def test_gitlab_token_identity_maps_user(self, gitlab, app):
token = {
"access_token": "thisisavalidtoken",
"id_token": "thisisavalidJWT",
"created_at": 1548789020,
}
# test automatic user mapping
with app.test_request_context("/oauth/authorize"):
# let's create a user with the same email, that is currently logged
user = users.create_user(email="*****@*****.**")
# but only if the user is currently logged (to prevent hi-jacking)
with pytest.raises(OAuthError):
identity = gitlab_token_identity(token)
# the new identity should be mapped to the existing user
login_user(user)
identity = gitlab_token_identity(token)
assert identity.user == user
def test_gitlab_token_identity_creates_user(self, gitlab, app):
token = {
"access_token": "thisisavalidtoken",
"id_token": "thisisavalidJWT",
"created_at": 1548789020,
}
# test automatic user creation
with app.test_request_context("/oauth/authorize"):
identity = gitlab_token_identity(token)
assert (db.session.query(OAuth).options(joinedload(
OAuth.user)).filter(OAuth.access_token == token["access_token"]
and OAuth.id_token == token["id_token"]
and OAuth.provider_user_id == user.id
and OAuth.provider_id == "gitlab"
and User.email == user.email).first())