def test_missing_secret_key(app): app.config['SECRET_KEY'] = None with app.test_request_context(): with pytest.raises(ValueError): csrf_token.generate_csrf()
def test_validate_csrf(app): with app.test_request_context(): assert not csrf_token.validate_csrf('ff##dd') token = csrf_token.generate_csrf() assert csrf_token.validate_csrf(token)
def test_validate_not_expiring_csrf(app): with app.test_request_context(): token = csrf_token.generate_csrf(time_limit=False) assert csrf_token.validate_csrf(token, time_limit=False)
def csrftoken(): return csrf_token.generate_csrf()