fixes a bug in the filename parameter, which perviously showed the Python 3 repr of a byte string (johnsensible/django-sendfile#49). Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-12 01:52:09 +02:00
check_xsend_links('zulip.html', 'zulip.html', 'filename="zulip.html"')
check_xsend_links('zulip.sh', 'zulip.sh', 'filename="zulip.sh"')
uploads: Make django-sendfile to force downloading attachments. We start to force downloads for the attachment files. We do this for all files except images or pdf's. We would like images or pdf's to open up in browser itself. Tweaked by tabbott for comment clarity and correctness.
2018-03-13 07:08:27 +01:00
check_xsend_links('zulip.jpeg', 'zulip.jpeg')
check_xsend_links('áéБД.pdf', '%C3%A1%C3%A9%D0%91%D0%94.pdf')
requirements: Use maintained fork django-sendfile2 of django-sendfile The original seems to be unmaintained (johnsensible/django-sendfile#65). Notably, this fixes a bug in the filename parameter, which perviously showed the Python 3 repr of a byte string (johnsensible/django-sendfile#49). Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-12 01:52:09 +02:00
check_xsend_links('zulip', 'zulip', 'filename="zulip"')
local-uploads: Start running authentication checks on file requests. From here on we start to authenticate uploaded file request before serving this files in production. This involves allowing NGINX to pass on these file requests to Django for authentication and then serve these files by making use on internal redirect requests having x-accel-redirect field. The redirection on requests and loading of x-accel-redirect param is handled by django-sendfile. NOTE: This commit starts to authenticate these requests for Zulip servers running platforms either Ubuntu Xenial (16.04) or above. Fixes: #320 and #291 partially.
2018-02-12 18:18:03 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def tearDown(self) -> None:
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
zerver/tests: Test ensure_medium_avatar_url when the file exists.
2018-05-14 23:47:19 +02:00
testing: Serialize test_upload. This commit makes test_upload tests compatible with parallel model.
2017-02-16 10:10:37 +01:00
class AvatarTest(UploadSerializeMixin, ZulipTestCase):
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_avatar_field(self) -> None:
Add get_avatar_field() function. This function is designed to replace avatar_url() and avatar_url_from_dict() over time. There are a few things new about it: * We make the parameters more explicit, rather than passing in an opaque dictionary or requiring a UserProfile object. (A lot of our callers want to use `values()` for efficiency sake, since we are often doing bulk user operations.) * We start to support the client_gravatar option.
2017-10-10 03:53:25 +02:00
with self.settings(AVATAR_SALT="salt"):
url = get_avatar_field(
user_id=17,
realm_id=5,
email='foo@example.com',
avatar_source=UserProfile.AVATAR_FROM_USER,
avatar_version=2,
medium=True,
client_gravatar=False,
)
self.assertEqual(
url,
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
'/user_avatars/5/fc2b9f1a81f4508a4df2d95451a2a77e0524ca0e-medium.png?x=x&version=2',
Add get_avatar_field() function. This function is designed to replace avatar_url() and avatar_url_from_dict() over time. There are a few things new about it: * We make the parameters more explicit, rather than passing in an opaque dictionary or requiring a UserProfile object. (A lot of our callers want to use `values()` for efficiency sake, since we are often doing bulk user operations.) * We start to support the client_gravatar option.
2017-10-10 03:53:25 +02:00
)
url = get_avatar_field(
user_id=9999,
realm_id=9999,
email='foo@example.com',
avatar_source=UserProfile.AVATAR_FROM_GRAVATAR,
avatar_version=2,
medium=True,
client_gravatar=False,
)
self.assertEqual(
url,
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
'https://secure.gravatar.com/avatar/b48def645758b95537d4424c84d1a9ff?d=identicon&s=500&version=2',
Add get_avatar_field() function. This function is designed to replace avatar_url() and avatar_url_from_dict() over time. There are a few things new about it: * We make the parameters more explicit, rather than passing in an opaque dictionary or requiring a UserProfile object. (A lot of our callers want to use `values()` for efficiency sake, since we are often doing bulk user operations.) * We start to support the client_gravatar option.
2017-10-10 03:53:25 +02:00
)
url = get_avatar_field(
user_id=9999,
realm_id=9999,
email='foo@example.com',
avatar_source=UserProfile.AVATAR_FROM_GRAVATAR,
avatar_version=2,
medium=True,
client_gravatar=True,
)
self.assertEqual(url, None)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_avatar_url(self) -> None:
avatar: Fix buggy avatar URL scheme with S3 backend. Also adds tests for the avatar URL scheme.
2017-03-21 23:53:54 +01:00
"""Verifies URL schemes for avatars and realm icons."""
python: Convert assignment type annotations to Python 3.6 style. This commit was split by tabbott; this piece covers the vast majority of files in Zulip, but excludes scripts/, tools/, and puppet/ to help ensure we at least show the right error messages for Xenial systems. We can likely further refine the remaining pieces with some testing. Generated by com2ann, with whitespace fixes and various manual fixes for runtime issues: - invoiced_through: Optional[LicenseLedger] = models.ForeignKey( + invoiced_through: Optional["LicenseLedger"] = models.ForeignKey( -_apns_client: Optional[APNsClient] = None +_apns_client: Optional["APNsClient"] = None - notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - signup_notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + signup_notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - author: Optional[UserProfile] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) + author: Optional["UserProfile"] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) - bot_owner: Optional[UserProfile] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) + bot_owner: Optional["UserProfile"] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) - default_sending_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) - default_events_register_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_sending_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_events_register_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) -descriptors_by_handler_id: Dict[int, ClientDescriptor] = {} +descriptors_by_handler_id: Dict[int, "ClientDescriptor"] = {} -worker_classes: Dict[str, Type[QueueProcessingWorker]] = {} -queues: Dict[str, Dict[str, Type[QueueProcessingWorker]]] = {} +worker_classes: Dict[str, Type["QueueProcessingWorker"]] = {} +queues: Dict[str, Dict[str, Type["QueueProcessingWorker"]]] = {} -AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional[LDAPSearch] = None +AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional["LDAPSearch"] = None Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-22 01:09:50 +02:00
backend: ZulipUploadBackend = LocalUploadBackend()
avatar: Fix buggy avatar URL scheme with S3 backend. Also adds tests for the avatar URL scheme.
2017-03-21 23:53:54 +01:00
self.assertEqual(backend.get_avatar_url("hash", False),
"/user_avatars/hash.png?x=x")
self.assertEqual(backend.get_avatar_url("hash", True),
"/user_avatars/hash-medium.png?x=x")
test_upload: Add tests for realm icon URL scheme.
2017-03-22 00:09:10 +01:00
self.assertEqual(backend.get_realm_icon_url(15, 1),
"/user_avatars/15/realm/icon.png?version=1")
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
self.assertEqual(backend.get_realm_logo_url(15, 1, False),
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
"/user_avatars/15/realm/logo.png?version=1")
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
self.assertEqual(backend.get_realm_logo_url(15, 1, True),
"/user_avatars/15/realm/night_logo.png?version=1")
avatar: Fix buggy avatar URL scheme with S3 backend. Also adds tests for the avatar URL scheme.
2017-03-21 23:53:54 +01:00
with self.settings(S3_AVATAR_BUCKET="bucket"):
backend = S3UploadBackend()
self.assertEqual(backend.get_avatar_url("hash", False),
"https://bucket.s3.amazonaws.com/hash?x=x")
self.assertEqual(backend.get_avatar_url("hash", True),
"https://bucket.s3.amazonaws.com/hash-medium.png?x=x")
test_upload: Add tests for realm icon URL scheme.
2017-03-22 00:09:10 +01:00
self.assertEqual(backend.get_realm_icon_url(15, 1),
"https://bucket.s3.amazonaws.com/15/realm/icon.png?version=1")
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
self.assertEqual(backend.get_realm_logo_url(15, 1, False),
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
"https://bucket.s3.amazonaws.com/15/realm/logo.png?version=1")
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
self.assertEqual(backend.get_realm_logo_url(15, 1, True),
"https://bucket.s3.amazonaws.com/15/realm/night_logo.png?version=1")
avatar: Fix buggy avatar URL scheme with S3 backend. Also adds tests for the avatar URL scheme.
2017-03-21 23:53:54 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_multiple_upload_failure(self) -> None:
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
"""
Attempting to upload two files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Add test about avatar image was uploaded properly or not Add test about avatar image was uploaded properly or not in `tests.BotTest.test_add_bot_with_user_avatar` and `tests.BotTest.test_patch_bot_avatar`. Add `get_test_image_file()` and `avatar_disk_path()` in `zerver.lib.test_helpers` and deduplicate some codes. Fixes #1276.
2016-12-19 08:48:03 +01:00
with get_test_image_file('img.png') as fp1, \
get_test_image_file('img.png') as fp2:
urls: Use POST for zerver.views.user_settings.set_avatar_backend. The set_avatar_backend is changed from PUT to POST becuase this is not idempotent.
2017-07-05 19:15:15 +02:00
result = self.client_post("/json/users/me/avatar", {'f1': fp1, 'f2': fp2})
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
self.assert_json_error(result, "You must upload exactly one avatar.")
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_no_file_upload_failure(self) -> None:
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
"""
Calling this endpoint with no files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
urls: Use POST for zerver.views.user_settings.set_avatar_backend. The set_avatar_backend is changed from PUT to POST becuase this is not idempotent.
2017-07-05 19:15:15 +02:00
result = self.client_post("/json/users/me/avatar")
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
self.assert_json_error(result, "You must upload exactly one avatar.")
realm: Add setting to disable avatar changes. This is useful when syncing avatars from an integrated LDAP/active directory. The upload avatar and delete avatar buttons are hidden if avatar changes are disabled and the user is a non-admin. If the user has a gravatar set, then the user will not be able to upload an image as their avatar if avatar changes are disabled. Part of #12132.
2019-04-23 04:51:04 +02:00
def test_avatar_changes_disabled_failure(self) -> None:
"""
Attempting to upload avatar on a realm with avatar changes disabled should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('cordelia')
realm: Add setting to disable avatar changes. This is useful when syncing avatars from an integrated LDAP/active directory. The upload avatar and delete avatar buttons are hidden if avatar changes are disabled and the user is a non-admin. If the user has a gravatar set, then the user will not be able to upload an image as their avatar if avatar changes are disabled. Part of #12132.
2019-04-23 04:51:04 +02:00
do_set_realm_property(self.example_user("cordelia").realm, "avatar_changes_disabled", True)
with get_test_image_file('img.png') as fp1:
result = self.client_post("/json/users/me/avatar", {'f1': fp1})
self.assert_json_error(result, "Avatar changes are disabled in this organization.")
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
correct_files = [
('img.png', 'png_resized.png'),
pep8: Add compliance with rule E261 to tests/test_upload.py.
2017-07-11 21:53:16 +02:00
('img.jpg', None), # jpeg resizing is platform-dependent
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
('img.gif', 'gif_resized.png'),
uploads: Convert CMYK to RGB when saving avatar/realm icon as png. Fixes #8546. PNG does not support CMYK mode. CMYK file is converted to RGB and then saved as PNG.
2018-03-02 17:56:25 +01:00
('img.tif', 'tif_resized.png'),
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
('cmyk.jpg', None),
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
]
corrupt_files = ['text.txt', 'corrupt.png', 'corrupt.gif']
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_gravatar_avatar(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Added ZulipTestCase.example_user() function. The example_user() function is specifically designed for AARON, hamlet, cordelia, and friends, and it allows a concise way of using their built-in user profiles. Eventually, the widespread use of example_user() should help us with refactorings such as moving the tests users out of the "zulip.com" realm and deprecating get_user_profile_by_email.
