romfast/rar-autopass
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5a964a1a8dd64eda97daf3e4c80cc2044a819eba
rar-autopass/tests/test_web_editare_op_rar.py
Claude Agent 5a964a1a8d feat(5.10): UX trimiteri (pill filtre, paginare, editare) + Mapari in meniu + branding ROMFAST 
14 stories TDD prin echipa de workeri (lead orchestreaza, 3 teammates pe valuri cu fisiere disjuncte; routes.py + base.html serializate ca fisiere fierbinti).

- US-001 fix filtrare data (_iso_date_prefix pe garda+comparatie, prinde timestamp cu ora)
- US-002/007 operatie service distincta in payload_view + afisare in detaliu
- US-003 pill-uri categorii (button/aria-pressed; needs_mapping --warn, needs_data/error --err); fara lista ID-uri/dropdown
- US-004 paginare numerotata 25/pag (total ramificat SQL-COUNT vs fetch-all+slice, clamp page, poll pastreaza pagina)
- US-005 VIN block-level sub nr
- US-006/006b editare cod RAR + validare nomenclator + recalcul idempotency (needs_data/needs_mapping via /corecteaza, error via /repune)
- US-008 card eroare 3-niveluri doar pe read-only + rezumat top-of-form
- US-009 Mapari in meniu hamburger; scoatere tab-bar + role=tablist orfan
- US-010/011 pagina Mapari consolidata + butoane icon SVG + dirty-state (fara kebab/emoji)
- US-012/012b header centrat + logo ROMFAST (/static/romfast_logo.png) in header
- US-013 paleta azur ROMFAST (#2E74D6/#1F66C9) + IBM Plex Sans/Mono self-host (woff2 reale)
- US-014 selector tema ciclic Light/Dark/Petrol/Auto + anti-FOUC pe 4 stari

Backend trimitere (worker/masina stari/idempotenta/mapping) + schema NEATINSE (UI/UX pur + 1 fix de filtrare).
VERIFY context curat PASS; /code-review high: 1 finding material reparat (US-006b). Regresie 896 passed, 1 skipped, 0 failed.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-25 20:20:58 +00:00

360 lines
13 KiB
Python
Raw Blame History

"""Teste US-006 (PRD 5.10): editare operatie RAR (cod_prestatie) din formularul de detaliu.
Stari editabile: needs_data, needs_mapping (stari cu formular de corectie activ).
Read-only: sent/sending/queued/error (fara select cod_prestatie).
Cazuri:
- test_editabil_arata_select_cod_rar: detaliu needs_data → HTML are <select name="cod_prestatie">
- test_salvare_schimba_cod_si_repune_in_coada: POST cu cod_prestatie=OE-2 → payload actualizat + status queued
- test_idempotency_key_se_schimba: schimbarea codului → cheie idempotency noua
- test_cod_invalid_respins: cod necunoscut in nomenclator → respins (status neschimbat)
- test_sent_nu_arata_select: detaliu sent → fara <select name="cod_prestatie">
"""
from __future__ import annotations
import json
import os
import re
import tempfile
import pytest
from starlette.testclient import TestClient
# VIN valid: 17 caractere, fara I/O/Q
VIN_US006 = "WVWZZZ1JZXW0E6001"
# Payload complet valid (trece validate_prezentare)
PAYLOAD_VALID = {
"vin": VIN_US006,
"nr_inmatriculare": "B100AAA",
"data_prestatie": "2026-06-10",
"odometru_final": "55000",
"prestatii": [{"cod_prestatie": "OE-1"}],
}
def _create_account_user(email: str, name: str = "Service", password: str = "parolasecreta10"):
from app.accounts import create_account
from app.users import create_user
from app.db import get_connection
conn = get_connection()
try:
acct_id = create_account(conn, name, active=True)
create_user(conn, acct_id, email, password)
return acct_id
finally:
conn.close()
def _login(client, email: str, password: str = "parolasecreta10") -> None:
resp = client.get("/login")
m = re.search(r'name="csrf_token"\s+value="([^"]+)"', resp.text) or \
re.search(r'value="([^"]+)"\s+name="csrf_token"', resp.text)
assert m
resp = client.post("/login", data={"email": email, "parola": password, "csrf_token": m.group(1)})
assert resp.status_code == 303
def _ins(acct: int, *, status: str, payload: dict | None = None) -> int:
from app.db import get_connection
conn = get_connection()
try:
cur = conn.execute(
"INSERT INTO submissions (idempotency_key, account_id, status, payload_json) VALUES (?, ?, ?, ?)",
(f"k-us006-{os.urandom(6).hex()}", acct, status, json.dumps(payload or PAYLOAD_VALID)),
)
conn.commit()
return int(cur.lastrowid)
finally:
conn.close()
def _ins_nomenclator(*codes: str) -> None:
"""Insereaza coduri RAR in nomenclator_rar (tabelul e gol in DB-ul de test)."""
