gitorious.org Git - mediagoblin:mediagoblin.git/blob

1 # GNU MediaGoblin -- federated, autonomous media hosting

3 #

4 # This program is free software: you can redistribute it and/or modify

5 # it under the terms of the GNU Affero General Public License as published by

6 # the Free Software Foundation, either version 3 of the License, or

7 # (at your option) any later version.

8 #

9 # This program is distributed in the hope that it will be useful,

10 # but WITHOUT ANY WARRANTY; without even the implied warranty of

11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

12 # GNU Affero General Public License for more details.

13 #

14 # You should have received a copy of the GNU Affero General Public License

15 # along with this program. If not, see <http://www.gnu.org/licenses/>.

16

17 import six.moves.urllib.parse as urlparse

18

19 from mediagoblin import mg_globals

20 from mediagoblin.db.models import User

21 from mediagoblin.tests.tools import fixture_add_user

22 from mediagoblin import auth

23 from mediagoblin.tools import template, mail

24

25

26 class TestUserEdit(object):

27 def setup(self):

28 # set up new user

29 self.user_password = u'toast'

30 self.user = fixture_add_user(password = self.user_password,

31 privileges=[u'active'])

32

33 def login(self, test_app):

34 test_app.post(

35 '/auth/login/', {

36 'username': self.user.username,

37 'password': self.user_password})

38

39

40 def test_user_deletion(self, test_app):

41 """Delete user via web interface"""

42 self.login(test_app)

43

44 # Make sure user exists

45 assert User.query.filter_by(username=u'chris').first()

46

47 res = test_app.post('/edit/account/delete/', {'confirmed': 'y'})

48

49 # Make sure user has been deleted

50 assert User.query.filter_by(username=u'chris').first() == None

51

52 #TODO: make sure all corresponding items comments etc have been

53 # deleted too. Perhaps in submission test?

54

55 #Restore user at end of test

56 self.user = fixture_add_user(password = self.user_password,

57 privileges=[u'active'])

58 self.login(test_app)

59

60

61 def test_change_bio_url(self, test_app):

62 """Test changing bio and URL"""

63 self.login(test_app)

64

65 # Test if legacy profile editing URL redirects correctly

66 res = test_app.post(

67 '/edit/profile/', {

68 'bio': u'I love toast!',

69 'url': u'http://dustycloud.org/'}, expect_errors=True)

70

71 # Should redirect to /u/chris/edit/

72 assert res.status_int == 302

73 assert res.headers['Location'].endswith("/u/chris/edit/")

74

75 res = test_app.post(

76 '/u/chris/edit/', {

77 'bio': u'I love toast!',

78 'url': u'http://dustycloud.org/'})

79

80 test_user = User.query.filter_by(username=u'chris').first()

81 assert test_user.bio == u'I love toast!'

82 assert test_user.url == u'http://dustycloud.org/'

83

84 # change a different user than the logged in (should fail with 403)

85 fixture_add_user(username=u"foo",

86 privileges=[u'active'])

87 res = test_app.post(

88 '/u/foo/edit/', {

89 'bio': u'I love toast!',

90 'url': u'http://dustycloud.org/'}, expect_errors=True)

91 assert res.status_int == 403

92

93 # test changing the bio and the URL inproperly

94 too_long_bio = 150 * 'T' + 150 * 'o' + 150 * 'a' + 150 * 's' + 150* 't'

95

96 test_app.post(

97 '/u/chris/edit/', {

98 # more than 500 characters

99 'bio': too_long_bio,

100 'url': 'this-is-no-url'})

101

102 # Check form errors

103 context = template.TEMPLATE_TEST_CONTEXT[

104 'mediagoblin/edit/edit_profile.html']

105 form = context['form']

106

107 assert form.bio.errors == [

108 u'Field must be between 0 and 500 characters long.']

109 assert form.url.errors == [

110 u'This address contains errors']

111

112 def test_email_change(self, test_app):

113 self.login(test_app)

114

115 # Test email already in db

116 template.clear_test_template_context()

117 test_app.post(

118 '/edit/email/', {

119 'new_email': 'chris@example.com',

120 'password': 'toast'})

121

122 # Check form errors

123 context = template.TEMPLATE_TEST_CONTEXT[

124 'mediagoblin/edit/change_email.html']

125 assert context['form'].new_email.errors == [

126 u'Sorry, a user with that email address already exists.']

127

128 # Test successful email change

129 template.clear_test_template_context()

130 res = test_app.post(

131 '/edit/email/', {

132 'new_email': 'new@example.com',

133 'password': 'toast'})

134 res.follow()

135

136 # Correct redirect?

137 assert urlparse.urlsplit(res.location)[2] == '/edit/account/'

138

139 # Make sure we get email verification and try verifying

140 assert len(mail.EMAIL_TEST_INBOX) == 1

141 message = mail.EMAIL_TEST_INBOX.pop()

142 assert message['To'] == 'new@example.com'

143 email_context = template.TEMPLATE_TEST_CONTEXT[

144 'mediagoblin/edit/verification.txt']

145 assert email_context['verification_url'].encode('ascii') in message.get_payload(decode=True)

146

147 path = urlparse.urlsplit(email_context['verification_url'])[2]

148 assert path == u'/edit/verify_email/'

149

150 ## Try verifying with bs verification key, shouldn't work

151 template.clear_test_template_context()

152 res = test_app.get(

153 "/edit/verify_email/?token=total_bs")

154 res.follow()

155

156 # Correct redirect?

157 assert urlparse.urlsplit(res.location)[2] == '/'

158

159 # Email shouldn't be saved

160 email_in_db = mg_globals.database.User.query.filter_by(

161 email='new@example.com').first()

162 email = User.query.filter_by(username='chris').first().email

163 assert email_in_db is None

164 assert email == 'chris@example.com'

165

166 # Verify email activation works

167 template.clear_test_template_context()

168 get_params = urlparse.urlsplit(email_context['verification_url'])[3]

169 res = test_app.get('%s?%s' % (path, get_params))

170 res.follow()

171

172 # New email saved?

173 email = User.query.filter_by(username='chris').first().email

174 assert email == 'new@example.com'

175 # test changing the url inproperly