tests

Namitha-Prabhu · Namitha-Prabhu · commit d563c31a36cd · 2026-01-13T09:35:28.000Z
diff --git a/tests/.gitignore b/tests/.gitignore
@@ -15,3 +15,4 @@ __pycache__/
 */__pycache__/
 **/__pycache__/
 *.pyc
+tests/e2e-tests/lib/internal-dev-test-1.pem
diff --git a/tests/e2e-tests/api/test-get-letter-status.py b/tests/e2e-tests/api/test-get-letter-status.py
@@ -2,15 +2,33 @@
 import pytest
 from lib.fixtures import *  # NOSONAR
 from lib.constants import LETTERS_ENDPOINT
+from lib.generators import Generators
 
 @pytest.mark.test
 @pytest.mark.devtest
 @pytest.mark.inttest
 @pytest.mark.prodtest
-def test_406(url, bearer_token):
 
-    headers = Generators.generate_valid_headers(bearer_token)
+def test_200_get_letter_status(url, bearer_token):
 
-    get_message_response = requests.get(f"{url}/letters/status", headers=headers)
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_messages = requests.get(f"{url}/{LETTERS_ENDPOINT}/", headers=headers)
+
+    letter_id = get_messages.json().get("data")[0].get("id")
+    get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/{letter_id}", headers=headers)
 
     assert get_message_response.status_code == 200
+    print(get_message_response.json().get("data").get("id"))
+
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_404_letter_does_not_exist(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+    get_message_response = requests.get(f"{url}/{LETTERS_ENDPOINT}/xx", headers=headers)
+
+    assert get_message_response.status_code == 404
+    assert get_message_response.json().get("errors")[0].get("detail") == "No resource found with that ID"
diff --git a/tests/e2e-tests/api/test-get-letters.py b/tests/e2e-tests/api/test-get-letters.py
@@ -0,0 +1,18 @@
+import requests
+import pytest
+from lib.fixtures import *  # NOSONAR
+from lib.constants import LETTERS_ENDPOINT
+from lib.generators import Generators
+
+@pytest.mark.test
+@pytest.mark.devtest
+@pytest.mark.inttest
+@pytest.mark.prodtest
+def test_200_get_letters(url, bearer_token):
+
+    headers = Generators.generate_valid_headers(bearer_token.value)
+
+    get_message_response = requests.get(f"{url}/letters?limit=1", headers=headers)
+
+    assert get_message_response.status_code == 200
+    assert get_message_response.json().get("data")[0].get("attributes").get("status") == "PENDING"
diff --git a/tests/e2e-tests/lib/authentication.py b/tests/e2e-tests/lib/authentication.py
@@ -31,18 +31,23 @@ def generate_authentication(self, env, base_url):
         # For the test_url, note that we don't need a message_id that actually exists in
         # the backend. The test will only check that the API doesn't return a 401,
         # a 404 response means the authentication is working.
-        test_url = f"{base_url}/v1/messages/message_id"
+        test_url = f"{base_url}/letters"
 
-        if env in ["internal-dev", "ref"]:
+        if env == "internal-dev":
             api_key = os.environ["NON_PROD_API_KEY"]
             private_key = os.environ["NON_PROD_PRIVATE_KEY"]
             url = "https://internal-dev.api.service.nhs.uk/oauth2/token"
-            kid = "local"
+            kid = "internal-dev-test-1"
+        elif env == "ref":
+            api_key = os.environ["NON_PROD_API_KEY"]
+            private_key = os.environ["NON_PROD_PRIVATE_KEY"]
+            url = "https://ref.api.service.nhs.uk/oauth2/token"
+            kid = "internal-dev-test-1"
         elif env == "int":
             api_key = os.environ.get("INTEGRATION_API_KEY")
             private_key = os.environ.get("INTEGRATION_PRIVATE_KEY")
             url = "https://int.api.service.nhs.uk/oauth2/token"
-            kid = "local"
+            kid = "internal-dev-test-1"
         elif env == "prod":
             api_key = os.environ.get("PRODUCTION_API_KEY")
             private_key = os.environ.get("PRODUCTION_PRIVATE_KEY")
@@ -65,7 +70,7 @@ def generate_and_test_new_token(self, api_key, private_key, url, kid, test_url):
         valid_auth = False
 
         for i in range(self.max_tests):
-            print(f"Testing new token, attemp #{i+1}")
+            print(f"Testing new token, attempt #{i+1}")
             if new_token is None:
                 new_token = self.generate_new_token(api_key, private_key, url, kid)
                 time_since_new_token = int(time())
@@ -93,6 +98,8 @@ def generate_new_token(self, api_key, private_key, url, kid):
         with open(private_key, "r") as f:
             pk_pem = f.read()
 
+        private_key_file = f"{private_key}"
+
         token_expiry = int(time()) + self.token_validity
 
         claims = {
diff --git a/tests/e2e-tests/lib/fixtures.py b/tests/e2e-tests/lib/fixtures.py
@@ -36,8 +36,8 @@ def url(api_product_name):
     if environment == "prod":
         return f"https://api.service.nhs.uk/{suffix}"
 
-    # REF / REF2 share internal-dev gateway
-    elif environment in ["ref", "ref2"]:
+    # REF share internal-dev gateway
+    elif environment in ["ref"]:
         return f"https://internal-dev.api.service.nhs.uk/{suffix}"
 
     # Everything else (dev, test, pr environments, internal-dev)
@@ -50,3 +50,15 @@ def url(api_product_name):
 @pytest.fixture(scope='session')
 def authentication_cache():
     return AuthenticationCache()
+
+@pytest.fixture()
+def bearer_token(authentication_cache):
+    environment = os.environ['API_ENVIRONMENT']
+    if environment == "prod":
+        url = "https://api.service.nhs.uk/nhs-notify-supplier"
+    # the ref2 url is structured slightly differently so it needs to be explicitly called out here
+    elif environment == "ref":
+        url = "https://internal-dev.api.service.nhs.uk/nhs-notify-supplier"
+    else:
+        url = f"https://{environment}.api.service.nhs.uk/nhs-notify-supplier"
+    return authentication_cache.generate_authentication(environment, url)
diff --git a/tests/e2e-tests/lib/generators.py b/tests/e2e-tests/lib/generators.py
@@ -15,6 +15,5 @@ def generate_valid_create_message_body(environment="sandbox"):
     def generate_valid_headers(auth):
         return {
             "Authorization": auth,
-            "Content-Type": "application/json",
-            "Accept": "application/json"
+            "X-Request-ID":"123e4567-e89b-12d3-a456-426614174000",
         }
diff --git a/tests/e2e-tests/lib/secret.py b/tests/e2e-tests/lib/secret.py
@@ -0,0 +1,9 @@
+class Secret:
+    def __init__(self, value):
+        self.value = value
+
+    def __repr__(self):
+        return "Secret(********)"
+
+    def __str___(self):
+        return "*******"
diff --git a/tests/e2e-tests/partials/authentication/test_401_invalid.rst b/tests/e2e-tests/partials/authentication/test_401_invalid.rst
diff --git a/tests/e2e-tests/partials/methods.rst b/tests/e2e-tests/partials/methods.rst

Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,5 @@ def generate_valid_create_message_body(environment="sandbox"):`
`15`	`15`	`def generate_valid_headers(auth):`
`16`	`16`	`return {`
`17`	`17`	`"Authorization": auth,`
`18`		`- "Content-Type": "application/json",`
`19`		`- "Accept": "application/json"`
	`18`	`+ "X-Request-ID":"123e4567-e89b-12d3-a456-426614174000",`
`20`	`19`	`}`