Domů Procházet Nápověda
Registrovat se Přihlásit se
CRBC-MaaS-Platform-Project
/
LQAdminPlatform
3
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 2bdaa79c15
Větve Značky
LQAdminPlatform
/
test_regular_user_applications.py

test_regular_user_applications.py 2.7 KB
Historie Surový

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. #!/usr/bin/env python3
    2. 

  2. import requests
    3. 

  3. import json
    4. 

  4. 

  5. # Test regular user (zhangsan) applications access to ensure they only see their own
    6. 

  6. login_data = {
    7. 

  7.     'username': 'zhangsan',
    8. 

  8.     'password': '123456'
    9. 

  9. }
    10. 

  10. 

  11. try:
    12. 

  12.     # Login as zhangsan user
    13. 

  13.     login_response = requests.post('http://localhost:8000/api/v1/auth/login', json=login_data)
    14. 

  14.     if login_response.status_code == 200:
    15. 

  15.         login_result = login_response.json()
    16. 

  16.         if login_result.get('code') == 0:
    17. 

  17.             token = login_result['data']['access_token']
    18. 

  18.             print('✅ Zhangsan user login successful')
    19. 

  19.             
    20. 

  20.             # Get user profile to check roles
    21. 

  21.             headers = {'Authorization': f'Bearer {token}'}
    22. 

  22.             profile_response = requests.get('http://localhost:8000/api/v1/users/profile', headers=headers)
    23. 

  23.             if profile_response.status_code == 200:
    24. 

  24.                 profile_result = profile_response.json()
    25. 

  25.                 if profile_result.get('code') == 0:
    26. 

  26.                     profile = profile_result['data']
    27. 

  27.                     print(f'👤 Zhangsan roles: {profile.get("roles", [])}')
    28. 

  28.             
    29. 

  29.             # Get applications list
    30. 

  30.             apps_response = requests.get('http://localhost:8000/api/v1/apps', headers=headers)
    31. 

  31.             
    32. 

  32.             if apps_response.status_code == 200:
    33. 

  33.                 apps_result = apps_response.json()
    34. 

  34.                 if apps_result.get('code') == 0:
    35. 

  35.                     apps_data = apps_result['data']
    36. 

  36.                     apps = apps_data.get('items', [])
    37. 

  37.                     total = apps_data.get('total', 0)
    38. 

  38.                     
    39. 

  39.                     print(f'✅ Zhangsan can access applications API')
    40. 

  40.                     print(f'📱 Zhangsan sees {len(apps)} applications (total: {total})')
    41. 

  41.                     
    42. 

  42.                     if apps:
    43. 

  43.                         for app in apps:
    44. 

  44.                             print(f'   App: {app["name"]} (Key: {app["app_key"]})')
    45. 

  45.                             print(f'     Description: {app.get("description", "N/A")}')
    46. 

  46.                             print()
    47. 

  47.                         print('⚠️  Regular user should only see their own applications!')
    48. 

  48.                     else:
    49. 

  49.                         print('✅ Regular user sees no applications (correct - they have not created any)')
    50. 

  50.                         
    51. 

  51.                 else:
    52. 

  52.                     print(f'❌ Applications API error: {apps_result.get("message")}')
    53. 

  53.             else:
    54. 

  54.                 print(f'❌ Applications API HTTP error: {apps_response.status_code}')
    55. 

  55.         else:
    56. 

  56.             print(f'❌ Login error: {login_result.get("message")}')
    57. 

  57.     else:
    58. 

  58.         print(f'❌ Login HTTP error: {login_response.status_code}')
    59. 

  59.         
    60. 

  60. except Exception as e:
    61. 

  61.     print(f'❌ Request error: {e}')
    62.