add provider register permissions tests

trbs · trbs · commit ffed5389c7f3 · 2015-05-18T15:15:13.000+02:00
diff --git a/oauth2_provider/tests/test_application_views.py b/oauth2_provider/tests/test_application_views.py
@@ -5,6 +5,7 @@
 from django.contrib.contenttypes.models import ContentType
 from django.test import TestCase
 
+from ..settings import oauth2_settings
 from ..models import get_application_model
 from ..compat import get_user_model
 
@@ -46,6 +47,58 @@ def test_application_registration_user(self):
         self.assertEqual(app.user.username, "foo_user")
 
 
+class TestApplicationRegistrationViewPermissions(BaseTest):
+    def setUp(self):
+        super(TestApplicationRegistrationViewPermissions, self).setUp()
+        oauth2_settings.APPLICATION_REGISTRATION_PERMISSIONS = {
+            'all': ('oauth2_provider.add_application', ),
+        }
+
+    def tearDown(self):
+        super(TestApplicationRegistrationViewPermissions, self).tearDown()
+        oauth2_settings.APPLICATION_REGISTRATION_PERMISSIONS = None
+
+    def test_application_registration_user_with_permission(self):
+        self.client.login(username="foo_user", password="123456")
+
+        form_data = {
+            'name': 'Foo app',
+            'client_id': 'client_id',
+            'client_secret': 'client_secret',
+            'client_type': Application.CLIENT_CONFIDENTIAL,
+            'redirect_uris': 'http://example.com',
+            'authorization_grant_type': Application.GRANT_AUTHORIZATION_CODE
+        }
+
+        response = self.client.post(reverse('oauth2_provider:register'), form_data)
+        self.assertEqual(response.status_code, 302)
+        self.assertEqual(response.has_header('Location'), True)
+        self.assertEqual(response['Location'].endswith("/o/applications/1/"), True)
+
+        app = Application.objects.get(name="Foo app")
+        self.assertEqual(app.user.username, "foo_user")
+
+    def test_application_registration_user_without_permission(self):
+        self.client.login(username="bar_user", password="123456")
+
+        form_data = {
+            'name': 'Bar app',
+            'client_id': 'client_id',
+            'client_secret': 'client_secret',
+            'client_type': Application.CLIENT_CONFIDENTIAL,
+            'redirect_uris': 'http://example.com',
+            'authorization_grant_type': Application.GRANT_AUTHORIZATION_CODE
+        }
+
+        response = self.client.post(reverse('oauth2_provider:register'), form_data)
+        self.assertEqual(response.status_code, 302)
+        self.assertEqual(response.has_header('Location'), True)
+        self.assertEqual(response['Location'].endswith("/accounts/login/?next=/o/applications/register/"), True)
+
+        with self.assertRaises(Application.DoesNotExist):
+            app = Application.objects.get(name="Bar app")
+
+
 class TestApplicationViews(BaseTest):
     def _create_application(self, name, user):
         app = Application.objects.create(
