def test_user_password(): user = User(username='******', password='******') assert user.username == 'joe' assert user.check_password('fr3d') assert not user.check_password('fr01d') db = create_test_users_db() user.store(db) user = User.load(db, user.id) assert user.check_password('fr3d') assert not user.check_password('fr01d') assert user.username == 'joe'
def test_update_user_passwd_post_urlenc(self): uname = 'joe' pw1 = 'bl0w' pw2 = 'b0w1' udb = self.get_users_database() user_url = self.url_for('user_rest', userid=uname) c = self.get_test_app() self.login_as_admin(c) c.post(user_url, {}, status=404) user = User(username=uname, password=pw1) user.store(udb) user = User.get_by_username(udb, uname) assert user.check_password(pw1) assert not user.check_password(pw2) # missing password2 c.post(user_url, {'username': uname, 'password': pw2}, status=400) user = User.get_by_username(udb, uname) assert user.check_password(pw1) assert not user.check_password(pw2) # passwords don't match c.post(user_url, {'username': uname, 'password': pw2, 'password2': pw1}, status=400) user = User.get_by_username(udb, uname) assert user.check_password(pw1) assert not user.check_password(pw2) # okay c.post(user_url, {'username': uname, 'password': pw2, 'password2': pw2}, status=200) user = User.get_by_username(udb, uname) assert user.check_password(pw2) assert not user.check_password(pw1)