This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
devicehub-teal/tests/test_user.py

90 lines
3.0 KiB
Python
Raw Normal View History

2018-04-27 17:16:43 +00:00
from base64 import b64decode
from uuid import UUID
import pytest
2018-04-27 17:16:43 +00:00
from sqlalchemy_utils import Password
from werkzeug.exceptions import NotFound
2018-04-27 17:16:43 +00:00
from ereuse_devicehub.client import Client
from ereuse_devicehub.db import db
from ereuse_devicehub.devicehub import Devicehub
from ereuse_devicehub.resources.user import UserDef
from ereuse_devicehub.resources.user.exceptions import WrongCredentials
2018-04-27 17:16:43 +00:00
from ereuse_devicehub.resources.user.models import User
from teal.marshmallow import ValidationError
from tests.conftest import app_context, create_user
2018-04-27 17:16:43 +00:00
@pytest.mark.usefixtures(app_context.__name__)
2018-04-27 17:16:43 +00:00
def test_create_user_method(app: Devicehub):
"""
Tests creating an user through the main method.
This method checks that the token is correct, too.
"""
user_def = app.resources['User'] # type: UserDef
u = user_def.create_user(email='foo@foo.com', password='foo')
user = User.query.filter_by(id=u['id']).one() # type: User
assert user.email == 'foo@foo.com'
assert isinstance(user.token, UUID)
assert User.query.filter_by(email='foo@foo.com').one() == user
2018-04-27 17:16:43 +00:00
@pytest.mark.usefixtures(app_context.__name__)
def test_create_user_email_insensitive():
2018-04-27 17:16:43 +00:00
"""Ensures email is case insensitive."""
user = User(email='FOO@foo.com')
db.session.add(user)
db.session.commit()
# We search in case insensitive manner
u1 = User.query.filter_by(email='foo@foo.com').one()
assert u1 == user
assert u1.email == 'foo@foo.com'
2018-04-27 17:16:43 +00:00
@pytest.mark.usefixtures(app_context.__name__)
def test_hash_password():
2018-04-27 17:16:43 +00:00
"""Tests correct password hashing and equaling."""
user = create_user()
assert isinstance(user.password, Password)
assert user.password == 'foo'
2018-04-27 17:16:43 +00:00
def test_login_success(client: Client, app: Devicehub):
"""
Tests successfully performing login.
This checks that:
- User is returned.
- User has token.
- User has not the password.
"""
with app.app_context():
create_user()
user, _ = client.post({'email': 'foo@foo.com', 'password': 'foo'},
uri='/users/login',
status=200)
assert user['email'] == 'foo@foo.com'
assert UUID(b64decode(user['token'].encode()).decode()[:-1])
assert 'password' not in user
assert user['individuals'][0]['name'] == 'Timmy'
assert user['individuals'][0]['type'] == 'Person'
assert len(user['individuals']) == 1
2018-04-27 17:16:43 +00:00
def test_login_failure(client: Client, app: Devicehub):
"""Tests performing wrong login."""
# Wrong password
with app.app_context():
create_user()
client.post({'email': 'foo@foo.com', 'password': 'wrong pass'},
uri='/users/login',
status=WrongCredentials)
2018-04-27 17:16:43 +00:00
# Wrong URI
client.post({}, uri='/wrong-uri', status=NotFound)
# Malformed data
client.post({}, uri='/users/login', status=ValidationError)
2018-04-27 17:16:43 +00:00
client.post({'email': 'this is not an email', 'password': 'nope'},
uri='/users/login',
status=ValidationError)