def test_user_password():
user = User(username='******', password='******')
assert user.username == 'joe'
assert user.check_password('fr3d')
assert not user.check_password('fr01d')
db = create_test_users_db()
user.store(db)
user = User.load(db, user.id)
assert user.check_password('fr3d')
assert not user.check_password('fr01d')
assert user.username == 'joe'
def test_update_user_passwd_post_urlenc(self):
uname = 'joe'
pw1 = 'bl0w'
pw2 = 'b0w1'
udb = self.get_users_database()
user_url = self.url_for('user_rest', userid=uname)
c = self.get_test_app()
self.login_as_admin(c)
c.post(user_url, {}, status=404)
user = User(username=uname, password=pw1)
user.store(udb)
user = User.get_by_username(udb, uname)
assert user.check_password(pw1)
assert not user.check_password(pw2)
# missing password2
c.post(user_url, {'username': uname, 'password': pw2},
status=400)
user = User.get_by_username(udb, uname)
assert user.check_password(pw1)
assert not user.check_password(pw2)
# passwords don't match
c.post(user_url, {'username': uname,
'password': pw2,
'password2': pw1},
status=400)
user = User.get_by_username(udb, uname)
assert user.check_password(pw1)
assert not user.check_password(pw2)
# okay
c.post(user_url, {'username': uname,
'password': pw2,
'password2': pw2},
status=200)
user = User.get_by_username(udb, uname)
assert user.check_password(pw2)
assert not user.check_password(pw1)
