FitTrackee/fittrackee/tests/users/test_users_utils.py

from unittest.mock import patch

import pytest
from flask import Flask

from fittrackee import bcrypt
from fittrackee.tests.utils import random_string
from fittrackee.users.exceptions import (
    InvalidEmailException,
    UserNotFoundException,
)
from fittrackee.users.models import User
from fittrackee.users.utils.admin import UserManagerService
from fittrackee.users.utils.controls import (
    check_password,
    check_username,
    is_valid_email,
    register_controls,
)

from ..utils import random_email


class TestUserManagerService:
    def test_it_raises_exception_if_user_does_not_exist(
        self, app: Flask
    ) -> None:
        user_manager_service = UserManagerService(username=random_string())

        with pytest.raises(UserNotFoundException):
            user_manager_service.update()

    def test_it_does_not_update_user_when_no_args_provided(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        _, user_updated, _ = user_manager_service.update()

        assert user_updated is False

    def test_it_returns_user(self, app: Flask, user_1: User) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        user, _, _ = user_manager_service.update()

        assert user == user_1

    def test_it_sets_admin_right_for_a_given_user(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        user_manager_service.update(is_admin=True)

        assert user_1.admin is True

    def test_it_return_updated_user_flag_to_true(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        _, user_updated, _ = user_manager_service.update(is_admin=True)

        assert user_updated is True

    def test_it_does_not_raise_exception_when_user_has_already_admin_right(
        self, app: Flask, user_1_admin: User
    ) -> None:
        user_manager_service = UserManagerService(
            username=user_1_admin.username
        )

        user_manager_service.update(is_admin=True)

        assert user_1_admin.admin is True

    def test_it_activates_account_if_user_is_inactive(
        self, app: Flask, inactive_user: User
    ) -> None:
        user_manager_service = UserManagerService(
            username=inactive_user.username
        )

        user_manager_service.update(is_admin=True)

        assert inactive_user.admin is True
        assert inactive_user.is_active is True
        assert inactive_user.confirmation_token is None

    def test_it_activates_given_user_account(
        self, app: Flask, inactive_user: User
    ) -> None:
        user_manager_service = UserManagerService(
            username=inactive_user.username
        )

        user_manager_service.update(activate=True)

        assert inactive_user.is_active is True

    def test_it_empties_confirmation_token(
        self, app: Flask, inactive_user: User
    ) -> None:
        user_manager_service = UserManagerService(
            username=inactive_user.username
        )

        user_manager_service.update(activate=True)

        assert inactive_user.confirmation_token is None

    def test_it_does_not_raise_error_if_user_account_already_activated(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        user_manager_service.update(activate=True)

        assert user_1.is_active is True

    def test_it_resets_user_password(self, app: Flask, user_1: User) -> None:
        previous_password = user_1.password
        user_manager_service = UserManagerService(username=user_1.username)

        user_manager_service.update(reset_password=True)

        assert user_1.password != previous_password

    def test_new_password_is_encrypted(self, app: Flask, user_1: User) -> None:
        user_manager_service = UserManagerService(username=user_1.username)

        _, _, new_password = user_manager_service.update(reset_password=True)

        assert bcrypt.check_password_hash(user_1.password, new_password)

    def test_it_raises_exception_if_provided_email_is_invalid(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)
        with pytest.raises(
            InvalidEmailException, match='valid email must be provided'
        ):
            user_manager_service.update(new_email=random_string())

    def test_it_raises_exception_if_provided_email_is_current_user_email(
        self, app: Flask, user_1: User
    ) -> None:
        user_manager_service = UserManagerService(username=user_1.username)
        with pytest.raises(
            InvalidEmailException,
            match='new email must be different than curent email',
        ):
            user_manager_service.update(new_email=user_1.email)

    def test_it_updates_user_email_to_confirm(
        self, app: Flask, user_1: User
    ) -> None:
        new_email = random_email()
        current_email = user_1.email
        user_manager_service = UserManagerService(username=user_1.username)

        user_manager_service.update(new_email=new_email)

        assert user_1.email == current_email
        assert user_1.email_to_confirm == new_email
        assert user_1.confirmation_token is not None

    def test_it_updates_user_email(self, app: Flask, user_1: User) -> None:
        new_email = random_email()
        user_manager_service = UserManagerService(username=user_1.username)

        user_manager_service.update(
            new_email=new_email, with_confirmation=False
        )

        assert user_1.email == new_email
        assert user_1.email_to_confirm is None
        assert user_1.confirmation_token is None


class TestIsValidEmail:
    @pytest.mark.parametrize(
        ('input_email',),
        [
            (None,),
            ('',),
            ('foo',),
            ('foo@',),
            ('@foo.fr',),
            ('foo@foo',),
            ('.',),
            ('./',),
        ],
    )
    def test_it_returns_false_if_email_is_invalid(
        self, input_email: str
    ) -> None:
        assert is_valid_email(input_email) is False

