OCA
/
data-protection
5
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
103 Commits
10 Branches
0 Tags
1.3 MiB
Tree: e909b40348
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'e909b40348'
${ noResults }
data-protection/privacy_consent/tests/test_consent.py

252 lines
11 KiB
Raw Normal View History

privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Test at install The purpose of this `@post_install` no longer exists, and by removing these decorators, we avoid test failures in case some custom addon customizes the welcome message.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Separate automated emails send process Before https://github.com/OCA/data-protection/pull/29 there was a race condition where an email could be sent while the same transaction that created the `privacy.consent` record still wasn't committed, producing a 404 error if the user clicked on "Accept" or "Reject" before all mails were sent. To avoid that, a raw `cr.commit()` was issued, but this produced another situation where the user had to wait until the full email queue is cleared to get his page loaded. It wasn't an error, but a long queue meant several minutes waiting, and it's ulikely that an average human is so patient. So, here's the final fix (I hope!). The main problem was that I was looking in the wrong place to send the email. It turns out that the `self.post_message_with_template()` method is absolutely helpless in the case at hand, where these criteria must be met: * E-mail must be enqueued, no matter if there are less or more than 50 consents to send. * The template must be processed per record. * In an ideal world, a `cr.commit()` must be issued after each sent mail. The metod that was being used: * Didn't allow to use `auto_commit` mode. * Only allowed to render the template per record if called with `composition_mode="mass_mail"`. * Only allowed to enqueue emails if called with `composition_mode="mass_post"`. Obviously, I cannot set 2 different values for `composition_mode`, so a different strategy had to be used. I discovered that the `mail.template` model has a helpful method called `send_mail()` that, by default: * Renders the template per record * Enqueues the email * The email queue is cleared in `auto_commit=True` mode. So, from now on, problems are gone: * The user click, or the cron run, will just generate the missing `privacy.consent` records and enqueue mails for them. * The mail queue manager will send them later, in `auto_commit` mode. * After sending the e-mail, this module will set the `privacy.consent` record as `sent`. * Thanks to *not* sending the email, the process the user faces when he hits the "generate" button is faster. * Instructions in the README and text in the "generate" button are updated to reflect this new behavior. * Thanks to the `auto_commit` feature, if Odoo is rebooted in the middle of a mail queue clearance, the records that were sent remain properly marked as sent, and the missing mails will be sent after the next boot. * No hardcoded commits. * No locked transactions. * BTW I discovered that 2 different emails were created when creating a new consent. I started using `mail_create_nolog=True` to avoid that problem and only log a single creation message. Note to self: never use again `post_message_with_template()`.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Separate automated emails send process Before https://github.com/OCA/data-protection/pull/29 there was a race condition where an email could be sent while the same transaction that created the `privacy.consent` record still wasn't committed, producing a 404 error if the user clicked on "Accept" or "Reject" before all mails were sent. To avoid that, a raw `cr.commit()` was issued, but this produced another situation where the user had to wait until the full email queue is cleared to get his page loaded. It wasn't an error, but a long queue meant several minutes waiting, and it's ulikely that an average human is so patient. So, here's the final fix (I hope!). The main problem was that I was looking in the wrong place to send the email. It turns out that the `self.post_message_with_template()` method is absolutely helpless in the case at hand, where these criteria must be met: * E-mail must be enqueued, no matter if there are less or more than 50 consents to send. * The template must be processed per record. * In an ideal world, a `cr.commit()` must be issued after each sent mail. The metod that was being used: * Didn't allow to use `auto_commit` mode. * Only allowed to render the template per record if called with `composition_mode="mass_mail"`. * Only allowed to enqueue emails if called with `composition_mode="mass_post"`. Obviously, I cannot set 2 different values for `composition_mode`, so a different strategy had to be used. I discovered that the `mail.template` model has a helpful method called `send_mail()` that, by default: * Renders the template per record * Enqueues the email * The email queue is cleared in `auto_commit=True` mode. So, from now on, problems are gone: * The user click, or the cron run, will just generate the missing `privacy.consent` records and enqueue mails for them. * The mail queue manager will send