tests

Author: Namitha-Prabhu

tests/e2e-tests/api/authentication/test-403-errors.py

@@ -0,0 +1,60 @@
+import uuid
+import requests
+import pytest
+from lib.fixtures import *  # NOSONAR
+from lib.constants import LETTERS_ENDPOINT
+from lib.generators import Generators
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+
+def test_200_get_letter_status(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}/", headers=headers)
+
+    letter_id = get_letter_id.json().get("data")[0].get("id")
+    get_letter_data = requests.get(f"{url}/{LETTERS_ENDPOINT}/{letter_id}/data", headers=headers)
+
+    assert get_letter_data.status_code == 200
+    assert get_letter_data.headers.get("Content-Type") == "application/pdf"
+
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_404_letter_does_not_exist(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/xx", headers=headers)
+
+    assert get_message_response.status_code == 404
+    assert get_message_response.json().get("errors")[0].get("detail") == "No resource found with that ID"
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_404_letter_does_not_exist(url, bearer_token):
+
+    letter_id = uuid.uuid4().hex
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/{letter_id}/data", headers=headers)
+
+    assert get_message_response.status_code == 404
+    assert get_message_response.json().get("errors")[0].get("detail") == "No resource found with that ID"
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_500_letter_does_not_exist(url, bearer_token):
+
+    letter_id = "00000000-0000-0000-0000-000000000000"
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/{letter_id}/data", headers=headers)
+
+    assert get_message_response.status_code == 500

tests/e2e-tests/api/data/test-get-letter_data.py

@@ -1,6 +1,6 @@
-
 import pytest
 import requests
+from os import getenv
 
 def _get(url, headers=None, timeout=10):
     return requests.get(url, headers=headers or {}, timeout=timeout)
@@ -11,29 +11,33 @@ def test_ping(nhsd_apim_proxy_url):
     assert resp.status_code == 200
 
 @pytest.mark.smoketest
+@pytest.mark.sandboxtest
+@pytest.mark.devtest
+def test_status(nhsd_apim_proxy_url, status_endpoint_auth_headers):
+    resp = requests.get(
+        f"{nhsd_apim_proxy_url}/_status", headers=status_endpoint_auth_headers
+    )
+
+    assert resp.status_code == 200
+
+@pytest.mark.smoketest
+@pytest.mark.sandboxtest
+@pytest.mark.devtest
 def test_401_status_without_api_key(nhsd_apim_proxy_url):
     resp = requests.get(
         f"{nhsd_apim_proxy_url}/_status"
     )
     assert resp.status_code == 401
 
-@pytest.mark.smoketest
-@pytest.mark.nhsd_apim_authorization(access="application", level="level3")
-def test_invalid_jwt_rejected(nhsd_apim_proxy_url, nhsd_apim_auth_headers):
-    """
-    Best-effort: if gateway validates JWTs, an invalid token should be rejected.
-    If JWT not used in this env, test is skipped.
-    """
-    headers = {
-        **nhsd_apim_auth_headers,
-        "x-request-id": "123456"
-    }
-
-    # If no Authorization configured in project headers, skip
-    if "Authorization" not in headers:
-        pytest.skip("JWT auth not configured for this environment")
 
-    bad_headers = dict(headers)
-    bad_headers["Authorization"] = "Bearer invalid.invalid.invalid"
-    status = _get(f"{nhsd_apim_proxy_url}/_status", headers=bad_headers).status_code
-    assert status in (401, 403), "Expected gateway to reject invalid JWT"
+# @pytest.mark.smoketest
+# @pytest.mark.nhsd_apim_authorization(access="application", level="level3")
+# def test_invalid_jwt_rejected(nhsd_apim_proxy_url, nhsd_apim_auth_headers):
+#    """
+#    Best-effort: if gateway validates JWTs, an invalid token should be rejected.
+#    If JWT not used in this env, test is skipped.
+#    """
+#    headers = {
+#        **nhsd_apim_auth_headers,
+#        "x-request-id": "123456"
+#    }

tests/e2e-tests/api/endpoint_tests.py

@@ -1,31 +1,44 @@
+from re import M
 import requests
 import pytest
 from lib.fixtures import *  # NOSONAR
-from lib.constants import DEFAULT_CONTENT_TYPE, VALID_ENDPOINTS
+from lib.constants import VALID_ENDPOINT_LETTERS, MI_ENDPOINT
+from lib.generators import Generators
 
 METHODS = ["get", "post"]
-REQUEST_ID = [None, "88b10816-5d45-4992-bed0-ea685aaa0e1f"]
 
 
 @pytest.mark.test
 @pytest.mark.devtest
 @pytest.mark.inttest
 @pytest.mark.prodtest
-@pytest.mark.parametrize("request_id", REQUEST_ID)
 @pytest.mark.parametrize("method", METHODS)
-@pytest.mark.parametrize("endpoints", VALID_ENDPOINTS)
-def test_406(
+@pytest.mark.parametrize("endpoints", VALID_ENDPOINT_LETTERS)
+def test_header_letters_endpoint(
     url,
-    accept_header_name,
-    accept_header_value,
-    correlation_id,
     method,
-    endpoints
+    endpoints,
+    bearer_token
 ):
     resp = getattr(requests, method)(f"{url}/{endpoints}", headers={
-        "Authorization": "Bearer BdXxzeUkIu7F3Fu91Hsa4URYORMa",
-        accept_header_name: accept_header_value,
-        "X-Correlation-Id": request_id
+        "Authorization": bearer_token.value,
+        "X-Request-ID": None
+    })
+
+    assert resp.status_code == 500
+
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_header_mi_endpoint(
+    url,
+    bearer_token
+):
+    resp = getattr(requests, "post")(f"{url}/{MI_ENDPOINT}", headers={
+        "Authorization": bearer_token.value,
+        "X-Request-ID": ""
     })
 