    @pytest.mark.parametrize(
        ('input_email',),
        [
            ('admin@example.com',),
            ('admin@test.example.com',),
            ('admin.site@test.example.com',),
            ('admin-site@test-example.com',),
        ],
    )
    def test_it_returns_true_if_email_is_valid(self, input_email: str) -> None:
        assert is_valid_email(input_email) is True


class TestCheckPasswords:
    @pytest.mark.parametrize(
        ('input_password_length',),
        [
            (0,),
            (3,),
            (7,),
        ],
    )
    def test_it_returns_error_message_string_if_password_length_is_below_8_characters(  # noqa
        self, input_password_length: int
    ) -> None:
        password = random_string(input_password_length)
        assert check_password(password) == (
            'password: 8 characters required\n'
        )

    @pytest.mark.parametrize(
        ('input_password_length',),
        [
            (8,),
            (10,),
        ],
    )
    def test_it_returns_empty_string_when_password_length_exceeds_7_characters(
        self, input_password_length: int
    ) -> None:
        password = random_string(input_password_length)
        assert check_password(password) == ''


class TestIsUsernameValid:
    @pytest.mark.parametrize(
        ('input_username_length',),
        [
            (2,),
            (31,),
        ],
    )
    def test_it_returns_error_message_when_username_length_is_invalid(
        self, input_username_length: int
    ) -> None:
        assert (
            check_username(
                username=random_string(31),
            )
            == 'username: 3 to 30 characters required\n'
        )

    @pytest.mark.parametrize(
        ('input_invalid_character',),
        [
            ('.',),
            ('/',),
            ('$',),
        ],
    )
    def test_it_returns_error_message_when_username_has_invalid_character(
        self, input_invalid_character: str
    ) -> None:
        username = random_string() + input_invalid_character
        assert check_username(username=username) == (
            'username: only alphanumeric characters and the '
            'underscore character "_" allowed\n'
        )

    def test_it_returns_empty_string_when_username_is_valid(self) -> None:
        assert check_username(username=random_string()) == ''

    def test_it_returns_multiple_errors(self) -> None:
        username = random_string(31) + '.'
        assert check_username(username=username) == (
            'username: 3 to 30 characters required\n'
            'username: only alphanumeric characters and the underscore '
            'character "_" allowed\n'
        )


class TestRegisterControls:
    module_path = 'fittrackee.users.utils.controls.'
    valid_username = random_string()
    valid_email = f'{random_string()}@example.com'
    valid_password = random_string()

    def test_it_calls_all_validators(self) -> None:
        with patch(
            self.module_path + 'check_password'
        ) as check_passwords_mock, patch(
            self.module_path + 'check_username'
        ) as check_username_mock, patch(
            self.module_path + 'is_valid_email'
        ) as is_valid_email_mock:
            register_controls(
                self.valid_username,
                self.valid_email,
                self.valid_password,
            )

        check_passwords_mock.assert_called_once_with(self.valid_password)
        check_username_mock.assert_called_once_with(self.valid_username)
        is_valid_email_mock.assert_called_once_with(self.valid_email)

    def test_it_returns_empty_string_when_inputs_are_valid(self) -> None:
        assert (
            register_controls(
                self.valid_username,
                self.valid_email,
                self.valid_password,
            )
            == ''
        )

    def test_it_returns_multiple_errors_when_inputs_are_invalid(self) -> None:
        invalid_username = random_string(31)
        assert register_controls(
            username=invalid_username,
            email=invalid_username,
            password=random_string(8),
        ) == (
            'username: 3 to 30 characters required\n'
            'email: valid email must be provided\n'
        )
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`from unittest.mock import patch`

API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`import pytest`
			`from flask import Flask`

API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`from fittrackee import bcrypt`
API - refacto + remove unused endpoint for now 2022-03-19 20:34:36 +01:00			`from fittrackee.tests.utils import random_string`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`from fittrackee.users.exceptions import (`
			`InvalidEmailException,`
			`UserNotFoundException,`
			`)`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`from fittrackee.users.models import User`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`from fittrackee.users.utils.admin import UserManagerService`
API - users refactoring 2022-02-16 18:07:05 +01:00			`from fittrackee.users.utils.controls import (`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`check_password,`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`check_username,`
			`is_valid_email,`
			`register_controls,`
			`)`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`from ..utils import random_email`

API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`class TestUserManagerService:`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`def test_it_raises_exception_if_user_does_not_exist(`
			`self, app: Flask`
			`) -> None:`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`user_manager_service = UserManagerService(username=random_string())`

