def test_redirect_fix_bad_url(self):
self.login()
self.request.is_elevated = lambda: True
self.request.GET = {REDIRECT_FIELD_NAME: 'http://mattrobenolt.com/lol'}
response = elevate(self.request)
self.assertEqual(response['Location'], REDIRECT_URL)
self.request.GET = {
REDIRECT_FIELD_NAME: 'http://%s\\@mattrobenolt.com' % self.request.get_host(),
}
response = elevate(self.request)
self.assertEqual(response['Location'], REDIRECT_URL)
def test_redirect_if_already_elevated_with_next(self):
self.login()
self.request.GET = {REDIRECT_FIELD_NAME: '/lol'}
self.request.is_elevated = lambda: True
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], '/lol')
def test_session_based_redirect_bad_url(self):
self.login()
self.request.is_elevated = lambda: False
self.request.method = 'POST'
self.request.POST = {'password': '******'}
self.request.session[REDIRECT_TO_FIELD_NAME] = 'http://mattrobenolt.com/lol'
self.request.csrf_processing_done = True
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], REDIRECT_URL)
self.assertFalse('redirect_to' in self.request.session)
self.request.session[REDIRECT_TO_FIELD_NAME] = (
'http://%s\\@mattrobenolt.com' % self.request.get_host()
)
response = elevate(self.request)
self.assertEqual(response['Location'], REDIRECT_URL)
def test_returns_template_response_with_next(self):
self.login()
self.request.GET = {REDIRECT_FIELD_NAME: '/lol'}
self.request.is_elevated = lambda: False
response = elevate(self.request)
self.assertEqual(response.context_data[REDIRECT_FIELD_NAME],
'/lol') # default
def test_session_based_redirect(self):
self.login()
self.request.is_elevated = lambda: False
self.request.method = 'GET'
self.request.GET = {REDIRECT_FIELD_NAME: '/foobar'}
elevate(self.request)
self.request, self.request.session = self.post('/foo'), self.request.session
self.login()
self.request.is_elevated = lambda: False
self.request.method = 'POST'
self.request.POST = {'password': '******'}
self.request.csrf_processing_done = True
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], '/foobar')
self.assertNotEqual(response['Location'], REDIRECT_URL)
self.assertFalse('redirect_to' in self.request.session)
def test_redirect_after_successful_post(self):
self.login()
self.request.is_elevated = lambda: False
self.request.method = 'POST'
self.request.csrf_processing_done = True
self.request.POST = {'password': '******'}
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], REDIRECT_URL)
def test_render_form_with_bad_password(self):
self.login()
self.request.is_elevated = lambda: False
self.request.method = 'POST'
self.request.csrf_processing_done = True
self.request.POST = {'password': '******'}
response = elevate(self.request)
self.assertEqual(response.status_code, 200)
form = response.context_data['form']
self.assertFalse(form.is_valid())
def test_returns_template_response(self):
self.login()
self.request.is_elevated = lambda: False
response = elevate(self.request)
self.assertIsInstance(response, TemplateResponse)
self.assertEqual(response.template_name, 'elevate/elevate.html') # default
self.assertEqual(response.context_data[REDIRECT_FIELD_NAME], REDIRECT_URL) # default
form = response.context_data['form']
self.assertIsInstance(form, ElevateForm)
self.assertEqual(form.user, self.user)
def test_redirect_if_already_elevated(self):
self.login()
self.request.is_elevated = lambda: True
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], REDIRECT_URL)
def test_returns_template_response_override_extra_context(self):
self.login()
self.request.is_elevated = lambda: False
response = elevate(self.request, extra_context={'foo': 'bar'})
self.assertEqual(response.context_data['foo'], 'bar')
def test_returns_template_response_override_template(self):
self.login()
self.request.is_elevated = lambda: False
response = elevate(self.request, template_name='foo.html')
self.assertEqual(response.template_name, 'foo.html')
def test_enforces_logged_in(self):
response = elevate(self.request)
self.assertEqual(response.status_code, 302)
self.assertEqual(response['Location'], '/accounts/login/?next=/foo')