     assert resp.status_code == 500

tests/e2e-tests/api/headers/test-x-request-id.py

@@ -12,13 +12,12 @@
 def test_200_get_letter_status(url, bearer_token):
 
     headers = Generators.generate_valid_headers(bearer_token.value)
-    get_messages = requests.get(f"{url}/{LETTERS_ENDPOINT}/", headers=headers)
+    get_letters = requests.get(f"{url}/{LETTERS_ENDPOINT}/", headers=headers)
 
-    letter_id = get_messages.json().get("data")[0].get("id")
+    letter_id = get_letters.json().get("data")[0].get("id")
     get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/{letter_id}", headers=headers)
 
     assert get_message_response.status_code == 200
-    print(get_message_response.json().get("data").get("id"))
 
 
 @pytest.mark.test

…/e2e-tests/api/test-get-letter-status.py …ts/api/letters/test-get-letter-status.pytests/e2e-tests/api/test-get-letter-status.py renamed to tests/e2e-tests/api/letters/test-get-letter-status.py tests/e2e-tests/api/test-get-letter-status.py renamed to tests/e2e-tests/api/letters/test-get-letter-status.py

@@ -0,0 +1,82 @@
+from re import L
+import time
+import requests
+import pytest
+from lib.fixtures import *  # NOSONAR
+from lib.constants import LETTERS_ENDPOINT
+from lib.generators import Generators
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+
+def test_202_with_valid_headers(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=2", headers=headers)
+
+    ids = [item.get("id") for item in get_letter_id.json().get("data", [])]
+
+    if ids:
+        data = Generators.generate_multiple_valid_request(ids)
+    else:
+        raise ValueError("No letter IDs returned from API")
+
+    update_letter_status = requests.post(
+        f"{url}/{LETTERS_ENDPOINT}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 202
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_400_duplicates_in_request_body(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=3", headers=headers)
+
+    ids = [item.get("id") for item in get_letter_id.json().get("data", [])]
+
+    if ids:
+        data = Generators.generate_duplicate_request(ids)
+    else:
+        raise ValueError("No letter IDs returned from API")
+
+    update_letter_status = requests.post(
+        f"{url}/{LETTERS_ENDPOINT}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 400
+    assert update_letter_status.json().get("errors")[0].get("detail") ==  "The request cannot include multiple letter objects with the same id"
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_400_invalid_status_in_request_body(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=3", headers=headers)
+
+    ids = [item.get("id") for item in get_letter_id.json().get("data", [])]
+
+    if ids:
+        data = Generators.generate_invalid_status_request(ids)
+    else:
+        raise ValueError("No letter IDs returned from API")
+
+    update_letter_status = requests.post(
+        f"{url}/{LETTERS_ENDPOINT}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 400
+    assert update_letter_status.json().get("errors")[0].get("detail") ==  "The request body is invalid"

tests/e2e-tests/api/test-get-letters.py …/api/letters/test-get-list-of-letters.pytests/e2e-tests/api/test-get-letters.py renamed to tests/e2e-tests/api/letters/test-get-list-of-letters.py tests/e2e-tests/api/test-get-letters.py renamed to tests/e2e-tests/api/letters/test-get-list-of-letters.py

@@ -0,0 +1,87 @@
+from re import L
+import time
+import requests
+import pytest
+from lib.fixtures import *  # NOSONAR
+from lib.constants import LETTERS_ENDPOINT
+from lib.generators import Generators
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+
+def test_202_with_valid_headers(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=1", headers=headers)
+
+    letter_id = get_letter_id.json().get("data")[0].get("id")
+
+    data = Generators.generate_valid_message_body("ACCEPTED", letter_id)
+    update_letter_status = requests.patch(
+        f"{url}/{LETTERS_ENDPOINT}/{letter_id}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 202
+
+def test_202_with_rejected_status(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=1", headers=headers)
+
+    letter_id = get_letter_id.json().get("data")[0].get("id")
+
+    data = Generators.generate_valid_message_rejected("REJECTED", letter_id)
+    update_letter_status = requests.patch(
+        f"{url}/{LETTERS_ENDPOINT}/{letter_id}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 202
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+
+def test_400_with_invalid_status(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=1", headers=headers)
+
+    letter_id = get_letter_id.json().get("data")[0].get("id")
+
+    data = Generators.generate_valid_message_body("", letter_id)
+    update_letter_status = requests.patch(
+        f"{url}/{LETTERS_ENDPOINT}/{letter_id}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 400
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+
+def test_400_id_mismatch_with_request(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_letter_id = requests.get(f"{url}/{LETTERS_ENDPOINT}?limit=1", headers=headers)
+
+    letter_id = get_letter_id.json().get("data")[0].get("id")
+
+    data = Generators.generate_valid_message_body("ACCEPTED", "letter1")
+    update_letter_status = requests.patch(
+        f"{url}/{LETTERS_ENDPOINT}/{letter_id}",
+        headers=headers,
+        json=data,
+    )
+
+    assert update_letter_status.status_code == 400
+    assert update_letter_status.json().get("errors")[0].get("detail") == "The letter ID in the request body does not match the letter ID path parameter"