mirror of
https://github.com/simple-login/app.git
synced 2026-01-26 22:19:56 +08:00
65 lines
1.6 KiB
Python
65 lines
1.6 KiB
Python
from random import random
|
|
|
|
from flask import url_for
|
|
|
|
from app.db import Session
|
|
from app.models import Job, ApiToCookieToken, User, ApiKey
|
|
from tests.api.utils import get_new_user_and_api_key
|
|
|
|
|
|
def test_delete_without_sudo(flask_client):
|
|
user, api_key = get_new_user_and_api_key()
|
|
for job in Job.all():
|
|
job.delete(job.id)
|
|
Session.commit()
|
|
|
|
r = flask_client.delete(
|
|
url_for("api.delete_user"),
|
|
headers={"Authentication": api_key.code},
|
|
)
|
|
|
|
assert r.status_code == 440
|
|
assert Job.count() == 0
|
|
|
|
|
|
def test_delete_with_sudo(flask_client):
|
|
user, api_key = get_new_user_and_api_key()
|
|
password = f"passwd-{random()}"
|
|
user.set_password(password)
|
|
for job in Job.all():
|
|
job.delete(job.id)
|
|
Session.commit()
|
|
|
|
r = flask_client.patch(
|
|
url_for("api.enter_sudo"),
|
|
headers={"Authentication": api_key.code},
|
|
json={"password": password},
|
|
)
|
|
|
|
assert r.status_code == 200
|
|
|
|
r = flask_client.delete(
|
|
url_for("api.delete_user"),
|
|
headers={"Authentication": api_key.code},
|
|
)
|
|
|
|
assert r.status_code == 200
|
|
db_user = User.get(user.id)
|
|
assert db_user.delete_on is not None
|
|
assert ApiKey.filter_by(user_id=db_user.id).count() == 0
|
|
|
|
|
|
def test_get_cookie_token(flask_client):
|
|
user, api_key = get_new_user_and_api_key()
|
|
|
|
r = flask_client.get(
|
|
url_for("api.get_api_session_token"),
|
|
headers={"Authentication": api_key.code},
|
|
)
|
|
|
|
assert r.status_code == 200
|
|
|
|
code = r.json["token"]
|
|
token = ApiToCookieToken.get_by(code=code)
|
|
assert token is not None
|
|
assert token.user_id == user.id
|