def testSetAPIToken(self): result = connection.execute(auth_user_table.insert({'email': 'a'})) user_id = result.inserted_primary_key[0] token = generate_api_token() connection.execute(set_api_token(token=token, auth_user_id=user_id)) user = get_auth_user(connection, user_id) self.assertTrue(bcrypt_sha256.verify(token, user.token))
def testVerifyAPIToken(self): result = connection.execute(auth_user_table.insert({'email': 'a'})) user_id = result.inserted_primary_key[0] token = generate_api_token() connection.execute(set_api_token(token=token, auth_user_id=user_id)) self.assertTrue( verify_api_token(connection, token=token, email='a')) self.assertFalse( verify_api_token(connection, token=generate_api_token(), email='a'))
def testTokenExpires(self): result = connection.execute(auth_user_table.insert({'email': 'a'})) user_id = result.inserted_primary_key[0] token = generate_api_token() exp = timedelta(hours=1) connection.execute( set_api_token(token=token, auth_user_id=user_id, expiration=exp)) self.assertTrue( verify_api_token(connection, token=token, email='a')) token2 = generate_api_token() exp2 = timedelta(hours=-1) connection.execute(set_api_token( token=token2, auth_user_id=user_id, expiration=exp2)) self.assertFalse( verify_api_token(connection, token=token2, email='a'))
def testNoDefaultToken(self): connection.execute(auth_user_table.insert({'email': 'a'})) self.assertFalse( verify_api_token(connection, token=generate_api_token(), email='a'))
def testGetAuthUserByEmail(self): connection.execute(auth_user_table.insert({'email': 'a'})) user = get_auth_user_by_email(connection, 'a') self.assertEqual(user.email, 'a')
def testGetAuthUser(self): result = connection.execute(auth_user_table.insert({'email': 'a'})) user_id = result.inserted_primary_key[0] user = get_auth_user(connection, user_id) self.assertEqual(user.email, 'a')