tests/app/main/views/test_two_factor.py

from flask import url_for
from tests.conftest import SERVICE_ONE_ID

from unittest.mock import ANY


def test_should_render_two_factor_page(
    client,
    api_user_active,
    mock_get_user_by_email,
):
    # TODO this lives here until we work out how to
    # reassign the session after it is lost mid register process
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.get(url_for('main.two_factor'))
    assert response.status_code == 200
    assert '''We’ve sent you a text message with a security code.''' in response.get_data(as_text=True)


def test_should_login_user_and_redirect_to_service_dashboard(
    client,
    api_user_active,
    mock_get_user,
    mock_get_user_by_email,
    mock_check_verify_code,
    mock_get_services_with_one_service,
    mock_events,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '12345'})
    assert response.status_code == 302
    assert response.location == url_for(
        'main.service_dashboard',
        service_id=SERVICE_ONE_ID,
        _external=True
    )

    mock_events.assert_called_with('sucessful_login', ANY)


def test_should_login_user_and_should_redirect_to_next_url(
    client,
    api_user_active,
    mock_get_user,
    mock_get_user_by_email,
    mock_check_verify_code,
    mock_get_services,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor', next='/services/{}/dashboard'.format(SERVICE_ONE_ID)),
                           data={'sms_code': '12345'})
    assert response.status_code == 302
    assert response.location == url_for(
        'main.service_dashboard',
        service_id=SERVICE_ONE_ID,
        _external=True
            )


def test_should_login_user_and_not_redirect_to_external_url(
    client,
    api_user_active,
    mock_get_user,
    mock_get_user_by_email,
    mock_check_verify_code,
    mock_get_services_with_one_service,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor', next='http://www.google.com'),
                           data={'sms_code': '12345'})
    assert response.status_code == 302
    assert response.location == url_for(
        'main.service_dashboard',
        service_id=SERVICE_ONE_ID,
        _external=True
    )


def test_should_login_user_and_redirect_to_choose_services(
    client,
    api_user_active,
    mock_get_user,
    mock_get_user_by_email,
    mock_check_verify_code,
    mock_get_services,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '12345'})

    assert response.status_code == 302
    assert response.location == url_for('main.choose_service', _external=True)


def test_should_return_200_with_sms_code_error_when_sms_code_is_wrong(
    client,
    api_user_active,
    mock_get_user_by_email,
    mock_check_verify_code_code_not_found,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '23456'})
    assert response.status_code == 200
    assert 'Code not found' in response.get_data(as_text=True)


def test_should_login_user_when_multiple_valid_codes_exist(
    client,
    api_user_active,
    mock_get_user,
    mock_get_user_by_email,
    mock_check_verify_code,
    mock_get_services_with_one_service,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address}
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '23456'})
    assert response.status_code == 302


def test_two_factor_should_set_password_when_new_password_exists_in_session(
    client,
    api_user_active,
    mock_get_user,
    mock_check_verify_code,
    mock_get_services_with_one_service,
    mock_update_user_password,
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_active.id,
            'email': api_user_active.email_address,
            'password': 'changedpassword'}

    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '12345'})
    assert response.status_code == 302
    assert response.location == url_for(
        'main.service_dashboard',
        service_id=SERVICE_ONE_ID,
        _external=True
    )
    mock_update_user_password.assert_called_once_with(api_user_active.id, password='changedpassword')


def test_two_factor_returns_error_when_user_is_locked(
    client,
    api_user_locked,
    mock_get_locked_user,
    mock_check_verify_code_code_not_found,
    mock_get_services_with_one_service
):
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_locked.id,
            'email': api_user_locked.email_address,
        }
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '12345'})
    assert response.status_code == 200
    assert 'Code not found' in response.get_data(as_text=True)


def test_two_factor_should_redirect_to_sign_in_if_user_not_in_session(
    client,
    api_user_active,
    mock_get_user,
):
    response = client.post(url_for('main.two_factor'),
                           data={'sms_code': '12345'})
    assert response.status_code == 302
    assert response.location == url_for('main.sign_in', _external=True)


def test_two_factor_should_activate_pending_user(
    client,
    mocker,
    api_user_pending,
    mock_check_verify_code,
    mock_update_user,
):
    mocker.patch('app.user_api_client.get_user', return_value=api_user_pending)
    mocker.patch('app.service_api_client.get_services', return_value={'data': []})
    with client.session_transaction() as session:
        session['user_details'] = {
            'id': api_user_pending.id,
            'email_address': api_user_pending.email_address
        }
    client.post(url_for('main.two_factor'), data={'sms_code': '12345'})

    assert mock_update_user.called
    assert api_user_pending.is_active
-												Reintroduce some tests. A bit of cleanup of mocks.

