def testSetAPIToken(self):
result = connection.execute(auth_user_table.insert({'email': 'a'}))
user_id = result.inserted_primary_key[0]
token = generate_api_token()
connection.execute(set_api_token(token=token, auth_user_id=user_id))
user = get_auth_user(connection, user_id)
self.assertTrue(bcrypt_sha256.verify(token, user.token))
def testVerifyAPIToken(self):
result = connection.execute(auth_user_table.insert({'email': 'a'}))
user_id = result.inserted_primary_key[0]
token = generate_api_token()
connection.execute(set_api_token(token=token, auth_user_id=user_id))
self.assertTrue(
verify_api_token(connection, token=token, email='a'))
self.assertFalse(
verify_api_token(connection, token=generate_api_token(),
email='a'))
def testTokenExpires(self):
result = connection.execute(auth_user_table.insert({'email': 'a'}))
user_id = result.inserted_primary_key[0]
token = generate_api_token()
exp = timedelta(hours=1)
connection.execute(
set_api_token(token=token, auth_user_id=user_id, expiration=exp))
self.assertTrue(
verify_api_token(connection, token=token, email='a'))
token2 = generate_api_token()
exp2 = timedelta(hours=-1)
connection.execute(set_api_token(
token=token2,
auth_user_id=user_id,
expiration=exp2))
self.assertFalse(
verify_api_token(connection, token=token2, email='a'))
def testNoDefaultToken(self):
connection.execute(auth_user_table.insert({'email': 'a'}))
self.assertFalse(
verify_api_token(connection, token=generate_api_token(),
email='a'))
def testGetAuthUserByEmail(self):
connection.execute(auth_user_table.insert({'email': 'a'}))
user = get_auth_user_by_email(connection, 'a')
self.assertEqual(user.email, 'a')
def testGetAuthUser(self):
result = connection.execute(auth_user_table.insert({'email': 'a'}))
user_id = result.inserted_primary_key[0]
user = get_auth_user(connection, user_id)
self.assertEqual(user.email, 'a')
