Sha256: c1efb0baa124fa6f5b9de8effd59db370c991b97196c1292308544ab2312659b
Contents?: true
Size: 1.63 KB
Versions: 3
Compression:
Stored size: 1.63 KB
Contents
require 'test_helper'
class TestPasswordArchivable < ActiveSupport::TestCase
setup do
Devise.password_archiving_count = 2
end
teardown do
Devise.password_archiving_count = 1
end
def set_password(user, password)
user.password = password
user.password_confirmation = password
user.save!
end
test 'cannot use same password' do
user = User.create password: 'password1', password_confirmation: 'password1'
assert_raises(ActiveRecord::RecordInvalid) { set_password(user, 'password1') }
end
test 'cannot use archived passwords' do
assert_equal 2, Devise.password_archiving_count
user = User.create password: 'password1', password_confirmation: 'password1'
assert_equal 0, OldPassword.count
set_password(user, 'password2')
assert_equal 1, OldPassword.count
assert_raises(ActiveRecord::RecordInvalid) { set_password(user, 'password1') }
set_password(user, 'password3')
assert_equal 2, OldPassword.count
# rotate first password out of archive
assert set_password(user, 'password4')
# archive count was 2, so first password should work again
assert set_password(user, 'password1')
assert set_password(user, 'password2')
end
test 'the option should be dynamic during runtime' do
class ::User
def archive_count
1
end
end
user = User.create password: 'password1', password_confirmation: 'password1'
assert set_password(user, 'password2')
assert_raises(ActiveRecord::RecordInvalid) { set_password(user, 'password2') }
assert_raises(ActiveRecord::RecordInvalid) { set_password(user, 'password1') }
end
end
Version data entries
3 entries across 3 versions & 2 rubygems
| Version | Path |
|---|---|
| devise-security-0.11.1 | test/test_password_archivable.rb |
| devise-security-0.11.0 | test/test_password_archivable.rb |
| devise_security_extension-0.10.0 | test/test_password_archivable.rb |