2017-05-07 17:21:26 +02:00
cordelia = self.example_user('cordelia')
tests: Use email/delivery_email more explicitly. We try to use the correct variation of `email` or `delivery_email`, even though in some databases they are the same. (To find the differences, I temporarily hacked populate_db to use different values for email and delivery_email, and reduced email visibility in the zulip realm to admins only.) In places where we want the "normal" realm behavior of showing emails (and having `email` be the same as `delivery_email`), we use the new `reset_emails_in_zulip_realm` helper. A couple random things: - I fixed any error messages that were leaking the wrong email - a test that claimed to rely on the order of emails no longer does (we sort user_ids instead) - we now use user_ids in some place where we used to use emails - for IRC mirrors I just punted and used `reset_emails_in_zulip_realm` in most places - for MIT-related tests, I didn't fix email vs. delivery_email unless it was obvious I also explicitly reset the realm to a "normal" realm for a couple tests that I frankly just didn't have the energy to debug. (Also, we do want some coverage on the normal case, even though it is "easier" for tests to pass if you mix up `email` and `delivery_email`.) In particular, I just reset data for the analytics and corporate tests.
2020-03-12 14:17:25 +01:00
cordelia.email = cordelia.delivery_email
cordelia.save()
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
cordelia.avatar_source = UserProfile.AVATAR_FROM_GRAVATAR
cordelia.save()
with self.settings(ENABLE_GRAVATAR=True):
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get("/avatar/cordelia@zulip.com?foo=bar")
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertEqual(redirect_url, str(avatar_url(cordelia)) + '&foo=bar')
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
with self.settings(ENABLE_GRAVATAR=False):
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get("/avatar/cordelia@zulip.com?foo=bar")
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia)) + '&foo=bar'))
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_user_avatar(self) -> None:
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
hamlet = self.example_user("hamlet")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
tests: Added ZulipTestCase.example_user() function. The example_user() function is specifically designed for AARON, hamlet, cordelia, and friends, and it allows a concise way of using their built-in user profiles. Eventually, the widespread use of example_user() should help us with refactorings such as moving the tests users out of the "zulip.com" realm and deprecating get_user_profile_by_email.
2017-05-07 17:21:26 +02:00
cordelia = self.example_user('cordelia')
tests: Use email/delivery_email more explicitly. We try to use the correct variation of `email` or `delivery_email`, even though in some databases they are the same. (To find the differences, I temporarily hacked populate_db to use different values for email and delivery_email, and reduced email visibility in the zulip realm to admins only.) In places where we want the "normal" realm behavior of showing emails (and having `email` be the same as `delivery_email`), we use the new `reset_emails_in_zulip_realm` helper. A couple random things: - I fixed any error messages that were leaking the wrong email - a test that claimed to rely on the order of emails no longer does (we sort user_ids instead) - we now use user_ids in some place where we used to use emails - for IRC mirrors I just punted and used `reset_emails_in_zulip_realm` in most places - for MIT-related tests, I didn't fix email vs. delivery_email unless it was obvious I also explicitly reset the realm to a "normal" realm for a couple tests that I frankly just didn't have the energy to debug. (Also, we do want some coverage on the normal case, even though it is "easier" for tests to pass if you mix up `email` and `delivery_email`.) In particular, I just reset data for the analytics and corporate tests.
2020-03-12 14:17:25 +01:00
cordelia.email = cordelia.delivery_email
cordelia.save()
test_upload: Prepare for moving system bots to zulipinternal.
2019-07-24 07:34:48 +02:00
cross_realm_bot = get_system_bot(settings.WELCOME_BOT)
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
cordelia.avatar_source = UserProfile.AVATAR_FROM_USER
cordelia.save()
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get("/avatar/cordelia@zulip.com?foo=bar")
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia)) + '&foo=bar'))
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.client_get(f"/avatar/{cordelia.id}?foo=bar")
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia)) + '&foo=bar'))
Support email changes for !avatar syntax. Significantly modified by tabbott to avoid calling get_user_profile_by_email in bugdown, and have 100% test coverage of the views code. Fixes #2041.
2016-10-24 16:42:43 +02:00
avatars: Fix 500 with the /avatar/ URL to be a 404. Apparently, we had a somewhat sloppy regular expression for the URL for this endpoint.
2018-04-18 21:40:54 +02:00
response = self.client_get("/avatar/")
self.assertEqual(response.status_code, 404)
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
self.logout()
# Test /avatar/<email_or_id> endpoint with HTTP basic auth.
response = self.api_get(hamlet, "/avatar/cordelia@zulip.com?foo=bar")
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia)) + '&foo=bar'))
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.api_get(hamlet, f"/avatar/{cordelia.id}?foo=bar")
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia)) + '&foo=bar'))
# Test cross_realm_bot avatar access using email.
response = self.api_get(hamlet, "/avatar/welcome-bot@zulip.com?foo=bar")
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cross_realm_bot)) + '&foo=bar'))
# Test cross_realm_bot avatar access using id.
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.api_get(hamlet, f"/avatar/{cross_realm_bot.id}?foo=bar")
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cross_realm_bot)) + '&foo=bar'))
response = self.client_get("/avatar/cordelia@zulip.com?foo=bar")
self.assert_json_error(response, "Not logged in: API authentication or user session required",
status_code=401)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_user_avatar_medium(self) -> None:
test performance: Pass in users to api_* helpers. This reduces query counts in some cases, since we no longer need to look up the user again. In particular, it reduces some noise when we count queries for O(N)-related tests. The query count is usually reduced by 2 per API call. We no longer need to look up Realm and UserProfile. In most cases we are saving these lookups for the whole tests, since we usually already have the `user` objects for other reasons. In a few places we are simply moving where that query happens within the test. In some places I shorten names like `test_user` or `user_profile` to just be `user`.
2020-03-10 11:48:26 +01:00
hamlet = self.example_user("hamlet")
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(hamlet)
tests: Added ZulipTestCase.example_user() function. The example_user() function is specifically designed for AARON, hamlet, cordelia, and friends, and it allows a concise way of using their built-in user profiles. Eventually, the widespread use of example_user() should help us with refactorings such as moving the tests users out of the "zulip.com" realm and deprecating get_user_profile_by_email.
2017-05-07 17:21:26 +02:00
cordelia = self.example_user('cordelia')
tests: Use email/delivery_email more explicitly. We try to use the correct variation of `email` or `delivery_email`, even though in some databases they are the same. (To find the differences, I temporarily hacked populate_db to use different values for email and delivery_email, and reduced email visibility in the zulip realm to admins only.) In places where we want the "normal" realm behavior of showing emails (and having `email` be the same as `delivery_email`), we use the new `reset_emails_in_zulip_realm` helper. A couple random things: - I fixed any error messages that were leaking the wrong email - a test that claimed to rely on the order of emails no longer does (we sort user_ids instead) - we now use user_ids in some place where we used to use emails - for IRC mirrors I just punted and used `reset_emails_in_zulip_realm` in most places - for MIT-related tests, I didn't fix email vs. delivery_email unless it was obvious I also explicitly reset the realm to a "normal" realm for a couple tests that I frankly just didn't have the energy to debug. (Also, we do want some coverage on the normal case, even though it is "easier" for tests to pass if you mix up `email` and `delivery_email`.) In particular, I just reset data for the analytics and corporate tests.
2020-03-12 14:17:25 +01:00
cordelia.email = cordelia.delivery_email
cordelia.save()
Add support for getting medium size profile images.
2017-02-23 20:13:56 +01:00
cordelia.avatar_source = UserProfile.AVATAR_FROM_USER
cordelia.save()
response = self.client_get("/avatar/cordelia@zulip.com/medium?foo=bar")
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia, True)) + '&foo=bar'))
Add support for getting medium size profile images.
2017-02-23 20:13:56 +01:00
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.client_get(f"/avatar/{cordelia.id}/medium?foo=bar")
Add support for getting medium size profile images.
2017-02-23 20:13:56 +01:00
redirect_url = response['Location']
mypy: Enable strict optional in lib/avatar.py. Add assert to function and modify tests in order to pass under strict conditions.
2018-05-17 16:22:08 +02:00
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia, True)) + '&foo=bar'))
Add support for getting medium size profile images.
2017-02-23 20:13:56 +01:00
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
self.logout()
# Test /avatar/<email_or_id>/medium endpoint with HTTP basic auth.
response = self.api_get(hamlet, "/avatar/cordelia@zulip.com/medium?foo=bar")
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia, True)) + '&foo=bar'))
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
response = self.api_get(hamlet, f"/avatar/{cordelia.id}/medium?foo=bar")
avatar: Allow API authentication for /avatar/ routes. This makes it feasibly for the mobile apps to correctly render user avatars generated by the `!avatar()` syntax.
2018-08-13 19:09:09 +02:00
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(str(avatar_url(cordelia, True)) + '&foo=bar'))
response = self.client_get("/avatar/cordelia@zulip.com/medium?foo=bar")
self.assert_json_error(response, "Not logged in: API authentication or user session required",
status_code=401)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_non_valid_user_avatar(self) -> None:
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
# It's debatable whether we should generate avatars for non-users,
# but this test just validates the current code's behavior.
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get("/avatar/nonexistent_user@zulip.com?foo=bar")
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
redirect_url = response['Location']
Have functions in lib/avatar.py use avatar versions. In some cases here we simplify things by calling avatar_url() instead of get_avatar_url(), when we have a user_profile record handy. For other cases we pass in an extra avatar_version parameter to get_avatar_url(), including from avatar_url().
2017-02-16 22:35:57 +01:00
actual_url = 'https://secure.gravatar.com/avatar/444258b521f152129eb0c162996e572d?d=identicon&version=1&foo=bar'
Add test coverage for /avatar/<email>
2016-07-13 01:56:59 +02:00
self.assertEqual(redirect_url, actual_url)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_valid_avatars(self) -> None:
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
"""
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
A PUT request to /json/users/me/avatar with a valid file should return a url and actually create an avatar.
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
"""
Bump user_profile.avatar_version when we change avatars. We have a field called user_profile.avatar_version that will track avatar versions and be used tactically in avatar urls to get browsers to refresh their caches (in future commits). This commit bumps the avatar version when we update avatars. We do this in do_change_avatar_fields(), which was do_change_avatar_source() before this change. Adarsh did the initial work here, and Steve Howell (showell) also made changes.
2017-01-28 19:05:20 +01:00
version = 2
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
for fname, rfname in self.correct_files:
# TODO: use self.subTest once we're exclusively on python 3 by uncommenting the line below.
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Add test about avatar image was uploaded properly or not Add test about avatar image was uploaded properly or not in `tests.BotTest.test_add_bot_with_user_avatar` and `tests.BotTest.test_patch_bot_avatar`. Add `get_test_image_file()` and `avatar_disk_path()` in `zerver.lib.test_helpers` and deduplicate some codes. Fixes #1276.
2016-12-19 08:48:03 +01:00
with get_test_image_file(fname) as fp:
urls: Use POST for zerver.views.user_settings.set_avatar_backend. The set_avatar_backend is changed from PUT to POST becuase this is not idempotent.
