zitadel
diff --git a/‎poetry.lock‎
Lines changed: 16 additions & 1 deletion b/‎poetry.lock‎
Lines changed: 16 additions & 1 deletion
diff --git a/‎pyproject.toml‎
Lines changed: 3 additions & 2 deletions b/‎pyproject.toml‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎spec/__init__.py‎ b/‎spec/__init__.py‎
diff --git a/‎spec/conftest.py‎
Lines changed: 7 additions & 0 deletions b/‎spec/conftest.py‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎spec/sdk_test_using_personal_access_token_authentication_spec.py‎
Lines changed: 71 additions & 0 deletions b/‎spec/sdk_test_using_personal_access_token_authentication_spec.py‎
Lines changed: 71 additions & 0 deletions
@@ -37,6 +37,7 @@ flake8 = ">= 4.0.0"
 types-python-dateutil = ">= 2.8.19.14"
 mypy = ">= 1.5"
 testcontainers = "3.7.1"
+python-dotenv = "1.0.1"
 
 [build-system]
 requires = ["poetry-core>=1.0.0"]
@@ -46,6 +47,8 @@ build-backend = "poetry.core.masonry.api"
 envlist = ["py3"]
 
 [tool.pytest.ini_options]
+testpaths = ["test", "spec"]
+python_files = "test_*.py *_spec.py"
 addopts = [
     "--cov=zitadel_client",
     "--cov-report=html:build/coverage/html",
@@ -68,8 +71,6 @@ files = [
 	"zitadel_client",
 	"tests",
 ]
-# TODO: enable "strict" once all these individual checks are passing
-# strict = true
 
 # List from: https://mypy.readthedocs.io/en/stable/existing_code.html#introduce-stricter-options
 warn_unused_configs = true
 
@@ -0,0 +1,7 @@
+import pytest
+from dotenv import load_dotenv
+
+@pytest.fixture(scope="session", autouse=True)
+def load_env():
+    """Load the .env file for the entire test session."""
+    load_dotenv()
@@ -0,0 +1,71 @@
+import pytest
+import uuid
+import os
+import zitadel_client as zitadel
+from zitadel_client.auth.personal_access_token_authenticator import PersonalAccessTokenAuthenticator
+from zitadel_client.exceptions import UnauthorizedException
+
+@pytest.fixture
+def valid_token():
+    """Fixture to return a valid personal access token."""
+    return os.getenv("AUTH_TOKEN")
+
+@pytest.fixture
+def invalid_token():
+    """Fixture to return an invalid token."""
+    return "whoops"
+
+@pytest.fixture
+def base_url():
+    """Fixture to return the base URL."""
+    return os.getenv("BASE_URL")
+
+@pytest.fixture
+def user_id(valid_token, base_url):
+    """Fixture to create a user and return their ID."""
+    with zitadel.Zitadel(PersonalAccessTokenAuthenticator(base_url, valid_token)) as client:
+        try:
+            response = client.users.add_human_user(
+                body=zitadel.V2AddHumanUserRequest(
+                    username=uuid.uuid4().hex,
+                    profile=zitadel.V2SetHumanProfile(given_name="John", family_name="Doe"),
+                    email=zitadel.V2SetHumanEmail(email=f"johndoe{uuid.uuid4().hex}@caos.ag")
+                )
+            )
+            print("User created:", response)
+            return response.user_id
+        except Exception as e:
+            pytest.fail(f"Exception while creating user: {e}")
+
+def test_should_deactivate_and_reactivate_user_with_valid_token(user_id, valid_token, base_url):
+    """Test to (de)activate the user with a valid token."""
+    with zitadel.Zitadel(PersonalAccessTokenAuthenticator(base_url, valid_token)) as client:
+        try:
+            deactivate_response = client.users.deactivate_user(user_id=user_id)
+            print("User deactivated:", deactivate_response)
+
+            reactivate_response = client.users.reactivate_user(user_id=user_id)
+            print("User reactivated:", reactivate_response)
+            # Adjust based on actual response format
+            # assert reactivate_response["status"] == "success"
+        except Exception as e:
+            pytest.fail(f"Exception when calling deactivate_user or reactivate_user with valid token: {e}")
+
+def test_should_not_deactivate_or_reactivate_user_with_invalid_token(user_id, invalid_token, base_url):
+    """Test to attempt (de)activating the user with an invalid token."""
+    with zitadel.Zitadel(PersonalAccessTokenAuthenticator(base_url, invalid_token)) as client:
+        try:
+            client.users.deactivate_user(user_id=user_id)
+            pytest.fail("Expected exception when deactivating user with invalid token, but got response.")
+        except UnauthorizedException as e:
+            print("Caught expected UnauthorizedException:", e)
+        except Exception as e:
+            pytest.fail(f"Invalid exception when calling the function: {e}")
+
+        try:
+            client.users.reactivate_user(user_id=user_id)
+            pytest.fail("Expected exception when reactivating user with invalid token, but got response.")
+        except UnauthorizedException as e:
+            print("Caught expected UnauthorizedException:", e)
+        except Exception as e:
+            pytest.fail(f"Invalid exception when calling the function: {e}")