mirror of
https://github.com/GSA/notifications-admin.git
synced 2026-02-06 11:23:48 -05:00
600a9afad7
This upgrades itsdangerous by a major version. When testing most routes we: * use the `client_request` fixture * under the hood this logs in the user with `TestClient.login` * logging in the user signs their session with a secret and the current time For some tests we also: * wrap the test method with a `freeze_time()` decorator to simulate a past date and time When Pytest calls the wrapped test method: * any application code which tries to get the current time will get the frozen time * any application code getting the current user means decoding the session * the code which decodes the session will see that the session was created in the future, in other words it has a negative age * as of ItsDangerous 2.0.0 signatures with a negative age raise an exception To avoid all the tests which freeze time failing, this adds itsdangerous to the list of packages that freezegun ignores. We can't yet upgrade to a version of itsdangerous that is >= 2.1.0 because there are compatibility issues with Flask 1.x.