def test_is_2fa_enabled():
user_id = db_utils.create_user()
tfa_secret = pyotp.random_base32()
tfa_secret_encrypted = tfa._encrypt_totp_secret(tfa_secret)
# 2FA is not enabled
assert not tfa.is_2fa_enabled(user_id)
# 2FA is enabled
_insert_2fa_secret(user_id, tfa_secret_encrypted)
assert tfa.is_2fa_enabled(user_id)
def test_is_2fa_enabled():
user_id = db_utils.create_user()
tfa_secret = pyotp.random_base32()
tfa_secret_encrypted = tfa._encrypt_totp_secret(tfa_secret)
# 2FA is not enabled
assert not tfa.is_2fa_enabled(user_id)
# 2FA is enabled
_insert_2fa_secret(user_id, tfa_secret_encrypted)
assert tfa.is_2fa_enabled(user_id)
def test_force_deactivate():
user_id = db_utils.create_user()
tfa_secret = pyotp.random_base32()
tfa_secret_encrypted = tfa._encrypt_totp_secret(tfa_secret)
_insert_2fa_secret(user_id, tfa_secret_encrypted)
_insert_recovery_code(user_id)
# Verify that force_deactivate() functions as expected.
assert tfa.is_2fa_enabled(user_id)
assert tfa.get_number_of_recovery_codes(user_id) == 1
tfa.force_deactivate(user_id)
assert not tfa.is_2fa_enabled(user_id)
assert tfa.get_number_of_recovery_codes(user_id) == 0
def test_force_deactivate():
user_id = db_utils.create_user()
tfa_secret = pyotp.random_base32()
tfa_secret_encrypted = tfa._encrypt_totp_secret(tfa_secret)
_insert_2fa_secret(user_id, tfa_secret_encrypted)
_insert_recovery_code(user_id)
# Verify that force_deactivate() functions as expected.
assert tfa.is_2fa_enabled(user_id)
assert tfa.get_number_of_recovery_codes(user_id) == 1
tfa.force_deactivate(user_id)
assert not tfa.is_2fa_enabled(user_id)
assert tfa.get_number_of_recovery_codes(user_id) == 0
def tfa_status_get_(request):
return Response(
define.webpage(request.userid,
"control/2fa/status.html", [
tfa.is_2fa_enabled(request.userid),
tfa.get_number_of_recovery_codes(request.userid)
],
title="2FA Status"))
def inner(request):
if two_factor_auth.is_2fa_enabled(request.userid):
raise WeasylError("TwoFactorAuthenticationRequireDisbled")
return view_callable(request)
def tfa_status_get_(request):
return Response(define.webpage(request.userid, "control/2fa/status.html", [
tfa.is_2fa_enabled(request.userid), tfa.get_number_of_recovery_codes(request.userid)
], title="2FA Status"))
