10185501403
/
phshare
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Cloud computing coursework:Saas 图片社交网站
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5 Commits
1 Branch
1.9 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
phshare/tests/test_auth.py

111 lines
4.7 KiB
Raw Permalink Normal View History

first commit
3 years ago
 
  1. # -*- coding: utf-8 -*-
  2. from flask import url_for
  3. 

  4. from phshare.models import User
  5. from phshare.settings import Operations
  6. from phshare.utils import generate_token
  7. from tests.base import BaseTestCase
  8. 

  9. 

  10. class AuthTestCase(BaseTestCase):
  11. 

  12.     def test_login_normal_user(self):
  13.         response = self.login()
  14.         data = response.get_data(as_text=True)
  15.         self.assertIn('Login success.', data)
  16. 

  17.     def test_login_locked_user(self):
  18.         self.login(email='locked@helloflask.com', password='123')
  19.         response = self.client.get(url_for('user.index', username='locked'))
  20.         data = response.get_data(as_text=True)
  21.         self.assertIn('Your account is locked.', data)
  22. 

  23.     def test_login_blocked_user(self):
  24.         response = self.login(email='blocked@helloflask.com', password='123')
  25.         data = response.get_data(as_text=True)
  26.         self.assertIn('Your account is blocked.', data)
  27. 

  28.     def test_fail_login(self):
  29.         response = self.login(email='wrong-username@helloflask.com', password='wrong-password')
  30.         data = response.get_data(as_text=True)
  31.         self.assertIn('Invalid email or password.', data)
  32. 

  33.     def test_logout_user(self):
  34.         self.login()
  35.         response = self.logout()
  36.         data = response.get_data(as_text=True)
  37.         self.assertIn('Logout success.', data)
  38. 

  39.     def test_login_protect(self):
  40.         response = self.client.get(url_for('main.upload'), follow_redirects=True)
  41.         data = response.get_data(as_text=True)
  42.         self.assertIn('Please log in to access this page.', data)
  43. 

  44.     def test_unconfirmed_user_permission(self):
  45.         self.login(email='unconfirmed@helloflask.com', password='123')
  46.         response = self.client.get(url_for('main.upload'), follow_redirects=True)
  47.         data = response.get_data(as_text=True)
  48.         self.assertIn('Please confirm your account first.', data)
  49. 

  50.     def test_locked_user_permission(self):
  51.         self.login(email='locked@helloflask.com', password='123')
  52.         response = self.client.get(url_for('main.upload'), follow_redirects=True)
  53.         self.assertEqual(response.status_code, 403)
  54. 

  55.     def test_register_account(self):
  56.         response = self.client.post(url_for('auth.register'), data=dict(
  57.             name='swz',
  58.             email='test@helloflask.com',
  59.             username='test',
  60.             password='12345678',
  61.             password2='12345678'
  62.         ), follow_redirects=True)
  63.         data = response.get_data(as_text=True)
  64.         self.assertIn('Confirm email sent, check your inbox.', data)
  65. 

  66.     def test_confirm_account(self):
  67.         user = User.query.filter_by(email='unconfirmed@helloflask.com').first()
  68.         self.assertFalse(user.confirmed)
  69.         token = generate_token(user=user, operation='confirm')
  70.         self.login(email='unconfirmed@helloflask.com', password='123')
  71.         response = self.client.get(url_for('auth.confirm', token=token), follow_redirects=True)
  72.         data = response.get_data(as_text=True)
  73.         self.assertIn('Account confirmed.', data)
  74.         self.assertTrue(user.confirmed)
  75. 

  76.     def test_bad_confirm_token(self):
  77.         self.login(email='unconfirmed@helloflask.com', password='123')
  78.         response = self.client.get(url_for('auth.confirm', token='bad token'), follow_redirects=True)
  79.         data = response.get_data(as_text=True)
  80.         self.assertIn('Invalid or expired token.', data)
  81.         self.assertNotIn('Account confirmed.', data)
  82. 

  83.     def test_reset_password(self):
  84.         response = self.client.post(url_for('auth.forget_password'), data=dict(
  85.             email='normal@helloflask.com',
  86.         ), follow_redirects=True)
  87.         data = response.get_data(as_text=True)
  88.         self.assertIn('Password reset email sent, check your inbox.', data)
  89.         user = User.query.filter_by(email='normal@helloflask.com').first()
  90.         self.assertTrue(user.validate_password('123'))
  91. 

  92.         token = generate_token(user=user, operation=Operations.RESET_PASSWORD)
  93.         response = self.client.post(url_for('auth.reset_password', token=token), data=dict(
  94.             email='normal@helloflask.com',
  95.             password='new-password',
  96.             password2='new-password'
  97.         ), follow_redirects=True)
  98.         data = response.get_data(as_text=True)
  99.         self.assertIn('Password updated.', data)
  100.         self.assertTrue(user.validate_password('new-password'))
  101.         self.assertFalse(user.validate_password('123'))
  102. 

  103.         # bad token
  104.         response = self.client.post(url_for('auth.reset_password', token='bad token'), data=dict(
  105.             email='normal@helloflask.com',
  106.             password='new-password',
  107.             password2='new-password'
  108.         ), follow_redirects=True)
  109.         data = response.get_data(as_text=True)
  110.         self.assertIn('Invalid or expired link.', data)
  111.         self.assertNotIn('Password updated.', data)