globuzma/canaille-globuzma
1
0
Fork 0
forked from Github-Mirrors/canaille
Code Pull requests Activity
canaille-globuzma/tests/test_forgotten_password.py
Éloi Rivard 87d57ea9c1 unit tests: forgotten mail sending error
2022-12-22 17:02:07 +01:00

94 lines
3.2 KiB
Python
Raw Blame History

from unittest import mock
def test_password_forgotten_disabled(smtpd, testclient, user):
testclient.app.config["ENABLE_PASSWORD_RECOVERY"] = False
testclient.get("/reset", status=404)
testclient.get("/reset/uid/hash", status=404)
res = testclient.get("/login")
assert "Forgotten password" not in res.text
def test_password_forgotten(smtpd, testclient, user):
res = testclient.get("/reset", status=200)
res.form["login"] = "user"
res = res.form.submit(status=200)
assert "A password reset link has been sent at your email address." in res.text
assert "Send again" in res.text
assert len(smtpd.messages) == 1
def test_password_forgotten_invalid_form(smtpd, testclient, user):
res = testclient.get("/reset", status=200)
res.form["login"] = ""
res = res.form.submit(status=200)
assert "Could not send the password reset link." in res.text
assert len(smtpd.messages) == 0
def test_password_forgotten_invalid(smtpd, testclient, user):
testclient.app.config["HIDE_INVALID_LOGINS"] = True
res = testclient.get("/reset", status=200)
res.form["login"] = "i-dont-really-exist"
res = res.form.submit(status=200)
assert "A password reset link has been sent at your email address." in res.text
assert "The login 'i-dont-really-exist' does not exist" not in res.text
testclient.app.config["HIDE_INVALID_LOGINS"] = False
res = testclient.get("/reset", status=200)
res.form["login"] = "i-dont-really-exist"
res = res.form.submit(status=200)
assert "A password reset link has been sent at your email address." not in res.text
assert "The login 'i-dont-really-exist' does not exist" in res.text
assert len(smtpd.messages) == 0
def test_password_forgotten_invalid_when_user_cannot_self_edit(smtpd, testclient, user):
testclient.app.config["ACL"]["DEFAULT"]["PERMISSIONS"] = []
testclient.app.config["HIDE_INVALID_LOGINS"] = False
res = testclient.get("/reset", status=200)
res.form["login"] = "user"
res = res.form.submit(status=200)
assert "A password reset link has been sent at your email address." not in res.text
assert (
"The user 'John (johnny) Doe' does not have permissions to update their password."
in res.text
)
testclient.app.config["HIDE_INVALID_LOGINS"] = True
res = testclient.get("/reset", status=200)
res.form["login"] = "user"
res = res.form.submit(status=200)
assert (
"The user 'John (johnny) Doe' does not have permissions to update their password."
not in res.text
)
assert "A password reset link has been sent at your email address." in res.text
assert len(smtpd.messages) == 0
@mock.patch("smtplib.SMTP")
def test_password_forgotten_mail_error(SMTP, smtpd, testclient, user):
SMTP.side_effect = mock.Mock(side_effect=OSError("unit test mail error"))
res = testclient.get("/reset", status=200)
res.form["login"] = "user"
res = res.form.submit(status=200, expect_errors=True)
assert "A password reset link has been sent at your email address." not in res.text
assert "We encountered an issue while we sent the password recovery email." in res
assert "Send again" in res.text
assert len(smtpd.messages) == 0
View git blame Copy permalink