Test + default impl for view-query permission, refs #811

2025-12-10 16:51:24 +01:00 · 2020-06-07 14:23:16 -07:00 · 2020-06-07 14:23:16 -07:00 · ece0ba6f4b
commit ece0ba6f4b
parent abc7339124
2 changed files with 40 additions and 3 deletions
--- a/tests/test_permissions.py
+++ b/tests/test_permissions.py
@ -0,0 +1,22 @@
+from .fixtures import make_app_client
+import pytest
+
+
+@pytest.mark.parametrize(
+    "allow,expected_anon,expected_auth",
+    [(None, 200, 200), ({}, 403, 403), ({"id": "root"}, 403, 200),],
+)
+def test_execute_sql(allow, expected_anon, expected_auth):
+    with make_app_client(
+        metadata={
+            "databases": {
+                "fixtures": {"queries": {"q": {"sql": "select 1 + 1", "allow": allow}}}
+            }
+        }
+    ) as client:
+        anon_response = client.get("/fixtures/q")
+        assert expected_anon == anon_response.status
+        auth_response = client.get(
+            "/fixtures/q", cookies={"ds_actor": client.ds.sign({"id": "root"}, "actor")}
+        )
+        assert expected_auth == auth_response.status