API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`with pytest.raises(UserNotFoundException):`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`user_manager_service.update()`

			`def test_it_does_not_update_user_when_no_args_provided(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`_, user_updated, _ = user_manager_service.update()`

			`assert user_updated is False`

			`def test_it_returns_user(self, app: Flask, user_1: User) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`user, _, _ = user_manager_service.update()`

			`assert user == user_1`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00
			`def test_it_sets_admin_right_for_a_given_user(`
			`self, app: Flask, user_1: User`
			`) -> None:`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`user_manager_service = UserManagerService(username=user_1.username)`

			`user_manager_service.update(is_admin=True)`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00
			`assert user_1.admin is True`

API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`def test_it_return_updated_user_flag_to_true(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`_, user_updated, _ = user_manager_service.update(is_admin=True)`

			`assert user_updated is True`

API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00			`def test_it_does_not_raise_exception_when_user_has_already_admin_right(`
			`self, app: Flask, user_1_admin: User`
			`) -> None:`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`user_manager_service = UserManagerService(`
			`username=user_1_admin.username`
			`)`

			`user_manager_service.update(is_admin=True)`
API - add command to set an admin after fresh install 2022-02-12 14:30:59 +01:00
			`assert user_1_admin.admin is True`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00
API - active user if not when adding admin rigths 2022-03-20 16:31:48 +01:00			`def test_it_activates_account_if_user_is_inactive(`
			`self, app: Flask, inactive_user: User`
			`) -> None:`
API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`user_manager_service = UserManagerService(`
			`username=inactive_user.username`
			`)`

			`user_manager_service.update(is_admin=True)`
API - active user if not when adding admin rigths 2022-03-20 16:31:48 +01:00
			`assert inactive_user.admin is True`
			`assert inactive_user.is_active is True`
			`assert inactive_user.confirmation_token is None`

API & CLI - refacto + new commands to update users 2022-04-23 13:48:29 +02:00			`def test_it_activates_given_user_account(`
			`self, app: Flask, inactive_user: User`
			`) -> None:`
			`user_manager_service = UserManagerService(`
			`username=inactive_user.username`
			`)`

			`user_manager_service.update(activate=True)`

			`assert inactive_user.is_active is True`

			`def test_it_empties_confirmation_token(`
			`self, app: Flask, inactive_user: User`
			`) -> None:`
			`user_manager_service = UserManagerService(`
			`username=inactive_user.username`
			`)`

			`user_manager_service.update(activate=True)`

			`assert inactive_user.confirmation_token is None`

			`def test_it_does_not_raise_error_if_user_account_already_activated(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`user_manager_service.update(activate=True)`

			`assert user_1.is_active is True`

			`def test_it_resets_user_password(self, app: Flask, user_1: User) -> None:`
			`previous_password = user_1.password`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`user_manager_service.update(reset_password=True)`

			`assert user_1.password != previous_password`

			`def test_new_password_is_encrypted(self, app: Flask, user_1: User) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`_, _, new_password = user_manager_service.update(reset_password=True)`

			`assert bcrypt.check_password_hash(user_1.password, new_password)`

			`def test_it_raises_exception_if_provided_email_is_invalid(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`
			`with pytest.raises(`
			`InvalidEmailException, match='valid email must be provided'`
			`):`
			`user_manager_service.update(new_email=random_string())`

			`def test_it_raises_exception_if_provided_email_is_current_user_email(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`user_manager_service = UserManagerService(username=user_1.username)`
			`with pytest.raises(`
			`InvalidEmailException,`
			`match='new email must be different than curent email',`
			`):`
			`user_manager_service.update(new_email=user_1.email)`

			`def test_it_updates_user_email_to_confirm(`
			`self, app: Flask, user_1: User`
			`) -> None:`
			`new_email = random_email()`
			`current_email = user_1.email`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`user_manager_service.update(new_email=new_email)`

			`assert user_1.email == current_email`
			`assert user_1.email_to_confirm == new_email`
			`assert user_1.confirmation_token is not None`

			`def test_it_updates_user_email(self, app: Flask, user_1: User) -> None:`
			`new_email = random_email()`
			`user_manager_service = UserManagerService(username=user_1.username)`

			`user_manager_service.update(`
			`new_email=new_email, with_confirmation=False`
			`)`

			`assert user_1.email == new_email`
			`assert user_1.email_to_confirm is None`
			`assert user_1.confirmation_token is None`

