darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-22 08:21:13 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
fb114f4c801cea47a01641361fd410ad982f5d2c
notifications-api/tests/app/user/test_rest_verify.py

366 lines
15 KiB
Python
Raw Normal View History

All tests working, second time around.
2016-01-21 17:29:24 +00:00
import json
Missed a couple of places where we should push to the queue.
2016-02-03 13:52:09 +00:00
import moto
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
import pytest
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
from datetime import (
datetime,
timedelta
)
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
from flask import url_for, current_app
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
from app.dao.services_dao import dao_update_service, dao_fetch_service_by_id
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
from app.models import (
VerifyCode,
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
User,
Notification
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
)
Celery task to send the sms verify code. Each celery task will use it's own queue.
2016-02-17 15:41:33 +00:00
from app import db, encryption
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
All tests working, second time around.
2016-01-21 17:29:24 +00:00
from tests import create_authorization_header
Capture logged in at when password is verified
2016-03-07 15:01:40 +00:00
from freezegun import freeze_time
All tests working, second time around.
2016-01-21 17:29:24 +00:00
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
import app.celery.tasks
All tests working, second time around.
2016-01-21 17:29:24 +00:00
def test_user_verify_code_sms(notify_api,
sample_sms_code):
"""
Tests POST endpoint '/<user_id>/verify/code'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
assert not VerifyCode.query.first().code_used
data = json.dumps({
'code_type': sample_sms_code.code_type,
'code': sample_sms_code.txt_code})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_code', user_id=sample_sms_code.user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
assert VerifyCode.query.first().code_used
def test_user_verify_code_sms_missing_code(notify_api,
sample_sms_code):
"""
Tests POST endpoint '/<user_id>/verify/code'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
assert not VerifyCode.query.first().code_used
data = json.dumps({'code_type': sample_sms_code.code_type})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_code', user_id=sample_sms_code.user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 400
assert not VerifyCode.query.first().code_used
Missed a couple of places where we should push to the queue.
2016-02-03 13:52:09 +00:00
@moto.mock_sqs
All tests working, second time around.
2016-01-21 17:29:24 +00:00
def test_user_verify_code_email(notify_api,
Missed a couple of places where we should push to the queue.
2016-02-03 13:52:09 +00:00
sqs_client_conn,
All tests working, second time around.
2016-01-21 17:29:24 +00:00
sample_email_code):
"""
Tests POST endpoint '/<user_id>/verify/code'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
assert not VerifyCode.query.first().code_used
data = json.dumps({
'code_type': sample_email_code.code_type,
'code': sample_email_code.txt_code})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_code', user_id=sample_email_code.user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
assert VerifyCode.query.first().code_used
def test_user_verify_code_email_bad_code(notify_api,
sample_email_code):
"""
Tests POST endpoint '/<user_id>/verify/code'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
assert not VerifyCode.query.first().code_used
data = json.dumps({
'code_type': sample_email_code.code_type,
'code': "blah"})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_code', user_id=sample_email_code.user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 404
assert not VerifyCode.query.first().code_used
def test_user_verify_code_email_expired_code(notify_api,
sample_email_code):
"""
Tests POST endpoint '/<user_id>/verify/code'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
assert not VerifyCode.query.first().code_used
sample_email_code.expiry_datetime = (
Update now to utcnow. All tests passing.
2016-05-11 10:56:24 +01:00
datetime.utcnow() - timedelta(hours=1))
All tests working, second time around.
2016-01-21 17:29:24 +00:00
db.session.add(sample_email_code)
db.session.commit()
data = json.dumps({
'code_type': sample_email_code.code_type,
'code': sample_email_code.txt_code})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_code', user_id=sample_email_code.user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 400
assert not VerifyCode.query.first().code_used
Capture logged in at when password is verified
2016-03-07 15:01:40 +00:00
@freeze_time("2016-01-01 10:00:00.000000")
All tests working, second time around.