from app.db import get_connection
conn = get_connection()
try:
for cod in codes:
conn.execute(
"INSERT OR IGNORE INTO nomenclator_rar (cod_prestatie, nume_prestatie) VALUES (?, ?)",
(cod, f"Operatie test {cod}"),
)
conn.commit()
finally:
conn.close()
def _row(sid: int):
from app.db import get_connection
conn = get_connection()
try:
return conn.execute("SELECT * FROM submissions WHERE id=?", (sid,)).fetchone()
finally:
conn.close()
def _csrf(client) -> str:
"""CSRF token din pagina principala (sesiune activa necesara)."""
resp = client.get("/")
m = re.search(r'name="csrf_token"\s+value="([^"]+)"', resp.text)
assert m, f"CSRF token negasit in pagina principala: {resp.text[:500]}"
return m.group(1)
def _detaliu(client, sid: int) -> str:
resp = client.get(f"/_fragments/trimitere/{sid}")
assert resp.status_code == 200
return resp.text
@pytest.fixture()
def client(monkeypatch):
tmp = tempfile.mkdtemp()
monkeypatch.setenv("AUTOPASS_DB_PATH", os.path.join(tmp, "editare_rar.db"))
monkeypatch.setenv("AUTOPASS_WEB_AUTH_REQUIRED", "true")
from app.config import get_settings
get_settings.cache_clear()
from app.web import ratelimit
ratelimit._hits.clear()
from app.main import app
with TestClient(app, follow_redirects=False) as c:
yield c
ratelimit._hits.clear()
get_settings.cache_clear()
def test_editabil_arata_select_cod_rar(client):
"""needs_data cu nomenclator populat → formularul de detaliu afiseaza <select name='cod_prestatie'>."""
acct = _create_account_user("sel1@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="needs_data")
_login(client, "sel1@test.com")
html = _detaliu(client, sid)
assert 'name="cod_prestatie"' in html, (
"Formularul de detaliu needs_data trebuie sa contina un select cu name='cod_prestatie'"
)
assert "<select" in html, (
"Elementul <select> trebuie sa apara in detaliu pentru starea needs_data"
)
# Optiunile din select contin codurile din nomenclator
assert "OE-1" in html, "Codul OE-1 trebuie sa apara in optiunile select-ului"
assert "OE-2" in html, "Codul OE-2 trebuie sa apara in optiunile select-ului"
def test_salvare_schimba_cod_si_repune_in_coada(client):
"""POST /corecteaza cu cod_prestatie=OE-2 → payload actualizat + status=queued."""
acct = _create_account_user("sav2@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="needs_data")
_login(client, "sav2@test.com")
csrf = _csrf(client)
resp = client.post(
f"/trimitere/{sid}/corecteaza",
data={"csrf_token": csrf, "cod_prestatie": "OE-2"},
)
assert resp.status_code == 200
row = _row(sid)
assert row["status"] == "queued", (
f"Dupa salvarea cu OE-2, randul trebuie sa fie queued, nu '{row['status']}'"
)
payload = json.loads(row["payload_json"])
prestatii = payload.get("prestatii") or []
assert prestatii, "Payload-ul trebuie sa contina cel putin o prestatie dupa corectie"
cod_nou = (prestatii[0].get("cod_prestatie") or "").strip().upper()
assert cod_nou == "OE-2", (
f"cod_prestatie in payload trebuie sa fie OE-2, nu '{cod_nou}'"
)
def test_idempotency_key_se_schimba(client):
"""Schimbarea cod_prestatie (OE-1 → OE-2) recalculeaza cheia de idempotency.
