Add ruff linter/formatter for Python

- Add ruff as dev dependency - Configure ruff in pyproject.toml with strict 88-char line limit - Ignore B008 (FastAPI Depends pattern is standard) - Allow longer lines in tests for readability - Fix all lint issues in source files - Add Makefile targets: lint-backend, format-backend, fix-backend
2025-12-21 21:54:26 +01:00 · 2025-12-21 21:54:26 +01:00 · 6c218130e9
commit 6c218130e9
parent 69bc8413e0
31 changed files with 1234 additions and 876 deletions
--- a/backend/tests/test_auth.py
+++ b/backend/tests/test_auth.py
@ -3,12 +3,13 @@
 Note: Registration now requires an invite code. Tests that need to register
 users will create invites first via the helper function.
 """
+
 import pytest

 from auth import COOKIE_NAME
 from models import ROLE_REGULAR
-from tests.helpers import unique_email, create_invite_for_godfather
 from tests.conftest import create_user_with_roles
+from tests.helpers import create_invite_for_godfather, unique_email


 # Registration tests (with invite)
@ -16,12 +17,14 @@ from tests.conftest import create_user_with_roles
 async def test_register_success(client_factory):
    """Can register with valid invite code."""
    email = unique_email("register")
-    
+
    # Create godfather user and invite
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("godfather"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("godfather"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    response = await client_factory.post(
        "/api/auth/register",
        json={
@ -46,13 +49,15 @@ async def test_register_success(client_factory):
 async def test_register_duplicate_email(client_factory):
    """Cannot register with already-used email."""
    email = unique_email("duplicate")
-    
+
    # Create godfather and two invites
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite1 = await create_invite_for_godfather(db, godfather.id)
        invite2 = await create_invite_for_godfather(db, godfather.id)
-    
+
    # First registration
    await client_factory.post(
        "/api/auth/register",
@ -62,7 +67,7 @@ async def test_register_duplicate_email(client_factory):
            "invite_identifier": invite1,
        },
    )
-    
+
    # Second registration with same email
    response = await client_factory.post(
        "/api/auth/register",
@ -80,9 +85,11 @@ async def test_register_duplicate_email(client_factory):
 async def test_register_invalid_email(client_factory):
    """Cannot register with invalid email format."""
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    response = await client_factory.post(
        "/api/auth/register",
        json={
@ -136,11 +143,13 @@ async def test_register_empty_body(client):
 async def test_login_success(client_factory):
    """Can login with valid credentials."""
    email = unique_email("login")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    await client_factory.post(
        "/api/auth/register",
        json={
@ -165,11 +174,13 @@ async def test_login_success(client_factory):
 async def test_login_wrong_password(client_factory):
    """Cannot login with wrong password."""
    email = unique_email("wrongpass")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    await client_factory.post(
        "/api/auth/register",
        json={
@ -219,11 +230,13 @@ async def test_login_missing_fields(client):
 async def test_get_me_success(client_factory):
    """Can get current user info when authenticated."""
    email = unique_email("me")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    reg_response = await client_factory.post(
        "/api/auth/register",
        json={
@ -233,10 +246,10 @@ async def test_get_me_success(client_factory):
        },
    )
    cookies = dict(reg_response.cookies)
-    
+
    async with client_factory.create(cookies=cookies) as authed:
        response = await authed.get("/api/auth/me")
-    
+
    assert response.status_code == 200
    data = response.json()
    assert data["email"] == email
@ -255,7 +268,9 @@ async def test_get_me_no_cookie(client):
@pytest.mark.asyncio
 async def test_get_me_invalid_cookie(client_factory):
    """Cannot get current user with invalid cookie."""
-    async with client_factory.create(cookies={COOKIE_NAME: "invalidtoken123"}) as authed:
+    async with client_factory.create(
+        cookies={COOKIE_NAME: "invalidtoken123"}
+    ) as authed:
        response = await authed.get("/api/auth/me")
    assert response.status_code == 401
    assert response.json()["detail"] == "Invalid authentication credentials"
@ -275,11 +290,13 @@ async def test_get_me_expired_token(client_factory):
 async def test_cookie_from_register_works_for_me(client_factory):
    """Auth cookie from registration works for subsequent requests."""
    email = unique_email("tokentest")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    reg_response = await client_factory.post(
        "/api/auth/register",
        json={
@ -289,10 +306,10 @@ async def test_cookie_from_register_works_for_me(client_factory):
        },
    )
    cookies = dict(reg_response.cookies)
-    
+
    async with client_factory.create(cookies=cookies) as authed:
        me_response = await authed.get("/api/auth/me")
-    
+
    assert me_response.status_code == 200
    assert me_response.json()["email"] == email

