Changeset - 72542dc597be
Parent rev.
Child rev.
[Not reviewed]
beta
0 4 0
Marcin Kuzminski - 14 years ago 2012-05-08 23:59:27
marcin@python-works.com
fixed issue with empty APIKEYS on registration #438
4 files changed with 31 insertions and 32 deletions:
docs/changelog.rst
1
rhodecode/model/db.py
2
1
rhodecode/model/user.py
2
4
rhodecode/tests/functional/test_login.py
26
27
0 comments (0 inline, 0 general)
docs/changelog.rst
Show inline comments
 
@@ -35,12 +35,13 @@ fixes
 
- fixed missing permission checks on show forks page
 
- #418 cast to unicode fixes in notification objects
 
- #426 fixed mention extracting regex
 
- fixed remote-pulling for git remotes remopositories
 
- fixed #434: Error when accessing files or changesets of a git repository
 
  with submodules
 
- fixed issue with empty APIKEYS for users after registration ref. #438
 

			




	
	
	
		
 
1.3.4 (**2012-03-28**)

			




	
	
	
		
 
----------------------

			




	
	
	
		
 

			




	
	
	
		
 
news

			




	
	
	
		
 
++++

			




        

    


    
    

    

        

                

                    rhodecode/model/db.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -1230,13 +1230,14 @@ class Notification(Base, BaseModel):

			




	
	
	
		
 
    notifications_to_users = relationship('UserNotification', lazy='joined',

			




	
	
	
		
 
                                          cascade="all, delete, delete-orphan")

			




	
	
	
		
 

			




	
	
	
		
 
    @property

			




	
	
	
		
 
    def recipients(self):

			




	
	
	
		
 
        return [x.user for x in UserNotification.query()\

			




	
	
	
		
 
                .filter(UserNotification.notification == self).all()]

			




	
	
	
		
 
                .filter(UserNotification.notification == self)\

			




	
	
	
		
 
                .order_by(UserNotification.user).all()]

			




	
	
	
		
 

			




	
	
	
		
 
    @classmethod

			




	
	
	
		
 
    def create(cls, created_by, subject, body, recipients, type_=None):

			




	
	
	
		
 
        if type_ is None:

			




	
	
	
		
 
            type_ = Notification.TYPE_MESSAGE

			




	
	
	
		
 

			




        

    


    
    

    

        

                

                    rhodecode/model/user.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -222,16 +222,14 @@ class UserModel(BaseModel):

			




	
	
	
		
 
        return None

			




	
	
	
		
 

			




	
	
	
		
 
    def create_registration(self, form_data):

			




	
	
	
		
 
        from rhodecode.model.notification import NotificationModel

			




	
	
	
		
 

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            new_user = User()

			




	
	
	
		
 
            for k, v in form_data.items():

			




	
	
	
		
 
                if k != 'admin':

			




	
	
	
		
 
                    setattr(new_user, k, v)

			




	
	
	
		
 
            form_data['admin'] = False

			




	
	
	
		
 
            new_user = self.create(form_data)

			




	
	
	
		
 

			




	
	
	
		
 
            self.sa.add(new_user)

			




	
	
	
		
 
            self.sa.flush()

			




	
	
	
		
 

			




	
	
	
		
 
            # notification to admins

			




	
	
	
		
 
            subject = _('new user registration')

			




        

    


    
    

    

        

                

                    rhodecode/tests/functional/test_login.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -51,13 +51,12 @@ class TestLoginController(TestController

			




	
	
	
		
 
        self.assertEqual(response.status, '302 Found')

			




	
	
	
		
 
        response = response.follow()

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status, '200 OK')

			




	
	
	
		
 
        self.assertTrue('Users administration' in response.body)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    def test_login_short_password(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='index'),

			




	
	
	
		
 
                                 {'username':'test_admin',

			




	
	
	
		
 
                                  'password':'as'})

			




	
	
	
		
 
        self.assertEqual(response.status, '200 OK')

			




	
	
	
		
 

			




	
	
		
 
@@ -98,53 +97,52 @@ class TestLoginController(TestController

			




	
	
	
		
 
                                             'password_confirmation':'test12',

			




	
	
	
		
 
                                             'email':'test_admin@mail.com',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        assert 'This e-mail address is already taken' in response.body

			




	
	
	
		
 
        response.mustcontain('This e-mail address is already taken')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_err_same_email_case_sensitive(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'test_admin_1',

			




	
	
	
		
 
                                             'password':'test12',

			




	
	
	
		
 
                                             'password_confirmation':'test12',

			




	
	
	
		
 
                                             'email':'TesT_Admin@mail.COM',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        assert 'This e-mail address is already taken' in response.body

			




	
	
	
		
 
        response.mustcontain('This e-mail address is already taken')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_err_wrong_data(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'xs',

			




	
	
	
		
 
                                             'password':'test',

			




	
	
	
		
 
                                             'password_confirmation':'test',

			




	
	
	
		
 
                                             'email':'goodmailm',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        assert 'An email address must contain a single @' in response.body

			




	
	
	
		
 
        assert 'Enter a value 6 characters long or more' in response.body

			




	
	
	
		
 

			




	
	
	
		
 
        response.mustcontain('An email address must contain a single @')

			




	
	
	
		
 
        response.mustcontain('Enter a value 6 characters long or more')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_err_username(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'error user',

			




	
	
	
		
 
                                             'password':'test12',

			




	
	
	
		
 
                                             'password_confirmation':'test12',

			




	
	
	
		
 
                                             'email':'goodmailm',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        assert 'An email address must contain a single @' in response.body

			




	
	
	
		
 
        assert ('Username may only contain '

			




	
	
	
		
 
        response.mustcontain('An email address must contain a single @')

			




	
	
