added user-specific endpoints

core/tests.py

@@ -460,3 +460,38 @@ class LoadCoopManagerTestCase(APITestCase):
         self.assertEqual(company_count, self.company_model.objects.count())
         self.assertEqual(user_count, self.user_model.objects.count())
 
+
+class MyUserViewTest(APITestCase):
+    """my_user tests
+    """
+
+    def setUp(self):
+        """Tests setup
+        """
+        self.endpoint = '/api/v1/my_user/'
+        self.factory = factories.CustomUserFactory
+        self.model = models.CustomUser
+        # create user
+        self.email = f"user@mail.com"
+        self.password = ''.join(random.choices(string.ascii_uppercase, k = 10))
+        self.user = self.factory(email=self.email, is_active=True)
+        self.user.set_password(self.password)
+        self.user.save()
+
+    def test_auth_user_gets_data(self):
+        # Authenticate
+        token = get_tokens_for_user(self.user)
+        self.client.credentials(HTTP_AUTHORIZATION=f"Bearer {token['access']}")
+
+        # Query endpoint
+        response = self.client.get(self.endpoint)
+        # Assert forbidden code
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+
+    def test_anon_user_cannot_access(self):
+        # send in request
+        response = self.client.get(self.endpoint)
+
+        # check response
+        self.assertEqual(response.status_code, status.HTTP_401_UNAUTHORIZED)
+

core/views.py

@@ -6,18 +6,19 @@ import io
 from django.shortcuts import render
 from django.http import HttpResponse
 from django.contrib.auth import get_user_model
+from django.core import serializers
 
 from rest_framework import status
 from rest_framework import viewsets
 from rest_framework.response import Response
-from rest_framework.permissions import IsAdminUser
+from rest_framework.permissions import IsAdminUser, IsAuthenticated
 from rest_framework.generics import UpdateAPIView
 from rest_framework.decorators import api_view, permission_classes
 
 from companies.models import Company
 
 from . import models
-from . import serializers
+from . import serializers as core_serializers
 
 from back_latienda.permissions import CustomUserPermissions, YourOwnUserPermissions
 
@@ -37,9 +38,9 @@ logging.basicConfig(
 class CustomUserViewSet(viewsets.ModelViewSet):
 
     model = models.CustomUser
-    # serializer_class = serializers.CustomUserSerializer
-    serializer_class = serializers.CustomUserReadSerializer
-    write_serializer_class =serializers.CustomUserWriteSerializer
+    # serializer_class = core_serializers.CustomUserSerializer
+    serializer_class = core_serializers.CustomUserReadSerializer
+    write_serializer_class = core_serializers.CustomUserWriteSerializer
     model_name = 'custom_user'
     queryset = models.CustomUser.objects.all()
     permission_classes = [CustomUserPermissions,]
@@ -74,7 +75,7 @@ class ChangeUserPasswordView(UpdateAPIView):
     model = models.CustomUser
     queryset = model.objects.all()
     permission_classes = (YourOwnUserPermissions,)
-    serializer_class = serializers.ChangePasswordSerializer
+    serializer_class = core_serializers.ChangePasswordSerializer
 
 
 class UpdateUserView(UpdateAPIView):
@@ -82,9 +83,16 @@ class UpdateUserView(UpdateAPIView):
     model = models.CustomUser
     queryset = model.objects.all()
     permission_classes = (YourOwnUserPermissions,)
-    serializer_class = serializers.UpdateUserSerializer
+    serializer_class = core_serializers.UpdateUserSerializer
 
 
+@api_view(['GET',])
+@permission_classes([IsAuthenticated,])
+def my_user(request):
+      qs = User.objects.filter(email=request.user.email)
+      data = serializers.serialize('json', qs)
+      return Response(data=data)
+
 @api_view(['POST',])
 @permission_classes([IsAdminUser,])
 def load_coop_managers(request):