FreakU
/
takahe
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
takahe/tests/activities/views/test_posts.py

26 lines
777 B
Python
Raw Normal View History

Content warning name customisation Allows the name of Content Warning to be customized (e.g. to "Content Summary"). Fixes #28.
2022-11-22 18:52:40 -08:00
import pytest
Post editing
2022-11-27 10:09:46 -08:00
from django.core.exceptions import PermissionDenied
Content warning name customisation Allows the name of Content Warning to be customized (e.g. to "Content Summary"). Fixes #28.
2022-11-22 18:52:40 -08:00
Post editing
2022-11-27 10:09:46 -08:00
from activities.models import Post
Fix broken tests
2022-12-02 15:46:43 -08:00
from activities.views.posts import Delete
Post editing
2022-11-27 10:09:46 -08:00
@pytest.mark.django_db
def test_post_delete_security(identity, user, rf, other_identity):
# Create post
other_post = Post.objects.create(
content="<p>OTHER POST!</p>",
author=other_identity,
local=True,
visibility=Post.Visibilities.public,
)
request = rf.post(other_post.get_absolute_url() + "delete/")
request.user = user
request.identity = identity
view = Delete.as_view()
with pytest.raises(PermissionDenied) as ex:
view(request, handle=other_identity.handle.lstrip("@"), post_id=other_post.id)
assert str(ex.value) == "Post author is not requestor"