From 1517b902d660d7a02a7558d644b5ee684bf5a3b7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Lauri=20V=C3=B5sandi?= <lauri.vosandi@gmail.com>
Date: Tue, 25 Apr 2017 22:52:49 +0300
Subject: [PATCH] Add tests for certificate revocation via API

---
 tests/test_cli.py | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/tests/test_cli.py b/tests/test_cli.py
index f7c6e08..7c91b3c 100644
--- a/tests/test_cli.py
+++ b/tests/test_cli.py
@@ -45,6 +45,7 @@ def test_cli_setup_authority():
     assert authority.ca_cert.not_valid_before < datetime.now()
     assert authority.ca_cert.not_valid_after > datetime.now() + timedelta(days=7000)
 
+    # Password is bot, users created by Travis
     usertoken = "Basic dXNlcmJvdDpib3Q="
     admintoken = "Basic YWRtaW5ib3Q6Ym90"
 
@@ -159,7 +160,6 @@ def test_cli_setup_authority():
     r = client().simulate_get("/api/signed/test2/", headers={"Accept":"text/plain"})
     assert r.status_code == 415
 
-
     # Test revocations API call
     r = client().simulate_get("/api/revoked/")
     assert r.status_code == 200
@@ -198,10 +198,15 @@ def test_cli_setup_authority():
     r = client().simulate_get("/api/signed/test2/tag/", headers={"Authorization":admintoken})
     assert r.status_code == 200
 
+    # Test revocation
+    r = client().simulate_delete("/api/signed/test2/")
+    assert r.status_code == 401
 
-    # Revoke all valid ones
-    result = runner.invoke(cli, ['revoke', 'test2'])
-    assert not result.exception
+    r = client().simulate_delete("/api/signed/test2/", headers={"Authorization":usertoken})
+    assert r.status_code == 403
+
+    r = client().simulate_delete("/api/signed/test2/", headers={"Authorization":admintoken})
+    assert r.status_code == 200
 
     result = runner.invoke(cli, ['revoke', 'test3'])
     assert not result.exception