In [1]:
import requests
import pathlib
import json

In [2]:
HOST = 'http://0.0.0.0:5000'

In [3]:
PATH = pathlib.Path('.')

## Registration

In [4]:
user1 = {
    'username': 'user1',
    'password': 'password1',
    'email': 'a@example.com',
    'gender': 'male',
    'stats': {
        'total_sessions': 9,
        'total_victories': 4,
        'total_defeats': 5,
        'total_time': 100
    }
}

In [5]:
avatar_path = PATH / 'cat1.jpeg'

In [6]:
avatar_path.name

'cat1.jpeg'

In [7]:
# For passing both json and image (avatar), we pass dict as file 
# (identified as request.form in flask) 

files = {
    'json': (None, json.dumps(user1), 'application/json'),
    'avatar': (avatar_path.name, open(avatar_path, 'rb'), 'application/octet-stream')
}

In [8]:
files

{'json': (None,
  '{"username": "user1", "password": "password1", "email": "a@example.com", "gender": "male", "stats": {"total_sessions": 9, "total_victories": 4, "total_defeats": 5, "total_time": 100}}',
  'application/json'),
 'avatar': ('cat1.jpeg',
  <_io.BufferedReader name='cat1.jpeg'>,
  'application/octet-stream')}

In [9]:
# Creating probably existing user with avatar
result = requests.post(HOST + '/users',files=files)
result.text

'{"token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTYxNjUwMjg5NCwianRpIjoiMmE3NTQ5ZWMtYmZiYS00YWEwLThkZmItZjk5NGM2MDZlMDc3IiwibmJmIjoxNjE2NTAyODk0LCJ0eXBlIjoiYWNjZXNzIiwic3ViIjoxfQ.dpE-G0zc23EP3dH5dD2xKjg3gmYoYbX5N7GCi4_1-Vw","user":{"avatar":"1e7777ef-5341-4ec2-b688-352b66ca057a.jpeg","email":"a@example.com","gender":"male","self_url":"/users/1","stats_url":"/users/1/stats","user_id":1,"username":"user1"}}\n'

In [10]:
# Creating definitely new user
import datetime

username = datetime.datetime.now().strftime("m%md%dY%YH%HM%MS%Sf%f")
user_n = {
    'username': username,
    'password': 'password1',
    'email': 'a@example.com',
    'gender': 'male',
    'stats': {
        'total_sessions': 9,
        'total_victories': 4,
    }
}

In [11]:
# Pass as json because avatar image is abcent

result = requests.post(HOST + '/users',json=user_n)
result.text

'{"token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTYxNjUwMjg5NCwianRpIjoiMmQxYTMzMDEtYTkwNy00Njc5LWJiZjktOWU1NTc0NTZiNDJiIiwibmJmIjoxNjE2NTAyODk0LCJ0eXBlIjoiYWNjZXNzIiwic3ViIjoyfQ.CWVwUKNtjbCQICwgEaEFjj7vWmdc0JBa4yFq0OEHhIA","user":{"avatar":null,"email":"a@example.com","gender":"male","self_url":"/users/2","stats_url":"/users/2/stats","user_id":2,"username":"m03d23Y2021H15M34S54f562239"}}\n'

In [12]:
# List all users
result = requests.get(HOST + '/users').json()
result

[{'avatar': '1e7777ef-5341-4ec2-b688-352b66ca057a.jpeg',
  'email': 'a@example.com',
  'gender': 'male',
  'self_url': '/users/1',
  'stats_url': '/users/1/stats',
  'user_id': 1,
  'username': 'user1'},
 {'avatar': None,
  'email': 'a@example.com',
  'gender': 'male',
  'self_url': '/users/2',
  'stats_url': '/users/2/stats',
  'user_id': 2,
  'username': 'm03d23Y2021H15M34S54f562239'}]

In [13]:
# List the 1st user
result = requests.get(HOST + '/users/1').json()
result

{'avatar': '1e7777ef-5341-4ec2-b688-352b66ca057a.jpeg',
 'email': 'a@example.com',
 'gender': 'male',
 'self_url': '/users/1',
 'stats_url': '/users/1/stats',
 'user_id': 1,
 'username': 'user1'}

## Login

In [14]:
# Two ways of dict params are supported: through files
creds = {'username': 'user1', 'password': 'password1'}
result = requests.post(HOST + '/login',files={'json': (None, json.dumps(creds), 'application/json')})
result.text

'{"token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTYxNjUwMjg5NCwianRpIjoiNTI5YzNiYjAtMTU2MS00YTBlLTkwNzItMTY2YTg4ZTg2YTBlIiwibmJmIjoxNjE2NTAyODk0LCJ0eXBlIjoiYWNjZXNzIiwic3ViIjoxfQ.cSCPG3bxU2YhA5HAffMwqOeuK2NB5So3mTuP1Hy6l8o","user":"/users/1"}\n'

In [15]:
# And through json

creds = {'username': 'user1', 'password': 'password1'}
result = requests.post(HOST + '/login',json=creds)
result.json()

{'token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTYxNjUwMjg5NCwianRpIjoiZGVkYTAxMjgtYWM3Zi00YTQ1LThjODgtYTY4NjVlMjQxZTg2IiwibmJmIjoxNjE2NTAyODk0LCJ0eXBlIjoiYWNjZXNzIiwic3ViIjoxfQ.6J9lbQMi55k_nK5N9k9izogecWuH6Vjnxv5Cqxj8jdg',
 'user': '/users/1'}

