Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

made it possible for members and leader of the organizing group to add members to event #921

Merged
merged 2 commits into from
Nov 11, 2024
Merged

made it possible for members and leader of the organizing group to add members to event #921

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
5993079
made it possible for members and leader of the organizing group to ad…
EmilJohns1 Oct 31, 2024
cd9c34b
Merge branch 'dev' into fix(registration)/allow-registration-for-grou…
MadsNyl Nov 11, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 17 additions & 7 deletions app/content/views/registration.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@
from app.common.pagination import BasePagination
from app.common.permissions import (
BasicViewPermission,
check_has_access,
is_admin_group_user,
is_admin_user,
)
Expand Down Expand Up @@ -157,20 +158,29 @@ def _admin_unregister(self, registration):
def add_registration(self, request, *_args, **_kwargs):
"""Add registration to event for admins"""

if not is_admin_group_user(request):
event_id = self.kwargs.get("event_id", None)
user_id = request.data["user"]

event = get_object_or_404(Event, id=event_id)
user = get_object_or_404(User, user_id=user_id)

organizing_group = event.organizer

is_member_or_leader_of_organizing_group = check_has_access(
[organizing_group], request
)

if (
not is_admin_group_user(request)
and not is_member_or_leader_of_organizing_group
):
return Response(
{
"detail": "Du har ikke tillatelse til å opprette en påmelding på dette arrangementet"
},
status=status.HTTP_403_FORBIDDEN,
)

event_id = self.kwargs.get("event_id", None)
user_id = request.data["user"]

event = get_object_or_404(Event, id=event_id)
user = get_object_or_404(User, user_id=user_id)

if not user.accepts_event_rules:
return Response(
{
Expand Down
106 changes: 105 additions & 1 deletion app/tests/content/test_registration_integration.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

import pytest

from app.common.enums import AdminGroup
from app.common.enums import AdminGroup, Groups
from app.common.enums import NativeGroupType as GroupType
from app.common.enums import NativeMembershipType as MembershipType
from app.common.enums import NativeUserStudy as StudyType
Expand Down Expand Up @@ -1038,6 +1038,110 @@ def test_add_registration_to_event_as_member(member, event):
assert response.status_code == status.HTTP_403_FORBIDDEN


@pytest.mark.django_db
@pytest.mark.parametrize(
"group_name",
[
Groups.JUBKOM,
Groups.REDAKSJONEN,
Groups.FONDET,
Groups.PLASK,
Groups.DRIFT,
],
)
def test_add_registration_to_event_as_group_member(event, member, group_name):
"""
A member of a specific group (not part of AdminGroup) should be able to add a
registration to an event if their group organized it.
"""

member_group = add_user_to_group_with_name(
member, group_name, GroupType.SUBGROUP, MembershipType.MEMBER
)

event.organizer = member_group
event.save()

data = {"user": member.user_id, "event": event.id}
url = f"{_get_registration_url(event=event)}add/"

client = get_api_client(user=member)
response = client.post(url, data)

assert response.status_code == status.HTTP_201_CREATED


@pytest.mark.django_db
@pytest.mark.parametrize(
"group_name",
[
Groups.JUBKOM,
Groups.REDAKSJONEN,
Groups.FONDET,
Groups.PLASK,
Groups.DRIFT,
],
)
def test_add_registration_to_event_as_group_member_of_non_organizing_group(
event, member, group_name
):
"""
A member of a specific group (not part of AdminGroup) should NOT be able to add a
registration to an event if their group did not organize it.
"""
add_user_to_group_with_name(
member, group_name, GroupType.SUBGROUP, MembershipType.MEMBER
)

event.organizer = GroupFactory(name="Different Organizer")
event.save()

data = {"user": member.user_id, "event": event.id}
url = f"{_get_registration_url(event=event)}add/"

client = get_api_client(user=member)
response = client.post(url, data)

assert response.status_code == status.HTTP_403_FORBIDDEN


@pytest.mark.django_db
@pytest.mark.parametrize(
"group_name",
[
Groups.JUBKOM,
Groups.REDAKSJONEN,
Groups.FONDET,
Groups.PLASK,
Groups.DRIFT,
],
)
def test_add_registration_when_event_is_full(event, member, group_name):
"""
A member of the organizing group should be able to add a registration to an event
for another member even when the event is full, and the registration should be added to the waitlist.
"""

member_group = add_user_to_group_with_name(
member, group_name, GroupType.SUBGROUP, MembershipType.MEMBER
)

event.organizer = member_group
event.limit = 1
event.save()

RegistrationFactory(event=event)

data = {"user": member.user_id, "event": event.id}
url = f"{_get_registration_url(event=event)}add/"

client = get_api_client(user=member)
response = client.post(url, data)

assert response.status_code == status.HTTP_201_CREATED
assert event.registrations.get(user=member).is_on_wait


@pytest.mark.django_db
@pytest.mark.parametrize(
("order_status", "status_code"),
Expand Down
Loading