2016-01-21 17:29:24 +00:00
def test_user_verify_password(notify_api,
notify_db,
notify_db_session,
Updated send user code to use an optional to field to send emails Added tests for send_user_code
2016-01-27 11:51:02 +00:00
sample_user):
All tests working, second time around.
2016-01-21 17:29:24 +00:00
"""
Tests POST endpoint '/<user_id>/verify/password'
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({'password': 'password'})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_password', user_id=sample_user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
Capture logged in at when password is verified
2016-03-07 15:01:40 +00:00
User.query.get(sample_user.id).logged_in_at == datetime.utcnow()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
def test_user_verify_password_invalid_password(notify_api,
Updated send user code to use an optional to field to send emails Added tests for send_user_code
2016-01-27 11:51:02 +00:00
sample_user):
All tests working, second time around.
2016-01-21 17:29:24 +00:00
"""
Tests POST endpoint '/<user_id>/verify/password' invalid endpoint.
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({'password': 'bad password'})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
Record and persist failed login count on api.
2016-01-25 11:14:23 +00:00
assert sample_user.failed_login_count == 0
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_password', user_id=sample_user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 400
json_resp = json.loads(resp.get_data(as_text=True))
assert 'Incorrect password' in json_resp['message']['password']
Record and persist failed login count on api.
2016-01-25 11:14:23 +00:00
assert sample_user.failed_login_count == 1
All tests working, second time around.
2016-01-21 17:29:24 +00:00
If failed login count > 0 and user subsequently logs in sucessfully, then failed logins set to 0.
2016-01-28 11:32:46 +00:00
def test_user_verify_password_valid_password_resets_failed_logins(notify_api,
sample_user):
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({'password': 'bad password'})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
If failed login count > 0 and user subsequently logs in sucessfully, then failed logins set to 0.
2016-01-28 11:32:46 +00:00
assert sample_user.failed_login_count == 0
resp = client.post(
url_for('user.verify_user_password', user_id=sample_user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 400
json_resp = json.loads(resp.get_data(as_text=True))
assert 'Incorrect password' in json_resp['message']['password']
assert sample_user.failed_login_count == 1
data = json.dumps({'password': 'password'})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
If failed login count > 0 and user subsequently logs in sucessfully, then failed logins set to 0.
2016-01-28 11:32:46 +00:00
resp = client.post(
url_for('user.verify_user_password', user_id=sample_user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
assert sample_user.failed_login_count == 0
All tests working, second time around.
2016-01-21 17:29:24 +00:00
def test_user_verify_password_missing_password(notify_api,
Updated send user code to use an optional to field to send emails Added tests for send_user_code
2016-01-27 11:51:02 +00:00
sample_user):
All tests working, second time around.
2016-01-21 17:29:24 +00:00
"""
Tests POST endpoint '/<user_id>/verify/password' missing password.
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({'bingo': 'bongo'})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
All tests working, second time around.
