canaille-globuzma/tests/core/test_registration.py
2024-03-15 19:58:37 +01:00

152 lines
5.4 KiB
Python

from unittest import mock
import freezegun
from flask import url_for
from canaille.app import models
from canaille.core.endpoints.account import RegistrationPayload
def test_registration_without_email_validation(testclient, backend, foo_group):
"""Tests a nominal registration without email validation."""
testclient.app.config["ENABLE_REGISTRATION"] = True
testclient.app.config["EMAIL_CONFIRMATION"] = False
assert not models.User.query(user_name="newuser")
res = testclient.get(url_for("core.account.registration"), status=200)
res.form["user_name"] = "newuser"
res.form["password1"] = "password"
res.form["password2"] = "password"
res.form["family_name"] = "newuser"
res.form["emails-0"] = "newuser@example.com"
res = res.form.submit()
assert ("success", "Your account has been created successfully.") in res.flashes
user = models.User.get(user_name="newuser")
assert user
user.delete()
def test_registration_with_email_validation(testclient, backend, smtpd, foo_group):
"""Tests a nominal registration with email validation."""
testclient.app.config["ENABLE_REGISTRATION"] = True
with freezegun.freeze_time("2020-01-01 02:00:00"):
res = testclient.get(url_for("core.account.join"))
res.form["email"] = "foo@bar.com"
res = res.form.submit()
assert res.flashes == [
(
"success",
"You will receive soon an email to continue the registration process.",
)
]
assert len(smtpd.messages) == 1
payload = RegistrationPayload(
creation_date_isoformat="2020-01-01T02:00:00+00:00",
user_name="",
user_name_editable=True,
email="foo@bar.com",
groups=[],
)
registration_url = url_for(
"core.account.registration",
data=payload.b64(),
hash=payload.build_hash(),
_external=True,
)
text_mail = smtpd.messages[0].get_payload()[0].get_payload(decode=True).decode()
assert registration_url in text_mail
assert not models.User.query(user_name="newuser")
with freezegun.freeze_time("2020-01-01 02:01:00"):
res = testclient.get(registration_url, status=200)
res.form["user_name"] = "newuser"
res.form["password1"] = "password"
res.form["password2"] = "password"
res.form["family_name"] = "newuser"
res = res.form.submit()
assert res.flashes == [
("success", "Your account has been created successfully."),
]
user = models.User.get(user_name="newuser")
assert user
user.delete()
def test_registration_with_email_already_taken(
testclient, backend, smtpd, user, foo_group
):
"""Be sure to not leak email existence if HIDE_INVALID_LOGINS is true."""
testclient.app.config["ENABLE_REGISTRATION"] = True
testclient.app.config["HIDE_INVALID_LOGINS"] = True
res = testclient.get(url_for("core.account.join"))
res.form["email"] = "john@doe.com"
res = res.form.submit()
assert res.flashes == [
(
"success",
"You will receive soon an email to continue the registration process.",
)
]
testclient.app.config["HIDE_INVALID_LOGINS"] = False
res = testclient.get(url_for("core.account.join"))
res.form["email"] = "john@doe.com"
res = res.form.submit()
assert res.flashes == []
res.mustcontain("The email 'john@doe.com' is already used")
def test_registration_with_email_validation_needs_a_valid_link(
testclient, backend, smtpd, foo_group
):
"""Tests a nominal registration without email validation."""
testclient.app.config["ENABLE_REGISTRATION"] = True
testclient.get(url_for("core.account.registration"), status=403)
def test_join_page_registration_disabled(testclient, backend, smtpd, foo_group):
"""The join page should not be available if registration is disabled."""
testclient.app.config["ENABLE_REGISTRATION"] = False
testclient.get(url_for("core.account.join"), status=404)
def test_join_page_email_confirmation_disabled(testclient, backend, smtpd, foo_group):
"""The join page should directly redirect to the registration page if email
confirmation is disabled."""
testclient.app.config["ENABLE_REGISTRATION"] = True
testclient.app.config["EMAIL_CONFIRMATION"] = False
res = testclient.get(url_for("core.account.join"), status=302)
assert res.location == url_for("core.account.registration")
def test_join_page_already_logged_in(testclient, backend, logged_user, foo_group):
"""The join page should not be accessible for logged users."""
testclient.app.config["ENABLE_REGISTRATION"] = True
testclient.get(url_for("core.account.join"), status=403)
@mock.patch("smtplib.SMTP")
def test_registration_mail_error(SMTP, testclient, backend, smtpd, foo_group):
"""Display an error message if the registration mail could not be sent."""
testclient.app.config["ENABLE_REGISTRATION"] = True
SMTP.side_effect = mock.Mock(side_effect=OSError("unit test mail error"))
res = testclient.get(url_for("core.account.join"))
res.form["email"] = "foo@bar.com"
res = res.form.submit(expect_errors=True)
assert res.flashes == [
(
"error",
"An error happened while sending your registration mail. "
"Please try again in a few minutes. "
"If this still happens, please contact the administrators.",
)
]
assert len(smtpd.messages) == 0