almet/ihatemoney
1
0
Fork 0
mirror of https://github.com/spiral-project/ihatemoney.git synced 2025-05-15 17:01:49 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
ihatemoney/ihatemoney/tests/history_test.py
Alexis Métaireau 2e8ccf9c2e
Remove multi currencies support 
For more information about the rationale, this was [discussed](https://github.com/spiral-project/ihatemoney/issues/1232#issuecomment-2081517453) in our bugtracker.
2024-12-26 23:59:42 +01:00

651 lines
23 KiB
Python
Raw Blame History

import re
import pytest
from ihatemoney import history, models
from ihatemoney.tests.common.help_functions import em_surround
from ihatemoney.tests.common.ihatemoney_testcase import IhatemoneyTestCase
from ihatemoney.versioning import LoggingMode
@pytest.fixture
def demo(client):
client.post(
"/create",
data={
"name": "demo",
"id": "demo",
"password": "demo",
"contact_email": "demo@notmyidea.org",
"project_history": True,
},
)
client.post(
"/authenticate",
data=dict(id="demo", password="demo"),
)
@pytest.mark.usefixtures("demo")
class TestHistory(IhatemoneyTestCase):
def test_simple_create_logentry_no_ip(self):
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Project {em_surround('demo')} added" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 1
assert "127.0.0.1" not in resp.data.decode("utf-8")
def change_privacy_to(self, current_password, logging_preference):
# Change only logging_preferences
new_data = {
"name": "demo",
"contact_email": "demo@notmyidea.org",
"current_password": current_password,
"password": "demo",
}
if logging_preference != LoggingMode.DISABLED:
new_data["project_history"] = "y"
if logging_preference == LoggingMode.RECORD_IP:
new_data["ip_recording"] = "y"
# Disable History
resp = self.client.post("/demo/edit", data=new_data, follow_redirects=True)
assert resp.status_code == 200
assert "alert-danger" not in resp.data.decode("utf-8")
resp = self.client.get("/demo/edit")
assert resp.status_code == 200
if logging_preference == LoggingMode.DISABLED:
assert '<input id="project_history"' in resp.data.decode("utf-8")
else:
assert '<input checked id="project_history"' in resp.data.decode("utf-8")
if logging_preference == LoggingMode.RECORD_IP:
assert '<input checked id="ip_recording"' in resp.data.decode("utf-8")
else:
assert '<input id="ip_recording"' in resp.data.decode("utf-8")
def assert_empty_history_logging_disabled(self):
resp = self.client.get("/demo/history")
assert (
"This project has history disabled. New actions won't appear below."
in resp.data.decode("utf-8")
)
assert "Nothing to list" in resp.data.decode("utf-8")
assert (
"The table below reflects actions recorded prior to disabling project history."
not in resp.data.decode("utf-8")
)
assert "Some entries below contain IP addresses," not in resp.data.decode(
"utf-8"
)
assert "127.0.0.1" not in resp.data.decode("utf-8")
assert "<td> -- </td>" not in resp.data.decode("utf-8")
assert f"Project {em_surround('demo')} added" not in resp.data.decode("utf-8")
def test_project_edit(self):
new_data = {
"name": "demo2",
"contact_email": "demo2@notmyidea.org",
"current_password": "demo",
"password": "123456",
"project_history": "y",
}
resp = self.client.post("/demo/edit", data=new_data, follow_redirects=True)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Project {em_surround('demo')} added" in resp.data.decode("utf-8")
assert (
f"Project contact email changed to {em_surround('demo2@notmyidea.org')}"
in resp.data.decode("utf-8")
)
assert "Project private code changed" in resp.data.decode("utf-8")
assert f"Project renamed to {em_surround('demo2')}" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").index("Project renamed ") < resp.data.decode(
"utf-8"
).index("Project contact email changed to ")
assert resp.data.decode("utf-8").index("Project renamed ") < resp.data.decode(
"utf-8"
).index("Project private code changed")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 4
assert "127.0.0.1" not in resp.data.decode("utf-8")
def test_project_privacy_edit(self):
resp = self.client.get("/demo/edit")
assert resp.status_code == 200
assert (
'<input checked id="project_history" name="project_history" type="checkbox" value="y">'
in resp.data.decode("utf-8")
)
self.change_privacy_to("demo", LoggingMode.DISABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Disabled Project History\n" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 2
assert "127.0.0.1" not in resp.data.decode("utf-8")
self.change_privacy_to("demo", LoggingMode.RECORD_IP)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Enabled Project History & IP Address Recording" in resp.data.decode(
