closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2555 Commits
4 Branches
567 MiB
Tree: 7177e37b99
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7177e37b99'
${ noResults }
mastodon/spec/models/user_spec.rb

165 lines
5.3 KiB
Raw Normal View History

Made some progress
8 years ago
Add recovery code support for two-factor auth (#1773) * Add recovery code support for two-factor auth When users enable two-factor auth, the app now generates ten single-use recovery codes. Users are encouraged to print the codes and store them in a safe place. The two-factor prompt during login now accepts both OTP codes and recovery codes. The two-factor settings UI allows users to regenerated lost recovery codes. Users who have set up two-factor auth prior to this feature being added can use it to generate recovery codes for the first time. Fixes #563 and fixes #987 * Set OTP_SECRET in test enviroment * add missing .html to view file names
7 years ago
Made some progress
8 years ago
Add recovery code support for two-factor auth (#1773) * Add recovery code support for two-factor auth When users enable two-factor auth, the app now generates ten single-use recovery codes. Users are encouraged to print the codes and store them in a safe place. The two-factor prompt during login now accepts both OTP codes and recovery codes. The two-factor settings UI allows users to regenerated lost recovery codes. Users who have set up two-factor auth prior to this feature being added can use it to generate recovery codes for the first time. Fixes #563 and fixes #987 * Set OTP_SECRET in test enviroment * add missing .html to view file names
7 years ago
add more tests to models
7 years ago
Adding a Mention model, test stubs
8 years ago
add more tests to models
7 years ago
User settings mutation (#2270) * Add user spec for settings, highlight global default mutation issue * Fix mutation issue caused by settings/preferences spec
7 years ago
add more tests to models
7 years ago
Fix spec
7 years ago
Merge branch 'master' into add_more_tests_to_models
7 years ago
Fix spec
7 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Adding a Mention model, test stubs
8 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Stricter whitelist rules (#2213) * Stricter whitelist rules * Linting * Added spec for blacklisting * Test subdomain blacklist on domain whitelist * No need to split * Change spec name
7 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Fix spec
7 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Stricter whitelist rules (#2213) * Stricter whitelist rules * Linting * Added spec for blacklisting * Test subdomain blacklist on domain whitelist * No need to split * Change spec name
7 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Admin UI for confirming users (#2245) * Shows confirmed status in list. * Adds ability to confirm users in admin UI. * Added new english translations. * Addresses feedback from #2245. * More feedback.
7 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Merge branch 'master' into add_more_tests_to_models
7 years ago
Stricter whitelist rules (#2213) * Stricter whitelist rules * Linting * Added spec for blacklisting * Test subdomain blacklist on domain whitelist * No need to split * Change spec name
7 years ago
add more tests to models
7 years ago
Made some progress
8 years ago
 
  1. require 'rails_helper'
  2. require 'devise_two_factor/spec_helpers'
  3. 

  4. RSpec.describe User, type: :model do
  5.   it_behaves_like 'two_factor_backupable'
  6. 

  7.   describe 'validations' do
  8.     it 'is invalid without an account' do
  9.       user = Fabricate.build(:user, account: nil)
  10.       user.valid?
  11.       expect(user).to model_have_error_on_field(:account)
  12.     end
  13. 

  14.     it 'is invalid without a valid locale' do
  15.       user = Fabricate.build(:user, locale: 'toto')
  16.       user.valid?
  17.       expect(user).to model_have_error_on_field(:locale)
  18.     end
  19. 

  20.     it 'is invalid without a valid email' do
  21.       user = Fabricate.build(:user, email: 'john@')
  22.       user.valid?
  23.       expect(user).to model_have_error_on_field(:email)
  24.     end
  25.   end
  26. 

  27.   describe 'settings' do
  28.     it 'inherits default settings from default yml' do
  29.       expect(Setting.boost_modal).to eq false
  30.       expect(Setting.interactions['must_be_follower']).to eq false
  31. 

  32.       user = User.new
  33.       expect(user.settings.boost_modal).to eq false
  34.       expect(user.settings.interactions['must_be_follower']).to eq false
  35.     end
  36. 

  37.     it 'can update settings' do
  38.       user = Fabricate(:user)
  39.       expect(user.settings['interactions']['must_be_follower']).to eq false
  40.       user.settings['interactions'] = user.settings['interactions'].merge('must_be_follower' => true)
  41.       user.reload
  42. 

  43.       expect(user.settings['interactions']['must_be_follower']).to eq true
  44.     end
  45. 

  46.     xit 'does not mutate defaults via the cache' do
  47.       user = Fabricate(:user)
  48.       user.settings['interactions']['must_be_follower'] = true
  49.       # TODO
  50.       # This mutates the global settings default such that future user
  51.       # instances will inherit the incorrect starting values
  52. 

