Phillip Tarrant
576d3bbb68
Remove all authentication (login, sessions, bcrypt, itsdangerous) since the app runs on a private homelab LAN. Replace with a profile picker landing page and cookie-based profile selection (1-year expiry). - Add Alembic migration to drop password_hash/is_admin columns - Delete auth service, auth routes, login template, and auth tests - Rewrite app/utils/auth.py with NoProfileSelectedError and require_active_profile dependency - Add profile creation flow (GET/POST /profiles/create) - Rewrite home page as profile picker with card layout - Update all route files to use profile dependency instead of admin auth - Remove bcrypt and itsdangerous from requirements - Remove admin_username/admin_password from config - Update all tests for new profile-based access model Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
27 lines
922 B
Python
27 lines
922 B
Python
"""Tests for exercise browser routes."""
|
|
|
|
from fastapi.testclient import TestClient
|
|
|
|
|
|
class TestExerciseBrowser:
|
|
"""Tests for GET /exercises."""
|
|
|
|
def test_exercise_browser_requires_profile(self, client: TestClient) -> None:
|
|
"""GET /exercises should redirect to / without profile cookie."""
|
|
response = client.get("/exercises", follow_redirects=False)
|
|
assert response.status_code == 302
|
|
assert response.headers["location"] == "/"
|
|
|
|
|
|
class TestExerciseSearch:
|
|
"""Tests for HTMX exercise search."""
|
|
|
|
def test_exercise_search_requires_profile(self, client: TestClient) -> None:
|
|
"""GET /exercises/search should redirect to / without profile cookie."""
|
|
response = client.get(
|
|
"/exercises/search?workout_day=Push",
|
|
follow_redirects=False,
|
|
)
|
|
assert response.status_code == 302
|
|
assert response.headers["location"] == "/"
|