2017-07-05 19:15:15 +02:00
result = self.client_post("/json/users/me/avatar", {'file': fp})
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("avatar_url", result.json())
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
base = '/user_avatars/'
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
url = result.json()['avatar_url']
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, url[:len(base)])
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
Update types of images accepted as avatars. * Reject SVG in frontend because backend doesn't accept it. * Add JPEG format in backend tests for avatar upload.
2016-07-26 08:14:49 +02:00
if rfname is not None:
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get(url)
Update types of images accepted as avatars. * Reject SVG in frontend because backend doesn't accept it. * Add JPEG format in backend tests for avatar upload.
2016-07-26 08:14:49 +02:00
data = b"".join(response.streaming_content)
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(Image.open(io.BytesIO(data)).size, (100, 100))
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
Add medium size avatars for use on the user's own settings page. This adds a medium (500px) size avatar thumbnail, that can be referenced as `{name}-medium.png`. It is intended to be used on the user's own settings page, though we may come up with other use cases for high-resolution avatars in the future. This will automatically generate and upload the medium avatar images when a new avatar original is uploaded, and contains a migration (contributed by Kirill Kanakhin) to ensure all pre-existing avatar images have a medium avatar. Note that this implementation does not provide an endpoint for fetching the medium-size avatar for another user. [substantially modified by tabbott]
2016-09-20 21:48:48 +02:00
# Verify that the medium-size avatar was created
tests: Added ZulipTestCase.example_user() function. The example_user() function is specifically designed for AARON, hamlet, cordelia, and friends, and it allows a concise way of using their built-in user profiles. Eventually, the widespread use of example_user() should help us with refactorings such as moving the tests users out of the "zulip.com" realm and deprecating get_user_profile_by_email.
2017-05-07 17:21:26 +02:00
user_profile = self.example_user('hamlet')
tests: Add test about avatar image was uploaded properly or not Add test about avatar image was uploaded properly or not in `tests.BotTest.test_add_bot_with_user_avatar` and `tests.BotTest.test_patch_bot_avatar`. Add `get_test_image_file()` and `avatar_disk_path()` in `zerver.lib.test_helpers` and deduplicate some codes. Fixes #1276.
2016-12-19 08:48:03 +01:00
medium_avatar_disk_path = avatar_disk_path(user_profile, medium=True)
Add medium size avatars for use on the user's own settings page. This adds a medium (500px) size avatar thumbnail, that can be referenced as `{name}-medium.png`. It is intended to be used on the user's own settings page, though we may come up with other use cases for high-resolution avatars in the future. This will automatically generate and upload the medium avatar images when a new avatar original is uploaded, and contains a migration (contributed by Kirill Kanakhin) to ensure all pre-existing avatar images have a medium avatar. Note that this implementation does not provide an endpoint for fetching the medium-size avatar for another user. [substantially modified by tabbott]
2016-09-20 21:48:48 +02:00
self.assertTrue(os.path.exists(medium_avatar_disk_path))
zerver/tests: Test ensure_medium_avatar_url when the file exists.
2018-05-14 23:47:19 +02:00
# Verify that ensure_medium_avatar_url does not overwrite this file if it exists
with mock.patch('zerver.lib.upload.write_local_file') as mock_write_local_file:
zerver.lib.upload.upload_backend.ensure_medium_avatar_image(user_profile)
self.assertFalse(mock_write_local_file.called)
Add medium size avatars for use on the user's own settings page. This adds a medium (500px) size avatar thumbnail, that can be referenced as `{name}-medium.png`. It is intended to be used on the user's own settings page, though we may come up with other use cases for high-resolution avatars in the future. This will automatically generate and upload the medium avatar images when a new avatar original is uploaded, and contains a migration (contributed by Kirill Kanakhin) to ensure all pre-existing avatar images have a medium avatar. Note that this implementation does not provide an endpoint for fetching the medium-size avatar for another user. [substantially modified by tabbott]
2016-09-20 21:48:48 +02:00
# Confirm that ensure_medium_avatar_url works to recreate
# medium size avatars from the original if needed
os.remove(medium_avatar_disk_path)
self.assertFalse(os.path.exists(medium_avatar_disk_path))
Refactoring: Replace get_user_profile_by_email() in lib/upload.py
2017-05-23 21:17:47 +02:00
zerver.lib.upload.upload_backend.ensure_medium_avatar_image(user_profile)
Add medium size avatars for use on the user's own settings page. This adds a medium (500px) size avatar thumbnail, that can be referenced as `{name}-medium.png`. It is intended to be used on the user's own settings page, though we may come up with other use cases for high-resolution avatars in the future. This will automatically generate and upload the medium avatar images when a new avatar original is uploaded, and contains a migration (contributed by Kirill Kanakhin) to ensure all pre-existing avatar images have a medium avatar. Note that this implementation does not provide an endpoint for fetching the medium-size avatar for another user. [substantially modified by tabbott]
2016-09-20 21:48:48 +02:00
self.assertTrue(os.path.exists(medium_avatar_disk_path))
Bump user_profile.avatar_version when we change avatars. We have a field called user_profile.avatar_version that will track avatar versions and be used tactically in avatar urls to get browsers to refresh their caches (in future commits). This commit bumps the avatar version when we update avatars. We do this in do_change_avatar_fields(), which was do_change_avatar_source() before this change. Adarsh did the initial work here, and Steve Howell (showell) also made changes.
2017-01-28 19:05:20 +01:00
# Verify whether the avatar_version gets incremented with every new upload
self.assertEqual(user_profile.avatar_version, version)
version += 1
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
def test_copy_avatar_image(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
with get_test_image_file('img.png') as image_file:
self.client_post("/json/users/me/avatar", {'file': image_file})
source_user_profile = self.example_user('hamlet')
target_user_profile = self.example_user('iago')
copy_user_settings(source_user_profile, target_user_profile)
source_path_id = avatar_disk_path(source_user_profile)
target_path_id = avatar_disk_path(target_user_profile)
self.assertNotEqual(source_path_id, target_path_id)
self.assertEqual(open(source_path_id, "rb").read(), open(target_path_id, "rb").read())
source_original_path_id = avatar_disk_path(source_user_profile, original=True)
target_original_path_id = avatar_disk_path(target_user_profile, original=True)
self.assertEqual(open(source_original_path_id, "rb").read(), open(target_original_path_id, "rb").read())
source_medium_path_id = avatar_disk_path(source_user_profile, medium=True)
target_medium_path_id = avatar_disk_path(target_user_profile, medium=True)
self.assertEqual(open(source_medium_path_id, "rb").read(), open(target_medium_path_id, "rb").read())
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
def test_delete_avatar_image(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
with get_test_image_file('img.png') as image_file:
self.client_post("/json/users/me/avatar", {'file': image_file})
user = self.example_user('hamlet')
avatar_path_id = avatar_disk_path(user)
avatar_original_path_id = avatar_disk_path(user, original=True)
avatar_medium_path_id = avatar_disk_path(user, medium=True)
self.assertEqual(user.avatar_source, UserProfile.AVATAR_FROM_USER)
self.assertTrue(os.path.isfile(avatar_path_id))
self.assertTrue(os.path.isfile(avatar_original_path_id))
self.assertTrue(os.path.isfile(avatar_medium_path_id))
zerver.lib.actions.do_delete_avatar_image(user)
self.assertEqual(user.avatar_source, UserProfile.AVATAR_FROM_GRAVATAR)
self.assertFalse(os.path.isfile(avatar_path_id))
self.assertFalse(os.path.isfile(avatar_original_path_id))
self.assertFalse(os.path.isfile(avatar_medium_path_id))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_invalid_avatars(self) -> None:
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
"""
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
A PUT request to /json/users/me/avatar with an invalid file should fail.
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
"""
for fname in self.corrupt_files:
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
tests: Add test about avatar image was uploaded properly or not Add test about avatar image was uploaded properly or not in `tests.BotTest.test_add_bot_with_user_avatar` and `tests.BotTest.test_patch_bot_avatar`. Add `get_test_image_file()` and `avatar_disk_path()` in `zerver.lib.test_helpers` and deduplicate some codes. Fixes #1276.
2016-12-19 08:48:03 +01:00
with get_test_image_file(fname) as fp:
urls: Use POST for zerver.views.user_settings.set_avatar_backend. The set_avatar_backend is changed from PUT to POST becuase this is not idempotent.
2017-07-05 19:15:15 +02:00
result = self.client_post("/json/users/me/avatar", {'file': fp})
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
upload: Rename BadImageError exception to not mention avatars. This is preparation for using that function to decode realm icons as well.
2017-02-26 20:17:34 +01:00
self.assert_json_error(result, "Could not decode image; did you upload an image file?")
tests: Added ZulipTestCase.example_user() function. The example_user() function is specifically designed for AARON, hamlet, cordelia, and friends, and it allows a concise way of using their built-in user profiles. Eventually, the widespread use of example_user() should help us with refactorings such as moving the tests users out of the "zulip.com" realm and deprecating get_user_profile_by_email.
2017-05-07 17:21:26 +02:00
user_profile = self.example_user('hamlet')
Bump user_profile.avatar_version when we change avatars. We have a field called user_profile.avatar_version that will track avatar versions and be used tactically in avatar urls to get browsers to refresh their caches (in future commits). This commit bumps the avatar version when we update avatars. We do this in do_change_avatar_fields(), which was do_change_avatar_source() before this change. Adarsh did the initial work here, and Steve Howell (showell) also made changes.
2017-01-28 19:05:20 +01:00
self.assertEqual(user_profile.avatar_version, 1)
Add tests for checking image validity in SetAvatarTest.
2016-04-17 23:57:03 +02:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_delete_avatar(self) -> None:
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
"""
settings: Rename "user avatar" to "profile picture" This renames references to user avatars, bot avatars, or organization icons to profile pictures. The string in the UI are updated, in addition to the help files, comments, and documentation. Actual variable/function names, changelog entries, routes, and s3 buckets are left as-is in order to avoid introducing bugs. Fixes #11824.
2019-03-09 17:43:48 +01:00
A DELETE request to /json/users/me/avatar should delete the profile picture and return gravatar URL
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('cordelia')
realm: Add setting to disable avatar changes. This is useful when syncing avatars from an integrated LDAP/active directory. The upload avatar and delete avatar buttons are hidden if avatar changes are disabled and the user is a non-admin. If the user has a gravatar set, then the user will not be able to upload an image as their avatar if avatar changes are disabled. Part of #12132.
2019-04-23 04:51:04 +02:00
cordelia = self.example_user("cordelia")
cordelia.avatar_source = UserProfile.AVATAR_FROM_USER
cordelia.save()
do_set_realm_property(cordelia.realm, 'avatar_changes_disabled', True)
result = self.client_delete("/json/users/me/avatar")
self.assert_json_error(result, "Avatar changes are disabled in this organization.", 400)
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
realm: Add setting to disable avatar changes. This is useful when syncing avatars from an integrated LDAP/active directory. The upload avatar and delete avatar buttons are hidden if avatar changes are disabled and the user is a non-admin. If the user has a gravatar set, then the user will not be able to upload an image as their avatar if avatar changes are disabled. Part of #12132.
2019-04-23 04:51:04 +02:00
do_set_realm_property(cordelia.realm, 'avatar_changes_disabled', False)
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
result = self.client_delete("/json/users/me/avatar")
realm: Add setting to disable avatar changes. This is useful when syncing avatars from an integrated LDAP/active directory. The upload avatar and delete avatar buttons are hidden if avatar changes are disabled and the user is a non-admin. If the user has a gravatar set, then the user will not be able to upload an image as their avatar if avatar changes are disabled. Part of #12132.
