kpi-web-guild · OlenaYefymenko · Mar 27, 2024 · Mar 27, 2024 · Mar 27, 2024 · Mar 28, 2024
diff --git a/blog/forms.py b/blog/forms.py
@@ -0,0 +1,15 @@
+"""Form class for the Blog application."""
+
+from django import forms
+
+from .models import Post
+
+
+class PostForm(forms.ModelForm):
+    """Form for the creation of new posts in the Blog application."""
+
+    class Meta:
+        """Metadata for the post form."""
+
+        model = Post
+        fields = ('title', 'text')
diff --git a/blog/templates/blog/base.html b/blog/templates/blog/base.html
@@ -9,15 +9,20 @@
     </head>
     <body>
         <header class="page-header">
-          <div class="container">
-              <h1><a href="/">Django Girls Blog</a></h1>
-          </div>
+            <div class="container">
+            {% if user.is_authenticated %}
+                <a href="{% url 'post_new' %}" class="top-menu">
+                    {% include './icons/file-earmark-plus.svg' %}
+                </a>
+            {% endif %}
+                <h1><a href="/">Django Girls Blog</a></h1>
+            </div>
         </header>
-        <main class="container">
+        <main class="content container">
             <div class="row">
                 <div class="col">
-                {% block content %}
-                {% endblock %}
+                    {% block content %}
+                    {% endblock %}
                 </div>
             </div>
         </main>

diff --git a/blog/templates/blog/icons/file-earmark-plus.svg b/blog/templates/blog/icons/file-earmark-plus.svg
diff --git a/blog/templates/blog/icons/pencil-fill.svg b/blog/templates/blog/icons/pencil-fill.svg
diff --git a/blog/templates/blog/post_detail.html b/blog/templates/blog/post_detail.html
@@ -2,6 +2,13 @@
 
 {% block content %}
     <article class="post">
+        <aside class="actions">
+        {% if user.is_authenticated %}
+            <a class="btn btn-secondary" href="{% url 'post_edit' pk=post.pk %}">
+                {% include './icons/pencil-fill.svg' %}
+            </a>
+        {% endif %}
+        </aside>
         {% if post.published_date %}
             <time class="date">
                 {{ post.published_date }}

diff --git a/blog/templates/blog/post_edit.html b/blog/templates/blog/post_edit.html
@@ -0,0 +1,9 @@
+{% extends 'blog/base.html' %}
+
+{% block content %}
+    <h2>New post</h2>
+    <form method="POST" class="post-form">{% csrf_token %}
+        {{ form.as_p }}
+        <button type="submit" class="save btn btn-secondary">Save</button>
+    </form>
+{% endblock %}
diff --git a/blog/templates/registration/login.html b/blog/templates/registration/login.html
@@ -0,0 +1,26 @@
+{% extends "blog/base.html" %}
+
+{% block content %}
+
+  {% if form.errors %}
+    <p>Your username and password didn't match. Please try again.
+  {% endif %}
+
+<form method="post" action="{% url 'login' %}">
+{% csrf_token %}
+<table>
+<tr>
+    <td>{{ form.username.label_tag }}</td>
+    <td>{{ form.username }}</td>
+</tr>
+<tr>
+    <td>{{ form.password.label_tag }}</td>
+    <td>{{ form.password }}</td>
+</tr>
+</table>
+
+<input type="submit" value="login" />
+<input type="hidden" name="next" value="{{ next }}" />
+</form>
+
+{% endblock %}
diff --git a/blog/urls.py b/blog/urls.py
@@ -1,10 +1,15 @@
 """The URL configuration for the Blog application."""
 
+from django.contrib.auth import views as auth_views
 from django.urls import path
 
 from . import views
 
 urlpatterns = [
     path('', views.post_list, name='post_list'),
     path('post/<int:pk>/', views.post_detail, name='post_detail'),
+    path('post/new/', views.post_new, name='post_new'),
+    path('post/<int:pk>/edit/', views.post_edit, name='post_edit'),
+    path('accounts/login/', auth_views.LoginView.as_view(), name='login'),
+
 ]
diff --git a/blog/views.py b/blog/views.py
@@ -1,8 +1,10 @@
 """The views for the Blog application."""
 
