feat: local storage logic & endpoints

tests/test_upload_stream_api.py

@@ -0,0 +1,185 @@
+"""Integration tests for upload and streaming endpoints.
+
+Requires a reachable Postgres; skips otherwise.
+"""
+
+import asyncio
+import os
+from collections.abc import AsyncIterator
+from pathlib import Path
+
+import pytest
+from app.core.config import get_settings
+from app.infrastructure.db import Base, dispose_engine, get_engine, session_scope
+from app.infrastructure.db.repositories import (
+    SqlAlchemyRefreshTokenRepository,
+    SqlAlchemyUserRepository,
+)
+from asgi_lifespan import LifespanManager
+from httpx import ASGITransport, AsyncClient
+
+pytestmark = pytest.mark.asyncio
+
+_db_reachable_cache: bool | None = None
+
+
+async def _db_reachable() -> bool:
+    global _db_reachable_cache
+    if _db_reachable_cache is not None:
+        return _db_reachable_cache
+
+    from sqlalchemy import text
+
+    try:
+        async with asyncio.timeout(3):
+            async with get_engine().connect() as conn:
+                await conn.execute(text("SELECT 1"))
+        _db_reachable_cache = True
+    except Exception:
+        _db_reachable_cache = False
+    return _db_reachable_cache
+
+
+@pytest.fixture
+async def api(tmp_path: Path) -> AsyncIterator[AsyncClient]:
+    if not await _db_reachable():
+        pytest.skip("Postgres not reachable — integration test skipped.")
+
+    os.environ["MEDIA_PATH"] = str(tmp_path)
+    get_settings.cache_clear()
+
+    # Also reset the file storage singleton so it picks up the new media_path
+    import app.infrastructure.storage.provider as _storage_provider
+
+    _storage_provider._storage = None
+
+    try:
+        async with get_engine().begin() as conn:
+            await conn.run_sync(Base.metadata.drop_all)
+            await conn.run_sync(Base.metadata.create_all)
+
+        from app.application.user_service import UserService
+        from app.core.security import Argon2PasswordHasher
+
+        async with session_scope() as session:
+            await UserService(
+                users=SqlAlchemyUserRepository(session),
+                refresh_tokens=SqlAlchemyRefreshTokenRepository(session),
+                hasher=Argon2PasswordHasher(),
+            ).create_user(username="testuser", password="testpass1", is_superuser=False)
+
+        from app.main import create_app
+
+        app = create_app()
+        async with LifespanManager(app):
+            transport = ASGITransport(app=app)
+            async with AsyncClient(transport=transport, base_url="http://test") as client:
+                yield client
+
+        async with get_engine().begin() as conn:
+            await conn.run_sync(Base.metadata.drop_all)
+        await dispose_engine()
+    finally:
+        _storage_provider._storage = None
+        os.environ.pop("MEDIA_PATH", None)
+        get_settings.cache_clear()
+
+
+async def _login(api: AsyncClient) -> str:
+    resp = await api.post(
+        "/api/v1/auth/login", json={"username": "testuser", "password": "testpass1"}
+    )
+    assert resp.status_code == 200
+    return str(resp.json()["access_token"])
+
+
+async def test_upload_creates_track(api: AsyncClient) -> None:
+    token = await _login(api)
+    audio = b"fake mp3 bytes" * 100
+
+    resp = await api.post(
+        "/api/v1/upload",
+        files={"file": ("song.mp3", audio, "audio/mpeg")},
+        headers={"Authorization": f"Bearer {token}"},
+    )
+    assert resp.status_code == 200, resp.text
+    body = resp.json()
+    assert body["already_exists"] is False
+    assert body["title"] == "song"
+    assert "track_id" in body
+
+
+async def test_upload_dedup(api: AsyncClient) -> None:
+    token = await _login(api)
+    audio = b"same content" * 50
+
+    first = await api.post(
+        "/api/v1/upload",
+        files={"file": ("a.mp3", audio, "audio/mpeg")},
+        headers={"Authorization": f"Bearer {token}"},
+    )
+    assert first.status_code == 200
+    assert first.json()["already_exists"] is False
+
+    second = await api.post(
+        "/api/v1/upload",
+        files={"file": ("b.mp3", audio, "audio/mpeg")},
+        headers={"Authorization": f"Bearer {token}"},
+    )
+    assert second.status_code == 200
+    assert second.json()["already_exists"] is True
+    assert second.json()["track_id"] == first.json()["track_id"]
+
+
+async def test_stream_full(api: AsyncClient) -> None:
+    token = await _login(api)
+    audio = b"audio data for streaming" * 10
+
+    up = await api.post(
+        "/api/v1/upload",
+        files={"file": ("track.mp3", audio, "audio/mpeg")},
+        headers={"Authorization": f"Bearer {token}"},
+    )
+    assert up.status_code == 200
+    track_id = up.json()["track_id"]
+
+    resp = await api.get(f"/api/v1/stream/{track_id}")
+    assert resp.status_code == 200
+    assert resp.content == audio
+    assert resp.headers["content-type"].startswith("audio/mpeg")
+    assert "accept-ranges" in resp.headers
+
+
+async def test_stream_range(api: AsyncClient) -> None:
+    token = await _login(api)
+    audio = b"0123456789" * 10
+
+    up = await api.post(
+        "/api/v1/upload",
+        files={"file": ("range.mp3", audio, "audio/mpeg")},
+        headers={"Authorization": f"Bearer {token}"},
+    )
+    assert up.status_code == 200
+    track_id = up.json()["track_id"]
+
+    resp = await api.get(
+        f"/api/v1/stream/{track_id}",
+        headers={"Range": "bytes=0-9"},
+    )
+    assert resp.status_code == 206
+    assert resp.content == b"0123456789"
+    assert resp.headers["content-range"] == f"bytes 0-9/{len(audio)}"
+    assert resp.headers["content-length"] == "10"
+
+
+async def test_stream_not_found(api: AsyncClient) -> None:
+    resp = await api.get("/api/v1/stream/00000000-0000-0000-0000-000000000000")
+    assert resp.status_code == 404
+
+
+async def test_upload_requires_auth(api: AsyncClient) -> None:
+    resp = await api.post(
+        "/api/v1/upload",
+        files={"file": ("x.mp3", b"data", "audio/mpeg")},
+    )
+    assert resp.status_code == 401