def test_remember_me_with_bad_endpoint(self):
"""Test the post-login hook with a bad openid endpoint"""
req = DummyRequest(params={
'openid.op_endpoint': 'bad_endpoint',
})
req.db = self.db
def flash(msg):
pass
req.session.flash = flash
info = {
'identity_url': 'http://lmacken.id.fedoraproject.org',
'groups': [u'releng'],
}
req.registry.settings = self.app_settings
try:
remember_me(None, req, info)
assert False, 'remember_me should have thrown an exception'
except Exception:
# A ComponentLookupError is thrown because we're doing this outside
# of the webapp
pass
# The user should not exist
self.assertIsNone(User.get(u'lmacken', self.db))
def test_bad_endpoint(self):
"""Test the post-login hook with a bad openid endpoint"""
req, info = self._generate_req_info('bad_endpoint')
with pytest.raises(interfaces.ComponentLookupError):
security.remember_me(None, req, info)
# The user should not exist
assert models.User.get('lmacken') is None
def test_new_user(self):
"""Test the post-login hook"""
req, info = self._generate_req_info(self.app_settings['openid.provider'])
security.remember_me(None, req, info)
# The user should now exist, and be a member of the releng group
user = models.User.get(u'lmacken')
self.assertEquals(user.name, u'lmacken')
self.assertEquals(user.email, u'[email protected]')
self.assertEquals(len(user.groups), 1)
self.assertEquals(user.groups[0].name, u'releng')
def test_new_email(self):
"""Assert that the user gets their e-mail address updated."""
req, info = self._generate_req_info(self.app_settings['openid.provider'])
security.remember_me(None, req, info)
# The user has updated their e-mail address.
info['sreg']['email'] = '*****@*****.**'
req.session = {'came_from': '/'}
security.remember_me(None, req, info)
user = models.User.get(u'lmacken')
self.assertEquals(user.email, u'*****@*****.**')
def test_empty_groups_ignored(self):
"""Test a user that has an empty string group, which should be ignored."""
req, info = self._generate_req_info(self.app_settings['openid.provider'])
security.remember_me(None, req, info)
# Pretend the user has been removed from the releng group
info['groups'] = ['releng', '', 'new_group']
req.session = {'came_from': '/'}
security.remember_me(None, req, info)
user = models.User.get(u'lmacken')
self.assertEquals([g.name for g in user.groups], ['releng', 'new_group'])
def test_user_groups_removed(self):
"""Test that a user that has been removed from a group gets marked as removed upon login."""
req, info = self._generate_req_info(self.app_settings['openid.provider'])
security.remember_me(None, req, info)
# Pretend the user has been removed from the releng group
info['groups'] = []
req.session = {'came_from': '/'}
security.remember_me(None, req, info)
user = models.User.get(u'lmacken')
self.assertEquals(len(user.groups), 0)
self.assertEquals(len(models.Group.get(u'releng').users), 0)
def test_remember_me(self):
"""Test the post-login hook"""
req = DummyRequest(
params={
'openid.op_endpoint': self.app_settings['openid.provider'],
})
req.db = self.db
req.session = {'came_from': '/'}
info = {
'identity_url': 'http://lmacken.id.fedoraproject.org',
'groups': [u'releng'],
'sreg': {
'email': u'[email protected]'
},
}
req.registry.settings = self.app_settings
# Ensure the user doesn't exist yet
self.assertIsNone(User.get(u'lmacken', self.db))
self.assertIsNone(Group.get(u'releng', self.db))
remember_me(None, req, info)
# The user should now exist, and be a member of the releng group
user = User.get(u'lmacken', self.db)
self.assertEquals(user.name, u'lmacken')
self.assertEquals(user.email, u'[email protected]')
self.assertEquals(len(user.groups), 1)
self.assertEquals(user.groups[0].name, u'releng')
# Pretend the user has been removed from the releng group
info['groups'] = []
req.session = {'came_from': '/'}
remember_me(None, req, info)
user = User.get(u'lmacken', self.db)
self.assertEquals(len(user.groups), 0)
self.assertEquals(len(Group.get(u'releng', self.db).users), 0)