2019-04-23 04:51:04 +02:00
user_profile = self.example_user("cordelia")
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("avatar_url", result.json())
self.assertEqual(result.json()["avatar_url"], avatar_url(user_profile))
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
self.assertEqual(user_profile.avatar_source, UserProfile.AVATAR_FROM_GRAVATAR)
Bump user_profile.avatar_version when we change avatars. We have a field called user_profile.avatar_version that will track avatar versions and be used tactically in avatar urls to get browsers to refresh their caches (in future commits). This commit bumps the avatar version when we update avatars. We do this in do_change_avatar_fields(), which was do_change_avatar_source() before this change. Adarsh did the initial work here, and Steve Howell (showell) also made changes.
2017-01-28 19:05:20 +01:00
self.assertEqual(user_profile.avatar_version, 2)
settings: Implement delete avatar functionality
2016-12-21 18:34:03 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_avatar_upload_file_size_error(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add size limit for uploading user avatars and realm icons. - Add settings parameter for max realm icon size. - Add settings parameter for max user avatar size. - Add checking file size to avatar and icon uploading views. - Transfer file size limit parameter to frontend. - Add tests.
2017-03-06 06:22:28 +01:00
with get_test_image_file(self.correct_files[0][0]) as fp:
with self.settings(MAX_AVATAR_FILE_SIZE=0):
urls: Use POST for zerver.views.user_settings.set_avatar_backend. The set_avatar_backend is changed from PUT to POST becuase this is not idempotent.
2017-07-05 19:15:15 +02:00
result = self.client_post("/json/users/me/avatar", {'file': fp})
python: Convert percent formatting to .format for translated strings. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-15 23:22:24 +02:00
self.assert_json_error(result, "Uploaded file is larger than the allowed limit of 0 MiB")
Add size limit for uploading user avatars and realm icons. - Add settings parameter for max realm icon size. - Add settings parameter for max user avatar size. - Add checking file size to avatar and icon uploading views. - Transfer file size limit parameter to frontend. - Add tests.
2017-03-06 06:22:28 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def tearDown(self) -> None:
Add SetAvatarTest to test_upload.py. Test multiple file uploads for /json/set_avatar. Test no file upload for /json/set_avatar. Add test images for SetAvatarTest.
2016-04-17 23:51:49 +02:00
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
Add a test for local file uploads.
2016-04-14 23:44:39 +02:00
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
class EmojiTest(UploadSerializeMixin, ZulipTestCase):
emoji: Add support for animated GIF images. This commit adds 'resize_gif()' function which extracts each frame, resize it and coalesces them again to form the resized GIF while preserving the duration of the GIF. I read some stackoverflow answers all of which were referring to BiggleZX's script (https://gist.github.com/BigglesZX/4016539) for working with animated GIF. I modified the script to fit to our usecase and did some manual testing but the function was failing for some specific GIFs and was not preserving the duration of animation. So I went ahead and read about GIF format itself as well as PIL's `GifImagePlugin` code and came up with this simple function which gets the worked done in a much cleaner way. I tested this function on a number of GIF images from giphy.com and it resized all of them correctly. Fixes: #9945.
2018-07-17 20:27:09 +02:00
# While testing GIF resizing, we can't test if the final GIF has the same
# number of frames as the original one because PIL drops duplicate frames
# with a corresponding increase in the duration of the previous frame.
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
def test_resize_emoji(self) -> None:
# Test unequal width and height of animated GIF image
zerver/tests: Remove unecessary re-open on files in tests. The get_test_image_file helper function returns a file handle so we can call the read method on this directly.
2018-05-14 20:23:57 +02:00
animated_unequal_img_data = get_test_image_file('animated_unequal_img.gif').read()
emoji: Add support for animated GIF images. This commit adds 'resize_gif()' function which extracts each frame, resize it and coalesces them again to form the resized GIF while preserving the duration of the GIF. I read some stackoverflow answers all of which were referring to BiggleZX's script (https://gist.github.com/BigglesZX/4016539) for working with animated GIF. I modified the script to fit to our usecase and did some manual testing but the function was failing for some specific GIFs and was not preserving the duration of animation. So I went ahead and read about GIF format itself as well as PIL's `GifImagePlugin` code and came up with this simple function which gets the worked done in a much cleaner way. I tested this function on a number of GIF images from giphy.com and it resized all of them correctly. Fixes: #9945.
2018-07-17 20:27:09 +02:00
resized_img_data = resize_emoji(animated_unequal_img_data, size=50)
im = Image.open(io.BytesIO(resized_img_data))
self.assertEqual((50, 50), im.size)
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
# Test corrupt image exception
zerver/tests: Remove unecessary re-open on files in tests. The get_test_image_file helper function returns a file handle so we can call the read method on this directly.
2018-05-14 20:23:57 +02:00
corrupted_img_data = get_test_image_file('corrupt.gif').read()
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
with self.assertRaises(BadImageError):
resize_emoji(corrupted_img_data)
emoji: Only resize custom emoji that need it. This additional logic to prevent resizing is certain circumstances (file size, dimensions) is necessary because the pillow gif handling code seems to be rather flaky with regards to handling gif color palletes, causing broken gifs after resizing. The workaround is to only resize when absolutely necessary (e.g. because the file is larger than 128x128 or 128KB). Fixes #10351.
2019-01-28 21:02:48 +01:00
# Test an image larger than max is resized
with patch('zerver.lib.upload.MAX_EMOJI_GIF_SIZE', 128):
animated_large_img_data = get_test_image_file('animated_large_img.gif').read()
resized_img_data = resize_emoji(animated_large_img_data, size=50)
im = Image.open(io.BytesIO(resized_img_data))
self.assertEqual((50, 50), im.size)
# Test an image file larger than max is resized
with patch('zerver.lib.upload.MAX_EMOJI_GIF_FILE_SIZE_BYTES', 3 * 1024 * 1024):
animated_large_img_data = get_test_image_file('animated_large_img.gif').read()
resized_img_data = resize_emoji(animated_large_img_data, size=50)
im = Image.open(io.BytesIO(resized_img_data))
self.assertEqual((50, 50), im.size)
# Test an image smaller than max and smaller than file size max is not resized
with patch('zerver.lib.upload.MAX_EMOJI_GIF_SIZE', 512):
animated_large_img_data = get_test_image_file('animated_large_img.gif').read()
resized_img_data = resize_emoji(animated_large_img_data, size=50)
im = Image.open(io.BytesIO(resized_img_data))
self.assertEqual((256, 256), im.size)
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
def tearDown(self) -> None:
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
test_upload: Add tests for `resize_emoji`.
2018-04-15 13:20:36 +02:00
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
class RealmIconTest(UploadSerializeMixin, ZulipTestCase):
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_multiple_upload_failure(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
"""
Attempting to upload two files should fail.
"""
# Log in as admin
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
with get_test_image_file('img.png') as fp1, \
get_test_image_file('img.png') as fp2:
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon", {'f1': fp1, 'f2': fp2})
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
self.assert_json_error(result, "You must upload exactly one icon.")
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_no_file_upload_failure(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
"""
Calling this endpoint with no files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon")
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
self.assert_json_error(result, "You must upload exactly one icon.")
correct_files = [
('img.png', 'png_resized.png'),
pep8: Add compliance with rule E261 to tests/test_upload.py.
2017-07-11 21:53:16 +02:00
('img.jpg', None), # jpeg resizing is platform-dependent
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
('img.gif', 'gif_resized.png'),
uploads: Convert CMYK to RGB when saving avatar/realm icon as png. Fixes #8546. PNG does not support CMYK mode. CMYK file is converted to RGB and then saved as PNG.
2018-03-02 17:56:25 +01:00
('img.tif', 'tif_resized.png'),
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
('cmyk.jpg', None),
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
]
corrupt_files = ['text.txt', 'corrupt.png', 'corrupt.gif']
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_no_admin_user_upload(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
with get_test_image_file(self.correct_files[0][0]) as fp:
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon", {'file': fp})
i18n: Fix use of 'realm administrator' in translated strings. These are user-facing and thus should refer to being an "organization administrator".
2018-03-08 01:47:17 +01:00
self.assert_json_error(result, 'Must be an organization administrator')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_gravatar_icon(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
test_upload: Use actions.py do-change functions to change property.
2019-02-28 04:53:38 +01:00
do_change_icon_source(realm, Realm.ICON_FROM_GRAVATAR)
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
with self.settings(ENABLE_GRAVATAR=True):
response = self.client_get("/json/realm/icon?foo=bar")
redirect_url = response['Location']
self.assertEqual(redirect_url, realm_icon_url(realm) + '&foo=bar')
with self.settings(ENABLE_GRAVATAR=False):
response = self.client_get("/json/realm/icon?foo=bar")
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(realm_icon_url(realm) + '&foo=bar'))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_get_realm_icon(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
test_upload: Use actions.py do-change functions to change property.
2019-02-28 04:53:38 +01:00
do_change_icon_source(realm, Realm.ICON_UPLOADED)
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
response = self.client_get("/json/realm/icon?foo=bar")
redirect_url = response['Location']
self.assertTrue(redirect_url.endswith(realm_icon_url(realm) + '&foo=bar'))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_valid_icons(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
"""
A PUT request to /json/realm/icon with a valid file should return a url
and actually create an realm icon.
"""
for fname, rfname in self.correct_files:
# TODO: use self.subTest once we're exclusively on python 3 by uncommenting the line below.
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
with get_test_image_file(fname) as fp:
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon", {'file': fp})
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("icon_url", result.json())
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
base = f'/user_avatars/{realm.id}/realm/icon.png'
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
url = result.json()['icon_url']
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
self.assertEqual(base, url[:len(base)])
if rfname is not None:
response = self.client_get(url)
data = b"".join(response.streaming_content)
self.assertEqual(Image.open(io.BytesIO(data)).size, (100, 100))
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_invalid_icons(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
"""
A PUT request to /json/realm/icon with an invalid file should fail.
"""
for fname in self.corrupt_files:
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
with get_test_image_file(fname) as fp:
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon", {'file': fp})
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
self.assert_json_error(result, "Could not decode image; did you upload an image file?")
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_delete_icon(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
"""
A DELETE request to /json/realm/icon should delete the realm icon and return gravatar URL
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
test_upload: Use actions.py do-change functions to change property.
2019-02-28 04:53:38 +01:00
do_change_icon_source(realm, Realm.ICON_UPLOADED)
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
result = self.client_delete("/json/realm/icon")
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("icon_url", result.json())
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertEqual(result.json()["icon_url"], realm_icon_url(realm))
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
self.assertEqual(realm.icon_source, Realm.ICON_FROM_GRAVATAR)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_realm_icon_version(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
icon_version = realm.icon_version
self.assertEqual(icon_version, 1)
with get_test_image_file(self.correct_files[0][0]) as fp:
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
self.client_post("/json/realm/icon", {'file': fp})
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
realm = get_realm('zulip')
self.assertEqual(realm.icon_version, icon_version + 1)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_realm_icon_upload_file_size_error(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
Add size limit for uploading user avatars and realm icons. - Add settings parameter for max realm icon size. - Add settings parameter for max user avatar size. - Add checking file size to avatar and icon uploading views. - Transfer file size limit parameter to frontend. - Add tests.
