2016-02-14 17:30:01 +02:00
|
|
|
|
import datetime
|
2013-07-30 22:29:34 -04:00
|
|
|
|
import re
|
2025-02-01 22:49:07 -03:00
|
|
|
|
import sys
|
2022-09-30 10:50:28 +02:00
|
|
|
|
import urllib.parse
|
2017-01-19 12:16:04 -05:00
|
|
|
|
from unittest import mock
|
2013-05-06 18:45:56 +08:00
|
|
|
|
|
2025-02-01 22:49:07 -03:00
|
|
|
|
from django import forms
|
2015-01-28 07:35:27 -05:00
|
|
|
|
from django.contrib.auth.forms import (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
AdminPasswordChangeForm,
|
2024-08-15 10:27:24 -03:00
|
|
|
|
AdminUserCreationForm,
|
2022-02-03 20:24:19 +01:00
|
|
|
|
AuthenticationForm,
|
2022-09-24 15:26:14 +01:00
|
|
|
|
BaseUserCreationForm,
|
2022-02-03 20:24:19 +01:00
|
|
|
|
PasswordChangeForm,
|
|
|
|
|
|
PasswordResetForm,
|
|
|
|
|
|
ReadOnlyPasswordHashField,
|
|
|
|
|
|
ReadOnlyPasswordHashWidget,
|
|
|
|
|
|
SetPasswordForm,
|
2025-02-01 22:49:07 -03:00
|
|
|
|
SetPasswordMixin,
|
2022-02-03 20:24:19 +01:00
|
|
|
|
UserChangeForm,
|
|
|
|
|
|
UserCreationForm,
|
2023-10-17 11:48:32 +02:00
|
|
|
|
UsernameField,
|
2015-01-28 07:35:27 -05:00
|
|
|
|
)
|
2024-02-20 12:12:37 -03:00
|
|
|
|
from django.contrib.auth.hashers import make_password
|
2012-03-20 20:51:16 +00:00
|
|
|
|
from django.contrib.auth.models import User
|
2016-02-18 17:58:30 -07:00
|
|
|
|
from django.contrib.auth.signals import user_login_failed
|
2015-02-14 22:03:25 -05:00
|
|
|
|
from django.contrib.sites.models import Site
|
2018-07-02 18:10:36 -04:00
|
|
|
|
from django.core import mail
|
2020-02-12 14:48:49 +01:00
|
|
|
|
from django.core.exceptions import ValidationError
|
2014-05-09 08:48:41 +02:00
|
|
|
|
from django.core.mail import EmailMultiAlternatives
|
2016-07-26 16:50:29 +03:00
|
|
|
|
from django.forms.fields import CharField, Field, IntegerField
|
2025-02-01 22:49:07 -03:00
|
|
|
|
from django.test import RequestFactory, SimpleTestCase, TestCase, override_settings
|
2022-09-30 10:50:28 +02:00
|
|
|
|
from django.urls import reverse
|
2016-12-01 11:38:01 +01:00
|
|
|
|
from django.utils import translation
|
2013-05-06 18:45:56 +08:00
|
|
|
|
from django.utils.text import capfirst
|
2017-01-26 20:58:33 +01:00
|
|
|
|
from django.utils.translation import gettext as _
|
2025-02-01 22:49:07 -03:00
|
|
|
|
from django.views.debug import technical_500_response
|
|
|
|
|
|
from django.views.decorators.debug import sensitive_variables
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2016-08-24 20:20:12 +03:00
|
|
|
|
from .models.custom_user import (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
CustomUser,
|
|
|
|
|
|
CustomUserWithoutIsActiveField,
|
|
|
|
|
|
ExtensionUser,
|
2016-08-24 20:20:12 +03:00
|
|
|
|
)
|
2016-09-19 14:55:18 +02:00
|
|
|
|
from .models.with_custom_email_field import CustomEmailField
|
2016-07-26 16:50:29 +03:00
|
|
|
|
from .models.with_integer_username import IntegerUsernameUser
|
2022-11-27 19:49:02 +00:00
|
|
|
|
from .models.with_many_to_many import CustomUserWithM2M, Organization
|
2014-12-17 22:10:57 +01:00
|
|
|
|
from .settings import AUTH_TEMPLATES
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2017-01-19 02:39:46 -05:00
|
|
|
|
class TestDataMixin:
|
2015-02-23 11:53:57 +11:00
|
|
|
|
@classmethod
|
|
|
|
|
|
def setUpTestData(cls):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
cls.u1 = User.objects.create_user(
|
|
|
|
|
|
username="testclient", password="password", email="testclient@example.com"
|
|
|
|
|
|
)
|
|
|
|
|
|
cls.u2 = User.objects.create_user(
|
|
|
|
|
|
username="inactive", password="password", is_active=False
|
|
|
|
|
|
)
|
|
|
|
|
|
cls.u3 = User.objects.create_user(username="staff", password="password")
|
|
|
|
|
|
cls.u4 = User.objects.create(username="empty_password", password="")
|
|
|
|
|
|
cls.u5 = User.objects.create(username="unmanageable_password", password="$")
|
|
|
|
|
|
cls.u6 = User.objects.create(username="unknown_password", password="foo$bar")
|
2024-02-20 12:12:37 -03:00
|
|
|
|
cls.u7 = User.objects.create(
|
|
|
|
|
|
username="unusable_password", password=make_password(None)
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2015-02-23 11:53:57 +11:00
|
|
|
|
|
2024-05-28 08:15:12 +02:00
|
|
|
|
class ExtraValidationFormMixin:
|
|
|
|
|
|
def __init__(self, *args, failing_fields=None, **kwargs):
|
|
|
|
|
|
super().__init__(*args, **kwargs)
|
|
|
|
|
|
self.failing_fields = failing_fields or {}
|
|
|
|
|
|
|
|
|
|
|
|
def failing_helper(self, field_name):
|
|
|
|
|
|
if field_name in self.failing_fields:
|
|
|
|
|
|
errors = [
|
|
|
|
|
|
ValidationError(error, code="invalid")
|
|
|
|
|
|
for error in self.failing_fields[field_name]
|
|
|
|
|
|
]
|
|
|
|
|
|
raise ValidationError(errors)
|
|
|
|
|
|
return self.cleaned_data[field_name]
|
|
|
|
|
|
|
|
|
|
|
|
|
2022-09-24 15:26:14 +01:00
|
|
|
|
class BaseUserCreationFormTest(TestDataMixin, TestCase):
|
2024-08-15 10:21:32 -03:00
|
|
|
|
|
|
|
|
|
|
form_class = BaseUserCreationForm
|
|
|
|
|
|
|
2024-08-15 10:27:24 -03:00
|
|
|
|
def test_form_fields(self):
|
|
|
|
|
|
form = self.form_class()
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
list(form.fields.keys()), ["username", "password1", "password2"]
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_user_already_exists(self):
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["username"].errors,
|
|
|
|
|
|
[str(User._meta.get_field("username").error_messages["unique"])],
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_invalid_data(self):
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "jsmith!",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
validator = next(
|
|
|
|
|
|
v
|
|
|
|
|
|
for v in User._meta.get_field("username").validators
|
|
|
|
|
|
if v.code == "invalid"
|
|
|
|
|
|
)
|
2017-01-24 12:22:42 +01:00
|
|
|
|
self.assertEqual(form["username"].errors, [str(validator.message)])
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_password_verification(self):
|
|
|
|
|
|
# The verification password is incorrect.
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "jsmith",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["password2"].errors, [str(form.error_messages["password_mismatch"])]
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_both_passwords(self):
|
|
|
|
|
|
# One (or both) passwords weren't given
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"username": "jsmith"}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
required_error = [str(Field.default_error_messages["required"])]
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form["password1"].errors, required_error)
|
|
|
|
|
|
self.assertEqual(form["password2"].errors, required_error)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data["password2"] = "test123"
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form["password1"].errors, required_error)
|
|
|
|
|
|
self.assertEqual(form["password2"].errors, [])
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@mock.patch("django.contrib.auth.password_validation.password_changed")
|
2015-07-06 18:12:26 -04:00
|
|
|
|
def test_success(self, password_changed):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
# The success case.
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "jsmith@example.com",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
self.assertTrue(form.is_valid())
|
2015-07-06 18:12:26 -04:00
|
|
|
|
form.save(commit=False)
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 0)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
u = form.save()
|
2015-07-06 18:12:26 -04:00
|
|
|
|
self.assertEqual(password_changed.call_count, 1)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(repr(u), "<User: jsmith@example.com>")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2016-04-22 19:39:13 +02:00
|
|
|
|
def test_unicode_username(self):
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "宝",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
2016-04-22 19:39:13 +02:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2016-12-01 11:38:01 +01:00
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
u = form.save()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(u.username, "宝")
|
2016-12-01 11:38:01 +01:00
|
|
|
|
|
2016-06-21 09:06:34 -04:00
|
|
|
|
def test_normalize_username(self):
|
|
|
|
|
|
# The normalization happens in AbstractBaseUser.clean() and ModelForm
|
|
|
|
|
|
# validation calls Model.clean().
|
2022-02-03 20:24:19 +01:00
|
|
|
|
ohm_username = "testΩ" # U+2126 OHM SIGN
|
2016-06-21 09:06:34 -04:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": ohm_username,
|
|
|
|
|
|
"password1": "pwd2",
|
|
|
|
|
|
"password2": "pwd2",
|
2016-06-21 09:06:34 -04:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2016-06-21 09:06:34 -04:00
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
user = form.save()
|
|
|
|
|
|
self.assertNotEqual(user.username, ohm_username)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(user.username, "testΩ") # U+03A9 GREEK CAPITAL LETTER OMEGA
|
2016-06-21 09:06:34 -04:00
|
|
|
|
|
2023-10-17 11:48:32 +02:00
|
|
|
|
def test_invalid_username_no_normalize(self):
|
|
|
|
|
|
field = UsernameField(max_length=254)
|
|
|
|
|
|
# Usernames are not normalized if they are too long.
|
|
|
|
|
|
self.assertEqual(field.to_python("½" * 255), "½" * 255)
|
|
|
|
|
|
self.assertEqual(field.to_python("ff" * 254), "ff" * 254)
|
|
|
|
|
|
|
2016-04-22 21:17:42 +02:00
|
|
|
|
def test_duplicate_normalized_unicode(self):
|
|
|
|
|
|
"""
|
|
|
|
|
|
To prevent almost identical usernames, visually identical but differing
|
|
|
|
|
|
by their unicode code points only, Unicode NFKC normalization should
|
|
|
|
|
|
make appear them equal to Django.
