def test_is_valid_token(db_conn): assert not is_valid_token({'id': uuid.uuid4()}, '') create_test_users(db_conn) user = get_user_by_id(db_conn, {'id': user_a_uuid}) token = get_email_token(user) assert not is_valid_token(user, 'qyzjosinmal1234') token = get_email_token(user) assert is_valid_token(user, token)
def test_is_valid_token(db_conn, users_table): """ Expect a valid token to be approved. Expect an invalid token to not be approved. """ users_table.insert({"id": "abcd1234", "name": "Dalton", "email": "*****@*****.**", "password": "******"}).run( db_conn ) user = get_user({"id": "abcd1234"}, db_conn) token = get_email_token(user, send_email=False) assert is_valid_token(user, token) assert not is_valid_token(user, "abcd1234")
def test_is_valid_token(db_conn, users_table): """ Expect a valid token to be approved. Expect an invalid token to not be approved. """ users_table.insert({ 'id': 'abcd1234', 'name': 'Dalton', 'email': '*****@*****.**', 'password': '******', }).run(db_conn) user = get_user({'id': 'abcd1234'}, db_conn) token = get_email_token(user, send_email=False) assert is_valid_token(user, token) assert not is_valid_token(user, 'abcd1234')
def create_password_route(request, user_id): """ Update a user's password if the token is valid. """ db_conn = request['db_conn'] user = get_user(db_conn, {'id': user_id}) if not user: return abort(404, 'FstipA94SDa0qZ3IwRtcMQ') token = request['params'].get('token') valid = is_valid_token(user, token) if not valid: return abort(403, 'qe27rSkpQbi49-pbqEl7Kw') given_password = request['params'].get('password') update_user_password(db_conn, user, {'password': given_password}) return _log_in(user)
def create_password_route(request, user_id): """ Update a user's password if the token is valid. """ db_conn = request["db_conn"] user = get_user({"id": user_id}, db_conn) if not user: return abort(404) token = request["params"].get("token") valid = is_valid_token(user, token) if not valid: return abort(403) given_password = request["params"].get("password") update_user_password(user, {"password": given_password}, db_conn) return _log_in(user)
def create_password_route(request, user_id): """ Update a user's password if the token is valid. """ db_conn = request['db_conn'] user = get_user({'id': user_id}, db_conn) if not user: return abort(404) token = request['params'].get('token') valid = is_valid_token(user, token) if not valid: return abort(403) given_password = request['params'].get('password') update_user_password(user, {'password': given_password}, db_conn) return _log_in(user)