them later, in `auto_commit` mode. * After sending the e-mail, this module will set the `privacy.consent` record as `sent`. * Thanks to *not* sending the email, the process the user faces when he hits the "generate" button is faster. * Instructions in the README and text in the "generate" button are updated to reflect this new behavior. * Thanks to the `auto_commit` feature, if Odoo is rebooted in the middle of a mail queue clearance, the records that were sent remain properly marked as sent, and the missing mails will be sent after the next boot. * No hardcoded commits. * No locked transactions. * BTW I discovered that 2 different emails were created when creating a new consent. I started using `mail_create_nolog=True` to avoid that problem and only log a single creation message. Note to self: never use again `post_message_with_template()`.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Separate automated emails send process Before https://github.com/OCA/data-protection/pull/29 there was a race condition where an email could be sent while the same transaction that created the `privacy.consent` record still wasn't committed, producing a 404 error if the user clicked on "Accept" or "Reject" before all mails were sent. To avoid that, a raw `cr.commit()` was issued, but this produced another situation where the user had to wait until the full email queue is cleared to get his page loaded. It wasn't an error, but a long queue meant several minutes waiting, and it's ulikely that an average human is so patient. So, here's the final fix (I hope!). The main problem was that I was looking in the wrong place to send the email. It turns out that the `self.post_message_with_template()` method is absolutely helpless in the case at hand, where these criteria must be met: * E-mail must be enqueued, no matter if there are less or more than 50 consents to send. * The template must be processed per record. * In an ideal world, a `cr.commit()` must be issued after each sent mail. The metod that was being used: * Didn't allow to use `auto_commit` mode. * Only allowed to render the template per record if called with `composition_mode="mass_mail"`. * Only allowed to enqueue emails if called with `composition_mode="mass_post"`. Obviously, I cannot set 2 different values for `composition_mode`, so a different strategy had to be used. I discovered that the `mail.template` model has a helpful method called `send_mail()` that, by default: * Renders the template per record * Enqueues the email * The email queue is cleared in `auto_commit=True` mode. So, from now on, problems are gone: * The user click, or the cron run, will just generate the missing `privacy.consent` records and enqueue mails for them. * The mail queue manager will send them later, in `auto_commit` mode. * After sending the e-mail, this module will set the `privacy.consent` record as `sent`. * Thanks to *not* sending the email, the process the user faces when he hits the "generate" button is faster. * Instructions in the README and text in the "generate" button are updated to reflect this new behavior. * Thanks to the `auto_commit` feature, if Odoo is rebooted in the middle of a mail queue clearance, the records that were sent remain properly marked as sent, and the missing mails will be sent after the next boot. * No hardcoded commits. * No locked transactions. * BTW I discovered that 2 different emails were created when creating a new consent. I started using `mail_create_nolog=True` to avoid that problem and only log a single creation message. Note to self: never use again `post_message_with_template()`.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Separate automated emails send process Before https://github.com/OCA/data-protection/pull/29 there was a race condition where an email could be sent while the same transaction that created the `privacy.consent` record still wasn't committed, producing a 404 error if the user clicked on "Accept" or "Reject" before all mails were sent. To avoid that, a raw `cr.commit()` was issued, but this produced another situation where the user had to wait until the full email queue is cleared to get his page loaded. It wasn't an error, but a long queue meant several minutes waiting, and it's ulikely that an average human is so patient. So, here's the final fix (I hope!). The main problem was that I was looking in the wrong place to send the email. It turns out that the `self.post_message_with_template()` method is absolutely helpless in the case at hand, where these criteria must be met: * E-mail must be enqueued, no matter if there are less or more than 50 consents to send. * The template must be processed per record. * In an ideal world, a `cr.commit()` must be issued after each sent mail. The metod that was being used: * Didn't allow to use `auto_commit` mode. * Only allowed to render the template per record if called with `composition_mode="mass_mail"`. * Only allowed to enqueue emails if called with `composition_mode="mass_post"`. Obviously, I cannot set 2 different values for `composition_mode`, so a different strategy had to be used. I discovered that the `mail.template` model has a helpful method called `send_mail()` that, by default: * Renders the template per record * Enqueues the email * The email queue is cleared in `auto_commit=True` mode. So, from now on, problems are gone: * The user click, or the cron run, will just generate the missing `privacy.consent` records and enqueue mails for them. * The mail queue manager will send them later, in `auto_commit` mode. * After sending the e-mail, this module will set the `privacy.consent` record as `sent`. * Thanks to *not* sending the email, the process the user faces when he hits the "generate" button is faster. * Instructions in the README and text in the "generate" button are updated to reflect this new behavior. * Thanks to the `auto_commit` feature, if Odoo is rebooted in the middle of a mail queue clearance, the records that were sent remain properly marked as sent, and the missing mails will be sent after the next boot. * No hardcoded commits. * No locked transactions. * BTW I discovered that 2 different emails were created when creating a new consent. I started using `mail_create_nolog=True` to avoid that problem and only log a single creation message. Note to self: never use again `post_message_with_template()`.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Separate automated emails send process Before https://github.com/OCA/data-protection/pull/29 there was a race condition where an email could be sent while the same transaction that created the `privacy.consent` record still wasn't committed, producing a 404 error if the user clicked on "Accept" or "Reject" before all mails were sent. To avoid that, a raw `cr.commit()` was issued, but this produced another situation where the user had to wait until the full email queue is cleared to get his page loaded. It wasn't an error, but a long queue meant several minutes waiting, and it's ulikely that an average human is so patient. So, here's the final fix (I hope!). The main problem was that I was looking in the wrong place to send the email. It turns out that the `self.post_message_with_template()` method is absolutely helpless in the case at hand, where these criteria must be met: * E-mail must be enqueued, no matter if there are less or more than 50 consents to send. * The template must be processed per record. * In an ideal world, a `cr.commit()` must be issued after each sent mail. The metod that was being used: * Didn't allow to use `auto_commit` mode. * Only allowed to render the template per record if called with `composition_mode="mass_mail"`. * Only allowed to enqueue emails if called with `composition_mode="mass_post"`. Obviously, I cannot set 2 different values for `composition_mode`, so a different strategy had to be used. I discovered that the `mail.template` model has a helpful method called `send_mail()` that, by default: * Renders the template per record * Enqueues the email * The email queue is cleared in `auto_commit=True` mode. So, from now on, problems are gone: * The user click, or the cron run, will just generate the missing `privacy.consent` records and enqueue mails for them. * The mail queue manager will send them later, in `auto_commit` mode. * After sending the e-mail, this module will set the `privacy.consent` record as `sent`. * Thanks to *not* sending the email, the process the user faces when he hits the "generate" button is faster. * Instructions in the README and text in the "generate" button are updated to reflect this new behavior. * Thanks to the `auto_commit` feature, if Odoo is rebooted in the middle of a mail queue clearance, the records that were sent remain properly marked as sent, and the missing mails will be sent after the next boot. * No hardcoded commits. * No locked transactions. * BTW I discovered that 2 different emails were created when creating a new consent. I started using `mail_create_nolog=True` to avoid that problem and only log a single creation message. Note to self: never use again `post_message_with_template()`.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
Migrate privacy_consent to v11
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
Migrate privacy_consent to v11
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
  1. # Copyright 2018 Tecnativa - Jairo Llopis
  2. # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
  4. from contextlib import contextmanager
  6. from odoo.exceptions import ValidationError
  7. from odoo.tests.common import HttpCase
  10. class ActivityCase(HttpCase):
  11. def setUp(self):
  12. super(ActivityCase, self).setUp()
  13. # HACK https://github.com/odoo/odoo/issues/12237
  14. # TODO Remove hack in v12
  15. self._oldenv = self.env
  16. self.env = self._oldenv(self.cursor())
  17. # HACK end
  18. self.cron = self.env.ref("privacy_consent.cron_auto_consent")
  19. self.cron_mail_queue = self.env.ref(
  20. "mail.ir_cron_mail_scheduler_action")
  21. self.update_opt_out = self.env.ref("privacy_consent.update_opt_out")
  22. self.mt_consent_consent_new = self.env.ref(
  23. "privacy_consent.mt_consent_consent_new")
  24. self.mt_consent_acceptance_changed = self.env.ref(
  25. "privacy_consent.mt_consent_acceptance_changed")
  26. self.mt_consent_state_changed = self.env.ref(
  27. "privacy_consent.mt_consent_state_changed")
  28. # Some partners to ask for consent