|
|
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
omega_username = "iamtheΩ" # U+03A9 GREEK CAPITAL LETTER OMEGA
|
|
|
|
|
|
ohm_username = "iamtheΩ" # U+2126 OHM SIGN
|
2016-04-22 21:17:42 +02:00
|
|
|
|
self.assertNotEqual(omega_username, ohm_username)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user(username=omega_username, password="pwd")
|
2016-04-22 21:17:42 +02:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": ohm_username,
|
|
|
|
|
|
"password1": "pwd2",
|
|
|
|
|
|
"password2": "pwd2",
|
2016-04-22 21:17:42 +02:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2016-04-22 21:17:42 +02:00
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.errors["username"], ["A user with that username already exists."]
|
2016-04-22 21:17:42 +02:00
|
|
|
|
)
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
},
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation.MinimumLengthValidator"
|
|
|
|
|
|
),
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"OPTIONS": {
|
|
|
|
|
|
"min_length": 12,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2015-07-06 14:14:59 -04:00
|
|
|
|
def test_validates_password(self):
|
|
|
|
|
|
data = {
|
2024-08-15 10:21:32 -03:00
|
|
|
|
"username": "otherclient",
|
|
|
|
|
|
"password1": "otherclient",
|
|
|
|
|
|
"password2": "otherclient",
|
2015-07-06 14:14:59 -04:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2015-07-06 14:14:59 -04:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(len(form["password2"].errors), 2)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"The password is too similar to the username.", form["password2"].errors
|
|
|
|
|
|
)
|
2015-07-06 14:14:59 -04:00
|
|
|
|
self.assertIn(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"This password is too short. It must contain at least 12 characters.",
|
|
|
|
|
|
form["password2"].errors,
|
2015-07-06 14:14:59 -04:00
|
|
|
|
)
|
|
|
|
|
|
|
2016-03-14 20:21:05 +00:00
|
|
|
|
def test_password_whitespace_not_stripped(self):
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testuser",
|
|
|
|
|
|
"password1": " testpassword ",
|
|
|
|
|
|
"password2": " testpassword ",
|
2016-03-14 20:21:05 +00:00
|
|
|
|
}
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class(data)
|
2016-03-14 20:21:05 +00:00
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["password1"], data["password1"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["password2"], data["password2"])
|
|
|
|
|
|
|
|
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2016-04-14 20:12:30 +03:00
|
|
|
|
def test_password_help_text(self):
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class()
|
2016-09-10 18:38:28 -04:00
|
|
|
|
self.assertEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.fields["password1"].help_text,
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"<ul><li>"
|
|
|
|
|
|
"Your password can’t be too similar to your other personal information."
|
|
|
|
|
|
"</li></ul>",
|
2016-04-14 20:12:30 +03:00
|
|
|
|
)
|
|
|
|
|
|
|
2024-05-28 08:15:12 +02:00
|
|
|
|
def test_password_extra_validations(self):
|
2024-08-15 10:21:32 -03:00
|
|
|
|
class ExtraValidationForm(ExtraValidationFormMixin, self.form_class):
|
2024-05-28 08:15:12 +02:00
|
|
|
|
def clean_password1(self):
|
|
|
|
|
|
return self.failing_helper("password1")
|
|
|
|
|
|
|
|
|
|
|
|
def clean_password2(self):
|
|
|
|
|
|
return self.failing_helper("password2")
|
|
|
|
|
|
|
|
|
|
|
|
data = {"username": "extra", "password1": "abc", "password2": "abc"}
|
|
|
|
|
|
for fields in (["password1"], ["password2"], ["password1", "password2"]):
|
|
|
|
|
|
with self.subTest(fields=fields):
|
|
|
|
|
|
errors = {field: [f"Extra validation for {field}."] for field in fields}
|
|
|
|
|
|
form = ExtraValidationForm(data, failing_fields=errors)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertDictEqual(form.errors, errors)
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2017-04-25 15:26:58 -04:00
|
|
|
|
def test_user_create_form_validates_password_with_all_data(self):
|
2022-09-24 15:26:14 +01:00
|
|
|
|
"""
|
|
|
|
|
|
BaseUserCreationForm password validation uses all of the form's data.
|
|
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
|
2024-08-15 10:21:32 -03:00
|
|
|
|
class CustomUserCreationForm(self.form_class):
|
|
|
|
|
|
class Meta(self.form_class.Meta):
|
2017-04-25 15:26:58 -04:00
|
|
|
|
model = User
|
2022-02-03 20:24:19 +01:00
|
|
|
|
fields = ("username", "email", "first_name", "last_name")
|
|
|
|
|
|
|
|
|
|
|
|
form = CustomUserCreationForm(
|
|
|
|
|
|
{
|
|
|
|
|
|
"username": "testuser",
|
|
|
|
|
|
"password1": "testpassword",
|
|
|
|
|
|
"password2": "testpassword",
|
|
|
|
|
|
"first_name": "testpassword",
|
|
|
|
|
|
"last_name": "lastname",
|
|
|
|
|
|
}
|
|
|
|
|
|
)
|
2017-04-25 15:26:58 -04:00
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.errors["password2"],
|
|
|
|
|
|
["The password is too similar to the first name."],
|
2017-04-25 15:26:58 -04:00
|
|
|
|
)
|
|
|
|
|
|
|
2019-03-24 19:53:31 +01:00
|
|
|
|
def test_username_field_autocapitalize_none(self):
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields["username"].widget.attrs.get("autocapitalize"), "none"
|
|
|
|
|
|
)
|
2019-03-24 19:53:31 +01:00
|
|
|
|
|
2019-03-10 11:03:42 +01:00
|
|
|
|
def test_html_autocomplete_attributes(self):
|
2024-08-15 10:21:32 -03:00
|
|
|
|
form = self.form_class()
|
2019-03-10 11:03:42 +01:00
|
|
|
|
tests = (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
("username", "username"),
|
|
|
|
|
|
("password1", "new-password"),
|
|
|
|
|
|
("password2", "new-password"),
|
2019-03-10 11:03:42 +01:00
|
|
|
|
)
|
|
|
|
|
|
for field_name, autocomplete in tests:
|
|
|
|
|
|
with self.subTest(field_name=field_name, autocomplete=autocomplete):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields[field_name].widget.attrs["autocomplete"], autocomplete
|
|
|
|
|
|
)
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2024-08-15 10:21:32 -03:00
|
|
|
|
class CustomUserCreationFormTest(TestDataMixin, TestCase):
|
|
|
|
|
|
|
|
|
|
|
|
def test_custom_form(self):
|
|
|
|
|
|
class CustomUserCreationForm(BaseUserCreationForm):
|
|
|
|
|
|
class Meta(BaseUserCreationForm.Meta):
|
|
|
|
|
|
model = ExtensionUser
|
|
|
|
|
|
fields = UserCreationForm.Meta.fields + ("date_of_birth",)
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
"date_of_birth": "1988-02-24",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
|
|
|
|
|
|
def test_custom_form_with_different_username_field(self):
|
|
|
|
|
|
class CustomUserCreationForm(BaseUserCreationForm):
|
|
|
|
|
|
class Meta(BaseUserCreationForm.Meta):
|
|
|
|
|
|
model = CustomUser
|
|
|
|
|
|
fields = ("email", "date_of_birth")
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"email": "test@client222.com",
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
"date_of_birth": "1988-02-24",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
|
|
|
|
|
|
def test_custom_form_hidden_username_field(self):
|
|
|
|
|
|
class CustomUserCreationForm(BaseUserCreationForm):
|
|
|
|
|
|
class Meta(BaseUserCreationForm.Meta):
|
|
|
|
|
|
model = CustomUserWithoutIsActiveField
|
|
|
|
|
|
fields = ("email",) # without USERNAME_FIELD
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"email": "testclient@example.com",
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
|
|
|
|
|
|
def test_custom_form_saves_many_to_many_field(self):
|
|
|
|
|
|
class CustomUserCreationForm(BaseUserCreationForm):
|
|
|
|
|
|
class Meta(BaseUserCreationForm.Meta):
|
|
|
|
|
|
model = CustomUserWithM2M
|
|
|
|
|
|
fields = UserCreationForm.Meta.fields + ("orgs",)
|
|
|
|
|
|
|
|
|
|
|
|
organization = Organization.objects.create(name="organization 1")
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "testclient@example.com",
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
"orgs": [str(organization.pk)],
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True)
|
|
|
|
|
|
user = form.save(commit=True)
|
|
|
|
|
|
self.assertSequenceEqual(user.orgs.all(), [organization])
|
|
|
|
|
|
|
2025-02-01 22:49:07 -03:00
|
|
|
|
def test_custom_form_with_non_required_password(self):
|
|
|
|
|
|
class CustomUserCreationForm(BaseUserCreationForm):
|
|
|
|
|
|
password1 = forms.CharField(required=False)
|
|
|
|
|
|
password2 = forms.CharField(required=False)
|
|
|
|
|
|
another_field = forms.CharField(required=True)
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "testclientnew",
|
|
|
|
|
|
"another_field": "Content",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True, form.errors)
|
|
|
|
|
|
|
2024-08-15 10:21:32 -03:00
|
|
|
|
|
|
|
|
|
|
class UserCreationFormTest(BaseUserCreationFormTest):
|
|
|
|
|
|
|
|
|
|
|
|
form_class = UserCreationForm
|
|
|
|
|
|
|
2022-09-24 15:26:14 +01:00
|
|
|
|
def test_case_insensitive_username(self):
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "TeStClIeNt",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = UserCreationForm(data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["username"].errors,
|
|
|
|
|
|
["A user with that username already exists."],
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2023-03-27 23:26:06 +11:00
|
|
|
|
@override_settings(AUTH_USER_MODEL="auth_tests.ExtensionUser")
|
|
|
|
|
|
def test_case_insensitive_username_custom_user_and_error_message(self):
|
|
|
|
|
|
class CustomUserCreationForm(UserCreationForm):
|
|
|
|
|
|
class Meta(UserCreationForm.Meta):
|
|
|
|
|
|
model = ExtensionUser
|
|
|
|
|
|
fields = UserCreationForm.Meta.fields + ("date_of_birth",)
|
|
|
|
|
|
error_messages = {
|
|
|
|
|
|
"username": {"unique": "This username has already been taken."}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
ExtensionUser.objects.create_user(
|
|
|
|
|
|
username="testclient",
|
|
|
|
|
|
password="password",
|
|
|
|
|
|
email="testclient@example.com",
|
|
|
|
|
|
date_of_birth=datetime.date(1984, 3, 5),
|
|
|
|
|
|
)
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "TeStClIeNt",
|
|
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
|
|
|
|
|
"date_of_birth": "1980-01-01",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserCreationForm(data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["username"].errors,
|
|
|
|
|
|
["This username has already been taken."],
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2022-09-24 15:26:14 +01:00
|
|
|
|
|
2018-01-23 13:20:18 -05:00
|
|
|
|
# To verify that the login form rejects inactive users, use an authentication
|
|
|
|
|
|
# backend that allows them.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTHENTICATION_BACKENDS=["django.contrib.auth.backends.AllowAllUsersModelBackend"]
|
|
|
|
|
|
)
|
2015-02-23 11:53:57 +11:00
|
|
|
|
class AuthenticationFormTest(TestDataMixin, TestCase):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_invalid_username(self):
|
|
|
|
|
|
# The user submits an invalid username.
|
|
|
|
|
|
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "jsmith_does_not_exist",
|
|
|
|
|
|
"password": "test123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2016-04-07 22:04:45 -04:00
|
|
|
|
self.assertEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.non_field_errors(),
|
|
|
|
|
|
[
|
|
|
|
|
|
form.error_messages["invalid_login"]
|
|
|
|
|
|
% {"username": User._meta.get_field("username").verbose_name}
|
|
|
|
|
|
],
|
2016-04-07 22:04:45 -04:00
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_inactive_user(self):
