vh/NetAlertX
1
0
Fork 0
mirror of https://github.com/jokob-sk/NetAlertX.git synced 2026-04-03 00:31:35 -07:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

feat: Enhance authoritative field handling with new locking mechanisms and update tests

Browse Source
This commit is contained in:
Jokob @NetAlertX
2026-01-21 04:46:07 +00:00
parent 97e684dba4
commit 54d01f0a65
5 changed files with 309 additions and 79 deletions
Download Patch File Download Diff File Expand all files Collapse all files

110
test/authoritative_fields/test_device_field_lock.py
View File

@@ -12,6 +12,7 @@ sys.path.extend([f"{INSTALL_PATH}/front/plugins", f"{INSTALL_PATH}/server"])
from helper import get_setting_value # noqa: E402
from api_server.api_server_start import app # noqa: E402
from models.device_instance import DeviceInstance # noqa: E402
from db.authoritative_handler import can_overwrite_field # noqa: E402
@pytest.fixture(scope="session")
@@ -197,7 +198,7 @@ class TestDeviceFieldLock:
resp = client.get(f"/device/{test_mac}", headers=auth_headers)
assert resp.status_code == 200
device_data = resp.json
assert device_data.get("devNameSource") == "NEWDEV"
assert device_data.get("devNameSource") == ""
def test_lock_prevents_field_updates(self, client, test_mac, auth_headers):
"""Locked field should not be updated through API."""
@@ -226,6 +227,13 @@ class TestDeviceFieldLock:
# For now verify the API accepts the request
assert resp.status_code in [200, 201]
# Verify locked field remains unchanged
resp = client.get(f"/device/{test_mac}", headers=auth_headers)
assert resp.status_code == 200
device_data = resp.json
assert device_data.get("devName") == "Test Device", "Locked field should not have been updated"
assert device_data.get("devNameSource") == "LOCKED"
def test_multiple_fields_lock_state(self, client, test_mac, auth_headers):
"""Lock some fields while leaving others unlocked."""
# Create device
@@ -286,8 +294,9 @@ class TestDeviceFieldLock:
json=payload,
headers=auth_headers
)
# May return 400 or 404 depending on validation order
assert resp.status_code in [400, 404]
# Current behavior allows locking without validating device existence
assert resp.status_code == 200
assert resp.json.get("success") is True
class TestFieldLockIntegration:
@@ -321,7 +330,7 @@ class TestFieldLockIntegration:
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") != "LOCKED"
def test_locked_field_blocks_plugin_overwrite(self, test_mac, auth_headers):
def test_locked_field_blocks_plugin_overwrite(self, test_mac):
"""Verify locked fields prevent plugin source overwrites."""
device_handler = DeviceInstance()
@@ -334,13 +343,33 @@ class TestFieldLockIntegration:
assert create_result.get("success") is True
# Lock the field
device_handler.updateDeviceColumn(test_mac, "devNameSource", "LOCKED")
lock_result = device_handler.lockDeviceField(test_mac, "devName")
assert lock_result.get("success") is True
# Try to overwrite with plugin source (this would be done by authoritative handler)
# For now, verify the source is stored correctly
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") == "LOCKED"
# Try to overwrite with plugin source (simulate authoritative decision)
plugin_prefix = "ARPSCAN"
plugin_settings = {"set_always": [], "set_empty": []}
proposed_value = "Plugin Name"
can_overwrite = can_overwrite_field(
"devName",
device_data.get("devNameSource"),
plugin_prefix,
plugin_settings,
proposed_value,
)
assert can_overwrite is False
if can_overwrite:
device_handler.updateDeviceColumn(test_mac, "devName", proposed_value)
device_handler.updateDeviceColumn(test_mac, "devNameSource", plugin_prefix)
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devName") == "Original Name"
assert device_data.get("devNameSource") == "LOCKED"
def test_field_source_tracking(self, test_mac, auth_headers):
"""Verify field source is tracked correctly."""
device_handler = DeviceInstance()
@@ -367,6 +396,73 @@ class TestFieldLockIntegration:
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") == "USER"
def test_save_without_changes_does_not_mark_user(self, test_mac):
"""Saving a device without value changes must not mark sources as USER."""
device_handler = DeviceInstance()
create_result = device_handler.setDeviceData(
test_mac,
{
"devName": "Test Device",
"devVendor": "Vendor1",
"devSSID": "MyWifi",
"createNew": True,
},
)
assert create_result.get("success") is True
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") == "NEWDEV"
assert device_data.get("devVendorSource") == "NEWDEV"
assert device_data.get("devSsidSource") == "NEWDEV"
# Simulate a UI "save" that resubmits the same values.
update_result = device_handler.setDeviceData(
test_mac,
{
"devName": "Test Device",
"devVendor": "Vendor1",
"devSSID": "MyWifi",
},
)
assert update_result.get("success") is True
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") == "NEWDEV"
assert device_data.get("devVendorSource") == "NEWDEV"
assert device_data.get("devSsidSource") == "NEWDEV"
def test_only_changed_fields_marked_user(self, test_mac):
"""When saving, only fields whose values changed should become USER."""
device_handler = DeviceInstance()
create_result = device_handler.setDeviceData(
test_mac,
{
"devName": "Original Name",
"devVendor": "Vendor1",
"devSSID": "MyWifi",
"createNew": True,
},
)
assert create_result.get("success") is True
# Change only devName, but send the other fields as part of a full save.
update_result = device_handler.setDeviceData(
test_mac,
{
"devName": "Updated Name",
"devVendor": "Vendor1",
"devSSID": "MyWifi",
},
)
assert update_result.get("success") is True
device_data = device_handler.getDeviceData(test_mac)
assert device_data.get("devNameSource") == "USER"
assert device_data.get("devVendorSource") == "NEWDEV"
assert device_data.get("devSsidSource") == "NEWDEV"
if __name__ == "__main__":
pytest.main([__file__, "-v"])