1 files changed, 50 insertions, 0 deletions

diff --git a/moon_authz/tests/unit_python/test_authz.py b/moon_authz/tests/unit_python/test_authz.py
new file mode 100644
index 00000000..f98abebc
--- /dev/null
+++ b/moon_authz/tests/unit_python/test_authz.py
@@ -0,0 +1,50 @@
+import json
+import pickle
+
+
+def get_data(data):
+    return pickle.loads(data)
+
+
+def get_json(data):
+    return json.loads(data.decode("utf-8"))
+
+
+def test_authz_true(context):
+    import moon_authz.server
+    from python_moonutilities.security_functions import Context
+    from python_moonutilities.cache import Cache
+    server = moon_authz.server.main()
+    client = server.app.test_client()
+    CACHE = Cache()
+    CACHE.update()
+    print(CACHE.pdp)
+    _context = Context(context, CACHE)
+    req = client.post("/authz", data=pickle.dumps(_context))
+    assert req.status_code == 200
+    data = get_data(req.data)
+    assert data
+    assert isinstance(data, Context)
+    policy_id = data.headers[0]
+    assert policy_id
+    assert "effect" in data.pdp_set[policy_id]
+    assert data.pdp_set[policy_id]['effect'] == "grant"
+
+
+def test_user_not_allowed(context):
+    import moon_authz.server
+    from python_moonutilities.security_functions import Context
+    from python_moonutilities.cache import Cache
+    server = moon_authz.server.main()
+    client = server.app.test_client()
+    CACHE = Cache()
+    CACHE.update()
+    context['subject_name'] = "user_not_allowed"
+    _context = Context(context, CACHE)
+    req = client.post("/authz", data=pickle.dumps(_context))
+    assert req.status_code == 400
+    data = get_json(req.data)
+    assert data
+    assert isinstance(data, dict)
+    assert "message" in data
+    assert data["message"] == "Cannot find subject user_not_allowed"