from django.contrib.auth.models import User
|
|
from django.core import mail
|
|
from django.test import TestCase
|
|
from hc.accounts.models import Profile
|
|
from django.conf import settings
|
|
|
|
|
|
class LoginTestCase(TestCase):
|
|
|
|
def test_it_sends_link(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.save()
|
|
|
|
form = {"identity": "[email protected]"}
|
|
|
|
r = self.client.post("/accounts/login/", form)
|
|
self.assertRedirects(r, "/accounts/login_link_sent/")
|
|
|
|
# Alice should be the only existing user
|
|
self.assertEqual(User.objects.count(), 1)
|
|
|
|
# And email should have been sent
|
|
self.assertEqual(len(mail.outbox), 1)
|
|
subject = "Log in to %s" % settings.SITE_NAME
|
|
self.assertEqual(mail.outbox[0].subject, subject)
|
|
|
|
def test_it_sends_link_with_next(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.save()
|
|
|
|
form = {"identity": "[email protected]"}
|
|
|
|
r = self.client.post("/accounts/login/?next=/integrations/add_slack/", form)
|
|
self.assertRedirects(r, "/accounts/login_link_sent/")
|
|
|
|
# The check_token link should have a ?next= query parameter:
|
|
self.assertEqual(len(mail.outbox), 1)
|
|
body = mail.outbox[0].body
|
|
self.assertTrue("/?next=/integrations/add_slack/" in body)
|
|
|
|
def test_it_pops_bad_link_from_session(self):
|
|
self.client.session["bad_link"] = True
|
|
self.client.get("/accounts/login/")
|
|
assert "bad_link" not in self.client.session
|
|
|
|
def test_it_ignores_case(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.save()
|
|
|
|
form = {"identity": "[email protected]"}
|
|
|
|
r = self.client.post("/accounts/login/", form)
|
|
self.assertRedirects(r, "/accounts/login_link_sent/")
|
|
|
|
# There should be exactly one user:
|
|
self.assertEqual(User.objects.count(), 1)
|
|
|
|
profile = Profile.objects.for_user(alice)
|
|
self.assertIn("login", profile.token)
|
|
|
|
def test_it_handles_password(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.set_password("password")
|
|
alice.save()
|
|
|
|
form = {
|
|
"action": "login",
|
|
"email": "[email protected]",
|
|
"password": "password"
|
|
}
|
|
|
|
r = self.client.post("/accounts/login/", form)
|
|
self.assertRedirects(r, "/checks/")
|
|
|
|
def test_it_handles_password_login_with_redirect(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.set_password("password")
|
|
alice.save()
|
|
|
|
form = {
|
|
"action": "login",
|
|
"email": "[email protected]",
|
|
"password": "password"
|
|
}
|
|
|
|
r = self.client.post("/accounts/login/?next=/integrations/add_slack/", form)
|
|
self.assertRedirects(r, "/integrations/add_slack/")
|
|
|
|
def test_it_handles_bad_next_parameter(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.set_password("password")
|
|
alice.save()
|
|
|
|
form = {
|
|
"action": "login",
|
|
"email": "[email protected]",
|
|
"password": "password"
|
|
}
|
|
|
|
r = self.client.post("/accounts/login/?next=/evil/", form)
|
|
self.assertRedirects(r, "/checks/")
|
|
|
|
def test_it_handles_wrong_password(self):
|
|
alice = User(username="alice", email="[email protected]")
|
|
alice.set_password("password")
|
|
alice.save()
|
|
|
|
form = {
|
|
"action": "login",
|
|
"email": "[email protected]",
|
|
"password": "wrong password"
|
|
}
|
|
|
|
r = self.client.post("/accounts/login/", form)
|
|
self.assertContains(r, "Incorrect email or password")
|