  53.       other = Fabricate(:user)
  54.       expect(other.settings['interactions']['must_be_follower']).to eq false
  55.     end
  56.   end
  57. 

  58.   describe 'scopes' do
  59.     describe 'recent' do
  60.       it 'returns an array of recent users ordered by id' do
  61.         user_1 = Fabricate(:user)
  62.         user_2 = Fabricate(:user)
  63.         expect(User.recent).to match_array([user_2, user_1])
  64.       end
  65.     end
  66. 

  67.     describe 'admins' do
  68.       it 'returns an array of users who are admin' do
  69.         user_1 = Fabricate(:user, admin: false)
  70.         user_2 = Fabricate(:user, admin: true)
  71.         expect(User.admins).to match_array([user_2])
  72.       end
  73.     end
  74. 

  75.     describe 'confirmed' do
  76.       it 'returns an array of users who are confirmed' do
  77.         user_1 = Fabricate(:user, confirmed_at: nil)
  78.         user_2 = Fabricate(:user, confirmed_at: Time.now)
  79.         expect(User.confirmed).to match_array([user_2])
  80.       end
  81.     end
  82.   end
  83. 

  84.   let(:account) { Fabricate(:account, username: 'alice') }
  85.   let(:password) { 'abcd1234' }
  86. 

  87.   describe 'blacklist' do
  88.     around(:each) do |example|
  89.       old_blacklist = Rails.configuration.x.email_blacklist
  90. 

  91.       Rails.configuration.x.email_domains_blacklist = 'mvrht.com'
  92. 

  93.       example.run
  94. 

  95.       Rails.configuration.x.email_domains_blacklist = old_blacklist
  96.     end
  97. 

  98.     it 'should allow a non-blacklisted user to be created' do
  99.       user = User.new(email: 'foo@example.com', account: account, password: password)
  100. 

  101.       expect(user.valid?).to be_truthy
  102.     end
  103. 

  104.     it 'should not allow a blacklisted user to be created' do
  105.       user = User.new(email: 'foo@mvrht.com', account: account, password: password)
  106. 

  107.       expect(user.valid?).to be_falsey
  108.     end
  109. 

  110.     it 'should not allow a subdomain blacklisted user to be created' do
  111.       user = User.new(email: 'foo@mvrht.com.topdomain.tld', account: account, password: password)
  112. 

  113.       expect(user.valid?).to be_falsey
  114.     end
  115.   end
  116. 

  117.   describe '#confirmed?' do
  118.     it 'returns true when a confirmed_at is set' do
  119.       user = Fabricate.build(:user, confirmed_at: Time.now.utc)
  120.       expect(user.confirmed?).to be true
  121.     end
  122. 

  123.     it 'returns false if a confirmed_at is nil' do
  124.       user = Fabricate.build(:user, confirmed_at: nil)
  125.       expect(user.confirmed?).to be false
  126.     end
  127.   end
  128. 

  129.   describe 'whitelist' do
  130.     around(:each) do |example|
  131.       old_whitelist = Rails.configuration.x.email_whitelist
  132. 

  133.       Rails.configuration.x.email_domains_whitelist = 'mastodon.space'
  134. 

  135.       example.run
  136. 

  137.       Rails.configuration.x.email_domains_whitelist = old_whitelist
  138.     end
  139. 

  140.     it 'should not allow a user to be created unless they are whitelisted' do
  141.       user = User.new(email: 'foo@example.com', account: account, password: password)
  142.       expect(user.valid?).to be_falsey
  143.     end
  144. 

  145.     it 'should allow a user to be created if they are whitelisted' do
  146.       user = User.new(email: 'foo@mastodon.space', account: account, password: password)
  147.       expect(user.valid?).to be_truthy
  148.     end
  149. 

  150.     it 'should not allow a user with a whitelisted top domain as subdomain in their email address to be created' do
  151.       user = User.new(email: 'foo@mastodon.space.userdomain.com', account: account, password: password)
  152.       expect(user.valid?).to be_falsey
  153.     end
  154. 

  155.     it 'should not allow a user to be created with a specific blacklisted subdomain even if the top domain is whitelisted' do
  156.       old_blacklist = Rails.configuration.x.email_blacklist
  157.       Rails.configuration.x.email_domains_blacklist = 'blacklisted.mastodon.space'
  158. 

  159.       user = User.new(email: 'foo@blacklisted.mastodon.space', account: account, password: password)
  160.       expect(user.valid?).to be_falsey
  161. 

  162.       Rails.configuration.x.email_domains_blacklist = old_blacklist
  163.     end
  164.   end
  165. end