Sha256: cc49240382246c76cf108c10111497ecf6e521d83748387fd8d41dcddb8cf5af
Contents?: true
Size: 1.86 KB
Versions: 11
Compression:
Stored size: 1.86 KB
Contents
require 'test_helper'
# was the web request successful?
# was the user redirected to the right page?
# was the user successfully authenticated?
# was the correct object stored in the response?
# was the appropriate message delivered in the json payload?
class Overrides::PasswordsControllerTest < ActionDispatch::IntegrationTest
describe Overrides::PasswordsController do
before do
@user = evil_users(:confirmed_email_user)
@redirect_url = Faker::Internet.url
post "/evil_user_auth/password", {
email: @user.email,
redirect_url: @redirect_url
}
@mail = ActionMailer::Base.deliveries.last
@user.reload
@mail_config_name = CGI.unescape(@mail.body.match(/config=([^&]*)&/)[1])
@mail_redirect_url = CGI.unescape(@mail.body.match(/redirect_url=([^&]*)&/)[1])
@mail_reset_token = @mail.body.match(/reset_password_token=(.*)\"/)[1]
get '/evil_user_auth/password/edit', {
reset_password_token: @mail_reset_token,
redirect_url: @mail_redirect_url
}
@user.reload
raw_qs = response.location.split('?')[1]
@qs = Rack::Utils.parse_nested_query(raw_qs)
@client_id = @qs["client_id"]
@expiry = @qs["expiry"]
@reset_password = @qs["reset_password"]
@token = @qs["token"]
@uid = @qs["uid"]
@override_proof = @qs["override_proof"]
end
test 'respones should have success redirect status' do
assert_equal 302, response.status
end
test 'response should contain auth params + override proof' do
assert @client_id
assert @expiry
assert @reset_password
assert @token
assert @uid
assert @override_proof
end
test 'override proof is correct' do
assert_equal @override_proof, Overrides::PasswordsController::OVERRIDE_PROOF
end
end
end
Version data entries
11 entries across 11 versions & 1 rubygems