import inspect
import textwrap
from datetime import datetime, timedelta
from http import HTTPStatus
from unittest.mock import patch
from odoo.fields import Command
from odoo.models import Model
from odoo.tests import new_test_user, tagged
from .dummy_methods import DummyMethods
from odoo.addons.api_doc.controllers.api_doc import (
DocController,
is_public_method,
parse_signature,
)
from odoo.addons.base.tests.common import HttpCaseWithUserDemo
@tagged("-at_install", "post_install")
class TestDoc(HttpCaseWithUserDemo):
@classmethod
def setUpClass(cls):
super().setUpClass()
cls.user_demo.write({
'group_ids': [Command.link(cls.env.ref('api_doc.group_allow_doc').id)],
})
def test_doc_access(self):
e = "This page is only accessible to Technical Documentation users."
new_test_user(self.env, login='test_doc_access')
self.authenticate('test_doc_access', 'test_doc_access')
for path in ('/doc', '/doc/index.json', '/doc/res.company.json'):
with self.subTest(path=path):
with self.assertLogs('odoo.http') as capture:
res = self.url_open(path)
self.assertEqual(res.status_code, 403)
self.assertIn(e, res.text)
self.assertEqual(capture.output, [f'WARNING:odoo.http:{e}'])
def test_doc_web_client(self):
self.authenticate('demo', 'demo')
res = self.url_open('/doc', allow_redirects=False)
res.raise_for_status()
self.assertEqual(res.status_code, 200)
self.assertEqual(res.headers.get('Content-Type'), 'text/html; charset=utf-8')
self.assertTrue(res.content, "There must be a rich web client")
def test_doc_index_user(self):
self.authenticate('demo', 'demo')
self._doc_index('doc')
def test_doc_index_bearer(self):
key = self.env['res.users.apikeys'].with_user(self.user_demo)._generate(
scope='rpc', name='test', expiration_date=datetime.now() + timedelta(days=0.5))
self._doc_index('doc-bearer', headers={"Authorization": f"Bearer {key}"})
def _doc_index(self, prefix, headers={}):
res = self.url_open(f'/{prefix}/index.json', allow_redirects=False, headers=headers)
res.raise_for_status()
self.assertEqual(res.status_code, 200)
self.assertEqual(res.headers.get('Content-Type'), 'application/json; charset=utf-8')
json = res.json()
self.assertEqual(set(json), {'models', 'modules'})
self.assertGreater(set(json['modules']), {'base', 'web', 'api_doc'})
# if we ever enable module sorting
# self.assertLess(
# json['modules'].index('base'),
# json['modules'].index('web'),
# "verify that both base and web are installed, and that "
# "they are ordered according to the dependency graph",
# )
res_partner = next(
(model for model in json['models'] if model['model'] == 'res.partner'),
None,
)
self.assertTrue(res_partner, "res.partner not found in json['models']")
res_partner_fields = res_partner.pop('fields')
res_partner_methods = res_partner.pop('methods')
self.assertEqual(res_partner, {'name': "Contact", 'model': 'res.partner'})
self.assertGreater(set(res_partner_methods), {'search', 'create_company'})
self.assertGreater(set(res_partner_fields), {'id', 'create_uid', 'lang', 'tz'})
def test_doc_model_user(self):
self.authenticate('demo', 'demo')
self._doc_model('doc')
def test_doc_model_bearer(self):
key = self.env['res.users.apikeys'].with_user(self.user_demo)._generate(
scope='rpc', name='test', expiration_date=datetime.now() + timedelta(days=0.5))
self._doc_model('doc-bearer', headers={"Authorization": f"Bearer {key}"})
def _doc_model(self, prefix, headers={}):
res = self.url_open(f'/{prefix}/res.partner.json', allow_redirects=False, headers=headers)
res.raise_for_status()
self.assertEqual(res.status_code, 200)
self.assertEqual(res.headers.get('Content-Type'), 'application/json; charset=utf-8')
json = res.json()
fields = json.pop('fields', None)
methods = json.pop('methods', None)
self.maxDiff = None
self.assertEqual(json, {
'model': 'res.partner',
'name': 'Contact',
'doc': None,
})
self.assertGreater(set(fields), {'id', 'create_uid', 'lang', 'tz'})
fields['id'].pop('ai', None)
self.assertEqual(fields['id'], {
'change_default': False,
'company_dependent': False,
'default_export_compatible': False,
'depends': [],
'exportable': True,
'groupable': True,
'manual': False,
'module': None,
'name': 'id',
'readonly': True,
'required': False,
'searchable': True,
'sortable': True,
'store': True,
'string': 'ID',
'type': 'integer',
})
self.assertGreater(set(methods), {'search', 'create_company'})
self.assertEqual(methods['search'], {
'model': 'core',
'module': 'core',
'signature': '(domain, offset=0, limit=None, order=None) -> list[int]',
'parameters': {
'domain': {
'annotation': 'DomainType',
'doc': textwrap.dedent("""\
A search domain <reference/orm/domains>. Use an empty
list to match all records.