	
		
 
        response.mustcontain('Username may only contain '

			




	
	
	
		
 
                'alphanumeric characters underscores, '

			




	
	
	
		
 
                'periods or dashes and must begin with '

			




	
	
	
		
 
                'alphanumeric character') in response.body

			




	
	
	
		
 
                'alphanumeric character')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_err_case_sensitive(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'Test_Admin',

			




	
	
	
		
 
                                             'password':'test12',

			




	
	
	
		
 
                                             'password_confirmation':'test12',

			




	
	
		
 
@@ -153,38 +151,35 @@ class TestLoginController(TestController

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        self.assertTrue('An email address must contain a single @' in response.body)

			




	
	
	
		
 
        self.assertTrue('This username already exists' in response.body)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_special_chars(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'xxxaxn',

			




	
	
	
		
 
                                             'password':'ąćźżąśśśś',

			




	
	
	
		
 
                                             'password_confirmation':'ąćźżąśśśś',

			




	
	
	
		
 
                                             'email':'goodmailm@test.plx',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        self.assertTrue('Invalid characters in password' in response.body)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_password_mismatch(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':'xs',

			




	
	
	
		
 
                                             'password':'123qwe',

			




	
	
	
		
 
                                             'password_confirmation':'qwe123',

			




	
	
	
		
 
                                             'email':'goodmailm@test.plxa',

			




	
	
	
		
 
                                             'name':'test',

			




	
	
	
		
 
                                             'lastname':'test'})

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        assert 'Passwords do not match' in response.body

			




	
	
	
		
 
        self.assertEqual(response.status, '200 OK')

			




	
	
	
		
 
        response.mustcontain('Passwords do not match')

			




	
	
	
		
 

			




	
	
	
		
 
    def test_register_ok(self):

			




	
	
	
		
 
        username = 'test_regular4'

			




	
	
	
		
 
        password = 'qweqwe'

			




	
	
	
		
 
        email = 'marcin@test.com'

			




	
	
	
		
 
        name = 'testname'

			




	
	
		
 
@@ -193,34 +188,38 @@ class TestLoginController(TestController

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='register'),

			




	
	
	
		
 
                                            {'username':username,

			




	
	
	
		
 
                                             'password':password,

			




	
	
	
		
 
                                             'password_confirmation':password,

			




	
	
	
		
 
                                             'email':email,

			




	
	
	
		
 
                                             'name':name,

			




	
	
	
		
 
                                             'lastname':lastname})

			




	
	
	
		
 
        self.assertEqual(response.status , '302 Found')

			




	
	
	
		
 
        assert 'You have successfully registered into rhodecode' in response.session['flash'][0], 'No flash message about user registration'

			




	
	
	
		
 
                                             'lastname':lastname,

			




	
	
	
		
 
                                             'admin':True}) # This should be overriden

			




	
	
	
		
 
        self.assertEqual(response.status, '302 Found')

			




	
	
	
		
 
        self.checkSessionFlash(response, 'You have successfully registered into rhodecode')

			




	
	
	
		
 

			




	
	
	
		
 
        ret = self.Session.query(User).filter(User.username == 'test_regular4').one()

			




	
	
	
		
 
        assert ret.username == username , 'field mismatch %s %s' % (ret.username, username)

			




	
	
	
		
 
        assert check_password(password, ret.password) == True , 'password mismatch'

			




	
	
	
		
 
        assert ret.email == email , 'field mismatch %s %s' % (ret.email, email)

			




	
	
	
		
 
        assert ret.name == name , 'field mismatch %s %s' % (ret.name, name)

			




	
	
	
		
 
        assert ret.lastname == lastname , 'field mismatch %s %s' % (ret.lastname, lastname)

			




	
	
	
		
 

			




	
	
	
		
 
        self.assertEqual(ret.username, username)

			




	
	
	
		
 
        self.assertEqual(check_password(password, ret.password), True)

			




	
	
	
		
 
        self.assertEqual(ret.email, email)

			




	
	
	
		
 
        self.assertEqual(ret.name, name)

			




	
	
	
		
 
        self.assertEqual(ret.lastname, lastname)

			




	
	
	
		
 
        self.assertNotEqual(ret.api_key, None)

			




	
	
	
		
 
        self.assertEqual(ret.admin, False)

			




	
	
	
		
 

			




	
	
	
		
 
    def test_forgot_password_wrong_mail(self):

			




	
	
	
		
 
        response = self.app.post(url(controller='login', action='password_reset'),

			




	
	
	
		
 
                                            {'email':'marcin@wrongmail.org', })

			




	
	
	
		
 
        response = self.app.post(

			




	
	
	
		
 
                        url(controller='login', action='password_reset'),

			




	
	
	
		
 
                            {'email': 'marcin@wrongmail.org',}

			




	
	
	
		
 
        )

			




	
	
	
		
 

			




	
	
	
		
 
        assert "This e-mail address doesn't exist" in response.body, 'Missing error message about wrong email'

			




	
	
	
		
 
        response.mustcontain("This e-mail address doesn't exist")

			




	
	
	
		
 

			




	
	
	
		
 
    def test_forgot_password(self):

			




	
	
	
		
 
        response = self.app.get(url(controller='login',

			




	
	
	
		
 
                                    action='password_reset'))

			




	
	
	
		
 
        self.assertEqual(response.status , '200 OK')

			




	
	
	
		
 
        self.assertEqual(response.status, '200 OK')

			




	
	
	
		
 

			




	
	
	
		
 
        username = 'test_password_reset_1'

			




	
	
	
		
 
        password = 'qweqwe'

			




	
	
	
		
 
        email = 'marcin@python-works.com'

			




	
	
	
		
 
        name = 'passwd'

			




	
	
	
		
 
        lastname = 'reset'

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.