mirror of
https://github.com/zulip/zulip.git
synced 2025-11-03 21:43:21 +00:00
365fe0b3d5
Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com>
127 lines
5.5 KiB
Python
127 lines
5.5 KiB
Python
from datetime import timedelta
|
|
from typing import Any, Callable
|
|
from unittest import mock
|
|
|
|
from django.utils.timezone import now as timezone_now
|
|
|
|
from zerver.lib.sessions import (
|
|
delete_all_deactivated_user_sessions,
|
|
delete_all_user_sessions,
|
|
delete_realm_user_sessions,
|
|
delete_session,
|
|
delete_user_sessions,
|
|
get_expirable_session_var,
|
|
set_expirable_session_var,
|
|
user_sessions,
|
|
)
|
|
from zerver.lib.test_classes import ZulipTestCase
|
|
from zerver.models import Realm, UserProfile, get_realm
|
|
|
|
|
|
class TestSessions(ZulipTestCase):
|
|
|
|
def do_test_session(self, user: UserProfile,
|
|
action: Callable[[], Any],
|
|
realm: Realm,
|
|
expected_result: bool) -> None:
|
|
self.login_user(user)
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
action()
|
|
if expected_result:
|
|
result = self.client_get('/', subdomain=realm.subdomain)
|
|
self.assertEqual('/login/', result.url)
|
|
else:
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
|
|
def test_delete_session(self) -> None:
|
|
user_profile = self.example_user('hamlet')
|
|
self.login_user(user_profile)
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
for session in user_sessions(user_profile):
|
|
delete_session(session)
|
|
result = self.client_get("/")
|
|
self.assertEqual('/login/', result.url)
|
|
|
|
def test_delete_user_sessions(self) -> None:
|
|
user_profile = self.example_user('hamlet')
|
|
self.do_test_session(user_profile, lambda: delete_user_sessions(user_profile),
|
|
get_realm("zulip"), True)
|
|
self.do_test_session(self.example_user("othello"),
|
|
lambda: delete_user_sessions(user_profile),
|
|
get_realm("zulip"), False)
|
|
|
|
def test_delete_realm_user_sessions(self) -> None:
|
|
realm = get_realm('zulip')
|
|
self.do_test_session(self.example_user("hamlet"),
|
|
lambda: delete_realm_user_sessions(realm),
|
|
get_realm("zulip"), True)
|
|
self.do_test_session(self.mit_user("sipbtest"),
|
|
lambda: delete_realm_user_sessions(realm),
|
|
get_realm("zephyr"), False)
|
|
|
|
def test_delete_all_user_sessions(self) -> None:
|
|
self.do_test_session(self.example_user("hamlet"),
|
|
lambda: delete_all_user_sessions(),
|
|
get_realm("zulip"), True)
|
|
self.do_test_session(self.mit_user("sipbtest"),
|
|
lambda: delete_all_user_sessions(),
|
|
get_realm("zephyr"), True)
|
|
|
|
def test_delete_all_deactivated_user_sessions(self) -> None:
|
|
|
|
# Test that no exception is thrown with a logged-out session
|
|
self.login('othello')
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
self.client_post('/accounts/logout/')
|
|
delete_all_deactivated_user_sessions()
|
|
result = self.client_get("/")
|
|
self.assertEqual('/login/', result.url)
|
|
|
|
# Test nothing happens to an active user's session
|
|
self.login('othello')
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
delete_all_deactivated_user_sessions()
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
|
|
# Test that a deactivated session gets logged out
|
|
user_profile_3 = self.example_user('cordelia')
|
|
self.login_user(user_profile_3)
|
|
self.assertIn('_auth_user_id', self.client.session)
|
|
user_profile_3.is_active = False
|
|
user_profile_3.save()
|
|
delete_all_deactivated_user_sessions()
|
|
result = self.client_get("/")
|
|
self.assertEqual('/login/', result.url)
|
|
|
|
class TestExpirableSessionVars(ZulipTestCase):
|
|
def setUp(self) -> None:
|
|
self.session = self.client.session
|
|
super().setUp()
|
|
|
|
def test_set_and_get_basic(self) -> None:
|
|
start_time = timezone_now()
|
|
with mock.patch('zerver.lib.sessions.timezone_now', return_value=start_time):
|
|
set_expirable_session_var(self.session, 'test_set_and_get_basic', 'some_value', expiry_seconds=10)
|
|
value = get_expirable_session_var(self.session, 'test_set_and_get_basic')
|
|
self.assertEqual(value, 'some_value')
|
|
with mock.patch('zerver.lib.sessions.timezone_now', return_value=start_time + timedelta(seconds=11)):
|
|
value = get_expirable_session_var(self.session, 'test_set_and_get_basic')
|
|
self.assertEqual(value, None)
|
|
|
|
def test_set_and_get_with_delete(self) -> None:
|
|
set_expirable_session_var(self.session, 'test_set_and_get_with_delete', 'some_value', expiry_seconds=10)
|
|
value = get_expirable_session_var(self.session, 'test_set_and_get_with_delete', delete=True)
|
|
self.assertEqual(value, 'some_value')
|
|
self.assertEqual(get_expirable_session_var(self.session, 'test_set_and_get_with_delete'), None)
|
|
|
|
def test_get_var_not_set(self) -> None:
|
|
value = get_expirable_session_var(self.session, 'test_get_var_not_set', default_value='default')
|
|
self.assertEqual(value, 'default')
|
|
|
|
def test_get_var_is_not_expirable(self) -> None:
|
|
self.session["test_get_var_is_not_expirable"] = 0
|
|
with mock.patch('zerver.lib.sessions.logging.warning') as mock_warn:
|
|
value = get_expirable_session_var(self.session, 'test_get_var_is_not_expirable', default_value='default')
|
|
self.assertEqual(value, 'default')
|
|
mock_warn.assert_called_once()
|