  29. self.partners = self.env["res.partner"]
  30. self.partners += self.partners.create({
  31. "name": "consent-partner-0",
  32. "email": "partner0@example.com",
  33. "notify_email": "none",
  34. "opt_out": False,
  35. })
  36. self.partners += self.partners.create({
  37. "name": "consent-partner-1",
  38. "email": "partner1@example.com",
  39. "notify_email": "always",
  40. "opt_out": True,
  41. })
  42. self.partners += self.partners.create({
  43. "name": "consent-partner-2",
  44. "email": "partner2@example.com",
  45. "opt_out": False,
  46. })
  47. # Partner without email, on purpose
  48. self.partners += self.partners.create({
  49. "name": "consent-partner-3",
  50. "opt_out": True,
  51. })
  52. # Activity without consent
  53. self.activity_noconsent = self.env["privacy.activity"].create({
  54. "name": "activity_noconsent",
  55. "description": "I'm activity 1",
  56. })
  57. # Activity with auto consent, for all partners
  58. self.activity_auto = self.env["privacy.activity"].create({
  59. "name": "activity_auto",
  60. "description": "I'm activity auto",
  61. "subject_find": True,
  62. "subject_domain": repr([("id", "in", self.partners.ids)]),
  63. "consent_required": "auto",
  64. "default_consent": True,
  65. "server_action_id": self.update_opt_out.id,
  66. })
  67. # Activity with manual consent, skipping partner 0
  68. self.activity_manual = self.env["privacy.activity"].create({
  69. "name": "activity_manual",
  70. "description": "I'm activity 3",
  71. "subject_find": True,
  72. "subject_domain": repr([("id", "in", self.partners[1:].ids)]),
  73. "consent_required": "manual",
  74. "default_consent": False,
  75. "server_action_id": self.update_opt_out.id,
  76. })
  78. # HACK https://github.com/odoo/odoo/issues/12237
  79. # TODO Remove hack in v12
  80. def tearDown(self):
  81. self.env = self._oldenv
  82. super(ActivityCase, self).tearDown()
  84. # HACK https://github.com/odoo/odoo/issues/12237
  85. # TODO Remove hack in v12
  86. @contextmanager
  87. def release_cr(self):
  88. self.env.cr.release()
  89. yield
  90. self.env.cr.acquire()
  92. def check_activity_auto_properly_sent(self):
  93. """Check emails sent by ``self.activity_auto``."""
  94. consents = self.env["privacy.consent"].search([
  95. ("activity_id", "=", self.activity_auto.id),
  96. ])
  97. # Check pending mails
  98. for consent in consents:
  99. self.assertEqual(consent.state, "draft")
  100. messages = consent.message_ids
  101. self.assertEqual(len(messages), 2)
  102. # Check sent mails
  103. self.cron_mail_queue.method_direct_trigger()
  104. for consent in consents:
  105. self.assertEqual(consent.state, "sent")
  106. messages = consent.message_ids
  107. self.assertEqual(len(messages), 3)
  108. # 2nd message notifies creation
  109. self.assertEqual(
  110. messages[2].subtype_id,
  111. self.mt_consent_consent_new,
  112. )
  113. # 3rd message notifies subject
  114. # Placeholder links should be logged
  115. self.assertTrue("/privacy/consent/accept/" in messages[1].body)
  116. self.assertTrue("/privacy/consent/reject/" in messages[1].body)
  117. # Tokenized links shouldn't be logged
  118. self.assertFalse(consent._url(True) in messages[1].body)
  119. self.assertFalse(consent._url(False) in messages[1].body)
  120. # 4th message contains the state change
  121. self.assertEqual(
  122. messages[0].subtype_id,
  123. self.mt_consent_state_changed,
  124. )
  125. # Partner's opt_out should be synced with default consent
  126. self.assertFalse(consent.partner_id.opt_out)
  128. def test_default_template(self):
  129. """We have a good mail template by default."""
  130. good = self.env.ref("privacy_consent.template_consent")
  131. self.assertEqual(
  132. self.activity_noconsent.consent_template_id,
  133. good,
  134. )
  135. self.assertEqual(
  136. self.activity_noconsent.consent_template_default_body_html,
  137. good.body_html,
  138. )
  139. self.assertEqual(
  140. self.activity_noconsent.consent_template_default_subject,
  141. good.subject,
  142. )
  144. def test_find_subject_if_consent_required(self):
  145. """If user wants to require consent, it needs subjects."""
  146. # Test the onchange helper
  147. onchange_activity1 = self.env["privacy.activity"].new(
  148. self.activity_noconsent.copy_data()[0])
  149. self.assertFalse(onchange_activity1.subject_find)
  150. onchange_activity1.consent_required = "auto"
  151. onchange_activity1._onchange_consent_required_subject_find()
  152. self.assertTrue(onchange_activity1.subject_find)
  153. # Test very dumb user that forces an error
  154. with self.assertRaises(ValidationError):
  155. self.activity_noconsent.consent_required = "manual"
  157. def test_template_required_auto(self):
  158. """Automatic consent activities need a template."""
  159. self.activity_noconsent.subject_find = True
  160. self.activity_noconsent.consent_template_id = False
  161. self.activity_noconsent.consent_required = "manual"
  162. with self.assertRaises(ValidationError):
  163. self.activity_noconsent.consent_required = "auto"
  165. def test_generate_manually(self):
  166. """Manually-generated consents work as expected."""
