2006-07-09 16:30:01 +00:00
|
|
|
# redMine - project management software
|
2007-04-28 17:30:17 +00:00
|
|
|
# Copyright (C) 2006-2007 Jean-Philippe Lang
|
2006-07-09 16:30:01 +00:00
|
|
|
#
|
|
|
|
|
# This program is free software; you can redistribute it and/or
|
|
|
|
|
# modify it under the terms of the GNU General Public License
|
|
|
|
|
# as published by the Free Software Foundation; either version 2
|
|
|
|
|
# of the License, or (at your option) any later version.
|
|
|
|
|
#
|
|
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
# GNU General Public License for more details.
|
|
|
|
|
#
|
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
|
# along with this program; if not, write to the Free Software
|
|
|
|
|
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
|
|
2010-12-12 23:24:34 +00:00
|
|
|
require File.expand_path('../../test_helper', __FILE__)
|
2006-07-09 16:30:01 +00:00
|
|
|
|
2008-07-19 10:47:19 +00:00
|
|
|
begin
|
|
|
|
|
require 'mocha'
|
|
|
|
|
rescue
|
|
|
|
|
# Won't run some tests
|
|
|
|
|
end
|
|
|
|
|
|
2006-07-09 16:30:01 +00:00
|
|
|
class AccountTest < ActionController::IntegrationTest
|
2009-12-06 10:28:20 +00:00
|
|
|
fixtures :users, :roles
|
2006-07-09 16:30:01 +00:00
|
|
|
|
|
|
|
|
# Replace this with your real tests.
|
|
|
|
|
def test_login
|
2006-12-03 19:55:45 +00:00
|
|
|
get "my/page"
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to "/login?back_url=http%3A%2F%2Fwww.example.com%2Fmy%2Fpage"
|
2006-07-29 09:32:58 +00:00
|
|
|
log_user('jsmith', 'jsmith')
|
2006-07-09 16:30:01 +00:00
|
|
|
|
2006-12-03 19:55:45 +00:00
|
|
|
get "my/account"
|
2006-07-09 16:30:01 +00:00
|
|
|
assert_response :success
|
2006-12-03 19:55:45 +00:00
|
|
|
assert_template "my/account"
|
2006-07-09 16:30:01 +00:00
|
|
|
end
|
|
|
|
|
|
2009-02-25 14:59:33 +00:00
|
|
|
def test_autologin
|
|
|
|
|
user = User.find(1)
|
|
|
|
|
Setting.autologin = "7"
|
|
|
|
|
Token.delete_all
|
|
|
|
|
|
|
|
|
|
# User logs in with 'autologin' checked
|
|
|
|
|
post '/login', :username => user.login, :password => 'admin', :autologin => 1
|
2010-11-14 16:45:32 +00:00
|
|
|
assert_redirected_to '/my/page'
|
2009-02-25 14:59:33 +00:00
|
|
|
token = Token.find :first
|
|
|
|
|
assert_not_nil token
|
|
|
|
|
assert_equal user, token.user
|
|
|
|
|
assert_equal 'autologin', token.action
|
|
|
|
|
assert_equal user.id, session[:user_id]
|
|
|
|
|
assert_equal token.value, cookies['autologin']
|
|
|
|
|
|
|
|
|
|
# Session is cleared
|
|
|
|
|
reset!
