canaille-globuzma/tests/test_account.py

import mock
from canaille.account import profile_hash


def test_login_and_out(testclient, slapd_connection, user):
    with testclient.session_transaction() as session:
        assert session.get("user_dn") is None

    res = testclient.get("/login", status=200)

    res.form["login"] = "John Doe"
    res.form["password"] = "correct horse battery staple"
    res = res.form.submit()
    res = res.follow()
    res = res.follow()
    assert 200 == res.status_code

    with testclient.session_transaction() as session:
        assert user.dn == session.get("user_dn")

    res = testclient.get("/logout")
    res = res.follow()
    res = res.follow()
    assert 200 == res.status_code

    with testclient.session_transaction() as session:
        assert session.get("user_dn") is None


def test_login_wrong_password(testclient, slapd_connection, user):
    with testclient.session_transaction() as session:
        assert session.get("user_dn") is None

    res = testclient.get("/login", status=200)

    res.form["login"] = "John Doe"
    res.form["password"] = "incorrect horse"
    res = res.form.submit()
    assert 200 == res.status_code
    assert b"Login failed, please check your information" in res.body


def test_login_no_password(testclient, slapd_connection, user):
    with testclient.session_transaction() as session:
        assert session.get("user_dn") is None

    res = testclient.get("/login", status=200)

    res.form["login"] = "John Doe"
    res.form["password"] = ""
    res = res.form.submit()
    assert 200 == res.status_code
    assert b"Login failed, please check your information" in res.body


def test_login_with_alternate_attribute(testclient, slapd_connection, user):
    res = testclient.get("/login", status=200)

    res.form["login"] = "user"
    res.form["password"] = "correct horse battery staple"
    res = res.form.submit()
    res = res.follow()
    assert 302 == res.status_code
    res = res.follow()
    assert 200 == res.status_code

    with testclient.session_transaction() as session:
        assert user.dn == session.get("user_dn")


@mock.patch("smtplib.SMTP")
def test_password_forgotten(SMTP, testclient, slapd_connection, user):
    res = testclient.get("/reset", status=200)

    res.form["login"] = "user"
    res = res.form.submit()
    assert 200 == res.status_code
    assert "A password reset link has been sent at your email address." in res.text

    SMTP.assert_called_once_with(host="localhost", port=25)


@mock.patch("smtplib.SMTP")
def test_password_forgotten_invalid_form(SMTP, testclient, slapd_connection, user):
    res = testclient.get("/reset", status=200)

    res.form["login"] = ""
    res = res.form.submit()
    assert 200 == res.status_code
    assert "Could not send the password reset link." in res.text

    SMTP.assert_not_called()


@mock.patch("smtplib.SMTP")
def test_password_forgotten_invalid(SMTP, testclient, slapd_connection, user):
    res = testclient.get("/reset", status=200)

    res.form["login"] = "i-dont-really-exist"
    res = res.form.submit()
    assert 200 == res.status_code
    assert "A password reset link has been sent at your email address." in res.text

    SMTP.assert_not_called()


def test_password_reset(testclient, slapd_connection, user):
    user.attr_type_by_name(conn=slapd_connection)
    user.reload(conn=slapd_connection)
    with testclient.app.app_context():
        hash = profile_hash("user", user.userPassword[0])

    res = testclient.get("/reset/user/" + hash, status=200)

    res.form["password"] = "foobarbaz"
    res.form["confirmation"] = "foobarbaz"
    res = res.form.submit()
    assert 302 == res.status_code

    res = res.follow()
    assert 200 == res.status_code

    with testclient.app.app_context():
        assert user.check_password("foobarbaz")
    assert "Your password has been updated successfuly" in res.text
    user.set_password("correct horse battery staple", conn=slapd_connection)

    res = testclient.get("/reset/user/" + hash)
    res = res.follow()
    res = res.follow()
    assert "The password reset link that brought you here was invalid." in res.text


def test_password_reset_bad_link(testclient, slapd_connection, user):
    user.attr_type_by_name(conn=slapd_connection)
    user.reload(conn=slapd_connection)

    res = testclient.get("/reset/user/foobarbaz")
    res = res.follow()
    res = res.follow()
    assert "The password reset link that brought you here was invalid." in res.text


def test_password_reset_bad_password(testclient, slapd_connection, user):
    user.attr_type_by_name(conn=slapd_connection)
    user.reload(conn=slapd_connection)
    with testclient.app.app_context():
        hash = profile_hash("user", user.userPassword[0])

    res = testclient.get("/reset/user/" + hash, status=200)

    res.form["password"] = "foobarbaz"
    res.form["confirmation"] = "typo"
    res = res.form.submit()
    assert 200 == res.status_code

    with testclient.app.app_context():
        assert user.check_password("correct horse battery staple")
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`import mock`
			`from canaille.account import profile_hash`


			`def test_login_and_out(testclient, slapd_connection, user):`
Login tests 2020-08-20 08:31:36 +00:00			`with testclient.session_transaction() as session:`
			`assert session.get("user_dn") is None`

Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/login", status=200)`
Login tests 2020-08-20 08:31:36 +00:00
			`res.form["login"] = "John Doe"`
			`res.form["password"] = "correct horse battery staple"`
			`res = res.form.submit()`
			`res = res.follow()`
User token list view 2020-08-27 08:50:50 +00:00			`res = res.follow()`
Login tests 2020-08-20 08:31:36 +00:00			`assert 200 == res.status_code`

