def test_expired_confirmation_token(self):
u = User(password='******')
db.session.add(u)
db.session.commit()
token = u.generate_confirmation_token(1)
time.sleep(2)
self.assertFalse(u.confirm(token))
def test_invalid_confirmation_token(self):
u1 = User(password='******')
u2 = User(password='******')
db.session.add(u1)
db.session.add(u2)
db.session.commit()
token = u1.generate_confirmation_token()
self.assertFalse(u2.confirm(token))
def register():
form = RegistrationForm()
if form.validate_on_submit():
user = User(
email=form.email.data.lower(),
name=form.name.data,
password=form.password.data,
gender=Gender.query.get(form.gender.data)
)
token = user.generate_confirmation_token()
send_email(user.email, 'Confirm Your Account', 'auth/email/confirm', user=user, token=token,
current_time=datetime.now(tz.gettz('CST')).strftime("%B %d, %Y %H:%M CST"))
flash('A confirmation email has been sent to you by email.', 'alert-primary')
db.session.add(user)
db.session.commit()
# Redirect to the two-factor auth page, passing username in session
# Do NOT put user_id into the session, in case you wanna log the user in.
session['email'] = user.email
return redirect(url_for('auth.two_factor_setup'))
return render_template('auth/register.html', form=form)
def test_valid_confirmation_token(self):
u = User(password='******')
db.session.add(u)
db.session.commit()
token = u.generate_confirmation_token()
self.assertTrue(u.confirm(token))
