1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
|
from itsdangerous.url_safe import URLSafeSerializer
from app import app as flask_app
ts = URLSafeSerializer(flask_app.config["SECRET_KEY"])
data2check_visitors = {
"/index": {
"code": 200, "data": b"Nice Tagline"
},
"/": {
"code": 200, "data": b"Nice Tagline"
},
"/ContactUs":{
"code": 200, "data": b"send us a message."
},
"/doesnotexists":{
"code": 404, "data": b"Page Not Found"
},
"/logout":{
"code": 200, "data": b"You have been logged out."
},
"/dashboard":{
"code":401,"data":b"You need to be logged in to access this resource"
},
"/signup":{
"code":200,"data":b"Register your account."
},
"/signin":{
"code":200,"data":b"Sign in to your account."
},
"/Simulate500":{
"code":500,"data":b"Server Could Not Process This."
},
"/admin/user/":{
"code":403,"data":b"Forbidden"
},
"/confirm":{
"code":200,"data":b"Token not provided in URL Parameter"
},
"/confirm?confirmation_token=123":{
"code":200,"data":b"Bad Token Provided"
}
}
def test_visitors(app, client):
for page in data2check_visitors:
res = client.get(page)
print("Testing %s",page)
assert res.status_code == data2check_visitors[page]["code"]
assert data2check_visitors[page]["data"] in res.data
def test_user_auth_flow(app, client):
res = client.post("/signup",data=dict(
email="test@example.com",
first_name="John",
password="testpassword",
), follow_redirects=True)
assert res.status_code == 200
assert b"confirm your email" in res.data
res = client.post("/signin",data=dict(
email="test@example.com",
password="testpassword"),
follow_redirects=True)
assert res.status_code == 200
assert b"Please Confirm Your Email First." in res.data
confirmation_token = ts.dumps("test@example.com",salt="email-confirm-key")
res = client.get("/confirm?confirmation_token={}".format(confirmation_token),
follow_redirects=True)
print(res.data)
assert b"Succesfully Verified" in res.data
res = client.post("/signin",data=dict(
email="test@example.com",
password="testpassword"),
follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/logout", follow_redirects=True)
assert res.status_code == 200
assert b"You have been logged out." in res.data
res = client.post("/signin",data=dict(
email="test@example.com",
password="testpassword"),
follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/signin",follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/signup",follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/admin/user/")
assert res.status_code == 403
res = client.get("/logout")
res = client.post("/signin",data=dict(
email="testtest@example.com",
password="123456"),follow_redirects=True)
assert res.status_code == 200
assert b"Incorrect Email" in res.data
res = client.post("/signin",data=dict(
email="test@example.com",
password="incorrectpassword"),
follow_redirects = True)
assert res.status_code == 200
assert b"Incorrect Password" in res.data
res = client.post("/signup",data=dict(
email="test@example.com",
first_name="John",
password="testpassword",
), follow_redirects=True)
assert res.status_code == 200
assert b"Oops! An account with that email already exists" in res.data
|
