mirror of
https://github.com/GSA/notifications-admin.git
synced 2026-06-30 20:27:30 -04:00
Validation of the code is done in the form, when the form.validate_on_submit is called the validate code methods are called as well.
61 lines
2.7 KiB
Python
61 lines
2.7 KiB
Python
from flask import json
|
|
|
|
from app.main.encryption import hashpw
|
|
from tests.app.main.views import create_test_user
|
|
|
|
|
|
def test_should_render_two_factor_page(notifications_admin, notifications_admin_db):
|
|
response = notifications_admin.test_client().get('/two-factor')
|
|
assert response.status_code == 200
|
|
assert '''We've sent you a text message with a verification code.''' in response.get_data(as_text=True)
|
|
|
|
|
|
def test_should_login_user_and_redirect_to_dashboard(notifications_admin, notifications_admin_db):
|
|
with notifications_admin.test_client() as client:
|
|
with client.session_transaction() as session:
|
|
user = create_test_user()
|
|
session['user_id'] = user.id
|
|
session['sms_code'] = hashpw('12345')
|
|
response = client.post('/two-factor',
|
|
data={'sms_code': '12345'})
|
|
|
|
assert response.status_code == 302
|
|
assert response.location == 'http://localhost/dashboard'
|
|
|
|
|
|
def test_should_return_400_with_sms_code_error_when_sms_code_is_wrong(notifications_admin, notifications_admin_db):
|
|
with notifications_admin.test_client() as client:
|
|
with client.session_transaction() as session:
|
|
user = create_test_user()
|
|
session['user_id'] = user.id
|
|
session['sms_code'] = hashpw('12345')
|
|
response = client.post('/two-factor',
|
|
data={'sms_code': '23456'})
|
|
assert response.status_code == 400
|
|
assert {'sms_code': ['Code does not match']} == json.loads(response.get_data(as_text=True))
|
|
|
|
|
|
def test_should_return_400_when_sms_code_is_empty(notifications_admin, notifications_admin_db):
|
|
with notifications_admin.test_client() as client:
|
|
with client.session_transaction() as session:
|
|
user = create_test_user()
|
|
session['user_id'] = user.id
|
|
session['sms_code'] = hashpw('12345')
|
|
response = client.post('/two-factor')
|
|
assert response.status_code == 400
|
|
assert {'sms_code': ['Please enter your code']} == json.loads(response.get_data(as_text=True))
|
|
|
|
|
|
def test_should_return_400_when_sms_code_is_too_short(notifications_admin, notifications_admin_db):
|
|
with notifications_admin.test_client() as client:
|
|
with client.session_transaction() as session:
|
|
user = create_test_user()
|
|
session['user_id'] = user.id
|
|
session['sms_code'] = hashpw('23467')
|
|
response = client.post('/two-factor', data={'sms_code': '2346'})
|
|
assert response.status_code == 400
|
|
data = json.loads(response.get_data(as_text=True))
|
|
assert len(data.keys()) == 1
|
|
assert 'sms_code' in data
|
|
assert data['sms_code'].sort() == ['Code must be 5 digits', 'Code does not match'].sort()
|