  167. self.partners.write({"opt_out": False})
  168. result = self.activity_manual.action_new_consents()
  169. self.assertEqual(result["res_model"], "privacy.consent")
  170. consents = self.env[result["res_model"]].search(result["domain"])
  171. self.assertEqual(consents.mapped("state"), ["draft"] * 2)
  172. self.assertEqual(consents.mapped("partner_id.opt_out"), [False] * 2)
  173. self.assertEqual(consents.mapped("accepted"), [False] * 2)
  174. self.assertEqual(consents.mapped("last_metadata"), [False] * 2)
  175. # Check sent mails
  176. messages = consents.mapped("message_ids")
  177. self.assertEqual(len(messages), 2)
  178. subtypes = messages.mapped("subtype_id")
  179. self.assertTrue(subtypes & self.mt_consent_consent_new)
  180. self.assertFalse(subtypes & self.mt_consent_acceptance_changed)
  181. self.assertFalse(subtypes & self.mt_consent_state_changed)
  182. # Send one manual request
  183. action = consents[0].action_manual_ask()
  184. self.assertEqual(action["res_model"], "mail.compose.message")
  185. composer = self.env[action["res_model"]] \
  186. .with_context(active_ids=consents[0].ids,
  187. active_model=consents._name,
  188. **action["context"]).create({})
  189. composer.onchange_template_id_wrapper()
  190. composer.send_mail()
  191. messages = consents.mapped("message_ids") - messages
  192. self.assertEqual(len(messages), 2)
  193. self.assertEqual(messages[0].subtype_id, self.mt_consent_state_changed)
  194. self.assertEqual(consents.mapped("state"), ["sent", "draft"])
  195. self.assertEqual(consents.mapped("partner_id.opt_out"), [True, False])
  196. # Placeholder links should be logged
  197. self.assertTrue("/privacy/consent/accept/" in messages[1].body)
  198. self.assertTrue("/privacy/consent/reject/" in messages[1].body)
  199. # Tokenized links shouldn't be logged
  200. accept_url = consents[0]._url(True)
  201. reject_url = consents[0]._url(False)
  202. self.assertNotIn(accept_url, messages[1].body)
  203. self.assertNotIn(reject_url, messages[1].body)
  204. # Visit tokenized accept URL
  205. with self.release_cr():
  206. result = self.url_open(accept_url).text
  207. self.assertIn("accepted", result)
  208. self.assertIn(reject_url, result)
  209. self.assertIn(self.activity_manual.name, result)
  210. self.assertIn(self.activity_manual.description, result)
  211. consents.invalidate_cache()
  212. self.assertEqual(consents.mapped("accepted"), [True, False])
  213. self.assertTrue(consents[0].last_metadata)
  214. self.assertFalse(consents[0].partner_id.opt_out)
  215. self.assertEqual(consents.mapped("state"), ["answered", "draft"])
  216. self.assertEqual(
  217. consents[0].message_ids[0].subtype_id,
  218. self.mt_consent_acceptance_changed,
  219. )
  220. # Visit tokenized reject URL
  221. with self.release_cr():
  222. result = self.url_open(reject_url).text
  223. self.assertIn("rejected", result)
  224. self.assertIn(accept_url, result)
  225. self.assertIn(self.activity_manual.name, result)
  226. self.assertIn(self.activity_manual.description, result)
  227. consents.invalidate_cache()
  228. self.assertEqual(consents.mapped("accepted"), [False, False])
  229. self.assertTrue(consents[0].last_metadata)
  230. self.assertTrue(consents[0].partner_id.opt_out)
  231. self.assertEqual(consents.mapped("state"), ["answered", "draft"])
  232. self.assertEqual(
  233. consents[0].message_ids[0].subtype_id,
  234. self.mt_consent_acceptance_changed,
  235. )
  236. self.assertFalse(consents[1].last_metadata)
  238. def test_generate_automatically(self):
  239. """Automatically-generated consents work as expected."""
  240. result = self.activity_auto.action_new_consents()
  241. self.assertEqual(result["res_model"], "privacy.consent")
  242. self.check_activity_auto_properly_sent()
  244. def test_generate_cron(self):
  245. """Cron-generated consents work as expected."""
  246. self.cron.method_direct_trigger()
  247. self.check_activity_auto_properly_sent()
  249. def test_mail_template_without_links(self):
  250. """Cannot create mail template without needed links."""
  251. with self.assertRaises(ValidationError):
  252. self.activity_manual.consent_template_id.body_html = "No links :("