2017-03-06 06:22:28 +01:00
with get_test_image_file(self.correct_files[0][0]) as fp:
with self.settings(MAX_ICON_FILE_SIZE=0):
urls: Use POST for zerver.views.realm_icon.upload_icon. This upload_icon endpoint is changed from PUT to POST becuase this endpoint is not idempotent.
2017-07-05 19:02:54 +02:00
result = self.client_post("/json/realm/icon", {'file': fp})
python: Convert percent formatting to .format for translated strings. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-15 23:22:24 +02:00
self.assert_json_error(result, "Uploaded file is larger than the allowed limit of 0 MiB")
Add size limit for uploading user avatars and realm icons. - Add settings parameter for max realm icon size. - Add settings parameter for max user avatar size. - Add checking file size to avatar and icon uploading views. - Transfer file size limit parameter to frontend. - Add tests.
2017-03-06 06:22:28 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def tearDown(self) -> None:
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
realm-icon: Add realm icon feature. - Add realm icon fields to realm model. - Add migration for new realm model's field. - Add views for icon uploading and deleting. - Add routes for realm icons views. - Add JS widget for realm icon upload setting. - Add realm icon upload to administration organization setting. - Add tests for realm icons. Fixes #3660.
2017-02-21 03:41:20 +01:00
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
class RealmLogoTest(UploadSerializeMixin, ZulipTestCase):
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
night = False
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
def test_multiple_upload_failure(self) -> None:
"""
Attempting to upload two files should fail.
"""
# Log in as admin
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file('img.png') as fp1, \
get_test_image_file('img.png') as fp2:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'f1': fp1, 'f2': fp2,
'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
self.assert_json_error(result, "You must upload exactly one logo.")
def test_no_file_upload_failure(self) -> None:
"""
Calling this endpoint with no files should fail.
"""
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
self.assert_json_error(result, "You must upload exactly one logo.")
correct_files = [
('img.png', 'png_resized.png'),
('img.jpg', None), # jpeg resizing is platform-dependent
('img.gif', 'gif_resized.png'),
('img.tif', 'tif_resized.png'),
python: Use trailing commas consistently. Automatically generated by the following script, based on the output of lint with flake8-comma: import re import sys last_filename = None last_row = None lines = [] for msg in sys.stdin: m = re.match( r"\x1b\[35mflake8 \|\x1b\[0m \x1b\[1;31m(.+):(\d+):(\d+): (\w+)", msg ) if m: filename, row_str, col_str, err = m.groups() row, col = int(row_str), int(col_str) if filename == last_filename: assert last_row != row else: if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) with open(filename) as f: lines = f.readlines() last_filename = filename last_row = row line = lines[row - 1] if err in ["C812", "C815"]: lines[row - 1] = line[: col - 1] + "," + line[col - 1 :] elif err in ["C819"]: assert line[col - 2] == "," lines[row - 1] = line[: col - 2] + line[col - 1 :].lstrip(" ") if last_filename is not None: with open(last_filename, "w") as f: f.writelines(lines) Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-10 05:23:40 +02:00
('cmyk.jpg', None),
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
]
corrupt_files = ['text.txt', 'corrupt.png', 'corrupt.gif']
def test_no_admin_user_upload(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(self.correct_files[0][0]) as fp:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'file': fp, 'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
self.assert_json_error(result, 'Must be an organization administrator')
def test_upload_limited_plan_type(self) -> None:
user_profile = self.example_user("iago")
do_change_plan_type(user_profile.realm, Realm.LIMITED)
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login_user(user_profile)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(self.correct_files[0][0]) as fp:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'file': fp, 'night': ujson.dumps(self.night)})
models: Use UPGRADE_TEXT_STANDARD in ensure_not_on_limited_plan.
2020-05-19 14:45:47 +02:00
self.assert_json_error(result, 'Available on Zulip Standard. Upgrade to access.')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
def test_get_default_logo(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
realm_logo: Return default logo for realms on LIMITED plan. This completes our effort to avoid destroying realm logo state while providing a path to dowgrade from paid plans to LIMITED.
2020-06-08 11:53:24 +02:00
do_change_logo_source(realm, Realm.LOGO_DEFAULT, self.night)
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
response = self.client_get("/json/realm/logo", {'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
redirect_url = response['Location']
realm_logo: Return default logo for realms on LIMITED plan. This completes our effort to avoid destroying realm logo state while providing a path to dowgrade from paid plans to LIMITED.
2020-06-08 11:53:24 +02:00
is_night_str = str(self.night).lower()
self.assertEqual(redirect_url, f"/static/images/logo/zulip-org-logo.png?version=0&night={is_night_str}")
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm_logo: Return default logo for realms on LIMITED plan. This completes our effort to avoid destroying realm logo state while providing a path to dowgrade from paid plans to LIMITED.
2020-06-08 11:53:24 +02:00
def test_get_uploaded_logo(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
test_upload: Use actions.py do-change functions to change property.
2019-02-28 04:53:38 +01:00
do_change_logo_source(realm, Realm.LOGO_UPLOADED, self.night)
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
response = self.client_get("/json/realm/logo", {'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
redirect_url = response['Location']
realm_logo: Remove redundant `realm_logo_url` function. This function is nothing but a redundant layer of call to `get_realm_logo_url`.
2019-08-19 19:46:45 +02:00
self.assertTrue(redirect_url.endswith(get_realm_logo_url(realm, self.night) +
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
f'&night={str(self.night).lower()}'))
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm_logo: Return default logo for realms on LIMITED plan. This completes our effort to avoid destroying realm logo state while providing a path to dowgrade from paid plans to LIMITED.
2020-06-08 11:53:24 +02:00
is_night_str = str(self.night).lower()
if self.night:
file_name = "night_logo.png"
else:
file_name = "logo.png"
self.assertEqual(redirect_url, f"/user_avatars/{realm.id}/realm/{file_name}?version=2&night={is_night_str}")
do_change_plan_type(realm, Realm.LIMITED)
if self.night:
self.assertEqual(realm.night_logo_source, Realm.LOGO_UPLOADED)
else:
self.assertEqual(realm.logo_source, Realm.LOGO_UPLOADED)
response = self.client_get("/json/realm/logo", {'night': ujson.dumps(self.night)})
redirect_url = response['Location']
self.assertEqual(redirect_url, f"/static/images/logo/zulip-org-logo.png?version=0&night={is_night_str}")
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
def test_valid_logos(self) -> None:
"""
A PUT request to /json/realm/logo with a valid file should return a url
and actually create an realm logo.
"""
for fname, rfname in self.correct_files:
# TODO: use self.subTest once we're exclusively on python 3 by uncommenting the line below.
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(fname) as fp:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'file': fp, 'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
self.assert_json_success(result)
realm_logo: Remove redundant `realm_logo_url` function. This function is nothing but a redundant layer of call to `get_realm_logo_url`.
2019-08-19 19:46:45 +02:00
logo_url = get_realm_logo_url(realm, self.night)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
if rfname is not None:
realm_logo: Update `upload_logo` views to return nothing.
2019-02-28 12:51:04 +01:00
response = self.client_get(logo_url)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
data = b"".join(response.streaming_content)
# size should be 100 x 100 because thumbnail keeps aspect ratio
# while trying to fit in a 800 x 100 box without losing part of the image
self.assertEqual(Image.open(io.BytesIO(data)).size, (100, 100))
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
def test_invalid_logo_upload(self) -> None:
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
"""
A PUT request to /json/realm/logo with an invalid file should fail.
"""
for fname in self.corrupt_files:
# with self.subTest(fname=fname):
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(fname) as fp:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'file': fp, 'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
self.assert_json_error(result, "Could not decode image; did you upload an image file?")
def test_delete_logo(self) -> None:
"""
A DELETE request to /json/realm/logo should delete the realm logo and return gravatar URL
"""
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
test_upload: Use actions.py do-change functions to change property.
2019-02-28 04:53:38 +01:00
do_change_logo_source(realm, Realm.LOGO_UPLOADED, self.night)
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_delete("/json/realm/logo", {'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
self.assert_json_success(result)
realm = get_realm('zulip')
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
if self.night:
self.assertEqual(realm.night_logo_source, Realm.LOGO_DEFAULT)
else:
self.assertEqual(realm.logo_source, Realm.LOGO_DEFAULT)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
def test_logo_version(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
if self.night:
version = realm.night_logo_version
else:
version = realm.logo_version
self.assertEqual(version, 1)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(self.correct_files[0][0]) as fp:
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
self.client_post("/json/realm/logo", {'file': fp, 'night': ujson.dumps(self.night)})
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
realm = get_realm('zulip')
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
if self.night:
self.assertEqual(realm.night_logo_version, version + 1)
else:
self.assertEqual(realm.logo_version, version + 1)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
def test_logo_upload_file_size_error(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
with get_test_image_file(self.correct_files[0][0]) as fp:
with self.settings(MAX_LOGO_FILE_SIZE=0):
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
result = self.client_post("/json/realm/logo", {'file': fp, 'night':
ujson.dumps(self.night)})
python: Convert percent formatting to .format for translated strings. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-15 23:22:24 +02:00
self.assert_json_error(result, "Uploaded file is larger than the allowed limit of 0 MiB")
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
def tearDown(self) -> None:
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
class RealmNightLogoTest(RealmLogoTest):
# Run the same tests as for RealmLogoTest, just with night mode enabled
night = True
testing: Serialize test_upload. This commit makes test_upload tests compatible with parallel model.
2017-02-16 10:10:37 +01:00
class LocalStorageTest(UploadSerializeMixin, ZulipTestCase):
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_upload_local(self) -> None:
tests: Use example_user() in more places.
2017-05-07 21:25:59 +02:00
user_profile = self.example_user('hamlet')
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
uri = upload_message_file('dummy.txt', len(b'zulip!'), 'text/plain', b'zulip!', user_profile)
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
base = '/user_uploads/'
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, uri[:len(base)])
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
path_id = re.sub('/user_uploads/', '', uri)
file_path = os.path.join(settings.LOCAL_UPLOADS_DIR, 'files', path_id)
self.assertTrue(os.path.isfile(file_path))
attachment: Add 'size' field tracking size of uploaded files. This tracking will make it possible in the future to limit the total size of uploads on a per-user or per-organization basis. Fixes #3774.
2017-02-26 11:03:45 +01:00
uploaded_file = Attachment.objects.get(owner=user_profile, path_id=path_id)
self.assertEqual(len(b'zulip!'), uploaded_file.size)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_delete_message_image_local(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
path_id = re.sub('/user_uploads/', '', result.json()['uri'])
upload: Use classes to define S3/Local upload backends. This has no functional changes; we just replace the old hacky assignment of functions with assignment of the upload backend to a variable. I'm not totally happy with this, because we end up having to copy the type annotations of the three methods 4 times each, but this should make it a lot easier to test the (non-default-in-tests) S3 backend using end-to-end tests, which would have caught 13bac1cc2ac9762b92af1286c8bf38294f0fe89a. I expect we'll iterate on the interface over time; ideally, I'd like all the code that checks LOCAL_UPLOADS_DIR to be inside upload.py, and primarily in these classes.
2016-06-09 07:53:35 +02:00
self.assertTrue(delete_message_image(path_id))
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
zerver/tests: Test emoji upload for local storage backend.