"utf-8"
)
assert resp.data.decode("utf-8").count("<td> -- </td>") == 2
assert resp.data.decode("utf-8").count("127.0.0.1") == 1
self.change_privacy_to("demo", LoggingMode.ENABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Disabled IP Address Recording\n" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 2
assert resp.data.decode("utf-8").count("127.0.0.1") == 2
def test_project_privacy_edit2(self):
self.change_privacy_to("demo", LoggingMode.RECORD_IP)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Enabled IP Address Recording\n" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 1
assert resp.data.decode("utf-8").count("127.0.0.1") == 1
self.change_privacy_to("demo", LoggingMode.DISABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Disabled Project History & IP Address Recording" in resp.data.decode(
"utf-8"
)
assert resp.data.decode("utf-8").count("<td> -- </td>") == 1
assert resp.data.decode("utf-8").count("127.0.0.1") == 2
self.change_privacy_to("demo", LoggingMode.ENABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert "Enabled Project History\n" in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("<td> -- </td>") == 2
assert resp.data.decode("utf-8").count("127.0.0.1") == 2
def do_misc_database_operations(self, logging_mode):
new_data = {
"name": "demo2",
"contact_email": "demo2@notmyidea.org",
"current_password": "demo",
"password": "123456",
}
# Keep privacy settings where they were
if logging_mode != LoggingMode.DISABLED:
new_data["project_history"] = "y"
if logging_mode == LoggingMode.RECORD_IP:
new_data["ip_recording"] = "y"
resp = self.client.post("/demo/edit", data=new_data, follow_redirects=True)
assert resp.status_code == 200
# adds a member to this project
resp = self.client.post(
"/demo/members/add", data={"name": "zorglub"}, follow_redirects=True
)
assert resp.status_code == 200
user_id = models.Person.query.one().id
# create a bill
resp = self.client.post(
"/demo/add",
data={
"date": "2011-08-10",
"what": "fromage à raclette",
"payer": user_id,
"payed_for": [user_id],
"bill_type": "Expense",
"amount": "25",
},
follow_redirects=True,
)
assert resp.status_code == 200
bill_id = models.Bill.query.one().id
# edit the bill
resp = self.client.post(
f"/demo/edit/{bill_id}",
data={
"date": "2011-08-10",
"what": "fromage à raclette",
"payer": user_id,
"payed_for": [user_id],
"bill_type": "Expense",
"amount": "10",
},
follow_redirects=True,
)
assert resp.status_code == 200
# delete the bill
resp = self.client.post(f"/demo/delete/{bill_id}", follow_redirects=True)
assert resp.status_code == 200
# delete user using POST method
resp = self.client.post(
f"/demo/members/{user_id}/delete", follow_redirects=True
)
assert resp.status_code == 200
def test_disable_clear_no_new_records(self):
# Disable logging
self.change_privacy_to("demo", LoggingMode.DISABLED)
# Ensure we can't clear history with a GET or with a password-less POST
resp = self.client.get("/demo/erase_history")
assert resp.status_code == 405
resp = self.client.post("/demo/erase_history", follow_redirects=True)
assert "Error deleting project history" in resp.data.decode("utf-8")
# List history
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert (
"This project has history disabled. New actions won't appear below."
in resp.data.decode("utf-8")
)
assert (
"The table below reflects actions recorded prior to disabling project history."
in resp.data.decode("utf-8")
)
assert "Nothing to list" not in resp.data.decode("utf-8")
assert "Some entries below contain IP addresses," not in resp.data.decode(
"utf-8"
)
# Clear Existing Entries
resp = self.client.post(
"/demo/erase_history",
data={"password": "demo"},
follow_redirects=True,
)
assert resp.status_code == 200
self.assert_empty_history_logging_disabled()
# Do lots of database operations & check that there's still no history
self.do_misc_database_operations(LoggingMode.DISABLED)
self.assert_empty_history_logging_disabled()
def test_clear_ip_records(self):
# Enable IP Recording
self.change_privacy_to("demo", LoggingMode.RECORD_IP)
# Do lots of database operations to generate IP address entries
self.do_misc_database_operations(LoggingMode.RECORD_IP)
# Disable IP Recording
self.change_privacy_to("123456", LoggingMode.ENABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert (
"This project has history disabled. New actions won't appear below."
not in resp.data.decode("utf-8")
)
assert (
"The table below reflects actions recorded prior to disabling project history."