API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00
			`class TestIsValidEmail:`
			`@pytest.mark.parametrize(`
			`('input_email',),`
			`[`
API - add email to contact admin in app config 2022-03-23 18:29:49 +01:00			`(None,),`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`('',),`
			`('foo',),`
			`('foo@',),`
			`('@foo.fr',),`
			`('foo@foo',),`
			`('.',),`
			`('./',),`
			`],`
			`)`
			`def test_it_returns_false_if_email_is_invalid(`
			`self, input_email: str`
			`) -> None:`
			`assert is_valid_email(input_email) is False`

			`@pytest.mark.parametrize(`
			`('input_email',),`
			`[`
			`('admin@example.com',),`
			`('admin@test.example.com',),`
			`('admin.site@test.example.com',),`
			`('admin-site@test-example.com',),`
			`],`
			`)`
			`def test_it_returns_true_if_email_is_valid(self, input_email: str) -> None:`
			`assert is_valid_email(input_email) is True`


			`class TestCheckPasswords:`
			`@pytest.mark.parametrize(`
			`('input_password_length',),`
			`[`
			`(0,),`
			`(3,),`
			`(7,),`
			`],`
			`)`
			`def test_it_returns_error_message_string_if_password_length_is_below_8_characters( # noqa`
			`self, input_password_length: int`
			`) -> None:`
			`password = random_string(input_password_length)`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`assert check_password(password) == (`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`'password: 8 characters required\n'`
			`)`

			`@pytest.mark.parametrize(`
			`('input_password_length',),`
			`[`
			`(8,),`
			`(10,),`
			`],`
			`)`
			`def test_it_returns_empty_string_when_password_length_exceeds_7_characters(`
			`self, input_password_length: int`
			`) -> None:`
			`password = random_string(input_password_length)`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`assert check_password(password) == ''`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00

			`class TestIsUsernameValid:`
			`@pytest.mark.parametrize(`
			`('input_username_length',),`
			`[`
			`(2,),`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`(31,),`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`],`
			`)`
			`def test_it_returns_error_message_when_username_length_is_invalid(`
			`self, input_username_length: int`
			`) -> None:`
			`assert (`
			`check_username(`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`username=random_string(31),`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`)`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`== 'username: 3 to 30 characters required\n'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`)`

			`@pytest.mark.parametrize(`
			`('input_invalid_character',),`
			`[`
			`('.',),`
			`('/',),`
			`('$',),`
			`],`
			`)`
			`def test_it_returns_error_message_when_username_has_invalid_character(`
			`self, input_invalid_character: str`
			`) -> None:`
			`username = random_string() + input_invalid_character`
			`assert check_username(username=username) == (`
			`'username: only alphanumeric characters and the '`
			`'underscore character "_" allowed\n'`
			`)`

			`def test_it_returns_empty_string_when_username_is_valid(self) -> None:`
			`assert check_username(username=random_string()) == ''`

			`def test_it_returns_multiple_errors(self) -> None:`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`username = random_string(31) + '.'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`assert check_username(username=username) == (`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`'username: 3 to 30 characters required\n'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`'username: only alphanumeric characters and the underscore '`
			`'character "_" allowed\n'`
			`)`


			`class TestRegisterControls:`
API - users refactoring 2022-02-16 18:07:05 +01:00			`module_path = 'fittrackee.users.utils.controls.'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`valid_username = random_string()`
			`valid_email = f'{random_string()}@example.com'`
			`valid_password = random_string()`

			`def test_it_calls_all_validators(self) -> None:`
			`with patch(`
API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`self.module_path + 'check_password'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`) as check_passwords_mock, patch(`
			`self.module_path + 'check_username'`
			`) as check_username_mock, patch(`
			`self.module_path + 'is_valid_email'`
			`) as is_valid_email_mock:`
			`register_controls(`
			`self.valid_username,`
			`self.valid_email,`
			`self.valid_password,`
			`)`

API & Client - remove password confirmation 2022-03-13 08:39:50 +01:00			`check_passwords_mock.assert_called_once_with(self.valid_password)`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`check_username_mock.assert_called_once_with(self.valid_username)`
			`is_valid_email_mock.assert_called_once_with(self.valid_email)`

			`def test_it_returns_empty_string_when_inputs_are_valid(self) -> None:`
			`assert (`
			`register_controls(`
			`self.valid_username,`
			`self.valid_email,`
			`self.valid_password,`
			`)`
			`== ''`
			`)`

			`def test_it_returns_multiple_errors_when_inputs_are_invalid(self) -> None:`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`invalid_username = random_string(31)`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`assert register_controls(`
			`username=invalid_username,`
			`email=invalid_username,`
			`password=random_string(8),`
			`) == (`
API & Client - update username max length 2022-03-13 08:38:45 +01:00			`'username: 3 to 30 characters required\n'`
API & Client - allow only alphanumeric characters and '_' in username 2022-02-13 12:08:24 +01:00			`'email: valid email must be provided\n'`
			`)`