2018-05-15 00:10:30 +02:00
def test_emoji_upload_local(self) -> None:
user_profile = self.example_user("hamlet")
image_file = get_test_image_file("img.png")
file_name = "emoji.png"
upload_emoji_image(image_file, file_name, user_profile)
emoji_path = RealmEmoji.PATH_ID_TEMPLATE.format(
realm_id=user_profile.realm_id,
emoji_file_name=file_name,
)
file_path = os.path.join(settings.LOCAL_UPLOADS_DIR, "avatars", emoji_path)
bugdown: Add assert to work around type problem. url_to_a returns Union[Element, str], but str cannot be appended to Element; that would raise TypeError at runtime. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-03 06:50:08 +02:00
with get_test_image_file("img.png") as image_file, open(file_path + ".original", "rb") as original_file:
self.assertEqual(image_file.read(), original_file.read())
zerver/tests: Test emoji upload for local storage backend.
2018-05-15 00:10:30 +02:00
resized_image = Image.open(open(file_path, "rb"))
expected_size = (DEFAULT_EMOJI_SIZE, DEFAULT_EMOJI_SIZE)
self.assertEqual(expected_size, resized_image.size)
zerver/tests: Add test for get_emoji_url for local upload backend.
2018-05-15 00:25:06 +02:00
def test_get_emoji_url_local(self) -> None:
user_profile = self.example_user("hamlet")
image_file = get_test_image_file("img.png")
file_name = "emoji.png"
upload_emoji_image(image_file, file_name, user_profile)
url = zerver.lib.upload.upload_backend.get_emoji_url(file_name, user_profile.realm_id)
emoji_path = RealmEmoji.PATH_ID_TEMPLATE.format(
realm_id=user_profile.realm_id,
emoji_file_name=file_name,
)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
expected_url = f"/user_avatars/{emoji_path}"
zerver/tests: Add test for get_emoji_url for local upload backend.
2018-05-15 00:25:06 +02:00
self.assertEqual(expected_url, url)
public_export: Add logic for deleting the export tarball. The path to the uploaded tarball is reconstructed via the relative url and removed with the canonical methods in `upload.py`.
2019-06-27 20:41:47 +02:00
def test_tarball_upload_and_deletion_local(self) -> None:
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
user_profile = self.example_user("iago")
self.assertTrue(user_profile.is_realm_admin)
tests: Use TEST_WORKER_DIR for file access.
2019-07-06 02:07:56 +02:00
tarball_path = os.path.join(settings.TEST_WORKER_DIR,
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
'tarball.tar.gz')
with open(tarball_path, 'w') as f:
f.write('dummy')
uri = upload_export_tarball(user_profile.realm, tarball_path)
self.assertTrue(os.path.isfile(os.path.join(settings.LOCAL_UPLOADS_DIR,
'avatars',
tarball_path)))
result = re.search(re.compile(r"([A-Za-z0-9\-_]{24})"), uri)
if result is not None:
random_name = result.group(1)
python: Convert more "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, with more restrictions patched out. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:40:53 +02:00
expected_url = f"http://zulip.testserver/user_avatars/exports/{user_profile.realm_id}/{random_name}/tarball.tar.gz"
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
self.assertEqual(expected_url, uri)
public_export: Add logic for deleting the export tarball. The path to the uploaded tarball is reconstructed via the relative url and removed with the canonical methods in `upload.py`.
2019-06-27 20:41:47 +02:00
# Delete the tarball.
self.assertIsNone(delete_export_tarball('not_a_file'))
path_id = urllib.parse.urlparse(uri).path
self.assertEqual(delete_export_tarball(path_id), path_id)
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def tearDown(self) -> None:
Add test for managing files in Local Storage.
2016-04-20 21:50:56 +02:00
destroy_uploads()
tests: tearDown overrides should call super().tearDown(). ZulipTestCase subclasses that override tearDown() should call the parent class tearDown() too, as it does some clean up of its own.
2019-10-18 16:11:48 +02:00
super().tearDown()
Add Attachment model to keep track of uploads. This commit adds the capability to keep track and remove uploaded files. Unclaimed attachments are files that have been uploaded to the server but are not referred in any messages. A management command to remove old unclaimed files after a week is also included. Tests for getting the file referred in messages are also included.
2016-03-24 20:24:01 +01:00
zerver/tests: Test emoji upload for local storage backend.
2018-05-15 00:10:30 +02:00
tests: Renamed AuthedTestCase to ZulipTestCase.
2016-08-23 02:08:42 +02:00
class S3Test(ZulipTestCase):
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
upload: Use classes to define S3/Local upload backends. This has no functional changes; we just replace the old hacky assignment of functions with assignment of the upload backend to a variable. I'm not totally happy with this, because we end up having to copy the type annotations of the three methods 4 times each, but this should make it a lot easier to test the (non-default-in-tests) S3 backend using end-to-end tests, which would have caught 13bac1cc2ac9762b92af1286c8bf38294f0fe89a. I expect we'll iterate on the interface over time; ideally, I'd like all the code that checks LOCAL_UPLOADS_DIR to be inside upload.py, and primarily in these classes.
2016-06-09 07:53:35 +02:00
@use_s3_backend
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_upload_s3(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AUTH_UPLOADS_BUCKET)[0]
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
tests: Use example_user() in more places.
2017-05-07 21:25:59 +02:00
user_profile = self.example_user('hamlet')
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
uri = upload_message_file('dummy.txt', len(b'zulip!'), 'text/plain', b'zulip!', user_profile)
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
base = '/user_uploads/'
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, uri[:len(base)])
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
path_id = re.sub('/user_uploads/', '', uri)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
content = bucket.Object(path_id).get()['Body'].read()
attachment: Add 'size' field tracking size of uploaded files. This tracking will make it possible in the future to limit the total size of uploads on a per-user or per-organization basis. Fixes #3774.
2017-02-26 11:03:45 +01:00
self.assertEqual(b"zulip!", content)
uploaded_file = Attachment.objects.get(owner=user_profile, path_id=path_id)
self.assertEqual(len(b"zulip!"), uploaded_file.size)
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "Denmark")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
body = "First message ...[zulip.txt](http://localhost:9991" + uri + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
zerver/tests: Test S3 file upload with undefined content type.
2018-05-14 20:46:59 +02:00
@use_s3_backend
def test_file_upload_s3_with_undefined_content_type(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AUTH_UPLOADS_BUCKET)[0]
zerver/tests: Test S3 file upload with undefined content type.
2018-05-14 20:46:59 +02:00
user_profile = self.example_user('hamlet')
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
uri = upload_message_file('dummy.txt', len(b'zulip!'), None, b'zulip!', user_profile)
zerver/tests: Test S3 file upload with undefined content type.
2018-05-14 20:46:59 +02:00
path_id = re.sub('/user_uploads/', '', uri)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
self.assertEqual(b"zulip!", bucket.Object(path_id).get()['Body'].read())
zerver/tests: Test S3 file upload with undefined content type.
2018-05-14 20:46:59 +02:00
uploaded_file = Attachment.objects.get(owner=user_profile, path_id=path_id)
self.assertEqual(len(b"zulip!"), uploaded_file.size)
upload: Use classes to define S3/Local upload backends. This has no functional changes; we just replace the old hacky assignment of functions with assignment of the upload backend to a variable. I'm not totally happy with this, because we end up having to copy the type annotations of the three methods 4 times each, but this should make it a lot easier to test the (non-default-in-tests) S3 backend using end-to-end tests, which would have caught 13bac1cc2ac9762b92af1286c8bf38294f0fe89a. I expect we'll iterate on the interface over time; ideally, I'd like all the code that checks LOCAL_UPLOADS_DIR to be inside upload.py, and primarily in these classes.
2016-06-09 07:53:35 +02:00
@use_s3_backend
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_message_image_delete_s3(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
create_s3_buckets(settings.S3_AUTH_UPLOADS_BUCKET)
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
tests: Use example_user() in more places.
2017-05-07 21:25:59 +02:00
user_profile = self.example_user('hamlet')
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
uri = upload_message_file('dummy.txt', len(b'zulip!'), 'text/plain', b'zulip!', user_profile)
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
path_id = re.sub('/user_uploads/', '', uri)
upload: Use classes to define S3/Local upload backends. This has no functional changes; we just replace the old hacky assignment of functions with assignment of the upload backend to a variable. I'm not totally happy with this, because we end up having to copy the type annotations of the three methods 4 times each, but this should make it a lot easier to test the (non-default-in-tests) S3 backend using end-to-end tests, which would have caught 13bac1cc2ac9762b92af1286c8bf38294f0fe89a. I expect we'll iterate on the interface over time; ideally, I'd like all the code that checks LOCAL_UPLOADS_DIR to be inside upload.py, and primarily in these classes.
2016-06-09 07:53:35 +02:00
self.assertTrue(delete_message_image(path_id))
Add tests for managing uploads in S3.
2016-04-20 21:51:21 +02:00
zerver/tests: Test delete message image from S3 when file is missing.
2018-05-14 21:56:49 +02:00
@use_s3_backend
def test_message_image_delete_when_file_doesnt_exist(self) -> None:
self.assertEqual(False, delete_message_image('non-existant-file'))
Fix and re-enable test_file_upload_authed. Now that we have a working S3 mock and an effective way to toggle the upload backend that Zulip is using, we can re-enable this important end-to-end test of the Zulip S3 upload backend.
2016-06-09 07:53:35 +02:00
@use_s3_backend
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_upload_authed(self) -> None:
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
"""
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
A call to /json/user_uploads should return a uri and actually create an object.
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
"""
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
bucket = create_s3_buckets(settings.S3_AUTH_UPLOADS_BUCKET)[0]
Fix and re-enable test_file_upload_authed. Now that we have a working S3 mock and an effective way to toggle the upload backend that Zulip is using, we can re-enable this important end-to-end test of the Zulip S3 upload backend.
2016-06-09 07:53:35 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
fp = StringIO("zulip!")
fp.name = "zulip.txt"
uploads: Remove legacy /json/upload_file endpoint. This migrates Zulip to use the equivalent API endpoint that has been present for a while.
2017-07-31 20:52:17 +02:00
result = self.client_post("/json/user_uploads", {'file': fp})
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
self.assert_json_success(result)
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
self.assertIn("uri", result.json())
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
base = '/user_uploads/'
test_uploads: Upgrade to HttpResponse.json().
2017-08-16 09:52:16 +02:00
uri = result.json()['uri']
tests: s/assertEquals/assertEqual/ due to deprecation. Fixes #2730.
2016-12-16 02:01:34 +01:00
self.assertEqual(base, uri[:len(base)])
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
Add client_get() test helper.
2016-07-28 00:38:45 +02:00
response = self.client_get(uri)
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
redirect_url = response['Location']
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
key = urllib.parse.urlparse(redirect_url).path
self.assertEqual(b"zulip!", bucket.Object(key).get()['Body'].read())
Move upload-related tests to test_upload.py. Move S3Test, FileUploadTest and SanitizeNameTests from test_external.py to test_upload.py.
2016-04-14 16:26:01 +02:00
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
# Now try the endpoint that's supposed to return a temporary url for access
# to the file.
result = self.client_get('/json' + uri)
self.assert_json_success(result)
data = result.json()
url_only_url = data['url']
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
key = urllib.parse.urlparse(url_only_url).path
self.assertEqual(b"zulip!", bucket.Object(key).get()['Body'].read())
test_upload: Remove an erroneous nondeterministically correct check. See the comment added, but basically this test would fail if the two URLs were computed in different seconds.
