3 # This file is part of Koha.
5 # Koha is free software; you can redistribute it and/or modify it under the
6 # terms of the GNU General Public License as published by the Free Software
7 # Foundation; either version 3 of the License, or (at your option) any later
10 # Koha is distributed in the hope that it will be useful, but WITHOUT ANY
11 # WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
12 # A PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 # You should have received a copy of the GNU General Public License along
15 # with Koha; if not, write to the Free Software Foundation, Inc.,
16 # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
20 use Test::More tests => 57;
24 use t::lib::TestBuilder;
37 my $schema = Koha::Database->schema;
38 $schema->storage->txn_begin;
39 my $dbh = C4::Context->dbh;
40 my $builder = t::lib::TestBuilder->new;
41 $dbh->{RaiseError} = 1;
43 $ENV{REMOTE_ADDR} = '127.0.0.1';
44 my $t = Test::Mojo->new('Koha::REST::V1');
46 $dbh->do('DELETE FROM issues');
47 $dbh->do('DELETE FROM items');
48 $dbh->do('DELETE FROM issuingrules');
49 my $loggedinuser = $builder->build({ source => 'Borrower' });
52 INSERT INTO user_permissions (borrowernumber, module_bit, code)
53 VALUES (?, 1, 'circulate_remaining_permissions')
54 }, undef, $loggedinuser->{borrowernumber});
56 my $session = C4::Auth::get_session('');
57 $session->param('number', $loggedinuser->{ borrowernumber });
58 $session->param('id', $loggedinuser->{ userid });
59 $session->param('ip', '127.0.0.1');
60 $session->param('lasttime', time());
63 my $patron = $builder->build({ source => 'Borrower', value => { flags => 0 } });
64 my $borrowernumber = $patron->{borrowernumber};
65 my $patron_session = C4::Auth::get_session('');
66 $patron_session->param('number', $borrowernumber);
67 $patron_session->param('id', $patron->{ userid });
68 $patron_session->param('ip', '127.0.0.1');
69 $patron_session->param('lasttime', time());
70 $patron_session->flush;
72 my $branchcode = $builder->build({ source => 'Branch' })->{ branchcode };
73 my $module = new Test::MockModule('C4::Context');
74 $module->mock('userenv', sub { { branch => $branchcode } });
76 my $tx = $t->ua->build_tx(GET => "/api/v1/checkouts?borrowernumber=$borrowernumber");
77 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
82 my $notexisting_borrowernumber = $borrowernumber + 1;
83 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts?borrowernumber=$notexisting_borrowernumber");
84 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
89 my $biblionumber = create_biblio('RESTful Web APIs');
90 my $itemnumber1 = create_item($biblionumber, 'TEST000001');
91 my $itemnumber2 = create_item($biblionumber, 'TEST000002');
92 my $itemnumber3 = create_item($biblionumber, 'TEST000003');
94 my $date_due = DateTime->now->add(weeks => 2);
95 my $issue1 = C4::Circulation::AddIssue($patron, 'TEST000001', $date_due);
96 my $date_due1 = Koha::DateUtils::dt_from_string( $issue1->date_due );
97 my $issue2 = C4::Circulation::AddIssue($patron, 'TEST000002', $date_due);
98 my $date_due2 = Koha::DateUtils::dt_from_string( $issue2->date_due );
99 my $issue3 = C4::Circulation::AddIssue($loggedinuser, 'TEST000003', $date_due);
100 my $date_due3 = Koha::DateUtils::dt_from_string( $issue3->date_due );
102 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts?borrowernumber=$borrowernumber");
103 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
106 ->json_is('/0/borrowernumber' => $borrowernumber)
107 ->json_is('/0/itemnumber' => $itemnumber1)
108 ->json_is('/0/date_due' => $date_due1->ymd . ' ' . $date_due1->hms)
109 ->json_is('/1/borrowernumber' => $borrowernumber)
110 ->json_is('/1/itemnumber' => $itemnumber2)
111 ->json_is('/1/date_due' => $date_due2->ymd . ' ' . $date_due2->hms)