2016-01-21 17:29:24 +00:00
resp = client.post(
url_for('user.verify_user_password', user_id=sample_user.id),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 400
json_resp = json.loads(resp.get_data(as_text=True))
assert 'Required field missing data' in json_resp['message']['password']
Updated send user code to use an optional to field to send emails Added tests for send_user_code
2016-01-27 11:51:02 +00:00
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
@pytest.mark.parametrize('research_mode', [True, False])
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
@freeze_time("2016-01-01 11:09:00.061258")
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
def test_send_user_sms_code(notify_api,
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
sample_user,
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
sms_code_template,
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
mocker,
research_mode):
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
"""
Tests POST endpoint /user/<user_id>/sms-code
"""
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
with notify_api.test_request_context():
with notify_api.test_client() as client:
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
if research_mode:
notify_service = dao_fetch_service_by_id(current_app.config['NOTIFY_SERVICE_ID'])
notify_service.research_mode = True
dao_update_service(notify_service)
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
data = json.dumps({})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
mocked = mocker.patch('app.user.rest.create_secret_code', return_value='11111')
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
mocker.patch('app.celery.provider_tasks.deliver_sms.apply_async')
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
resp = client.post(
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
url_for('user.send_user_sms_code', user_id=sample_user.id),
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
assert mocked.call_count == 1
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
assert VerifyCode.query.count() == 1
assert VerifyCode.query.first().check_code('11111')
assert Notification.query.count() == 1
notification = Notification.query.first()
assert notification.personalisation == {'verify_code': '11111'}
assert notification.to == sample_user.mobile_number
assert str(notification.service_id) == current_app.config['NOTIFY_SERVICE_ID']
app.celery.provider_tasks.deliver_sms.apply_async.assert_called_once_with(
([str(notification.id)]),
Rationalised the queues. - the internal notify activites (send sms code, forgotten passwords etc) all not in a "notify" queue. - deleted all unused queues
2016-09-26 12:35:59 +01:00
queue="notify"
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
)
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
@freeze_time("2016-01-01 11:09:00.061258")
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
def test_send_user_code_for_sms_with_optional_to_field(notify_api,
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
sample_user,
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
sms_code_template,
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
mocker):
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
"""
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
Tests POST endpoint /user/<user_id>/sms-code with optional to field
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
"""
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
with notify_api.test_request_context():
with notify_api.test_client() as client:
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
to_number = '+441119876757'
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
mocked = mocker.patch('app.user.rest.create_secret_code', return_value='11111')
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
mocker.patch('app.celery.provider_tasks.deliver_sms.apply_async')
data = json.dumps({'to': to_number})
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
resp = client.post(
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
url_for('user.send_user_sms_code', user_id=sample_user.id),
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
Fix tests for sending sms codes. Since the unit tests delete the data in between tests I need to add the template data for the test for send sms code.
2016-06-06 11:51:12 +01:00
assert mocked.call_count == 1
Send Notify's 2FA codes via only the `notify` queue This means that these codes won't be delayed by large jobs going through the send-sms/email queues. send_user_sms_code now works much more like the endpoints for sending notifications, by persisting the notification and only using the deliver_sms task (instead of using send_sms as well). The workers consuming the `notify` queue should be able to handle the deliver task as well, so no change should be needed to the celery workers to support this. I think there's also a change in behaviour here: previously, if the Notify service was in research mode, 2FA codes would not have been sent out, making it impossible to log into the admin. Now, a call to this endpoint will always send out the notification even if we've put the Notify service into research mode, since we set the notification's key type to normal and ignore the service's research mode setting when sending the notification to the queue.
2016-12-09 14:55:24 +00:00
notification = Notification.query.first()
assert notification.to == to_number
app.celery.provider_tasks.deliver_sms.apply_async.assert_called_once_with(
([str(notification.id)]),
Rationalised the queues. - the internal notify activites (send sms code, forgotten passwords etc) all not in a "notify" queue. - deleted all unused queues
2016-09-26 12:35:59 +01:00
queue="notify"
[WIP] use send_sms task to send sms code. Tests are broken because the template data for the Notify service is being delete after every test. Need a way to seed the data for the test.
2016-06-03 15:15:46 +01:00
)
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
def test_send_sms_code_returns_404_for_bad_input_data(notify_api, notify_db, notify_db_session):
"""
Tests POST endpoint /user/<user_id>/sms-code return 404 for bad input data
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({})
import uuid
uuid_ = uuid.uuid4()
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
resp = client.post(
url_for('user.send_user_sms_code', user_id=uuid_),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 404
Changed db queries to use one, which throws NoResultFound exception, this exception is dealt with in our error handlers. Now a lot of the if none checks can be removed.
2016-03-11 12:39:55 +00:00
assert json.loads(resp.get_data(as_text=True))['message'] == 'No result found'
Refactor user/<user_id>/code into two endpoints. - Created new endpoint user/<user_id>/sms-code to send the sms verification code to the user. - Create new endpoirtn user/<user_id>/email-code to send the email verifcation code to the user. - Marked the old methods, schema, tests with a TODO to be deleted when the admin app is no longer sending messages to /user/<user_id>/code - Added error handlers for DataError and NoResultFound. Data error catches invalid input errors. - Added error handler for SqlAlchemyError which catches any other database errors. - Removed the need for the try catches around the db calls in the user endpoints with the addition of the db error handlers. - We may want to wrap db excpetions in the dao, if we want the No results found message to be more specific and say no result found for user.
