anoopmb
/
frappe
1
0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 0 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
32760 Révisions
1 Branche
314 MiB
 
 
 
 
 
 
Aborescence: 6a93ebc143
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '6a93ebc143'
${ noResults }
frappe/frappe/tests/test_auth.py

129 lignes
4.8 KiB
Brut Annotations Historique 

  1. # Copyright (c) 2021, Frappe Technologies Pvt. Ltd. and Contributors

  2. # MIT License. See license.txt

  3. from __future__ import unicode_literals

  4. 

  5. import time

  6. import unittest

  7. 

  8. import frappe

  9. from frappe.auth import LoginAttemptTracker

  10. from frappe.frappeclient import FrappeClient, AuthError

  11. 

  12. class TestAuth(unittest.TestCase):

  13. 	def __init__(self, *args, **kwargs):

  14. 		super(TestAuth, self).__init__(*args, **kwargs)

  15. 		self.test_user_email = 'test_auth@test.com'

  16. 		self.test_user_name = 'test_auth_user'

  17. 		self.test_user_mobile = '+911234567890'

  18. 		self.test_user_password = 'pwd_012'

  19. 

  20. 	def setUp(self):

  21. 		self.tearDown()

  22. 

  23. 		self.add_user(self.test_user_email, self.test_user_password,

  24. 			username=self.test_user_name, mobile_no=self.test_user_mobile)

  25. 

  26. 	def tearDown(self):

  27. 		frappe.delete_doc('User', self.test_user_email, force=True)

  28. 

  29. 	def add_user(self, email, password, username=None, mobile_no=None):

  30. 		first_name = email.split('@', 1)[0]

  31. 		user = frappe.get_doc(

  32. 				dict(doctype='User', email=email, first_name=first_name, username=username, mobile_no=mobile_no)

  33. 			).insert()

  34. 		user.new_password = password

  35. 		user.save()

  36. 		frappe.db.commit()

  37. 

  38. 	def set_system_settings(self, k, v):

  39. 		frappe.db.set_value("System Settings", "System Settings", k, v)

  40. 		frappe.db.commit()

  41. 

  42. 	def test_allow_login_using_mobile(self):

  43. 		self.set_system_settings('allow_login_using_mobile_number', 1)

  44. 		self.set_system_settings('allow_login_using_user_name', 0)

  45. 

  46. 		# Login by both email and mobile should work

  47. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_mobile, self.test_user_password)

  48. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_email, self.test_user_password)

  49. 

  50. 		# login by username should fail

  51. 		with self.assertRaises(AuthError):

  52. 			FrappeClient(frappe.get_site_config().host_name, self.test_user_name, self.test_user_password)

  53. 

  54. 	def test_allow_login_using_only_email(self):

  55. 		self.set_system_settings('allow_login_using_mobile_number', 0)

  56. 		self.set_system_settings('allow_login_using_user_name', 0)

  57. 

  58. 		# Login by mobile number should fail

  59. 		with self.assertRaises(AuthError):

  60. 			FrappeClient(frappe.get_site_config().host_name, self.test_user_mobile, self.test_user_password)

  61. 

  62. 		# login by username should fail

  63. 		with self.assertRaises(AuthError):

  64. 			FrappeClient(frappe.get_site_config().host_name, self.test_user_name, self.test_user_password)

  65. 

  66. 		# Login by email should work

  67. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_email, self.test_user_password)

  68. 

  69. 	def test_allow_login_using_username(self):

  70. 		self.set_system_settings('allow_login_using_mobile_number', 0)

  71. 		self.set_system_settings('allow_login_using_user_name', 1)

  72. 

  73. 		# Mobile login should fail

  74. 		with self.assertRaises(AuthError):

  75. 			FrappeClient(frappe.get_site_config().host_name, self.test_user_mobile, self.test_user_password)

  76. 

  77. 		# Both email and username logins should work

  78. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_email, self.test_user_password)

  79. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_name, self.test_user_password)

  80. 

  81. 	def test_allow_login_using_username_and_mobile(self):

  82. 		self.set_system_settings('allow_login_using_mobile_number', 1)

  83. 		self.set_system_settings('allow_login_using_user_name', 1)

  84. 

  85. 		# Both email and username and mobile logins should work

  86. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_mobile, self.test_user_password)

  87. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_email, self.test_user_password)

  88. 		FrappeClient(frappe.get_site_config().host_name, self.test_user_name, self.test_user_password)

  89. 

  90. class TestLoginAttemptTracker(unittest.TestCase):

  91. 	def test_account_lock(self):

  92. 		"""Make sure that account locks after `n consecutive failures

  93. 		"""

  94. 		tracker = LoginAttemptTracker(user_name='tester', max_consecutive_login_attempts=3, lock_interval=60)

  95. 		# Clear the cache by setting attempt as success

  96. 		tracker.add_success_attempt()

  97. 

  98. 		tracker.add_failure_attempt()

  99. 		self.assertTrue(tracker.is_user_allowed())

  100. 

  101. 		tracker.add_failure_attempt()

  102. 		self.assertTrue(tracker.is_user_allowed())

  103. 

  104. 		tracker.add_failure_attempt()

  105. 		self.assertTrue(tracker.is_user_allowed())

  106. 

  107. 		tracker.add_failure_attempt()

  108. 		self.assertFalse(tracker.is_user_allowed())

  109. 

  110. 	def test_account_unlock(self):

  111. 		"""Make sure that locked account gets unlocked after lock_interval of time.

  112. 		"""

  113. 		lock_interval = 2 # In sec

  114. 		tracker = LoginAttemptTracker(user_name='tester', max_consecutive_login_attempts=1, lock_interval=lock_interval)

  115. 		# Clear the cache by setting attempt as success

  116. 		tracker.add_success_attempt()

  117. 

  118. 		tracker.add_failure_attempt()

  119. 		self.assertTrue(tracker.is_user_allowed())

  120. 

  121. 		tracker.add_failure_attempt()

  122. 		self.assertFalse(tracker.is_user_allowed())

  123. 

  124. 		# Sleep for lock_interval of time, so that next request con unlock the user access.

  125. 		time.sleep(lock_interval)

  126. 

  127. 		tracker.add_failure_attempt()

  128. 		self.assertTrue(tracker.is_user_allowed())