114 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts/".$issue3->issue_id);
115 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
118 ->json_is({ error => "Authorization failure. Missing required permission(s).",
119 required_permissions => { circulate => "circulate_remaining_permissions" }
122 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts?borrowernumber=".$loggedinuser->{borrowernumber});
123 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
126 ->json_is({ error => "Authorization failure. Missing required permission(s).",
127 required_permissions => { circulate => "circulate_remaining_permissions" }
130 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts?borrowernumber=$borrowernumber");
131 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
134 ->json_is('/0/borrowernumber' => $borrowernumber)
135 ->json_is('/0/itemnumber' => $itemnumber1)
136 ->json_is('/0/date_due' => $date_due1->ymd . ' ' . $date_due1->hms)
137 ->json_is('/1/borrowernumber' => $borrowernumber)
138 ->json_is('/1/itemnumber' => $itemnumber2)
139 ->json_is('/1/date_due' => $date_due2->ymd . ' ' . $date_due2->hms)
142 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts/" . $issue1->issue_id);
143 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
146 ->json_is('/borrowernumber' => $borrowernumber)
147 ->json_is('/itemnumber' => $itemnumber1)
148 ->json_is('/date_due' => $date_due1->ymd . ' ' . $date_due1->hms)
151 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts/" . $issue1->issue_id);
152 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
155 ->json_is('/date_due' => $date_due1->ymd . ' ' . $date_due1->hms);
157 $tx = $t->ua->build_tx(GET => "/api/v1/checkouts/" . $issue2->issue_id);
158 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
161 ->json_is('/date_due' => $date_due2->ymd . ' ' . $date_due2->hms);
164 $dbh->do('DELETE FROM issuingrules');
166 INSERT INTO issuingrules (categorycode, branchcode, itemtype, renewalperiod, renewalsallowed)
167 VALUES (?, ?, ?, ?, ?)
168 }, {}, '*', '*', '*', 7, 1);
170 my $expected_datedue = DateTime->now->add(days => 14)->set(hour => 23, minute => 59, second => 0);
171 $tx = $t->ua->build_tx(PUT => "/api/v1/checkouts/" . $issue1->issue_id);
172 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
175 ->json_is('/date_due' => $expected_datedue->ymd . ' ' . $expected_datedue->hms);
177 $tx = $t->ua->build_tx(PUT => "/api/v1/checkouts/" . $issue3->issue_id);
178 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
181 ->json_is({ error => "Authorization failure. Missing required permission(s).",
182 required_permissions => { circulate => "circulate_remaining_permissions" }
185 t::lib::Mocks::mock_preference( "OpacRenewalAllowed", 0 );
186 $tx = $t->ua->build_tx(PUT => "/api/v1/checkouts/" . $issue2->issue_id);
187 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
190 ->json_is({ error => "Opac Renewal not allowed" });
192 t::lib::Mocks::mock_preference( "OpacRenewalAllowed", 1 );
193 $tx = $t->ua->build_tx(PUT => "/api/v1/checkouts/" . $issue2->issue_id);
194 $tx->req->cookies({name => 'CGISESSID', value => $patron_session->id});
197 ->json_is('/date_due' => $expected_datedue->ymd . ' ' . $expected_datedue->hms);
199 $tx = $t->ua->build_tx(PUT => "/api/v1/checkouts/" . $issue1->issue_id);
200 $tx->req->cookies({name => 'CGISESSID', value => $session->id});
203 ->json_is({ error => 'Renewal not authorized (too_many)' });
208 my $record = new MARC::Record;
209 $record->append_fields(
210 new MARC::Field('200', ' ', ' ', a => $title),
213 my ($biblionumber) = C4::Biblio::AddBiblio($record, '');
215 return $biblionumber;
219 my ($biblionumber, $barcode) = @_;
225 my $itemnumber = C4::Items::AddItem($item, $biblionumber);