			`with testclient.session_transaction() as session:`
			`assert user.dn == session.get("user_dn")`

			`res = testclient.get("/logout")`
			`res = res.follow()`
			`res = res.follow()`
			`assert 200 == res.status_code`

			`with testclient.session_transaction() as session:`
			`assert session.get("user_dn") is None`


Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`def test_login_wrong_password(testclient, slapd_connection, user):`
Login tests 2020-08-20 08:31:36 +00:00			`with testclient.session_transaction() as session:`
			`assert session.get("user_dn") is None`

Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/login", status=200)`
Login tests 2020-08-20 08:31:36 +00:00
			`res.form["login"] = "John Doe"`
			`res.form["password"] = "incorrect horse"`
			`res = res.form.submit()`
			`assert 200 == res.status_code`
			`assert b"Login failed, please check your information" in res.body`


Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`def test_login_no_password(testclient, slapd_connection, user):`
Login tests 2020-08-20 08:31:36 +00:00			`with testclient.session_transaction() as session:`
			`assert session.get("user_dn") is None`

Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/login", status=200)`
Login tests 2020-08-20 08:31:36 +00:00
			`res.form["login"] = "John Doe"`
			`res.form["password"] = ""`
			`res = res.form.submit()`
			`assert 200 == res.status_code`
			`assert b"Login failed, please check your information" in res.body`
Alternate login filters 2020-08-20 08:45:33 +00:00

Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00			`def test_login_with_alternate_attribute(testclient, slapd_connection, user):`
Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/login", status=200)`
Alternate login filters 2020-08-20 08:45:33 +00:00
			`res.form["login"] = "user"`
			`res.form["password"] = "correct horse battery staple"`
			`res = res.form.submit()`
			`res = res.follow()`
User token list view 2020-08-27 08:50:50 +00:00			`assert 302 == res.status_code`
			`res = res.follow()`
Alternate login filters 2020-08-20 08:45:33 +00:00			`assert 200 == res.status_code`

			`with testclient.session_transaction() as session:`
			`assert user.dn == session.get("user_dn")`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00

			`@mock.patch("smtplib.SMTP")`
			`def test_password_forgotten(SMTP, testclient, slapd_connection, user):`
Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/reset", status=200)`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00
			`res.form["login"] = "user"`
			`res = res.form.submit()`
			`assert 200 == res.status_code`
			`assert "A password reset link has been sent at your email address." in res.text`

			`SMTP.assert_called_once_with(host="localhost", port=25)`


			`@mock.patch("smtplib.SMTP")`
			`def test_password_forgotten_invalid_form(SMTP, testclient, slapd_connection, user):`
Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/reset", status=200)`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00
			`res.form["login"] = ""`
			`res = res.form.submit()`
			`assert 200 == res.status_code`
			`assert "Could not send the password reset link." in res.text`

			`SMTP.assert_not_called()`


			`@mock.patch("smtplib.SMTP")`
			`def test_password_forgotten_invalid(SMTP, testclient, slapd_connection, user):`
Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/reset", status=200)`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00
			`res.form["login"] = "i-dont-really-exist"`
			`res = res.form.submit()`
			`assert 200 == res.status_code`
			`assert "A password reset link has been sent at your email address." in res.text`

			`SMTP.assert_not_called()`


			`def test_password_reset(testclient, slapd_connection, user):`
			`user.attr_type_by_name(conn=slapd_connection)`
			`user.reload(conn=slapd_connection)`
			`with testclient.app.app_context():`
			`hash = profile_hash("user", user.userPassword[0])`

Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/reset/user/" + hash, status=200)`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00
			`res.form["password"] = "foobarbaz"`
			`res.form["confirmation"] = "foobarbaz"`
			`res = res.form.submit()`
			`assert 302 == res.status_code`

			`res = res.follow()`
			`assert 200 == res.status_code`

			`with testclient.app.app_context():`
			`assert user.check_password("foobarbaz")`
			`assert "Your password has been updated successfuly" in res.text`
			`user.set_password("correct horse battery staple", conn=slapd_connection)`

			`res = testclient.get("/reset/user/" + hash)`
			`res = res.follow()`
			`res = res.follow()`
			`assert "The password reset link that brought you here was invalid." in res.text`


			`def test_password_reset_bad_link(testclient, slapd_connection, user):`
			`user.attr_type_by_name(conn=slapd_connection)`
			`user.reload(conn=slapd_connection)`

			`res = testclient.get("/reset/user/foobarbaz")`
			`res = res.follow()`
			`res = res.follow()`
			`assert "The password reset link that brought you here was invalid." in res.text`


			`def test_password_reset_bad_password(testclient, slapd_connection, user):`
			`user.attr_type_by_name(conn=slapd_connection)`
			`user.reload(conn=slapd_connection)`
			`with testclient.app.app_context():`
			`hash = profile_hash("user", user.userPassword[0])`

Minor test refactoring 2020-10-30 18:19:34 +00:00			`res = testclient.get("/reset/user/" + hash, status=200)`
Password mechanism recovery. Fixes #3 2020-10-22 15:37:01 +00:00
			`res.form["password"] = "foobarbaz"`
			`res.form["confirmation"] = "typo"`
			`res = res.form.submit()`
			`assert 200 == res.status_code`

			`with testclient.app.app_context():`
			`assert user.check_password("correct horse battery staple")`