Skip to content

Commit

Permalink
#354 Add review suggestions
Browse files Browse the repository at this point in the history
  • Loading branch information
@viliambalaz
viliambalaz committed Nov 25, 2021
1 parent 2f94d1b commit d74ab84
Show file tree
Hide file tree
Showing 3 changed files with 77 additions and 70 deletions.
4 changes: 2 additions & 2 deletions chcemvediet/apps/accounts/admin.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,7 +49,7 @@ class ProfileAdmin(admin.ModelAdmin):
),
decorate(
lambda o: admin_obj_format(o, u'Log in', link=u'login_as'),
short_description=u'Admin Login',
short_description=u'Login As',
),
]
list_filter = [
Expand Down Expand Up @@ -95,6 +95,6 @@ def get_urls(self):
info = self.model._meta.app_label, self.model._meta.model_name
login_as_view = self.admin_site.admin_view(self.login_as_view)
urls = patterns('',
url(r'^(.+)/login-as/$', login_as_view, name=u'{}_{}_login_as'.format(*info)),
url(r'^(\d+)/login-as/$', login_as_view, name=u'{}_{}_login_as'.format(*info)),
)
return urls + super(ProfileAdmin, self).get_urls()
20 changes: 10 additions & 10 deletions chcemvediet/apps/accounts/backends.py
View file
Original file line number Diff line number Diff line change
@@ -1,24 +1,24 @@
from django.contrib.auth.backends import ModelBackend
from django.core.urlresolvers import resolve
from django.core.urlresolvers import resolve, Resolver404

from poleno.utils.http import get_request


class AdminLoginAsBackend(ModelBackend):

def is_admin_path(self, path):
return resolve(path).func.__module__ in [
u'django.contrib.admin.options',
u'django.contrib.admin.sites',
u'adminplus.sites',
u'chcemvediet.apps.accounts.admin',
]
return resolve(path).namespace == u'admin'

def get_user(self, user_id):
request = get_request()
admin_login_as = request.session.get(u'admin_login_as')
user = super(AdminLoginAsBackend, self).get_user(user_id)
admin_login_as_user = super(AdminLoginAsBackend, self).get_user(admin_login_as)
if request is None:
return user
try:
resolve(request.path)
except Resolver404:
return user
admin_login_as = request.session.get(u'admin_login_as')
if user and user.is_staff and not self.is_admin_path(request.path) and admin_login_as:
return admin_login_as_user
return super(AdminLoginAsBackend, self).get_user(admin_login_as) or user
return user
123 changes: 65 additions & 58 deletions chcemvediet/apps/accounts/tests/test_backend.py
View file
Original file line number Diff line number Diff line change
@@ -1,27 +1,37 @@
import mock

from django.conf.urls import patterns, url
from django.contrib.auth import get_user
from django.contrib.auth.decorators import user_passes_test
from django.conf.urls import patterns, url, RegexURLPattern
from django.contrib.auth.models import User
from django.http import HttpResponse
from django.test import TestCase
from django.test.utils import override_settings

from poleno.utils.http import _local


class AdminLoginAsBackendTest(TestCase):

def mock_view(request):
def public_view(request):
if isinstance(request.user, User):
pass # force request.user to evaluate
return HttpResponse()

def set_admin_login_as_attribute_view(request, id):
@user_passes_test(lambda u: u.is_staff)
def admin_view(request):
if isinstance(request.user, User):
pass
return HttpResponse()

@user_passes_test(lambda u: u.is_staff)
def set_admin_login_as_attribute_admin_view(request, id):
request.session[u'admin_login_as'] = id
if isinstance(request.user, User):
pass
return HttpResponse()

urls = tuple(patterns(u'',
url(r'^$', mock_view),
url(r'^(.+)/login-as/$', set_admin_login_as_attribute_view),
url(r'^$', public_view),
url(r'admin/', ([
RegexURLPattern(r'^$', admin_view),
RegexURLPattern(r'^(\d+)/login-as/$', set_admin_login_as_attribute_admin_view),
], None, u'admin')),
))