Verificare stricta: cheia calculata dupa POST cu OE-2 difera de cheia CANONICALA
cu OE-1. Daca cod_prestatie nu e injectat inainte de build_key, cheia ramane cea
cu OE-1 si testul pica. Este RED inainte de implementarea US-006.
"""
from app.idempotency import build_key, canonicalize_row
acct = _create_account_user("idem3@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="needs_data")
_login(client, "idem3@test.com")
csrf = _csrf(client)
# Cheia canonicala cu OE-1 = ce ar produce un POST fara cod_prestatie (sau cu OE-1)
canon_oe1 = canonicalize_row({**PAYLOAD_VALID, "prestatii": [{"cod_prestatie": "OE-1"}]})
key_oe1 = build_key(acct, canon_oe1)
# POST cu cod_prestatie=OE-2: implementarea US-006 trebuie sa injecteze OE-2 in payload
client.post(
f"/trimitere/{sid}/corecteaza",
data={"csrf_token": csrf, "cod_prestatie": "OE-2"},
)
cheie_noua = _row(sid)["idempotency_key"]
assert cheie_noua != key_oe1, (
"Cheia calculata dupa POST cu OE-2 trebuie sa difere de cheia cu OE-1. "
"Daca sunt egale, cod_prestatie nu a fost injectat inainte de build_key (US-006 H3)."
)
def test_cod_invalid_respins(client):
"""Cod RAR necunoscut in nomenclator → randul ramane needs_data (nu se re-cueaza)."""
acct = _create_account_user("inv4@test.com")
_ins_nomenclator("OE-1") # "ZZ-INVALID" nu exista
sid = _ins(acct, status="needs_data")
_login(client, "inv4@test.com")
csrf = _csrf(client)
resp = client.post(
f"/trimitere/{sid}/corecteaza",
data={"csrf_token": csrf, "cod_prestatie": "ZZ-INVALID"},
)
# Raspunsul e 200 (eroare in pagina, nu redirect)
assert resp.status_code == 200
row = _row(sid)
assert row["status"] == "needs_data", (
f"Un cod invalid trebuie sa lase randul in needs_data, nu '{row['status']}'"
)
# Mesajul de eroare trebuie sa apara in raspuns
assert "ZZ-INVALID" in resp.text or "necunoscut" in resp.text.lower(), (
"Raspunsul trebuie sa indice ca codul este necunoscut in nomenclator"
)
def test_sent_nu_arata_select(client):
"""Trimitere cu status=sent → fara <select name='cod_prestatie'> in detaliu (read-only)."""
acct = _create_account_user("ro5@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="sent")
_login(client, "ro5@test.com")
html = _detaliu(client, sid)
assert 'name="cod_prestatie"' not in html, (
"Starea sent trebuie sa fie read-only (fara select cod_prestatie)"
)
# ================================================================
# US-006b: extindere la starea error
# ================================================================
def test_error_arata_select_cod_rar(client):
"""needs_data/needs_mapping primeau select (US-006); error trebuie sa primeasca si el
un select cod_prestatie in formularul 'Re-pune in coada' (US-006b)."""