|
|
|
|
|
|
# The user is inactive.
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "inactive",
|
|
|
|
|
|
"password": "password",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.non_field_errors(), [str(form.error_messages["inactive"])]
|
|
|
|
|
|
)
|
2011-12-15 16:12:46 +00:00
|
|
|
|
|
2018-01-23 13:20:18 -05:00
|
|
|
|
# Use an authentication backend that rejects inactive users.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTHENTICATION_BACKENDS=["django.contrib.auth.backends.ModelBackend"]
|
|
|
|
|
|
)
|
2018-01-23 13:20:18 -05:00
|
|
|
|
def test_inactive_user_incorrect_password(self):
|
|
|
|
|
|
"""An invalid login doesn't leak the inactive status of a user."""
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "inactive",
|
|
|
|
|
|
"password": "incorrect",
|
2018-01-23 13:20:18 -05:00
|
|
|
|
}
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.non_field_errors(),
|
|
|
|
|
|
[
|
|
|
|
|
|
form.error_messages["invalid_login"]
|
|
|
|
|
|
% {"username": User._meta.get_field("username").verbose_name}
|
|
|
|
|
|
],
|
2018-01-23 13:20:18 -05:00
|
|
|
|
)
|
|
|
|
|
|
|
2016-02-18 17:58:30 -07:00
|
|
|
|
def test_login_failed(self):
|
|
|
|
|
|
signal_calls = []
|
|
|
|
|
|
|
|
|
|
|
|
def signal_handler(**kwargs):
|
|
|
|
|
|
signal_calls.append(kwargs)
|
|
|
|
|
|
|
|
|
|
|
|
user_login_failed.connect(signal_handler)
|
|
|
|
|
|
fake_request = object()
|
|
|
|
|
|
try:
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form = AuthenticationForm(
|
|
|
|
|
|
fake_request,
|
|
|
|
|
|
{
|
|
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password": "incorrect",
|
|
|
|
|
|
},
|
|
|
|
|
|
)
|
2016-02-18 17:58:30 -07:00
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertIs(signal_calls[0]["request"], fake_request)
|
2016-02-18 17:58:30 -07:00
|
|
|
|
finally:
|
|
|
|
|
|
user_login_failed.disconnect(signal_handler)
|
|
|
|
|
|
|
2011-12-15 16:12:46 +00:00
|
|
|
|
def test_inactive_user_i18n(self):
|
2024-01-26 12:45:07 +01:00
|
|
|
|
with (
|
|
|
|
|
|
self.settings(USE_I18N=True),
|
|
|
|
|
|
translation.override("pt-br", deactivate=True),
|
2022-02-03 20:24:19 +01:00
|
|
|
|
):
|
2013-08-16 20:12:10 +02:00
|
|
|
|
# The user is inactive.
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "inactive",
|
|
|
|
|
|
"password": "password",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2013-08-16 20:12:10 +02:00
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.non_field_errors(), [str(form.error_messages["inactive"])]
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2017-11-08 16:32:49 +08:00
|
|
|
|
# Use an authentication backend that allows inactive users.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTHENTICATION_BACKENDS=[
|
|
|
|
|
|
"django.contrib.auth.backends.AllowAllUsersModelBackend"
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2013-07-30 08:24:13 -04:00
|
|
|
|
def test_custom_login_allowed_policy(self):
|
2013-11-30 08:37:15 -05:00
|
|
|
|
# The user is inactive, but our custom form policy allows them to log in.
|
2013-07-30 08:24:13 -04:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "inactive",
|
|
|
|
|
|
"password": "password",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2013-07-30 08:24:13 -04:00
|
|
|
|
|
|
|
|
|
|
class AuthenticationFormWithInactiveUsersOkay(AuthenticationForm):
|
|
|
|
|
|
def confirm_login_allowed(self, user):
|
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
form = AuthenticationFormWithInactiveUsersOkay(None, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
|
2020-02-12 14:48:49 +01:00
|
|
|
|
# Raise a ValidationError in the form to disallow some logins according
|
|
|
|
|
|
# to custom logic.
|
2013-07-30 08:24:13 -04:00
|
|
|
|
class PickyAuthenticationForm(AuthenticationForm):
|
|
|
|
|
|
def confirm_login_allowed(self, user):
|
|
|
|
|
|
if user.username == "inactive":
|
2020-02-12 14:48:49 +01:00
|
|
|
|
raise ValidationError("This user is disallowed.")
|
|
|
|
|
|
raise ValidationError("Sorry, nobody's allowed in.")
|
2013-07-30 08:24:13 -04:00
|
|
|
|
|
|
|
|
|
|
form = PickyAuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.non_field_errors(), ["This user is disallowed."])
|
2013-07-30 08:24:13 -04:00
|
|
|
|
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password": "password",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2013-07-30 08:24:13 -04:00
|
|
|
|
form = PickyAuthenticationForm(None, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(form.non_field_errors(), ["Sorry, nobody's allowed in."])
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_success(self):
|
|
|
|
|
|
# The success case
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password": "password",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
self.assertEqual(form.non_field_errors(), [])
|
|
|
|
|
|
|
2016-04-22 19:39:13 +02:00
|
|
|
|
def test_unicode_username(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user(username="Σαρα", password="pwd")
|
2016-04-22 19:39:13 +02:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "Σαρα",
|
|
|
|
|
|
"password": "pwd",
|
2016-04-22 19:39:13 +02:00
|
|
|
|
}
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
self.assertEqual(form.non_field_errors(), [])
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(AUTH_USER_MODEL="auth_tests.CustomEmailField")
|
2017-08-17 14:08:56 -07:00
|
|
|
|
def test_username_field_max_length_matches_user_model(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(CustomEmailField._meta.get_field("username").max_length, 255)
|
2017-08-17 14:08:56 -07:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "u" * 255,
|
|
|
|
|
|
"password": "pwd",
|
|
|
|
|
|
"email": "test@example.com",
|
2017-08-17 14:08:56 -07:00
|
|
|
|
}
|
|
|
|
|
|
CustomEmailField.objects.create_user(**data)
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.fields["username"].max_length, 255)
|
|
|
|
|
|
self.assertEqual(form.fields["username"].widget.attrs.get("maxlength"), 255)
|
2017-08-17 14:08:56 -07:00
|
|
|
|
self.assertEqual(form.errors, {})
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(AUTH_USER_MODEL="auth_tests.IntegerUsernameUser")
|
2017-10-20 11:09:03 -04:00
|
|
|
|
def test_username_field_max_length_defaults_to_254(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertIsNone(IntegerUsernameUser._meta.get_field("username").max_length)
|
2017-10-20 11:09:03 -04:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "0123456",
|
|
|
|
|
|
"password": "password",
|
2017-10-20 11:09:03 -04:00
|
|
|
|
}
|
|
|
|
|
|
IntegerUsernameUser.objects.create_user(**data)
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.fields["username"].max_length, 254)
|
|
|
|
|
|
self.assertEqual(form.fields["username"].widget.attrs.get("maxlength"), 254)
|
2017-10-20 11:09:03 -04:00
|
|
|
|
self.assertEqual(form.errors, {})
|
|
|
|
|
|
|
2013-01-10 09:05:01 +01:00
|
|
|
|
def test_username_field_label(self):
|
|
|
|
|
|
class CustomAuthenticationForm(AuthenticationForm):
|
|
|
|
|
|
username = CharField(label="Name", max_length=75)
|
|
|
|
|
|
|
|
|
|
|
|
form = CustomAuthenticationForm()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form["username"].label, "Name")
|
2013-01-10 09:05:01 +01:00
|
|
|
|
|
2013-05-06 18:45:56 +08:00
|
|
|
|
def test_username_field_label_not_set(self):
|
|
|
|
|
|
class CustomAuthenticationForm(AuthenticationForm):
|
|
|
|
|
|
username = CharField()
|
|
|
|
|
|
|
|
|
|
|
|
form = CustomAuthenticationForm()
|
2014-04-06 23:30:46 +08:00
|
|
|
|
username_field = User._meta.get_field(User.USERNAME_FIELD)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields["username"].label, capfirst(username_field.verbose_name)
|
|
|
|
|
|
)
|
2013-05-06 18:45:56 +08:00
|
|
|
|
|
2019-03-24 19:53:31 +01:00
|
|
|
|
def test_username_field_autocapitalize_none(self):
|
|
|
|
|
|
form = AuthenticationForm()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields["username"].widget.attrs.get("autocapitalize"), "none"
|
|
|
|
|
|
)
|
2019-03-24 19:53:31 +01:00
|
|
|
|
|
2013-05-06 18:45:56 +08:00
|
|
|
|
def test_username_field_label_empty_string(self):
|
|
|
|
|
|
class CustomAuthenticationForm(AuthenticationForm):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
username = CharField(label="")
|
2013-05-06 18:45:56 +08:00
|
|
|
|
|
|
|
|
|
|
form = CustomAuthenticationForm()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.fields["username"].label, "")
|
2013-05-06 18:45:56 +08:00
|
|
|
|
|
2016-03-14 20:21:05 +00:00
|
|
|
|
def test_password_whitespace_not_stripped(self):
|
|
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testuser",
|
|
|
|
|
|
"password": " pass ",
|
2016-03-14 20:21:05 +00:00
|
|
|
|
}
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
form.is_valid() # Not necessary to have valid credentails for the test.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["password"], data["password"])
|
2016-03-14 20:21:05 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(AUTH_USER_MODEL="auth_tests.IntegerUsernameUser")
|
2016-07-26 16:50:29 +03:00
|
|
|
|
def test_integer_username(self):
|
|
|
|
|
|
class CustomAuthenticationForm(AuthenticationForm):
|
|
|
|
|
|
username = IntegerField()
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = IntegerUsernameUser.objects.create_user(username=0, password="pwd")
|
2016-07-26 16:50:29 +03:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": 0,
|
|
|
|
|
|
"password": "pwd",
|
2016-07-26 16:50:29 +03:00
|
|
|
|
}
|
|
|
|
|
|
form = CustomAuthenticationForm(None, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["username"], data["username"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["password"], data["password"])
|
2016-07-26 16:50:29 +03:00
|
|
|
|
self.assertEqual(form.errors, {})
|
|
|
|
|
|
self.assertEqual(form.user_cache, user)
|
|
|
|
|
|
|
2017-10-11 21:39:22 -07:00
|
|
|
|
def test_get_invalid_login_error(self):
|
|
|
|
|
|
error = AuthenticationForm().get_invalid_login_error()
|
2020-02-12 14:48:49 +01:00
|
|
|
|
self.assertIsInstance(error, ValidationError)
|
2017-10-11 21:39:22 -07:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
error.message,
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"Please enter a correct %(username)s and password. Note that both "
|
|
|
|
|
|
"fields may be case-sensitive.",
|
2017-10-11 21:39:22 -07:00
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(error.code, "invalid_login")
|
|
|
|
|
|
self.assertEqual(error.params, {"username": "username"})
|
2017-10-11 21:39:22 -07:00
|
|
|
|
|
2019-03-10 11:03:42 +01:00
|
|
|
|
def test_html_autocomplete_attributes(self):
|
|
|
|
|
|
form = AuthenticationForm()
|
|
|
|
|
|
tests = (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
("username", "username"),
|
|
|
|
|
|
("password", "current-password"),
|
2019-03-10 11:03:42 +01:00
|
|
|
|
)
|
|
|
|
|
|
for field_name, autocomplete in tests:
|
|
|
|
|
|
with self.subTest(field_name=field_name, autocomplete=autocomplete):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields[field_name].widget.attrs["autocomplete"], autocomplete
