36c53e0e7c
Major additions across backend, frontend, and infrastructure: Backend: - IoT collector framework (Modbus TCP, MQTT, HTTP) with manager - Realistic Beijing solar/weather simulator with cloud transients - Alarm auto-checker with demo anomaly injection (3-4 events/hour) - Report generation (PDF/Excel) with sync fallback and E2E testing - Energy data CSV/XLSX export endpoint - WebSocket real-time broadcast at /ws/realtime - Alembic initial migration for all 14 tables - 77 pytest tests across 9 API routers Frontend: - Live notification badge with alarm count (was hardcoded 0) - Sankey energy flow diagram on dashboard - Device photos (SVG illustrations) on all device pages - Report download with status icons - Energy data export buttons (CSV/Excel) - WebSocket hook with auto-reconnect and polling fallback - BigScreen 2D responsive CSS (tablet/mobile) - Error handling improvements across pages Infrastructure: - PostgreSQL + TimescaleDB as primary database - Production docker-compose with nginx reverse proxy - Comprehensive Chinese README - .env.example with documentation - quick-start.sh deployment script - nginx config with gzip, caching, security headers Data: - 30-day realistic backfill (47K rows, weather-correlated) - 18 devices, 6 alarm rules, 15 historical alarm events - Beijing solar position model with seasonal variation Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
67 lines
2.3 KiB
Python
67 lines
2.3 KiB
Python
import pytest
|
|
from conftest import auth_header
|
|
|
|
|
|
class TestLogin:
|
|
async def test_login_valid_credentials(self, client, admin_user):
|
|
resp = await client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "testadmin", "password": "admin123"},
|
|
)
|
|
assert resp.status_code == 200
|
|
body = resp.json()
|
|
assert "access_token" in body
|
|
assert body["token_type"] == "bearer"
|
|
assert body["user"]["username"] == "testadmin"
|
|
assert body["user"]["role"] == "admin"
|
|
|
|
async def test_login_wrong_password(self, client, admin_user):
|
|
resp = await client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "testadmin", "password": "wrongpass"},
|
|
)
|
|
assert resp.status_code == 401
|
|
|
|
async def test_login_nonexistent_user(self, client):
|
|
resp = await client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "nobody", "password": "whatever"},
|
|
)
|
|
assert resp.status_code == 401
|
|
|
|
async def test_login_inactive_user(self, client, db_session):
|
|
from app.core.security import hash_password
|
|
from app.models.user import User
|
|
user = User(
|
|
username="inactive", hashed_password=hash_password("pass123"),
|
|
role="visitor", is_active=False,
|
|
)
|
|
db_session.add(user)
|
|
await db_session.commit()
|
|
resp = await client.post(
|
|
"/api/v1/auth/login",
|
|
data={"username": "inactive", "password": "pass123"},
|
|
)
|
|
assert resp.status_code == 403
|
|
|
|
|
|
class TestMe:
|
|
async def test_me_with_valid_token(self, client, admin_user, admin_token):
|
|
resp = await client.get("/api/v1/auth/me", headers=auth_header(admin_token))
|
|
assert resp.status_code == 200
|
|
body = resp.json()
|
|
assert body["username"] == "testadmin"
|
|
assert body["role"] == "admin"
|
|
assert body["is_active"] is True
|
|
|
|
async def test_me_without_token(self, client):
|
|
resp = await client.get("/api/v1/auth/me")
|
|
assert resp.status_code == 401
|
|
|
|
async def test_me_with_invalid_token(self, client):
|
|
resp = await client.get(
|
|
"/api/v1/auth/me",
|
|
headers=auth_header("invalid.token.here"),
|
|
)
|
|
assert resp.status_code == 401
|