def test_prevent_reset_password_page_load_email_not_exist(self): user_does_not_exist_email_token = serializer.serialize_timed_data( "*****@*****.**") reset_password_url = url_for('users.reset_password', token=user_does_not_exist_email_token) response = self.client.get(reset_password_url) self.assert404(response)
def test_prevent_reset_password_page_load_bad_token(self): bad_user_email_token = list( serializer.serialize_timed_data(self.user.email)) bad_user_email_token[1:7] = "rAnDoM" reset_password_url = url_for('users.reset_password', token=bad_user_email_token) response = self.client.get(reset_password_url) self.assert404(response)
def test_prevent_reset_password_if_confirm_does_not_match(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) user_email_token = serializer.serialize_timed_data(self.user.email) reset_password_url = url_for('users.reset_password', token=user_email_token) response = self.client.post(reset_password_url, data={"password": NEW_PASSWORD, "confirm": "NOT-THE-SAME"}) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD))
def test_prevent_reset_password_if_bad_token(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) user_does_not_exist_email_token = serializer.serialize_timed_data("*****@*****.**") reset_password_url = url_for('users.reset_password', token=user_does_not_exist_email_token) response = self.client.post(reset_password_url, data={"password": NEW_PASSWORD, "confirm": NEW_PASSWORD}) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD)) self.assert404(response)
def test_prevent_reset_password_if_bad_token(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) bad_user_email_token = list(serializer.serialize_timed_data(self.user.email)) bad_user_email_token[1:7] = "rAnDoM" reset_password_url = url_for('users.reset_password', token=bad_user_email_token) response = self.client.post(reset_password_url, data={"password": NEW_PASSWORD, "confirm": NEW_PASSWORD}) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD)) self.assert404(response)
def test_prevent_reset_password_if_confirm_does_not_match(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) user_email_token = serializer.serialize_timed_data(self.user.email) reset_password_url = url_for('users.reset_password', token=user_email_token) response = self.client.post(reset_password_url, data={ "password": NEW_PASSWORD, "confirm": "NOT-THE-SAME" }) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD))
def test_prevent_reset_password_if_bad_token(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) user_does_not_exist_email_token = serializer.serialize_timed_data( "*****@*****.**") reset_password_url = url_for('users.reset_password', token=user_does_not_exist_email_token) response = self.client.post(reset_password_url, data={ "password": NEW_PASSWORD, "confirm": NEW_PASSWORD }) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD)) self.assert404(response)
def test_prevent_reset_password_if_bad_token(self): NEW_PASSWORD = "******" self.assertTrue(self.user.check_password(self.USER_PASSWORD)) bad_user_email_token = list( serializer.serialize_timed_data(self.user.email)) bad_user_email_token[1:7] = "rAnDoM" reset_password_url = url_for('users.reset_password', token=bad_user_email_token) response = self.client.post(reset_password_url, data={ "password": NEW_PASSWORD, "confirm": NEW_PASSWORD }) self.assertTrue(self.user.check_password(self.USER_PASSWORD)) self.assertFalse(self.user.check_password(NEW_PASSWORD)) self.assert404(response)
def test_reset_password_page_load(self): user_email_token = serializer.serialize_timed_data(self.user.email) reset_password_url = url_for('users.reset_password', token=user_email_token) response = self.client.get(reset_password_url) self.assert200(response)
def test_prevent_reset_password_page_load_email_not_exist(self): user_does_not_exist_email_token = serializer.serialize_timed_data("*****@*****.**") reset_password_url = url_for('users.reset_password', token=user_does_not_exist_email_token) response = self.client.get(reset_password_url) self.assert404(response)
def test_prevent_reset_password_page_load_bad_token(self): bad_user_email_token = list(serializer.serialize_timed_data(self.user.email)) bad_user_email_token[1:7] = "rAnDoM" reset_password_url = url_for('users.reset_password', token=bad_user_email_token) response = self.client.get(reset_password_url) self.assert404(response)