not in resp.data.decode("utf-8")
)
assert "Nothing to list" not in resp.data.decode("utf-8")
assert "Some entries below contain IP addresses," in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").count("127.0.0.1") == 10
assert resp.data.decode("utf-8").count("<td> -- </td>") == 1
# Generate more operations to confirm additional IP info isn't recorded
self.do_misc_database_operations(LoggingMode.ENABLED)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert resp.data.decode("utf-8").count("127.0.0.1") == 10
assert resp.data.decode("utf-8").count("<td> -- </td>") == 6
# Ensure we can't clear IP data with a GET or with a password-less POST
resp = self.client.get("/demo/strip_ip_addresses")
assert resp.status_code == 405
resp = self.client.post("/demo/strip_ip_addresses", follow_redirects=True)
assert "Error deleting recorded IP addresses" in resp.data.decode("utf-8")
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert resp.data.decode("utf-8").count("127.0.0.1") == 10
assert resp.data.decode("utf-8").count("<td> -- </td>") == 6
# Clear IP Data
resp = self.client.post(
"/demo/strip_ip_addresses",
data={"password": "123456"},
follow_redirects=True,
)
assert resp.status_code == 200
assert (
"This project has history disabled. New actions won't appear below."
not in resp.data.decode("utf-8")
)
assert (
"The table below reflects actions recorded prior to disabling project history."
not in resp.data.decode("utf-8")
)
assert "Nothing to list" not in resp.data.decode("utf-8")
assert "Some entries below contain IP addresses," not in resp.data.decode(
"utf-8"
)
assert resp.data.decode("utf-8").count("127.0.0.1") == 0
assert resp.data.decode("utf-8").count("<td> -- </td>") == 16
def test_logs_for_common_actions(self):
# adds a member to this project
resp = self.client.post(
"/demo/members/add", data={"name": "zorglub"}, follow_redirects=True
)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Participant {em_surround('zorglub')} added" in resp.data.decode(
"utf-8"
)
# create a bill
resp = self.client.post(
"/demo/add",
data={
"date": "2011-08-10",
"what": "fromage à raclette",
"payer": 1,
"payed_for": [1],
"bill_type": "Expense",
"amount": "25",
},
follow_redirects=True,
)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Bill {em_surround('fromage à raclette')} added" in resp.data.decode(
"utf-8"
)
# edit the bill
resp = self.client.post(
"/demo/edit/1",
data={
"date": "2011-08-10",
"what": "new thing",
"payer": 1,
"payed_for": [1],
"bill_type": "Expense",
"amount": "10",
},
follow_redirects=True,
)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Bill {em_surround('fromage à raclette')} added" in resp.data.decode(
"utf-8"
)
assert re.search(
r"Bill %s:\s* Amount changed\s* from %s\s* to %s"
% (
em_surround("fromage à raclette", regex_escape=True),
em_surround("25.0", regex_escape=True),
em_surround("10.0", regex_escape=True),
),
resp.data.decode("utf-8"),
)
assert "Bill %s renamed to %s" % (
em_surround("fromage à raclette"),
em_surround("new thing"),
) in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").index(
f"Bill {em_surround('fromage à raclette')} renamed to"
) < resp.data.decode("utf-8").index("Amount changed")
# delete the bill
resp = self.client.post("/demo/delete/1", follow_redirects=True)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Bill {em_surround('new thing')} removed" in resp.data.decode("utf-8")
# edit user
resp = self.client.post(
"/demo/members/1/edit",
data={"weight": 2, "name": "new name"},
follow_redirects=True,
)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert re.search(
r"Participant %s:\s* weight changed\s* from %s\s* to %s"
% (
em_surround("zorglub", regex_escape=True),
em_surround("1.0", regex_escape=True),
em_surround("2.0", regex_escape=True),
),
resp.data.decode("utf-8"),
)
assert "Participant %s renamed to %s" % (
em_surround("zorglub"),
em_surround("new name"),
) in resp.data.decode("utf-8")
assert resp.data.decode("utf-8").index(
f"Participant {em_surround('zorglub')} renamed"
) < resp.data.decode("utf-8").index("weight changed")
# delete user using POST method
resp = self.client.post("/demo/members/1/delete", follow_redirects=True)
assert resp.status_code == 200
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert f"Participant {em_surround('new name')} removed" in resp.data.decode(
"utf-8"
)
def test_double_bill_double_person_edit_second(self):
# add two members
self.client.post("/demo/members/add", data={"name": "User 1"})