|
|
|
|
|
|
)
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
2022-10-23 08:42:40 -03:00
|
|
|
|
def test_no_password(self):
|
|
|
|
|
|
data = {"username": "username"}
|
|
|
|
|
|
form = AuthenticationForm(None, data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["password"].errors, [Field.default_error_messages["required"]]
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2015-02-23 11:53:57 +11:00
|
|
|
|
class SetPasswordFormTest(TestDataMixin, TestCase):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_password_verification(self):
|
|
|
|
|
|
# The two new passwords do not match.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"new_password1": "abc123",
|
|
|
|
|
|
"new_password2": "abc",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2016-04-07 22:04:45 -04:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["new_password2"].errors,
|
2022-02-03 20:24:19 +01:00
|
|
|
|
[str(form.error_messages["password_mismatch"])],
|
2016-04-07 22:04:45 -04:00
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@mock.patch("django.contrib.auth.password_validation.password_changed")
|
2015-07-06 18:12:26 -04:00
|
|
|
|
def test_success(self, password_changed):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"new_password1": "abc123",
|
|
|
|
|
|
"new_password2": "abc123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2015-07-06 18:12:26 -04:00
|
|
|
|
form.save(commit=False)
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 0)
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 1)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
},
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation.MinimumLengthValidator"
|
|
|
|
|
|
),
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"OPTIONS": {
|
|
|
|
|
|
"min_length": 12,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2015-03-08 15:07:57 +01:00
|
|
|
|
def test_validates_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2015-03-08 15:07:57 +01:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"new_password1": "testclient",
|
|
|
|
|
|
"new_password2": "testclient",
|
2015-03-08 15:07:57 +01:00
|
|
|
|
}
|
|
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(len(form["new_password2"].errors), 2)
|
2015-06-08 13:27:47 -04:00
|
|
|
|
self.assertIn(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"The password is too similar to the username.", form["new_password2"].errors
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"This password is too short. It must contain at least 12 characters.",
|
|
|
|
|
|
form["new_password2"].errors,
|
2015-06-08 13:27:47 -04:00
|
|
|
|
)
|
2015-03-08 15:07:57 +01:00
|
|
|
|
|
2024-01-23 16:45:18 +01:00
|
|
|
|
# SetPasswordForm does not consider usable_password for form validation
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"new_password1": "testclient",
|
|
|
|
|
|
"new_password2": "testclient",
|
|
|
|
|
|
"usable_password": "false",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(len(form["new_password2"].errors), 2)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"The password is too similar to the username.", form["new_password2"].errors
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"This password is too short. It must contain at least 12 characters.",
|
|
|
|
|
|
form["new_password2"].errors,
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2022-10-23 08:42:40 -03:00
|
|
|
|
def test_no_password(self):
|
|
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"new_password1": "new-password"}
|
|
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["new_password2"].errors, [Field.default_error_messages["required"]]
|
|
|
|
|
|
)
|
|
|
|
|
|
form = SetPasswordForm(user, {})
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["new_password1"].errors, [Field.default_error_messages["required"]]
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["new_password2"].errors, [Field.default_error_messages["required"]]
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2016-03-14 20:21:05 +00:00
|
|
|
|
def test_password_whitespace_not_stripped(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2016-03-14 20:21:05 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"new_password1": " password ",
|
|
|
|
|
|
"new_password2": " password ",
|
2016-03-14 20:21:05 +00:00
|
|
|
|
}
|
|
|
|
|
|
form = SetPasswordForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["new_password1"], data["new_password1"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["new_password2"], data["new_password2"])
|
|
|
|
|
|
|
|
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
},
|
|
|
|
|
|
{
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation.MinimumLengthValidator"
|
|
|
|
|
|
),
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"OPTIONS": {
|
|
|
|
|
|
"min_length": 12,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
2016-05-06 12:23:52 +02:00
|
|
|
|
def test_help_text_translation(self):
|
|
|
|
|
|
french_help_texts = [
|
2022-02-04 08:08:27 +01:00
|
|
|
|
"Votre mot de passe ne peut pas trop ressembler à vos autres informations "
|
|
|
|
|
|
"personnelles.",
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"Votre mot de passe doit contenir au minimum 12 caractères.",
|
2016-05-06 12:23:52 +02:00
|
|
|
|
]
|
|
|
|
|
|
form = SetPasswordForm(self.u1)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
with translation.override("fr"):
|
2016-05-06 12:23:52 +02:00
|
|
|
|
html = form.as_p()
|
|
|
|
|
|
for french_text in french_help_texts:
|
|
|
|
|
|
self.assertIn(french_text, html)
|
|
|
|
|
|
|
2019-03-10 11:03:42 +01:00
|
|
|
|
def test_html_autocomplete_attributes(self):
|
|
|
|
|
|
form = SetPasswordForm(self.u1)
|
|
|
|
|
|
tests = (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
("new_password1", "new-password"),
|
|
|
|
|
|
("new_password2", "new-password"),
|
2019-03-10 11:03:42 +01:00
|
|
|
|
)
|
|
|
|
|
|
for field_name, autocomplete in tests:
|
|
|
|
|
|
with self.subTest(field_name=field_name, autocomplete=autocomplete):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields[field_name].widget.attrs["autocomplete"], autocomplete
|
|
|
|
|
|
)
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
2024-05-28 08:15:12 +02:00
|
|
|
|
def test_password_extra_validations(self):
|
|
|
|
|
|
class ExtraValidationForm(ExtraValidationFormMixin, SetPasswordForm):
|
|
|
|
|
|
def clean_new_password1(self):
|
|
|
|
|
|
return self.failing_helper("new_password1")
|
|
|
|
|
|
|
|
|
|
|
|
def clean_new_password2(self):
|
|
|
|
|
|
return self.failing_helper("new_password2")
|
|
|
|
|
|
|
|
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"new_password1": "abc", "new_password2": "abc"}
|
|
|
|
|
|
for fields in (
|
|
|
|
|
|
["new_password1"],
|
|
|
|
|
|
["new_password2"],
|
|
|
|
|
|
["new_password1", "new_password2"],
|
|
|
|
|
|
):
|
|
|
|
|
|
with self.subTest(fields=fields):
|
|
|
|
|
|
errors = {field: [f"Extra validation for {field}."] for field in fields}
|
|
|
|
|
|
form = ExtraValidationForm(user, data, failing_fields=errors)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertDictEqual(form.errors, errors)
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2015-02-23 11:53:57 +11:00
|
|
|
|
class PasswordChangeFormTest(TestDataMixin, TestCase):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_incorrect_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"old_password": "test",
|
|
|
|
|
|
"new_password1": "abc123",
|
|
|
|
|
|
"new_password2": "abc123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["old_password"].errors,
|
|
|
|
|
|
[str(form.error_messages["password_incorrect"])],
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_password_verification(self):
|
|
|
|
|
|
# The two new passwords do not match.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"old_password": "password",
|
|
|
|
|
|
"new_password1": "abc123",
|
|
|
|
|
|
"new_password2": "abc",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form["new_password2"].errors,
|
|
|
|
|
|
[str(form.error_messages["password_mismatch"])],
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@mock.patch("django.contrib.auth.password_validation.password_changed")
|
2015-07-06 18:12:26 -04:00
|
|
|
|
def test_success(self, password_changed):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
# The success case.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"old_password": "password",
|
|
|
|
|
|
"new_password1": "abc123",
|
|
|
|
|
|
"new_password2": "abc123",
|
2013-10-18 10:02:43 +01:00
|
|
|
|
}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2015-07-06 18:12:26 -04:00
|
|
|
|
form.save(commit=False)
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 0)
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 1)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_field_order(self):
|
|
|
|
|
|
# Regression test - check the order of fields:
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
list(PasswordChangeForm(user, {}).fields),
|
|
|
|
|
|
["old_password", "new_password1", "new_password2"],
|
|
|
|
|
|
)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2016-03-14 20:21:05 +00:00
|
|
|
|
def test_password_whitespace_not_stripped(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
user.set_password(" oldpassword ")
|
2016-03-14 20:21:05 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"old_password": " oldpassword ",
|
|
|
|
|
|
"new_password1": " pass ",
|
|
|
|
|
|
"new_password2": " pass ",
|
2016-03-14 20:21:05 +00:00
|
|
|
|
}
|
|
|
|
|
|
form = PasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["old_password"], data["old_password"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["new_password1"], data["new_password1"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["new_password2"], data["new_password2"])
|
2016-03-14 20:21:05 +00:00
|
|
|
|
|
2019-03-10 11:03:42 +01:00
|
|
|
|
def test_html_autocomplete_attributes(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2019-03-10 11:03:42 +01:00
|
|
|
|
form = PasswordChangeForm(user)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields["old_password"].widget.attrs["autocomplete"], "current-password"
|
|
|
|
|
|
)
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
2011-12-15 16:12:46 +00:00
|
|
|
|
|
2018-07-02 18:10:36 -04:00
|
|
|
|
class UserChangeFormTest(TestDataMixin, TestCase):
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_username_validity(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"username": "not valid"}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = UserChangeForm(data, instance=user)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
validator = next(
|
|
|
|
|
|
v
|
|
|
|
|
|
for v in User._meta.get_field("username").validators
|
|
|
|
|
|
if v.code == "invalid"
|
|
|
|
|
|
)
|
2017-01-24 12:22:42 +01:00
|
|
|
|
self.assertEqual(form["username"].errors, [str(validator.message)])
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2010-09-09 23:31:54 +00:00
|
|
|
|
def test_bug_14242(self):
