def test_password_salts_are_random(self):
u = User()
u.password = '******'
u2 = User()
u2.password = '******'
self.assertTrue(u.password_hash != u2.password_hash)
def register():
try:
data = request.json
email, password = data["email"], data["password"]
if User.query.filter_by(email=email).count() > 0:
return response(status=constants.ERROR,
message=constants.EMAIL_ALREADY_EXISTS)
if not validate_email(email):
return response(status=constants.ERROR,
message=constants.INVALID_EMAIL)
user = User()
user.email = email
user.password = sha256_crypt.encrypt(str(password))
db.session.add(user)
db.session.commit()
return response(status=constants.SUCCESS,
message=constants.REGISTRATION_SUCCESS)
except Exception:
return response(status=constants.ERROR,
message=constants.SOMETHING_WENT_WRONG,
status_code=422)
def create_user(operator,
first_name,
last_name,
email,
username,
password,
is_admin=False,
**kwargs):
"""
Create a new user in the database with the given values.
"""
# TODO Auditable stuff
existing_user = maybe_get_user_by_email(email)
if existing_user:
raise UserAlreadyExistsError("A user with that email address exists.")
name = "%s %s" % (first_name, last_name)
lower_name = name.lower()
user = User(first_name=first_name,
last_name=last_name,
email=email,
username=username,
lowercase_display_name=lower_name,
is_admin=is_admin)
user.password = User.encode_password(password)
user.save()
activity_log.log_user_created(user, operator)
return user
def create_user(operator, first_name, last_name, email, username, password, **kwargs):
"""
Create a new user in the database with the given values.
"""
# TODO Auditable stuff
existing_user = maybe_get_user_by_email(email)
if existing_user:
raise UserAlreadyExistsError("A user with that email address exists.")
name = "%s %s" % (first_name, last_name)
lower_name = name.lower()
user = User(first_name=first_name, last_name=last_name, email=email, username=username,
lowercase_display_name=lower_name)
user.password = User.encode_password(password)
user.save()
activity_log.log_user_created(user, operator)
return user
def test_password_setter(self):
u = User()
u.password = '******'
self.assertTrue(u.password_hash is not None)
def test_password_verification(self):
u = User()
u.password = '******'
self.assertTrue(u.verify_password('cat'))
self.assertFalse(u.verify_password('dog'))