In [16]:
# Accessing JWT-protected queries

token = result.json()['token']
headers = {"Authorization": f"Bearer {token}"}
result = requests.get(HOST + '/users/me', headers=headers)
result.json()

{'avatar': '1e7777ef-5341-4ec2-b688-352b66ca057a.jpeg',
 'email': 'a@example.com',
 'gender': 'male',
 'self_url': '/users/1',
 'stats_url': '/users/1/stats',
 'user_id': 1,
 'username': 'user1'}

In [17]:
# Loggin in as another user
creds_old = {'username': username, 'password': 'password1'}
result = requests.post(HOST + '/login', json=creds_old)
result.json()

{'token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTYxNjUwMjg5NCwianRpIjoiMjQ0MTRiMjMtNmNhNy00M2M0LTk4YWUtZTE1YTkxMjI1ODk2IiwibmJmIjoxNjE2NTAyODk0LCJ0eXBlIjoiYWNjZXNzIiwic3ViIjoyfQ.P6RwOPc_mpbeuR2O0-NIGT1cVaOw1rftTvoUekb6BIg',
 'user': '/users/2'}

In [18]:
# Tokens are different
token2 = result.json()['token']
token2 == token

False

In [19]:
headers = {"Authorization": f"Bearer {token2}"}
result = requests.get(HOST + '/users/me', headers=headers)
self_url = result.json()['self_url']
stats_url = result.json()['stats_url']
result.json()

{'avatar': None,
 'email': 'a@example.com',
 'gender': 'male',
 'self_url': '/users/2',
 'stats_url': '/users/2/stats',
 'user_id': 2,
 'username': 'm03d23Y2021H15M34S54f562239'}

## Data modifications

In [20]:
# Accessing stats data
result = requests.get(HOST + stats_url, headers=headers)
result.json()

{'total_defeats': 0,
 'total_sessions': 9,
 'total_time': 0,
 'total_victories': 4}

In [21]:
# Modifing stats data
edits = {'total_sessions': 10, 'total_time': 1000}
result = requests.patch(HOST + stats_url, headers=headers, json=edits)
result.json()

{'total_defeats': 0,
 'total_sessions': 10,
 'total_time': 1000,
 'total_victories': 4}

In [22]:
# Modifying user data (avatar)
avatar_path = PATH / 'cat2.jpeg'
edits = {
    'avatar': (avatar_path.name, open(avatar_path, 'rb'), 'application/octet-stream')
}
result = requests.patch(HOST + self_url, headers=headers, files=edits)
result.json()

{'avatar': '4c2ece9b-3835-4a25-9f7b-1e14f7c8c2bf.jpeg',
 'email': 'a@example.com',
 'gender': 'male',
 'self_url': '/users/2',
 'stats_url': '/users/2/stats',
 'user_id': 2,
 'username': 'm03d23Y2021H15M34S54f562239'}

In [23]:
result.text

'{"avatar":"4c2ece9b-3835-4a25-9f7b-1e14f7c8c2bf.jpeg","email":"a@example.com","gender":"male","self_url":"/users/2","stats_url":"/users/2/stats","user_id":2,"username":"m03d23Y2021H15M34S54f562239"}\n'

In [24]:
# Modifing user data (username and password themselves!)
edits = {'username': 'usern', 'password': 'password2', 'gender': 'female'}
result = requests.patch(HOST + self_url, headers=headers, json=edits)
result.json()

{'avatar': '4c2ece9b-3835-4a25-9f7b-1e14f7c8c2bf.jpeg',
 'email': 'a@example.com',
 'gender': 'female',
 'self_url': '/users/2',
 'stats_url': '/users/2/stats',
 'user_id': 2,
 'username': 'usern'}

In [25]:
# Logging in with new credentials
creds_new = {'username': 'usern', 'password': 'password2'}
result = requests.post(HOST + '/login', json=creds_new)
token2 = result.json()['token']

headers = {"Authorization": f"Bearer {token2}"}
result = requests.get(HOST + '/users/me', headers=headers)
result.json()

{'avatar': '4c2ece9b-3835-4a25-9f7b-1e14f7c8c2bf.jpeg',
 'email': 'a@example.com',
 'gender': 'female',
 'self_url': '/users/2',
 'stats_url': '/users/2/stats',
 'user_id': 2,
 'username': 'usern'}

In [26]:
# Deleting user (ourselves)
result = requests.delete(HOST + self_url, headers=headers)
result

<Response [204]>

In [27]:
# Neither of the credentials pairs
result = requests.post(HOST + '/login', json=creds_old)
result.text

'Bad username or password'

In [28]:
# is correct
result = requests.post(HOST + '/login', json=creds_new)
result.text

'Bad username or password'

## Reports

In [29]:
headers = {"Authorization": f"Bearer {token}"}
result = requests.post(HOST + '/users/1/pdf', headers=headers)
result.text

'{"url":"/users/1/pdf"}\n'

In [30]:
result = requests.get(HOST + result.json()['url'], headers=headers)
result

<Response [200]>

In [32]:
with open('report.pdf', 'wb') as f:
    f.write(result.content)