|
|
|
|
|
|
# A regression test, introduce by adding an optimization for the
|
|
|
|
|
|
# UserChangeForm.
|
|
|
|
|
|
|
|
|
|
|
|
class MyUserForm(UserChangeForm):
|
|
|
|
|
|
def __init__(self, *args, **kwargs):
|
2017-01-21 18:43:44 +05:30
|
|
|
|
super().__init__(*args, **kwargs)
|
2024-01-26 12:45:07 +01:00
|
|
|
|
self.fields["groups"].help_text = (
|
|
|
|
|
|
"These groups give users different permissions"
|
|
|
|
|
|
)
|
2010-09-09 23:31:54 +00:00
|
|
|
|
|
|
|
|
|
|
class Meta(UserChangeForm.Meta):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
fields = ("groups",)
|
2010-09-09 23:31:54 +00:00
|
|
|
|
|
|
|
|
|
|
# Just check we can create it
|
2013-08-04 09:17:10 -07:00
|
|
|
|
MyUserForm({})
|
2010-09-09 23:31:54 +00:00
|
|
|
|
|
2015-12-02 23:55:50 +00:00
|
|
|
|
def test_unusable_password(self):
|
2024-02-20 12:12:37 -03:00
|
|
|
|
user = User.objects.get(username="unusable_password")
|
2012-09-12 11:21:58 +02:00
|
|
|
|
form = UserChangeForm(instance=user)
|
|
|
|
|
|
self.assertIn(_("No password set."), form.as_table())
|
|
|
|
|
|
|
2012-03-22 08:10:19 +00:00
|
|
|
|
def test_bug_17944_empty_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="empty_password")
|
2012-03-22 08:10:19 +00:00
|
|
|
|
form = UserChangeForm(instance=user)
|
2012-09-12 11:56:58 +02:00
|
|
|
|
self.assertIn(_("No password set."), form.as_table())
|
2012-03-22 08:10:19 +00:00
|
|
|
|
|
|
|
|
|
|
def test_bug_17944_unmanageable_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="unmanageable_password")
|
2012-03-22 08:10:19 +00:00
|
|
|
|
form = UserChangeForm(instance=user)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertIn(
|
|
|
|
|
|
_("Invalid password format or unknown hashing algorithm."), form.as_table()
|
|
|
|
|
|
)
|
2012-03-22 08:10:19 +00:00
|
|
|
|
|
|
|
|
|
|
def test_bug_17944_unknown_password_algorithm(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="unknown_password")
|
2012-03-22 08:10:19 +00:00
|
|
|
|
form = UserChangeForm(instance=user)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertIn(
|
|
|
|
|
|
_("Invalid password format or unknown hashing algorithm."), form.as_table()
|
|
|
|
|
|
)
|
2012-03-22 08:10:19 +00:00
|
|
|
|
|
2012-10-20 11:41:54 +08:00
|
|
|
|
def test_bug_19133(self):
|
|
|
|
|
|
"The change form does not return the password value"
|
|
|
|
|
|
# Use the form to construct the POST data
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2012-10-20 11:41:54 +08:00
|
|
|
|
form_for_data = UserChangeForm(instance=user)
|
|
|
|
|
|
post_data = form_for_data.initial
|
|
|
|
|
|
|
|
|
|
|
|
# The password field should be readonly, so anything
|
|
|
|
|
|
# posted here should be ignored; the form will be
|
|
|
|
|
|
# valid, and give back the 'initial' value for the
|
|
|
|
|
|
# password field.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
post_data["password"] = "new password"
|
2012-10-20 11:41:54 +08:00
|
|
|
|
form = UserChangeForm(instance=user, data=post_data)
|
|
|
|
|
|
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2016-02-05 15:56:52 -05:00
|
|
|
|
# original hashed password contains $
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertIn("$", form.cleaned_data["password"])
|
2012-10-20 11:41:54 +08:00
|
|
|
|
|
2012-12-01 12:17:00 +01:00
|
|
|
|
def test_bug_19349_bound_password_field(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2012-12-01 12:17:00 +01:00
|
|
|
|
form = UserChangeForm(data={}, instance=user)
|
|
|
|
|
|
# When rendering the bound password field,
|
|
|
|
|
|
# ReadOnlyPasswordHashWidget needs the initial
|
|
|
|
|
|
# value to render correctly
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.initial["password"], form["password"].value())
|
2012-12-01 12:17:00 +01:00
|
|
|
|
|
2022-09-30 10:50:28 +02:00
|
|
|
|
@override_settings(ROOT_URLCONF="auth_tests.urls_admin")
|
2024-03-11 16:24:02 +01:00
|
|
|
|
def test_link_to_password_reset_in_user_change_form(self):
|
2024-01-23 16:45:18 +01:00
|
|
|
|
cases = [
|
|
|
|
|
|
(
|
|
|
|
|
|
"testclient",
|
2024-03-11 16:24:02 +01:00
|
|
|
|
"Raw passwords are not stored, so there is no way to see "
|
|
|
|
|
|
"the user’s password.",
|
|
|
|
|
|
"Reset password",
|
2024-01-23 16:45:18 +01:00
|
|
|
|
),
|
|
|
|
|
|
(
|
|
|
|
|
|
"unusable_password",
|
2024-03-11 16:24:02 +01:00
|
|
|
|
"Enable password-based authentication for this user by setting a "
|
|
|
|
|
|
"password.",
|
|
|
|
|
|
"Set password",
|
2024-01-23 16:45:18 +01:00
|
|
|
|
),
|
|
|
|
|
|
]
|
2024-03-11 16:24:02 +01:00
|
|
|
|
password_reset_link = r'<a class="button" href="([^"]*)">([^<]*)</a>'
|
|
|
|
|
|
for username, expected_help_text, expected_button_label in cases:
|
2024-01-23 16:45:18 +01:00
|
|
|
|
with self.subTest(username=username):
|
|
|
|
|
|
user = User.objects.get(username=username)
|
|
|
|
|
|
form = UserChangeForm(data={}, instance=user)
|
|
|
|
|
|
password_help_text = form.fields["password"].help_text
|
2024-03-11 16:24:02 +01:00
|
|
|
|
self.assertEqual(password_help_text, expected_help_text)
|
2024-01-23 16:45:18 +01:00
|
|
|
|
|
2024-03-11 16:24:02 +01:00
|
|
|
|
matches = re.search(password_reset_link, form.as_p())
|
|
|
|
|
|
self.assertIsNotNone(matches)
|
|
|
|
|
|
self.assertEqual(len(matches.groups()), 2)
|
2024-01-23 16:45:18 +01:00
|
|
|
|
url_prefix = f"admin:{user._meta.app_label}_{user._meta.model_name}"
|
|
|
|
|
|
# URL to UserChangeForm in admin via to_field (instead of pk).
|
2024-03-11 16:24:02 +01:00
|
|
|
|
user_change_url = reverse(f"{url_prefix}_change", args=(user.pk,))
|
2024-01-23 16:45:18 +01:00
|
|
|
|
joined_url = urllib.parse.urljoin(user_change_url, matches.group(1))
|
|
|
|
|
|
|
|
|
|
|
|
pw_change_url = reverse(
|
|
|
|
|
|
f"{url_prefix}_password_change", args=(user.pk,)
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertEqual(joined_url, pw_change_url)
|
2024-03-11 16:24:02 +01:00
|
|
|
|
self.assertEqual(matches.group(2), expected_button_label)
|
2022-09-30 10:50:28 +02:00
|
|
|
|
|
2016-02-14 17:30:01 +02:00
|
|
|
|
def test_custom_form(self):
|
2018-07-02 18:10:36 -04:00
|
|
|
|
class CustomUserChangeForm(UserChangeForm):
|
|
|
|
|
|
class Meta(UserChangeForm.Meta):
|
|
|
|
|
|
model = ExtensionUser
|
2022-02-03 20:24:19 +01:00
|
|
|
|
fields = (
|
|
|
|
|
|
"username",
|
|
|
|
|
|
"password",
|
|
|
|
|
|
"date_of_birth",
|
|
|
|
|
|
)
|
2017-11-15 20:27:53 +08:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2018-07-02 18:10:36 -04:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"username": "testclient",
|
|
|
|
|
|
"password": "testclient",
|
|
|
|
|
|
"date_of_birth": "1998-02-24",
|
2018-07-02 18:10:36 -04:00
|
|
|
|
}
|
|
|
|
|
|
form = CustomUserChangeForm(data, instance=user)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["username"], "testclient")
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["date_of_birth"], datetime.date(1998, 2, 24))
|
2016-02-14 17:30:01 +02:00
|
|
|
|
|
2018-03-29 11:35:53 +02:00
|
|
|
|
def test_password_excluded(self):
|
|
|
|
|
|
class UserChangeFormWithoutPassword(UserChangeForm):
|
|
|
|
|
|
password = None
|
|
|
|
|
|
|
|
|
|
|
|
class Meta:
|
|
|
|
|
|
model = User
|
2022-02-03 20:24:19 +01:00
|
|
|
|
exclude = ["password"]
|
2018-03-29 11:35:53 +02:00
|
|
|
|
|
|
|
|
|
|
form = UserChangeFormWithoutPassword()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertNotIn("password", form.fields)
|
2018-03-29 11:35:53 +02:00
|
|
|
|
|
2019-03-24 19:53:31 +01:00
|
|
|
|
def test_username_field_autocapitalize_none(self):
|
|
|
|
|
|
form = UserChangeForm()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields["username"].widget.attrs.get("autocapitalize"), "none"
|
|
|
|
|
|
)
|
2019-03-24 19:53:31 +01:00
|
|
|
|
|
2012-03-22 08:10:19 +00:00
|
|
|
|
|
2016-02-05 15:56:52 -05:00
|
|
|
|
@override_settings(TEMPLATES=AUTH_TEMPLATES)
|
2015-02-23 11:53:57 +11:00
|
|
|
|
class PasswordResetFormTest(TestDataMixin, TestCase):
|
2015-02-14 22:03:25 -05:00
|
|
|
|
@classmethod
|
|
|
|
|
|
def setUpClass(cls):
|
2017-01-21 18:43:44 +05:30
|
|
|
|
super().setUpClass()
|
2015-02-14 22:03:25 -05:00
|
|
|
|
# This cleanup is necessary because contrib.sites cache
|
|
|
|
|
|
# makes tests interfere with each other, see #11505
|
|
|
|
|
|
Site.objects.clear_cache()
|
|
|
|
|
|
|
2024-08-23 11:13:31 -03:00
|
|
|
|
def assertEmailMessageSent(self, **kwargs):
|
|
|
|
|
|
self.assertEqual(len(mail.outbox), 1)
|
|
|
|
|
|
msg = mail.outbox[0]
|
|
|
|
|
|
for attr, expected in kwargs.items():
|
|
|
|
|
|
with self.subTest(attr=attr):
|
|
|
|
|
|
self.assertEqual(getattr(msg, attr), expected)
|
|
|
|
|
|
return msg
|
|
|
|
|
|
|
2011-03-14 21:14:10 +00:00
|
|
|
|
def create_dummy_user(self):
|
2013-10-19 10:29:17 +02:00
|
|
|
|
"""
|
|
|
|
|
|
Create a user and return a tuple (user_object, username, email).
|
2011-03-14 21:14:10 +00:00
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
username = "jsmith"
|
|
|
|
|
|
email = "jsmith@example.com"
|
|
|
|
|
|
user = User.objects.create_user(username, email, "test123")
|
2011-03-14 21:14:10 +00:00
|
|
|
|
return (user, username, email)
|
|
|
|
|
|
|
2010-09-09 23:21:16 +00:00
|
|
|
|
def test_invalid_email(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"email": "not valid"}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form["email"].errors, [_("Enter a valid email address.")])
