From ff6a2e11d148ba69c02f13e8a5bf92098587ca2b Mon Sep 17 00:00:00 2001
From: Suraj Shetty <surajshetty3416@gmail.com>
Date: Tue, 31 May 2022 15:00:09 +0530
Subject: [PATCH] test: Update test case and add more assertions

---
 frappe/tests/test_document.py | 32 +++++++++++++++++++++-----------
 1 file changed, 21 insertions(+), 11 deletions(-)

diff --git a/frappe/tests/test_document.py b/frappe/tests/test_document.py
index db7b5da81f..00bca40268 100644
--- a/frappe/tests/test_document.py
+++ b/frappe/tests/test_document.py
@@ -6,10 +6,11 @@ from datetime import timedelta
 from unittest.mock import patch
 
 import frappe
+from frappe.app import make_form_dict
 from frappe.desk.doctype.note.note import Note
 from frappe.model.naming import make_autoname, parse_naming_series, revert_series_if_last
-from frappe.tests.test_api import FrappeAPITestCase
-from frappe.utils import cint, now_datetime
+from frappe.utils import cint, now_datetime, set_request
+from frappe.website.serve import get_response
 
 from . import update_system_settings
 
@@ -362,38 +363,47 @@ class TestDocument(unittest.TestCase):
 		self.assertEqual(doc.user_emails, [])
 
 
-class TestDocumentWebView(FrappeAPITestCase):
+class TestDocumentWebView(unittest.TestCase):
+	def get(self, path, user="Guest"):
+		frappe.set_user(user)
+		set_request(method="GET", path=path)
+		make_form_dict(frappe.local.request)
+		response = get_response()
+		frappe.set_user("Administrator")
+		return response
+
 	def test_web_view_link_authentication(self):
 		todo = frappe.get_doc({"doctype": "ToDo", "description": "Test"}).insert()
 		document_key = todo.get_document_share_key()
-		frappe.db.commit()
 
 		# with old-style signature key
 		update_system_settings({"allow_older_web_view_links": True}, True)
 		old_document_key = todo.get_signature()
 		url = f"/ToDo/{todo.name}?key={old_document_key}"
-		self.assertEquals(self.get(url).status, "200 OK")
+		self.assertEqual(self.get(url).status, "200 OK")
 
 		update_system_settings({"allow_older_web_view_links": False}, True)
-		self.assertEquals(self.get(url).status, "401 UNAUTHORIZED")
+		self.assertEqual(self.get(url).status, "401 UNAUTHORIZED")
 
 		# with valid key
 		url = f"/ToDo/{todo.name}?key={document_key}"
-		self.assertEquals(self.get(url).status, "200 OK")
+		self.assertEqual(self.get(url).status, "200 OK")
 
 		# with invalid key
 		invalid_key_url = f"/ToDo/{todo.name}?key=INVALID_KEY"
-		self.assertEquals(self.get(invalid_key_url).status, "401 UNAUTHORIZED")
+		self.assertEqual(self.get(invalid_key_url).status, "401 UNAUTHORIZED")
 
 		# expire the key
 		document_key_doc = frappe.get_doc("Document Share Key", {"key": document_key})
 		document_key_doc.expires_on = "2020-01-01"
 		document_key_doc.save(ignore_permissions=True)
-		frappe.db.commit()
 
 		# with expired key
-		self.assertEquals(self.get(url).status, "410 GONE")
+		self.assertEqual(self.get(url).status, "410 GONE")
 
 		# without key
 		url_without_key = f"/ToDo/{todo.name}"
-		self.assertEquals(self.get(url_without_key).status, "403 FORBIDDEN")
+		self.assertEqual(self.get(url_without_key).status, "403 FORBIDDEN")
+
+		# Logged-in user can access the page without key
+		self.assertEqual(self.get(url_without_key, "Administrator").status, "200 OK")