test: submit form content as urlencoded string

aekasitt · aekasitt · commit 44acd04f3552 · 2025-09-11T22:03:51.000+07:00
diff --git a/tests/cookie_form.py b/tests/cookie_form.py
@@ -12,6 +12,7 @@
 
 ### Standard packages ###
 from typing import Optional
+from urllib.parse import urlencode
 
 ### Third-party packages ###
 from fastapi.testclient import TestClient
@@ -64,9 +65,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's body ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint ###
-  response = test_client.post("/protected", data=payload)
+  response = test_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 200
@@ -75,7 +77,7 @@ def _() -> tuple[tuple[str, str], ...]:
   assert cookie_token is None
 
   ### Immediately get protected contents again ###
-  response = test_client.post("/protected", data=payload, headers=headers)
+  response = test_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
@@ -116,9 +118,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's form ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint but fails because TestClients defaults to http ###
-  response = test_client.post("/protected", data=payload, headers=headers)
+  response = test_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
@@ -188,9 +191,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's form ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint ###
-  response = test_client.post("/protected", data=payload, headers=headers)
+  response = test_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 200
@@ -199,7 +203,7 @@ def _() -> tuple[tuple[str, str], ...]:
   assert cookie_token is None
 
   ### Immediately get protected contents again ###
-  response = test_client.post("/protected", data=payload, headers=headers)
+  response = test_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
diff --git a/tests/flexible/cookie_form.py b/tests/flexible/cookie_form.py
@@ -11,6 +11,7 @@
 # *************************************************************
 
 ### Standard packages ###
+from urllib.parse import urlencode
 from typing import Optional
 
 ### Third-party packages ###
@@ -66,9 +67,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's body ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint ###
-  response = flexible_client.post("/protected", data=payload, headers=headers)
+  response = flexible_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 200
@@ -77,7 +79,7 @@ def _() -> tuple[tuple[str, str], ...]:
   assert cookie_token is None
 
   ### Immediately get protected contents again ###
-  response = flexible_client.post("/protected", data=payload, headers=headers)
+  response = flexible_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
@@ -117,9 +119,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's form ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint but fails because TestClients defaults to http ###
-  response = flexible_client.post("/protected", data=payload, headers=headers)
+  response = flexible_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
@@ -185,9 +188,10 @@ def _() -> tuple[tuple[str, str], ...]:
   ### Extract `csrf_token` from response to be set as next request's form ###
   csrf_token: Optional[str] = response.json().get("csrf_token", None)
   payload: dict[str, str] = {"csrf-token": csrf_token} if csrf_token is not None else {}
+  content: bytes = urlencode(payload).encode("utf-8")
 
   ### Post to protected endpoint ###
-  response = flexible_client.post("/protected", data=payload, headers=headers)
+  response = flexible_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 200
@@ -196,7 +200,7 @@ def _() -> tuple[tuple[str, str], ...]:
   assert cookie_token is None
 
   ### Immediately get protected contents again ###
-  response = flexible_client.post("/protected", data=payload, headers=headers)
+  response = flexible_client.post("/protected", content=content, headers=headers)
 
   ### Assertions ###
   assert response.status_code == 400