-from django.shortcuts import get_object_or_404, render
+from django.contrib.auth.decorators import login_required
+from django.shortcuts import get_object_or_404, redirect, render
 from django.utils import timezone
 
+from .forms import PostForm
 from .models import Post
 
 
@@ -20,3 +22,36 @@ def post_detail(request, pk):
     """Display a blog post based on the post's primary key."""
     post = get_object_or_404(Post, pk=pk)
     return render(request, 'blog/post_detail.html', {'post': post})
+
+
+@login_required
+def post_new(request):
+    """Create a new post."""
+    if request.method == 'POST':
+        form = PostForm(request.POST)
+        if form.is_valid():
+            post = form.save(commit=False)
+            post.author = request.user
+            post.published_date = timezone.now()
+            post.save()
+            return redirect('post_detail', pk=post.pk)
+    else:
+        form = PostForm()
+    return render(request, 'blog/post_edit.html', {'form': form})
+
+
+@login_required
+def post_edit(request, pk):
+    """Edit an existing post."""
+    post = get_object_or_404(Post, pk=pk)
+    if request.method == 'POST':
+        form = PostForm(request.POST, instance=post)
+        if form.is_valid():
+            post = form.save(commit=False)
+            post.author = request.user
+            post.published_date = timezone.now()
+            post.save()
+            return redirect('post_detail', pk=post.pk)
+    else:
+        form = PostForm(instance=post)
+    return render(request, 'blog/post_edit.html', {'form': form})
diff --git a/tests/test_views.py b/tests/test_views.py
@@ -16,7 +16,10 @@ class ViewsTest(TestCase):
     @classmethod
     def setUpTestData(cls):
         """Create test client, user, posts with different published dates."""
-        cls.user = get_user_model().objects.create()
+        cls.user = get_user_model().objects.create_user(
+            username='test user',
+            password='test password',
+        )
         cls.client = Client()
         cls.tm_zone = timezone.get_current_timezone()
 