@ -301,11 +318,13 @@ async def test_cookie_from_register_works_for_me(client_factory):
 async def test_cookie_from_login_works_for_me(client_factory):
    """Auth cookie from login works for subsequent requests."""
    email = unique_email("logintoken")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    await client_factory.post(
        "/api/auth/register",
        json={
@ -319,10 +338,10 @@ async def test_cookie_from_login_works_for_me(client_factory):
        json={"email": email, "password": "password123"},
    )
    cookies = dict(login_response.cookies)
-    
+
    async with client_factory.create(cookies=cookies) as authed:
        me_response = await authed.get("/api/auth/me")
-    
+
    assert me_response.status_code == 200
    assert me_response.json()["email"] == email

@ -333,12 +352,14 @@ async def test_multiple_users_isolated(client_factory):
    """Multiple users have isolated sessions."""
    email1 = unique_email("user1")
    email2 = unique_email("user2")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite1 = await create_invite_for_godfather(db, godfather.id)
        invite2 = await create_invite_for_godfather(db, godfather.id)
-    
+
    resp1 = await client_factory.post(
        "/api/auth/register",
        json={
@ -355,16 +376,16 @@ async def test_multiple_users_isolated(client_factory):
            "invite_identifier": invite2,
        },
    )
-    
+
    cookies1 = dict(resp1.cookies)
    cookies2 = dict(resp2.cookies)
-    
+
    async with client_factory.create(cookies=cookies1) as user1:
        me1 = await user1.get("/api/auth/me")
-    
+
    async with client_factory.create(cookies=cookies2) as user2:
        me2 = await user2.get("/api/auth/me")
-    
+
    assert me1.json()["email"] == email1
    assert me2.json()["email"] == email2
    assert me1.json()["id"] != me2.json()["id"]
@ -375,11 +396,13 @@ async def test_multiple_users_isolated(client_factory):
 async def test_password_is_hashed(client_factory):
    """Passwords are properly hashed (can login with correct password)."""
    email = unique_email("hashtest")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    await client_factory.post(
        "/api/auth/register",
        json={
@ -399,11 +422,13 @@ async def test_password_is_hashed(client_factory):
 async def test_case_sensitive_password(client_factory):
    """Passwords are case-sensitive."""
    email = unique_email("casetest")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    await client_factory.post(
        "/api/auth/register",
        json={
@ -424,11 +449,13 @@ async def test_case_sensitive_password(client_factory):
 async def test_logout_success(client_factory):
    """Can logout successfully."""
    email = unique_email("logout")
-    
+
    async with client_factory.get_db_session() as db:
-        godfather = await create_user_with_roles(db, unique_email("gf"), "pass123", [ROLE_REGULAR])
+        godfather = await create_user_with_roles(
+            db, unique_email("gf"), "pass123", [ROLE_REGULAR]
+        )
        invite_code = await create_invite_for_godfather(db, godfather.id)
-    
+
    reg_response = await client_factory.post(
        "/api/auth/register",
        json={
@ -438,9 +465,9 @@ async def test_logout_success(client_factory):
        },
    )
    cookies = dict(reg_response.cookies)
-    
+
    async with client_factory.create(cookies=cookies) as authed:
        logout_response = await authed.post("/api/auth/logout")
-    
+
    assert logout_response.status_code == 200
    assert logout_response.json() == {"ok": True}