Arch/tests/test_auth.py

import pytest
from flask import session, g


class TestAuth:
    """Test authentication functionality."""

    def test_login_page(self, client):
        """Test that login page loads correctly."""
        response = client.get("/auth/login")
        assert response.status_code == 200
        assert b"Iniciar sesi" in response.data  # 'Iniciar sesión' in Spanish

    def test_login_success(self, client):
        """Test successful login with correct credentials."""
        response = client.post(
            "/auth/login",
            data={"username": "admin", "password": "admin123"},
            follow_redirects=True,
        )
        assert response.status_code == 200
        # Check that we're redirected to the right page after login
        assert b"Panel" in response.data or b"Proyectos" in response.data

    def test_login_invalid_credentials(self, client):
        """Test login with invalid credentials."""
        response = client.post(
            "/auth/login",
            data={"username": "admin", "password": "wrongpassword"},
            follow_redirects=True,
        )
        assert response.status_code == 200
        assert (
            b"credenciales" in response.data.lower()
        )  # Error message about credentials

    def test_logout(self, auth, client):
        """Test logout functionality."""
        # First login
        auth.login()

        # Then logout
        response = auth.logout()
        assert response.status_code == 200

        # Check if logged out - try to access a protected page
        response = client.get("/users/", follow_redirects=True)
        assert b"iniciar sesi" in response.data.lower()  # Should see login page

    def test_access_protected_route(self, client):
        """Test accessing a protected route without login."""
        # Try to access users list without login
        response = client.get("/users/", follow_redirects=True)
        assert response.status_code == 200
        assert b"iniciar sesi" in response.data.lower()  # Should be redirected to login

    def test_access_protected_route_with_login(self, logged_in_client):
        """Test accessing a protected route with login."""
        # Admin should be able to access users list
        response = logged_in_client.get("/admin/dashboard")
        assert response.status_code == 200

    def test_permission_levels(self, client, auth):
        """Test different permission levels."""
        # Login as regular user
        auth.login(username="user1", password="admin123")

        # Try to access admin-only page
        response = client.get("/admin/dashboard", follow_redirects=True)
        assert (
            response.status_code == 403 or b"acceso denegado" in response.data.lower()
        )
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`import pytest`
			`from flask import session, g`

Creado Tests 2025-03-04 06:38:19 -03:00
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`class TestAuth:`
			`"""Test authentication functionality."""`
Creado Tests 2025-03-04 06:38:19 -03:00
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_login_page(self, client):`
			`"""Test that login page loads correctly."""`
Creado Tests 2025-03-04 06:38:19 -03:00			`response = client.get("/auth/login")`
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`assert response.status_code == 200`
Creado Tests 2025-03-04 06:38:19 -03:00			`assert b"Iniciar sesi" in response.data # 'Iniciar sesión' in Spanish`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_login_success(self, client):`
			`"""Test successful login with correct credentials."""`
			`response = client.post(`
Creado Tests 2025-03-04 06:38:19 -03:00			`"/auth/login",`
			`data={"username": "admin", "password": "admin123"},`
			`follow_redirects=True,`
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`)`
			`assert response.status_code == 200`
			`# Check that we're redirected to the right page after login`
Creado Tests 2025-03-04 06:38:19 -03:00			`assert b"Panel" in response.data or b"Proyectos" in response.data`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_login_invalid_credentials(self, client):`
			`"""Test login with invalid credentials."""`
			`response = client.post(`
Creado Tests 2025-03-04 06:38:19 -03:00			`"/auth/login",`
			`data={"username": "admin", "password": "wrongpassword"},`
			`follow_redirects=True,`
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`)`
			`assert response.status_code == 200`
Creado Tests 2025-03-04 06:38:19 -03:00			`assert (`
			`b"credenciales" in response.data.lower()`
			`) # Error message about credentials`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_logout(self, auth, client):`
			`"""Test logout functionality."""`
			`# First login`
			`auth.login()`
Creado Tests 2025-03-04 06:38:19 -03:00
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`# Then logout`
			`response = auth.logout()`
			`assert response.status_code == 200`
Creado Tests 2025-03-04 06:38:19 -03:00
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`# Check if logged out - try to access a protected page`
Creado Tests 2025-03-04 06:38:19 -03:00			`response = client.get("/users/", follow_redirects=True)`
			`assert b"iniciar sesi" in response.data.lower() # Should see login page`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_access_protected_route(self, client):`
			`"""Test accessing a protected route without login."""`
			`# Try to access users list without login`
Creado Tests 2025-03-04 06:38:19 -03:00			`response = client.get("/users/", follow_redirects=True)`
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`assert response.status_code == 200`
Creado Tests 2025-03-04 06:38:19 -03:00			`assert b"iniciar sesi" in response.data.lower() # Should be redirected to login`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_access_protected_route_with_login(self, logged_in_client):`
			`"""Test accessing a protected route with login."""`
			`# Admin should be able to access users list`
Creado Tests 2025-03-04 06:38:19 -03:00			`response = logged_in_client.get("/admin/dashboard")`
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`assert response.status_code == 200`
Creado Tests 2025-03-04 06:38:19 -03:00
Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`def test_permission_levels(self, client, auth):`
			`"""Test different permission levels."""`
			`# Login as regular user`
Creado Tests 2025-03-04 06:38:19 -03:00			`auth.login(username="user1", password="admin123")`

Version base funcionando pre-test 2025-03-03 17:50:11 -03:00			`# Try to access admin-only page`
Creado Tests 2025-03-04 06:38:19 -03:00			`response = client.get("/admin/dashboard", follow_redirects=True)`
			`assert (`
			`response.status_code == 403 or b"acceso denegado" in response.data.lower()`
			`)`