2020-04-22 02:57:24 +02:00
# Note: Depending on whether the calls happened in the same
# second (resulting in the same timestamp+signature),
# url_only_url may or may not equal redirect_url.
upload: Support requesting a temporary unauthenticated URL. This is be useful for the mobile and desktop apps to hand an uploaded file off to the system browser so that it can render PDFs (Etc.). The S3 backend implementation is simple; for the local upload backend, we use Django's signing feature to simulate the same sort of 60-second lifetime token. Co-Author-By: Mateusz Mandera <mateusz.mandera@protonmail.com>
2020-04-08 00:27:24 +02:00
tests: Add and use new self.subscribe. This new method cleans up the API for subscribing to something from a test case.
2017-08-25 06:01:29 +02:00
self.subscribe(self.example_user("hamlet"), "Denmark")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
body = "First message ...[zulip.txt](http://localhost:9991" + uri + ")"
tests: Use users in send_*_message. This commit mostly makes our tests less noisy, since emails are no longer an important detail of sending messages (they're not even really used in the API). It also sets us up to have more scrutiny on delivery_email/email in the future for things that actually matter. (This is a prep commit for something along those lines, kind of hard to explain the full plan.)
2020-03-07 11:43:05 +01:00
self.send_stream_message(self.example_user("hamlet"), "Denmark", body, "test")
Add tests for upload title functionality.
2016-06-14 04:38:30 +02:00
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
@use_s3_backend
def test_upload_avatar_image(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
user_profile = self.example_user('hamlet')
path_id = user_avatar_path(user_profile)
original_image_path_id = path_id + ".original"
medium_path_id = path_id + "-medium.png"
with get_test_image_file('img.png') as image_file:
zerver.lib.upload.upload_backend.upload_avatar_image(image_file, user_profile, user_profile)
python: Migrate open statements to use with. This is low priority, but it's nice to be consistently using the best practice pattern. Fixes: #12419.
2019-07-14 21:37:08 +02:00
with open(get_test_image_file('img.png').name, 'rb') as f:
test_image_data = f.read()
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
test_medium_image_data = resize_avatar(test_image_data, MEDIUM_AVATAR_SIZE)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
original_image_key = bucket.Object(original_image_path_id)
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
self.assertEqual(original_image_key.key, original_image_path_id)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
image_data = original_image_key.get()['Body'].read()
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
self.assertEqual(image_data, test_image_data)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
medium_image_key = bucket.Object(medium_path_id)
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
self.assertEqual(medium_image_key.key, medium_path_id)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
medium_image_data = medium_image_key.get()['Body'].read()
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
self.assertEqual(medium_image_data, test_medium_image_data)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
bucket.Object(medium_image_key.key).delete()
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
zerver.lib.upload.upload_backend.ensure_medium_avatar_image(user_profile)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
medium_image_key = bucket.Object(medium_path_id)
tests: Add test coverage for uploading avatars to S3UploadBackend. Add test coverage for the function upload_avatar_image and ensure_medium_avatar_image in S3UploadBackend.
2017-12-21 09:37:59 +01:00
self.assertEqual(medium_image_key.key, medium_path_id)
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
@use_s3_backend
def test_copy_avatar_image(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
with get_test_image_file('img.png') as image_file:
self.client_post("/json/users/me/avatar", {'file': image_file})
source_user_profile = self.example_user('hamlet')
target_user_profile = self.example_user('othello')
copy_user_settings(source_user_profile, target_user_profile)
source_path_id = user_avatar_path(source_user_profile)
target_path_id = user_avatar_path(target_user_profile)
self.assertNotEqual(source_path_id, target_path_id)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_image_key = bucket.Object(source_path_id)
target_image_key = bucket.Object(target_path_id)
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(target_image_key.key, target_path_id)
self.assertEqual(source_image_key.content_type, target_image_key.content_type)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_image_data = source_image_key.get()['Body'].read()
target_image_data = target_image_key.get()['Body'].read()
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
source_original_image_path_id = source_path_id + ".original"
target_original_image_path_id = target_path_id + ".original"
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
target_original_image_key = bucket.Object(target_original_image_path_id)
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(target_original_image_key.key, target_original_image_path_id)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_original_image_key = bucket.Object(source_original_image_path_id)
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(source_original_image_key.content_type, target_original_image_key.content_type)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_image_data = source_original_image_key.get()['Body'].read()
target_image_data = target_original_image_key.get()['Body'].read()
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(source_image_data, target_image_data)
target_medium_path_id = target_path_id + "-medium.png"
source_medium_path_id = source_path_id + "-medium.png"
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_medium_image_key = bucket.Object(source_medium_path_id)
target_medium_image_key = bucket.Object(target_medium_path_id)
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(target_medium_image_key.key, target_medium_path_id)
self.assertEqual(source_medium_image_key.content_type, target_medium_image_key.content_type)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
source_medium_image_data = source_medium_image_key.get()['Body'].read()
target_medium_image_data = target_medium_image_key.get()['Body'].read()
registration: Allow users to import profile picture.
2018-06-06 14:30:26 +02:00
self.assertEqual(source_medium_image_data, target_medium_image_data)
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
@use_s3_backend
def test_delete_avatar_image(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('hamlet')
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
with get_test_image_file('img.png') as image_file:
self.client_post("/json/users/me/avatar", {'file': image_file})
user = self.example_user('hamlet')
avatar_path_id = user_avatar_path(user)
avatar_original_image_path_id = avatar_path_id + ".original"
avatar_medium_path_id = avatar_path_id + "-medium.png"
self.assertEqual(user.avatar_source, UserProfile.AVATAR_FROM_USER)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
self.assertIsNotNone(bucket.Object(avatar_path_id))
self.assertIsNotNone(bucket.Object(avatar_original_image_path_id))
self.assertIsNotNone(bucket.Object(avatar_medium_path_id))
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
zerver.lib.actions.do_delete_avatar_image(user)
self.assertEqual(user.avatar_source, UserProfile.AVATAR_FROM_GRAVATAR)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
# Confirm that the avatar files no longer exist in S3.
with self.assertRaises(botocore.exceptions.ClientError):
bucket.Object(avatar_path_id).load()
with self.assertRaises(botocore.exceptions.ClientError):
bucket.Object(avatar_original_image_path_id).load()
with self.assertRaises(botocore.exceptions.ClientError):
bucket.Object(avatar_medium_path_id).load()
upload: Create function to delete avatar image.
2018-09-07 17:44:40 +02:00
zerver/tests: Test upload realm icon for S3.
2018-05-14 22:55:03 +02:00
@use_s3_backend
def test_upload_realm_icon_image(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
zerver/tests: Test upload realm icon for S3.
2018-05-14 22:55:03 +02:00
user_profile = self.example_user("hamlet")
image_file = get_test_image_file("img.png")
zerver.lib.upload.upload_backend.upload_realm_icon_image(image_file, user_profile)
original_path_id = os.path.join(str(user_profile.realm.id), "realm", "icon.original")
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
original_key = bucket.Object(original_path_id)
zerver/tests: Test upload realm icon for S3.
2018-05-14 22:55:03 +02:00
image_file.seek(0)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
self.assertEqual(image_file.read(), original_key.get()['Body'].read())
zerver/tests: Test upload realm icon for S3.
2018-05-14 22:55:03 +02:00
resized_path_id = os.path.join(str(user_profile.realm.id), "realm", "icon.png")
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
resized_data = bucket.Object(resized_path_id).get()['Body'].read()
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
# while trying to fit in a 800 x 100 box without losing part of the image
resized_image = Image.open(io.BytesIO(resized_data)).size
self.assertEqual(resized_image, (DEFAULT_AVATAR_SIZE, DEFAULT_AVATAR_SIZE))
@use_s3_backend
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
def _test_upload_logo_image(self, night: bool, file_name: str) -> None:
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
user_profile = self.example_user("hamlet")
image_file = get_test_image_file("img.png")
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
zerver.lib.upload.upload_backend.upload_realm_logo_image(image_file, user_profile, night)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
original_path_id = os.path.join(str(user_profile.realm.id), "realm", f"{file_name}.original")
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
original_key = bucket.Object(original_path_id)
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
image_file.seek(0)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
self.assertEqual(image_file.read(), original_key.get()['Body'].read())
settings: Add support for customizing the top-left logo. This adds a new realm_logo field, which is a horizontal-format logo to be displayed in the top-left corner of the webapp, and any other places where we might want a wide-format branding of the organization. Tweaked significantly by tabbott to rebase, fix styling, etc. Fixing the styling of this feature's loading indicator caused me to notice the loading indicator for the realm_icon feature was also ugly, so I fixed that too. Fixes #7995.
2018-08-16 01:26:55 +02:00
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:41:04 +02:00
resized_path_id = os.path.join(str(user_profile.realm.id), "realm", f"{file_name}.png")
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
resized_data = bucket.Object(resized_path_id).get()['Body'].read()
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
resized_image = Image.open(io.BytesIO(resized_data)).size
self.assertEqual(resized_image, (DEFAULT_AVATAR_SIZE, DEFAULT_AVATAR_SIZE))
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
def test_upload_realm_logo_image(self) -> None:
self._test_upload_logo_image(night = False, file_name = 'logo')
self._test_upload_logo_image(night = True, file_name = 'night_logo')
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
@use_s3_backend
def test_upload_emoji_image(self) -> None:
refactor: Add a helper function to create s3 buckets. This refactor makes upgrading boto to boto3 easier. Based on https://github.com/zulip/zulip/pull/10370/commits/43d2f6286c8d479eafa4b086348e1b17996f8c68
2018-12-07 18:15:51 +01:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
user_profile = self.example_user("hamlet")
image_file = get_test_image_file("img.png")
emoji_name = "emoji.png"
zerver.lib.upload.upload_backend.upload_emoji_image(image_file, emoji_name, user_profile)
emoji_path = RealmEmoji.PATH_ID_TEMPLATE.format(
realm_id=user_profile.realm_id,
emoji_file_name=emoji_name,
)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
original_key = bucket.Object(emoji_path + ".original")
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
image_file.seek(0)
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
self.assertEqual(image_file.read(), original_key.get()['Body'].read())
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
requirements: Upgrade boto to boto3. Fixes: #3490 Contributors include: Author: whoodes <hoodesw@hawaii.edu> Author: zhoufeng1989 <zhoufengloop@gmail.com> Author: rht <rhtbot@protonmail.com>
2018-12-07 17:52:01 +01:00
resized_data = bucket.Object(emoji_path).get()['Body'].read()
zerver/tests: Test upload emoji to S3.
2018-05-14 23:23:32 +02:00
resized_image = Image.open(io.BytesIO(resized_data))
self.assertEqual(resized_image.size, (DEFAULT_EMOJI_SIZE, DEFAULT_EMOJI_SIZE))
zerver/tests: Test upload realm icon for S3.
2018-05-14 22:55:03 +02:00
zerver/tests: Test get_emoji_url for S3.
2018-05-14 23:37:02 +02:00
@use_s3_backend
def test_get_emoji_url(self) -> None:
emoji_name = "emoji.png"
realm_id = 1
bucket = settings.S3_AVATAR_BUCKET
path = RealmEmoji.PATH_ID_TEMPLATE.format(realm_id=realm_id, emoji_file_name=emoji_name)
url = zerver.lib.upload.upload_backend.get_emoji_url('emoji.png', realm_id)
python: Convert "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, but with the NamedTuple changes reverted (see commit ba7906a3c657905fa35bbcfb4e97b053f050272d, #15132). Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-09 00:25:09 +02:00
expected_url = f"https://{bucket}.s3.amazonaws.com/{path}"
zerver/tests: Test get_emoji_url for S3.
