1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
from itsdangerous.url_safe import URLSafeSerializer
from app import app as flask_app
ts = URLSafeSerializer(flask_app.config["SECRET_KEY"])
data2check_visitors = {
"/index": {"code": 200, "data": b"Nice Tagline"},
"/": {"code": 200, "data": b"Nice Tagline"},
"/ContactUs": {"code": 200, "data": b"send us a message."},
"/doesnotexists": {"code": 404, "data": b"Page Not Found"},
"/logout": {"code": 200, "data": b"You have been logged out."},
"/dashboard": {
"code": 401,
"data": b"You need to be logged in to access this resource",
},
"/signup": {"code": 200, "data": b"Register your account."},
"/signin": {"code": 200, "data": b"Sign in to your account."},
"/Simulate500": {"code": 500, "data": b"Server Could Not Process This."},
"/admin/user/": {"code": 403, "data": b"Forbidden"},
"/confirm": {"code": 200, "data": b"Token not provided in URL Parameter"},
"/confirm?confirmation_token=123": {"code": 200, "data": b"Bad Token Provided"},
}
def test_visitors(app, client):
for page in data2check_visitors:
res = client.get(page)
print("Testing %s", page)
assert res.status_code == data2check_visitors[page]["code"]
assert data2check_visitors[page]["data"] in res.data
def test_user_auth_flow(app, client):
res = client.post(
"/signup",
data=dict(
email="test@example.com",
first_name="John",
password="testpassword",
),
follow_redirects=True,
)
assert res.status_code == 200
assert b"confirm your email" in res.data
res = client.post(
"/signin",
data=dict(email="test@example.com", password="testpassword"),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Please Confirm Your Email First." in res.data
confirmation_token = ts.dumps("test@example.com", salt="email-confirm-key")
res = client.get(
"/confirm?confirmation_token={}".format(confirmation_token),
follow_redirects=True,
)
print(res.data)
assert b"Succesfully Verified" in res.data
res = client.post(
"/signin",
data=dict(email="test@example.com", password="testpassword"),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/logout", follow_redirects=True)
assert res.status_code == 200
assert b"You have been logged out." in res.data
res = client.post(
"/signin",
data=dict(email="test@example.com", password="testpassword"),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/signin", follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/signup", follow_redirects=True)
assert res.status_code == 200
assert b"Hi John" in res.data
res = client.get("/admin/user/")
assert res.status_code == 403
res = client.get("/logout")
res = client.post(
"/signin",
data=dict(email="testtest@example.com", password="123456"),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Incorrect Email" in res.data
res = client.post(
"/signin",
data=dict(email="test@example.com", password="incorrectpassword"),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Incorrect Password" in res.data
res = client.post(
"/signup",
data=dict(
email="test@example.com",
first_name="John",
password="testpassword",
),
follow_redirects=True,
)
assert res.status_code == 200
assert b"Oops! An account with that email already exists" in res.data
|
