def test_incorrect_password_display_message(self):
User.create(username='******', password='******', first_name='chris', last_name='hall')
form_data = {
'username': '******',
'password': '******'
}
rv = self.client.post(url_for('auth.login'), data=form_data, follow_redirects=True)
self.assertEquals(rv.status_code, 200)
self.assertTrue('Invalid password' in rv.data)
def test_add_user_with_password_hashing(self):
user = User.create(username='******', password='******', first_name='chris', last_name='hall')
self.assertEqual(user.username, '*****@*****.**')
self.assertNotEqual(user.password, 'mysecret', 'Password not hashed')
self.assertTrue(user.is_correct_password('mysecret'))
self.assertEqual(user.first_name, 'chris')
self.assertEqual(user.last_name, 'hall')
def login():
# If the user is already signed in, redirect him Dashboard.
if current_user.is_authenticated:
return redirect(url_for('dashboard'))
if request.method == 'POST':
form_username = request.form['username']
userObj = User()
user = userObj.get_by_username_w_password(form_username)
if user and check_password_hash(user.password,
request.form['password']):
login_user(user)
return redirect(url_for('dashboard'))
else:
flash(u'Incorrent password.', 'incorrect_password')
return render_template('login.html')
def populate_db():
"""
Adds fake data to the database.
"""
admin = User(username='******',
password='******',
first_name='chris',
last_name='hall')
db.session.add(admin)
db.session.commit()
def test_valid_login_submit(self):
with self.client:
user = User.create(username='******', password='******', first_name='chris', last_name='hall')
form_data = {
'username': '******',
'password': '******'
}
rv = self.client.post(url_for('auth.login'), data=form_data, follow_redirects=True)
self.assertEquals(rv.status_code, 200)
self.assertTrue(user.is_authenticated())
self.assertEquals(current_user.id, user.id)
rv = self.client.get('contact/create')
self.assertEquals(rv.status_code, 200)