|
|
|
|
|
User.current = nil
|
|
|
|
|
# Clears user's last login timestamp
|
|
|
|
|
user.update_attribute :last_login_on, nil
|
|
|
|
|
assert_nil user.reload.last_login_on
|
|
|
|
|
|
|
|
|
|
# User comes back with his autologin cookie
|
|
|
|
|
cookies[:autologin] = token.value
|
|
|
|
|
get '/my/page'
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template 'my/page'
|
|
|
|
|
assert_equal user.id, session[:user_id]
|
|
|
|
|
assert_not_nil user.reload.last_login_on
|
2009-03-28 12:30:48 +00:00
|
|
|
assert user.last_login_on.utc > 10.second.ago.utc
|
2009-02-25 14:59:33 +00:00
|
|
|
end
|
|
|
|
|
|
2006-07-29 09:32:58 +00:00
|
|
|
def test_lost_password
|
2007-02-02 15:20:49 +00:00
|
|
|
Token.delete_all
|
|
|
|
|
|
2006-07-29 09:32:58 +00:00
|
|
|
get "account/lost_password"
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template "account/lost_password"
|
|
|
|
|
|
2008-12-12 12:07:09 +00:00
|
|
|
post "account/lost_password", :mail => 'jSmith@somenet.foo'
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to "/login"
|
2006-07-29 09:32:58 +00:00
|
|
|
|
|
|
|
|
token = Token.find(:first)
|
|
|
|
|
assert_equal 'recovery', token.action
|
|
|
|
|
assert_equal 'jsmith@somenet.foo', token.user.mail
|
|
|
|
|
assert !token.expired?
|
|
|
|
|
|
|
|
|
|
get "account/lost_password", :token => token.value
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template "account/password_recovery"
|
|
|
|
|
|
|
|
|
|
post "account/lost_password", :token => token.value, :new_password => 'newpass', :new_password_confirmation => 'newpass'
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to "/login"
|
2006-07-29 09:32:58 +00:00
|
|
|
assert_equal 'Password was successfully updated.', flash[:notice]
|
|
|
|
|
|
|
|
|
|
log_user('jsmith', 'newpass')
|
|
|
|
|
assert_equal 0, Token.count
|
2007-11-18 17:46:55 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_register_with_automatic_activation
|
|
|
|
|
Setting.self_registration = '3'
|
|
|
|
|
|
|
|
|
|
get 'account/register'
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template 'account/register'
|
|
|
|
|
|
|
|
|
|
post 'account/register', :user => {:login => "newuser", :language => "en", :firstname => "New", :lastname => "User", :mail => "newuser@foo.bar"},
|
|
|
|
|
:password => "newpass", :password_confirmation => "newpass"
|
2010-11-14 16:45:32 +00:00
|
|
|
assert_redirected_to '/my/account'
|
2008-06-09 18:59:15 +00:00
|
|
|
follow_redirect!
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template 'my/account'
|
|
|
|
|
|
2009-03-15 10:49:18 +00:00
|
|
|
user = User.find_by_login('newuser')
|
|
|
|
|
assert_not_nil user
|
|
|
|
|
assert user.active?
|
|
|
|
|
assert_not_nil user.last_login_on
|
2007-11-18 17:46:55 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_register_with_manual_activation
|
|
|
|
|
Setting.self_registration = '2'
|
|
|
|
|
|
|
|
|
|
post 'account/register', :user => {:login => "newuser", :language => "en", :firstname => "New", :lastname => "User", :mail => "newuser@foo.bar"},
|
|
|
|
|
:password => "newpass", :password_confirmation => "newpass"
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to '/login'
|
2007-11-18 17:46:55 +00:00
|
|
|
assert !User.find_by_login('newuser').active?
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_register_with_email_activation
|
|
|
|
|
Setting.self_registration = '1'
|
|
|
|
|
Token.delete_all
|
|
|
|
|
|
|
|
|
|
post 'account/register', :user => {:login => "newuser", :language => "en", :firstname => "New", :lastname => "User", :mail => "newuser@foo.bar"},
|
|
|
|
|
:password => "newpass", :password_confirmation => "newpass"
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to '/login'
|
2007-11-18 17:46:55 +00:00
|
|
|
assert !User.find_by_login('newuser').active?
|
|
|
|
|
|
|
|
|
|
token = Token.find(:first)
|
|
|
|
|
assert_equal 'register', token.action
|
|
|
|
|
assert_equal 'newuser@foo.bar', token.user.mail
|
|
|
|
|
assert !token.expired?