acct = _create_account_user("err1@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="error")
_login(client, "err1@test.com")
html = _detaliu(client, sid)
assert 'name="cod_prestatie"' in html, (
"Starea error trebuie sa afiseze un select cod_prestatie (US-006b)"
)
assert "<select" in html, "Elementul <select> trebuie sa apara in detaliu pentru error"
# Codurile din nomenclator trebuie sa fie in optiuni
assert "OE-1" in html and "OE-2" in html, (
"Codurile din nomenclator trebuie sa apara in select-ul pentru error"
)
# NU trebuie sa afiseze formularul complet de corectie (fara /corecteaza)
assert f"/trimitere/{sid}/corecteaza" not in html, (
"Starea error NU trebuie sa aiba formular /corecteaza (US-006b foloseste /repune)"
)
# Butonul principal ramane 'Re-pune in coada' (nu 'Salveaza si retrimite')
assert "Re-pune in coada" in html
assert "Salveaza si retrimite" not in html
def test_error_salvare_schimba_cod_si_repune_in_coada(client):
"""POST /repune cu cod_prestatie=OE-2 pe un rand error → payload actualizat + status=queued."""
acct = _create_account_user("err2@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="error")
_login(client, "err2@test.com")
csrf = _csrf(client)
resp = client.post(
f"/trimitere/{sid}/repune",
data={"csrf_token": csrf, "cod_prestatie": "OE-2"},
)
assert resp.status_code == 200
row = _row(sid)
assert row["status"] == "queued", (
f"Dupa repune cu OE-2, randul trebuie sa fie queued, nu '{row['status']}'"
)
payload = json.loads(row["payload_json"])
prestatii = payload.get("prestatii") or []
assert prestatii, "Payload-ul trebuie sa contina cel putin o prestatie"
cod_nou = (prestatii[0].get("cod_prestatie") or "").strip().upper()
assert cod_nou == "OE-2", (
f"cod_prestatie in payload trebuie sa fie OE-2, nu '{cod_nou}'"
)
def test_error_idempotency_key_se_schimba(client):
"""Schimbarea cod_prestatie (OE-1 → OE-2) la repune recalculeaza cheia de idempotency.
Randul e inserat CU CHEIA CANONICA pentru OE-1 (nu random), ca sa fie RED inainte
de implementare: fara injectare, repune nu schimba cheia (ramane OE-1) → test FAIL.
Dupa implementare, POST cu OE-2 → cheie noua (canonicala cu OE-2) ≠ cheie OE-1.
"""
from app.idempotency import build_key, canonicalize_row
from app.db import get_connection as _gc
acct = _create_account_user("err3@test.com")
_ins_nomenclator("OE-1", "OE-2")
# Calculeaza cheia canonicala pentru OE-1 si insereaza randul CU acea cheie.
canon_oe1 = canonicalize_row({**PAYLOAD_VALID, "prestatii": [{"cod_prestatie": "OE-1"}]})
key_oe1 = build_key(acct, canon_oe1)
# Inserare cu cheia cunoscuta (nu random), ca sa avem un baseline deterministic.
conn = _gc()
try:
cur = conn.execute(
"INSERT INTO submissions (idempotency_key, account_id, status, payload_json) VALUES (?, ?, ?, ?)",
(key_oe1, acct, "error", json.dumps({**PAYLOAD_VALID, "prestatii": [{"cod_prestatie": "OE-1"}]})),
)
conn.commit()
sid = int(cur.lastrowid)
finally:
conn.close()
_login(client, "err3@test.com")
csrf = _csrf(client)
# POST /repune cu OE-2 → implementarea trebuie sa recalculeze cheia
client.post(
f"/trimitere/{sid}/repune",
data={"csrf_token": csrf, "cod_prestatie": "OE-2"},
)
cheie_noua = _row(sid)["idempotency_key"]
assert cheie_noua != key_oe1, (
"Cheia idempotency trebuie sa difere dupa schimbarea cod_prestatie la repune (US-006b). "
"Daca sunt egale, cod_prestatie nu a fost injectat inainte de build_key."
)
def test_queued_nu_arata_select(client):
"""Trimitere queued → fara select cod_prestatie (read-only; doar error/needs_* primesc select)."""
acct = _create_account_user("ro6@test.com")
_ins_nomenclator("OE-1", "OE-2")
sid = _ins(acct, status="queued")
_login(client, "ro6@test.com")
html = _detaliu(client, sid)
assert 'name="cod_prestatie"' not in html, (
"Starea queued trebuie sa fie read-only (fara select cod_prestatie)"
)
Reference in New Issue View Git Blame Copy Permalink