2016-02-19 11:37:35 +00:00
Use notify to send email verification
2016-06-09 16:41:20 +01:00
@freeze_time("2016-01-01 11:09:00.061258")
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
def test_send_user_email_verification(notify_api,
Use notify to send email verification
2016-06-09 16:41:20 +01:00
sample_user,
mocker,
email_verification_template):
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({})
Use notify to send email verification
2016-06-09 16:41:20 +01:00
mocker.patch('uuid.uuid4', return_value='some_uuid') # for the notification id
mocked = mocker.patch('app.celery.tasks.send_email.apply_async')
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks.
2016-06-16 17:34:33 +01:00
mocker.patch('notifications_utils.url_safe_token.generate_token', return_value='the-token')
Update python client to version 1.0.0. This version of the client removed the request method, path and body from the encode and decode methods. The biggest changes here is to the unit tests.
2016-05-04 16:08:23 +01:00
auth_header = create_authorization_header()
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
resp = client.post(
Use notify to send email verification
2016-06-09 16:41:20 +01:00
url_for('user.send_user_email_verification', user_id=str(sample_user.id)),
Added task for sending email verification links out on intial registration. Left original email code endpoint in as it is still used for things like email change.
2016-03-17 13:06:17 +00:00
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 204
Use notify to send email verification
2016-06-09 16:41:20 +01:00
assert mocked.call_count == 1
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks.
2016-06-16 17:34:33 +01:00
message = {
'template': str(email_verification_template.id),
'template_version': email_verification_template.version,
'to': sample_user.email_address,
'personalisation': {
'name': sample_user.name,
'url': current_app.config['ADMIN_BASE_URL'] + '/verify-email/' + 'the-token'
}
}
Rename first send_email to send_email_v1. Fix the tests
2016-06-13 16:16:56 +01:00
app.celery.tasks.send_email.apply_async.assert_called_once_with(
Use notify to send email verification
2016-06-09 16:41:20 +01:00
(str(current_app.config['NOTIFY_SERVICE_ID']),
'some_uuid',
Use the send email task to send the password reset and invitation email. Next PR can remove those tasks.
2016-06-16 17:34:33 +01:00
encryption.encrypt(message),
Append "Z" to DATETIME_FORMAT We're formally using the ISO 8601 UTC datetime format, and so the correct way to output the data is by appending the timezone. ("Z" in the case of UTC*). Unfortunately, Python's `datetime` formatting will just ignore the timezone part of the string on output, which means we just have to append the string "Z" to the end of all datetime strings we output. Should be fine, as we will only ever output UTC timestamps anyway. * https://en.wikipedia.org/wiki/ISO_8601#UTC
2016-11-21 15:16:21 +00:00
"2016-01-01T11:09:00.061258Z"),
Rationalised the queues. - the internal notify activites (send sms code, forgotten passwords etc) all not in a "notify" queue. - deleted all unused queues
2016-09-26 12:35:59 +01:00
queue="notify")
Use notify to send email verification
2016-06-09 16:41:20 +01:00
def test_send_email_verification_returns_404_for_bad_input_data(notify_api, notify_db, notify_db_session):
"""
Tests POST endpoint /user/<user_id>/sms-code return 404 for bad input data
"""
with notify_api.test_request_context():
with notify_api.test_client() as client:
data = json.dumps({})
import uuid
uuid_ = uuid.uuid4()
auth_header = create_authorization_header()
resp = client.post(
url_for('user.send_user_email_verification', user_id=uuid_),
data=data,
headers=[('Content-Type', 'application/json'), auth_header])
assert resp.status_code == 404
assert json.loads(resp.get_data(as_text=True))['message'] == 'No result found'
Reference in New Issue Copy Permalink