|
|
|
|
|
|
|
|
|
|
get 'account/activate', :token => token.value
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to '/login'
|
2007-11-18 17:46:55 +00:00
|
|
|
log_user('newuser', 'newpass')
|
|
|
|
|
end
|
2008-07-19 10:47:19 +00:00
|
|
|
|
|
|
|
|
if Object.const_defined?(:Mocha)
|
|
|
|
|
|
|
|
|
|
def test_onthefly_registration
|
|
|
|
|
# disable registration
|
|
|
|
|
Setting.self_registration = '0'
|
2010-02-26 09:13:12 +00:00
|
|
|
AuthSource.expects(:authenticate).returns({:login => 'foo', :firstname => 'Foo', :lastname => 'Smith', :mail => 'foo@bar.com', :auth_source_id => 66})
|
2008-07-19 10:47:19 +00:00
|
|
|
|
|
|
|
|
post 'account/login', :username => 'foo', :password => 'bar'
|
2010-11-14 16:45:32 +00:00
|
|
|
assert_redirected_to '/my/page'
|
2008-07-19 10:47:19 +00:00
|
|
|
|
|
|
|
|
user = User.find_by_login('foo')
|
|
|
|
|
assert user.is_a?(User)
|
|
|
|
|
assert_equal 66, user.auth_source_id
|
|
|
|
|
assert user.hashed_password.blank?
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_onthefly_registration_with_invalid_attributes
|
|
|
|
|
# disable registration
|
|
|
|
|
Setting.self_registration = '0'
|
2010-02-26 09:13:12 +00:00
|
|
|
AuthSource.expects(:authenticate).returns({:login => 'foo', :lastname => 'Smith', :auth_source_id => 66})
|
2008-07-19 10:47:19 +00:00
|
|
|
|
|
|
|
|
post 'account/login', :username => 'foo', :password => 'bar'
|
|
|
|
|
assert_response :success
|
|
|
|
|
assert_template 'account/register'
|
|
|
|
|
assert_tag :input, :attributes => { :name => 'user[firstname]', :value => '' }
|
|
|
|
|
assert_tag :input, :attributes => { :name => 'user[lastname]', :value => 'Smith' }
|
|
|
|
|
assert_no_tag :input, :attributes => { :name => 'user[login]' }
|
|
|
|
|
assert_no_tag :input, :attributes => { :name => 'user[password]' }
|
|
|
|
|
|
|
|
|
|
post 'account/register', :user => {:firstname => 'Foo', :lastname => 'Smith', :mail => 'foo@bar.com'}
|
2009-02-21 11:04:50 +00:00
|
|
|
assert_redirected_to '/my/account'
|
2008-07-19 10:47:19 +00:00
|
|
|
|
|
|
|
|
user = User.find_by_login('foo')
|
|
|
|
|
assert user.is_a?(User)
|
|
|
|
|
assert_equal 66, user.auth_source_id
|
|
|
|
|
assert user.hashed_password.blank?
|
|
|
|
|
end
|
|
|
|
|
|
2009-11-21 10:02:39 +00:00
|
|
|
def test_login_and_logout_should_clear_session
|
|
|
|
|
get '/login'
|
|
|
|
|
sid = session[:session_id]
|
|
|
|
|
|
|
|
|
|
post '/login', :username => 'admin', :password => 'admin'
|
2010-11-14 16:45:32 +00:00
|
|
|
assert_redirected_to '/my/page'
|
2009-11-21 10:02:39 +00:00
|
|
|
assert_not_equal sid, session[:session_id], "login should reset session"
|
|
|
|
|
assert_equal 1, session[:user_id]
|
|
|
|
|
sid = session[:session_id]
|
|
|
|
|
|
|
|
|
|
get '/'
|
|
|
|
|
assert_equal sid, session[:session_id]
|
|
|
|
|
|
|
|
|
|
get '/logout'
|
|
|
|
|
assert_not_equal sid, session[:session_id], "logout should reset session"
|
|
|
|
|
assert_nil session[:user_id]
|
|
|
|
|
end
|
|
|
|
|
|
2008-07-19 10:47:19 +00:00
|
|
|
else
|
|
|
|
|
puts 'Mocha is missing. Skipping tests.'
|
|
|
|
|
end
|
2006-07-09 16:30:01 +00:00
|
|
|
end
|