@@ -86,3 +89,168 @@ def test_post_detail_failed(self):
             reverse('post_detail', kwargs={'pk': 31}),
         )
         self.assertEqual(404, http_response.status_code)
+
+    def test_create_new_post_authorized_user(self):
+        """Ensure the correct creation of the new post for authorized user."""
+        login_successful = self.client.login(
+            username='test user', password='test password',
+        )
+        self.assertTrue(login_successful)
+        # GET request
+        get_response = self.client.get(reverse('post_new'))
+        self.assertEqual(200, get_response.status_code)
+        self.assertTemplateUsed(get_response, 'blog/post_edit.html')
+
+        # POST request with valid form data
+        valid_form_post_data = {
+            'title': 'test title',
+            'text': 'test text',
+        }
+        post_response_valid = self.client.post(
+            reverse('post_new'), valid_form_post_data, follow=True,
+        )
+        self.assertEqual(200, post_response_valid.status_code)
+        new_post = Post.objects.filter(
+            title='test title', text='test text',
+        ).first()
+        self.assertIsNotNone(new_post)
+
+        self.assertRedirects(
+            post_response_valid, reverse(
+                'post_detail', kwargs={'pk': new_post.pk},
+            ),
+        )
+        self.assertTemplateUsed(post_response_valid, 'blog/post_detail.html')
+
+        # POST request with invalid form data
+        invalid_form_data = {
+            'title': '',
+            'text': 'test text',
+        }
+        post_response_invalid = self.client.post(
+            reverse(
+                'post_new',
+            ), data=invalid_form_data, follow=True,
+        )
+        self.assertEqual(200, post_response_invalid.status_code)
+        self.assertTemplateUsed(post_response_invalid, 'blog/post_edit.html')
+        self.assertContains(
+            post_response_invalid,
+            'This field is required', count=1,
+        )
+
+    def test_create_new_post_unauthorized_user(self):
+        """Ensure the unauthorized user is redirected to the login page."""
+        response = self.client.get(reverse('post_new'))
+        self.assertRedirects(
+            response, f'/accounts/login/?next={reverse("post_new")}',
+        )
+
+    def test_post_edit_authorized_user(self):
+        """Ensure."""
+        login_successful = self.client.login(
+            username='test user', password='test password',
+        )
+        self.assertTrue(login_successful)
+        post = Post.objects.create(
+            author=self.user, title='test title', text='test text',
+        )
+
+        # GET response
+        get_response = self.client.get(
+            reverse('post_edit', kwargs={'pk': post.pk}),
+        )
+        self.assertEqual(200, get_response.status_code)
+        self.assertTemplateUsed(get_response, 'blog/post_edit.html')
+
+        # POST request with valid form data
+        valid_form_data = {
+            'title': 'edited test title',
+            'text': 'edited test text',
+        }
+        post_response_valid = self.client.post(
+            reverse('post_edit', kwargs={'pk': post.pk}),
+            valid_form_data, follow=True,
+        )
+        self.assertEqual(200, post_response_valid.status_code)
+        edited_post = Post.objects.get(pk=post.pk)
+        self.assertEqual(edited_post.title, 'edited test title')
+        self.assertEqual(edited_post.text, 'edited test text')
+
+        self.assertRedirects(
+            post_response_valid, reverse(
+            'post_detail', kwargs={'pk': post.pk},
+            ),
+        )
+        self.assertTemplateUsed(
+            post_response_valid,
+            'blog/post_detail.html',
+        )
+
+        # POST request with invalid form data
+        invalid_form_data = {
+            'title': '',
+            'text': 'edited test text',
+        }
+        post_response_invalid = self.client.post(
+            reverse('post_edit', kwargs={'pk': post.pk}),
+            data=invalid_form_data,
+        )
+        self.assertEqual(200, post_response_invalid.status_code)
+        self.assertTemplateUsed(post_response_invalid, 'blog/post_edit.html')
+        self.assertContains(
+            post_response_invalid,
+            'This field is required', count=1,
+        )
+        post.refresh_from_db()
+        self.assertEqual(post.title, 'edited test title')
+        self.assertEqual(post.text, 'edited test text')
+
+    def test_post_edit_unauthorized_user(self):
+        """Ensure."""
+        post = Post.objects.create(
+            author=self.user, title='test post', text='test text',
+        )
+        response = self.client.get(
+            reverse('post_edit', kwargs={'pk': post.pk}),
+        )
+        self.assertRedirects(
+            response,
+                f'/accounts/login/?next={reverse("post_edit", kwargs={"pk": post.pk})}',
+        )
+
+    def test_post_edit_successful(self):
+        """Ensure."""
+        login_successful = self.client.login(
+            username='test user', password='test password',
+        )
+        self.assertTrue(login_successful)
+
+        post = Post.objects.create(
+            author=self.user, title='test post', text='test text',
+        )
+        valid_form_data = {
+            'title': 'edited test title',
+            'text': 'edited test title',
+        }
+        post_response = self.client.post(
+            reverse(
+            'post_edit', kwargs={'pk': post.pk},
+            ), valid_form_data, follow=True,
+        )
+        self.assertEqual(post_response.status_code, 200)
+        post.refresh_from_db()
+        self.assertEqual(post.title, 'edited test title')
+        self.assertEqual(post.text, 'edited test title')
+
+    def test_post_edit_failed(self):
+        """Ensure."""
+        login_successful = self.client.login(
+            username='test user', password='test password',
+        )
+        self.assertTrue(login_successful)
+
+        http_response = self.client.get(
+            reverse('post_edit', kwargs={'pk': 33}),
+        )
+        self.assertEqual(404, http_response.status_code)