mirror of
https://github.com/OCA/reporting-engine.git
synced 2025-02-16 16:30:38 +02:00
a7d8909bc2
- split view in two files, according OCA guidelines; - add legalsylvain as maintainers - use abstract tree and form views - refactor : split demo data into two files, according OCA guidelines - replace obsolete base.menu_reporting_dashboard by spreadsheet_dashboard entries - update translation - prevent usage of export with parameters, that requires extra work - do not skip 'check execution' when confirming sql exports
78 lines
2.6 KiB
Python
78 lines
2.6 KiB
Python
# Copyright (C) 2015 Akretion (<http://www.akretion.com>)
|
|
# @author: Florian da Costa
|
|
# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html).
|
|
|
|
import base64
|
|
|
|
from odoo import fields
|
|
from odoo.exceptions import UserError
|
|
from odoo.tests.common import TransactionCase, tagged
|
|
|
|
|
|
@tagged("post_install", "-at_install")
|
|
class TestExportSqlQuery(TransactionCase):
|
|
@classmethod
|
|
def setUpClass(cls):
|
|
super().setUpClass()
|
|
cls.sql_export_obj = cls.env["sql.export"]
|
|
cls.wizard_obj = cls.env["sql.file.wizard"]
|
|
cls.sql_report_demo = cls.env.ref("sql_export.sql_export_partner")
|
|
|
|
def test_sql_query(self):
|
|
wizard = self.wizard_obj.create(
|
|
{
|
|
"sql_export_id": self.sql_report_demo.id,
|
|
}
|
|
)
|
|
wizard.export_sql()
|
|
export = base64.b64decode(wizard.binary_file).decode("utf-8")
|
|
self.assertEqual(export.split(";")[0], "name")
|
|
self.assertTrue(len(export.split(";")) > 6)
|
|
|
|
def test_prohibited_queries(self):
|
|
prohibited_queries = [
|
|
"upDaTe res_partner SET name = 'test' WHERE id = 1",
|
|
"DELETE FROM sql_export WHERE name = 'test';",
|
|
" DELETE FROM sql_export WHERE name = 'test' ;",
|
|
"""DELETE
|
|
FROM
|
|
sql_export
|
|
WHERE name = 'test'
|
|
""",
|
|
]
|
|
for query in prohibited_queries:
|
|
with self.assertRaises(UserError):
|
|
sql_export = self.sql_export_obj.create(
|
|
{"name": "test_prohibited", "query": query}
|
|
)
|
|
sql_export.button_validate_sql_expression()
|
|
|
|
def test_authorized_queries(self):
|
|
authorized_queries = [
|
|
"SELECT create_date FROM res_partner",
|
|
]
|
|
|
|
for query in authorized_queries:
|
|
sql_export = self.sql_export_obj.create(
|
|
{"name": "test_authorized", "query": query}
|
|
)
|
|
sql_export.button_validate_sql_expression()
|
|
self.assertEqual(
|
|
sql_export.state, "sql_valid", "%s is a valid request" % (query)
|
|
)
|
|
|
|
def _test_sql_query_with_params(self):
|
|
query = self.env.ref("sql_export.sql_export_partner_with_variables")
|
|
categ_id = self.env.ref("base.res_partner_category_0").id
|
|
wizard = self.wizard_obj.create(
|
|
{
|
|
"sql_export_id": query.id,
|
|
"x_date": fields.Date.today(),
|
|
"x_id": 1,
|
|
"x_partner_categ_ids": [(6, 0, [categ_id])],
|
|
}
|
|
)
|
|
wizard.export_sql()
|
|
export = base64.b64decode(wizard.binary_file)
|
|
self.assertTrue(export)
|