Source code for tests.system.delete_car_negative_test

#!/path/to/interpreter

"""
Flask App REST API testing: DELETE
"""

#  Created by Egor Kostan.
#  GitHub: https://github.com/ikostan
#  LinkedIn: https://www.linkedin.com/in/egor-kostan/

import allure
import requests
from tests.system.base_test import BaseTestCase
from api.cars_app import USER_LIST



[docs]@allure.epic('Simple Flask App')
@allure.parent_suite('REST API')
@allure.suite("System Tests")
@allure.sub_suite("Negative Tests")
@allure.feature("DELETE")
@allure.story('Cars')
class DeleteCarNegativeTestCase(BaseTestCase):
    """
    Simple Flask App Negative Test: DELETE call > cars
    """


[docs]    def setUp(self) -> None:
        """
        Test data preparation
        :return:
        """

        with allure.step("Arrange expected results (cars list)"):
            self.delete_car_url = '/cars/remove/'
            self.car = {"name": "City",
                        "brand": "Honda",
                        "price_range": "3-6 lacs",
                        "car_type": "sedan"}



[docs]    def test_delete_car_wrong_admin_credentials(self):
        """
        Delete car using wrong admin user credentials.
        :return:
        """

        allure.dynamic.title("Delete car using "
                             "wrong admin user credentials")
        allure.dynamic.severity(allure.severity_level.BLOCKER)

        with allure.step("Verify user permissions"):
            username = USER_LIST[0]['name']
            password = USER_LIST[2]['password']
            self.assertEqual("admin",
                             USER_LIST[0]['perm'])

        with allure.step("Send DELETE request"):
            response = requests.delete(url='{}{}{}'.format(self.URL,
                                                           self.delete_car_url,
                                                           self.car['name']),
                                       auth=(username,
                                             password))

        with allure.step("Verify status code"):
            self.assertEqual(401,
                             response.status_code)
        with allure.step("Verify error message"):
            self.assertEqual("Authenticate with proper credentials",
                             response.json()["message"])



[docs]    def test_delete_car_wrong_non_admin_credentials(self):
        """
        Get full list of cars using wrong
        non admin user credentials.
        :return:
        """

        allure.dynamic.title("Get list of cars using wrong "
                             "non admin user credentials")
        allure.dynamic.severity(allure.severity_level.BLOCKER)

        with allure.step("Verify user permissions"):
            username = USER_LIST[1]['name']
            password = USER_LIST[3]['password']
            self.assertEqual("non_admin",
                             USER_LIST[1]['perm'])

        with allure.step("Send DELETE request"):
            response = requests.delete(url='{}{}{}'.format(self.URL,
                                                           self.delete_car_url,
                                                           self.car['name']),
                                       auth=(username,
                                             password))

        with allure.step("Verify status code"):
            self.assertEqual(401,
                             response.status_code)

        with allure.step("Verify error message"):
            self.assertEqual("Authenticate with proper credentials",
                             response.json()["message"])