2018-05-14 23:37:02 +02:00
self.assertEqual(expected_url, url)
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
@use_s3_backend
public_export: Add logic for deleting the export tarball. The path to the uploaded tarball is reconstructed via the relative url and removed with the canonical methods in `upload.py`.
2019-06-27 20:41:47 +02:00
def test_tarball_upload_and_deletion(self) -> None:
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
bucket = create_s3_buckets(settings.S3_AVATAR_BUCKET)[0]
user_profile = self.example_user("iago")
self.assertTrue(user_profile.is_realm_admin)
tests: Use TEST_WORKER_DIR for file access.
2019-07-06 02:07:56 +02:00
tarball_path = os.path.join(settings.TEST_WORKER_DIR,
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
'tarball.tar.gz')
with open(tarball_path, 'w') as f:
f.write('dummy')
uri = upload_export_tarball(user_profile.realm, tarball_path)
result = re.search(re.compile(r"([0-9a-fA-F]{32})"), uri)
if result is not None:
hex_value = result.group(1)
python: Convert more "".format to Python 3.6 f-strings. Generated by pyupgrade --py36-plus --keep-percent-format, with more restrictions patched out. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-06-10 06:40:53 +02:00
expected_url = f"https://{bucket.name}.s3.amazonaws.com/exports/{hex_value}/{os.path.basename(tarball_path)}"
export/upload: Refactor tarball upload logic to upload_backend. The conditional block containing the tarball upload logic for both S3 and local uploads was deconstructed and moved to the more appropriate location within `zerver/lib/upload.py`.
2019-06-21 22:46:04 +02:00
self.assertEqual(uri, expected_url)
public_export: Add logic for deleting the export tarball. The path to the uploaded tarball is reconstructed via the relative url and removed with the canonical methods in `upload.py`.
2019-06-27 20:41:47 +02:00
# Delete the tarball.
self.assertIsNone(delete_export_tarball('not_a_file'))
path_id = urllib.parse.urlparse(uri).path
self.assertEqual(delete_export_tarball(path_id), path_id)
zerver/tests: Test get_realm_for_filename when filename doesn't exist.
2018-05-14 19:53:26 +02:00
tests: Make all tests inherit ZulipTestCase. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-07-01 04:19:54 +02:00
class SanitizeNameTests(ZulipTestCase):
zerver/tests: Use python 3 syntax for typing in most files.
2017-11-05 10:51:25 +01:00
def test_file_name(self) -> None:
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
self.assertEqual(sanitize_name('test.txt'), 'test.txt')
self.assertEqual(sanitize_name('.hidden'), '.hidden')
self.assertEqual(sanitize_name('.hidden.txt'), '.hidden.txt')
self.assertEqual(sanitize_name('tarball.tar.gz'), 'tarball.tar.gz')
self.assertEqual(sanitize_name('.hidden_tarball.tar.gz'), '.hidden_tarball.tar.gz')
self.assertEqual(sanitize_name('Testing{}*&*#().ta&&%$##&&r.gz'), 'Testing.tar.gz')
self.assertEqual(sanitize_name('*testingfile?*.txt'), 'testingfile.txt')
self.assertEqual(sanitize_name('snowman☃.txt'), 'snowman.txt')
self.assertEqual(sanitize_name('테스트.txt'), '테스트.txt')
self.assertEqual(sanitize_name('~/."\\`\\?*"u0`000ssh/test.t**{}ar.gz'), '.u0000sshtest.tar.gz')
zerver/tests: Test currently_used_upload_space function.
2018-05-14 21:33:51 +02:00
class UploadSpaceTests(UploadSerializeMixin, ZulipTestCase):
def setUp(self) -> None:
tests: setUp overrides should call super().setUp(). MigrationsTestCase is intentionally omitted from this, since migrations tests are different in their nature and so whatever setUp() ZulipTestCase may do in the future, MigrationsTestCase may not necessarily want to replicate.
2019-10-19 20:47:00 +02:00
super().setUp()
zerver/tests: Test currently_used_upload_space function.
2018-05-14 21:33:51 +02:00
self.realm = get_realm("zulip")
self.user_profile = self.example_user('hamlet')
def test_currently_used_upload_space(self) -> None:
models: Cache currently_used_upload_space_bytes function.
2019-01-14 07:46:31 +01:00
self.assertEqual(None, cache_get(get_realm_used_upload_space_cache_key(self.realm)))
models: Move currently_used_upload_space function to Realm model.
2019-01-11 13:41:52 +01:00
self.assertEqual(0, self.realm.currently_used_upload_space_bytes())
models: Cache currently_used_upload_space_bytes function.
2019-01-14 07:46:31 +01:00
self.assertEqual(0, cache_get(get_realm_used_upload_space_cache_key(self.realm))[0])
zerver/tests: Test currently_used_upload_space function.
2018-05-14 21:33:51 +02:00
data = b'zulip!'
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
upload_message_file('dummy.txt', len(data), 'text/plain', data, self.user_profile)
uploads: Show used upload space in attachments UI.
2019-01-17 12:05:09 +01:00
# notify_attachment_update function calls currently_used_upload_space_bytes which
# updates the cache.
models: Cache currently_used_upload_space_bytes function.
2019-01-14 07:46:31 +01:00
self.assertEqual(len(data), cache_get(get_realm_used_upload_space_cache_key(self.realm))[0])
uploads: Show used upload space in attachments UI.
2019-01-17 12:05:09 +01:00
self.assertEqual(len(data), self.realm.currently_used_upload_space_bytes())
zerver/tests: Test currently_used_upload_space function.
2018-05-14 21:33:51 +02:00
data2 = b'more-data!'
python: Modernize legacy Python 2 syntax with pyupgrade. Generated by `pyupgrade --py3-plus --keep-percent-format` on all our Python code except `zthumbor` and `zulip-ec2-configure-interfaces`, followed by manual indentation fixes. Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-04-09 21:51:58 +02:00
upload_message_file('dummy2.txt', len(data2), 'text/plain', data2, self.user_profile)
models: Cache currently_used_upload_space_bytes function.
2019-01-14 07:46:31 +01:00
self.assertEqual(len(data) + len(data2), cache_get(get_realm_used_upload_space_cache_key(self.realm))[0])
uploads: Show used upload space in attachments UI.
2019-01-17 12:05:09 +01:00
self.assertEqual(len(data) + len(data2), self.realm.currently_used_upload_space_bytes())
models: Cache currently_used_upload_space_bytes function.
2019-01-14 07:46:31 +01:00
attachment = Attachment.objects.get(file_name="dummy.txt")
attachment.file_name = "dummy1.txt"
attachment.save(update_fields=["file_name"])
self.assertEqual(len(data) + len(data2), cache_get(get_realm_used_upload_space_cache_key(self.realm))[0])
self.assertEqual(len(data) + len(data2), self.realm.currently_used_upload_space_bytes())
attachment.delete()
self.assertEqual(None, cache_get(get_realm_used_upload_space_cache_key(self.realm)))
self.assertEqual(len(data2), self.realm.currently_used_upload_space_bytes())
api: Add endpoint for fetching used upload space info.
2019-01-17 12:04:54 +01:00
tests: Make all tests inherit ZulipTestCase. Signed-off-by: Anders Kaseorg <anders@zulip.com>
2020-07-01 04:19:54 +02:00
class ExifRotateTests(ZulipTestCase):
upload: Rotate image according to exif data when resizing avatar and emojis. Fixes the avatar/emoji part of #8177. Does not address the issue with uploaded images, since we don't do anything with them. Also adds 3 images with different orientation exif tags to test-images.
2018-05-29 17:29:57 +02:00
def test_image_do_not_rotate(self) -> None:
# Image does not have _getexif method.
img_data = get_test_image_file('img.png').read()
img = Image.open(io.BytesIO(img_data))
result = exif_rotate(img)
upload: Add test jpg image with no exif data.
2018-05-31 13:25:55 +02:00
self.assertEqual(result, img)
# Image with no exif data.
img_data = get_test_image_file('img_no_exif.jpg').read()
img = Image.open(io.BytesIO(img_data))
result = exif_rotate(img)
upload: Rotate image according to exif data when resizing avatar and emojis. Fixes the avatar/emoji part of #8177. Does not address the issue with uploaded images, since we don't do anything with them. Also adds 3 images with different orientation exif tags to test-images.
2018-05-29 17:29:57 +02:00
self.assertEqual(result, img)
# Orientation of the image is 1.
img_data = get_test_image_file('img.jpg').read()
img = Image.open(io.BytesIO(img_data))
result = exif_rotate(img)
self.assertEqual(result, img)
def test_image_rotate(self) -> None:
with mock.patch('PIL.Image.Image.rotate') as rotate:
img_data = get_test_image_file('img_orientation_3.jpg').read()
img = Image.open(io.BytesIO(img_data))
exif_rotate(img)
rotate.assert_called_with(180, expand=True)
img_data = get_test_image_file('img_orientation_6.jpg').read()
img = Image.open(io.BytesIO(img_data))
exif_rotate(img)
rotate.assert_called_with(270, expand=True)
img_data = get_test_image_file('img_orientation_8.jpg').read()
img = Image.open(io.BytesIO(img_data))
exif_rotate(img)
rotate.assert_called_with(90, expand=True)
uploads: Return a HTTP 400 error for a decompression bomb attack. Fixes: #11215.
2019-01-13 07:27:30 +01:00
class DecompressionBombTests(ZulipTestCase):
def setUp(self) -> None:
tests: setUp overrides should call super().setUp(). MigrationsTestCase is intentionally omitted from this, since migrations tests are different in their nature and so whatever setUp() ZulipTestCase may do in the future, MigrationsTestCase may not necessarily want to replicate.
2019-10-19 20:47:00 +02:00
super().setUp()
uploads: Return a HTTP 400 error for a decompression bomb attack. Fixes: #11215.
2019-01-13 07:27:30 +01:00
self.test_urls = {
"/json/users/me/avatar": "Image size exceeds limit.",
"/json/realm/logo": "Image size exceeds limit.",
"/json/realm/icon": "Image size exceeds limit.",
"/json/realm/emoji/bomb_emoji": "Image file upload failed.",
}
def test_decompression_bomb(self) -> None:
tests: Limit email-based logins. We now have this API... If you really just need to log in and not do anything with the actual user: self.login('hamlet') If you're gonna use the user in the rest of the test: hamlet = self.example_user('hamlet') self.login_user(hamlet) If you are specifically testing email/password logins (used only in 4 places): self.login_by_email(email, password) And for failures uses this (used twice): self.assert_login_failure(email)
2020-03-06 18:40:46 +01:00
self.login('iago')
uploads: Return a HTTP 400 error for a decompression bomb attack. Fixes: #11215.
2019-01-13 07:27:30 +01:00
with get_test_image_file("bomb.png") as fp:
for url, error_string in self.test_urls.items():
fp.seek(0, 0)
settings: Add support for uploading logo for night mode. This adds a new field named realm_night_logo which is used for displaying the organization logo when the user is in night mode. Fixes #11176.
2019-01-27 08:25:10 +01:00
if (url == "/json/realm/logo"):
result = self.client_post(url, {'f1': fp, 'night': ujson.dumps(False)})
else:
result = self.client_post(url, {'f1': fp})
uploads: Return a HTTP 400 error for a decompression bomb attack. Fixes: #11215.
2019-01-13 07:27:30 +01:00
self.assert_json_error(result, error_string)