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2019-12-16 21:51:57 -05:00
|
|
|
|
def test_user_email_unicode_collision(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user("mike123", "mike@example.org", "test123")
|
|
|
|
|
|
User.objects.create_user("mike456", "mıke@example.org", "test123")
|
|
|
|
|
|
data = {"email": "mıke@example.org"}
|
2019-12-16 21:51:57 -05:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2024-08-23 11:13:31 -03:00
|
|
|
|
self.assertEmailMessageSent(to=["mıke@example.org"])
|
2019-12-16 21:51:57 -05:00
|
|
|
|
|
|
|
|
|
|
def test_user_email_domain_unicode_collision(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user("mike123", "mike@ixample.org", "test123")
|
|
|
|
|
|
User.objects.create_user("mike456", "mike@ıxample.org", "test123")
|
|
|
|
|
|
data = {"email": "mike@ıxample.org"}
|
2019-12-16 21:51:57 -05:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2024-08-23 11:13:31 -03:00
|
|
|
|
self.assertEmailMessageSent(to=["mike@ıxample.org"])
|
2019-12-16 21:51:57 -05:00
|
|
|
|
|
|
|
|
|
|
def test_user_email_unicode_collision_nonexistent(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user("mike123", "mike@example.org", "test123")
|
|
|
|
|
|
data = {"email": "mıke@example.org"}
|
2019-12-16 21:51:57 -05:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
|
|
|
|
|
|
|
|
|
|
|
def test_user_email_domain_unicode_collision_nonexistent(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
User.objects.create_user("mike123", "mike@ixample.org", "test123")
|
|
|
|
|
|
data = {"email": "mike@ıxample.org"}
|
2019-12-16 21:51:57 -05:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
|
|
|
|
|
|
2014-11-03 22:48:03 +00:00
|
|
|
|
def test_nonexistent_email(self):
|
2013-10-19 10:29:17 +02:00
|
|
|
|
"""
|
2014-04-26 10:18:45 -07:00
|
|
|
|
Test nonexistent email address. This should not fail because it would
|
2013-10-19 10:29:17 +02:00
|
|
|
|
expose information about registered users.
|
|
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"email": "foo@bar.com"}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordResetForm(data)
|
2013-02-23 13:39:21 +01:00
|
|
|
|
self.assertTrue(form.is_valid())
|
2013-02-24 11:15:17 +01:00
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
|
|
|
|
|
def test_cleaned_data(self):
|
2011-03-14 21:14:10 +00:00
|
|
|
|
(user, username, email) = self.create_dummy_user()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"email": email}
|
2010-09-09 23:21:16 +00:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.save(domain_override="example.com")
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["email"], email)
|
2024-08-23 11:13:31 -03:00
|
|
|
|
self.assertEmailMessageSent()
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2011-06-19 11:24:39 +00:00
|
|
|
|
def test_custom_email_subject(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"email": "testclient@example.com"}
|
2013-02-18 09:20:26 +01:00
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
# Since we're not providing a request object, we must provide a
|
|
|
|
|
|
# domain_override to prevent the save operation from failing in the
|
|
|
|
|
|
# potential case where contrib.sites is not installed. Refs #16412.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.save(domain_override="example.com")
|
2024-08-23 11:13:31 -03:00
|
|
|
|
self.assertEmailMessageSent(subject="Custom password reset on example.com")
|
2010-09-09 23:21:16 +00:00
|
|
|
|
|
2014-05-09 08:48:41 +02:00
|
|
|
|
def test_custom_email_constructor(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
data = {"email": "testclient@example.com"}
|
2014-12-17 22:10:57 +01:00
|
|
|
|
|
|
|
|
|
|
class CustomEmailPasswordResetForm(PasswordResetForm):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
def send_mail(
|
|
|
|
|
|
self,
|
|
|
|
|
|
subject_template_name,
|
|
|
|
|
|
email_template_name,
|
|
|
|
|
|
context,
|
|
|
|
|
|
from_email,
|
|
|
|
|
|
to_email,
|
|
|
|
|
|
html_email_template_name=None,
|
|
|
|
|
|
):
|
2014-12-17 22:10:57 +01:00
|
|
|
|
EmailMultiAlternatives(
|
|
|
|
|
|
"Forgot your password?",
|
|
|
|
|
|
"Sorry to hear you forgot your password.",
|
2022-02-03 20:24:19 +01:00
|
|
|
|
None,
|
|
|
|
|
|
[to_email],
|
|
|
|
|
|
["site_monitor@example.com"],
|
|
|
|
|
|
headers={"Reply-To": "webmaster@example.com"},
|
2016-04-07 22:04:45 -04:00
|
|
|
|
alternatives=[
|
|
|
|
|
|
("Really sorry to hear you forgot your password.", "text/html")
|
|
|
|
|
|
],
|
|
|
|
|
|
).send()
|
2014-12-17 22:10:57 +01:00
|
|
|
|
|
|
|
|
|
|
form = CustomEmailPasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
# Since we're not providing a request object, we must provide a
|
|
|
|
|
|
# domain_override to prevent the save operation from failing in the
|
|
|
|
|
|
# potential case where contrib.sites is not installed. Refs #16412.
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.save(domain_override="example.com")
|
2024-08-23 11:13:31 -03:00
|
|
|
|
self.assertEmailMessageSent(
|
|
|
|
|
|
subject="Forgot your password?",
|
|
|
|
|
|
bcc=["site_monitor@example.com"],
|
|
|
|
|
|
content_subtype="plain",
|
|
|
|
|
|
)
|
2014-05-09 08:48:41 +02:00
|
|
|
|
|
2013-10-19 10:29:17 +02:00
|
|
|
|
def test_preserve_username_case(self):
|
|
|
|
|
|
"""
|
|
|
|
|
|
Preserve the case of the user name (before the @ in the email address)
|
|
|
|
|
|
when creating a user (#5605).
|
|
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.create_user("forms_test2", "tesT@EXAMple.com", "test")
|
|
|
|
|
|
self.assertEqual(user.email, "tesT@example.com")
|
|
|
|
|
|
user = User.objects.create_user("forms_test3", "tesT", "test")
|
|
|
|
|
|
self.assertEqual(user.email, "tesT")
|
2011-03-14 21:14:10 +00:00
|
|
|
|
|
|
|
|
|
|
def test_inactive_user(self):
|
2013-10-19 10:29:17 +02:00
|
|
|
|
"""
|
2016-10-27 14:53:39 +07:00
|
|
|
|
Inactive user cannot receive password reset email.
|
2013-10-19 10:29:17 +02:00
|
|
|
|
"""
|
2011-03-14 21:14:10 +00:00
|
|
|
|
(user, username, email) = self.create_dummy_user()
|
|
|
|
|
|
user.is_active = False
|
|
|
|
|
|
user.save()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form = PasswordResetForm({"email": email})
|
2013-02-23 13:39:21 +01:00
|
|
|
|
self.assertTrue(form.is_valid())
|
2013-10-19 10:40:20 +02:00
|
|
|
|
form.save()
|
2013-02-23 13:39:21 +01:00
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
2011-06-26 16:51:34 +00:00
|
|
|
|
|
|
|
|
|
|
def test_unusable_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.create_user("testuser", "test@example.com", "test")
|
2011-06-26 16:51:34 +00:00
|
|
|
|
data = {"email": "test@example.com"}
|
|
|
|
|
|
form = PasswordResetForm(data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
user.set_unusable_password()
|
|
|
|
|
|
user.save()
|
|
|
|
|
|
form = PasswordResetForm(data)
|
2013-02-23 13:39:21 +01:00
|
|
|
|
# The form itself is valid, but no email is sent
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2013-02-24 11:15:17 +01:00
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
2012-12-01 12:17:00 +01:00
|
|
|
|
|
2013-07-30 22:29:34 -04:00
|
|
|
|
def test_save_plaintext_email(self):
|
|
|
|
|
|
"""
|
|
|
|
|
|
Test the PasswordResetForm.save() method with no html_email_template_name
|
|
|
|
|
|
parameter passed in.
|
|
|
|
|
|
Test to ensure original behavior is unchanged after the parameter was added.
|
|
|
|
|
|
"""
|
|
|
|
|
|
(user, username, email) = self.create_dummy_user()
|
|
|
|
|
|
form = PasswordResetForm({"email": email})
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2024-08-23 11:13:31 -03:00
|
|
|
|
msg = self.assertEmailMessageSent()
|
|
|
|
|
|
self.assertEqual(len(msg.alternatives), 0)
|
|
|
|
|
|
message = msg.message()
|
2013-07-30 22:29:34 -04:00
|
|
|
|
self.assertFalse(message.is_multipart())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(message.get_content_type(), "text/plain")
|
|
|
|
|
|
self.assertEqual(message.get("subject"), "Custom password reset on example.com")
|
|
|
|
|
|
self.assertEqual(message.get_all("to"), [email])
|
|
|
|
|
|
self.assertTrue(
|
|
|
|
|
|
re.match(r"^http://example.com/reset/[\w+/-]", message.get_payload())
|
|
|
|
|
|
)
|
2013-07-30 22:29:34 -04:00
|
|
|
|
|
|
|
|
|
|
def test_save_html_email_template_name(self):
|
|
|
|
|
|
"""
|
2019-05-15 11:14:59 +01:00
|
|
|
|
Test the PasswordResetForm.save() method with html_email_template_name
|
2013-07-30 22:29:34 -04:00
|
|
|
|
parameter specified.
