X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/4fc1455d51a681e961a3ca568c95723518106b24..51dab659f55476460a5c89aac43c148ff0e4dba4:/test/controllers/api/ways_controller_test.rb diff --git a/test/controllers/api/ways_controller_test.rb b/test/controllers/api/ways_controller_test.rb index e11cceeb2..2ff5e6f29 100644 --- a/test/controllers/api/ways_controller_test.rb +++ b/test/controllers/api/ways_controller_test.rb @@ -6,16 +6,16 @@ module Api # test all routes which lead to this controller def test_routes assert_routing( - { :path => "/api/0.6/way/create", :method => :put }, - { :controller => "api/ways", :action => "create" } + { :path => "/api/0.6/ways", :method => :get }, + { :controller => "api/ways", :action => "index" } ) assert_routing( - { :path => "/api/0.6/way/1/full", :method => :get }, - { :controller => "api/ways", :action => "full", :id => "1" } + { :path => "/api/0.6/ways.json", :method => :get }, + { :controller => "api/ways", :action => "index", :format => "json" } ) assert_routing( - { :path => "/api/0.6/way/1/full.json", :method => :get }, - { :controller => "api/ways", :action => "full", :id => "1", :format => "json" } + { :path => "/api/0.6/ways", :method => :post }, + { :controller => "api/ways", :action => "create" } ) assert_routing( { :path => "/api/0.6/way/1", :method => :get }, @@ -26,67 +26,26 @@ module Api { :controller => "api/ways", :action => "show", :id => "1", :format => "json" } ) assert_routing( - { :path => "/api/0.6/way/1", :method => :put }, - { :controller => "api/ways", :action => "update", :id => "1" } + { :path => "/api/0.6/way/1/full", :method => :get }, + { :controller => "api/ways", :action => "full", :id => "1" } ) assert_routing( - { :path => "/api/0.6/way/1", :method => :delete }, - { :controller => "api/ways", :action => "delete", :id => "1" } + { :path => "/api/0.6/way/1/full.json", :method => :get }, + { :controller => "api/ways", :action => "full", :id => "1", :format => "json" } ) assert_routing( - { :path => "/api/0.6/ways", :method => :get }, - { :controller => "api/ways", :action => "index" } + { :path => "/api/0.6/way/1", :method => :put }, + { :controller => "api/ways", :action => "update", :id => "1" } ) assert_routing( - { :path => "/api/0.6/ways.json", :method => :get }, - { :controller => "api/ways", :action => "index", :format => "json" } + { :path => "/api/0.6/way/1", :method => :delete }, + { :controller => "api/ways", :action => "destroy", :id => "1" } ) - end - - # ------------------------------------- - # Test showing ways. - # ------------------------------------- - - def test_show - # check that a visible way is returned properly - get api_way_path(create(:way)) - assert_response :success - - # check that an invisible way is not returned - get api_way_path(create(:way, :deleted)) - assert_response :gone - - # check chat a non-existent way is not returned - get api_way_path(0) - assert_response :not_found - end - - ## - # check the "full" mode - def test_full - way = create(:way_with_nodes, :nodes_count => 3) - - get way_full_path(way) - - assert_response :success - - # Check the way is correctly returned - assert_select "osm way[id='#{way.id}'][version='1'][visible='true']", 1 - - # check that each node in the way appears once in the output as a - # reference and as the node element. - way.nodes.each do |n| - assert_select "osm way nd[ref='#{n.id}']", 1 - assert_select "osm node[id='#{n.id}'][version='1'][lat='#{format('%.7f', :lat => n.lat)}'][lon='#{format('%.7f', :lon => n.lon)}']", 1 - end - end - - def test_full_deleted - way = create(:way, :deleted) - - get way_full_path(way) - assert_response :gone + assert_recognizes( + { :controller => "api/ways", :action => "create" }, + { :path => "/api/0.6/way/create", :method => :put } + ) end ## @@ -98,15 +57,15 @@ module Api way4 = create(:way) # check error when no parameter provided - get ways_path + get api_ways_path assert_response :bad_request # check error when no parameter value provided - get ways_path(:ways => "") + get api_ways_path(:ways => "") assert_response :bad_request # test a working call - get ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id}") + get api_ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id}") assert_response :success assert_select "osm" do assert_select "way", :count => 4 @@ -117,7 +76,7 @@ module Api end # test a working call with json format - get ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id}", :format => "json") + get api_ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id}", :format => "json") js = ActiveSupport::JSON.decode(@response.body) assert_not_nil js @@ -129,10 +88,80 @@ module Api assert_equal 1, (js["elements"].count { |a| a["id"] == way4.id && a["visible"].nil? }) # check error when a non-existent way is included - get ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id},0") + get api_ways_path(:ways => "#{way1.id},#{way2.id},#{way3.id},#{way4.id},0") + assert_response :not_found + end + + # ------------------------------------- + # Test showing ways. + # ------------------------------------- + + def test_show_not_found + get api_way_path(0) assert_response :not_found end + def test_show_deleted + get api_way_path(create(:way, :deleted)) + assert_response :gone + end + + def test_show + way = create(:way, :timestamp => "2021-02-03T00:00:00Z") + node = create(:node, :timestamp => "2021-04-05T00:00:00Z") + create(:way_node, :way => way, :node => node) + + get api_way_path(way) + + assert_response :success + assert_not_nil @response.header["Last-Modified"] + assert_equal "2021-02-03T00:00:00Z", Time.parse(@response.header["Last-Modified"]).utc.xmlschema + end + + def test_show_json + way = create(:way_with_nodes, :nodes_count => 3) + + get api_way_path(way, :format => "json") + + assert_response :success + + js = ActiveSupport::JSON.decode(@response.body) + assert_not_nil js + assert_equal 1, js["elements"].count + js_ways = js["elements"].filter { |e| e["type"] == "way" } + assert_equal 1, js_ways.count + assert_equal way.id, js_ways[0]["id"] + assert_equal 1, js_ways[0]["version"] + end + + ## + # check the "full" mode + def test_full + way = create(:way_with_nodes, :nodes_count => 3) + + get way_full_path(way) + + assert_response :success + + # Check the way is correctly returned + assert_select "osm way[id='#{way.id}'][version='1'][visible='true']", 1 + + # check that each node in the way appears once in the output as a + # reference and as the node element. + way.nodes.each do |n| + assert_select "osm way nd[ref='#{n.id}']", 1 + assert_select "osm node[id='#{n.id}'][version='1'][lat='#{format('%.7f', :lat => n.lat)}'][lon='#{format('%.7f', :lon => n.lon)}']", 1 + end + end + + def test_full_deleted + way = create(:way, :deleted) + + get way_full_path(way) + + assert_response :gone + end + # ------------------------------------- # Test simple way creation. # ------------------------------------- @@ -146,7 +175,7 @@ module Api changeset = create(:changeset, :user => user) ## First check that it fails when creating a way using a non-public user - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # use the first user's open changeset changeset_id = private_changeset.id @@ -155,13 +184,13 @@ module Api xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # hope for failure assert_response :forbidden, "way upload did not return forbidden status" ## Now use a public user - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # use the first user's open changeset changeset_id = changeset.id @@ -170,7 +199,7 @@ module Api xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # hope for success assert_response :success, "way upload did not return success status" @@ -207,13 +236,13 @@ module Api closed_changeset = create(:changeset, :closed, :user => user) ## First test with a private user to make sure that they are not authorized - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # use the first user's open changeset # create a way with non-existing node xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :forbidden, "way upload with invalid node using a private user did not return 'forbidden'" @@ -221,7 +250,7 @@ module Api # create a way with no nodes xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :forbidden, "way upload with no node using a private userdid not return 'forbidden'" @@ -229,19 +258,19 @@ module Api # create a way inside a closed changeset xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :forbidden, "way upload to closed changeset with a private user did not return 'forbidden'" ## Now test with a public user - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # use the first user's open changeset # create a way with non-existing node xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :precondition_failed, "way upload with invalid node did not return 'precondition failed'" @@ -250,7 +279,7 @@ module Api # create a way with no nodes xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :precondition_failed, "way upload with no node did not return 'precondition failed'" @@ -259,7 +288,7 @@ module Api # create a way inside a closed changeset xml = "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :conflict, "way upload to closed changeset did not return 'conflict'" @@ -269,7 +298,7 @@ module Api "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header # expect failure assert_response :bad_request, "way upload to with too long tag did not return 'bad_request'" @@ -279,7 +308,7 @@ module Api # Test deleting ways. # ------------------------------------- - def test_delete + def test_destroy private_user = create(:user, :data_public => false) private_open_changeset = create(:changeset, :user => private_user) private_closed_changeset = create(:changeset, :closed, :user => private_user) @@ -301,7 +330,7 @@ module Api assert_response :unauthorized # now set auth using the private user - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # this shouldn't work as with the 0.6 api we need pay load to delete delete api_way_path(private_way), :headers => auth_header @@ -350,7 +379,7 @@ module Api ### Now check with a public user # now set auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # this shouldn't work as with the 0.6 api we need pay load to delete delete api_way_path(way), :headers => auth_header @@ -419,7 +448,7 @@ module Api ## Second test with the private user # setup auth - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user ## trying to break changesets @@ -457,7 +486,7 @@ module Api ## Finally test with the public user # setup auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user ## trying to break changesets @@ -541,7 +570,7 @@ module Api ## Try with the non-public user # setup auth - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # add an identical tag to the way tag_xml = XML::Node.new("tag") @@ -559,7 +588,7 @@ module Api ## Now try with the public user # setup auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # add an identical tag to the way tag_xml = XML::Node.new("tag") @@ -589,7 +618,7 @@ module Api ## Try with the non-public user # setup auth - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # add an identical tag to the way tag_xml = XML::Node.new("tag") @@ -607,7 +636,7 @@ module Api ## Now try with the public user # setup auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # add an identical tag to the way tag_xml = XML::Node.new("tag") @@ -635,7 +664,7 @@ module Api ## First test with the non-public user so should be rejected # setup auth - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # create duplicate tag tag_xml = XML::Node.new("tag") @@ -655,7 +684,7 @@ module Api ## Now test with the public user # setup auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # create duplicate tag tag_xml = XML::Node.new("tag") @@ -687,7 +716,7 @@ module Api ## First make sure that you can't with a non-public user # setup auth - auth_header = basic_authorization_header private_user.email, "test" + auth_header = bearer_authorization_header private_user # add the tag into the existing xml way_str = "" @@ -696,13 +725,13 @@ module Api way_str << "" # try and upload it - put way_create_path, :params => way_str, :headers => auth_header + post api_ways_path, :params => way_str, :headers => auth_header assert_response :forbidden, "adding new duplicate tags to a way with a non-public user should fail with 'forbidden'" ## Now do it with a public user # setup auth - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # add the tag into the existing xml way_str = "" @@ -711,7 +740,7 @@ module Api way_str << "" # try and upload it - put way_create_path, :params => way_str, :headers => auth_header + post api_ways_path, :params => way_str, :headers => auth_header assert_response :bad_request, "adding new duplicate tags to a way should fail with 'bad request'" assert_equal "Element way/ has duplicate tags with key addr:housenumber", @response.body @@ -769,13 +798,13 @@ module Api :num_changes => Settings.initial_changes_per_hour - 1) # create authentication header - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # try creating a way xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header assert_response :success, "way create did not return success status" # get the id of the way we created @@ -797,7 +826,7 @@ module Api xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header assert_response :too_many_requests, "way create did not hit rate limit" end @@ -826,13 +855,13 @@ module Api end # create authentication header - auth_header = basic_authorization_header user.email, "test" + auth_header = bearer_authorization_header user # try creating a way xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header assert_response :success, "way create did not return success status" # get the id of the way we created @@ -854,7 +883,7 @@ module Api xml = "" \ "" \ "" - put way_create_path, :params => xml, :headers => auth_header + post api_ways_path, :params => xml, :headers => auth_header assert_response :too_many_requests, "way create did not hit rate limit" end