def test_expired_confirmation_token(self): u = User(password='******') db.session.add(u) db.session.commit() token = u.generate_confirmation_token(1) time.sleep(2) self.assertFalse(u.confirm(token))
def test_invalid_confirmation_token(self): u1 = User(password='******') u2 = User(password='******') db.session.add(u1) db.session.add(u2) db.session.commit() token = u1.generate_confirmation_token() self.assertFalse(u2.confirm(token))
def register(): form = RegistrationForm() if form.validate_on_submit(): user = User( email=form.email.data.lower(), name=form.name.data, password=form.password.data, gender=Gender.query.get(form.gender.data) ) token = user.generate_confirmation_token() send_email(user.email, 'Confirm Your Account', 'auth/email/confirm', user=user, token=token, current_time=datetime.now(tz.gettz('CST')).strftime("%B %d, %Y %H:%M CST")) flash('A confirmation email has been sent to you by email.', 'alert-primary') db.session.add(user) db.session.commit() # Redirect to the two-factor auth page, passing username in session # Do NOT put user_id into the session, in case you wanna log the user in. session['email'] = user.email return redirect(url_for('auth.two_factor_setup')) return render_template('auth/register.html', form=form)
def test_valid_confirmation_token(self): u = User(password='******') db.session.add(u) db.session.commit() token = u.generate_confirmation_token() self.assertTrue(u.confirm(token))