def create_users(self):
Expand All @@ -48,53 +58,50 @@ def tearDown(self):
self.settings_override.disable()


def test_get_user_returns_anonymous_user(self):
def test_public_route_uses_anonymous_user_if_user_is_not_logged_in(self):
response = self.client.get(u'/')
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user.is_anonymous())

def test_admin_route_uses_anonymous_user_and_fails_if_user_is_not_logged_in(self):
response = self.client.get(u'/admin/')
self.assertTrue(response.wsgi_request.user.is_anonymous())
self.assertEqual(response.status_code, 302)

def test_public_route_uses_the_user_if_user_is_logged_in(self):
self.assertTrue(self.client.login(username=self.user.username, password=u'test'))
response = self.client.get(u'/')
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user, self.user)

def test_admin_route_uses_the_user_and_fails_if_user_is_logged_in(self):
self.assertTrue(self.client.login(username=self.user.username, password=u'test'))
response = self.client.get(u'/admin/')
self.assertEqual(response.status_code, 302)
self.assertEqual(response.wsgi_request.user, self.user)

def test_public_route_uses_the_admin_if_admin_logged_in(self):
self.assertTrue(self.client.login(username=self.superuser.username, password=u'test'))
response = self.client.get(u'/')
request = response.wsgi_request
user = get_user(request)
self.assertIsNotNone(user)
self.assertTrue(user.is_anonymous())

def test_get_user_returns_logged_non_admin_user(self):
self.assertTrue(self.client.login(
username=self.user.username, password=u'test'
))
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user, self.superuser)

def test_admin_route_uses_the_admin_if_admin_logged_in(self):
self.assertTrue(self.client.login(username=self.superuser.username, password=u'test'))
response = self.client.get(u'/admin/')
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user, self.superuser)

def test_public_route_uses_the_user_if_admin_logged_in_as_another_user(self):
self.assertTrue(self.client.login(username=self.superuser.username, password=u'test'))
self.client.get(u'/admin/{}/login-as/'.format(self.user.pk))
response = self.client.get(u'/')
request = response.wsgi_request
_local.request = request
user = get_user(request)
self.assertEqual(user, self.user)

def test_get_user_returns_logged_admin_user_on_admin_page(self):
with mock.patch(u'chcemvediet.apps.accounts.backends.AdminLoginAsBackend.is_admin_path', return_value=True):
self.assertTrue(self.client.login(
username=self.superuser.username, password=u'test'
))
response = self.client.get(u'/')
request = response.wsgi_request
_local.request = request
user = get_user(request)
self.assertEqual(user, self.superuser)

def test_get_user_returns_logged_admin_user_if_admin_login_as_attribute_is_not_set(self):
with mock.patch(u'chcemvediet.apps.accounts.backends.AdminLoginAsBackend.is_admin_path', return_value=False):
self.assertTrue(self.client.login(
username=self.superuser.username, password=u'test'
))
response = self.client.get(u'/')
request = response.wsgi_request
_local.request = request
user = get_user(request)
self.assertEqual(user, self.superuser)

def test_get_user_returns_selected_user_if_admin_login_as_attribute_is_set(self):
with mock.patch(u'chcemvediet.apps.accounts.backends.AdminLoginAsBackend.is_admin_path', return_value=False):
self.assertTrue(self.client.login(
username=self.superuser.username, password=u'test'
))
self.client.get(u'/{}/login-as/'.format(self.user.pk))
response = self.client.get(u'/')
request = response.wsgi_request
_local.request = request
user = get_user(request)
self.assertEqual(user, self.user)
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user, self.user)

def test_admin_route_uses_the_admin_if_admin_logged_in_as_another_user(self):
self.assertTrue(self.client.login(username=self.superuser.username, password=u'test'))
self.client.get(u'/admin/{}/login-as/'.format(self.user.pk))
response = self.client.get(u'/admin/')
self.assertEqual(response.status_code, 200)
self.assertTrue(response.wsgi_request.user, self.superuser)

0 comments on commit d74ab84

Please sign in to comment.