User object fields made a bit clearer and simple test to
verify user added.

											
										
										
											2016-01-23 23:14:50 +00:00
+								from flask import url_for
-												Revert config changes so it doesn't break local dev builds.
Update tests

											
										
										
											2016-03-09 09:29:35 +00:00
+								from tests.conftest import SERVICE_ONE_ID
-												109638656: Implementation of two factor verification
Validation of the code is done in the form, when the form.validate_on_submit is called the validate code methods are called as well.

											
										
										
											2015-12-09 11:36:57 +00:00
-												Record login including remembered user login  events to the api based of flask login
signals.

											
										
										
											2016-04-27 16:39:17 +01:00
+								from unittest.mock import ANY
-												109638656: Initial implementation for two-factor

											
										
										
											2015-12-07 16:56:11 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_render_two_factor_page(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user_by_email,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    # TODO this lives here until we work out how to
 								    # reassign the session after it is lost mid register process
 								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.get(url_for('main.two_factor'))
 								    assert response.status_code == 200
 								    assert '''We’ve sent you a text message with a security code.''' in response.get_data(as_text=True)
-												109638656: Initial implementation for two-factor

											
										
										
											2015-12-07 16:56:11 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_login_user_and_redirect_to_service_dashboard(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_get_user_by_email,
 								    mock_check_verify_code,
 								    mock_get_services_with_one_service,
 								    mock_events,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 302
 								    assert response.location == url_for(
 								        'main.service_dashboard',
 								        service_id=SERVICE_ONE_ID,
 								        _external=True
 								    )
 								    mock_events.assert_called_with('sucessful_login', ANY)
-												Record login including remembered user login  events to the api based of flask login
signals.

											
										
										
											2016-04-27 16:39:17 +01:00
-												The verify view was not passing along the next param to the two factor
view.

Now if it is passed and it is a url on the same domain that request
originates from then it is used.

											
										
										
											2016-03-14 16:30:48 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_login_user_and_should_redirect_to_next_url(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_get_user_by_email,
 								    mock_check_verify_code,
 								    mock_get_services,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor', next='/services/{}/dashboard'.format(SERVICE_ONE_ID)),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 302
 								    assert response.location == url_for(
 								        'main.service_dashboard',
 								        service_id=SERVICE_ONE_ID,
 								        _external=True
-												The verify view was not passing along the next param to the two factor
view.

Now if it is passed and it is a url on the same domain that request
originates from then it is used.

											
										
										
											2016-03-14 16:30:48 +00:00
+								            )
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_login_user_and_not_redirect_to_external_url(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_get_user_by_email,
 								    mock_check_verify_code,
 								    mock_get_services_with_one_service,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor', next='http://www.google.com'),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 302
 								    assert response.location == url_for(
 								        'main.service_dashboard',
 								        service_id=SERVICE_ONE_ID,
 								        _external=True
 								    )
-												Skip ‘choose service’ page if user has one service

We used to do this by redirecting on the choose service page. However when we
lost the dropdown and this page also became the page for adding a new service
(in 3617f2e936aadbdf71d582e58d88a16629ee5ca2) the redirect was removed.

This commit re-adds the redirect on the two factor page, so that it only happens
on first login.

So the flows are:

**Multiple services**
```
`Sign in` → `Enter two factor code` → `Choose service` → `Service dashboard`
```

**One service**
```
`Sign in` → `Enter two factor code` → `Service dashboard`
```

**No services (you’ve deleted all your services)**
`Sign in` → `Enter two factor code` → `Choose service` → `Add new service`

											
										
										
											2016-02-05 14:25:48 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_login_user_and_redirect_to_choose_services(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_get_user_by_email,
 								    mock_check_verify_code,
 								    mock_get_services,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '12345'})
-												109638656: Implement two factor verify flow
When user enters valid sms code they are redirected to the dashboard.
Otherwise, form errors are present.

											
										
										
											2015-12-08 12:36:54 +00:00
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    assert response.status_code == 302
 								    assert response.location == url_for('main.choose_service', _external=True)
-												109638656: Implement two factor verify flow
When user enters valid sms code they are redirected to the dashboard.
Otherwise, form errors are present.