|
|
|
|
|
|
Test to ensure that a multipart email is sent with both text/plain
|
|
|
|
|
|
and text/html parts.
|
|
|
|
|
|
"""
|
|
|
|
|
|
(user, username, email) = self.create_dummy_user()
|
|
|
|
|
|
form = PasswordResetForm({"email": email})
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form.save(
|
|
|
|
|
|
html_email_template_name="registration/html_password_reset_email.html"
|
|
|
|
|
|
)
|
2024-08-23 11:13:31 -03:00
|
|
|
|
msg = self.assertEmailMessageSent()
|
|
|
|
|
|
self.assertEqual(len(msg.alternatives), 1)
|
|
|
|
|
|
message = msg.message()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(message.get("subject"), "Custom password reset on example.com")
|
2013-07-30 22:29:34 -04:00
|
|
|
|
self.assertEqual(len(message.get_payload()), 2)
|
|
|
|
|
|
self.assertTrue(message.is_multipart())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(message.get_payload(0).get_content_type(), "text/plain")
|
|
|
|
|
|
self.assertEqual(message.get_payload(1).get_content_type(), "text/html")
|
|
|
|
|
|
self.assertEqual(message.get_all("to"), [email])
|
|
|
|
|
|
self.assertTrue(
|
|
|
|
|
|
re.match(
|
|
|
|
|
|
r"^http://example.com/reset/[\w/-]+",
|
|
|
|
|
|
message.get_payload(0).get_payload(),
|
|
|
|
|
|
)
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertTrue(
|
|
|
|
|
|
re.match(
|
|
|
|
|
|
r'^<html><a href="http://example.com/reset/[\w/-]+/">Link</a></html>$',
|
|
|
|
|
|
message.get_payload(1).get_payload(),
|
|
|
|
|
|
)
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2024-08-19 14:47:38 -03:00
|
|
|
|
@override_settings(EMAIL_BACKEND="mail.custombackend.FailingEmailBackend")
|
|
|
|
|
|
def test_save_send_email_exceptions_are_catched_and_logged(self):
|
|
|
|
|
|
(user, username, email) = self.create_dummy_user()
|
|
|
|
|
|
form = PasswordResetForm({"email": email})
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
|
|
|
|
|
|
with self.assertLogs("django.contrib.auth", level=0) as cm:
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
|
|
|
|
|
|
self.assertEqual(len(mail.outbox), 0)
|
|
|
|
|
|
self.assertEqual(len(cm.output), 1)
|
|
|
|
|
|
errors = cm.output[0].split("\n")
|
|
|
|
|
|
pk = user.pk
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
errors[0],
|
|
|
|
|
|
f"ERROR:django.contrib.auth:Failed to send password reset email to {pk}",
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
errors[-1], "ValueError: FailingEmailBackend is doomed to fail."
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(AUTH_USER_MODEL="auth_tests.CustomEmailField")
|
2016-09-19 14:55:18 +02:00
|
|
|
|
def test_custom_email_field(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
email = "test@mail.com"
|
|
|
|
|
|
CustomEmailField.objects.create_user("test name", "test password", email)
|
|
|
|
|
|
form = PasswordResetForm({"email": email})
|
2016-09-19 14:55:18 +02:00
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["email"], email)
|
2016-09-19 14:55:18 +02:00
|
|
|
|
self.assertEqual(len(mail.outbox), 1)
|
|
|
|
|
|
self.assertEqual(mail.outbox[0].to, [email])
|
|
|
|
|
|
|
2019-03-10 11:03:42 +01:00
|
|
|
|
def test_html_autocomplete_attributes(self):
|
|
|
|
|
|
form = PasswordResetForm()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.fields["email"].widget.attrs["autocomplete"], "email")
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
2012-12-01 12:17:00 +01:00
|
|
|
|
|
2015-04-17 17:38:20 -04:00
|
|
|
|
class ReadOnlyPasswordHashTest(SimpleTestCase):
|
2012-12-01 12:17:00 +01:00
|
|
|
|
def test_bug_19349_render_with_none_value(self):
|
|
|
|
|
|
# Rendering the widget with value set to None
|
|
|
|
|
|
# mustn't raise an exception.
|
|
|
|
|
|
widget = ReadOnlyPasswordHashWidget()
|
2022-02-03 20:24:19 +01:00
|
|
|
|
html = widget.render(name="password", value=None, attrs={})
|
2012-12-01 12:17:00 +01:00
|
|
|
|
self.assertIn(_("No password set."), html)
|
2013-01-25 21:27:49 +01:00
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
PASSWORD_HASHERS=["django.contrib.auth.hashers.PBKDF2PasswordHasher"]
|
|
|
|
|
|
)
|
2017-04-19 12:59:30 -04:00
|
|
|
|
def test_render(self):
|
|
|
|
|
|
widget = ReadOnlyPasswordHashWidget()
|
2022-02-04 08:08:27 +01:00
|
|
|
|
value = (
|
|
|
|
|
|
"pbkdf2_sha256$100000$a6Pucb1qSFcD$WmCkn9Hqidj48NVe5x0FEM6A9YiOqQcl/83m2Z5u"
|
|
|
|
|
|
"dm0="
|
|
|
|
|
|
)
|
2017-04-19 12:59:30 -04:00
|
|
|
|
self.assertHTMLEqual(
|
2022-02-03 20:24:19 +01:00
|
|
|
|
widget.render("name", value, {"id": "id_password"}),
|
2022-09-01 00:39:08 +03:00
|
|
|
|
'<div id="id_password">'
|
2024-03-11 16:24:02 +01:00
|
|
|
|
" <p>"
|
2022-09-01 00:39:08 +03:00
|
|
|
|
" <strong>algorithm</strong>: <bdi>pbkdf2_sha256</bdi>"
|
|
|
|
|
|
" <strong>iterations</strong>: <bdi>100000</bdi>"
|
|
|
|
|
|
" <strong>salt</strong>: <bdi>a6Pucb******</bdi>"
|
|
|
|
|
|
" <strong>hash</strong>: "
|
|
|
|
|
|
" <bdi>WmCkn9**************************************</bdi>"
|
2024-03-11 16:24:02 +01:00
|
|
|
|
" </p>"
|
|
|
|
|
|
' <p><a class="button" href="../password/">Reset password</a></p>'
|
2022-09-01 00:39:08 +03:00
|
|
|
|
"</div>",
|
2017-04-19 12:59:30 -04:00
|
|
|
|
)
|
|
|
|
|
|
|
2013-01-25 21:27:49 +01:00
|
|
|
|
def test_readonly_field_has_changed(self):
|
|
|
|
|
|
field = ReadOnlyPasswordHashField()
|
2020-12-02 11:23:52 +01:00
|
|
|
|
self.assertIs(field.disabled, True)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertFalse(field.has_changed("aaa", "bbb"))
|
2015-07-06 18:12:26 -04:00
|
|
|
|
|
2021-05-18 21:05:04 -07:00
|
|
|
|
def test_label(self):
|
|
|
|
|
|
"""
|
|
|
|
|
|
ReadOnlyPasswordHashWidget doesn't contain a for attribute in the
|
|
|
|
|
|
<label> because it doesn't have any labelable elements.
|
|
|
|
|
|
"""
|
2022-02-03 20:24:19 +01:00
|
|
|
|
|
2021-05-18 21:05:04 -07:00
|
|
|
|
class TestForm(forms.Form):
|
|
|
|
|
|
hash_field = ReadOnlyPasswordHashField()
|
|
|
|
|
|
|
2022-02-03 20:24:19 +01:00
|
|
|
|
bound_field = TestForm()["hash_field"]
|
|
|
|
|
|
self.assertIsNone(bound_field.field.widget.id_for_label("id"))
|
|
|
|
|
|
self.assertEqual(bound_field.label_tag(), "<label>Hash field:</label>")
|
2021-05-18 21:05:04 -07:00
|
|
|
|
|
2015-07-06 18:12:26 -04:00
|
|
|
|
|
|
|
|
|
|
class AdminPasswordChangeFormTest(TestDataMixin, TestCase):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
@mock.patch("django.contrib.auth.password_validation.password_changed")
|
2015-07-06 18:12:26 -04:00
|
|
|
|
def test_success(self, password_changed):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2015-07-06 18:12:26 -04:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"password1": "test123",
|
|
|
|
|
|
"password2": "test123",
|
2015-07-06 18:12:26 -04:00
|
|
|
|
}
|
|
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
|
|
|
|
|
form.save(commit=False)
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 0)
|
|
|
|
|
|
form.save()
|
|
|
|
|
|
self.assertEqual(password_changed.call_count, 1)
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form.changed_data, ["password"])
|
2016-03-14 20:21:05 +00:00
|
|
|
|
|
2024-01-12 17:27:55 -03:00
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
|
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
|
|
|
|
|
},
|
|
|
|
|
|
{
|
|
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation.MinimumLengthValidator"
|
|
|
|
|
|
),
|
|
|
|
|
|
"OPTIONS": {
|
|
|
|
|
|
"min_length": 12,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
|
|
|
|
|
def test_validates_password(self):
|
|
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertFalse(form.is_valid())
|
|
|
|
|
|
self.assertEqual(len(form["password2"].errors), 2)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"The password is too similar to the username.",
|
|
|
|
|
|
form["password2"].errors,
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"This password is too short. It must contain at least 12 characters.",
|
|
|
|
|
|
form["password2"].errors,
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2024-01-23 16:45:18 +01:00
|
|
|
|
# passwords are not validated if `usable_password` is unset
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"password1": "testclient",
|
|
|
|
|
|
"password2": "testclient",
|
|
|
|
|
|
"usable_password": "false",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True, form.errors)
|
|
|
|
|
|
|
2016-03-14 20:21:05 +00:00
|
|
|
|
def test_password_whitespace_not_stripped(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2016-03-14 20:21:05 +00:00
|
|
|
|
data = {
|
2022-02-03 20:24:19 +01:00
|
|
|
|
"password1": " pass ",
|
|
|
|
|
|
"password2": " pass ",
|
2016-03-14 20:21:05 +00:00
|
|
|
|
}
|
|
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
|
|
|
|
|
self.assertTrue(form.is_valid())
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(form.cleaned_data["password1"], data["password1"])
|
|
|
|
|
|
self.assertEqual(form.cleaned_data["password2"], data["password2"])
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form.changed_data, ["password"])
|
2018-04-03 17:32:58 +02:00
|
|
|
|
|
2024-05-28 08:15:12 +02:00
|
|
|
