mirror of
https://github.com/heartcombo/devise.git
synced 2026-01-23 21:58:10 -05:00
139 lines
4.4 KiB
Ruby
139 lines
4.4 KiB
Ruby
require 'test/test_helper'
|
|
require 'digest/sha1'
|
|
|
|
class AuthenticableTest < ActiveSupport::TestCase
|
|
|
|
def encrypt_password(user, pepper=nil, stretches=1)
|
|
user.class_eval { define_method(:stretches) { stretches } } if stretches
|
|
user.password = '123456'
|
|
::Digest::SHA1.hexdigest("--#{user.password_salt}--#{pepper}--123456--#{pepper}--")
|
|
end
|
|
|
|
test 'should respond to password and password confirmation' do
|
|
user = new_user
|
|
assert user.respond_to?(:password)
|
|
assert user.respond_to?(:password_confirmation)
|
|
end
|
|
|
|
test 'should have email acessible' do
|
|
assert field_accessible?(:email)
|
|
end
|
|
|
|
test 'should have password acessible' do
|
|
assert field_accessible?(:password)
|
|
end
|
|
|
|
test 'should have password confirmation accessible' do
|
|
assert field_accessible?(:password_confirmation)
|
|
end
|
|
|
|
test 'should not have password salt accessible' do
|
|
assert_not field_accessible?(:password_salt)
|
|
end
|
|
|
|
test 'should not have encrypted password accessible' do
|
|
assert_not field_accessible?(:encrypted_password)
|
|
end
|
|
|
|
test 'should generate salt while setting password' do
|
|
assert_present new_user.password_salt
|
|
assert_present new_user(:password => nil).password_salt
|
|
assert_present new_user(:password => '').password_salt
|
|
assert_present create_user.password_salt
|
|
end
|
|
|
|
test 'should not change password salt when updating' do
|
|
user = create_user
|
|
salt = user.password_salt
|
|
user.expects(:password_salt=).never
|
|
user.save!
|
|
assert_equal salt, user.password_salt
|
|
end
|
|
|
|
test 'should generate a base64 hash using SecureRandom for password salt' do
|
|
ActiveSupport::SecureRandom.expects(:base64).with(15).returns('friendly_token')
|
|
assert_equal 'friendly_token', new_user.password_salt
|
|
end
|
|
|
|
test 'should never generate the same salt for different users' do
|
|
password_salts = []
|
|
10.times do
|
|
salt = create_user.password_salt
|
|
assert_not password_salts.include?(salt)
|
|
password_salts << salt
|
|
end
|
|
end
|
|
|
|
test 'should generate encrypted password while setting password' do
|
|
assert_present new_user.encrypted_password
|
|
assert_present new_user(:password => nil).encrypted_password
|
|
assert_present new_user(:password => '').encrypted_password
|
|
assert_present create_user.encrypted_password
|
|
end
|
|
|
|
test 'should encrypt password again if password has changed' do
|
|
user = create_user
|
|
encrypted_password = user.encrypted_password
|
|
user.password = user.password_confirmation = 'new_password'
|
|
user.save!
|
|
assert_not_equal encrypted_password, user.encrypted_password
|
|
end
|
|
|
|
test 'should encrypt password using a sha1 hash' do
|
|
user = new_user
|
|
assert_equal encrypt_password(user), user.encrypted_password
|
|
end
|
|
|
|
test 'should fallback to devise pepper default configuring' do
|
|
begin
|
|
Devise.pepper = ''
|
|
user = new_user
|
|
assert_equal encrypt_password(user), user.encrypted_password
|
|
Devise.pepper = 'new_pepper'
|
|
user = new_user
|
|
assert_equal encrypt_password(user, 'new_pepper'), user.encrypted_password
|
|
Devise.pepper = '123456'
|
|
user = new_user
|
|
assert_equal encrypt_password(user, '123456'), user.encrypted_password
|
|
ensure
|
|
Devise.pepper = nil
|
|
end
|
|
end
|
|
|
|
test 'should fallback to devise stretches default configuring' do
|
|
begin
|
|
default_stretches = Devise.stretches
|
|
Devise.stretches = 1
|
|
user = new_user
|
|
assert_equal encrypt_password(user, nil, nil), user.encrypted_password
|
|
ensure
|
|
Devise.stretches = default_stretches
|
|
end
|
|
end
|
|
|
|
test 'should test for a valid password' do
|
|
user = create_user
|
|
assert user.valid_password?('123456')
|
|
assert_not user.valid_password?('654321')
|
|
end
|
|
|
|
test 'should authenticate a valid user with email and password and return it' do
|
|
user = create_user
|
|
User.any_instance.stubs(:confirmed?).returns(true)
|
|
authenticated_user = User.authenticate(:email => user.email, :password => user.password)
|
|
assert_equal authenticated_user, user
|
|
end
|
|
|
|
test 'should return nil when authenticating an invalid user by email' do
|
|
user = create_user
|
|
authenticated_user = User.authenticate(:email => 'another.email@email.com', :password => user.password)
|
|
assert_nil authenticated_user
|
|
end
|
|
|
|
test 'should return nil when authenticating an invalid user by password' do
|
|
user = create_user
|
|
authenticated_user = User.authenticate(:email => user.email, :password => 'another_password')
|
|
assert_nil authenticated_user
|
|
end
|
|
end
|