forked from Github-Mirrors/canaille
52 lines
1.8 KiB
Python
52 lines
1.8 KiB
Python
from canaille.account import profile_hash
|
|
|
|
|
|
def test_password_reset(testclient, slapd_connection, user):
|
|
user.attr_type_by_name(conn=slapd_connection)
|
|
user.reload(conn=slapd_connection)
|
|
with testclient.app.app_context():
|
|
hash = profile_hash("user", user.userPassword[0])
|
|
|
|
res = testclient.get("/reset/user/" + hash, status=200)
|
|
|
|
res.form["password"] = "foobarbaz"
|
|
res.form["confirmation"] = "foobarbaz"
|
|
res = res.form.submit(status=302)
|
|
|
|
res = res.follow(status=200)
|
|
|
|
with testclient.app.app_context():
|
|
assert user.check_password("foobarbaz")
|
|
assert "Your password has been updated successfuly" in res.text
|
|
user.set_password("correct horse battery staple", conn=slapd_connection)
|
|
|
|
res = testclient.get("/reset/user/" + hash)
|
|
res = res.follow()
|
|
res = res.follow()
|
|
assert "The password reset link that brought you here was invalid." in res.text
|
|
|
|
|
|
def test_password_reset_bad_link(testclient, slapd_connection, user):
|
|
user.attr_type_by_name(conn=slapd_connection)
|
|
user.reload(conn=slapd_connection)
|
|
|
|
res = testclient.get("/reset/user/foobarbaz")
|
|
res = res.follow()
|
|
res = res.follow()
|
|
assert "The password reset link that brought you here was invalid." in res.text
|
|
|
|
|
|
def test_password_reset_bad_password(testclient, slapd_connection, user):
|
|
user.attr_type_by_name(conn=slapd_connection)
|
|
user.reload(conn=slapd_connection)
|
|
with testclient.app.app_context():
|
|
hash = profile_hash("user", user.userPassword[0])
|
|
|
|
res = testclient.get("/reset/user/" + hash, status=200)
|
|
|
|
res.form["password"] = "foobarbaz"
|
|
res.form["confirmation"] = "typo"
|
|
res = res.form.submit(status=200)
|
|
|
|
with testclient.app.app_context():
|
|
assert user.check_password("correct horse battery staple")
|