											
										
										
											2015-12-08 12:36:54 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_return_200_with_sms_code_error_when_sms_code_is_wrong(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user_by_email,
 								    mock_check_verify_code_code_not_found,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '23456'})
 								    assert response.status_code == 200
 								    assert 'Code not found' in response.get_data(as_text=True)
-												110880218: Completed implementation of resend the verificaton code

											
										
										
											2015-12-31 13:16:59 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_should_login_user_when_multiple_valid_codes_exist(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_get_user_by_email,
 								    mock_check_verify_code,
 								    mock_get_services_with_one_service,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address}
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '23456'})
 								    assert response.status_code == 302
-												Remember me functionality added and tested.

Merge extra.

Fixed comment.

											
										
										
											2016-02-23 15:45:19 +00:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_two_factor_should_set_password_when_new_password_exists_in_session(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								    mock_check_verify_code,
 								    mock_get_services_with_one_service,
-												Update two-factor to use new update password endpoint and refactor tests

											
										
										
											2017-02-20 14:55:28 +00:00
+								    mock_update_user_password,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_active.id,
 								            'email': api_user_active.email_address,
 								            'password': 'changedpassword'}
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 302
 								    assert response.location == url_for(
 								        'main.service_dashboard',
 								        service_id=SERVICE_ONE_ID,
 								        _external=True
 								    )
-												Update two-factor to use new update password endpoint and refactor tests

											
										
										
											2017-02-20 14:55:28 +00:00
+								    mock_update_user_password.assert_called_once_with(api_user_active.id, password='changedpassword')
-												Updated error message is the code is not the right size or data type.
Updated two_factor to error is the user account is locked (locked = over 10 failed_login_count)

											
										
										
											2017-02-15 14:56:22 +00:00
 								def test_two_factor_returns_error_when_user_is_locked(
 								    client,
 								    api_user_locked,
 								    mock_get_locked_user,
-												Fix the user flow when the user account is locked.

The user has 10 tries at the password, after which the account is locked.
The same is true for the verify code, the user will have 10 tries before the user account is locked.

											
										
										
											2017-02-28 14:41:31 +00:00
+								    mock_check_verify_code_code_not_found,
-												Updated error message is the code is not the right size or data type.
Updated two_factor to error is the user account is locked (locked = over 10 failed_login_count)

											
										
										
											2017-02-15 14:56:22 +00:00
+								    mock_get_services_with_one_service
 								):
 								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_locked.id,
 								            'email': api_user_locked.email_address,
 								        }
 								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 200
 								    assert 'Code not found' in response.get_data(as_text=True)
-												In case user details were not in session the redirect did not use
url_for to redirect to sign in.

											
										
										
											2016-06-06 14:46:16 +01:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_two_factor_should_redirect_to_sign_in_if_user_not_in_session(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    api_user_active,
 								    mock_get_user,
 								):
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    response = client.post(url_for('main.two_factor'),
 								                           data={'sms_code': '12345'})
 								    assert response.status_code == 302
 								    assert response.location == url_for('main.sign_in', _external=True)
-												- Add test to check that two-factor auth activates a user as expected
- Ensure DB user activation statusupdate only executed when required
- Fix test_should_activate_user_after_verify

											
										
										
											2016-09-09 15:22:56 +01:00
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								def test_two_factor_should_activate_pending_user(
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    client,
-												Normalize whitespace in test arguments

We have a bunch of different styles of handling when function
definitions span multiple lines, which they almost always do with tests.

Here’s why an argument per line, single indent is best:
- cleaner diffs when you change the name of a method (one line change
  instead of multiple lines)
- works better on narrow screens, eg Github’s diff view, or with two
  terminals side by side on a laptop screen
- works with any editor’s indenting shortcuts, no need for an IDE

Also, trailing comma in the list of arguments is good because adding a
new argument to a method becomes a one line, not two line diff.

											
										
										
											2017-02-03 10:42:01 +00:00
+								    mocker,
 								    api_user_pending,
 								    mock_check_verify_code,
 								    mock_update_user,
 								):
-												- Add test to check that two-factor auth activates a user as expected
- Ensure DB user activation statusupdate only executed when required
- Fix test_should_activate_user_after_verify

											
										
										
											2016-09-09 15:22:56 +01:00
+								    mocker.patch('app.user_api_client.get_user', return_value=api_user_pending)
 								    mocker.patch('app.service_api_client.get_services', return_value={'data': []})
-												Use `client` and `logged_in_client` fixtures

Wherever possible, because Don’t Repeat Yourself.

											
										
										
											2017-02-03 12:07:21 +00:00
+								    with client.session_transaction() as session:
 								        session['user_details'] = {
 								            'id': api_user_pending.id,
 								            'email_address': api_user_pending.email_address
 								        }
 								    client.post(url_for('main.two_factor'), data={'sms_code': '12345'})
 								    assert mock_update_user.called
 								    assert api_user_pending.is_active