self.client.post("/demo/members/add", data={"name": "User 2"})
# add two bills
self.client.post(
"/demo/add",
data={
"date": "2020-04-13",
"what": "Bill 1",
"payer": 1,
"payed_for": [1, 2],
"bill_type": "Expense",
"amount": "25",
},
)
self.client.post(
"/demo/add",
data={
"date": "2020-04-13",
"what": "Bill 2",
"payer": 1,
"payed_for": [1, 2],
"bill_type": "Expense",
"amount": "20",
},
)
# Should be 5 history entries at this point
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert resp.data.decode("utf-8").count("<td> -- </td>") == 5
assert "127.0.0.1" not in resp.data.decode("utf-8")
# Edit ONLY the amount on the first bill
self.client.post(
"/demo/edit/1",
data={
"date": "2020-04-13",
"what": "Bill 1",
"payer": 1,
"payed_for": [1, 2],
"bill_type": "Expense",
"amount": "88",
},
)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert re.search(
r"Bill {}:\s* Amount changed\s* from {}\s* to {}".format(
em_surround("Bill 1", regex_escape=True),
em_surround("25.0", regex_escape=True),
em_surround("88.0", regex_escape=True),
),
resp.data.decode("utf-8"),
)
assert not re.search(
r"Removed\s* {}\s* and\s* {}\s* from\s* owers list".format(
em_surround("User 1", regex_escape=True),
em_surround("User 2", regex_escape=True),
),
resp.data.decode("utf-8"),
), resp.data.decode("utf-8")
# Should be 6 history entries at this point
assert resp.data.decode("utf-8").count("<td> -- </td>") == 6
assert "127.0.0.1" not in resp.data.decode("utf-8")
def test_bill_add_remove_add(self):
# add two members
self.client.post("/demo/members/add", data={"name": "User 1"})
self.client.post("/demo/members/add", data={"name": "User 2"})
# add 1 bill
self.client.post(
"/demo/add",
data={
"date": "2020-04-13",
"what": "Bill 1",
"payer": 1,
"payed_for": [1, 2],
"bill_type": "Expense",
"amount": "25",
},
)
# delete the bill
self.client.post("/demo/delete/1", follow_redirects=True)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert resp.data.decode("utf-8").count("<td> -- </td>") == 5
assert "127.0.0.1" not in resp.data.decode("utf-8")
assert f"Bill {em_surround('Bill 1')} added" in resp.data.decode("utf-8")
assert f"Bill {em_surround('Bill 1')} removed" in resp.data.decode("utf-8")
# Add a new bill
self.client.post(
"/demo/add",
data={
"date": "2020-04-13",
"what": "Bill 2",
"payer": 1,
"payed_for": [1, 2],
"bill_type": "Expense",
"amount": "20",
},
)
resp = self.client.get("/demo/history")
assert resp.status_code == 200
assert resp.data.decode("utf-8").count("<td> -- </td>") == 6
assert "127.0.0.1" not in resp.data.decode("utf-8")
assert f"Bill {em_surround('Bill 1')} added" in resp.data.decode("utf-8")
assert (
resp.data.decode("utf-8").count(f"Bill {em_surround('Bill 1')} added") == 1
)
assert f"Bill {em_surround('Bill 2')} added" in resp.data.decode("utf-8")
assert f"Bill {em_surround('Bill 1')} removed" in resp.data.decode("utf-8")
def test_double_bill_double_person_edit_second_no_web(self):
u1 = models.Person(project_id="demo", name="User 1")
u2 = models.Person(project_id="demo", name="User 1")
models.db.session.add(u1)
models.db.session.add(u2)
models.db.session.commit()
b1 = models.Bill(what="Bill 1", payer_id=u1.id, owers=[u2], amount=10)
b2 = models.Bill(what="Bill 2", payer_id=u2.id, owers=[u2], amount=11)
# This db commit exposes the "spurious owers edit" bug
models.db.session.add(b1)
models.db.session.commit()
models.db.session.add(b2)
models.db.session.commit()
history_list = history.get_history(self.get_project("demo"))
assert len(history_list) == 5
# Change just the amount
b1.amount = 5
models.db.session.commit()
history_list = history.get_history(self.get_project("demo"))
for entry in history_list:
if "prop_changed" in entry:
assert "owers" not in entry["prop_changed"]
assert len(history_list) == 6
def test_delete_history_with_project(self):
self.post_project("raclette", password="party")
# add participants
self.client.post("/raclette/members/add", data={"name": "zorglub"})
# add bill
self.client.post(
"/raclette/add",
data={
"date": "2016-12-31",
"what": "fromage à raclette",
"payer": 1,
"payed_for": [1],
"bill_type": "Expense",
"amount": "10",
},
)
# Delete project
self.client.post(
"/raclette/delete",
data={"password": "party"},
)
# Recreate it
self.post_project("raclette", password="party")
# History should be equal to project creation
history_list = history.get_history(self.get_project("raclette"))
assert len(history_list) == 1
Reference in a new issue View git blame Copy permalink