|
def test_password_extra_validations(self):
|
|
|
|
|
|
class ExtraValidationForm(ExtraValidationFormMixin, AdminPasswordChangeForm):
|
|
|
|
|
|
def clean_password1(self):
|
|
|
|
|
|
return self.failing_helper("password1")
|
|
|
|
|
|
|
|
|
|
|
|
def clean_password2(self):
|
|
|
|
|
|
return self.failing_helper("password2")
|
|
|
|
|
|
|
|
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"username": "extra", "password1": "abc", "password2": "abc"}
|
|
|
|
|
|
for fields in (["password1"], ["password2"], ["password1", "password2"]):
|
|
|
|
|
|
with self.subTest(fields=fields):
|
|
|
|
|
|
errors = {field: [f"Extra validation for {field}."] for field in fields}
|
|
|
|
|
|
form = ExtraValidationForm(user, data, failing_fields=errors)
|
|
|
|
|
|
self.assertIs(form.is_valid(), False)
|
|
|
|
|
|
self.assertDictEqual(form.errors, errors)
|
|
|
|
|
|
|
2018-04-03 17:32:58 +02:00
|
|
|
|
def test_non_matching_passwords(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"password1": "password1", "password2": "password2"}
|
2018-04-03 17:32:58 +02:00
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.errors["password2"], [form.error_messages["password_mismatch"]]
|
|
|
|
|
|
)
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form.changed_data, ["password"])
|
2018-04-03 17:32:58 +02:00
|
|
|
|
|
|
|
|
|
|
def test_missing_passwords(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
data = {"password1": "", "password2": ""}
|
2018-04-03 17:32:58 +02:00
|
|
|
|
form = AdminPasswordChangeForm(user, data)
|
2022-02-03 20:24:19 +01:00
|
|
|
|
required_error = [Field.default_error_messages["required"]]
|
|
|
|
|
|
self.assertEqual(form.errors["password1"], required_error)
|
|
|
|
|
|
self.assertEqual(form.errors["password2"], required_error)
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form.changed_data, [])
|
2018-04-03 17:32:58 +02:00
|
|
|
|
|
|
|
|
|
|
def test_one_password(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
form1 = AdminPasswordChangeForm(user, {"password1": "", "password2": "test"})
|
|
|
|
|
|
required_error = [Field.default_error_messages["required"]]
|
|
|
|
|
|
self.assertEqual(form1.errors["password1"], required_error)
|
|
|
|
|
|
self.assertNotIn("password2", form1.errors)
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form1.changed_data, [])
|
2022-02-03 20:24:19 +01:00
|
|
|
|
form2 = AdminPasswordChangeForm(user, {"password1": "test", "password2": ""})
|
|
|
|
|
|
self.assertEqual(form2.errors["password2"], required_error)
|
|
|
|
|
|
self.assertNotIn("password1", form2.errors)
|
2022-10-23 08:42:40 -03:00
|
|
|
|
self.assertEqual(form2.changed_data, [])
|
2019-03-10 11:03:42 +01:00
|
|
|
|
|
|
|
|
|
|
def test_html_autocomplete_attributes(self):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
user = User.objects.get(username="testclient")
|
2019-03-10 11:03:42 +01:00
|
|
|
|
form = AdminPasswordChangeForm(user)
|
|
|
|
|
|
tests = (
|
2022-02-03 20:24:19 +01:00
|
|
|
|
("password1", "new-password"),
|
|
|
|
|
|
("password2", "new-password"),
|
2019-03-10 11:03:42 +01:00
|
|
|
|
)
|
|
|
|
|
|
for field_name, autocomplete in tests:
|
|
|
|
|
|
with self.subTest(field_name=field_name, autocomplete=autocomplete):
|
2022-02-03 20:24:19 +01:00
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
form.fields[field_name].widget.attrs["autocomplete"], autocomplete
|
|
|
|
|
|
)
|
2024-01-23 16:45:18 +01:00
|
|
|
|
|
|
|
|
|
|
def test_enable_password_authentication(self):
|
|
|
|
|
|
user = User.objects.get(username="unusable_password")
|
|
|
|
|
|
form = AdminPasswordChangeForm(
|
|
|
|
|
|
user,
|
|
|
|
|
|
{"password1": "complexpassword", "password2": "complexpassword"},
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertNotIn("usable_password", form.fields)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True)
|
|
|
|
|
|
user = form.save(commit=True)
|
|
|
|
|
|
self.assertIs(user.has_usable_password(), True)
|
|
|
|
|
|
|
|
|
|
|
|
def test_disable_password_authentication(self):
|
|
|
|
|
|
user = User.objects.get(username="testclient")
|
|
|
|
|
|
form = AdminPasswordChangeForm(
|
|
|
|
|
|
user,
|
|
|
|
|
|
{"usable_password": "false", "password1": "", "password2": "test"},
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIn("usable_password", form.fields)
|
|
|
|
|
|
self.assertIn(
|
|
|
|
|
|
"If disabled, the current password for this user will be lost.",
|
|
|
|
|
|
form.fields["usable_password"].help_text,
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True) # Valid despite password empty/mismatch.
|
|
|
|
|
|
user = form.save(commit=True)
|
|
|
|
|
|
self.assertIs(user.has_usable_password(), False)
|
2024-08-15 10:27:24 -03:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class AdminUserCreationFormTest(BaseUserCreationFormTest):
|
|
|
|
|
|
|
|
|
|
|
|
form_class = AdminUserCreationForm
|
|
|
|
|
|
|
|
|
|
|
|
def test_form_fields(self):
|
|
|
|
|
|
form = self.form_class()
|
|
|
|
|
|
self.assertEqual(
|
|
|
|
|
|
list(form.fields.keys()),
|
|
|
|
|
|
["username", "password1", "password2", "usable_password"],
|
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
@override_settings(
|
|
|
|
|
|
AUTH_PASSWORD_VALIDATORS=[
|
|
|
|
|
|
{
|
|
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation."
|
|
|
|
|
|
"UserAttributeSimilarityValidator"
|
|
|
|
|
|
)
|
|
|
|
|
|
},
|
|
|
|
|
|
{
|
|
|
|
|
|
"NAME": (
|
|
|
|
|
|
"django.contrib.auth.password_validation.MinimumLengthValidator"
|
|
|
|
|
|
),
|
|
|
|
|
|
"OPTIONS": {
|
|
|
|
|
|
"min_length": 12,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
]
|
|
|
|
|
|
)
|
|
|
|
|
|
def test_no_password_validation_if_unusable_password_set(self):
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "otherclient",
|
|
|
|
|
|
"password1": "otherclient",
|
|
|
|
|
|
"password2": "otherclient",
|
|
|
|
|
|
"usable_password": "false",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = self.form_class(data)
|
|
|
|
|
|
# Passwords are not validated if `usable_password` is unset.
|
|
|
|
|
|
self.assertIs(form.is_valid(), True, form.errors)
|
|
|
|
|
|
|
|
|
|
|
|
class CustomUserCreationForm(self.form_class):
|
|
|
|
|
|
class Meta(self.form_class.Meta):
|
|
|
|
|
|
model = User
|
|
|
|
|
|
fields = ("username", "email", "first_name", "last_name")
|
|
|
|
|
|
|
|
|
|
|
|
form = CustomUserCreationForm(
|
|
|
|
|
|
{
|
|
|
|
|
|
"username": "testuser",
|
|
|
|
|
|
"password1": "testpassword",
|
|
|
|
|
|
"password2": "testpassword",
|
|
|
|
|
|
"first_name": "testpassword",
|
|
|
|
|
|
"last_name": "lastname",
|
|
|
|
|
|
"usable_password": "false",
|
|
|
|
|
|
}
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True, form.errors)
|
|
|
|
|
|
|
|
|
|
|
|
def test_unusable_password(self):
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"username": "new-user-which-does-not-exist",
|
|
|
|
|
|
"usable_password": "false",
|
|
|
|
|
|
}
|
|
|
|
|
|
form = self.form_class(data)
|
|
|
|
|
|
self.assertIs(form.is_valid(), True, form.errors)
|
|
|
|
|
|
u = form.save()
|
|
|
|
|
|
self.assertEqual(u.username, data["username"])
|
|
|
|
|
|
self.assertFalse(u.has_usable_password())
|
2025-02-01 22:49:07 -03:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class SensitiveVariablesTest(TestDataMixin, TestCase):
|
|
|
|
|
|
@sensitive_variables("data")
|
|
|
|
|
|
def test_passwords_marked_as_sensitive_in_admin_forms(self):
|
|
|
|
|
|
data = {
|
|
|
|
|
|
"password1": "passwordsensitive",
|
|
|
|
|
|
"password2": "sensitivepassword",
|
|
|
|
|
|
"usable_password": "true",
|
|
|
|
|
|
}
|
|
|
|
|
|
forms = [
|
|
|
|
|
|
AdminUserCreationForm({**data, "username": "newusername"}),
|
|
|
|
|
|
AdminPasswordChangeForm(self.u1, data),
|
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
password1_fragment = """
|
|
|
|
|
|
<td>password1</td>
|
|
|
|
|
|
<td class="code"><pre>'********************'</pre></td>
|
|
|
|
|
|
"""
|
|
|
|
|
|
password2_fragment = """
|
|
|
|
|
|
<td>password2</td>
|
|
|
|
|
|
<td class="code"><pre>'********************'</pre></td>
|
|
|
|
|
|
"""
|
|
|
|
|
|
error = ValueError("Forced error")
|
|
|
|
|
|
for form in forms:
|
|
|
|
|
|
with self.subTest(form=form):
|
|
|
|
|
|
with mock.patch.object(
|
|
|
|
|
|
SetPasswordMixin, "validate_passwords", side_effect=error
|
|
|
|
|
|
):
|
|
|
|
|
|
try:
|
|
|
|
|
|
form.is_valid()
|
|
|
|
|
|
except ValueError:
|
|
|
|
|
|
exc_info = sys.exc_info()
|
|
|
|
|
|
else:
|
|
|
|
|
|
self.fail("Form validation should have failed.")
|
|
|
|
|
|
|
|
|
|
|
|
response = technical_500_response(RequestFactory().get("/"), *exc_info)
|
|
|
|
|
|
|
|
|
|
|
|
self.assertNotContains(response, "sensitivepassword", status_code=500)
|
|
|
|
|
|
self.assertNotContains(response, "passwordsensitive", status_code=500)
|
|
|
|
|
|
self.assertContains(response, str(error), status_code=500)
|
|
|
|
|
|
self.assertContains(
|
|
|
|
|
|
response, password1_fragment, html=True, status_code=500
|
|
|
|
|
|
)
|
|
|
|
|
|
self.assertContains(
|
|
|
|
|
|
response, password2_fragment, html=True, status_code=500
|
|
|
|
|
|
)
|