""",
),
},
'offset': {
'default': 0,
'annotation': 'int',
'doc': """number of results to ignore (default: none)
""",
},
'limit': {
'default': None,
'annotation': 'int | None',
'doc': """maximum number of records to return (default: all)
""",
},
'order': {
'default': None,
'annotation': 'str | None',
'doc': """sort string
""",
}
},
'doc': textwrap.dedent("""\
Search for the records that satisfy the given domain
search domain <reference/orm/domains>.
This is a high-level method, which should not be overridden. Its actual
implementation is done by method _search.
"""
),
'raise': {
'AccessError': """if user is not allowed to access requested information
""",
},
'return': {
'annotation': 'list[int]',
'doc': """at most limit records matching the search criteria
""",
},
'api': ['model', 'readonly'],
})
def test_doc_cache(self):
self.authenticate('demo', 'demo')
# request the document first
res = self.url_open('/doc/index.json', allow_redirects=False)
res.raise_for_status()
self.assertEqual(res.status_code, 200)
self.assertTrue(res.content, "We should have downloaded the document")
# ensure the necessary is there to cache the document
cache_control = sorted(res.headers.get('Cache-Control', '').split(', '))
self.assertEqual(cache_control, ['no-cache', 'private'])
etag_demo = res.headers.get('ETag', '')
self.assertTrue(etag_demo)
self.assertRegex(
res.headers.get('Content-Disposition', ''),
r'odoo-doc-index-\w+-%s\.json' % etag_demo.strip('"'),
"The document should have a unique name.",
)
# request the document again, this time using the cache
with patch.object(DocController, '_doc_index',
side_effect=DocController()._doc_index) as spy_doc_index:
res = self.url_open(
'/doc/index.json',
headers={'If-None-Match': etag_demo},
allow_redirects=False,
)
res.raise_for_status()
self.assertEqual(res.status_code, HTTPStatus.NOT_MODIFIED)
self.assertFalse(res.content, "We should not have downloaded the document")
spy_doc_index.assert_not_called()
# request the document again, forcing no cache
with patch.object(DocController, '_doc_index',
side_effect=DocController()._doc_index) as spy_doc_index:
res = self.url_open(
'/doc/index.json',
headers={'If-None-Match': etag_demo,
'Cache-Control': 'no-cache'},
allow_redirects=False,
)
res.raise_for_status()
self.assertEqual(res.status_code, 200)
self.assertTrue(res.content, "We should have downloaded the document")
cache_control = sorted(res.headers.get('Cache-Control', '').split(', '))
self.assertEqual(cache_control, ['no-store'])
self.assertRegex(res.headers.get('Content-Disposition', ''), r'\bodoo-doc-index\.json$',
"The document should not have a unique name.")
spy_doc_index.assert_called()
# request the document again, this time as admin
self.authenticate('admin', 'admin')
res = self.url_open('/doc/index.json', allow_redirects=False)
res.raise_for_status()
self.assertEqual(res.status_code, 200, "It must not be 304 - Not Modified")
etag_admin = res.headers.get('ETag', '')
self.assertTrue(etag_admin)
self.assertNotEqual(etag_demo, etag_admin)
def test_parse_signature(self):
def clean_doc(d):
return dict(d, doc=inspect.cleandoc(d.get('doc', '')).replace('\n', '').strip())
methods = inspect.getmembers(DummyMethods, predicate=inspect.isroutine)
for name, method in methods:
if name.startswith('__') or not hasattr(method, 'expected'):
continue
with self.subTest(method=name):
self.assertEqual(
clean_doc(parse_signature(method).as_dict()),
clean_doc(method.expected),
)
def test_ghost_model_robustness(self):
"""
Ensure the documentation generator does not crash when encountering
a model in the database (state='base') that is missing from the registry.
"""
ghost_model_name = 'ir.min.cron.mixin.test.ghost'
self.env['ir.model'].create({
'model': ghost_model_name,
'name': 'Ghost Model',
'state': 'base',
})
self.authenticate('demo', 'demo')
res = self.url_open('/doc/index.json')
res.raise_for_status()
def test_private_methods(self):
FakeCls = type('ModelDummyMethods', (DummyMethods, Model), {
'_name': 'model.dummy.methods',
'_register': False,
'__module__': 'odoo.addons.api_doc',
})
FakeModel = FakeCls(self.env, (), ())
assert is_public_method(FakeModel, 'one_arg')
for method_name in (
'class_method',
'static_method',
'private_method',
'_underscope_method',
):
with self.subTest(method_name=method_name):
assert hasattr(FakeModel, method_name)
self.assertFalse(is_public_method(FakeModel, method_name))