def test_valid_reset_token(self): user = User('test') user.password = '******' user.email = '*****@*****.**' db.session.add(user) # 只有commit了才能拿到id,以便生成token db.session.commit() token = user.generate_reset_token(user.email) self.assertTrue(user.reset_password(token, 'dog')) self.assertTrue(user.check_password('dog'))
def test_invalid_reset_token(self): user1 = User('test1') user2 = User('test2') user1.password = '******' user2.password = '******' user1.email = '*****@*****.**' user2.email = '*****@*****.**' db.session.add(user1) db.session.add(user2) db.session.commit() token = user1.generate_reset_token(user1.email) self.assertFalse(user2.reset_password(token, 'puppy')) self.assertTrue(user2.check_password('dog'))